WO2013076848A1 - Système de communication chiffrée, dispositif de communication chiffrée, programme informatique et procédé de communication chiffrée - Google Patents

Système de communication chiffrée, dispositif de communication chiffrée, programme informatique et procédé de communication chiffrée Download PDF

Info

Publication number
WO2013076848A1
WO2013076848A1 PCT/JP2011/077077 JP2011077077W WO2013076848A1 WO 2013076848 A1 WO2013076848 A1 WO 2013076848A1 JP 2011077077 W JP2011077077 W JP 2011077077W WO 2013076848 A1 WO2013076848 A1 WO 2013076848A1
Authority
WO
WIPO (PCT)
Prior art keywords
temporary key
unit
key generation
communication device
generation data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/JP2011/077077
Other languages
English (en)
Japanese (ja)
Inventor
晃由 山口
信博 小林
ユミコ 村上
佐藤 恒夫
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Mitsubishi Electric Corp
Original Assignee
Mitsubishi Electric Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mitsubishi Electric Corp filed Critical Mitsubishi Electric Corp
Priority to PCT/JP2011/077077 priority Critical patent/WO2013076848A1/fr
Priority to CN201180075018.2A priority patent/CN103947150A/zh
Publication of WO2013076848A1 publication Critical patent/WO2013076848A1/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/083Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds

