WO2001052168A1 - Cookie data stored on transportable recording medium - Google Patents

Cookie data stored on transportable recording medium Download PDF

Info

Publication number
WO2001052168A1
WO2001052168A1 PCT/US2001/000881 US0100881W WO0152168A1 WO 2001052168 A1 WO2001052168 A1 WO 2001052168A1 US 0100881 W US0100881 W US 0100881W WO 0152168 A1 WO0152168 A1 WO 0152168A1
Authority
WO
WIPO (PCT)
Prior art keywords
recording medium
user
information
service
service providing
Prior art date
Application number
PCT/US2001/000881
Other languages
French (fr)
Inventor
Hideki Matsushima
Masayuki Kozuka
Original Assignee
Matsushita Electric Industrial Company, Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Matsushita Electric Industrial Company, Limited filed Critical Matsushita Electric Industrial Company, Limited
Priority to US09/936,610 priority Critical patent/US7065503B2/en
Priority to JP2001552318A priority patent/JP4759198B2/en
Publication of WO2001052168A1 publication Critical patent/WO2001052168A1/en
Priority to US11/368,536 priority patent/US7792755B2/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising

Definitions

  • the present invention relates to data communication between a user's apparatus and another apparatus, such as the access from a terminal on the Internet to a Web site. More particularly, the present invention relates to a technique of facilitating the handling of personal information of each user and enhancing the security of the personal information.
  • WWW World WideWeb
  • Web sites provide information in HTML files and users of the Internet browse the information using browsing software called Web browsers at terminals (Web clients) .
  • Web clients browsing software
  • Various information and services are currently provided at numerous Web sites and a technology called "cookies" is widely used to provide information with efficiency.
  • the Web site stores data, such as personal information of the user, as a cookie in the terminal of the user through the Web browser.
  • the Web site reads the cookie from the terminal and uses the read cookie to provide information to the user.
  • Cookies usually show personal information of users, the last dates and times the users visited Web sites, and the numbers of times the users have visited the Web sites. Cookies are also used to identify users. Therefore, cookies are used as an element technology in various authentication systems and personalizing systems that customize services provided in WWW for respective users and provide the customized services to the users.
  • cookies While being a useful technology, cookies also have problems described below.
  • One problem is caused by that Web sites store data, such as personal information of users, into terminals with which the users visit the Web sites . If a single user uses a plurality of terminals or a plurality of users shares a single terminal or a plurality of terminals, therefore, Web sites cannot correctly obtain and use information of respective users with cookies. Also, if a user replaces an old terminal with new one, data stored as a cookie does not exist in the new terminal. Therefore, to continuously use the cookie even after the replacement, the user needs to copy the cookie from the old terminal to the new terminal, which constitutes a burden on the user.
  • Another problem is caused by that personal information of users may be automatically stored as cookies without the users intending to do so and even Web sites, which are not the sites that stored cookies, may refer to the cookies with relative ease. Consequently, there maybe cases where cookies are maliciously read, causing users' privacy to be violated or making users a victim of cyber fraud. This generates demand for the enhancement of the security of personal information.
  • the object of the present invention is therefore to provide a service providing apparatus, a service providing method, and a serviceprovidingprogramforusewithatechnology, such as cookies, that customizes services provided via a network for respective users .
  • Each of the service providing apparatus, service providing method, and service providing program correctly handles information unique to each user even if a single user uses a plurality of terminals or a plurality of users shares a single terminal or a plurality of terminals.
  • Each of the service providing apparatus, service providing method, and service providing program also eliminates the need for users to perform burdensome operations, such as the copy of data, even if the users replace old apparatuses with new ones.
  • Each of the service providing apparatus, service providing method, and service providing program further enhances the security of personal information.
  • the object of the present invention is also to provide a recording medium that stores the service providing program and a recording medium that stores cookie information.
  • a service providing method of providing a current user of a first apparatus with each of services that are provided by a plurality of other apparatuses via a network the first apparatus being able to communicate with each of the plurality of other apparatuses via the network and being locally connectable to a recording medium, out of recording media that are uniquely assigned to users of the first apparatus, each recording medium being transportable and including an area for storing unique information
  • the service providing method including: a service requesting step where the first apparatus requests a second apparatus to provide a service desired by the current user, the second apparatus being one of the plurality of other apparatuses; a unique information reading step where if a recording medium of the current user is locally connected to the first apparatus and stores unique information, the second apparatus reads the unique information in the locally connected recording medium via the first apparatus and the network; and a service providing step where the second apparatus customizes the desired service according to the read unique information and transmits the customized service to the first apparatus.
  • an apparatus on the network reads the unique information stored in
  • the users are in a one-to-one correspondence with the recording media even if the users are not in a one-to-one correspondence with terminals. Therefore, when a user browses aWebsite, personal informationof theuser is correctlyobtained from the user's recording medium. Also, even after replacing an old terminal with new one, the user can continuously receive the same service by simply connecting the user's recording medium to the new terminal.
  • the second apparatus may not read unique information from anywhere, and in the service providing step, if no unique information has been read in the unique information reading step, the second apparatus may transmit the desired service to the first apparatus in an uncustomized state. .
  • the apparatus provides the user with a service that is not customized.
  • the unique information stored in each recording medium may include user information that is inherent in a user assigned the recording medium, and in the service providing step, the second apparatus may customize the desired service for the current user according to the user information included in the read unique information and transmit the customized service to the first apparatus .
  • the apparatus reads user information included in the unique information stored in the transportable recording medium and customizes the service for the user according to the user information.
  • the user information is stored in the transportable recording medium, the user can continuously use the same personal information without difficulty, even after replacing an old terminal with new one.
  • the service providing method may further include: a user information updating step, performed after the unique information reading step, where if the user information inherent in the current user needs to be updated, the second apparatus updates the user information included in the read unique information and overwrites the user information in the locally connected recording medium with the updated' user information via the network and the first apparatus .
  • the second apparatus updates the user information.
  • the user information in each recording medium may have been encrypted using a public key of a public key cryptosystem
  • the second apparatus may store a secret key corresponding to the public key
  • the secondapparatus maydecrypt the encrypteduser information using the secret key andcustomize the desired service according to the decrypted user information in the service providing step
  • the second apparatus may update the decrypted user information, encrypt the updated user information using the public key, and overwrite the encrypted user information in the locally connected recording medium with the updated and encrypted user information in the user information updating step.
  • the etwork may be the Internet
  • the first apparatus may be an Internet terminal that runs a specialized Internet browser
  • each .of the plurality of other apparatuses maybe aWeb site
  • the unique information stored in each recording medium may include cookie information used through the Internet browser
  • each recording medium may store the cookie information as a file.
  • cookie information that has conventionally been recorded on a hard disc is stored in a transportable recording medium. This reduces the possibility that the cookie information may be maliciously read, causing a user ' s privacy to be violated or making the user a victim of cyber fraud.
  • the unique information stored in each recording medium may include a media identifier of the recording medium
  • the second apparatus may store user information so that user information inherent in each user is associated with the media identifier of the recording medium assigned to the user
  • the service providing step may include: a user information finding substep where the second apparatus finds user information associated with the . media identifier included in the read unique information; and a customizing substep where the second apparatus customizes the desired service for the current user according to the found user information. This allows the second apparatus to search for user information corresponding to the media identifier included in the unique information stored in the transportable recording medium and to customize the service for the user according to the user information.
  • the user can continuously receive the same service with the recording medium uniquely assigned to the user. Also, because the user information does not reside in the us.er's terminal, the possibility is reduced that the user information may be maliciously read from the user's terminal,' causing a user's privacy to be violated or making the user a victim of cyber fraud.
  • the service providing method may further include : a recordingmedium connection step, performedbefore the service requesting step, where the first apparatus is locally connected to. the recording medium assigned to the current user.
  • the recording medium is uniquely assigned to the user of the first apparatus and is locally connected to the first apparatus.
  • the unique information stored in each recording medium may include a media identifier of the recording medium and user information that is inherent in a user assigned the recording medium, the user information having been encrypted
  • the service providing step may include: a user password receiving substep where the second apparatus receives a user password from the current user via the first apparatus; a decryption key generating substep where the second apparatus generates a decryption key from the media identifier included in the read unique information and the received user password; a decryption substep where the second apparatus decrypts the encrypted user information included in the read unique information using the generated decryption key; and a customizing substep where the second apparatus customizes the desired service for the current user according to the decrypted user information.
  • the encrypted user information is decrypted using the decryption key generated from the media identifier and the user password. This enhances the security of the user information.
  • each recording medium may include a secure data area
  • the. media identifier of each recording, medium may be stored in the secure data area of the recording medium
  • the unique information reading step may include: a device authentication substep where a device authentication is performed between the first apparatus and the locally connected recording medium; and a reading prohibition substep where> if the device authentication has ended in failure, the second apparatus is prohibited to read data from the secure data area of the locally connected recording medium.
  • Fig. 1 shows the construction of an information processing system of the first embodiment of the present invention
  • Fig. 2 shows the detailed, construction of a recording medium
  • Fig. 3 shows the construction of an information processing apparatus
  • Fig.4 shows an example content of personal information written by a writing unit into a non-secure data area of the recording medium
  • Fig. 5 shows the construction of a file server
  • Fig. 6 is a flowchart showing the processing procedure of the information processing system of the first embodiment
  • Fig. 7 shows the construction of an information processing system of the second embodiment of the present invention.
  • Fig. 8 shows the detailed construction of a recording medium
  • Fig. 9 shows, the construction of an information processing apparatus
  • Fig. 10 shows the construction of a file server
  • Fig. 11 shows an example content of the personal information stored in a storing unit
  • Fig.12 is a ' flowchart showing the processing procedure of the information processing system of the second embodiment.
  • the data area for storing cookies is reserved in a transportable recording medium. This allows the cookies to be used in different terminals by simply connecting the recording medium to the respective terminals . This also has cookies, which has conventionally been unique to respective terminals, become unique to respective users.