Definitions

  • the present invention relates to an encryption communication system in which a plurality of devices perform encryption communication.
  • encryption communication is used to prevent wiretapping and tampering by a third party.
  • a communication method that can be easily wiretapped such as Internet communication or wireless communication
  • encryption communication is used to prevent wiretapping and tampering by a third party.
  • it is necessary to share a key used between the transmission side and the reception side, and it is necessary to prevent the shared key from leaking to the outside.
  • An object of the present invention is to make it easy to share and change a key used for encrypted communication, for example.
  • An encryption communication system includes: In a cryptographic communication system comprising a management device, a first cryptographic communication device, and a second cryptographic communication device,
  • the management device includes a master key storage unit and a temporary key generation unit
  • the master key storage unit of the management device stores a first master key
  • the temporary key generation unit of the management device generates a first temporary key using the first master key stored in the master key storage unit of the management device and the temporary key generation data
  • the first encryption communication device includes a temporary key generation data notification unit and an encryption communication unit
  • the temporary key generation data notifying unit of the first encryption communication device is configured to transfer the temporary key generation data used by the temporary key generation unit of the management device to generate the first temporary key to the second encryption Notify the communication device
  • the cryptographic communication unit of the first cryptographic communication device performs cryptographic communication with the second cryptographic communication device using the first temporary key generated by the temporary key generation unit of the management device
  • the second cryptographic communication device includes a master key storage unit, a temporary key generation data verification unit, a
  • the temporary key generation data verification unit of the second encryption communication device determines whether the temporary key generation data notified from the temporary key generation data notification unit of the first encryption communication device is valid. Judgment, When the temporary key generation data notified from the temporary key generation data notifying unit of the first cryptographic communication device is valid, the temporary key generation unit of the second cryptographic communication device is valid.
  • the temporary key generation data verification unit determines, the second master key stored in the master key storage unit of the second encryption communication device and the temporary key generation data of the second encryption communication device
  • the first temporary key that is the same as the first temporary key generated by the temporary key generation unit of the management device using the temporary key generation data determined to be valid by the verification unit or the first temporary key
  • the cryptographic communication unit of the second cryptographic communication device uses the second temporary key generated by the temporary key generation unit of the second cryptographic communication device to perform cryptographic communication with the first cryptographic communication device. It is characterized by doing.
  • the second cryptographic communication apparatus Since the second cryptographic communication apparatus generates a temporary key using the temporary key generation data notified from the first cryptographic communication apparatus, the first cryptographic communication apparatus and the second cryptographic communication apparatus are the same or correspond to each other. You can use the temporary key for encrypted communication. This makes it easy to share or change the temporary key.
  • FIG. 1 is a system configuration diagram illustrating an example of an overall configuration of a cryptographic communication system 800 according to Embodiment 1.
  • FIG. 2 is a hardware configuration diagram illustrating an example of hardware resources of a management apparatus 100, an encryption communication apparatus 200, and an encryption communication apparatus 300 according to Embodiment 1.
  • FIG. 3 is a block configuration diagram illustrating an example of functional blocks of the management apparatus 100 according to the first embodiment.
  • FIG. 3 is a block configuration diagram illustrating an example of functional blocks of the cryptographic communication device 200 according to the first embodiment.
  • FIG. 3 is a block configuration diagram illustrating an example of functional blocks of the cryptographic communication device 300 according to the first embodiment.
  • FIG. 6 is a flowchart showing an example of a flow of initialization processing S601 in the first embodiment.
  • FIG. 6 is a flowchart showing an example of a flow of update processing S602 in the first embodiment.
  • FIG. 6 is a flowchart showing an example of a flow of temporary key notification processing S603 in the first embodiment.
  • FIG. 4 is a flowchart showing an example of the flow of cryptographic communication processing S604 in the first embodiment.
  • FIG. 10 is a diagram illustrating an example of an overall configuration of an automatic meter reading system 801 according to a third embodiment.
  • FIG. 10 is a diagram illustrating an example of functional blocks of the management server 101 according to the third embodiment.
  • FIG. 9 shows an example of functional blocks of a mobile terminal 201 in Embodiment 3.
  • FIG. 10 is a diagram illustrating an example of functional blocks of a meter-reading meter 301 according to a third embodiment.
  • FIG. 10 is a diagram illustrating an example of detailed functional blocks of a key information management unit 161 in the management server 101 according to the third embodiment.
  • FIG. 10 is a diagram illustrating an example of detailed functional blocks of a management server communication unit 221 in the portable terminal 201 according to the third embodiment.
  • FIG. 10 is a diagram illustrating an example of detailed functional blocks of a meter reading meter communication unit 291 in the portable terminal 201 according to the third embodiment.
  • FIG. FIG. 10 is a flowchart showing an example of a flow of temporary key notification processing S603 in the third embodiment.
  • FIG. 11 is a flowchart showing an example of the flow of cryptographic communication processing S604 in the third embodiment.
  • FIG. 10 is a system configuration diagram illustrating an example of an overall configuration of an encryption communication system 800 according to a fourth embodiment.
  • FIG. 6 is a system configuration diagram illustrating an example of an overall configuration of an encryption communication device 500 according to a fourth embodiment.
  • FIG. 20 is a flowchart showing an example of a flow of initialization processing S601 in the fourth embodiment.
  • FIG. 20 is a flowchart showing an example of a flow of update processing S602 in the fourth embodiment.
  • FIG. 18 is a flowchart showing an example of the flow of cryptographic communication processing S604 in the fourth embodiment.
  • FIG. 10 is a system configuration diagram illustrating an example of an overall configuration of an encryption communication system 800 according to a fourth embodiment.
  • FIG. 6 is a system configuration diagram illustrating an example of an overall configuration of an encryption communication device 500 according to a fourth embodiment.
  • FIG. 20 is a flow
  • FIG. 10 shows an example of the overall configuration of an automatic meter reading system 801 in a fifth embodiment.
  • FIG. 10 is a diagram illustrating an example of functional blocks of a meter-reading meter 301 according to a fifth embodiment.
  • FIG. 18 is a block configuration diagram illustrating an example of functional blocks of the management apparatus 100 according to the sixth embodiment.
  • FIG. 20 is a block configuration diagram illustrating an example of functional blocks of an encryption communication device 200 according to a sixth embodiment.
  • FIG. 18 is a block configuration diagram illustrating an example of functional blocks of an encryption communication device 300 according to a sixth embodiment.
  • FIG. 25 is a flowchart showing an example of the flow of temporary key notification processing S603 in the sixth embodiment.
  • FIG. 19 is a flowchart showing an example of the flow of cryptographic communication processing S604 in the sixth embodiment.
  • FIG. 18 is a block configuration diagram illustrating an example of functional blocks of an encryption communication device 200 according to a seventh embodiment.
  • FIG. 20 is a flowchart showing an example of the flow of cryptographic communication processing S604 in the seventh embodiment.
  • FIG. 20 is a diagram illustrating an example of functional blocks of the management server 101 according to the eighth embodiment.
  • FIG. 20 shows an example of functional blocks of a portable terminal 201 in Embodiment 8.
  • FIG. 18 shows an example of functional blocks of a meter-reading meter 301 in the eighth embodiment.
  • FIG. 20 is a diagram illustrating an example of detailed functional blocks of a reset packet generation unit 166 in the management server 101 according to the eighth embodiment.
  • FIG. 20 is a diagram illustrating an example of detailed functional blocks of a portable terminal communication unit 391 in the meter-reading meter 301 according to the eighth embodiment.
  • FIG. 19 is a flowchart showing an example of the flow of reset packet notification processing S605 in the eighth embodiment.
  • FIG. 19 is a flowchart showing an example of the flow of generation number reset processing S606 in the eighth embodiment.
  • Embodiment 1 FIG. The first embodiment will be described with reference to FIGS.
  • FIG. 1 is a system configuration diagram showing an example of the overall configuration of the cryptographic communication system 800 in this embodiment.
  • the cryptographic communication system 800 includes, for example, a management device 100, a cryptographic communication device 200, and a cryptographic communication device 300.
  • the management device 100 (encryption processing device) stores a master key.
  • the management device 100 generates a temporary key using the stored master key.
  • the cryptographic communication device 200 (cryptographic processing device) communicates with the management device 100 using a secure method, and acquires the temporary key generated by the management device 100.
  • the cryptographic communication device 200 performs cryptographic communication with the cryptographic communication device 300 using the acquired temporary key.
  • the cryptographic communication device 300 (cryptographic processing device) stores a master key.
  • the master key stored in the encryption communication device 300 may be the same master key as the master key stored in the management device 100, or a master key corresponding to the master key stored in the management device 100. It may be.
  • the cryptographic communication device 300 generates a temporary key using the stored master key.
  • the temporary key generated by the encryption communication device 300 may be the same temporary key as the temporary key generated by the management device 100, or may be a temporary key corresponding to the temporary key generated by the management device 100.
  • the cryptographic communication device 300 performs cryptographic communication with the cryptographic communication device 200 using the temporary key generated by itself.
  • FIG. 2 is a hardware configuration diagram illustrating an example of hardware resources of the management apparatus 100, the encryption communication apparatus 200, and the encryption communication apparatus 300 in this embodiment.
  • the management device 100, the encryption communication device 200, and the encryption communication device 300 are, for example, computers.
  • the computer includes, for example, a processing device 911, an input device 912, an output device 913, a storage device 914, and a communication device 915.
  • the processing device 911 processes the data by executing the computer program stored in the storage device 914, and controls the input device 912, the output device 913, the storage device 914, and the communication device 915.
  • the storage device 914 stores a computer program executed by the processing device 911, data processed by the processing device 911, and the like.
  • the input device 912 inputs information from outside the computer and converts it into data that can be processed by the processing device 911.
  • the data converted by the input device 912 may be processed directly by the processing device 911 or may be stored temporarily by the storage device 914.
  • the input device 912 is an operation input device such as a keyboard or a mouse, and inputs an operation by an operator who operates the computer.
  • the input device 912 is a microphone and inputs sound.
  • the input device 912 is a camera and takes an image.
  • the input device 912 is a sensor and measures physical quantities such as temperature and voltage.
  • the input device 912 is an analog / digital conversion circuit, and converts an analog signal into digital data.
  • the output device 913 converts the data processed by the processing device 911 and the data stored in the storage device 914 and outputs the converted data to the outside of the computer.
  • the output device 913 is a liquid crystal display device and outputs an image.
  • the output device 913 is a speaker and outputs sound.
  • the output device 913 is a digital / analog conversion circuit, and generates an analog signal.
  • the communication device 915 communicates with other devices.
  • the communication device 915 receives a signal transmitted by another device, inputs information represented by the received signal, and converts it into data that can be processed by the processing device 911. That is, the communication device 915 is a kind of the input device 912.
  • the communication device 915 converts the data processed by the processing device 911 and the data stored in the storage device 914 into signals and transmits the signals to other devices. That is, the communication device 915 is a kind of the storage device 914.
  • the functional blocks described below are realized by the processing device 911 executing the computer program stored in the storage device 914. This is an example, and the functional blocks described below may be realized by other configurations. For example, the functional blocks described below may be realized by an electronic circuit such as an analog circuit or a digital circuit, other electrical configurations, mechanical configurations, or other configurations.
  • FIG. 3 is a block configuration diagram illustrating an example of functional blocks of the management apparatus 100 according to this embodiment.
  • the management device 100 includes, for example, a master key storage unit 110, a temporary key generation data storage unit 130, a temporary key generation data update unit 140, a temporary key generation data notification unit 150, and a temporary key generation unit 160. And a temporary key notification unit 170.
  • the master key storage unit 110 uses the storage device 914 to store a master key (first master key).
  • the master key stored in the master key storage unit 110 is data used to generate a temporary key used when the cryptographic communication device 200 performs cryptographic communication with the cryptographic communication device 300.
  • the master key storage unit 110 may be configured to store the master key using, for example, a tamper-resistant storage device 914.
  • the master key stored in the master key storage unit 110 may be configured in advance and cannot be changed. For example, when the master key is suspected to be leaked, the master key can be changed when necessary. It may be.
  • the temporary key generation data storage unit 130 stores the temporary key generation data using the storage device 914. Similar to the master key stored in the master key storage unit 110, the temporary key generation data stored in the temporary key generation data storage unit 130 is data used to generate a temporary key. Even if the same master key is used, if the temporary key generation data is different, different temporary keys are generated.
  • the temporary key generation data update unit 140 uses the processing device 911 to update the temporary key generation data stored in the temporary key generation data storage unit 130. For example, the temporary key generation data update unit 140 repeatedly updates the temporary key generation data stored in the temporary key generation data storage unit 130 every time a predetermined period (for example, one day) elapses. As a result, the generated temporary key changes every time a predetermined period elapses.
  • a predetermined period for example, one day
  • the temporary key generation data may be any data as long as the old and new can be distinguished.
  • the temporary key generation data is data representing a numerical value.
  • the temporary key generation data update unit 140 calculates a sum obtained by adding a predetermined increment value (for example, 1) to the numerical value represented by the temporary key generation data.
  • the temporary key generation data update unit 140 updates the temporary key generation data stored in the temporary key generation data storage unit 130 with data representing the calculated sum.
  • the temporary key generation data storage unit 130 replaces and stores the old temporary key generation data with the updated new temporary key generation data.
  • the new temporary key generation data represents a larger numerical value, it is possible to determine which temporary key generation data is newer by comparing the numerical values represented by the two temporary key generation data.
  • the temporary key generation unit 160 uses the processing device 911 to generate a temporary key (first temporary key).
  • the temporary key generation unit 160 generates a temporary key using the master key stored in the master key storage unit 110 and the temporary key generation data stored in the temporary key generation data storage unit 130.
  • the method by which the temporary key generation unit 160 generates a temporary key may be any method as long as it satisfies the following conditions.
  • the first condition is that the same or similar temporary key is generated if the combination of the master key and the temporary key generation data is the same.
  • the similar temporary keys are a group of temporary keys that can generate a ciphertext that can be decrypted with the same key, or that can decrypt a ciphertext encrypted with the same key.
  • the second condition is that if either the master key or the temporary key generation data is different, a temporary key that is not the same and similar is generated.
  • the ciphertext generated using the temporary key generated using the old temporary key generation data before update can be decrypted, or the old temporary key generation before update can be performed.
  • the ciphertext generated using the temporary key generated using the updated new temporary key generation data cannot be decrypted, or Ciphertext that can be decrypted with the temporary key generated using the new temporary key generation data after the update cannot be generated.
  • the third condition is that the master key cannot be estimated from the temporary key generation data and the temporary key generated using the temporary key generation data. Thereby, leakage of the master key can be prevented.
  • the temporary key generation unit 160 encrypts the temporary key generation data stored in the temporary key generation data storage unit 130 using the master key stored in the master key storage unit 110.
  • the temporary key generation unit 160 uses the encrypted ciphertext as a temporary key.
  • the temporary key generation unit 160 uses a one-way hash function to store the master key stored in the master key storage unit 110 and the temporary key generation data stored in the temporary key generation data storage unit 130.
  • the hash value is calculated using the hash function input.
  • the temporary key generation unit 160 uses the calculated hash value as a temporary key.
  • the temporary key notification unit 170 notifies the encryption communication device 200 of the temporary key generated by the temporary key generation unit 160.
  • the temporary key notification unit 170 uses the communication device 915 to transmit the temporary key generated by the temporary key generation unit 160 to the encryption communication device 200.
  • the system for notifying the temporary key may be any system as long as it can prevent leakage of the temporary key.
  • the temporary key notification unit 170 transmits the temporary key using encrypted communication.
  • the management device 100 and the encryption communication device 200 are directly connected by wire to transmit a temporary key.
  • the temporary key generation data notification unit 150 uses the temporary communication key generation unit 160 to generate temporary key generation data used when the temporary key generation unit 160 generates the temporary key notified by the temporary key notification unit 170 to the encryption communication device 200. 200 is notified.
  • the temporary key generation data notification unit 150 uses the communication device 915 to transmit the temporary key stored in the temporary key generation data storage unit 130 to the encryption communication device 200.
  • the temporary key notified by the temporary key notification unit 170 and the temporary key generation data notified by the temporary key generation data notification unit 150 are used.
  • a configuration may be used in which data is transmitted together as one.
  • FIG. 4 is a block configuration diagram showing an example of functional blocks of the cryptographic communication device 200 according to this embodiment.
  • the encryption communication device 200 (first encryption communication device) includes, for example, a temporary key generation data acquisition unit 220, a temporary key generation data storage unit 230, a temporary key generation data notification unit 250, and a temporary key acquisition unit 260.
  • the temporary key acquisition unit 260 acquires the temporary key (first temporary key) notified from the temporary key notification unit 170 of the management apparatus 100. For example, the temporary key acquisition unit 260 receives the temporary key transmitted by the temporary key notification unit 170 using the communication device 915.
  • the temporary key storage unit 270 stores the temporary key acquired by the temporary key acquisition unit 260 using the storage device 914. In order to prevent leakage of the temporary key, for example, the temporary key acquisition unit 260 may be configured to store the temporary key using a tamper-resistant storage device 914.
  • the temporary key generation data acquisition unit 220 acquires the temporary key generation data notified from the temporary key generation data notification unit 150 of the management apparatus 100. For example, the temporary key generation data acquisition unit 220 receives the temporary key generation data transmitted by the temporary key generation data notification unit 150 using the communication device 915. The temporary key generation data storage unit 230 uses the storage device 914 to store the temporary key generation data acquired by the temporary key generation data acquisition unit 220.
  • the temporary key generation data notification unit 250 notifies the encryption communication device 300 of the temporary key generation data stored in the temporary key generation data storage unit 230. For example, the temporary key generation data notification unit 250 transmits the temporary key generation data stored in the temporary key generation data acquisition unit 220 to the encryption communication device 300 using the communication device 915.
  • the cryptographic communication unit 290 performs cryptographic communication with the cryptographic communication device 300 using the temporary key stored in the temporary key storage unit 270.
  • the cryptographic communication unit 290 uses the processing device 911 to generate a ciphertext using the temporary key stored in the temporary key notification unit 170, and uses the communication device 915 to generate the ciphertext using the cryptographic communication device 300.
  • the cipher communication unit 290 receives the ciphertext transmitted by the cipher communication device 300 using the communication device 915, and uses the processing device 911 to store the ciphertext received by the cipher communication unit 290. Decrypt using.
  • FIG. 5 is a block configuration diagram showing an example of functional blocks of the cryptographic communication device 300 in this embodiment.
  • the cryptographic communication device 300 (second cryptographic communication device) includes, for example, a master key storage unit 310, a temporary key generation data acquisition unit 320, a verification data storage unit 330, a verification data update unit 340, and a temporary key.
  • a generation data verification unit 350, a temporary key generation unit 360, and an encryption communication unit 390 are included.
  • the master key storage unit 310 stores a master key (second master key) using the storage device 914.
  • the master key stored in the master key storage unit 310 is data used to generate a temporary key used when the cryptographic communication device 300 performs cryptographic communication with the cryptographic communication device 200.
  • the master key storage unit 310 may be configured to store the master key using a tamper-resistant storage device 914, for example.
  • the master key stored in the master key storage unit 310 may be configured in advance and cannot be changed. For example, when the master key is suspected to be leaked, the master key can be changed when necessary. It may be.
  • the master key stored in the master key storage unit 310 is combined with the temporary key generation data used by the temporary key generation unit 160 of the management device 100 to generate the temporary key, and the temporary key generated by the temporary key generation unit 160 Any one that can generate the same or a temporary key corresponding to the temporary key may be used.
  • two temporary keys correspond refers to a relationship in which a ciphertext encrypted using one temporary key can be decrypted using the other temporary key.
  • Tro master keys correspond means a relationship in which the same or corresponding temporary key can be generated from two master keys.
  • the master key stored in the master key storage unit 310 may be the same master key as the master key stored in the master key storage unit 110 of the management apparatus 100, or may be a different master key.
  • the master key storage of the management device 100 is determined from the master key stored in the master key storage unit 310.
  • the configuration may be such that the master key stored by the unit 110 cannot be estimated. Then, even if the master key stored in the master key storage unit 310 is leaked, it is possible to prevent the master key stored in the master key storage unit 110 of the management apparatus 100 from being known.
  • the master key storage unit 310 of each encryption communication device 300 may store different master keys.
  • the temporary key generated using the master key stored in the master key storage unit 310 of a certain cryptographic communication device 300 and the master key stored in the master key storage unit 310 of another cryptographic communication device 300 are generated.
  • the configuration may not correspond to the temporary key. Then, even when the master key stored in the master key storage unit 310 of a certain cryptographic communication device 300 is leaked, it is possible to prevent generation of a temporary key that can be used for cryptographic communication with another cryptographic communication device 300. Can do.
  • the verification data storage unit 330 uses the storage device 914 to store verification data.
  • the verification data is data used to verify whether the temporary key generation data notified from the cryptographic communication device 200 is valid.
  • the verification data update unit 340 uses the processing device 911 to update the verification data stored in the verification data storage unit 330. For example, the verification data update unit 340 repeatedly updates the verification data stored in the verification data storage unit 330 every time a predetermined period (for example, one day) elapses.
  • a predetermined period for example, one day
  • the verification data may be any data as long as it can be determined that the old temporary key generation data is invalid.
  • the verification data is data representing a numerical value.
  • the verification data update unit 340 calculates a sum obtained by adding a predetermined increment value (for example, 1) to the numerical value represented by the verification data.
  • the verification data update unit 340 updates the verification data stored in the verification data storage unit 330 with data representing the calculated sum.
  • the verification data storage unit 330 stores the old verification data by replacing it with the updated new verification data.
  • the verification data update unit 340 updates the verification data so that the speed at which the numerical value represented by the verification data increases is substantially the same as the speed at which the numerical value represented by the temporary key generation data increases.
  • the verification data update unit 340 updates the verification data in the same cycle as the temporary key generation data update unit 140 of the management device 100 updates the temporary key generation data, and the temporary key generation data represents The same increment value as the increment value added by the temporary key generation data updating unit 140 of the management apparatus 100 is added to the numeric value to the numeric value represented by the verification data.
  • the verification data update unit 340 updates the verification data in a cycle that is n times the update cycle of the temporary key generation data (n is a positive real number), and the increment value n of the temporary key generation data is n. The double increment value is added to the numerical value represented by the verification data.
  • the temporary key generation data acquisition unit 320 acquires the temporary key generation data notified from the temporary key generation data notification unit 250 of the cryptographic communication device 200. For example, the temporary key generation data acquisition unit 320 receives the temporary key generation data transmitted by the temporary key generation data notification unit 250 using the communication device 915.
  • the temporary key generation data verification unit 350 uses the processing device 911 to verify the temporary key generation data acquired by the temporary key generation data acquisition unit 320.
  • the temporary key generation data verification unit 350 uses the verification data stored in the verification data storage unit 330 to determine whether the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is valid. judge. For example, the temporary key generation data verification unit 350 compares the numerical value represented by the temporary key generation data with the numerical value represented by the verification data. If the numerical value represented by the temporary key generation data is greater than or equal to the numerical value represented by the verification data, the temporary key generation data verification unit 350 determines that the temporary key generation data is valid. If the numerical value represented by the temporary key generation data is smaller than the numerical value represented by the verification data, the temporary key generation data verification unit 350 determines that the temporary key generation data is not valid.
  • the verification data storage unit 330 uses the storage device 914 to enable The temporary key generation data determined by the temporary key generation data verification unit 350 is stored as verification data.
  • the verification data storage unit 330 stores, for example, data representing the minimum value represented by the temporary key generation data as the first verification data.
  • the numerical value represented by the verification data stored in the verification data storage unit 330 is always the numerical value represented by the temporary key generation data stored in the temporary key generation data storage unit 130 of the management apparatus 100. It is as follows. As the verification data update unit 340 updates the verification data stored in the verification data storage unit 330, the numerical value represented by the verification data gradually increases. Further, the temporary key generation data update unit 140 updates the temporary key generation data stored in the temporary key generation data storage unit 130 of the management apparatus 100, so that the numerical value represented by the temporary key generation data gradually increases. .
  • the numerical value represented by the verification data stored in the verification data storage unit 330 is always stored in the temporary key generation data storage unit 130 of the management device 100. Or less than the numerical value represented by the temporary key generation data. Therefore, if the temporary key generation data notifying part 250 notified to the encryption communication apparatus 300 by the temporary key generation data notifying part 250 of the encryption communication apparatus 200 is the latest, the temporary key generation data verification part 350 It is determined that the temporary key generation data acquired by the generation data acquisition unit 320 is valid.
  • the temporary key The generation data verification unit 350 may determine that the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is valid.
  • the temporary key generation data verification unit 350 determines that it is valid. Since the verification data storage unit 330 stores the key generation data as verification data, the temporary key generation data notified by the temporary key generation data notification unit 250 of the cryptographic communication device 200 to the cryptographic communication device 300 is the latest. In this case, at that time, the verification data stored in the verification data storage unit 330 and the temporary key generation data stored in the temporary key generation data storage unit 130 of the management apparatus 100 are the same. That is, the management device 100 and the encryption communication device 300 are synchronized.
  • the temporary key generation data verification unit 350 Does not determine that the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is valid.
  • the management device 100 and the encryption communication device 300 can be easily synchronized.
  • the speed at which the numerical value represented by the verification data stored in the verification data storage unit 330 increases is the management device 100.
  • the temporary key generation data storage unit 130 stores the temporary key generation data, which is slower than the rate at which the numerical value is increased.
  • the temporary key generation data notifying unit 250 of the cryptographic communication device 200 notifies the cryptographic communication device 300 of the latest temporary key generation data
  • the synchronization between the management device 100 and the cryptographic communication device 300 is synchronized. Therefore, the difference between the numerical value represented by the verification data stored in the verification data storage unit 330 and the numerical value represented by the temporary key generation data stored in the temporary key generation data storage unit 130 of the management apparatus 100 increases. Can be prevented.
  • the temporary key generation unit 360 uses the processing device 911 to Is generated.
  • the temporary key generation unit 360 generates a temporary key using the master key stored in the master key storage unit 310 and the temporary key generation data determined by the temporary key generation data verification unit 350 to be valid.
  • the method by which the temporary key generation unit 360 generates a temporary key may be any method as long as it satisfies the following conditions.
  • the first condition is that the same or similar temporary key is generated if the combination of the master key and the temporary key generation data is the same.
  • the second condition is that the master key is a master key that is the same as or corresponds to the master key used by the temporary key generation unit 160 of the management apparatus 100 to generate the temporary key. If the data is the same as the temporary key generation data used by the temporary key generation unit 160 to generate the temporary key, the temporary key that is the same as or corresponds to the temporary key generated by the temporary key generation unit 160 The key is to be generated.
  • a temporary key that is not the same as the temporary key generated by the temporary key generation unit 160 and does not correspond to the temporary key generated by the temporary key generation unit 160 is generated.
  • the third condition is that the temporary key and the master key cannot be inferred from the temporary key generation data and the ciphertext generated using the temporary key generated using the temporary key generation data. Thereby, leakage of a temporary key and a master key can be prevented.
  • the temporary key generation unit 360 uses the master key stored in the master key storage unit 310 to encrypt the temporary key generation data determined by the temporary key generation data verification unit 350 to be valid.
  • the temporary key generation unit 360 uses the encrypted ciphertext as a temporary key.
  • the temporary key generation unit 360 uses a one-way hash function to generate the master key stored in the master key storage unit 310 and the temporary key generation data determined by the temporary key generation data verification unit 350 to be valid.
  • the hash value is calculated using the business data as input of the hash function.
  • the temporary key generation unit 360 uses the calculated hash value as a temporary key.
  • the cryptographic communication unit 390 performs cryptographic communication with the cryptographic communication device 200 using the temporary key generated by the temporary key generation unit 360.
  • the cryptographic communication unit 390 receives the ciphertext transmitted by the cryptographic communication unit 290 of the cryptographic communication device 200 using the communication device 915 and uses the processing device 911 to convert the received ciphertext to the temporary key generation unit. 360 is decrypted using the temporary key generated.
  • the cryptographic communication unit 390 uses the processing device 911 to generate a ciphertext using the temporary key generated by the temporary key generation unit 360, and uses the communication device 915 to convert the generated ciphertext to the cryptographic communication device 200. Send to.
  • the master key stored in the master key storage unit 310 is the same as or corresponding to the master key stored in the master key storage unit 110 of the management apparatus 100.
  • the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is generated when the temporary key generation unit 160 of the management apparatus 100 generates a temporary key that the encryption communication unit 290 of the encryption communication apparatus 200 uses for encryption communication. This is the same data as the temporary key generation data used in the above. Therefore, the temporary key generated by the temporary key generation unit 360 is a temporary key that is the same as or corresponds to the temporary key that the cryptographic communication unit 290 of the cryptographic communication device 200 uses for cryptographic communication. Therefore, the encryption communication unit 390 can decrypt the ciphertext encrypted by the encryption communication unit 290 of the encryption communication device 200, and can generate a ciphertext that can be decrypted by the encryption communication unit 290 of the encryption communication device 200. .
  • a set of temporary key generation data stored in the temporary key generation data storage unit 230 of the encryption communication device 200 and temporary key stored in the temporary key storage unit 270 leaks, and the temporary key generation data and the temporary key are leaked.
  • the verification data update unit 340 updates the verification data stored in the verification data storage unit 330
  • the temporary key generation data obtained by the third party and the temporary key generated using the data are not the latest. .
  • the temporary key generation data verification unit 350 determines that it is not valid. Thereby, it is possible to prevent a third party from performing cryptographic communication with the cryptographic communication device 300.
  • the processes in the cryptographic communication system 800 are roughly divided into an initialization process S601, an update process S602, a temporary key notification process S603, and a cryptographic communication process S604.
  • the management device 100 and the cryptographic communication device 300 initialize a master key, temporary key generation data, verification data, and the like.
  • the management device 100 and the cryptographic communication device 300 periodically update the temporary key generation data and the verification data.
  • the temporary key notification process S603 the management device 100 generates a temporary key and notifies the encrypted communication device 200 of the generated temporary key.
  • the encryption communication processing S604 the encryption communication device 200 and the encryption communication device 300 agree on a temporary key used for encryption communication and perform encryption communication.
  • FIG. 6 is a flowchart showing an example of the flow of the initialization process S601 in this embodiment.
  • the management apparatus 100 executes, for example, a master key storage step S611 and a temporary key generation data initialization step S612.
  • the master key storage unit 110 of the management device 100 acquires a master key.
  • a master key generation device is provided outside the management device 100.
  • the master key storage unit 110 acquires the master key for the management apparatus 100 generated by the master key generation apparatus by communicating with the master key generation apparatus using the communication apparatus 915.
  • a master key generation unit is provided inside the management apparatus 100.
  • the master key storage unit 110 uses the processing device 911 to acquire the master key for the management device 100 generated by the master key generation unit.
  • the master key storage unit 110 uses the storage device 914 to store the acquired master key.
  • the temporary key generation data storage unit 130 of the management apparatus 100 initializes the temporary key generation data. For example, the temporary key generation data storage unit 130 acquires initial data of temporary key generation data. The initial data acquired by the temporary key generation data storage unit 130 represents, for example, the minimum value represented by the temporary key generation data. Using the storage device 914, the temporary key generation data storage unit 130 stores the acquired initial data as temporary key generation data.
  • the cryptographic communication apparatus 300 executes, for example, a master key storage step S631 and a verification data initialization step S632. Note that the cryptographic communication device 300 executes the initialization process S601 regardless of the management device 100. That is, the timing at which the cryptographic communication apparatus 300 executes the initialization process S601 does not have to be the same as the timing at which the management apparatus 100 executes the initialization process S601.
  • the master key storage unit 310 of the encryption communication device 300 is the same as or corresponds to the master key stored in the master key storage unit 110 of the management device 100 in the master key storage step S611.
  • the master key storage unit 310 uses the communication device 915 to communicate with the master key generation device, thereby acquiring the master key for the encryption communication device 300 generated by the master key generation device.
  • the master key storage unit 310 uses the communication device 915 to communicate with the management device 100, thereby acquiring the master key for the encryption communication device 300 generated by the master key generation unit of the management device 100.
  • the master key storage unit 310 uses the storage device 914 to store the acquired master key.
  • the verification data storage unit 330 of the cryptographic communication device 300 initializes the verification data. For example, the verification data storage unit 330 acquires initial data of verification data.
  • the initial data acquired by the verification data storage unit 330 represents, for example, the minimum value of the numerical value represented by the temporary key generation data.
  • the verification data storage unit 330 uses the storage device 914 to store the acquired initial data as verification data.
  • FIG. 7 is a flowchart showing an example of the flow of the update process S602 in this embodiment.
  • the management device 100 executes, for example, a period elapsed determination process S613 and a temporary key generation data update process S614.
  • the temporary key generation data update unit 140 of the management device 100 determines whether or not a predetermined update cycle has elapsed. For example, the temporary key generation data update unit 140 uses the processing device 911 to compare the elapsed time from the previous update with the update cycle, and when the elapsed time is greater than the update cycle, the update cycle has elapsed. It is determined. If it is determined that the update cycle has elapsed, the temporary key generation data update unit 140 proceeds to the temporary key generation data update step S614.
  • the temporary key generation data update unit 140 of the management apparatus 100 updates the temporary key generation data.
  • the temporary key generation data update unit 140 uses the processing device 911 to acquire the temporary key generation data stored in the temporary key generation data storage unit 130.
  • the temporary key generation data update unit 140 calculates a total value obtained by summing up the numerical value represented by the acquired temporary key generation data and a predetermined increment value.
  • the temporary key generation data updating unit 140 updates the temporary key generation data stored in the temporary key generation data storage unit 130 using the data representing the calculated total value.
  • the temporary key generation data storage unit 130 uses the storage device 914 to generate data representing the total value newly calculated by the temporary key generation data update unit 140 instead of the old temporary key generation data. Store as data. Thereafter, the temporary key generation data update unit 140 returns the process to the cycle elapse determination step S613 and waits for the next update cycle to elapse.
  • the cryptographic communication device 300 executes, for example, a cycle elapse determination step S633 and a verification data update step S634.
  • the cryptographic communication device 300 executes the update process S602 regardless of the management device 100. That is, the timing at which the cryptographic communication apparatus 300 executes the update process S602 does not have to be the same as the timing at which the management apparatus 100 executes the update process S602.
  • the verification data update unit 340 of the encryption communication device 300 determines whether or not a predetermined update cycle has elapsed. For example, the verification data update unit 340 compares the elapsed time from the previous update with the update cycle using the processing device 911, and determines that the update cycle has passed if the elapsed time is greater than the update cycle. To do. When it is determined that the update cycle has elapsed, the verification data update unit 340 advances the processing to the verification data update step S634.
  • the verification data update unit 340 of the cryptographic communication device 300 updates the verification data.
  • the verification data update unit 340 uses the processing device 911 to acquire the verification data stored in the verification data storage unit 330.
  • the verification data update unit 340 uses the processing device 911 to calculate a total value obtained by summing the numerical value represented by the acquired verification data and a predetermined increment value.
  • the verification data update unit 340 uses the data representing the calculated total value to update the verification data stored in the verification data storage unit 330.
  • the verification data storage unit 330 stores data representing the total value newly calculated by the verification data update unit 340 as verification data using the storage device 914 instead of the old verification data. Thereafter, the verification data update unit 340 returns the process to the cycle elapse determination step S633 and waits for the next update cycle to elapse.
  • FIG. 8 is a flowchart showing an example of the flow of the temporary key notification processing S603 in this embodiment.
  • the management device 100 executes, for example, a temporary key request reception step S615, a temporary key generation step S616, a temporary key notification step S618, and a temporary key generation data notification step S619. Also, in the temporary key notification process S603, for example, the cryptographic communication apparatus 200 executes a temporary key request process S621, a temporary key acquisition process S622, and a temporary key generation data acquisition process S623.
  • the temporary key acquisition unit 260 of the cryptographic communication device 200 requests the management device 100 for a temporary key.
  • the temporary key acquisition unit 260 uses the communication device 915 to transmit a temporary key request message for requesting a temporary key to the management device 100.
  • the temporary key notifying unit 170 of the management device 100 receives a request from the encryption communication device 200.
  • the temporary key notification unit 170 receives the temporary key request message transmitted by the temporary key acquisition unit 260 of the encryption communication device 200 using the communication device 915.
  • the management device 100 may authenticate the cryptographic communication device 200 in order to confirm whether or not the cryptographic communication device 200 may be notified of the temporary key.
  • the encryption communication device 200 is provided with an authentication information input unit
  • the management device 100 is provided with an authentication information verification unit.
  • the authentication information input unit of the encryption communication device 200 uses the input device 912 to input biometric information such as a user's fingerprint and authentication information such as a password.
  • the processing device 911 uses the processing device 911, the temporary key acquisition unit 260 of the encryption communication device 200 generates a temporary key request message including the authentication information input by the authentication information input unit.
  • the authentication information verification unit of the management device 100 authenticates the cryptographic communication device 200 by using the processing device 911 to verify the authentication information included in the temporary key request message notified from the cryptographic communication device 200.
  • the management apparatus 100 ends the temporary key notification process S603 without executing the subsequent steps. Thereby, it is possible to prevent the management apparatus 100 from notifying the encryption communication apparatus 200 of the temporary key when a person other than the authorized user is operating the encryption communication apparatus 200.
  • the temporary key generation unit 160 of the management device 100 uses the processing device 911 to store the master key stored in the master key storage unit 110 and the temporary key stored in the temporary key generation data storage unit 130. A temporary key is generated based on the generation data.
  • the temporary key notification unit 170 of the management device 100 notifies the encryption communication device 200 of the temporary key generated by the temporary key generation unit 160 in the temporary key generation step S616.
  • the temporary key acquisition step S622 the temporary key acquisition unit 260 of the cryptographic communication device 200 acquires the temporary key notified by the temporary key notification unit 170 of the management device 100 in the temporary key notification step S618.
  • the temporary key storage unit 270 of the encryption communication device 200 stores the temporary key acquired by the temporary key acquisition unit 260 using the storage device 914.
  • the temporary key generation data notification unit 150 of the management device 100 temporarily stores the temporary key notified to the encryption communication device 200 by the temporary key notification unit 170 in the temporary key notification step S618.
  • Temporary key generation data used when the temporary key generation unit 160 generates in the key generation step S616 is notified to the encryption communication device 200.
  • the temporary key generation data acquisition step S623 the temporary key generation data acquisition unit 220 of the cryptographic communication device 200 receives the temporary key notified by the temporary key generation data notification unit 150 of the management device 100 in the temporary key generation data notification step S619. Get key generation data.
  • the temporary key generation data storage unit 230 of the encryption communication device 200 stores the temporary key generation data acquired by the temporary key generation data acquisition unit 220.
  • FIG. 9 is a flowchart showing an example of the flow of the cryptographic communication process S604 in this embodiment.
  • the cryptographic communication device 200 executes, for example, a temporary key generation data notification step S624 and a cryptographic communication step S625. Further, in the cryptographic communication process S604, the cryptographic communication device 300 executes, for example, a temporary key generation data acquisition step S635, a temporary key generation data verification step S636, a temporary key generation step S637, and a cryptographic communication step S638. To do.
  • the temporary key generation data notification unit 250 of the cryptographic communication device 200 notifies the cryptographic communication device 300 of the temporary key generation data stored in the temporary key generation data storage unit 230. To do.
  • the temporary key generation data acquisition step S635 the temporary key generation data acquisition unit 320 of the cryptographic communication device 300 notifies the temporary key generation data notification unit 250 of the cryptographic communication device 200 in the temporary key generation data notification step S624. Get temporary key generation data.
  • the cryptographic communication device 200 includes not only temporary key generation data but also information necessary for starting cryptographic communication with the cryptographic communication device 300 such as identification data and authentication information for identifying the cryptographic communication device 200.
  • the encryption communication device 300 may be notified.
  • the temporary key generation data verification unit 350 of the cryptographic communication device 300 uses the processing device 911 to verify the verification data stored in the verification data storage unit 330 and the temporary key generation data. Based on the temporary key generation data acquired by the data acquisition unit 320, it is determined whether or not the temporary key generation data is valid. If the temporary key generation data verification unit 350 determines that the temporary key generation data is not valid, the cryptographic communication apparatus 300 ends the cryptographic communication process S604 without executing the subsequent steps. When the temporary key generation data verification unit 350 determines that the temporary key generation data is valid, the verification data storage unit 330 uses the storage device 914 to replace the verification data stored so far. The temporary key generation data determined by the temporary key generation data verification unit 350 as valid is stored as new verification data. Thereby, the management apparatus 100 and the encryption communication apparatus 300 are gently synchronized.
  • the cryptographic communication device 300 may be configured to notify the cryptographic communication device 200 of the verification result. Also, the cryptographic communication device 300 transmits not only the verification result but also information necessary for starting cryptographic communication with the cryptographic communication device 200 such as identification data for identifying the cryptographic communication device 300 and authentication information. 200 may be configured to transmit to 200.
  • the temporary key generation unit 360 of the cryptographic communication device 300 uses the processing device 911 and the master key stored in the master key storage unit 310, and the temporary key generation data verification unit 350 that is valid.
  • a temporary key is generated based on the temporary key generation data determined by.
  • the cryptographic communication unit 290 of the cryptographic communication device 200 performs cryptographic communication with the cryptographic communication device 300 using the temporary key stored in the temporary key storage unit 270.
  • the cryptographic communication unit 390 of the cryptographic communication device 300 performs cryptographic communication with the cryptographic communication device 200 using the temporary key generated by the temporary key generation unit 360 in the temporary key generation step S637.
  • the cryptographic communication unit 290 of the cryptographic communication device 200 uses the processing device 911 to generate a ciphertext using the temporary key stored in the temporary key storage unit 270 and uses the communication device 915 to generate the ciphertext generated. Is transmitted to the cryptographic communication apparatus 300.
  • the encryption communication unit 390 of the encryption communication device 300 receives the ciphertext transmitted by the encryption communication device 200 using the communication device 915, and uses the temporary key generated by the temporary key generation unit 360 using the processing device 911. To decrypt the ciphertext. Also, the cryptographic communication unit 390 of the cryptographic communication device 300 uses the processing device 911 to generate a ciphertext using the temporary key generated by the temporary key generation unit 360 and uses the communication device 915 to generate the ciphertext generated. Is transmitted to the cryptographic communication apparatus 200. The encryption communication unit 290 of the encryption communication device 200 receives the ciphertext transmitted by the encryption communication device 300 using the communication device 915 and uses the temporary key stored in the temporary key storage unit 270 using the processing device 911. And decrypts the received ciphertext.
  • the information necessary for starting the encryption communication is encrypted using the agreed temporary key between the encryption communication device 200 and the encryption communication device 300.
  • the structure which communicates may be sufficient.
  • the cryptographic communication device 200 and the cryptographic communication device 300 perform mutual authentication based on the exchanged information.
  • the encryption communication device 200 and the encryption communication device 300 agree on a key to be used for encryption communication based on the exchanged information, and perform encryption communication using the agreed key.
  • the cryptographic communication device 200 when the cryptographic communication device 200 is small and portable, there is a possibility that a legitimate user of the cryptographic communication device 200 loses the cryptographic communication device 200 and a third party picks up the cryptographic communication device 200 and misuses it. is there. If the temporary key stored in the cryptographic communication device 200 picked up by the third party becomes old due to the update of the verification data, the cryptographic communication device 200 performs cryptographic communication with the cryptographic communication device 300. I can't. For this reason, it is possible to prevent information from leaking from the encryption communication device 300.
  • the cryptographic communication apparatus 200 stores a temporary key and temporary key generation data, but does not store a master key. Since the master key cannot be estimated from the temporary key and the temporary key generation data, even if a third party who picks up the cryptographic communication device 200 extracts the temporary key or temporary key generation data from the cryptographic communication device 200 The master key will not be leaked.
  • Embodiment 2 FIG. The second embodiment will be described.
  • symbol is attached
  • the temporary key generation data verification unit 350 determines that the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is valid, and the verification data storage unit 330 determines that the temporary key generation data is valid.
  • the verification data update unit 340 resets the elapsed time from the previous update. That is, the verification data update unit 340 includes a verification data storage unit when an elapsed time after the verification data storage unit 330 stores the temporary key generation data as verification data reaches a predetermined update period. The verification data stored in 330 is updated.
  • the numerical value represented by the verification data stored in the verification data storage unit 330 increases. Is faster than the speed at which the numerical value represented by the temporary key generation data stored in the temporary key generation data storage unit 130 of the management apparatus 100 increases. As it is, in any case, the numerical value represented by the verification data stored in the verification data storage unit 330 is larger than the numerical value represented by the temporary key generation data stored in the temporary key generation data storage unit 130 of the management apparatus 100. Thus, even with the latest temporary key generation data, it is determined that the temporary key generation data verification unit 350 is not valid, so that encrypted communication between the encrypted communication device 200 and the encrypted communication device 300 cannot be performed.
  • the management device 100 stores the temporary key generation data storage unit. A certain amount of time has already passed since the temporary key generation data update unit 140 updates the temporary key generation data stored in 130. Therefore, in the cryptographic communication apparatus 300, if the verification data update unit 340 measures the elapsed time from that time, the next update of the verification data is slower than the update of the temporary key generation data in the management apparatus 100.
  • the verification data storage unit The speed at which the numerical value represented by the verification data stored in 330 is increased can be prevented from becoming faster than the speed at which the numerical value represented by the temporary key generation data stored in the temporary key generation data storage unit 130 is increased.
  • FIG. 3 A third embodiment will be described with reference to FIGS. Note that portions common to the first embodiment or the second embodiment are denoted by the same reference numerals, and description thereof is omitted.
  • FIG. 10 is a diagram showing an example of the overall configuration of the automatic meter reading system 801 in this embodiment.
  • the automatic meter reading system 801 (encryption communication system) includes, for example, a management server 101, a portable terminal 201, and a meter reading meter 301.
  • the meter-reading meter 301 and the portable terminal 201 communicate using the wireless network 802.
  • the portable terminal 201 and the management server 101 communicate using the public network 803.
  • the communication between the portable terminal 201 and the management server 101 uses a secure communication path such as SSL (Secure Socket Layer). Wireless communication and public network communication are not necessarily performed simultaneously. Note that there are usually a plurality of portable terminals 201 and meter-reading meters 301.
  • the hardware configuration of the management server 101, the portable terminal 201, and the meter-reading meter 301 is the same as that of the management device 100, the encryption communication device 200, and the encryption communication device 300 described in the first embodiment, for example.
  • FIG. 11 is a diagram showing an example of functional blocks of the management server 101 in this embodiment.
  • the management server 101 (management device) includes, for example, a master key storage unit 111, a generation number counter 131, and a key information management unit 161.
  • the master key storage unit 111 stores a master key 411 (first master key).
  • the master key 411 is a key used in common key encryption, and the meter-reading meter 301 has the same key.
  • a configuration in which a plurality of meter-reading meters 301 use a common master key may be used, or a configuration in which a different master key is used for each meter-reading meter 301 may be used.
  • the generation number counter 131 (temporary key generation data storage unit) stores a generation number 412 (temporary key generation data).
  • the generation number counter 131 (temporary key generation data update unit) increments the generation number 412 in synchronization with the date.
  • the generation number counter 131 may be configured to increment the generation number 412 every time a certain period (for example, 24 hours) elapses.
  • the key information management unit 161 receives the temporary key issue request 421 from the portable terminal 201.
  • the key information management unit 161 receives the generation number 412 from the generation number counter 131.
  • the key information management unit 161 receives the master key 411 from the master key storage unit 111.
  • the key information management unit 161 (temporary key generation unit) generates a temporary key 413 (first temporary key) from the master key 411 and the generation number 412.
  • the key information management unit 161 (temporary key notification unit / temporary key generation data notification unit) sends the temporary key 413 and the generation number 412 to the portable terminal 201.
  • FIG. 12 is a diagram showing an example of functional blocks of the mobile terminal 201 in this embodiment.
  • the mobile terminal 201 (first cryptographic communication device) includes, for example, a management server communication unit 221, a message generation unit 281 and a meter reading meter communication unit 291.
  • the management server communication unit 221 sends a temporary key issue request 421 to the key information management unit 161 of the management server 101.
  • the management server communication unit 221 may be configured to send a password, biometrics such as a fingerprint, and other authentication information as part of the temporary key issue request 421.
  • the management server communication unit 221 sends the key type information 422 as a temporary key issue request 421.
  • the key type information 422 indicates the type of key to be used. Thereby, when a master key differs for every meter-reading meter 301 etc., a some key can be used properly according to a use.
  • the management server communication unit 221 temporary key acquisition unit / temporary key generation data acquisition unit receives the temporary key 413 and the generation number 412 from the management server 101.