  • the recording medium includes a secure data area that stores a media identifier and is accessible only by terminals whose authenticities have been proved by the device authentication with the recordingmedium.
  • the recordingmedium also includes a data area that is not secure and stores a cookie, such as user information, that has been encrypted using a public key obtained under a public key cryptosystem. It should be noted here that the data area that is not secure is hereinafter referred to as the "non-secure data area" .
  • AWeb site requestedby an authorized terminal to provide a service reads the media identifier from the secure data area via the terminal and identifies the user of the terminal using the readmedia identifier .
  • the Web site also reads the encrypted cookie from the non-secure data area, decrypts the read cookie using a secret key stored in the Web site, customizes the service according to the decrypted cookie, and provides the customized service to the terminal. It shouldbe noted here that if the device authentication between the recording medium . and the terminal has ended in failure, the media identifier is not read and the Web site cannot identify the user.
  • unauthorized Web sites do not store the secret key, so that the encrypted cookie cannot be decrypted by the unauthorized Web sites.
  • the security of personal information is enhanced in comparison with a conventional system.
  • ⁇ Fig. 1 shows the construction of' the information processing system 100 of the first embodiment.
  • the information processing system 100 includes a recording medium 110, an information processing apparatus 120, and a. file server 130.
  • the recording . medium 110 is, for instance, a semiconductor medium, such as a memory card, and a user locally connects the recording medium 110 to the information processing apparatus 120 via a port, a slot, or the like.
  • the information processing apparatus 120 is a. client apparatus, such as an Internet terminal, that runs a specialized
  • Web browser and is. connected to a network, such as the Internet.
  • the information processing apparatus 120 is connected to the file server 130 via the network, issues an access request to the file server 130, and browses information provided in HTML files by the file server 130.
  • the file server 130 is a server apparatus, such as a Web site, that is connected to a network, such as the Internet .
  • the file server 130 is connected to the information processing apparatus 120 via the network and provides information in HTML files to the information processing apparatus 120.
  • the information processing apparatus 120 is not limited to an Internet terminal and may be any other device that can access the information provided by the file server 130 via the network.
  • the information processing apparatus 120 may be an Internet-accessible TV, STB, radio cassette tape recorder, microwave oven, or refrigerator.
  • Fig.2 shows the detailed construction of the recording medium 110.
  • the recording medium 110 includes a secure data area 111, a non-secure data area 112, and an authentication unit 113.
  • a media ID is stored in the secure data area 111. It should be noted here that media IDs are identifiers unique to respective recording media and are used to identify users and to generate encryption keys.
  • the authentication unit 113 performs an existing device, authentication, such as . a mutual authentication, with an apparatus to which the recording medium 110 is connected. In this embodiment, the authentication unit 113 performs a mutual authentication with an authentication unit 124 of the information processing apparatus 120.
  • the secure data area 111 is a storage area that cannot be accessed without an access right. That is, only if the device authentication between the recording medium 110 and the information processing apparatus 120 has succeeded, the information processing apparatus 120 can access the secure data area 111.
  • the non-secure data ' area 112 is a storage area that can be freely accessed. That is, the information processing apparatus 120 can access the non-secure data area 112 even if the device authentication between the recording medium 110 and the information processing apparatus 120 has ended in failure.
  • Fig. 3 shows the construction of the information processing apparatus 120.
  • the information processing apparatus 120 includes an input unit 121,' an encryption unit
  • a transmission unit 123 a transmission unit 123, an authentication unit 124, a receiving unit 125, a reading unit 126, a display unit 127, and a writing unit 128.
  • the input unit 121 is an input device, such as a combination of a mouse and a keyboard, and receives various inputs from a user.
  • the input unit 121 receives a service providing' request and personal information from the user.
  • the service.providing request is a request for providing a service.
  • the personal information is information unique to the user, such as the user's name, age, date of birth, sex, family, hobby, taste, address, telephone number, job, E-mail address, credit card number, and.password.
  • the encryption unit 122 encrypts the personal information received by the input unit 121.
  • the encryption unit 122 receives a public key that has been obtained under a public key cryptosystem, such as. a RSA cryptosystem, from the file server 130 and prestores the public key.
  • the encryption unit 122 encrypts the personal information using the public key.
  • the transmission unit 123 transmits, to the file server 130, the service providing request received by the input unit 121, the media ID read by the reading unit 126, the personal information encrypted by the encryption unit 122, and the encrypted personal information read by the reading unit 126.
  • the transmission unit 123 transmits a personal information unregisterednotification, insteadof the personal information.
  • the personal information unregistered notification is a notification showing that no personal information has been read.
  • the authentication unit 124 performs an existing device authentication, such as a mutual authentication, with a recordingmediumthat is connected to the informationprocessing apparatus 120.
  • the authenticationunit 124 performs a mutual authentication with the authentication unit 113 of the recording medium 110.
  • the receiving unit 125 receives, from the file server 130, a media ID transmission request, a personal information transmission request, a service file, data for a personal information registration screen, and encrypted personal information.
  • the. media ID transmission request is a request for transmitting the media ID
  • the personal information transmission request is a request for transmitting the personal information.
  • the personal information registration screen is a screen for allowing the user to register personal information.
  • the personal information received by the receiving unit 125 includes information concerning the Web site (the file' server 130) , such as the last date and time the user visited the Web site and the number of times the user has visited the Web site.
  • the service file contains screen data provided as part of the service that the user requested by issuing the service providing request. The screen data is, for instance, used to display various information screens or a screen explaining an operating procedure .
  • the reading unit 126 reads, if a media ID transmission request is received by the receiving unit 125, the media ID from the secure data area 111 of the recording medium 110. Also, if a personal information transmission request is received by the receiving unit 125, the reading unit 126 reads the personal information from the non-secure data area 112 of the recording medium 110. It should be noted here that if the device authentication between the recording medium 110 andthe informationprocessing apparatus 120 has ended in failure, the access to the secure data area 111 is prohibited so that the reading unit 126 cannot read the media ID from the secure data area 111.
  • the display unit 127 displays a personal information registration screen according to the data for the personal information registration screen received by the receiving unit 125.
  • the display unit 127 also displays a service screen for the user according to the service file received by the receiving unit 125.
  • the service screen is a screen displayed as part of the service that the user requested by issuing the service providing request.
  • the writing unit 128 writes personal information, which, have been received and encrypted by the receiving unit 125, into the non-secure data area 112 of the recording medium 110.
  • . . Fig. 4 shows an example content of the personal information written by the writing unit 128 into the non-secure data area 112 of the recording medium 110.
  • the file server 130 includes a receiving unit 131, a user identifying unit 132, a decryption unit 133, a file material storing unit 134, a file editing unit 135, a personal information updating unit 136, and a transmission unit 137.
  • the receiving unit 131 receives a service providing request, a media ID, an encrypted personal information, a personal information unregistered notification, and a personal information changing request from the transmission unit 123 of the information processing apparatus 120.
  • the personal information changing request is a request for changing the personal information.
  • the user identifying unit 132 identifies the user using the media ID received by the receiving unit 131.
  • the decryption unit 133 decrypts the encrypted personal information received by. the receiving unit 131.
  • the decryption unit 133 prestores a secret key that has been obtained under a public key cryptosystem, such as a RSA cryptosystem, and decrypts the encryptedpersonal information using the secret key.
  • the file material storing unit 134 stores file materials that have been classified according to hobbies and tastes of users.
  • the file editing unit 135 refers to the personal information decrypted by the decryption unit 133 and generates a service file by extracting each file material, which corresponds to the user ' s hobby and taste shown by the decrypted personal information, from the file material storing unit 134 and editing each extracted file material.
  • the personal information updating unit 136 provides the data for the personal information registration screen, updates the personal information decrypted by the decryption unit 133, and. encrypts the updated personal information, if the receiving unit receives a personal information unregistered notification or a personal information changing request .
  • the personal information updating unit 136 prestores a public key that has been obtained under a public key cryptosystem, such as a RSA cryptosystem, ' updates the personal information by changing information concerning the Web site, such as the last date and time the user visited the Web site and the number of times the user has visited the Web site, and encrypts the updated personal information using the public key.
  • a public key cryptosystem such as a RSA cryptosystem
  • the transmission unit 137 transmits a media ID transmission request and a personal information transmission request, if the receiving unit 131 receives a service providing request.
  • the transmission unit 137 also transmits the service file generated by the file editing unit 135, the data for the personal information registration screen provided by the personal information updating unit 136, and the personal information that has been updated and encrypted by the personal information updating unit 136.
  • FIG. 6 is a flowchart showing the processing procedure ofthe informationprocessing system 100 ofthe first embodiment. The processing procedure is briefly described below • with reference to this drawing.
  • the input unit 121 of the information processing apparatus 120 receives a service providing request from the user (step SI) .
  • the transmission unit 123 transmits the service providing request received by the input unit 121 to the file server 130 (step S2) .
  • the receiving unit 131 of the file server 130 receives the service providing request from the information processing apparatus 120 (step S3) .
  • the transmission unit 137 transmits a media ID transmission request and a personal information transmission request to the information processing apparatus 120 (step S4) .
  • the receiving unit 125 of the information processing apparatus 120 receives the media ID transmission request and the personal information transmission request from the file server 130 (step S5) .
  • the reading unit 126 reads a media ID from the secure data area 111 of the recording medium 110 according to the media ID transmission request. Also, the reading unit 126 reads encrypted personal information from the non-secure data area 112 of the recording medium 110 according to the personal information transmission request. Needless to say, if no. personal information is stored in the non-secure data area 112, the reading unit 126 cannot read personal information from the non-secure data area 112 (step S6) .
  • the transmission unit 123 transmits the media ID and encrypted personal information read by the reading unit 126 to the file server 130. If the reading unit 126 has read no personal information, the transmission unit 123 transmits a personal information unregistered notification, instead of personal information (step S7) .
  • the receiving unit 131 of the file server 130 receives a pair of the media ID and the encrypted personal information or a pair of the media ID and the personal information unregistered notification.
  • the user identifying unit 132 identifies the user using the received media ID (step S8) .
  • step S9 It is judged whether the receiving unit 131 has received personal information or a personal information unregistered notification.
  • step S10 If the receiving unit 131 has received a personal information unregistered notification, the . personal information updating unit 136 provides the data for the personal information registration screen and the transmission, unit 137 transmits the data (step S10) .
  • the receiving unit 125 of the information processing apparatus 120 receives the data for the personal information registration screen transmitted from the file server 130 and the display unit 127 displays the personal . information registration screen (step Sll) .
  • the input unit 121 receives personal- information inputted by the user through the personal information registration screen (step S12) .
  • the encryption unit 122 encrypts the personal information received by the input unit 121 and the transmission unit 123 transmits the encrypted personal information to the file server 130 (step S13) .
  • the receiving unit 131 of the file server 130 receives the encrypted personal information (step S14) .
  • the decryption unit 133 decrypts the encrypted personal information received by the receiving unit 131 (step S15) .
  • the . file editing unit 135 refers to the personal information decrypted by the decryption unit 133 and generates a service file by extracting each file material, which corresponds to the user' s hobby and taste shown by the decrypted personal information, from the file material storing unit 134 and editing each extracted file material (step S16) .
  • the personal information updating unit 136 updates the personal information decrypted by the decryption unit 133 and encrypts the updated personal information (step S17) ..
  • the transmission unit 137 transmits the service file generated by the file editing unit 135 and the personal information updated and encrypted by the personal- information updating unit 136 (step S18) .
  • the receiving unit 125 of the information processing apparatus 120 receives the service file from the file server 130 and the display unit 127 display a service screen for the user according to the received service file.
  • the receiving unit 125 also receives the updated and encrypted personal information and the writingunit 128 writes the receivedpersonal information into the non-secure data area 112 of the recording medium 110 (step S19) .
  • personal information concerning a user is encrypted and stored in a transportable recordingmedium and a server reads the personal information from the recording medium, decrypts the read personal information, and customizes a requested service for the user according to the decrypted personal information.
  • a server reads the personal information from the recording medium, decrypts the read personal information, and customizes a requested service for the user according to the decrypted personal information.
  • each user needs to connect a transportable recording medium, which is uniquelyassignedto the user and stores personal information of the user, to the information processing apparatus .
  • the security of personal information is also enhanced because personal information that has been encrypted is stored in a transportable recording medium.
  • an encryption key may be generated from a media ID and personal information may be encrypted using the encryption key and stored in the non-secure data area of a recording medium. Also, an encryption key may be generated from a media ID and a user password designated by a user.
  • encryptedpersonal information concerning a user is stored in the non-secure data area of a transportable recording medium. However, the encrypted personal information may be stored in the secure data area of the transportable recording medium. In this case, the recording medium does not need to include a non-secure data area.
  • the file server may provide a requested service without customizing the service.
  • encryptedpersonal information concerning a user is stored in a transportable recording medium.
  • each transportable recordingmedium stores a media identifier and is uniquely provided to a user.
  • a file server stores personal information of respective users, with the personal information of each, user being associated with one media identifier.
  • the file server reads a media identifier from a recording medium, searches for personal information corresponding to the media identifier, and customizes a service according to the corresponding personal information.
  • encryptedpersonal information is stored and transmitted to enhance the security of personal information.
  • encrypted personal information is transmitted between the information processing apparatus and the file server like the first embodiment, personal information that is not encrypted is stored in a file server. This is because there is no security problem in the file server.
  • Fig. 7 shows the construction of an information processing system 200 of the second embodiment.
  • the information processing system 200 includes a recording medium 210, an information processing apparatus 220, and a file server 230.
  • the recording medium 210, the information processing apparatus 220, and the file server 230 are respectively similar to the recording medium 1 . 10, the information processing apparatus 120, and the file server 130.
  • Fig.8 shows the detailed construction of the recording medium 210.
  • the recording medium 210 includes a secure data area 111, a non-secure data area 112, and an authentication unit 113.
  • a media ID is stored in the secure data area 111.
  • Fig. .9 shows the construction of the information processing apparatus 220.
  • the information processing apparatus 220 includes an input unit 121, an encryption unit 122, a transmission unit 223, an authentication unit 124, a receiving unit.225, a reading unit 226, and a display unit
  • the transmission unit 223 transmits the service providing request received by the input unit 121, the media ID read by the reading unit 226, and the personal information encrypted by the encryption unit 122 to the file server 230.
  • the transmission unit 223 transmits a media ID reading impossible notification, instead of the media ID.
  • the media. ID reading impossible notification is a notification . showing that the reading unit 226 has read no media ID.
  • the receiving unit 225 receives a media ID transmission request, a service file, and data for a. personal information registration screen from the file server 230.
  • the reading unit 226 reads, if a media ID transmission request is received by the receiving unit 225, a media ID from the secure data area 111 of the recording medium 210. It should be noted here that if. the device authentication between the recording medium 210 and the information processing apparatus 220 has ended in failure, the access to the secure data area 111 is prohibited so that the reading unit 226 cannot read the media ID from the secure data area 111.
  • Fig. 10 shows the construction of the file server 230.
  • the file server 230 includes a receiving unit 231, a personal information searching unit 232, a decryption unit 133, a file material storing unit 134, a file editing unit 235, a personal information updating unit
  • the . receiving unit 231 receives a service providing request, a media ID, encrypted personal information, a media ID reading impossible notification, and a personal information changing request from the transmission unit 223 of the information processing apparatus 220.
  • the personal information searching unit 232 searches the storing unit 238.for personal information that corresponds to the media ID received by the receiving unit 231.
  • the file editing unit 235 refers to the corresponding personal information and generates a service file by extracting each file material, which corresponds to the user's hobby and taste shown by the personal information, from the file material storing unit. 134 and editing each extracted file material.
  • the file editing unit 235 generates a service file by extracting each file that appeals to all tastes from the file material storing unit 134 and editing each extracted file material.
  • the personal information updating unit 236 provides the data for the personal information registration screen and updates the personal information stored in the storing unit 238 with the personal information decrypted by the decryption unit 138, if the personal information searching unit 232 cannot findpersonal information corresponding to themedia ID received by the receiving.unit 231 or if the receiving unit 231 receives a personal information changing request.
  • the transmission unit 237 transmits a media ID transmission request, a service file generated by the file editing unit 235, and the data for the personal information registration screen provided by the personal information updating unit 236 if the receiving unit 231 receives a service providing request.
  • the ' storing unit 238 stores personal information of users so that the personal information of each user is associated with the media ID stored in the recording medium provided to the user.
  • Fig. 11 shows an example content of the personal information stored in the storing unit 23.8.
  • Fig. 12 is a flowchart showing the processing procedure of the information processing system of the second embodiment. The processing procedure is briefly described below with reference to this drawing.
  • the input unit 121 of the information processing apparatus 220 receives a service providing request from the user (step S21) .
  • the transmission unit 223 transmits the service providing request received by the input unit 121 to the file server 230 (step S22) .
  • the receiving unit 231 of the file server 230 receives the service providing request from the information processing apparatus 220 (step S23) .
  • the transmission unit 237 transmits a media ID transmission request to the information processing apparatus
  • the receiving unit 225 of the information processing apparatus 220 receives the media ID transmission request from the file server 230 (step S25) .
  • the reading unit 226 reads a media ID from the secure data area 111 of the recording medium 110 according to the media ID transmission request.
  • the recording medium 210 is not connected to the information processing apparatus 220, the reading unit 226 cannot read the media ID from the secure data area 111.
  • the device authentication between the recording medium 210 and the information processing apparatus 220 has ended in failure, the information processing apparatus 220 is prohibited to access the secure data area 111. Therefore, the reading unit 226 cannot read the media ID from the secure data area 111 (step S26) .
  • the transmission unit 223 transmits the media ID read by the reading unit 126 to the file server 230. If the reading unit 126 cannot read the media ID, the transmission unit 223 transmits a media ID reading impossible notification (step S27). (8) The receiving unit 231 of the file server 230 receives a media ID or a media ID reading impossible notification from the transmission unit 223 (step S28) .
  • step S29 It is judged whether the receiving unit 231 has received a media ID or a media ID reading impossible notification.
  • the personal information searching unit 232 searches the storing unit 238 for personal information corresponding to the media ID received ,by the receiving unit 231 (step S30) .
  • the file editing unit 235 refers to the corresponding personal information and generates a service file by extracting each file material, which corresponds to the user's hobby and taste shown by the personal information, from the file material storing unit 134 and editing each extracted file material (step S31) .
  • the file editing unit 235 If the receiving unit 231 has received a media ID reading impossible notification, the file editing unit 235 generates a service file by extracting each file material that appeals to all tastes from the file material storing unit 134 and editing each extracted file material (step S32) . (13) The transmission unit 237 transmits the service file generated by the file editing unit 235 (step S33) . (14) The receiving unit 225 of the information processing apparatus 220 receives the service file from the file server 230 and the display unit 127 display a service screen for the user according to the received service file (step S34) .
  • a media ID is stored in a transportable recording medium.
  • a file server receives the media ID read by an information processing apparatus, searches for personal information corresponding to the received media ID, and customizes a requested service according to the corresponding personal information.
  • each user needs to connect a transportable recording medium, which is uniquelyassignedto the user, to the information processing apparatus . This allows the file server to correctly handle personal information of each user.
  • each embodiment may be achieved by software.
  • the software may be stored in a computer-readable recording medium, such as a CD-ROM.
  • the computer-readable recording medium becomes the subject of production, use, transfer, lease, import, or an offer of transfer or lease.
  • the present invention is applicable to data communication between a user' s apparatus and another apparatus, such as the access from an Internet terminal to a Web site.
  • the users are in a one-to-one correspondence with the recording media even if the users are not in a one-to-one correspondence with terminals . Therefore, when a user browses aWeb site, personal information of the user is correctlyobtained from the user's recording medium. Also, even after replacing an old terminal with new one, the user can continuously receive the same service by simply connecting the user's recording medium to the new terminal. This facilitates the handling of personal information of the user.
  • a Web site does not specify a user without a recording medium being connected to a terminal. Therefore, the security of personal information is' enhanced without difficulty by managing the recording media provided, to users.
  • the transportable recording medium of the present invention may store cookie information obtained through an Internet browser. This reduces the possibility that the cookie information may be maliciously read, causing a user's privacy to be violated or making the user a victim of cyber fraud.