  • the pair management server communication unit 221 passes the received temporary key 413 and the generation number 412 to the pair meter reading meter communication unit 291.
  • the message generation unit 281 generates a message 423 for the meter-reading meter 301.
  • the meter reading meter communication unit 291 communicates with the meter reading meter 301.
  • the meter reading meter communication unit 291 receives the message 423 generated by the message generation unit 281.
  • the meter reading meter communication unit 291 encrypts the message 423 with the temporary key 413.
  • the meter reading meter communication unit 291 generates a message identifier.
  • the meter reading meter communication unit 291 generates an encrypted message 424 by concatenating the ciphertext obtained by encrypting the message 423, the message identifier, and the generation number 412.
  • the meter reading meter communication unit 291 (temporary key generation data notification unit / encrypted communication unit) sends the encrypted message 424 to the meter reading meter 301.
  • the meter reading meter communication unit 291 (encrypted communication unit) receives the encrypted response 434 from the meter reading meter 301.
  • the meter reading meter communication unit 291 decrypts the encrypted response 434 with the temporary key 4
  • FIG. 13 is a diagram showing an example of functional blocks of the meter-reading meter 301 in this embodiment.
  • the meter-reading meter 301 (second encryption communication device) includes, for example, a master key storage unit 311, a generation number counter 331, a message processing unit 381, and a portable terminal communication unit 391.
  • the master key storage unit 311 stores a master key 431 (second master key).
  • the generation number counter 331 (verification data storage unit) stores a generation number 432 (verification data).
  • the generation number counter 331 (verification data update unit) increments the generation number 432 in synchronization with the date.
  • the generation number counter 331 may be configured to increment the generation number 432 every time a certain period (for example, 24 hours) elapses.
  • the mobile terminal communication unit 391 communicates with the mobile terminal 201.
  • the mobile terminal communication unit 391 temporary key generation data acquisition unit
  • receives the encrypted message 424 The mobile terminal communication unit 391 acquires the generation number 432 from the generation number counter 331.
  • the mobile terminal communication unit 391 (temporary key generation data verification unit) compares the generation number 432 with the generation number 412 included in the encrypted message 424. When the generation number 432 is newer than the generation number 412, the mobile terminal communication unit 391 discards the encrypted message 424 and sends an error message to the mobile terminal 201 as the encrypted response 434.
  • the mobile terminal communication unit 391 acquires the master key 431 from the master key storage unit 311.
  • the mobile terminal communication unit 391 temporary key generation unit
  • the mobile terminal communication unit 391 generates a temporary key (second temporary key) from the generation number 412 and the master key 431.
  • the mobile terminal communication unit 391 generates the same key as the temporary key 413.
  • the mobile terminal communication unit 391 (encryption communication unit) decrypts the encrypted message 424 with the generated temporary key and reproduces the message 423.
  • the mobile terminal communication unit 391 verifies the reproduced message 423. If the verification is successful, the mobile terminal communication unit 391 sends a message 423 to the message processing unit 381.
  • the generation number 432 is older than the generation number 412
  • the mobile terminal communication unit 391 overwrites the generation number 412 on the generation number counter 331.
  • the mobile terminal communication unit 391 receives the response 433 generated by the message processing unit 381.
  • the mobile terminal communication unit 391 acquires the generation number 432 from the generation number counter 331.
  • the mobile terminal communication unit 391 acquires the master key 431 from the master key storage unit 311.
  • the mobile terminal communication unit 391 temporary key generation unit
  • the mobile terminal communication unit 391 (temporary key generation unit) generates a temporary key (second temporary key) from the generation number 432 and the master key 431.
  • the mobile terminal communication unit 391 (encryption communication unit) encrypts the response 433.
  • the mobile terminal communication unit 391 generates a message authenticator.
  • the mobile terminal communication unit 391 generates an encryption response 434.
  • the mobile terminal communication unit 391 sends the encryption response 434 to the meter reading meter communication unit 291 of the mobile terminal 201.
  • the message processing unit 381 processes the message 423 decoded by the meter reading meter communication unit 291 and generates a response 433.
  • the message processing unit 381 sends a response 433 to the mobile terminal communication unit 391.
  • FIG. 14 is a diagram showing an example of detailed functional blocks of the key information management unit 161 in the management server 101 of this embodiment.
  • the key information management unit 161 includes, for example, an authentication unit 162, a master key selection unit 163, a temporary key generation unit 164, and an output determination unit 171.
  • the authentication unit 162 receives the temporary key issue request 421 from the mobile terminal 201 (to the management server communication unit 221). The authentication unit 162 determines whether to process the temporary key issue request 421 based on the authentication information included in the temporary key issue request 421. For example, the authentication unit 162 authenticates the sender based on the authentication information. When it is determined not to process the temporary key issue request 421, the authentication unit 162 outputs an output determination signal 414 indicating that the key is not output to the output determination unit 171. When it is determined to process the temporary key issue request 421, the authentication unit 162 separates the key type information 422 from the temporary key issue request 421. The authentication unit 162 passes the key type information 422 to the master key selection unit 163. If authentication is not performed, the authentication unit 162 may not be provided.
  • the authentication unit 162 selects the master key 411 to be used for temporary key generation from the plurality of master keys 411 stored in the master key storage unit 111 based on the key type information 422.
  • the master key selection unit 163 outputs an output determination signal 414 indicating that no key is output. Is output to the output determination unit 171.
  • the master key selection unit 163 may not be provided.
  • the temporary key generation unit 164 acquires the master key 411 selected by the master key selection unit 163 and the generation number 412 stored by the generation number counter 131.
  • the temporary key generation unit 164 generates a temporary key 413 based on the master key 411 and the generation number 412. For example, the temporary key generation unit 164 generates, as the temporary key 413, data obtained by encrypting the generation number 412 with the master key 411 by a predetermined encryption method.
  • the temporary key generation unit 164 generates a hash value as a temporary key 413 using a keyed hash function with the generation number 412 and the master key 411 as inputs.
  • the key generation method used by the temporary key generation unit 164 to generate the temporary key 413 is that the temporary key 413 is uniquely generated from the generation number 412 and the master key 411, and that the temporary key 413 and the generation number 412 Therefore, it is necessary that the master key 411 is not estimated.
  • the generation number counter 131 has a generation number 412. After a certain period (for example, one day), the generation number counter 131 increments the generation number 412 by one.
  • the output determination unit 171 determines whether to output the temporary key 413 and the generation number 412 generated by the temporary key generation unit 164.
  • the output determination unit 171 does not output the temporary key 413 and the generation number 412. Instead, the output determination unit 171 may be configured to output a predetermined error code to the mobile terminal 201 (to the management server communication unit 221).
  • the output determination unit 171 sends the temporary key 413 and the generation number 412 to the portable terminal 201 (to the management server communication unit). 221).
  • FIG. 15 is a diagram illustrating an example of detailed functional blocks of the management server communication unit 221 in the portable terminal 201 according to this embodiment.
  • the management server communication unit 221 includes, for example, a temporary key issue request generation unit 222 and a temporary key information acquisition unit 223.
  • the temporary key issue request generation unit 222 receives key type information 422 and authentication information 425 from the input device 912.
  • the input device 912 is a character string input device such as a keyboard, for example.
  • the input device 912 is a device that acquires biometric information such as a fingerprint reader.
  • the temporary key issue request generator 222 stores the key type information 422 in a predetermined storage area of the storage device 914.
  • the temporary key issue request generator 222 generates a temporary key issue request 421 based on the acquired authentication information 425 and key type information 422.
  • the temporary key issue request 421 generated by the temporary key issue request generator 222 includes authentication information 425 and key type information 422.
  • the temporary key issue request generation unit 222 sends a temporary key issue request 421 to the management server 101 (key information management unit 161).
  • the temporary key issuance request generation unit 222 may be configured not to acquire the authentication information 425. In that case, the temporary key issue request 421 may be configured not to include the authentication information 425.
  • the temporary key issue request generation unit 222 may be configured not to acquire the key type information 422 from the input device 912. In this case, the temporary key issue request generation unit 222 may be configured to generate the key type information 422 internally. Alternatively, the temporary key issue request 421 may be configured not to include the key type information 422.
  • the temporary key issue request generation unit 222 When a response to the temporary key issue request 421 is received from the management server 101, the temporary key issue request generation unit 222 sends the key type information 422 to the counter meter communication unit 291.
  • the temporary key information acquisition unit 223 receives the temporary key 413 and the generation number 412 from the management server 101.
  • the temporary key information acquisition unit 223 sends the temporary key 413 and the generation number 412 to the counter meter communication unit 291.
  • FIG. 16 is a diagram illustrating an example of detailed functional blocks of the meter reading meter communication unit 291 in the portable terminal 201 of this embodiment.
  • the meter reading meter communication unit 291 includes, for example, an encryption unit 292, a multiplexing unit 293, a separation unit 294, a decryption unit 295, and a reception determination unit 296.
  • the message generation unit 281 generates a message 423 to be transmitted to the mobile terminal 201.
  • the message generation unit 281 sends the message 423 to the encryption unit 292.
  • the encryption unit 292 receives the temporary key 413 from the management server communication unit 221.
  • the encryption unit 292 encrypts the message 423 with the temporary key 413.
  • the encryption unit 292 generates a message authenticator.
  • the encryption unit 292 generates the ciphertext 426.
  • the ciphertext 426 includes a ciphertext body obtained by encrypting the message 423 and a message authenticator.
  • the encryption unit 292 executes common key encryption such as AES (Advanced Encryption Standard) and TDES (Triple Data Encryption Standard) in a predetermined usage mode, and encrypts the message 423.
  • AES Advanced Encryption Standard
  • TDES Triple Data Encryption Standard
  • the encryption unit 292 executes a common key encryption such as AES or TDES in a predetermined usage mode to generate a message authenticator.
  • the encryption unit 292 executes a keyed cryptographic hash or the like to generate a message authenticator.
  • the multiplexing unit 293 receives the key type information 422 and the key type information 422 from the management server communication unit 221.
  • the multiplexing unit 293 generates the encrypted message 424 by multiplexing the key type information 422, the generation number 412 and the ciphertext 426.
  • the multiplexing unit 293 (temporary key generation data notification unit, encryption communication unit) sends the encrypted message 424 to the portable terminal 201 (counter meter communication unit 291).
  • the separation unit 294 receives the encrypted response 434 from the mobile terminal 201 (the meter reading meter communication unit 291). The separation unit 294 separates the encrypted response 434 into the ciphertext 436 and the generation number 432.
  • the decryption unit 295 receives the temporary key 413 from the management server communication unit 221.
  • the decryption unit 295 decrypts the ciphertext 436 using the temporary key 413 and generates a response 433.
  • the decryption unit 295 decrypts the ciphertext 436 using a decryption method corresponding to the encryption method used by the portable terminal communication unit 391 in the meter-reading meter 301.
  • the decryption unit 295 performs message verification of the ciphertext 436 and generates a verification result 427.
  • the decryption unit 295 verifies the ciphertext 436 using a verification method corresponding to the message authenticator generation method used by the portable terminal communication unit 391 in the meter-reading meter 301.
  • the decryption unit 295 outputs the response 433 and the verification result 427.
  • the reception determination unit 296 receives the generation number 412 from the management server communication unit 221.
  • the reception determination unit 296 performs output determination based on the generation number 412, the generation number 432, and the verification result 427. Judgment criteria are as follows. When the decryption unit 295 fails in message verification, the response 433 is not output. If the generation number 432 is older than the generation number 412, the response 433 is not output. If the decryption unit 295 succeeds in message verification and the generation number 432 is the same as or newer than the generation number 412, a response 433 is output. In the case of the determination result that the response 433 is output, the reception determination unit 296 outputs the response 433 to the message generation unit 281.
  • FIG. 17 is a diagram illustrating an example of detailed functional blocks of the portable terminal communication unit 391 in the meter-reading meter 301 according to this embodiment.
  • the mobile terminal communication unit 391 includes, for example, a master key selection unit 363, a temporary key generation unit 364, an encryption unit 392, a multiplexing unit 393, a separation unit 394, a decryption unit 395, and a reception determination unit 396. And have.
  • the separating unit 394 receives the encrypted message 424 from the portable terminal 201 (the meter reading meter communication unit 291). The separation unit 394 separates the encrypted message 424 into key type information 422, ciphertext 426, and generation number 412.
  • the master key selection unit 363 selects a master key 431 used for generating the temporary key 435 from among the plurality of master keys 431 stored in the master key storage unit 311.
  • the temporary key generation unit 364 generates a temporary key 435 from the master key 431 selected by the master key selection unit 363 and the generation number 412.
  • the temporary key generation unit 364 generates the temporary key 435 by the same temporary key generation method as the temporary key generation unit 164 of the key information management unit 161 in the management server 101.
  • the decryption unit 395 decrypts the ciphertext 426 using the temporary key 435 and generates a message 423.
  • the decryption unit 395 decrypts the ciphertext 426 using a decryption method corresponding to the encryption method used by the encryption unit 292 of the meter reading meter communication unit 291 in the portable terminal 201.
  • the decryption unit 395 performs message verification of the ciphertext 426 and generates a verification result 437.
  • the decryption unit 395 verifies the ciphertext 426 using a verification method corresponding to the message authenticator generation method used by the encryption unit 292 of the meter reading meter communication unit 291 in the portable terminal 201.
  • the decryption unit 395 outputs the ciphertext 426 and the verification result 437.
  • the reception determination unit 396 acquires the generation number 432 from the generation number counter 331.
  • the reception determination unit 396 performs output determination based on the generation number 432, the generation number 412, and the verification result 437. Judgment criteria are as follows. If the decryption unit 395 fails in message verification, the message 423 is not output. If the generation number 412 is older than the generation number 432, the message 423 is not output. When the decryption unit 395 succeeds in the message verification and the generation number 412 is the same as the generation number 432 or is newer than the generation number 432, the message 423 is output. If it is determined that the message 423 is to be output, the reception determination unit 396 outputs the message 423 to the message processing unit 381. If the message verification is successful and the generation number 412 is newer than the generation number 432, the reception determination unit 396 rewrites the value stored in the generation number counter 331 to the generation number 412.
  • the generation number counter 331 increases the generation number 432 held by one when a certain period (for example, one day) has elapsed since the generation number 432 to be held is changed.
  • the encryption unit 392 receives the response 433 from the message processing unit 381.
  • the encryption unit 392 encrypts the response 433 using the temporary key 435. Further, the encryption unit 392 generates a message authenticator.
  • the encryption unit 392 generates the ciphertext 436. For example, the encryption unit 392 generates the ciphertext 436 using the same encryption method and message authenticator generation method as the encryption unit 292 of the meter reading meter communication unit 291 in the portable terminal 201.
  • the multiplexing unit 393 multiplexes the key type information 422, the generation number 432, and the ciphertext 436 to generate an encryption response 434.
  • the multiplexing unit 393 sends the encryption response 434 to the portable terminal 201 (counter meter communication unit 291).
  • FIG. 18 is a flowchart showing an example of the flow of the temporary key notification processing S603 in this embodiment.
  • the temporary key notification processing S603 includes, for example, a temporary key issue request generation step S641, an authentication step S642, a master key selection step S643, a temporary key generation step S644, an output step S645, and a temporary key information acquisition step S646. Have.
  • the temporary key issue request generation unit 222 of the mobile terminal 201 generates a temporary key issue request 421.
  • the temporary key issue request generation unit 222 transmits a temporary key issue request 421 to the management server 101 (key information management unit 161).
  • the authentication unit 162 of the management server 101 receives the temporary key issue request 421.
  • the authentication unit 162 verifies the temporary key issue request 421. If the verification fails, the authentication unit 162 ends the temporary key notification process S603. If the verification is successful, the authentication unit 162 separates the key type information 422 from the temporary key issuance request 421 and proceeds to the master key selection step S643.
  • the master key selection unit 163 of the management server 101 selects the master key 411 based on the key type information 422. If the key type information 422 is invalid, the master key selection unit 163 ends the temporary key notification process S603. If the key type information 422 is correct, the master key selection unit 163 advances the process to the temporary key generation step S644. In the temporary key generation step S 644, the temporary key generation unit 164 of the management server 101 generates a temporary key 413 based on the master key 411 and the generation number 412. In the output step S645, the output determination unit 171 of the management server 101 transmits the temporary key 413 and the generation number 412 to the mobile terminal 201 (to the management server communication unit 221).
  • the temporary key information acquisition unit 223 of the mobile terminal 201 receives the temporary key 413 and the generation number 412.
  • the temporary key information acquisition unit 223 outputs the temporary key 413 and the generation number 412 to the counter meter reading unit 291.
  • the temporary key issue request generation unit 222 outputs the key type information 422 to the meter reading meter communication unit 291. At this time, communication between the management server 101 and the mobile terminal 201 may be disconnected.
  • FIG. 19 is a flowchart showing an example of the flow of the cryptographic communication processing S604 in this embodiment.
  • the encryption communication processing S604 includes, for example, an encryption step S651, a multiplexing step S652, a separation step S653, a master key selection step S654, a temporary key generation step S655, a decryption step S656, and a reception determination step S657. It includes a message processing step S660, a master key selection step S671, a temporary key generation step S672, an encryption step S673, a multiplexing step S674, a separation step S675, a decryption step S676, and a reception determination step S677.
  • the encryption unit 292 of the mobile terminal 201 encrypts the message 423 using the temporary key 413 and generates a ciphertext 426.
  • the multiplexing unit 293 of the mobile terminal 201 multiplexes the ciphertext 426, the generation number 412 and the key type information 422 to generate an encrypted message 424.
  • the multiplexing unit 293 transmits the encrypted message 424 to the meter-reading meter 301 (for the portable terminal communication unit 391).
  • the separation unit 394 of the meter-reading meter 301 receives the encrypted message 424.
  • the separation unit 394 separates the encrypted message 424 into a ciphertext 426, a generation number 412 and key type information 422.
  • the master key selection unit 363 of the meter-reading meter 301 selects the master key 431 based on the key type information 422.
  • the master key selection unit 363 stores key type information 422.
  • the temporary key generation step S655 the temporary key generation unit 364 of the meter-reading meter 301 generates a temporary key 435 based on the master key 431 and the generation number 412.
  • the decryption unit 395 of the meter-reading meter 301 decrypts the ciphertext 426 using the temporary key 435, and generates a message 423 and a verification result 437.
  • the reception determination step S657 the reception determination unit 396 of the meter-reading meter 301 determines whether to output the message 423 based on the generation number 412, the generation number 432, and the verification result 437. When it is determined that the message 423 is not output, the reception determination unit 396 ends the encryption communication process S604. When it is determined that the message 423 is output, the reception determination unit 396 outputs the message 423.
  • the generation number counter 331 stores the generation number 412.
  • the message processing unit 381 of the meter-reading meter 301 processes the message 423 and generates a response 433.
  • the master key selection step S671 the master key selection unit 363 of the meter-reading meter 301 selects the master key 431 based on the stored key type information 422.
  • the master key selection unit 363 outputs the selected master key 431 and key type information 422.
  • the temporary key generation step S672 the temporary key generation unit 364 of the meter-reading meter 301 generates a temporary key 435 based on the master key 431 and the generation number 432.
  • the temporary key 435 generated by the temporary key generation unit 364 in the temporary key generation step S672 is the same as the temporary key 435 generated by the temporary key generation unit 364 in the temporary key generation step S655.
  • the encryption unit 392 of the meter-reading meter 301 encrypts the response 433 using the temporary key 435 generated by the temporary key generation unit 364 in the temporary key generation step S672, and generates a ciphertext 436.
  • the encryption unit 392 may be configured to encrypt the response 433 using the temporary key 435 generated by the temporary key generation unit 364 in the temporary key generation step S655. In that case, the master key selection step S671 and the temporary key generation step S672 may be omitted.
  • the multiplexing unit 393 of the meter-reading meter 301 multiplexes the ciphertext 436, the generation number 432, and the key type information 422, and generates an encrypted response 434.
  • the multiplexing unit 393 transmits the encryption response 434 to the mobile terminal 201 (the meter reading meter communication unit 291).
  • the separation unit 294 of the mobile terminal 201 receives the encryption response 434.
  • the separation unit 294 separates the encrypted response 434 into the ciphertext 436 and the generation number 432.
  • the decryption unit 295 of the mobile terminal 201 decrypts the ciphertext 436 and generates a response 433 and a verification result 427.
  • the reception determination unit 296 of the mobile terminal 201 determines whether to output the response 433 based on the generation number 432, the generation number 412, and the verification result 427. When it is determined that the response 433 is output, the reception determination unit 296 outputs the response 433 to the message generation unit 281.
  • the communication device (portable terminal 201, meter-reading meter 301) in this embodiment communicates using the encryption key temporarily generated in the common key encryption communication.
  • the communication device holds a master key shared between the devices in advance and a counter that monotonously increases over a certain period, obtains a counter value from the counter, and generates a temporary key from the master key and the counter value
  • the message authenticator is generated for a predetermined message using the temporary key, and the counter value, the message, and the message authenticator are transmitted.
  • the communication device acquires the temporary key and the counter value from a predetermined server (management server 101) via a public network, generates a message authenticator for a predetermined message with the temporary key, The counter value, the message, and the message authenticator are transmitted.
  • the communication device (mobile terminal 201, meter-reading meter 301) encrypts the message with the temporary key.
  • the communication device receives a message transmitted by another communication device.
  • the communication device holds a master key shared between devices in advance and a counter that monotonously increases in a certain period, generates a temporary key from the master key and the received counter value, performs verification of the received message, If the message verification is successful and the received counter value is the same or newer than the counter value acquired from the counter, the message is accepted.
  • the communication device (meter reading meter 301) updates the value of the previous period counter to the received counter value.
  • the automatic meter reading system 801 (encryption communication system) in this embodiment generates a temporary key from a master key and a generation number and uses it for encryption. Since the generation number is updated at regular intervals, the temporary key can also be updated. Therefore, even if the key leaks from the mobile terminal, it can be invalidated after a certain period.
  • the mobile terminal communication unit on the receiving side compares the generated generation number with the generation number held by itself. Therefore, even if the temporary key is leaked, the temporary key cannot be used when the generation number corresponding to the temporary key becomes invalid.
  • the portable terminal communication unit in the meter-reading meter succeeds in the message verification, and if the generation number held by the portable terminal is older than the sent generation number, it synchronizes the generation number to rewrite its own generation number. be able to. Since message verification is performed, even if an attacker sends an arbitrary generation number, fraud can be detected.
  • Embodiment 4 will be described with reference to FIGS. 20 to 24.
  • FIG. 20 is a system configuration diagram showing an example of the overall configuration of the cryptographic communication system 800 in this embodiment.
  • the cryptographic communication system 800 includes a plurality of cryptographic communication devices 500.
  • the plurality of cryptographic communication devices 500 perform cryptographic communication with each other.
  • the hardware configuration of the cryptographic communication device 500 is, for example, the same as that of the management device 100, the cryptographic communication device 200, and the cryptographic communication device 300 described in the first embodiment.
  • FIG. 21 is a system configuration diagram showing an example of the overall configuration of the cryptographic communication device 500 according to this embodiment.
  • the cryptographic communication device 500 includes, for example, a management unit 102, a communication unit 202, and a verification unit 302.
  • the management unit 102 (management device) manages a master key and temporary key generation data, and generates a temporary key.
  • the management unit 102 includes, for example, a master key storage unit 110, a temporary key generation data storage unit 130, a temporary key generation data update unit 140, and a temporary key generation unit 160.
  • the master key storage unit 110 uses the storage device 914 to store a master key. In the plurality of cryptographic communication devices 500, the master keys stored in the master key storage unit 110 are all the same.
  • the temporary key generation data storage unit 130 uses the storage device 914 to store temporary key generation data. In the plurality of cryptographic communication devices 500, the temporary key generation data stored in the temporary key generation data storage unit 130 is not necessarily the same.
  • the temporary key generation data update unit 140 repeatedly updates the temporary key generation data stored in the temporary key generation data storage unit 130 every time a predetermined period elapses.
  • the temporary key generation unit 160 generates a temporary key using the processing device 911.
  • the temporary key generation unit 160 generates a temporary key using the master key stored in the master key storage unit 110 and the temporary key generation data stored in the temporary key generation data storage unit 130.
  • the communication unit 202 (first encryption communication device) notifies the other encryption communication device 500 of temporary key generation data used by the management unit 102 to generate a temporary key, and the management unit 102 generates the temporary key generation data.
  • Cryptographic communication is performed with another cryptographic communication device 500 using the temporary key.
  • the communication unit 202 includes, for example, a temporary key generation data notification unit 250 and an encryption communication unit 290.
  • the temporary key generation data notification unit 250 notifies the other encryption communication apparatus 500 of the temporary key generation data stored in the temporary key generation data storage unit 130.
  • the temporary key generation data notifying unit 250 uses the communication device 915 to transmit temporary key generation data to the other encryption communication device 500.
  • the cryptographic communication unit 290 performs cryptographic communication with another cryptographic communication device 500 using the temporary key generated by the temporary key generation unit 160.
  • the cryptographic communication unit 290 uses the processing device 911 to generate a ciphertext encrypted using the temporary key generated by the temporary key generation unit 160, and uses the communication device 915 to generate another encrypted communication device 500. Send to.
  • the cryptographic communication unit 290 receives the ciphertext transmitted by the other cryptographic communication device 500 using the communication device 915, and uses the temporary key generated by the temporary key generation unit 160 using the processing device 911. Decrypt the received ciphertext.
  • the verification unit 302 verifies the temporary key generation data notified from the other cryptographic communication device 500.
  • the verification unit 302 includes, for example, a temporary key generation data acquisition unit 320 and a temporary key generation data verification unit 350.
  • the temporary key generation data acquisition unit 320 acquires temporary key generation data notified from the other encryption communication device 500.