Abstract

A transportable recording medium, such as a memory card (see figure 2) (110), includes an area for storing cookie information (222), such as user information, that has been encrypted using a public key obtained under a public key cryptosystem. This makes it easy to use the same cookie information in different terminals and has cookie information, which has conventionally been unique to respective terminals, become unique to respective users.

Description

COOKIE DATA STORED ON TRANSPORTABLE RECORDING MEDIUM
BACKGROUND OF THE INVENTION 1. Field of the Invention
The present invention relates to data communication between a user's apparatus and another apparatus, such as the access from a terminal on the Internet to a Web site. More particularly, the present invention relates to a technique of facilitating the handling of personal information of each user and enhancing the security of the personal information.
2. Description of the Related Art
In recent years, the Internet has become increasingly popular and more and more services are being provided on the Internet. Amajor service offered on the Internet is WWW (World WideWeb)'that is a client/server-type information search system. In WWW, server apparatuses (Web sites) provide information in HTML files and users of the Internet browse the information using browsing software called Web browsers at terminals (Web clients) . Various information and services are currently provided at numerous Web sites and a technology called "cookies" is widely used to provide information with efficiency. When a user enters a Web site,' the Web site stores data, such as personal information of the user, as a cookie in the terminal of the user through the Web browser. The next time the user goes to the same Web site using the same terminal, the Web site reads the cookie from the terminal and uses the read cookie to provide information to the user.
Cookies usually show personal information of users, the last dates and times the users visited Web sites, and the numbers of times the users have visited the Web sites. Cookies are also used to identify users. Therefore, cookies are used as an element technology in various authentication systems and personalizing systems that customize services provided in WWW for respective users and provide the customized services to the users.
While being a useful technology, cookies also have problems described below. One problem is caused by that Web sites store data, such as personal information of users, into terminals with which the users visit the Web sites . If a single user uses a plurality of terminals or a plurality of users shares a single terminal or a plurality of terminals, therefore, Web sites cannot correctly obtain and use information of respective users with cookies. Also, if a user replaces an old terminal with new one, data stored as a cookie does not exist in the new terminal. Therefore, to continuously use the cookie even after the replacement, the user needs to copy the cookie from the old terminal to the new terminal, which constitutes a burden on the user. Another problem is caused by that personal information of users may be automatically stored as cookies without the users intending to do so and even Web sites, which are not the sites that stored cookies, may refer to the cookies with relative ease. Consequently, there maybe cases where cookies are maliciously read, causing users' privacy to be violated or making users a victim of cyber fraud. This generates demand for the enhancement of the security of personal information.
SUMMARY OF THE INVENTION
The object of the present invention is therefore to provide a service providing apparatus, a service providing method, anda serviceprovidingprogramforusewithatechnology, such as cookies, that customizes services provided via a network for respective users . Each of the service providing apparatus, service providing method, and service providing program correctly handles information unique to each user even if a single user uses a plurality of terminals or a plurality of users shares a single terminal or a plurality of terminals. Each of the service providing apparatus, service providing method, and service providing program also eliminates the need for users to perform burdensome operations, such as the copy of data, even if the users replace old apparatuses with new ones. Each of the service providing apparatus, service providing method, and service providing program further enhances the security of personal information. The object of the present invention is also to provide a recording medium that stores the service providing program and a recording medium that stores cookie information.
The stated object is achieved by a service providing method of providing a current user of a first apparatus with each of services that are provided by a plurality of other apparatuses via a network, the first apparatus being able to communicate with each of the plurality of other apparatuses via the network and being locally connectable to a recording medium, out of recording media that are uniquely assigned to users of the first apparatus, each recording medium being transportable and including an area for storing unique information, the service providing method including: a service requesting step where the first apparatus requests a second apparatus to provide a service desired by the current user, the second apparatus being one of the plurality of other apparatuses; a unique information reading step where if a recording medium of the current user is locally connected to the first apparatus and stores unique information, the second apparatus reads the unique information in the locally connected recording medium via the first apparatus and the network; and a service providing step where the second apparatus customizes the desired service according to the read unique information and transmits the customized service to the first apparatus. With this method, an apparatus on the network reads the unique information stored in a transportable recording medium and customizes a service according to the read unique information.
Also, if users are uniquely provided with recording media, the users are in a one-to-one correspondence with the recording media even if the users are not in a one-to-one correspondence with terminals. Therefore, when a user browses aWebsite, personal informationof theuser is correctlyobtained from the user's recording medium. Also, even after replacing an old terminal with new one, the user can continuously receive the same service by simply connecting the user's recording medium to the new terminal.
Here, in the unique information reading step, if no unique information is stored in the locally connected recording medium or no recording medium is locally connected to the first apparatus, the second apparatus may not read unique information from anywhere, and in the service providing step, if no unique information has been read in the unique information reading step, the second apparatus may transmit the desired service to the first apparatus in an uncustomized state. . With this method, if the unique information is. not read, the apparatus provides the user with a service that is not customized.
This allows the user to receive a service even without unique information. Also, because the unique information is stored only in the recording medium, the security of the unique information is enhanced. Here, the unique information stored in each recording medium may include user information that is inherent in a user assigned the recording medium, and in the service providing step, the second apparatus may customize the desired service for the current user according to the user information included in the read unique information and transmit the customized service to the first apparatus .
With this method, the apparatus reads user information included in the unique information stored in the transportable recording medium and customizes the service for the user according to the user information.
Also, because the user information is stored in the transportable recording medium, the user can continuously use the same personal information without difficulty, even after replacing an old terminal with new one.
Here, the service providing method may further include: a user information updating step, performed after the unique information reading step, where if the user information inherent in the current user needs to be updated, the second apparatus updates the user information included in the read unique information and overwrites the user information in the locally connected recording medium with the updated' user information via the network and the first apparatus .
With this method, if the user information needs to be updated, the second apparatus updates the user information. This makes it easy to manage the user information. Here, the user information in each recording medium may have been encrypted using a public key of a public key cryptosystem, the second apparatus may store a secret key corresponding to the public key, the secondapparatusmaydecrypt the encrypteduser information using the secret key andcustomize the desired service according to the decrypted user information in the service providing step, and the second apparatus may update the decrypted user information, encrypt the updated user information using the public key, and overwrite the encrypted user information in the locally connected recording medium with the updated and encrypted user information in the user information updating step.
With this method, user information that has been encrypted using a public key is transmitted and received. As a result, the encrypted user information is read only by an authorized apparatus that stores a secret key.
Here, the etwork may be the Internet, the first apparatus may be an Internet terminal that runs a specialized Internet browser, each .of the plurality of other apparatuses maybe aWeb site, the unique information stored in each recording mediummay include cookie information used through the Internet browser, and each recording medium may store the cookie information as a file.
With this method, cookie information that has conventionally been recorded on a hard disc is stored in a transportable recording medium. This reduces the possibility that the cookie information may be maliciously read, causing a user ' s privacy to be violated or making the user a victim of cyber fraud.
Here, the unique information stored in each recording medium may include a media identifier of the recording medium, the second apparatus may store user information so that user information inherent in each user is associated with the media identifier of the recording medium assigned to the user, and' the service providing step may include: a user information finding substep where the second apparatus finds user information associated with the. media identifier included in the read unique information; and a customizing substep where the second apparatus customizes the desired service for the current user according to the found user information. This allows the second apparatus to search for user information corresponding to the media identifier included in the unique information stored in the transportable recording medium and to customize the service for the user according to the user information. Even after replacing an old terminal with new one, therefore, the user can continuously receive the same service with the recording medium uniquely assigned to the user. Also, because the user information does not reside in the us.er's terminal, the possibility is reduced that the user information may be maliciously read from the user's terminal,' causing a user's privacy to be violated or making the user a victim of cyber fraud.
Here, the service providing methodmay further include : a recordingmedium connection step, performedbefore the service requesting step, where the first apparatus is locally connected to. the recording medium assigned to the current user.
With this method, the recording medium is uniquely assigned to the user of the first apparatus and is locally connected to the first apparatus.
Because the user uses the uniquely assigned recording medium, personal information is correctly obtained for the user.
Here, the unique information stored in each recording medium may include a media identifier of the recording medium and user information that is inherent in a user assigned the recording medium, the user information having been encrypted, and the service providing step may include: a user password receiving substep where the second apparatus receives a user password from the current user via the first apparatus; a decryption key generating substep where the second apparatus generates a decryption key from the media identifier included in the read unique information and the received user password; a decryption substep where the second apparatus decrypts the encrypted user information included in the read unique information using the generated decryption key; and a customizing substep where the second apparatus customizes the desired service for the current user according to the decrypted user information.
With this method, the encrypted user information is decrypted using the decryption key generated from the media identifier and the user password. This enhances the security of the user information.
Here, each recording medium may include a secure data area, the. media identifier of each recording, medium may be stored in the secure data area of the recording medium, and the unique information reading step may include: a device authentication substep where a device authentication is performed between the first apparatus and the locally connected recording medium; and a reading prohibition substep where> if the device authentication has ended in failure, the second apparatus is prohibited to read data from the secure data area of the locally connected recording medium.
With this method, if the device authentication has ended in failure, the .media identifier is not read. This enhances the security of the user information.
BRIEF DESCRIPTION OF THE DRAWINGS
These • and. other objects, advantages and features of the invention will become apparent from the following description thereof taken in conjunction with the accompanying drawings which illustrate a specific embodiment of the invention . In the drawings:
Fig. 1 shows the construction of an information processing system of the first embodiment of the present invention;
Fig. 2 shows the detailed, construction of a recording medium; Fig. 3 shows the construction of an information processing apparatus;
Fig.4 shows an example content of personal information written by a writing unit into a non-secure data area of the recording medium; Fig. 5 shows the construction of a file server;
Fig. 6 is a flowchart showing the processing procedure of the information processing system of the first embodiment;
Fig. 7 shows the construction of an information processing system of the second embodiment of the present invention;
Fig. 8 shows the detailed construction of a recording medium;
Fig. 9 shows, the construction of an information processing apparatus; Fig. 10 shows the construction of a file server;
Fig. 11 shows an example content of the personal information stored in a storing unit; and
Fig.12 is a' flowchart showing the processing procedure of the information processing system of the second embodiment.
DESCRIPTION OF THE PREFERRED EMBODIMENTS <First Embodiment> <Overview>
In an information processing system 100 of the first embodiment of the present invention, the data area for storing cookies is reserved in a transportable recording medium. This allows the cookies to be used in different terminals by simply connecting the recording medium to the respective terminals . This also has cookies, which has conventionally been unique to respective terminals, become unique to respective users. The recording medium includes a secure data area that stores a media identifier and is accessible only by terminals whose authenticities have been proved by the device authentication with the recordingmedium. The recordingmedium also includes a data area that is not secure and stores a cookie, such as user information, that has been encrypted using a public key obtained under a public key cryptosystem. It should be noted here that the data area that is not secure is hereinafter referred to as the "non-secure data area" .
AWeb site requestedby an authorized terminal to provide a service reads the media identifier from the secure data area via the terminal and identifies the user of the terminal using the readmedia identifier . The Web site also reads the encrypted cookie from the non-secure data area, decrypts the read cookie using a secret key stored in the Web site, customizes the service according to the decrypted cookie, and provides the customized service to the terminal. It shouldbe noted here that if the device authentication between the recording medium. and the terminal has ended in failure, the media identifier is not read and the Web site cannot identify the user.
Also, unauthorized Web sites do not store the secret key, so that the encrypted cookie cannot be decrypted by the unauthorized Web sites. As a result, the security of personal information is enhanced in comparison with a conventional system.
<Construction>
Fig. 1 shows the construction of' the information processing system 100 of the first embodiment.
The information processing system 100 includes a recording medium 110, an information processing apparatus 120, and a. file server 130.
The recording . medium 110 is, for instance, a semiconductor medium, such as a memory card, and a user locally connects the recording medium 110 to the information processing apparatus 120 via a port, a slot, or the like.
The information processing apparatus 120 is a. client apparatus, such as an Internet terminal, that runs a specialized
Web browser and is. connected to a network, such as the Internet.
The information processing apparatus 120 is connected to the file server 130 via the network, issues an access request to the file server 130, and browses information provided in HTML files by the file server 130.
The file server 130 is a server apparatus, such as a Web site, that is connected to a network, such as the Internet .
The file server 130 is connected to the information processing apparatus 120 via the network and provides information in HTML files to the information processing apparatus 120.
It should be noted here that the information processing apparatus 120 is not limited to an Internet terminal and may be any other device that can access the information provided by the file server 130 via the network. For instance, the information processing apparatus 120 may be an Internet-accessible TV, STB, radio cassette tape recorder, microwave oven, or refrigerator.
Fig.2 shows the detailed construction of the recording medium 110.
As shown in this drawing, the recording medium 110 includes a secure data area 111, a non-secure data area 112, and an authentication unit 113. A media ID is stored in the secure data area 111. It should be noted here that media IDs are identifiers unique to respective recording media and are used to identify users and to generate encryption keys.
The authentication unit 113 performs an existing device, authentication, such as . a mutual authentication, with an apparatus to which the recording medium 110 is connected. In this embodiment, the authentication unit 113 performs a mutual authentication with an authentication unit 124 of the information processing apparatus 120.
The secure data area 111 is a storage area that cannot be accessed without an access right. That is, only if the device authentication between the recording medium 110 and the information processing apparatus 120 has succeeded, the information processing apparatus 120 can access the secure data area 111.
The non-secure data' area 112 is a storage area that can be freely accessed. That is, the information processing apparatus 120 can access the non-secure data area 112 even if the device authentication between the recording medium 110 and the information processing apparatus 120 has ended in failure. Fig. 3 shows the construction of the information processing apparatus 120.
As shown in this drawing, the information processing apparatus 120 includes an input unit 121,' an encryption unit
122, a transmission unit 123, an authentication unit 124, a receiving unit 125, a reading unit 126, a display unit 127, and a writing unit 128.
The input unit 121 is an input device, such as a combination of a mouse and a keyboard, and receives various inputs from a user.. In this embodiment, the input unit 121 receives a service providing' request and personal information from the user. Here, the service.providing request is a request for providing a service. Also, the personal information is information unique to the user, such as the user's name, age, date of birth, sex, family, hobby, taste, address, telephone number, job, E-mail address, credit card number, and.password. The encryption unit 122 encrypts the personal information received by the input unit 121. Here, the encryption unit 122 receives a public key that has been obtained under a public key cryptosystem, such as. a RSA cryptosystem, from the file server 130 and prestores the public key. The encryption unit 122 encrypts the personal information using the public key.
The transmission unit 123 transmits, to the file server 130, the service providing request received by the input unit 121, the media ID read by the reading unit 126, the personal information encrypted by the encryption unit 122, and the encrypted personal information read by the reading unit 126.
Here, if the reading. unit 126 reads no personal information, the transmission unit 123 transmits a personal information unregisterednotification, insteadof the personal information. The personal information unregistered notification is a notification showing that no personal information has been read. The authentication unit 124 performs an existing device authentication, such as a mutual authentication, with a recordingmediumthat is connected to the informationprocessing apparatus 120.
In this embodiment, the authenticationunit 124 performs a mutual authentication with the authentication unit 113 of the recording medium 110.
The receiving unit 125 receives, from the file server 130, a media ID transmission request, a personal information transmission request, a service file, data for a personal information registration screen, and encrypted personal information. Here, the. media ID transmission request is a request for transmitting the media ID and the personal information transmission request is a request for transmitting the personal information. Also, the personal information registration screen is a screen for allowing the user to register personal information. Further, in addition to the information items of the personal information received by the input unit 121, the personal information received by the receiving unit 125 includes information concerning the Web site (the file' server 130) , such as the last date and time the user visited the Web site and the number of times the user has visited the Web site. The service file contains screen data provided as part of the service that the user requested by issuing the service providing request. The screen data is, for instance, used to display various information screens or a screen explaining an operating procedure .
The reading unit 126 reads, if a media ID transmission request is received by the receiving unit 125, the media ID from the secure data area 111 of the recording medium 110. Also, if a personal information transmission request is received by the receiving unit 125, the reading unit 126 reads the personal information from the non-secure data area 112 of the recording medium 110. It should be noted here that if the device authentication between the recording medium 110 andthe informationprocessing apparatus 120 has ended in failure, the access to the secure data area 111 is prohibited so that the reading unit 126 cannot read the media ID from the secure data area 111.
The display unit 127 displays a personal information registration screen according to the data for the personal information registration screen received by the receiving unit 125. The display unit 127 also displays a service screen for the user according to the service file received by the receiving unit 125. The service screen is a screen displayed as part of the service that the user requested by issuing the service providing request.
The writing unit 128 writes personal information, which, have been received and encrypted by the receiving unit 125, into the non-secure data area 112 of the recording medium 110. . . Fig. 4 shows an example content of the personal information written by the writing unit 128 into the non-secure data area 112 of the recording medium 110.
Fig. 5.shows the construction of the file server 130. As shown in this drawing, the file server 130 includes a receiving unit 131, a user identifying unit 132, a decryption unit 133, a file material storing unit 134, a file editing unit 135, a personal information updating unit 136, and a transmission unit 137.
The receiving unit 131 receives a service providing request, a media ID, an encrypted personal information, a personal information unregistered notification, and a personal information changing request from the transmission unit 123 of the information processing apparatus 120. The personal information changing request is a request for changing the personal information. The user identifying unit 132 identifies the user using the media ID received by the receiving unit 131.
The decryption unit 133 decrypts the encrypted personal information received by. the receiving unit 131. Here, the decryption unit 133 prestores a secret key that has been obtained under a public key cryptosystem, such as a RSA cryptosystem, and decrypts the encryptedpersonal information using the secret key.
The file material storing unit 134 stores file materials that have been classified according to hobbies and tastes of users.
The file editing unit 135 refers to the personal information decrypted by the decryption unit 133 and generates a service file by extracting each file material, which corresponds to the user ' s hobby and taste shown by the decrypted personal information, from the file material storing unit 134 and editing each extracted file material. The personal information updating unit 136 provides the data for the personal information registration screen, updates the personal information decrypted by the decryption unit 133, and. encrypts the updated personal information, if the receiving unit receives a personal information unregistered notification or a personal information changing request . Here, the personal information updating unit 136 prestores a public key that has been obtained under a public key cryptosystem, such as a RSA cryptosystem, ' updates the personal information by changing information concerning the Web site, such as the last date and time the user visited the Web site and the number of times the user has visited the Web site, and encrypts the updated personal information using the public key.
The transmission unit 137 transmits a media ID transmission request and a personal information transmission request, if the receiving unit 131 receives a service providing request. The transmission unit 137 also transmits the service file generated by the file editing unit 135, the data for the personal information registration screen provided by the personal information updating unit 136, and the personal information that has been updated and encrypted by the personal information updating unit 136.
<Operation> Fig. 6 is a flowchart showing the processing procedure ofthe informationprocessing system 100 ofthe first embodiment. The processing procedure is briefly described below with reference to this drawing.
(1) The input unit 121 of the information processing apparatus 120 receives a service providing request from the user (step SI) .
(2) The transmission unit 123 transmits the service providing request received by the input unit 121 to the file server 130 (step S2) .
(3) The receiving unit 131 of the file server 130 receives the service providing request from the information processing apparatus 120 (step S3) .
(4) The transmission unit 137 transmits a media ID transmission request and a personal information transmission request to the information processing apparatus 120 (step S4) . (5) The receiving unit 125 of the information processing apparatus 120 receives the media ID transmission request and the personal information transmission request from the file server 130 (step S5) . (6) The reading unit 126 reads a media ID from the secure data area 111 of the recording medium 110 according to the media ID transmission request. Also, the reading unit 126 reads encrypted personal information from the non-secure data area 112 of the recording medium 110 according to the personal information transmission request. Needless to say, if no. personal information is stored in the non-secure data area 112, the reading unit 126 cannot read personal information from the non-secure data area 112 (step S6) .
(7) The transmission unit 123 transmits the media ID and encrypted personal information read by the reading unit 126 to the file server 130. If the reading unit 126 has read no personal information, the transmission unit 123 transmits a personal information unregistered notification, instead of personal information (step S7) .
(8) The receiving unit 131 of the file server 130 receives a pair of the media ID and the encrypted personal information or a pair of the media ID and the personal information unregistered notification. The user identifying unit 132 identifies the user using the received media ID (step S8) .
(9) It is judged whether the receiving unit 131 has received personal information or a personal information unregistered notification (step S9) .
(10) If the receiving unit 131 has received a personal information unregistered notification, the . personal information updating unit 136 provides the data for the personal information registration screen and the transmission, unit 137 transmits the data (step S10) .