  • the temporary key generation data acquisition unit 320 uses the communication device 915 to receive temporary key generation data transmitted by another encryption communication device 500.
  • the temporary key generation data verification unit 350 uses the processing device 911 to determine whether or not the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is valid.
  • the temporary key generation data verification unit 350 uses the temporary key generation data (verification data) stored in the temporary key generation data storage unit 130 (verification data storage unit). It is determined whether the temporary key generation data acquired by is valid.
  • the temporary key generation data verification unit 350 compares the temporary key generation data stored in the temporary key generation data storage unit 130 with the temporary key generation data acquired by the temporary key generation data acquisition unit 320. Determine which is newer. When the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is older than the temporary key generation data stored in the temporary key generation data storage unit 130, the temporary key generation data verification unit 350 It is determined that the temporary key generation data acquired by the generation data acquisition unit 320 is not valid. When the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is newer than the temporary key generation data stored in the temporary key generation data storage unit 130, the temporary key generation data verification unit 350 It is determined that the temporary key generation data acquired by the generation data acquisition unit 320 is valid. In addition, even when the temporary key generation data acquired by and the temporary key generation data stored in the temporary key generation data storage unit 130 are the same new, the temporary key generation data verification unit 350 It is determined that the temporary key generation data acquired by the generation data acquisition unit 320 is valid.
  • the temporary key generation data is data representing a numerical value
  • the temporary key generation data update unit 140 receives the temporary key generation data storage unit 130 every time a predetermined period elapses. Is calculated by adding a predetermined increment value to the numerical value represented by the temporary key generation data stored.
  • the temporary key generation data update unit 140 updates the temporary key generation data stored in the temporary key generation data storage unit 130 with data representing the calculated sum.
  • the temporary key generation data storage unit 130 stores updated new temporary key generation data in place of the old temporary key generation data stored so far.
  • Temporary key generation data verification unit 350 includes a numerical value represented by temporary key generation data acquired by temporary key generation data acquisition unit 320 and a numerical value represented by temporary key generation data stored by temporary key generation data storage unit 130. And the larger value is judged to be newer.
  • the temporary key generation data storage unit 130 stores the data so far. Instead of the old temporary key generation data, the temporary key generation data determined by the temporary key generation data verification unit 350 to be valid is stored.
  • the temporary key generation unit 160 generates a temporary key based on the updated temporary key generation data.
  • the encryption communication unit 290 uses the temporary key generated by the temporary key generation unit 160 based on the updated temporary key generation data, and communicates with the other encryption communication device 500 that has notified the temporary key generation data. Encrypt communication.
  • the processes in the cryptographic communication system 800 are roughly classified into an initialization process S601, an update process S602, and a cryptographic communication process S604.
  • the initialization process S601 the cryptographic communication device 500 initializes a master key, temporary key generation data, and the like.
  • the update process S602 the cryptographic communication device 500 periodically updates the temporary key generation data.
  • cryptographic communication processing S604 the cryptographic communication device 500 agrees with the other cryptographic communication device 500 on a temporary key used for cryptographic communication, and performs cryptographic communication.
  • FIG. 22 is a flowchart showing an example of the flow of the initialization process S601 in this embodiment.
  • the cryptographic communication device 500 executes, for example, a master key storage step S611 and a temporary key generation data initialization step S612. Note that the timings at which the plurality of cryptographic communication devices 500 execute the initialization process S601 need not be the same.
  • the master key storage unit 110 of the cryptographic communication device 500 acquires a master key.
  • the master key storage unit 110 uses the storage device 914 to store the acquired master key.
  • the temporary key generation data storage unit 130 of the cryptographic communication device 500 initializes the temporary key generation data.
  • FIG. 23 is a flowchart showing an example of the flow of the update process S602 in this embodiment.
  • the cryptographic communication device 500 executes, for example, a cycle elapse determination step S613 and a temporary key generation data update step S614.
  • the temporary key generation data update unit 140 of the cryptographic communication device 500 determines whether or not a predetermined update cycle has elapsed. If it is determined that the update cycle has elapsed, the temporary key generation data update unit 140 proceeds to the temporary key generation data update step S614.
  • the temporary key generation data update unit 140 of the cryptographic communication device 500 updates the temporary key generation data. Thereafter, the temporary key generation data update unit 140 returns the process to the cycle elapse determination step S613 and waits for the next update cycle to elapse.
  • the temporary key generation data update unit 140 may be configured to determine whether or not the update cycle has elapsed from the previous update time by the temporary key generation data update unit 140. If the temporary key generation data storage unit 130 stores the temporary key generation data determined by the temporary key generation data verification unit 350 to be valid after the update, has the update cycle elapsed since that point? It may be configured to determine whether or not.
  • FIG. 24 is a flowchart showing an example of the flow of the cryptographic communication processing S604 in this embodiment.
  • the cryptographic communication device 500 on the side that actively starts cryptographic communication includes a temporary key generation step S616, a temporary key generation data notification step S624, and a cryptographic communication process S604.
  • a temporary key generation data acquisition step S635b, a temporary key generation data verification step S636b, a temporary key generation step S637b, and an encryption communication step S625 are executed.
  • the encryption communication device 500 on the side that passively performs encryption communication (hereinafter referred to as “incoming call side”) performs temporary key generation in encryption communication processing S604.
  • a data acquisition step S635, a temporary key generation data verification step S636, a temporary key generation step S616b, a temporary key generation data notification step S624b, a temporary key generation step S637, and an encryption communication step S638 are executed.
  • the temporary key generation unit 160 of the calling-side cryptographic communication device 500 generates the master key stored in the master key storage unit 110 and the temporary key generation data stored in the temporary key generation data storage unit 130. Based on the data, a temporary key is generated.
  • the temporary key generation data notification unit 250 of the calling-side encryption communication device 500 is the temporary key used by the temporary key generation unit 160 to generate a temporary key in the temporary key generation step S616.
  • the generation data is notified to the encryption communication device 500 on the called side.
  • the temporary key generation data acquisition step S635 the temporary key generation data acquisition unit 320 of the called encryption communication device 500 acquires the temporary key notified from the calling encryption communication device 500.
  • the temporary key generation data verification unit 350 of the called-side encryption communication device 500 temporarily stores the temporary key generation data stored in the temporary key generation data storage unit 130 based on the temporary key generation data. It is determined whether or not the temporary key generation data acquired by the temporary key generation data acquisition unit 320 in the key generation data acquisition step S635 is valid. If the temporary key generation data verification unit 350 determines that the temporary key generation data is valid, the temporary key generation data storage unit 130 of the called-side encryption communication device 500 determines that the temporary key generation data is valid. The temporary key generation data determined by the data verification unit 350 is stored as new temporary key generation data. The called-side encryption communication device 500 proceeds to the temporary key generation step S637. When the temporary key generation data verification unit 350 determines that the temporary key generation data is not valid, the called-side encryption communication device 500 updates the temporary key generation data stored in the temporary key generation data storage unit 130. Without proceeding, the process proceeds to the temporary key generation step S616b.
  • the temporary key generation unit 160 of the called-side encryption communication device 500 stores the master key stored in the master key storage unit 110 and the temporary key generation data verification step S636.
  • the unit 130 generates a temporary key based on the temporary key generation data newly stored.
  • the temporary key generated by the temporary key generation unit 160 of the called-side encryption communication device 500 in the temporary key generation step S637 is generated by the temporary key generation unit 160 of the calling-side encryption communication device 500 in the temporary key generation step S616.
  • the temporary key is the same as or corresponding to the temporary key.
  • the called-side encryption communication device 500 proceeds to the encryption communication step S638.
  • the temporary key generation unit 160 of the called-side encryption communication device 500 includes the master key stored in the master key storage unit 110 and the temporary key originally stored in the temporary key generation data storage unit 130.
  • a temporary key is generated based on the key generation data.
  • the temporary key generation data notification unit 250 of the called-side encryption communication device 500 uses the temporary key used by the temporary key generation unit 160 to generate a temporary key in the temporary key generation step S616b.
  • the generation data is notified to the encryption communication device 500 on the calling side.
  • the calling-side encryption communication device 500 proceeds to the temporary key generation data acquisition step S635b.
  • the temporary key generation data acquisition step S635b the temporary key generation data acquisition unit 320 of the calling-side encryption communication device 500 acquires the temporary key generation data notified from the called-side encryption communication device 500.
  • the temporary key generation data verification unit 350 of the calling-side encryption communication device 500 is based on the temporary key generation data stored in the temporary key generation data storage unit 130. It is determined whether or not the temporary key generation data acquired by the temporary key generation data acquisition unit 320 in the key generation data acquisition step S635b is valid.
  • the temporary key generation data verifying unit 350 determines that the temporary key generation data is not valid, the encryption communication apparatuses 500 of both parties determine that the other party's temporary key generation data is not valid, and thus the encryption communication is started. I can't. Therefore, the encryption communication process S604 is terminated.
  • the temporary key generation data storage unit 130 of the calling-side encryption communication device 500 determines that the temporary key generation data is valid.
  • the temporary key generation data determined by the data verification unit 350 is stored as new temporary key generation data.
  • the temporary key generation unit 160 of the calling-side encryption communication device 500 stores the master key stored in the master key storage unit 110 and the temporary key generation data storage in the temporary key generation data verification step S636b.
  • the unit 130 generates a temporary key based on the temporary key generation data newly stored.
  • the temporary key generated by the temporary key generation unit 160 of the calling-side encryption communication device 500 in the temporary key generation step S637b is generated by the temporary key generation unit 160 of the called-side encryption communication device 500 in the temporary key generation step S616.
  • the temporary key is the same as or corresponding to the temporary key.
  • the encryption communication unit 290 of the caller-side encryption communication device 500 uses the temporary key generated by the temporary key generation unit 160 in the temporary key generation step S616 (or temporary key generation step S637b) to receive the call.
  • Cryptographic communication is performed with the cryptographic communication apparatus 500 on the call side.
  • the encryption communication step S638 the encryption communication unit 290 of the called-side encryption communication device 500 uses the temporary key generated by the temporary key generation unit 160 in the temporary key generation step S637 (or temporary key generation step S616b).
  • Cryptographic communication is performed with the cryptographic communication apparatus 500 on the call side.
  • a single device has the functions of the three devices (the management device 100, the encrypted communication device 200, and the encrypted communication device 300) described in the first embodiment.
  • the devices 500 can perform cryptographic communication with each other.
  • the temporary key generation data in this embodiment has both a role as temporary key generation data and a role as verification data in the first embodiment. For this reason, the cryptographic communication apparatus 500 does not need to include the verification data storage unit 330 and the verification data update unit 340 described in the first embodiment.
  • the incoming side temporary key generation data verification unit 350 determines that the temporary key generation data on the calling side is valid. , Temporary key generation data is unified to the calling side and encrypted communication is performed. On the other hand, if the incoming side clock is faster, the incoming side temporary key generation data verification unit 350 may determine that the outgoing side temporary key generation data is not valid.
  • the temporary key generation data is notified from the callee side to the caller side, and the temporary key generation data is unified to the callee side to perform encrypted communication. In this way, every time the cryptographic communication devices 500 perform cryptographic communication, the temporary key generation data is unified so that the clock advances faster.
  • the temporary key generation data verification unit 350 determines that the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is older than the temporary key generation data stored in the temporary key generation data storage unit 130. However, when the difference is within a predetermined range, the configuration may be such that the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is valid. In this case, the temporary key generation data storage unit 130 may be configured not to update the stored temporary key generation data.
  • Embodiment 5 FIG. The fifth embodiment will be described with reference to FIGS. 25 to 26.
  • FIG. 25 is a diagram showing an example of the overall configuration of the automatic meter reading system 801 in this embodiment.
  • the automatic meter reading system 801 includes a management server 101, a portable terminal 201, and a plurality of meter reading meters 301.
  • a plurality of portable terminals 201 may exist.
  • the meter-reading meter 301 not only performs cryptographic communication with the portable terminal 201, but also performs cryptographic communication between the meter-reading meters 301 using the wireless network 802. At this time, the meter-reading meter 301 does not need to communicate with the management server 101.
  • the hardware configuration of the management server 101, the portable terminal 201, and the meter-reading meter 301 and the block configuration of the management server 101 and the portable terminal 201 are the same as those in the third embodiment.
  • FIG. 26 is a diagram illustrating an example of functional blocks of the meter-reading meter 301 in this embodiment.
  • the meter-reading meter 301 further includes a counter-metering meter communication unit 371 in addition to the functional blocks described in the third embodiment. Note that the mobile terminal communication unit 391 is not shown.
  • the message processing unit 381 generates a message 423a for another meter reading meter 301 and sends it to the meter reading meter communication unit 371, and a response 433b generated by the meter reading meter communication unit 371 from the other meter reading meter 301. receive. Further, the message processing unit 381 processes the message 423b from the other meter reading meter 301 generated by the counter meter communication unit 371, generates a response 433a, and sends it to the counter meter communication unit 371.
  • the meter reading meter communication unit 371 receives the message 423a / response 433a from the message processing unit 381.
  • the meter reading meter communication unit 371 receives the generation number 432a from the generation number counter 331.
  • the meter reading meter communication unit 371 generates a temporary key using the master key 431 stored in the master key storage unit 311 and the generation number 432a.
  • the meter reading meter communication unit 371 encrypts the message 423a / response 433a generated by the message processing unit 381 using the generated temporary key, and generates an encrypted message 424a / encrypted response 434a.
  • the meter reading meter communication unit 371 sends the encrypted message 424a / encrypted response 434a to the other meter reading meter 301.
  • the meter reading meter communication unit 371 receives the encrypted message 424b / encrypted response 434b from the other meter reading meter 301.
  • the meter reading meter communication unit 371 acquires the generation number 432a from the generation number counter 331.
  • the meter reading meter communication unit 371 compares the generation number 432b included in the encrypted message 424b / encrypted response 434b with the generation number 432a.
  • the counter meter communication unit 371 generates a temporary key using the master key 431 stored in the master key storage unit 311 and the generation number 432b. To do.
  • the meter reading meter communication unit 371 uses the generated temporary key to decrypt the encrypted message 424b / encrypted response 434b and generate a message 423b / response 433b.
  • the meter reading meter communication unit 371 verifies the encrypted message 424b / encrypted response 434b. When the verification is passed, the meter reading communication unit 371 receives the encrypted message 424b / encrypted response 434b and sends the generated message 423b / response 433b to the message processing unit 381.
  • the counter meter communication unit 371 rewrites the value of the generation number counter 331 to the generation number 432b.
  • the automatic meter reading system 801 in this embodiment uses a temporary key for encrypted communication, and can invalidate the key for a certain period. Further, generation numbers can be synchronized between devices without communication with the management server.
  • Embodiment 6 will be described with reference to FIGS. 27 to 31.
  • the overall configuration of the cryptographic communication system 800 in this embodiment and the hardware configuration of the management device 100 and the cryptographic communication devices 200 and 300 are the same as those in the first embodiment.
  • FIG. 27 is a block configuration diagram showing an example of functional blocks of the management apparatus 100 in this embodiment.
  • the management apparatus 100 further includes an initialization command generation unit 165 and an initialization command notification unit 175 in addition to the functional blocks described in the first embodiment.
  • the initialization command generator 165 uses the processing device 911 to generate an initialization command.
  • the initialization command is for initializing the verification data stored in the verification data storage unit 330 of the encryption communication device 300.
  • the initialization command generated by the initialization command generation unit 165 has an expiration date.
  • the initialization command includes expiration date information indicating the expiration date of the initialization command.
  • the cryptographic communication device 300 determines whether the initialization command is valid based on the expiration date information included in the initialization command.
  • the initialization command includes generation time information indicating the date and time when the initialization command generation unit 165 generated the initialization command.
  • the cryptographic communication apparatus 300 when a predetermined period (for example, one day) has elapsed since the initialization command generation unit 165 generated the initialization command based on the generation time information included in the initialization command, Is determined to be invalid.
  • the initialization command generated by the initialization command generation unit 165 may be configured to include information representing an initial value for initializing the verification data.
  • the temporary key generation data stored in the temporary key generation data storage unit 130 may be used as the initial value of the verification data.
  • the initialization command generated by the initialization command generation unit 165 has a format that can be verified by the encryption communication device 300 by proving that it is generated by the management device 100.
  • the initialization command is encrypted using the master key stored in the master key storage unit 110.
  • the encryption communication device 300 decrypts the initialization command using the master key stored in the master key storage unit 310. If the initialization command can be decrypted correctly, it can be determined that the encrypted initialization command knows the master key, and therefore it can be determined that the management apparatus 100 has generated the initialization command.
  • the initialization command may be configured to be encrypted using a temporary key generated using the master key stored in the master key storage unit 110 and predetermined temporary key generation data.
  • the cryptographic communication device 300 If the cryptographic communication device 300 knows the temporary key generation data used to generate the temporary key used when encrypting the initialization command, the cryptographic communication device 300 stores the master key stored in the master key storage unit 310. And a temporary key generation data known in advance, a temporary key can be generated, and an initialization command can be decrypted using the generated temporary key. Note that the temporary key generation data used for generating the temporary key used when encrypting the initialization command may not be predetermined data. For example, the initialization command generation unit 165 randomly generates temporary key generation data to generate a temporary key, encrypts the generated temporary key, and unencrypted temporary key generation data May be combined to form an initialization command.
  • the initialization command generation unit 165 generates a temporary key using the initial value of the verification data as temporary key generation data, a portion encrypted using the generated temporary key, and an unencrypted verification key A configuration in which the initial value of data is combined to form an initialization command may be used. If the initialization command includes unencrypted temporary key generation data and a portion encrypted with the temporary key generated using the temporary key generation data, the encrypted portion Data including the temporary key generation data may be encrypted.
  • the initialization command notification unit 175 notifies the encryption communication device 200 of the initialization command generated by the initialization command generation unit 165. For example, the initialization command notification unit 175 transmits the initialization command generated by the initialization command generation unit 165 to the encryption communication device 200 using the communication device 915.
  • FIG. 28 is a block configuration diagram illustrating an example of functional blocks of the cryptographic communication device 200 according to this embodiment.
  • the cryptographic communication device 200 further includes an initialization command acquisition unit 265, an initialization command storage unit 275, and an initialization command notification unit 285 in addition to the functional blocks described in the first embodiment.
  • the initialization command acquisition unit 265 acquires the initialization command notified from the initialization command notification unit 175 of the management apparatus 100. For example, the initialization command acquisition unit 265 receives the initialization command transmitted by the initialization command notification unit 175 using the communication device 915.
  • the initialization command storage unit 275 stores the initialization command acquired by the initialization command acquisition unit 265 using the storage device 914.
  • the initialization command notification unit 285 notifies the encryption communication device 300 of the initialization command stored in the initialization command storage unit 275. For example, the initialization command notification unit 285 transmits an initialization command to the encryption communication device 300 using the communication device 915.
  • the initialization command notification unit 285 notifies the encryption communication device 300 of the initialization command, for example, if the temporary key generation data notified by the temporary key generation data notification unit 250 is not valid. This is a case where the temporary key generation data verification unit 350 makes a determination and the encryption communication cannot be started. In this case, it is considered that the verification data stored in the verification data storage unit 330 of the cryptographic communication device 300 is out of order due to some abnormality. Therefore, the verification data stored in the verification data storage unit 330 of the cryptographic communication device 300 is initialized by notifying the cryptographic communication device 300 of an initialization command.
  • FIG. 29 is a block configuration diagram illustrating an example of functional blocks of the cryptographic communication device 300 according to this embodiment.
  • the cryptographic communication apparatus 300 further includes an initialization command acquisition unit 365 and an initialization command verification unit 375.
  • the initialization command acquisition unit 365 acquires the initialization command notified from the initialization command storage unit 275 of the encryption communication device 200. For example, the initialization command acquisition unit 365 receives the initialization command transmitted from the initialization command notification unit 285 using the communication device 915.
  • the initialization command verification unit 375 uses the processing device 911 to verify whether or not the initialization command acquired by the initialization command acquisition unit 365 is valid.
  • the initialization command verification unit 375 determines the validity of the initialization command from the two points that the initialization command is a valid one generated by the management apparatus 100 and that the expiration date has not expired. .
  • the initialization command verification unit 375 generates a temporary key using the master key stored in the master key storage unit 310 and predetermined temporary key generation data.
  • the initialization command verification unit 375 decrypts the initialization command acquired by the initialization command acquisition unit 365 using the generated temporary key. If the initialization command is correctly decoded, the initialization command verification unit 375 determines that the initialization command is valid.
  • the initialization command verification unit 375 separates the initialization command acquired by the initialization command acquisition unit 365 into an encrypted part and temporary key generation data, and stores the master key stored in the master key storage unit 310. A temporary key is generated using the separated temporary key generation data.
  • the initialization command verification unit 375 decrypts the separated encrypted part using the generated temporary key.
  • the initialization command verification unit 375 acquires temporary key generation data from the decrypted result. If the separated temporary key generation data matches the acquired temporary key generation data, the initialization command verification unit 375 determines that the initialization command is valid.
  • the initialization command verification unit 375 acquires the expiration date information from the initialization command acquired by the initialization command acquisition unit 365.
  • the initialization command verification unit 375 compares the expiration date represented by the acquired expiration date information with the current time, and determines whether or not the expiration date has expired.
  • the initialization command verification unit 375 acquires generation time information indicating the date when the initialization command was generated from the initialization command acquired by the initialization command acquisition unit 365.
  • the initialization command verification unit 375 calculates a date a predetermined number of days before the current date, and compares the calculated date with the date represented by the generation time information.
  • the initialization command verification unit 375 determines that the initialization command is within the expiration date. Alternatively, the initialization command verification unit 375 acquires generation time information indicating the time when the initialization command is generated from the initialization command acquired by the initialization command acquisition unit 365. The initialization command verification unit 375 calculates the elapsed time since the initialization command was generated based on the current time and the time represented by the generated generation time information. When the calculated elapsed time is shorter than the predetermined valid period, the initialization command verification unit 375 determines that the initialization command is within the valid period.
  • the verification data storage unit 330 initializes the stored verification data. For example, the verification data storage unit 330 uses the storage device 914 to store a predetermined initial value as verification data. Alternatively, the verification data storage unit 330 uses the processing device 911 to acquire the initial value of the verification data from the initialization command determined by the initialization command verification unit 375 to be valid, and the acquired initial value Store as verification data.
  • FIG. 30 is a flowchart showing an example of the flow of the temporary key notification processing S603 in this embodiment.
  • the management apparatus 100 further executes an initialization command generation step S617 and an initialization command notification step S620 in addition to the steps described in the first embodiment.
  • the cryptographic communication apparatus 200 further executes an initialization command acquisition process S628 in the temporary key notification process S603.
  • the initialization command generation unit 165 of the management apparatus 100 generates an initialization command.
  • the initialization command generation unit 165 generates an initialization command including the temporary key generation data used by the temporary key generation unit 160 for generating the temporary key in the temporary key generation step S616 as the initial value of the verification data. .
  • the initialization command notification unit 175 of the management device 100 notifies the encryption communication device 200 of the initialization command generated by the initialization command generation unit 165 in the initialization command generation step S617.
  • the management device 100 may be configured to transmit the initialization command together with the temporary key and the temporary key generation data.
  • the initialization command acquisition step S628 the initialization command acquisition unit 265 of the encryption communication device 200 acquires the initialization command notified by the initialization command notification unit 175 of the management device 100 in the initialization command notification step S620.
  • the initialization command storage unit 275 stores the initialization command acquired by the initialization command acquisition unit 265 using the storage device 914.
  • the management apparatus 100 does not notify the encryption communication apparatus 200 of an initialization command together with the temporary key and temporary key generation data as a response to the temporary key request from the encryption communication apparatus 200, but instead of notifying the encryption communication apparatus 200.