(11) The receiving unit 125 of the information processing apparatus 120 receives the data for the personal information registration screen transmitted from the file server 130 and the display unit 127 displays the personal . information registration screen (step Sll) .
(12) The input unit 121 receives personal- information inputted by the user through the personal information registration screen (step S12) .
(13) The encryption unit 122 encrypts the personal information received by the input unit 121 and the transmission unit 123 transmits the encrypted personal information to the file server 130 (step S13) .
(14) The receiving unit 131 of the file server 130 receives the encrypted personal information (step S14) .
(15) The decryption unit 133 decrypts the encrypted personal information received by the receiving unit 131 (step S15) .
(16) The . file editing unit 135 refers to the personal information decrypted by the decryption unit 133 and generates a service file by extracting each file material, which corresponds to the user' s hobby and taste shown by the decrypted personal information, from the file material storing unit 134 and editing each extracted file material (step S16) .
(17) The personal information updating unit 136 updates the personal information decrypted by the decryption unit 133 and encrypts the updated personal information (step S17) .. (18) The transmission unit 137 transmits the service file generated by the file editing unit 135 and the personal information updated and encrypted by the personal- information updating unit 136 (step S18) . (19) The receiving unit 125 of the information processing apparatus 120 receives the service file from the file server 130 and the display unit 127 display a service screen for the user according to the received service file. The receiving unit 125 also receives the updated and encrypted personal information and the writingunit 128 writes the receivedpersonal information into the non-secure data area 112 of the recording medium 110 (step S19) .
As describedabove, in the informationprocessing system of the first embodiment, personal information concerning a user is encrypted and stored in a transportable recordingmedium and a server reads the personal information from the recording medium, decrypts the read personal information, and customizes a requested service for the user according to the decrypted personal information. To use an information processing apparatus, each user needs to connect a transportable recording medium, which is uniquelyassignedto the user and stores personal information of the user, to the information processing apparatus .
This allows the file server to correctly handle personal information of each user . . In the information processing system of the first embodiment, the security of personal information is also enhanced because personal information that has been encrypted is stored in a transportable recording medium.
It should be noted here that an encryption key may be generated from a media ID and personal information may be encrypted using the encryption key and stored in the non-secure data area of a recording medium. Also, an encryption key may be generated from a media ID and a user password designated by a user. In the first embodiment, encryptedpersonal information concerning a user is stored in the non-secure data area of a transportable recording medium. However, the encrypted personal information may be stored in the secure data area of the transportable recording medium. In this case, the recording medium does not need to include a non-secure data area.
If a recordingmedium is not connected to the information processing apparatus or if a recording medium connected to the information processing apparatus stores no personal information, the file server may provide a requested service without customizing the service.
<Second Embodiment> <Overview>
In the first embodiment, encryptedpersonal information concerning a user is stored in a transportable recording medium.
•In the second embodiment, however, personal information that is not encrypted is stored in a file server. In this embodiment, each transportable recordingmedium stores a media identifier and is uniquely provided to a user.
A file server stores personal information of respective users, with the personal information of each, user being associated with one media identifier. The file server reads a media identifier from a recording medium, searches for personal information corresponding to the media identifier, and customizes a service according to the corresponding personal information.
In the first embodiment, encryptedpersonal information is stored and transmitted to enhance the security of personal information. In the second embodiment, although encrypted personal information is transmitted between the information processing apparatus and the file server like the first embodiment, personal information that is not encrypted is stored in a file server. This is because there is no security problem in the file server.
<Construction>
Fig. 7 shows the construction of an information processing system 200 of the second embodiment. As shown in this drawing, the information processing system 200 includes a recording medium 210, an information processing apparatus 220, and a file server 230.
•The recording medium 210, the information processing apparatus 220, and the file server 230 are respectively similar to the recording medium 1.10, the information processing apparatus 120, and the file server 130.
The construction elements having the same functions as those. of the first embodiment are assigned the same names and numbers as in the first embodiment and are not described here.
Fig.8 shows the detailed construction of the recording medium 210.
As shown in this drawing, the recording medium 210 includes a secure data area 111, a non-secure data area 112, and an authentication unit 113. A media ID is stored in the secure data area 111.
Fig. .9 shows the construction of the information processing apparatus 220.
As shown in. this drawing, the information processing apparatus 220 includes an input unit 121, an encryption unit 122, a transmission unit 223, an authentication unit 124, a receiving unit.225, a reading unit 226, and a display unit
127.
The transmission unit 223 transmits the service providing request received by the input unit 121, the media ID read by the reading unit 226, and the personal information encrypted by the encryption unit 122 to the file server 230.
Here, if the reading unit 226 cannot read a media ID, the transmission unit 223 transmits a media ID reading impossible notification, instead of the media ID. The media. ID reading impossible notification is a notification . showing that the reading unit 226 has read no media ID.
The receiving unit 225 receives a media ID transmission request, a service file, and data for a. personal information registration screen from the file server 230. The reading unit 226 reads, if a media ID transmission request is received by the receiving unit 225, a media ID from the secure data area 111 of the recording medium 210. It should be noted here that if. the device authentication between the recording medium 210 and the information processing apparatus 220 has ended in failure, the access to the secure data area 111 is prohibited so that the reading unit 226 cannot read the media ID from the secure data area 111.
Fig. 10 shows the construction of the file server 230.
As shown this drawing, the file server 230 includes a receiving unit 231, a personal information searching unit 232, a decryption unit 133, a file material storing unit 134, a file editing unit 235, a personal information updating unit
236, a transmission unit 237, and a storing unit 238.
The . receiving unit 231 receives a service providing request, a media ID, encrypted personal information, a media ID reading impossible notification, and a personal information changing request from the transmission unit 223 of the information processing apparatus 220.
The personal information searching unit 232 searches the storing unit 238.for personal information that corresponds to the media ID received by the receiving unit 231.
The file editing unit 235 refers to the corresponding personal information and generates a service file by extracting each file material, which corresponds to the user's hobby and taste shown by the personal information, from the file material storing unit. 134 and editing each extracted file material.
Here, if the receiving unit 231 receives a media ID reading impossible notification instead of a media ID, the file editing unit 235 generates a service file by extracting each file that appeals to all tastes from the file material storing unit 134 and editing each extracted file material. The personal information updating unit 236 provides the data for the personal information registration screen and updates the personal information stored in the storing unit 238 with the personal information decrypted by the decryption unit 138, if the personal information searching unit 232 cannot findpersonal information corresponding to themedia ID received by the receiving.unit 231 or if the receiving unit 231 receives a personal information changing request.
The transmission unit 237 transmits a media ID transmission request, a service file generated by the file editing unit 235, and the data for the personal information registration screen provided by the personal information updating unit 236 if the receiving unit 231 receives a service providing request.
The ' storing unit 238 stores personal information of users so that the personal information of each user is associated with the media ID stored in the recording medium provided to the user.
Fig. 11 shows an example content of the personal information stored in the storing unit 23.8.
<Operation> Fig. 12 is a flowchart showing the processing procedure of the information processing system of the second embodiment. The processing procedure is briefly described below with reference to this drawing. (1) The input unit 121 of the information processing apparatus 220 receives a service providing request from the user (step S21) .
(2) The transmission unit 223 transmits the service providing request received by the input unit 121 to the file server 230 (step S22) .
(3) The receiving unit 231 of the file server 230 receives the service providing request from the information processing apparatus 220 (step S23) .
(4) The transmission unit 237 transmits a media ID transmission request to the information processing apparatus
220 (step S24) .
(5) The receiving unit 225 of the information processing apparatus 220 receives the media ID transmission request from the file server 230 (step S25) . (6) The reading unit 226 reads a media ID from the secure data area 111 of the recording medium 110 according to the media ID transmission request. Here, if the recording medium 210 is not connected to the information processing apparatus 220, the reading unit 226 cannot read the media ID from the secure data area 111. Also, if the device authentication between the recording medium 210 and the information processing apparatus 220 has ended in failure, the information processing apparatus 220 is prohibited to access the secure data area 111. Therefore, the reading unit 226 cannot read the media ID from the secure data area 111 (step S26) . (7) The transmission unit 223 transmits the media ID read by the reading unit 126 to the file server 230. If the reading unit 126 cannot read the media ID, the transmission unit 223 transmits a media ID reading impossible notification (step S27). (8) The receiving unit 231 of the file server 230 receives a media ID or a media ID reading impossible notification from the transmission unit 223 (step S28) .
(9) It is judged whether the receiving unit 231 has received a media ID or a media ID reading impossible notification (step S29) .
(10) If the receiving unit 231 has received a media ID, the personal information searching unit 232 searches the storing unit 238 for personal information corresponding to the media ID received ,by the receiving unit 231 (step S30) . (11) The file editing unit 235 refers to the corresponding personal information and generates a service file by extracting each file material, which corresponds to the user's hobby and taste shown by the personal information, from the file material storing unit 134 and editing each extracted file material (step S31) .
(12) If the receiving unit 231 has received a media ID reading impossible notification, the file editing unit 235 generates a service file by extracting each file material that appeals to all tastes from the file material storing unit 134 and editing each extracted file material (step S32) . (13) The transmission unit 237 transmits the service file generated by the file editing unit 235 (step S33) . (14) The receiving unit 225 of the information processing apparatus 220 receives the service file from the file server 230 and the display unit 127 display a service screen for the user according to the received service file (step S34) .
As described above, in the informationprocessing system of the second embodiment, a media ID is stored in a transportable recording medium. A file server receives the media ID read by an information processing apparatus, searches for personal information corresponding to the received media ID, and customizes a requested service according to the corresponding personal information. To use an information processing apparatus, each user needs to connect a transportable recording medium, which is uniquelyassignedto the user, to the information processing apparatus . This allows the file server to correctly handle personal information of each user.
It should be noted here that each embodiment may be achieved by software. Also, the software may be stored in a computer-readable recording medium, such as a CD-ROM. Like the service providing apparatus, the computer-readable recording medium, becomes the subject of production, use, transfer, lease, import, or an offer of transfer or lease.
INDUSTRIAL USE POSSIBILITY
The present invention is applicable to data communication between a user' s apparatus and another apparatus, such as the access from an Internet terminal to a Web site.
By uniquely providing recording media of the present invention to users, the users are in a one-to-one correspondence with the recording media even if the users are not in a one-to-one correspondence with terminals . Therefore, when a user browses aWeb site, personal information of the user is correctlyobtained from the user's recording medium. Also, even after replacing an old terminal with new one, the user can continuously receive the same service by simply connecting the user's recording medium to the new terminal. This facilitates the handling of personal information of the user.
Also, a Web site does not specify a user without a recording medium being connected to a terminal. Therefore, the security of personal information is' enhanced without difficulty by managing the recording media provided, to users.
Further, the transportable recording medium of the present inventionmay store cookie information obtained through an Internet browser. This reduces the possibility that the cookie information may be maliciously read, causing a user's privacy to be violated or making the user a victim of cyber fraud.

Claims

What is claimed is :
1. A service providing method .of providing a current user of a first apparatus with each of services that are provided by a plurality of other apparatuses via a network, the first apparatus being able to communicate with each of the plurality of other apparatuses via the network and being locally connectable to a recording medium, out of recording media that are uniquely assigned to users of the first apparatus, each recording medium being transportable and including an area for storing unique information, the service providing method comprising: a service requesting step where the first apparatus requests a second apparatus to provide a service desired by the current user, the second apparatus being one of the plurality of other apparatuses; a unique information reading step where if a recording medium of the current user is locally connected to the first apparatus and stores unique information, the second apparatus reads the unique information in the locally connected recording medium via the first apparatus and the network; and a service providing step where the second apparatus customizes the desired service according to the read unique information and transmits the customized service to the first apparatus .
2. The service providing method of Claim 1, wherein in the unique information reading step, if no unique information is stored in the locally connected recording medium or no recording medium is locally connected to the first apparatus, the second apparatus does not read unique information from anywhere, and in the service providing step, if no unique information has been read in the unique information reading step, the second apparatus transmits the desired service to the first apparatus in an uncustomized state.
3. The- service providing method of Claim 2, wherein the unique information stored in each recording medium includes user information that is inherent in a user assigned the recording medium, and in the service providing step, the second apparatus customizes the desired service for the current user according to the user information included in the read unique information and transmits the customized service to the first apparatus.
4. The service providing method of Claim 3 further comprising: a user information updating step, performed after the unique information reading step, where if the user information inherent in the current user needs to be updated, the second apparatus updates the user information included in the read unique information and overwrites the user information in the locally connected recording medium with the updated user information via the network and the first apparatus .
5. The service providing method of Claim 4, wherein the user information in each recording medium ■ has been encrypted using a public key of a public key cryptosystem, the second apparatus stores a secret key corresponding to the public key, in the service providing step, the second apparatus decrypts the encrypted user information using the secret key and customizes the desired service according to the decrypted
* user information, and • in the user information updating step, the second apparatus updates the decrypted user information, encrypts theupdateduser informationusing the public key, andoverwrites the encrypted user information, in the locally connected recordingmediumwith the updated and encrypteduser information .
6. The service providing method of Claim 5, wherein the network is the Internet, the first apparatus is an Internet terminal that runs a specialized Internet browser, each of the plurality of other apparatuses is a Web site, the unique information stored in each recording medium includes cookie information used through the Internet browser, and each recording medium stores the cookie information as a file.
7. The service providing method of Claim 2, wherein the unique information stored in each recording medium includes a media identifier of the recording medium, the second apparatus stores user information so that user information inherent in each user is associated with the media identifier of the recording medium assigned to the user, and the service providing step includes: a user information finding substep where the second apparatus finds user information associated with the media identifier included in the read unique information; and a' customizing substep where the second apparatus customizes the desired service for the current user according to the found user information.
8. The service providing method of Claim 1 further comprising: a recording medium connection step, performed before the service requesting step, where the first apparatus is locally connected to the recording medium assigned to the current user.
9. The service providing method of Claim 8, wherein the unique information stored in each recording medium includes a media identifier of the recording medium and user information that is inherent in a user assigned the recording medium, the user information having been encrypted, and the service providing step includes: a user password receiving substep where the second apparatus receives a user password from the current user via the first apparatus; a decryption key generating substep where the second apparatus generates a decryption key from the media identifier included in the read unique information and the received user password; a decryption substepwhere the second apparatus decrypts the encrypted user information included in the read unique information using the generated decryption key; and a . customizing substep where the second apparatus customizes' the desired service for the current user according to the decrypted user information.
10. The service providing method of Claim 9, wherein each recording medium includes a secure data area, the media identifier of each recording medium is stored in the secure data area of the recording medium, and the unique information reading step includes : a device authentication substep where a device authentication is performed between the first apparatus and the locally connected recording medium; and a reading prohibition substep where, if the device authentication has ended in failure, the second apparatus is prohibited to read data from the secure data area of the locally connected recording medium.
11. A service providing method used by a first apparatus that receives each of services that are provided by a plurality of other apparatuses via a network and provides the received service to a current user of the first apparatus, the first apparatus being able to communicate with each of the plurality of other apparatuses via the network and being locally connectable to a recording medium, out of recording media that are uniquely assigned to users of the first apparatus, each recording medium being transportable and including an area for storing unique information, the service providing method comprising: a service requesting step where the first apparatus requests a second apparatus to provide a service desired by the current user, the second apparatus being one of the plurality of other apparatuses; a unique information transmitting step where if a recording medium of the current user is locally connected to the first apparatus and stores unique information, the first apparatus reads the unique information in the locally connected recording medium and transmits the read unique information to the second apparatus via the network; and a service providing step where the first apparatus receives a customized service from the second apparatus and provides the received service to the current user, wherein the customized service is generated at the second apparatus by customizing the desired service according to the transmitted unique information.
12. The service providing method of Claim 11, wherein in the unique information transmitting step, if no unique information is stored in the locally connected recording medium or no recording medium is locally connected to the first apparatus, the first apparatus does not read unique information from anywhere, and in the service providing step, if having transmitted no unique information in the unique information transmitting step, the first apparatus receives the desired service from. the second apparatus in an uncustomized state and provides the received service to the current user.
13. The service providing method of Claim 12, wherein the unique information stored in each recording medium includes user information that is inherent in a user assigned the recording medium, and the customized service that is received and provided inthe service providing step is generatedat the secondapparatus by customizing the desired service for the current user according to the user information included in the transmitted unique information.
14. The service providing method of Claim 13 further comprising : a user information updating step, performed after the unique information transmitting step, where if the user information inherent in the current user needs to be updated, the first apparatus receives updated user information from the second apparatus and overwrites the user information in the locally connected recording medium with the updated user information.
15. The service providing method of Claim 14, wherein the user information in each recording medium has been encrypted using a public key of a public key cryptosystem, the second apparatus stores a secret key corresponding to the public key, the customized service that is received and provided inthe serviceproviding step is generatedat the secondapparatus by decrypting the encrypted user information included in the transmitted unique information using the secret key and customizing the desired service according to the decrypted user information, and the updated user information received from the second apparatus in the user information updating step is generated at the second apparatus by updating the decrypted user information and encrypting the updated user information using the public key.
16. The service providing method of Claim 15, wherein the network' is the Internet, the first apparatus is an Internet terminal that runs a specialized Internet browser, each of the plurality of other apparatuses is a Web site, the unique information stored in each recording medium includes cookie information used through the Internet browser, and each recording medium stores the cookie information as a file.
17. The service providing method of Claim 12, wherein the unique information stored in each recording medium includes a media identifier of the recording medium, the second apparatus stores user information so that user information inherent in each user is associated with the media identifier of the recording medium assigned to the user, and the customized service that is received and provided inthe serviceproviding step is generatedat the secondapparatus by finding user information associatedwith the media identifier included in the transmitted unique information and customizing the desired service for the current user according to the found user information.
18. The service providing method of Claim 11 further comprising: a recording medium connection step, performed before the service requesting step, where the first apparatus is locally connected to the recording medium assigned to the current user.
19. The service providing method of Claim 18,. wherein the unique information stored in each recording medium includes a media identifier of the recording medium and user information that is inherent in a user assigned the recording medium, the user information having been encrypted, and the service providing step includes: a user password receiving substep where a user password is received from the current user, wherein the customized service that is received and provided in. the service providing step is generated at the second apparatus by generating a decryption key from the media identifier included in the transmitted unique information and the received user password, decrypting the encrypted user information included in the transmitted unique information using the generated decryption key, and customizing the desired service for the current user according to the decrypted user information.
20. The service providing method of Claim 19, wherein each recording medium includes a secure data area, the media identifier of each recording medium is stored in the secure data area of the recording medium, and the unique information transmitting step includes: a device authentication substep where a device authentication is performed between the first apparatus and the locally connected recording medium; and . a transmitting prohibition substep where, if the device authentication has ended in failure, the first apparatus is prohibited, to transmit data in the secure data area of the locally connected recording medium.
21. A service providing apparatus that receives each of services that are provided by a plurality of other apparatuses via a network and provides the received service to a current user of the service providing apparatus, the service providing apparatus being able to communicate with each of the plurality of other apparatuses via the network and being locally connectable to a recording medium, out of recording media that are uniquely assigned tousers ofthe service providing apparatus, each recording medium being transportable and including an area for storing unique information the service providing apparatus comprising: a service requesting unit operable to request a specific apparatus, out of the plurality of other apparatuses, to provide a service, desired by the current user; a unique information transmitting unit operable to read, if a recording medium of the current user is locally connected to the service providing apparatus and stores unique information, the unique information in the locally connected recording medium and transmit the read unique information to the specific apparatus via the network; and . a serviceprovidingunit operable to receive a customized service from the specific apparatus and provide the received service to the current user, wherein the customized service is generated at the specific apparatus by customizing thedesired service according to the transmitted unique information.
22. The service providing apparatus of Claim 21, wherein if no unique information is stored in the locally connected recording medium or no recording medium is locally connected to the service providing apparatus, the unique information transmitting unit does not read unique information from anywhere, and if the unique information transmitting unit has transmitted no unique information, the service providing unit receives the desired service from the specific apparatus in an uncustomized state and provides the received service to the current user.
23. The service providing apparatus of Claim 22, wherein the unique information stored in each recording medium includes user information that is inherent in a user assigned the recording medium, and the customized service that is received and provided by the service providing unit is generated at the specific apparatus by customizing the desired service for the current user according to the user information included in the transmitted unique information.
24. The service providing apparatus of Claim 23 further comprising: a user information updating unit operable to receive, if the user information inherent in the current user needs to be updated, updated user information from the specific apparatus and overwrite the user information in the locally connected recording medium with the updated user information.
25. The service providing apparatus of Claim 24, wherein the user information in each recording medium has been encrypted using a public key of a public key cryptosystem, the specific apparatus stores a secret key corresponding to the public key, the customized service that is received and provided by the service providing unit is generated at the specific apparatus by decrypting the encrypteduser information included in the transmitted unique information using the secret key and customizing the desired service according to the decrypted user information, and the updated user information received from the specific apparatus by the user information updating unit is generated at the specific apparatus by updating the decrypted- user information and encrypting the updated user information using the public key.
26. The service providing apparatus of Claim 25, wherein the network is the Internet, the service providing apparatus is an Internet terminal that runs a specialized Internet browser, each of the plurality of other apparatuses is a Web site, the unique information stored in each recording medium includes cookie information used through the Internet browser, and each recording medium stores the cookie information as a file.
27. The service providing apparatus of Claim 22, wherein the unique information stored in each recording medium includes a media identifier of the recording medium, the specific apparatus stores user information so that user information inherent in each user is associated with the media identifier of the recording medium assigned to the user, and the customized service that is received and provided by the service providing unit is generated at the specific apparatus by finding user information associated with the media identifier included in the transmitted unique information and customizing the desired service for the current user according to the found user information.
28. The service providing apparatus of Claim 21 further comprising: a recording medium connection unit operable to locally connect the service providing apparatus to the recording medium assigned to the current user.
29. The service providing apparatus of Claim 28, wherein the unique information stored in each recording medium includes a media identifier of the recording medium and user information. that is inherent in a user assigned the recording medium, the user information having been encrypted, and the service providing unit includes : a user password receiving unit operable to receive a user password from the current user, wherein the customized service that is received and provided by the service providing unit is generated at the specific apparatus by generating a decryption key from the media identifier included in the transmitted unique information and the received user password, decrypting the encrypted user information included in the transmitted unique information using the generated decryption key, and customizing the desired service for the current user according to the decrypted user information.
30. The service providing apparatus of Claim 29, wherein each recording medium includes a secure data area, the media identifier of each recording medium is stored in the secure data area of the recording medium, and the unique information transmitting unit includes : a device authentication unit operable to perform a device authentication between the service providing apparatus and the locally connected recording medium; and a transmitting prohibition unit operable to prohibit, if the device authentication has ended in failure, transmission of data in the secure data area of the locally connected recording 13 medium.
1 31. A recording mediumwhich records a service providing program
2 that has a first apparatus execute a procedure for receiving
3 each of services that are provided by a plurality of other
4 apparatuses via a network and providing the received service
5 to a current user of the first apparatus, the first apparatus
6 being able to communicate with each of the plurality of other
7 apparatuses via the network and being locally connectable to
8 a recording medium, out of recording media that are uniquely
9 assigned to users of the first apparatus, each recording medium
10 being transportable and including an area for storing unique
11 information,
12 the service providing program comprising:
13 a service requesting step where the first apparatus 14. requests a second apparatus to provide a service desired by
15 the current user, the second apparatus being one of the plurality
16 of other apparatuses;
17 a unique information transmitting step where if a
18 recording medium of the current user is locally connected to
19 the first apparatus and stores unique information, the first
20 apparatus reads the unique information in the locally connected 1 recording medium and transmits the read unique information
22 to the second apparatus via the network; and 3 a service providing step where the first apparatus 4 receives a customized service from the second apparatus and provides the received service to the current user, wherein the customized service is generated at the second apparatus by customizing the desired service according to the transmitted unique information.
32. A recording medium that is transportable and locally connectable to each Internet terminal, which runs a specialized Internet browser, and stores cookie information used through the Internet browser, wherein if an Internet terminal is locally connected to the recording medium, a Web site that is connected to the Internet terminal via the Internet stores and reads cookie information into and from the recording medium through the Internet browser.
33. The recording medium of Claim 32, wherein the storedcookie informationhas beenencrypted using a public key corresponding to a secret key that has been obtained under a public key cryptosystem and is stored in the Web site.
34. The recording medium of Claim 32 comprising: a secure data area that stores a media identifier of the recording medium; a device authentication unit operable to perform device authentication with the locally connected' Internet terminal; and a reading prohibition unit operable to prohibit the locally connected Internet terminal from reading data in the secure data, area, if the device authentication has ended in failure.
35. The recording medium of Claim 34, wherein the encrypted and stored cookie information is to be decrypted using a decryption key generated from the media identifier andauserpassworddesignatedby auserassigned the recording medium.
PCT/US2001/000881 2000-01-14 2001-01-12 Cookie data stored on transportable recording medium WO2001052168A1 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
US09/936,610 US7065503B2 (en) 2000-01-14 2001-01-12 Cookie data stored on transportable recording medium
JP2001552318A JP4759198B2 (en) 2000-01-14 2001-01-12 Service providing apparatuses that allow other apparatuses to access unique information recorded on a portable recording medium in which unique information is recorded, methods thereof, and the recording medium.
US11/368,536 US7792755B2 (en) 2000-01-14 2006-03-07 Service providing apparatus and method that allow an apparatus to access unique information stored in transportable recording medium

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US48252100A 2000-01-14 2000-01-14
US09/482,521 2000-01-14

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US48252100A Continuation-In-Part 2000-01-14 2000-01-14

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US11/368,536 Division US7792755B2 (en) 2000-01-14 2006-03-07 Service providing apparatus and method that allow an apparatus to access unique information stored in transportable recording medium

Publications (1)

Publication Number Publication Date
WO2001052168A1 true WO2001052168A1 (en) 2001-07-19

Family

ID=23916402

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2001/000881 WO2001052168A1 (en) 2000-01-14 2001-01-12 Cookie data stored on transportable recording medium

Country Status (2)

Country Link
JP (1) JP4759198B2 (en)
WO (1) WO2001052168A1 (en)

Cited By (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2379303A (en) * 2001-06-04 2003-03-05 Hewlett Packard Co System and method for requesting computer resources
CN104487963A (en) * 2012-08-30 2015-04-01 尼尔森(美国)有限公司 Methods and apparatus to collect distributed user information for media impressions and search terms
US9215288B2 (en) 2012-06-11 2015-12-15 The Nielsen Company (Us), Llc Methods and apparatus to share online media impressions data
US9218612B2 (en) 2010-09-22 2015-12-22 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US9232014B2 (en) 2012-02-14 2016-01-05 The Nielsen Company (Us), Llc Methods and apparatus to identify session users with cookie information
US9237138B2 (en) 2013-12-31 2016-01-12 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US9313294B2 (en) 2013-08-12 2016-04-12 The Nielsen Company (Us), Llc Methods and apparatus to de-duplicate impression information
US9355138B2 (en) 2010-06-30 2016-05-31 The Nielsen Company (Us), Llc Methods and apparatus to obtain anonymous audience measurement data from network server data for particular demographic and usage profiles
US9386111B2 (en) 2011-12-16 2016-07-05 The Nielsen Company (Us), Llc Monitoring media exposure using wireless communications
US9497090B2 (en) 2011-03-18 2016-11-15 The Nielsen Company (Us), Llc Methods and apparatus to determine an adjustment factor for media impressions
US9519914B2 (en) 2013-04-30 2016-12-13 The Nielsen Company (Us), Llc Methods and apparatus to determine ratings information for online media presentations
US9697533B2 (en) 2013-04-17 2017-07-04 The Nielsen Company (Us), Llc Methods and apparatus to monitor media presentations
US9838754B2 (en) 2015-09-01 2017-12-05 The Nielsen Company (Us), Llc On-site measurement of over the top media
US9852163B2 (en) 2013-12-30 2017-12-26 The Nielsen Company (Us), Llc Methods and apparatus to de-duplicate impression information
US10045082B2 (en) 2015-07-02 2018-08-07 The Nielsen Company (Us), Llc Methods and apparatus to correct errors in audience measurements for media accessed using over-the-top devices
US10068246B2 (en) 2013-07-12 2018-09-04 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions
US10147114B2 (en) 2014-01-06 2018-12-04 The Nielsen Company (Us), Llc Methods and apparatus to correct audience measurement data
US10205994B2 (en) 2015-12-17 2019-02-12 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions
US10311464B2 (en) 2014-07-17 2019-06-04 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions corresponding to market segments
US10380633B2 (en) 2015-07-02 2019-08-13 The Nielsen Company (Us), Llc Methods and apparatus to generate corrected online audience measurement data
US10803475B2 (en) 2014-03-13 2020-10-13 The Nielsen Company (Us), Llc Methods and apparatus to compensate for server-generated errors in database proprietor impression data due to misattribution and/or non-coverage
US10956947B2 (en) 2013-12-23 2021-03-23 The Nielsen Company (Us), Llc Methods and apparatus to measure media using media object characteristics
US10963907B2 (en) 2014-01-06 2021-03-30 The Nielsen Company (Us), Llc Methods and apparatus to correct misattributions of media impressions
US11562394B2 (en) 2014-08-29 2023-01-24 The Nielsen Company (Us), Llc Methods and apparatus to associate transactions with media impressions