  • an initialization command request for requesting an initialization command may be received, and the initialization command may be notified as a response thereto.
  • FIG. 31 is a flowchart showing an example of the flow of the cryptographic communication process S604 in this embodiment.
  • the cryptographic communication device 200 further executes a rejection acquisition step S626 and an initialization command notification step S629 in the cryptographic communication processing S604.
  • the cryptographic communication device 300 further executes a rejection notification step S647, an initialization command acquisition step S648, and an initialization command verification step S649 in the cryptographic communication processing S604. .
  • the temporary key generation data acquired by the temporary key generation data acquisition unit 320 of the encryption communication device 300 in the temporary key generation data acquisition step S635 is not valid, the temporary communication of the encryption communication device 300 is temporarily performed in the temporary key generation data verification step S636.
  • the temporary key generation data verification unit 350 proceeds to the rejection notification step S647.
  • the temporary key generation data verification unit 350 of the cryptographic communication device 300 informs the cryptographic communication device 200 that the cryptographic communication with the temporary key generated using the notified temporary key generation data is rejected. To notify.
  • the temporary key generation data verification unit 350 uses the communication device 915 to transmit a rejection message indicating that to the encrypted communication device 200.
  • the temporary key generation data notification unit 250 of the cryptographic communication device 200 acquires the notification in the rejection notification step S647.
  • the temporary key generation data notification unit 250 uses the communication device 915 to receive the rejection message transmitted by the temporary key generation data verification unit 350 of the encryption communication device 300.
  • the initialization command notification unit 285 of the encryption communication device 200 notifies the encryption communication device 300 of the initialization command stored in the initialization command storage unit 275.
  • the initialization command acquisition step S648 the initialization command acquisition unit 365 of the encryption communication device 300 acquires the initialization command notified by the initialization command notification unit 285 of the encryption communication device 200 in the initialization command notification step S629.
  • the initialization command verification unit 375 of the cryptographic communication device 300 determines whether the initialization command acquired by the initialization command acquisition unit 365 in the initialization command acquisition step S648 is valid. . For example, the initialization command verification unit 375 determines whether or not the initialization command is valid. If it is determined that the initialization command is not valid, the initialization command verification unit 375 determines that the initialization command is not valid, and ends the encryption communication process S604. If it is determined that the initialization command is valid, the initialization command verification unit 375 determines whether the validity period of the initialization command has expired.
  • the initialization command verification unit 375 determines that the initialization command is not valid, and ends the encryption communication process S604. When it is determined that the validity period of the initialization command has not expired, the initialization command verification unit 375 acquires the initial value of the verification data from the initialization command. When the initialization command verification unit 375 initializes the verification data stored in the verification data storage unit 330 with the initial value of the acquired verification data, the initialization command verification unit 375 generates the temporary key in the temporary key generation data acquisition step S635. The temporary key generation data verification unit 350 determines whether or not the temporary key generation data acquired by the data acquisition unit 320 is valid.
  • the initialization command verification unit 375 determines that the initialization command is not valid, and ends the cryptographic communication process S604. If the temporary key generation data becomes valid if the verification data is initialized, the initialization command verification unit 375 determines that the initialization command is valid.
  • the verification data storage unit 330 uses the storage device 914 to store the initial value included in the initialization command as verification data. The initialization command verification unit 375 advances the processing to the temporary key generation step S637.
  • the initialization command verification unit 375 has a valid initialization command and the expiration date has not expired regardless of whether or not the temporary key generation data becomes valid if the verification data is initialized.
  • the configuration may be such that the initialization command is determined to be valid.
  • the validity of the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is expressed as the temporary key generation data verification unit 350. Determine again.
  • the encryption communication processing S604 may be once terminated, and the encryption communication apparatus 200 may retransmit the temporary key generation data to the encryption communication apparatus 300.
  • the management apparatus 100 gives the encryption communication apparatus 200 the authority to initialize the verification data stored in the encryption communication apparatus 300 by notifying the encryption communication apparatus 200 of an initialization command. Thereby, the verification data stored in the cryptographic communication device 300 can be initialized by the cryptographic communication device 200. Therefore, even if the verification data becomes an abnormal value for some reason, the verification data is returned to the normal value, Cryptographic communication can be performed between the cryptographic communication device 200 and the cryptographic communication device 300.
  • the verification data stored in the cryptographic communication device 300 cannot be initialized by the initialization command. Thereby, for example, even when the initialization command is leaked, such as when the encryption communication device 200 is lost and the third party picks up, the third party abuses the initialization command and the encryption communication device 300 stores the initialization command. It is possible to initialize the verification data being used and prevent information from leaking from the encryption communication device 300.
  • Embodiment 7 will be described with reference to FIGS. 32 to 33.
  • the overall configuration of the cryptographic communication system 800 and the hardware configuration of the management device 100 and the cryptographic communication devices 200 and 300 in this embodiment are the same as those in the sixth embodiment.
  • FIG. 32 is a block configuration diagram illustrating an example of functional blocks of the cryptographic communication device 200 according to this embodiment.
  • the cryptographic communication apparatus 200 does not have the initialization command storage unit 275 among the functional blocks described in the sixth embodiment. That is, the encryption communication device 200 does not store the initialization command.
  • the initialization command notification unit 285 needs to notify the encryption communication device 300 of an initialization command
  • the initialization command acquisition unit 265 communicates with the management device 100 to acquire the initialization command.
  • the initialization command notification unit 285 notifies the encryption communication device 300 of the initialization command acquired by the initialization command acquisition unit 265.
  • the temporary key generation data verification unit 350 indicates that the numerical value represented by the temporary key generation data acquired by the temporary key generation data acquisition unit 320 is the verification data stored in the verification data storage unit 330. If it is greater than or equal to the numerical value to be represented, it is determined that the temporary key generation data is valid. However, when the initialization command verification unit 375 determines that the initialization command acquired by the initialization command acquisition unit 365 is valid, and the verification data stored in the verification data storage unit 330 is initialized, the temporary key The data verification unit 350 for generation includes a numerical value represented by the temporary key generation data and a numerical value represented by the verification data until a predetermined period (for example, one day) elapses after the verification data is initialized. Only when they are equal, it is determined that the temporary key generation data is valid. When the numerical value represented by the temporary key generation data is larger than the numerical value represented by the verification data, the temporary key generation data verification unit 350 determines that the temporary key generation data is not valid.
  • a predetermined period for example, one day
  • the steps in the temporary key notification process S603 are the same as those in the first embodiment. That is, in the temporary key notification process S603, the management apparatus 100 does not generate an initialization command and does not notify the encryption communication apparatus 200 of the initialization command.
  • FIG. 33 is a flowchart showing an example of the flow of the cryptographic communication processing S604 in this embodiment.
  • the cryptographic communication apparatus 200 further executes an initialization command request step S627 and an initialization command acquisition step S628 in addition to the steps described in the sixth embodiment.
  • the process which the management apparatus 100 performs is abbreviate
  • the management apparatus 100 executes an initialization command request reception step, an initialization command generation step S617, and an initialization command notification step S620.
  • the initialization command acquisition unit 265 of the cryptographic communication device 200 requests the management device 100 for an initialization command.
  • the initialization command acquisition unit 265 uses the communication device 915 to transmit an initialization command request message for requesting an initialization command to the management device 100.
  • the initialization command request message includes authentication information for authenticating the user of the encryption communication device 200, such as a password input by the user of the encryption communication device 200, a fingerprint of the user of the encryption communication device 200, and other biometric information.
  • the initialization command notification unit 175 of the management device 100 receives a request from the encryption communication device 200.
  • the initialization command notification unit 175 receives the initialization command request message transmitted from the initialization command acquisition unit 265 of the cryptographic communication device 200 using the communication device 915.
  • the initialization command notification unit 175 verifies the authentication information included in the initialization command request message and authenticates the user of the encryption communication device 200. When the authentication fails, the management apparatus 100 does not execute the subsequent steps.
  • the initialization command generation unit 165 of the management apparatus 100 includes an initialization command that includes the temporary key generation data stored in the temporary key generation data storage unit 130 as the initial value of the authentication data. Generate.
  • the initialization command notification unit 175 of the management device 100 notifies the encryption communication device 200 of the initialization command generated by the initialization command generation unit 165 in the initialization command generation step S617.
  • the initialization command acquisition step S628 the initialization command acquisition unit 265 of the encryption communication device 200 acquires the initialization command notified by the initialization command notification unit 175 of the management device 100 in the temporary key notification step S618.
  • the initialization command notification unit 285 of the encryption communication device 200 notifies the encryption communication device 300 of the initialization command acquired by the initialization command acquisition unit 265 in the initialization command acquisition step S628. .
  • the initialization command verification unit 375 of the encryption communication device 300 confirms that the initialization command acquired by the initialization command acquisition unit 365 in the initialization command acquisition step S648 is valid and has an expiration date. If it is determined that it has not expired, the initial value of the verification data included in the initialization command is acquired. The initialization command verification unit 375 compares the temporary key generation data acquired by the temporary key generation data acquisition unit 320 in the temporary key generation data acquisition step S635 with the initial value of the acquired verification data. If the temporary key generation data does not match the initial value of the verification data, the initialization command verification unit 375 determines that the initialization command is not valid, and ends the cryptographic communication process S604. If the temporary key generation data matches the initial value of the verification data, the initialization command verification unit 375 determines that the initialization command is valid.
  • the cryptographic communication device 200 when the cryptographic communication device 200 is small and portable, there is a possibility that a legitimate user of the cryptographic communication device 200 loses the cryptographic communication device 200 and a third party can pick it up and misuse it. However, if the temporary key stored in the cryptographic communication device 200 picked up by a third party becomes old due to the update of the verification data, the cryptographic communication device 200 performs cryptographic communication with the cryptographic communication device 300. I can't. Further, since the initialization command is not stored in the cryptographic communication device 200, a third party cannot initialize the verification data stored in the cryptographic communication device 300. Suppose that a third party separately obtains an initialization command by some means.
  • the third party notifies the encryption communication device 300 of an initialization command, and tries to initialize the verification data stored in the encryption communication device 300.
  • the temporary key stored in the encryption communication device 200 acquired by the third party and the temporary key generation data used for generating the temporary key and the verification command included in the initialization command obtained separately by the third party If the initial value of the business data does not match, the encrypted communication device 200 cannot perform encrypted communication with the encrypted communication device 300. For this reason, it is possible to prevent information from leaking from the encryption communication device 300.
  • Embodiment 8 will be described with reference to FIGS. 34 to 41.
  • the overall configuration of the automatic meter reading system 801 (encryption communication system) in this embodiment and the hardware configurations of the management server 101, the portable terminal 201, and the meter meter 301 are the same as those in the third embodiment.
  • FIG. 34 is a diagram showing an example of functional blocks of the management server 101 in this embodiment.
  • the management server 101 (management device) further includes a clock 156 and a reset packet generation unit 166 in addition to the configuration described in the third embodiment.
  • the key information management unit 161 is not shown.
  • the clock 156 measures the current time 418.
  • the clock 156 uses the communication device 915 to communicate with the time server, and measures the accurate current time 418 by synchronizing with the time server using a mechanism such as NTP (Network Time Protocol).
  • NTP Network Time Protocol
  • the reset packet generation unit 166 receives the reset packet issue request 428 from the mobile terminal 201.
  • the reset packet generation unit 166 acquires the generation number 412 from the generation number counter 131.
  • the reset packet generation unit 166 acquires the current time 418 from the clock 156.
  • the reset packet generation unit 166 generates a reset packet 419 (initialization command) for resetting the generation number 432 of the meter-reading meter 301 to the generation number 412.
  • the reset packet generation unit 166 sends the reset packet 419 to the mobile terminal 201.
  • FIG. 35 is a diagram showing an example of functional blocks of the mobile terminal 201 in this embodiment.
  • the management server communication unit 221 generates a reset packet issue request 428.
  • the management server communication unit 221 sends a reset packet issue request 428 to the management server 101 (reset packet generation unit 166).
  • the management server communication unit 221 receives the reset packet 419 from the management server 101 (reset packet generation unit 166).
  • the meter reading meter communication unit 291 receives the reset packet 419 from the management server communication unit 221.
  • the meter reading meter communication unit 291 (initialization command notification unit) sends a reset packet 419 to the meter reading meter 301.
  • FIG. 36 is a diagram showing an example of functional blocks of the meter-reading meter 301 in this embodiment.
  • the meter-reading meter 301 has a clock 356 in addition to the functional blocks described in the third embodiment.
  • the clock 356 measures the current time 438.
  • the clock 356 uses the communication device 915 to communicate with the time server, and synchronizes with the time server using a mechanism such as NTP, thereby measuring the accurate current time 438.
  • the clock outputs the measured current time 438.
  • the mobile terminal communication unit 391 receives the reset packet 419 from the mobile terminal 201.
  • the mobile terminal communication unit 391 acquires the current time 438 from the clock 356.
  • the mobile terminal communication unit 391 verifies the reset packet 419 using the clock 356 and the master key 431 stored in the master key storage unit 311.
  • the mobile terminal communication unit 391 acquires the generation number 412 from the reset packet 419.
  • the mobile terminal communication unit 391 sends the generation number 412 to the message processing unit 381.
  • the mobile terminal communication unit 391 receives the response 433 from the generation number 412.
  • the mobile terminal communication unit 391 encrypts the response 433 and generates a reset response 439 (encrypted response).
  • the mobile terminal communication unit 391 sends a reset response 439 to the mobile terminal 201.
  • the message processing unit 381 receives the generation number 412 from the mobile terminal communication unit 391.
  • the message processing unit 381 rewrites the value of the generation number counter 331 to the generation number 412.
  • the message processing unit 381 generates a response 433 representing the verification result.
  • the message processing unit 381 sends the response 433 to the portable terminal communication unit 391 (vs. meter reading communication unit 291).
  • FIG. 37 is a diagram illustrating an example of detailed functional blocks of the reset packet generation unit 166 in the management server 101 of this embodiment.
  • the reset packet generation unit 166 includes, for example, an authentication unit 172, a master key selection unit 173, a temporary key generation unit 174, a packet generation unit 176, and an output determination unit 177.
  • the authentication unit 172, the master key selection unit 173, the temporary key generation unit 174, and the output determination unit 177 are an authentication unit 162, a master key selection unit 163, a temporary key generation unit 164, and an output determination unit 171 of the key information management unit 161. May be shared with the key information management unit 161.
  • the authentication unit 172 receives the reset packet issue request 428 from the mobile terminal 201 (to the management server communication unit 221). The authentication unit 172 determines whether to process the reset packet issue request 428 based on the authentication information included in the reset packet issue request 428. For example, the authentication unit 172 authenticates the sender based on the authentication information. In addition, when not authenticating, the authentication part 172 does not need to be. If it is determined not to process the reset packet issue request 428, the authentication unit 172 outputs an output determination signal 414 indicating that the reset packet 419 is not output to the output determination unit 177.
  • the master key selection unit 173 arbitrarily selects the master key 411 from among the plurality of master keys 411 stored in the master key storage unit 111. For example, the master key selection unit 173 selects the master key 411 at random. The master key selection unit 173 generates key type information 422 corresponding to the selected master key 411.
  • the temporary key generation unit 174 generates a temporary key 413 based on the master key 411 selected by the master key selection unit 173 and a predetermined constant.
  • the temporary key generation unit 174 generates a temporary key 413 using a constant instead of the generation number 412.
  • the temporary key generation unit 174 generates, as the temporary key 413, data obtained by encrypting constants with the master key 411 by a predetermined encryption method.
  • the temporary key generation unit 174 generates a hash value by using a hash function with a key in which a constant and a master key 411 are input as the temporary key 413.
  • the key generation method used by the temporary key generation unit 174 to generate the temporary key 413 is that the temporary key 413 is uniquely generated from the constant and the master key 411, and the master key 411 is generated from the temporary key 413 and the constant. Must not be estimated.
  • the maximum value that can be input as the generation number 412 is set.
  • the temporary key generation unit 174 generates a temporary key 413 using “FFFF” as a constant in hexadecimal expression.
  • the maximum value of the generation number 412 is determined separately, the structure using that value may be sufficient.
  • the packet generation unit 176 acquires the generation number 412 from the generation number counter 131.
  • the packet generation unit 176 acquires the current time 418 from the clock 156 as the generation time of the reset packet 419.
  • the packet generation unit 176 generates a message verifier for the generation number 412, generation time, key type information 422, and the constant used by the master key selection unit 173 to generate the temporary key 413.
  • the packet generation unit 176 generates a reset packet 419 including a generation number 412, a generation time, key type information 422, a constant, and a message verifier.
  • the output determination unit 177 determines whether or not to output the reset packet 419 generated by the packet generation unit 176. When the output determination signal 414 indicating that the reset packet 419 is not output is received from the authentication unit 172, the output determination unit 177 determines that the reset packet 419 is not output. In that case, the output determination unit 177 may be configured to output a predetermined error code instead of the reset packet 419. When the output determination signal 414 indicating that the reset packet 419 is not output is not received from the authentication unit 172, the output determination unit 177 determines to output the reset packet 419. The output determination unit 177 outputs the reset packet 419 to the mobile terminal 201.
  • FIG. 38 is a diagram illustrating an example of detailed functional blocks of the pair management server communication unit 221 and the meter reading meter communication unit 291 in the mobile terminal 201 of this embodiment.
  • the management server communication unit 221 further includes a reset packet issue request generation unit 224 and a reset packet acquisition unit 225 in addition to the functional blocks described in the third embodiment.
  • the temporary key issue request generation unit 222 and the temporary key information acquisition unit 223 are not shown.
  • the reset packet issue request generation unit 224 receives the authentication information 425 from the input device 912.
  • the input device 912 is a character string input device such as a keyboard, for example.
  • the input device 912 is a device that acquires biometric information such as a fingerprint reader.
  • the reset packet issue request generator 224 generates a reset packet issue request 428 based on the acquired authentication information 425.
  • the reset packet issue request 428 generated by the reset packet issue request generation unit 224 includes authentication information 425.
  • the reset packet issue request generation unit 224 sends a reset packet issue request 428 to the management server 101 (reset packet generation unit 166).
  • the reset packet issue request generation unit 224 may be configured not to acquire the authentication information 425. In that case, the reset packet issue request 428 may be configured not to include the authentication information 425.
  • the reset packet acquisition unit 225 receives the reset packet 419 from the management server 101.
  • the reset packet acquisition unit 225 sends the reset packet 419 to the counter meter reading unit 291.
  • the meter reading communication unit 291 further includes a reset packet output unit 297 in addition to the functional blocks described in the third embodiment. Note that the encryption unit 292, the multiplexing unit 293, the separation unit 294, the decryption unit 295, and the reception determination unit 296 are not shown.
  • the reset packet output unit 297 receives the reset packet 419 from the management server communication unit 221.
  • the reset packet output unit 297 sends the received reset packet 419 as it is to the meter-reading meter 301 (for the portable terminal communication unit 391).
  • FIG. 39 is a diagram showing an example of detailed functional blocks of the portable terminal communication unit 391 in the meter-reading meter 301 of this embodiment.
  • the mobile terminal communication unit 391 further includes a response message generation unit 397 and a message verification unit 398 in addition to the configuration described in the third embodiment. Note that the encryption unit 392 and the decryption unit 395 are not shown.
  • the separating unit 394 receives the reset packet 419 from the mobile terminal 201 (the meter reading meter communication unit 291). The separation unit 394 separates the key type information 422 and the constant 417 from the reset packet 419.
  • the master key selection unit 363 selects the master key 431 from the plurality of master keys 431 stored in the master key storage unit 311 based on the key type information 422.
  • the temporary key generation unit 364 generates a temporary key 435 from the master key 431 selected by the master key selection unit 363 and the constant 417.
  • the temporary key generation unit 364 generates a temporary key 435 by the same temporary key generation method as the temporary key generation unit 174 of the key information management unit 161 in the management server 101.
  • the message verification unit 398 verifies the message of the reset packet 419 using the temporary key 435, and generates a verification result 437.
  • the message verification unit 398 separates the generation number 412 and the generation time 416 from the reset packet 419.
  • the message verification unit 398 verifies the reset packet 419 using a verification method corresponding to the message authenticator generation method used by the packet generation unit 176 in the management server 101.
  • the reception determination unit 396 acquires the current time 438 from the clock 356.
  • the reception determination unit 396 performs output determination based on the current time 438, the generation time 416, and the verification result 437. Judgment criteria are as follows.
  • the generation number 412 is not output.
  • the generation time 416 is older than the current time 438 by a certain amount (for example, one day or more)
  • the generation number 412 is not output.
  • the reception determination unit 396 outputs the generation number 412 to the message processing unit 381.
  • the message processing unit 381 receives the generation number 412 from the reception determination unit 396.
  • the message processing unit 381 rewrites the value of the generation number counter 331 to the generation number 412.
  • the message processing unit 381 generates a response 433.
  • the message determination unit 396 may generate the response 433 instead of the response processing unit 381 generating the response 433.
  • the reception determination unit 396 rewrites the value of the generation number counter 331 for a certain period (for example, one day). May be configured to accept the encrypted message 424 and output the message 423 only when the generation number 412 and the generation number 432 match.
  • the response message generator 397 receives the response 433 from the message processor 381.
  • the response message generation unit 397 generates a message authenticator 440 from the response 433 using the temporary key 435.
  • the response message generator 397 generates the message authenticator 440 using the same message authenticator generation method as the packet generator 176 of the reset packet generator 166 in the management server 101, for example.
  • the multiplexing unit 393 generates the reset response 439 by multiplexing the key type information 422, the generation number 432, the response 433, and the message authenticator 440.
  • the multiplexing unit 393 sends a reset response 439 to the mobile terminal 201 (antimeter reading unit 291).
  • FIG. 40 is a flowchart showing an example of the flow of the reset packet notification process S605 in this embodiment.
  • the reset packet notification processing S605 includes, for example, a reset packet issue request generation step S681, an authentication step S682, a master key selection step S683, a temporary key generation step S684, a packet generation step S685, an output step S686, and a reset packet. Acquisition step S687.
  • the reset packet issue request generation unit 224 of the mobile terminal 201 generates a reset packet issue request 428.
  • the reset packet issue request generation unit 224 transmits a reset packet issue request 428 to the management server 101 (reset packet generation unit 166).
  • the authentication unit 172 of the management server 101 receives the reset packet issue request 428.
  • the authentication unit 172 verifies the reset packet issue request 428. If the verification fails, the authentication unit 172 ends the reset packet notification process S605. If the verification is successful, the authentication unit 172 advances the process to the master key selection step S683.
  • the master key selection unit 173 of the management server 101 arbitrarily selects the master key 411.
  • the master key selection unit 173 generates key type information 422 corresponding to the selected master key 411.
  • the temporary key generation unit 174 of the management server 101 generates a temporary key 413 based on the master key 411 and the constant 417.
  • the packet generation unit 176 of the management server 101 generates the reset packet 419 from the key type information 422, the constant 417, the generation number 412 and the current time 418 using the temporary key 413. .
  • the output determination unit 177 of the management server 101 transmits a reset packet 419 to the mobile terminal 201 (to the management server communication unit 221).
  • the reset packet acquisition unit 225 of the mobile terminal 201 receives the reset packet 419.
  • the reset packet acquisition unit 225 outputs the reset packet 419 to the counter meter communication unit 291.
  • FIG. 41 is a flowchart showing an example of the flow of the generation number reset processing S606 in this embodiment.
  • the generation number reset processing S606 includes, for example, a reset packet output step S691, a separation step S692, a master key selection step S693, a temporary key generation step S694, a message verification step S695, a reception determination step S696, and a generation number reset.
  • the process includes a step S697, a master key selection step S701, a temporary key generation step S702, a response message generation step S703, a multiplexing step S704, and a reset response acquisition step S705.
  • the reset packet output unit 297 of the mobile terminal 201 transmits a reset packet 419 to the meter-reading meter 301 (for the mobile terminal communication unit 391).
  • the separation unit 394 of the meter-reading meter 301 receives the reset packet 419.
  • the separation unit 394 separates the key type information 422 and the constant 417 from the reset packet 419.
  • the master key selection unit 363 of the meter-reading meter 301 selects the master key 431 based on the key type information 422.
  • the master key selection unit 363 stores key type information 422.
  • the temporary key generation unit 364 of the meter-reading meter 301 generates a temporary key 435 based on the master key 431 and the constant 417.
  • the response message generation unit 397 of the meter-reading meter 301 verifies the reset packet 419 using the temporary key 435, and generates a generation number 412, a generation time 416, and a verification result 437.
  • the reception determination unit 396 of the meter-reading meter 301 determines whether to output the generation number 412 based on the generation time 416, the current time 438, and the verification result 437.
  • the reception determination unit 396 ends the generation number reset process S606.
  • the reception determination unit 396 outputs the generation number 412.
  • the message processing unit 381 of the meter-reading meter 301 rewrites the generation number 432 stored in the generation number counter 331 with the generation number 412.
  • the generation number counter 331 stores the generation number 412.
  • the message processing unit 381 generates a response 433.
  • the master key selection unit 363 of the meter-reading meter 301 selects the master key 431 based on the stored key type information 422.
  • the master key selection unit 363 outputs the selected master key 431 and key type information 422.
  • the temporary key generation unit 364 of the meter-reading meter 301 generates a temporary key 435 based on the master key 431 and the generation number 432.
  • the temporary key 435 generated by the temporary key generation unit 364 in the temporary key generation step S702 is the same as the temporary key 435 generated by the temporary key generation unit 364 in the temporary key generation step S694.
  • the response message generation unit 397 of the meter-reading meter 301 generates a message authenticator 440 using the temporary key 435 generated by the temporary key generation unit 364 in the temporary key generation step S672.
  • the response message generation unit 397 may be configured to generate the message authenticator 440 using the temporary key 435 generated by the temporary key generation unit 364 in the temporary key generation step S655. In that case, the master key selection step S671 and the temporary key generation step S672 may be omitted.
  • the multiplexing unit 393 of the meter-reading meter 301 multiplexes the response 433, the message authenticator 440, the generation number 432, and the key type information 422 to generate a reset response 439.
  • the multiplexing unit 393 transmits a reset response 439 to the portable terminal 201 (counter meter communication unit 291).
  • the reset response acquisition step S705 the meter reading meter communication unit 291 of the mobile terminal 201 receives the reset response 439.
  • the management server 101 and the meter-reading meter 301 may directly communicate with each other, and the management server 101 may directly transmit the reset packet 419 to the meter-reading meter 301.
  • the communication device (meter reading meter 301) in this embodiment receives a signal for resetting the counter value generated by the management server (101), and updates the value of the previous period counter to the counter value included in the reset signal.
  • the management server (101) generates a signal for resetting the counter value.
  • the management server generates a temporary key from a master key shared in advance and a predetermined constant, generates a message verifier for at least the counter value after correction and the signal generation date and time, and the constant and the post-correction
  • the counter value, the signal generation date and time, and the message verifier are transmitted as a reset signal.
  • the communication device receives a reset signal transmitted from the management server (101).
  • the communication device performs message authentication for at least the corrected counter value and signal generation date and time, and then compares the current time of its own clock with the generation date and time included in the reset signal, and the generation date and time is the current time. If it is newer or the difference is less than a certain value, the counter value owned by itself is updated to the corrected counter value.
  • the automatic meter reading system 801 (encryption communication system) in this embodiment can match the generation number of the management server even if the generation number of the meter reading meter (301) is advanced from the management server (101). Further, since the date is put in the reset packet, it is possible to invalidate the old reset packet or the illegally acquired reset packet by providing the meter with a clock. Furthermore, by receiving only the same number as the generation number updated with the reset packet as a message acceptance condition for a certain period (for example, 1 day) after receiving the reset packet, it is overwritten even in the generation number updating process. Without fail, and can be synchronized reliably.
  • the configuration described in each embodiment is an example, and another configuration may be used.
  • the configuration described in different embodiments may be combined, or the configuration of a non-essential part may be replaced with another configuration.
  • the encryption communication system (encryption communication system 800, automatic meter reading system 801) described above includes a management device (100, encryption communication device 500, management server 101) and a first encryption communication device (encryption communication devices 200 and 500, portable terminal). 201) and a second encryption communication device (encryption communication devices 300 and 500, meter-reading meter 301).
  • the management apparatus includes a master key storage unit (110, 111) and a temporary key generation unit (160, 164).
  • the master key storage unit of the management device stores a first master key (master key 411).
  • the temporary key generation unit of the management device uses the first master key stored in the master key storage unit of the management device and the temporary key generation data (generation number 412) to generate a first temporary key. (Temporary key 413) is generated.
  • the first cipher communication device includes a temporary key generation data notifying unit (250, meter reading meter communication unit 291) and a cipher communication unit (290, meter reading meter communication unit 291).
  • the temporary key generation data notifying unit of the first encryption communication device is configured to transfer the temporary key generation data used by the temporary key generation unit of the management device to generate the first temporary key to the second encryption Notify the communication device.
  • the cryptographic communication unit of the first cryptographic communication device performs cryptographic communication with the second cryptographic communication device using the first temporary key generated by the temporary key generation unit of the management device.
  • the second encryption communication device includes a master key storage unit (310, 311), a temporary key generation data verification unit (350, reception determination unit 396), a temporary key generation unit (360, 364), and an encryption communication unit. (390, portable terminal communication unit 391).
  • the master key storage unit of the second encryption communication device is the same as the first master key stored in the master key storage unit of the management device or corresponds to the first master key. (Master key 431) is stored.
  • the temporary key generation data verification unit of the second encryption communication device determines whether the temporary key generation data notified from the temporary key generation data notification unit of the first encryption communication device is valid. judge.
  • the temporary key generation unit of the second cryptographic communication device is valid.
  • the temporary key generation data verification unit determines, the second master key stored in the master key storage unit of the second encryption communication device and the temporary key generation data of the second encryption communication device
  • the first temporary key that is the same as the first temporary key generated by the temporary key generation unit of the management device using the temporary key generation data determined to be valid by the verification unit or the first temporary key
  • a second temporary key (temporary key 435) corresponding to is generated.
  • the cryptographic communication unit of the second cryptographic communication device uses the second temporary key generated by the temporary key generation unit of the second cryptographic communication device to perform cryptographic communication with the first cryptographic communication device. do.
  • the second cryptographic communication apparatus Since the second cryptographic communication apparatus generates a temporary key using the temporary key generation data notified from the first cryptographic communication apparatus, the first cryptographic communication apparatus and the second cryptographic communication apparatus are the same or correspond to each other. You can use the temporary key for encrypted communication.
  • the management device (100, encryption communication device 500, management server 101) further includes a temporary key generation data storage unit (130, generation number counter 131) and a temporary key generation data update unit (140, generation number counter 131). ).
  • the temporary key generation data storage unit of the management device includes temporary key generation data (temporary key generation data (160, 164) used by the management device for generating the first temporary key (temporary key 413)).
  • the generation number 412) is stored.
  • the temporary key generation data update unit of the management device repeatedly updates the temporary key generation data stored in the temporary key generation data storage unit of the management device every time a predetermined period elapses.
  • the second encryption communication device (encryption communication devices 300 and 500, meter-reading meter 301) further includes a verification data storage unit (330, temporary key generation data storage unit 130, generation number counter 331), and verification data update. (340, temporary key generation data update unit 140, generation number counter 331).
  • the verification data storage unit of the second encryption communication device stores verification data (temporary key generation data, generation number 432).
  • the verification data update unit of the second cryptographic communication device repeatedly updates the verification data stored in the verification data storage unit of the second cryptographic communication device every time a predetermined period elapses.
  • the temporary key generation data verification unit of the second cryptographic communication device uses the verification data stored in the verification data storage unit of the second cryptographic communication device to use the temporary data of the first cryptographic communication device. It is determined whether or not the temporary key generation data notified from the key generation data notification unit is valid.
  • the management device since the management device repeatedly updates the temporary key generation data and the second encryption communication device repeatedly updates the verification data accordingly, the temporary key generated from the old temporary key generation data may be invalidated. it can. Thereby, even if the first temporary key is leaked from the first cryptographic communication device, it is possible to prevent a third party from performing cryptographic communication with the second cryptographic communication device. Further, since the first cryptographic communication device does not know the first master key, the first master key is not leaked from the first cryptographic communication device. For this reason, even if information leaks from the first encryption communication device, a third party cannot generate a first temporary key that can be encrypted with the second encryption communication device.
  • the key generation data (generation number 432) is data representing a numerical value.
  • the temporary key generation data update unit (140, generation number counter 131) of the management device sets a predetermined value to the numerical value represented by the temporary key generation data stored in the temporary key generation data storage unit of the management device.
  • the verification data update unit (340, temporary key generation data update unit 140, generation number counter 331) of the second cryptographic communication device is used by the temporary key generation data update unit of the management device for the temporary key generation.
  • the verification data stored in the verification data storage unit of the second encryption communication device is stored every time a cycle approximately n times (n is a positive real number) of the predetermined cycle for updating data elapses.
  • the verification data stored in the verification data storage unit of the encryption communication device is updated with data representing the calculated sum.
  • the temporary key generation data verification unit (350, reception determination unit 396) of the second encryption communication device is the temporary key generation data of the first encryption communication device (encryption communication devices 200, 500, portable terminal 201).
  • the numerical value represented by the temporary key generation data notified from the notification unit (250, counter meter communication unit 291) is represented by the verification data stored in the verification data storage unit of the second encryption communication device. If it is greater than or equal to the numerical value, it is determined that the temporary key generation data notified from the temporary key generation data notification unit of the first encryption communication device is valid.
  • the verification data storage unit (330, temporary key generation data storage unit 130, generation number counter 331) of the second encryption communication device (encryption communication device 300, 500, meter-reading meter 301) is the first encryption communication device.
  • the temporary key generation data (generation number 412) notified from the temporary key generation data notification unit (250, counter meter communication unit 291) of (encryption communication devices 200, 500, portable terminal 201) is valid.
  • the temporary key generation data verification unit (350, reception determination unit 396) of the second encryption communication device determines that the temporary key generation data verification unit of the second encryption communication device is valid.
  • the determined temporary key generation data is stored as the verification data (temporary key generation data, generation number 432).
  • the temporary key generation data of the management device and the verification data of the second encryption communication device can be easily synchronized.
  • the management apparatus (100, management server 101) further includes an initialization command generation unit (165, reset packet generation unit 166).
  • the initialization command generation unit of the management device includes verification data (330, generation number counter 331) stored in the verification data storage unit (330, generation number counter 331) of the second encryption communication device (encryption communication device 300, meter-reading meter 301). An initialization command (reset packet 419) for initializing the generation number 432) is generated.
  • the first encryption communication device (encryption communication device 200, portable terminal 201) further includes an initialization command notification unit (285, reset packet output unit 297).
  • the initialization command notification unit of the first encryption communication device notifies the initialization command generated by the initialization command generation unit of the management device to the second encryption communication device.
  • the second cryptographic communication apparatus further includes an initialization command verification unit (375, reception determination unit 396).
  • the initialization command verification unit of the second encryption communication device determines whether the initialization command notified from the initialization command notification unit of the first encryption communication device is valid.
  • the verification data storage unit of the second cryptographic communication device may be configured such that the initialization command of the second cryptographic communication device is valid when the initialization command notified from the initialization command notification unit of the first cryptographic communication device is valid. If the verification command verification unit determines, the stored verification data is initialized.
  • the verification data can be initialized and returned to the normal value.
  • the initialization command verification unit (375, reception determination unit 396) of the second encryption communication device (encryption communication device 300, meter-reading meter 301) is the same as the first encryption communication device (encryption communication device 200, portable terminal 201).
  • the first encryption communication device when the predetermined period has not elapsed since the initialization command (reset packet 419) notified from the initialization command notification unit (285, reset packet output unit 297) has been generated It is determined that the initialization command notified from the initialization command notification unit is valid.
  • the initialization command (reset packet 419) generated by the initialization command generation unit (165, reset packet generation unit 166) of the management apparatus (100, management server 101) indicates the date when the initialization command was generated. Contains information to represent.
  • the initialization command verification unit (375, reception determination unit 396) of the second encryption communication device (encryption communication device 300, meter-reading meter 301) is the same as the first encryption communication device (encryption communication device 200, portable terminal 201).
  • the date represented by the information included in the initialization command notified from the initialization command notification unit (285, reset packet output unit 297) is after a predetermined number of days before the current date, It determines with the said initialization command notified from the said initialization command notification part of a 1st encryption communication apparatus being effective.
  • the initialization command (reset packet 419) generated by the initialization command generation unit (165, reset packet generation unit 166) of the management device (100, management server 101) is the temporary key generation data of the management device. It includes information representing the temporary key generation data (generation number 412) stored in the storage unit (130, generation number counter 131). If the verification data storage unit (330, generation number counter 331) of the second encryption communication device (encryption communication device 300, meter-reading meter 301) is valid, the initialization command verification unit of the second encryption communication device. By storing the temporary key generation data represented by the information included in the initialization command determined by (375, reception determination unit 396) as the verification data (generation number 432), the verification data is stored. initialize.
  • the temporary key generation data of the management apparatus and the verification data of the second encryption communication apparatus can be synchronized.
  • the temporary key generation data verification unit (350, reception determination unit 396) of the second encryption communication device (encryption communication device 300, meter-reading meter 301) is the verification data storage unit (330) of the second encryption communication device.
  • the generation number counter 331) initializes the verification data (generation number 432) until a predetermined period elapses, the first encryption communication device (encryption communication device 200, portable terminal 201) described above.
  • the numerical value represented by the temporary key generation data (generation number 412) notified from the temporary key generation data notification unit (250, counter meter communication unit 291) is the data storage for verification of the second encryption communication device.
  • the first encryption communication apparatus when the first encryption communication device is equal to the numerical value represented by the verification data (generation number 432) stored in the unit (330, generation number counter 331).
  • the temporary key generation data notification unit of the first cryptographic communication device is notified.
  • the numerical value represented by the temporary key generation data is greater than or equal to the numerical value represented by the verification data stored in the verification data storage unit of the second cryptographic communication device, It is determined that the temporary key generation data notified from the temporary key generation data notification unit is valid.
  • the initialization command (reset packet 419) generated by the initialization command generation unit (165, reset packet generation unit 166) of the management device (100, management server 101) is the master key storage unit ( 110, 111) includes information encrypted using the first master key (master key 411) stored.
  • the initialization command verification unit (375, message verification unit 398) of the second cryptographic communication device (cryptographic communication device 300, meter-reading meter 301) is the same as the first cryptographic communication device (cryptographic communication device 200, portable terminal 201).
  • Information included in the initialization command notified from the initialization command notification unit (285, reset packet output unit 297) is stored in the master key storage unit (310, 311) of the second encryption communication device. Decrypt using the second master key (master key 431).
  • the first encryption communication device (encryption communication device 200, portable terminal 201) is a device that is physically separated from the management device.
  • the management device (100, management server 101) further includes a temporary key notification unit (170, output determination unit 171) and a temporary key generation data notification unit (150, output determination unit 171).
  • the temporary key notification unit of the management device uses the first temporary key (temporary key 413) generated by the temporary key generation unit (160, temporary key generation unit 164) of the management device as the first cryptographic communication. Notify the device.
  • the temporary key generation data notifying unit of the management device uses the temporary key generation data (generation number 412) used by the temporary key generation unit of the management device to generate the first temporary key.
  • One encryption communication apparatus is notified.
  • the first cryptographic communication apparatus further includes a temporary key storage unit (270) and a temporary key generation data storage unit (230).
  • the temporary key storage unit of the first encryption communication device stores the first temporary key notified from the temporary key notification unit of the management device.
  • the temporary key generation data storage unit of the first encryption communication device stores the temporary key generation data notified from the temporary key generation data notification unit of the management device.
  • the temporary key generation data notifying unit (250, meter reading meter communication unit 291) of the first cryptographic communication device is configured to generate the temporary key stored in the temporary key generation data storage unit of the first cryptographic communication device. The data is notified to the second encryption communication device (300, meter-reading meter 301).
  • the number of times of communication with the management apparatus can be reduced by acquiring and storing the temporary key and temporary key generation data in advance by the first cryptographic communication apparatus.
  • the first cryptographic communication device does not know the first master key, even if information leaks from the first cryptographic communication device, a third party generates a temporary key that can be cryptographically communicated with the second cryptographic communication device. Can be prevented.
  • the first encryption communication device (encryption communication device 200, portable terminal 201) is portable.
  • the first cryptographic communication device Since the first cryptographic communication device is portable, the user of the first cryptographic communication device loses the first cryptographic communication device and the information stored by the first cryptographic communication device can be leaked by a third party. There is sex. However, since the first cryptographic communication device does not know the first master key, it is possible to prevent a third party from generating a temporary key that can be cryptographically communicated with the second cryptographic communication device.
  • the cryptographic processing apparatus (the management apparatus 100, the cryptographic communication apparatuses 200, 300, 500, the management server 101, the portable terminal 201, and the meter-reading meter 301) described above includes a master key storage unit (110, 310, 111, 311) and a temporary And a key generation unit (160, 360, 164, 364).
  • the master key storage unit stores master keys (411, 431).
  • the temporary key generation unit generates a temporary key (413, 435) using the master key stored in the master key storage unit and the temporary key generation data (generation numbers 412 and 432).
  • the temporary key is generated from the master key and the temporary key generation data, the temporary key used for encrypted communication can be easily changed.
  • the cryptographic processing devices (cryptographic communication devices 300 and 500, meter-reading meter 301) further include a temporary key generation data verification unit (350, reception determination unit 396) and a cryptographic communication unit (390, portable terminal communication unit 391). And have.
  • temporary key generation data verification unit temporary key generation data (generation numbers 412 and 432) notified from other cryptographic processing devices (encryption communication devices 200 and 500, portable terminal 201, meter-reading meter 301) are valid. It is determined whether or not there is.
  • the temporary key generation data verification unit determines that the temporary key generation data notified from the other cryptographic processing device is valid, the temporary key generation unit (110, 110, 310, 111, 311) stored in the master key (411, 431) and the temporary key generation data determined by the temporary key generation data verification unit as valid, the temporary key (435) Is generated.
  • the cryptographic communication unit (390, mobile terminal communication unit 391) performs cryptographic communication with the other cryptographic processing device using the temporary key generated by the temporary key generation unit.
  • the cryptographic processing devices further include a temporary key generation data storage unit (130, a verification data storage unit 330, a generation number counter 331), and a temporary key generation data update. (140, verification data update unit 340, generation number counter 331).
  • the temporary key generation data storage unit stores temporary key generation data (generation number 432) used by the temporary key generation unit (160, 360, 364) to generate the temporary key (413, 435).
  • the temporary key generation data update unit repeatedly updates the temporary key generation data stored in the temporary key generation data storage unit every time a predetermined period elapses.
  • the temporary key generation data verification unit uses the temporary key generation data stored in the temporary key generation data storage unit to use the other encryption processing device (encryption communication device 200). , 500, portable terminal 201, meter-reading meter 301), it is determined whether the temporary key generation data (generation numbers 412 and 432) notified is valid.
  • the temporary key generation data (generation number 432) stored in the temporary key generation data storage unit (130, verification data storage unit 330, generation number counter 331) is data representing a numerical value.
  • the temporary key generation data update unit (140, verification data update unit 340, generation number counter 331) sets a predetermined value to the numerical value represented by the temporary key generation data stored in the temporary key generation data storage unit. A sum obtained by adding the increment values is calculated, and the temporary key generation data stored in the temporary key generation data storage unit is updated with data representing the calculated sum.
  • the temporary key generation data verification unit (350, reception determination unit 396) receives the temporary key generation data notified from the other cryptographic processing devices (encrypted communication devices 200 and 500, portable terminal 201, meter-reading meter 301). When the numerical value represented by (generation number 412) is greater than or equal to the numerical value represented by the temporary key generation data stored in the temporary key generation data storage unit, the temporary information notified from the other cryptographic processing device. It is determined that the key generation data is valid.
  • the temporary key generation data storage unit (130, verification data storage unit 330, generation number counter 331) is notified from the other encryption processing devices (encryption communication devices 200 and 500, portable terminal 201, meter-reading meter 301). If the temporary key generation data verification unit (350, reception determination unit 396) determines that the temporary key generation data (generation numbers 412 and 432) is valid, the temporary key generation data is valid. The temporary key generation data determined by the data verification unit is stored.
  • the cryptographic processing device (cryptographic communication device 300, meter-reading meter 301) further includes an initialization command verification unit (initialization command verification unit 375, reception determination unit 396).
  • the initialization command verification unit determines whether the initialization command (reset packet 419) notified from the other cryptographic processing device (encrypted communication device 200, portable terminal 201, management server 101) is valid. .
  • the temporary key generation data storage unit (verification data storage unit 330, generation number counter 331), the initialization command verification unit determines that the initialization command notified from the other cryptographic processing device is valid. In this case, the stored temporary key generation data (generation number 432) is initialized.
  • the cryptographic processing devices (the cryptographic communication devices 200 and 500, the portable terminal 201, and the meter-reading meter 301) further include a temporary key generation data notification unit (250, the counter-metering meter communication unit 291) and a cryptographic communication unit (290, paired meter). Meter reading meter communication units 291 and 371).
  • the temporary key generation data notifying unit includes the temporary key generation data (generation numbers 412 and 432) used by the temporary key generation unit (160, 164, 364) to generate the temporary key (temporary keys 413, 435).
  • the encryption communication unit performs encryption communication with the other encryption communication device using the temporary key generated by the temporary key generation unit.
  • Management device 100, encryption communication device 500, management server 101), first encryption communication device (encryption communication devices 200, 500, portable terminal 201), second encryption communication device (encryption communication devices 300, 500, meter reading) described above Meter 301) and cryptographic processing device (management device 100, cryptographic communication devices 200, 300, 500, management server 101, portable terminal 201, meter-reading meter 301) can be realized by a computer executing a computer program. According to a computer program that causes a computer to function as a management device, a first cryptographic communication device, a second cryptographic communication device, or a cryptographic processing device, it is possible to easily realize a cryptographic communication system or a cryptographic processing device that exhibits the effects described above. it can.
  • the meter meter (301) communicates with an external device (portable terminal 201) to communicate power information and control information.
  • the wireless section may be communicated, and it is necessary to protect these from illegal acts such as eavesdropping.
  • an encryption communication system is used in which information is encrypted and transmitted, and decrypted and used on the receiving side.
  • a cryptographic communication system it is necessary to share a key used for encryption between a sender and a receiver.
  • a cipher called a common key cipher it is necessary to prevent the shared key from leaking to the outside.
  • the key used for encryption can be easily changed. Moreover, even if a portable terminal is lost and an unauthorized person acquires the terminal, meter reading information for all meter meters cannot be acquired.
  • the counter can be easily synchronized between the client and server. Even when the counter deviates, the deviation can be corrected, so that communication is possible even when the deviation exceeds a certain range.
  • the temporary key can be automatically invalidated after a certain period of time.
  • the cryptographic communication system described above it is possible to provide a communication device that realizes key invalidation and key synchronization while using a temporary key.
  • the encryption communication system demonstrated above is applicable not only to the communication between the meter-reading meter and portable terminal in an automatic meter-reading system but to the encryption communication of arbitrary apparatuses.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Storage Device Security (AREA)
  • Telephonic Communication Services (AREA)

Abstract

La présente invention porte sur un dispositif d'administration (100) qui conserve en mémoire une clé maître et des données de génération de clé temporaire et qui met périodiquement à jour les données de génération de clé temporaire. Le dispositif d'administration (100) génère une clé temporaire à partir de la clé maître et des données de génération de clé temporaire, et il envoie à un dispositif de communication chiffrée (200) la clé temporaire et les données de génération de clé temporaire. Le dispositif de communication chiffrée (200) envoie à un dispositif de communication chiffrée (300) les données de génération de clé temporaire et utilise la clé temporaire pour une communication chiffrée avec le dispositif de communication chiffrée (300). Le dispositif de communication chiffrée (300) conserve en mémoire la clé maître et des données de vérification et il met périodiquement à jour les données de vérification. Le dispositif de communication chiffrée (300) utilise les données de vérification de façon à vérifier les données de génération de clé temporaire qui lui sont envoyées à partir du dispositif de communication chiffrée (200) et il utilise la clé temporaire qui est générée à partir de la clé maître et des données de génération de clé temporaire pour une communication chiffrée avec le dispositif de communication chiffrée (200).
PCT/JP2011/077077 2011-11-24 2011-11-24 Système de communication chiffrée, dispositif de communication chiffrée, programme informatique et procédé de communication chiffrée Ceased WO2013076848A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/JP2011/077077 WO2013076848A1 (fr) 2011-11-24 2011-11-24 Système de communication chiffrée, dispositif de communication chiffrée, programme informatique et procédé de communication chiffrée
CN201180075018.2A CN103947150A (zh) 2011-11-24 2011-11-24 密码通信系统、密码处理装置、计算机程序以及密码通信方法

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2011/077077 WO2013076848A1 (fr) 2011-11-24 2011-11-24 Système de communication chiffrée, dispositif de communication chiffrée, programme informatique et procédé de communication chiffrée

Publications (1)

Publication Number Publication Date
WO2013076848A1 true WO2013076848A1 (fr) 2013-05-30

Family

ID=48469326

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2011/077077 Ceased WO2013076848A1 (fr) 2011-11-24 2011-11-24 Système de communication chiffrée, dispositif de communication chiffrée, programme informatique et procédé de communication chiffrée

Country Status (2)

Country Link
CN (1) CN103947150A (fr)
WO (1) WO2013076848A1 (fr)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2017034555A (ja) * 2015-08-04 2017-02-09 株式会社ジェイテクト データ通信システム、データ通信機器及びデータ通信方法
JP2018081352A (ja) * 2016-11-14 2018-05-24 Necプラットフォームズ株式会社 検針システム、検針方法および検針プログラム
US11101998B2 (en) 2016-10-03 2021-08-24 Nec Corporation Communication device, communication method, and recording medium
JP2023052395A (ja) * 2016-11-03 2023-04-11 レスメド・プロプライエタリー・リミテッド 方法、デバイス、サーバー、呼吸治療システム、および装置
WO2024095485A1 (fr) * 2022-11-04 2024-05-10 株式会社Nttドコモ Dispositif de sécurité d'authentification, terminal, système de communication, et procédé de communication

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110849449B (zh) * 2019-11-15 2021-09-14 成都千嘉科技有限公司 超声波燃气表加密校正方法

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2010068396A (ja) * 2008-09-12 2010-03-25 Toshiba Corp 暗号化装置、端末装置、暗号化プログラム及び方法、情報処理プログラム及び方法
JP2011146898A (ja) * 2010-01-14 2011-07-28 Mitsubishi Electric Corp 鍵生成装置及び第1の通信装置及び第2の通信装置及び情報処理システム

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050005093A1 (en) * 2003-07-01 2005-01-06 Andrew Bartels Methods, systems and devices for securing supervisory control and data acquisition (SCADA) communications
JP2008004978A (ja) * 2006-06-20 2008-01-10 Nec Electronics Corp 無線通信システム、無線通信装置、及び無線通信装置間での暗号鍵の交換方法
CN101409882A (zh) * 2007-10-10 2009-04-15 华为技术有限公司 用于网络安全的握手方法、握手发起装置和握手响应装置

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2010068396A (ja) * 2008-09-12 2010-03-25 Toshiba Corp 暗号化装置、端末装置、暗号化プログラム及び方法、情報処理プログラム及び方法
JP2011146898A (ja) * 2010-01-14 2011-07-28 Mitsubishi Electric Corp 鍵生成装置及び第1の通信装置及び第2の通信装置及び情報処理システム

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2017034555A (ja) * 2015-08-04 2017-02-09 株式会社ジェイテクト データ通信システム、データ通信機器及びデータ通信方法
US11101998B2 (en) 2016-10-03 2021-08-24 Nec Corporation Communication device, communication method, and recording medium
JP2023052395A (ja) * 2016-11-03 2023-04-11 レスメド・プロプライエタリー・リミテッド 方法、デバイス、サーバー、呼吸治療システム、および装置
US11998692B2 (en) 2016-11-03 2024-06-04 Resmed Inc. Secure networked respiratory therapy systems
JP7723023B2 (ja) 2016-11-03 2025-08-13 レスメド・プロプライエタリー・リミテッド 方法、デバイス、サーバー、呼吸治療システム、および装置
US12453828B2 (en) 2016-11-03 2025-10-28 Resmed Inc. Secure networked respiratory therapy systems
JP2018081352A (ja) * 2016-11-14 2018-05-24 Necプラットフォームズ株式会社 検針システム、検針方法および検針プログラム
WO2024095485A1 (fr) * 2022-11-04 2024-05-10 株式会社Nttドコモ Dispositif de sécurité d'authentification, terminal, système de communication, et procédé de communication

Also Published As

Publication number Publication date
CN103947150A (zh) 2014-07-23

Similar Documents

Publication Publication Date Title
KR101501418B1 (ko) 무선 장치에 대한 안전 시간 기능
RU2538283C2 (ru) Аутентификация устройства и пользователя
US6950523B1 (en) Secure storage of private keys
US5751809A (en) Apparatus and method for securing captured data transmitted between two sources
EP1329049B1 (fr) Procede et appareil de certification numerique en temps reel de fichiers et de transactions electroniques et utilisateur de facteurs d'entropie
US20070257813A1 (en) Secure network bootstrap of devices in an automatic meter reading network
KR102177848B1 (ko) 액세스 요청을 검증하기 위한 방법 및 시스템
CN112187466B (zh) 一种身份管理方法、装置、设备及存储介质
KR102578428B1 (ko) 생체 인식 템플릿 보호 키 업데이트
KR101686167B1 (ko) 사물 인터넷 기기의 인증서 배포 장치 및 방법
FR2926938A1 (fr) Procede d'authentification et de signature d'un utilisateur aupres d'un service applicatif, utilisant un telephone mobile comme second facteur en complement et independamment d'un premier facteur
WO2013076848A1 (fr) Système de communication chiffrée, dispositif de communication chiffrée, programme informatique et procédé de communication chiffrée
JP2000222360A (ja) 認証方法、認証システム及び認証処理プログラム記録媒体
CN113691502A (zh) 通信方法、装置、网关服务器、客户端及存储介质
KR102169695B1 (ko) 자가검증이 가능한 블록체인 전자투표 관리 방법
CN111259419A (zh) 基于多传感器的随机数加密方法及装置
CN104009842A (zh) 基于des、rsa加密算法及脆弱数字水印的通信数据加解密方法
JP5223860B2 (ja) 時刻情報配信システム、時刻配信局、端末、時刻情報配信方法及びプログラム
KR101746102B1 (ko) 무결성 및 보안성이 강화된 사용자 인증방법
CN106936581A (zh) 以数字时间戳装置发出实时同步的时间戳的验证系统及方法
JP5623657B2 (ja) 暗号通信システム及び暗号処理装置及びコンピュータプログラム及び暗号通信方法
CN120856475B (zh) 设备安全认证方法、设备及存储介质
KR20140033824A (ko) 스마트 디바이스에서 해쉬값 기반 대칭키 암호화 시스템 및 방법
KR20180052479A (ko) 서명 체인을 이용한 유무선 공유기의 펌웨어 업데이트 시스템, 유무선 공유기 및 유무선 공유기의 펌웨어 업데이트 방법
CN110287733A (zh) 一种文件防篡改方法和装置

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11876121

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2013545721

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11876121

Country of ref document: EP

Kind code of ref document: A1