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006211157A (en) * 2005-01-26 2006-08-10 Fuji Xerox Co Ltd Service providing apparatus, service providing system, and service providing method
JP5137474B2 (en) * 2006-06-23 2013-02-06 株式会社半導体エネルギー研究所 Personal information management system and management system
JP4607082B2 (en) * 2006-09-27 2011-01-05 株式会社エヌ・ティ・ティ・データ Information processing apparatus, management method, and computer program
JP4992511B2 (en) * 2007-03-30 2012-08-08 日本電気株式会社 Web service identification information utilization system, and apparatus, method, and program used therefor

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4677604A (en) * 1985-02-04 1987-06-30 Selsys Corporation Method for controlling access to recorded data
US4890319A (en) * 1984-09-21 1989-12-26 Scientific-Atlantic, Inc. Method for controlling copying of protected information transmitted over a communications link
US5513169A (en) * 1993-10-06 1996-04-30 Sony Corporation CD-ROM with machine-readable i.d. code

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FI105637B (en) * 1997-07-02 2000-09-15 Sonera Oyj A method for managing applications stored on a subscriber identity module
JPH11312190A (en) * 1998-04-28 1999-11-09 Hitachi Ltd Method for displaying commodity information
JPH11328033A (en) * 1998-05-20 1999-11-30 Fujitsu Ltd License transfer device

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4890319A (en) * 1984-09-21 1989-12-26 Scientific-Atlantic, Inc. Method for controlling copying of protected information transmitted over a communications link
US4677604A (en) * 1985-02-04 1987-06-30 Selsys Corporation Method for controlling access to recorded data
US5513169A (en) * 1993-10-06 1996-04-30 Sony Corporation CD-ROM with machine-readable i.d. code

Cited By (67)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2379303B (en) * 2001-06-04 2005-03-30 Hewlett Packard Co System and method for requesting computer resources
US8392527B2 (en) 2001-06-04 2013-03-05 Hewlett-Packard Development Company L.P. System and method for requesting computer resources
GB2379303A (en) * 2001-06-04 2003-03-05 Hewlett Packard Co System and method for requesting computer resources
US9355138B2 (en) 2010-06-30 2016-05-31 The Nielsen Company (Us), Llc Methods and apparatus to obtain anonymous audience measurement data from network server data for particular demographic and usage profiles
US10504157B2 (en) 2010-09-22 2019-12-10 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US11068944B2 (en) 2010-09-22 2021-07-20 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US9218612B2 (en) 2010-09-22 2015-12-22 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US11682048B2 (en) 2010-09-22 2023-06-20 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US11580576B2 (en) 2010-09-22 2023-02-14 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US11144967B2 (en) 2010-09-22 2021-10-12 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US9344343B2 (en) 2010-09-22 2016-05-17 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US9596151B2 (en) 2010-09-22 2017-03-14 The Nielsen Company (Us), Llc. Methods and apparatus to determine impressions using distributed demographic information
US10269044B2 (en) 2010-09-22 2019-04-23 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions using distributed demographic information
US9497090B2 (en) 2011-03-18 2016-11-15 The Nielsen Company (Us), Llc Methods and apparatus to determine an adjustment factor for media impressions
US9386111B2 (en) 2011-12-16 2016-07-05 The Nielsen Company (Us), Llc Monitoring media exposure using wireless communications
US9467519B2 (en) 2012-02-14 2016-10-11 The Nielsen Company (Us), Llc Methods and apparatus to identify session users with cookie information
US9232014B2 (en) 2012-02-14 2016-01-05 The Nielsen Company (Us), Llc Methods and apparatus to identify session users with cookie information
US9215288B2 (en) 2012-06-11 2015-12-15 The Nielsen Company (Us), Llc Methods and apparatus to share online media impressions data
US11870912B2 (en) 2012-08-30 2024-01-09 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US9210130B2 (en) 2012-08-30 2015-12-08 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US10778440B2 (en) 2012-08-30 2020-09-15 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US9912482B2 (en) 2012-08-30 2018-03-06 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US11483160B2 (en) 2012-08-30 2022-10-25 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
CN104487963A (en) * 2012-08-30 2015-04-01 尼尔森(美国)有限公司 Methods and apparatus to collect distributed user information for media impressions and search terms
US10063378B2 (en) 2012-08-30 2018-08-28 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US11792016B2 (en) 2012-08-30 2023-10-17 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US9697533B2 (en) 2013-04-17 2017-07-04 The Nielsen Company (Us), Llc Methods and apparatus to monitor media presentations
US9519914B2 (en) 2013-04-30 2016-12-13 The Nielsen Company (Us), Llc Methods and apparatus to determine ratings information for online media presentations
US10192228B2 (en) 2013-04-30 2019-01-29 The Nielsen Company (Us), Llc Methods and apparatus to determine ratings information for online media presentations
US11669849B2 (en) 2013-04-30 2023-06-06 The Nielsen Company (Us), Llc Methods and apparatus to determine ratings information for online media presentations
US11410189B2 (en) 2013-04-30 2022-08-09 The Nielsen Company (Us), Llc Methods and apparatus to determine ratings information for online media presentations
US10937044B2 (en) 2013-04-30 2021-03-02 The Nielsen Company (Us), Llc Methods and apparatus to determine ratings information for online media presentations
US10643229B2 (en) 2013-04-30 2020-05-05 The Nielsen Company (Us), Llc Methods and apparatus to determine ratings information for online media presentations
US11205191B2 (en) 2013-07-12 2021-12-21 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions
US11830028B2 (en) 2013-07-12 2023-11-28 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions
US10068246B2 (en) 2013-07-12 2018-09-04 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions
US9313294B2 (en) 2013-08-12 2016-04-12 The Nielsen Company (Us), Llc Methods and apparatus to de-duplicate impression information
US10956947B2 (en) 2013-12-23 2021-03-23 The Nielsen Company (Us), Llc Methods and apparatus to measure media using media object characteristics
US9852163B2 (en) 2013-12-30 2017-12-26 The Nielsen Company (Us), Llc Methods and apparatus to de-duplicate impression information
US10846430B2 (en) 2013-12-31 2020-11-24 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US9237138B2 (en) 2013-12-31 2016-01-12 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US10498534B2 (en) 2013-12-31 2019-12-03 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US9641336B2 (en) 2013-12-31 2017-05-02 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US11562098B2 (en) 2013-12-31 2023-01-24 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US9979544B2 (en) 2013-12-31 2018-05-22 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions and search terms
US10963907B2 (en) 2014-01-06 2021-03-30 The Nielsen Company (Us), Llc Methods and apparatus to correct misattributions of media impressions
US11068927B2 (en) 2014-01-06 2021-07-20 The Nielsen Company (Us), Llc Methods and apparatus to correct audience measurement data
US10147114B2 (en) 2014-01-06 2018-12-04 The Nielsen Company (Us), Llc Methods and apparatus to correct audience measurement data
US11727432B2 (en) 2014-01-06 2023-08-15 The Nielsen Company (Us), Llc Methods and apparatus to correct audience measurement data
US11568431B2 (en) 2014-03-13 2023-01-31 The Nielsen Company (Us), Llc Methods and apparatus to compensate for server-generated errors in database proprietor impression data due to misattribution and/or non-coverage
US10803475B2 (en) 2014-03-13 2020-10-13 The Nielsen Company (Us), Llc Methods and apparatus to compensate for server-generated errors in database proprietor impression data due to misattribution and/or non-coverage
US11068928B2 (en) 2014-07-17 2021-07-20 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions corresponding to market segments
US11854041B2 (en) 2014-07-17 2023-12-26 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions corresponding to market segments
US10311464B2 (en) 2014-07-17 2019-06-04 The Nielsen Company (Us), Llc Methods and apparatus to determine impressions corresponding to market segments
US11562394B2 (en) 2014-08-29 2023-01-24 The Nielsen Company (Us), Llc Methods and apparatus to associate transactions with media impressions
US11259086B2 (en) 2015-07-02 2022-02-22 The Nielsen Company (Us), Llc Methods and apparatus to correct errors in audience measurements for media accessed using over the top devices
US10045082B2 (en) 2015-07-02 2018-08-07 The Nielsen Company (Us), Llc Methods and apparatus to correct errors in audience measurements for media accessed using over-the-top devices
US11645673B2 (en) 2015-07-02 2023-05-09 The Nielsen Company (Us), Llc Methods and apparatus to generate corrected online audience measurement data
US10785537B2 (en) 2015-07-02 2020-09-22 The Nielsen Company (Us), Llc Methods and apparatus to correct errors in audience measurements for media accessed using over the top devices
US10368130B2 (en) 2015-07-02 2019-07-30 The Nielsen Company (Us), Llc Methods and apparatus to correct errors in audience measurements for media accessed using over the top devices
US11706490B2 (en) 2015-07-02 2023-07-18 The Nielsen Company (Us), Llc Methods and apparatus to correct errors in audience measurements for media accessed using over-the-top devices
US10380633B2 (en) 2015-07-02 2019-08-13 The Nielsen Company (Us), Llc Methods and apparatus to generate corrected online audience measurement data
US9838754B2 (en) 2015-09-01 2017-12-05 The Nielsen Company (Us), Llc On-site measurement of over the top media
US11785293B2 (en) 2015-12-17 2023-10-10 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions
US11272249B2 (en) 2015-12-17 2022-03-08 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions
US10205994B2 (en) 2015-12-17 2019-02-12 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions
US10827217B2 (en) 2015-12-17 2020-11-03 The Nielsen Company (Us), Llc Methods and apparatus to collect distributed user information for media impressions

Also Published As

Publication number Publication date
JP4759198B2 (en) 2011-08-31
JP2003519877A (en) 2003-06-24

Similar Documents

Publication Publication Date Title
US7792755B2 (en) Service providing apparatus and method that allow an apparatus to access unique information stored in transportable recording medium
WO2001052168A1 (en) Cookie data stored on transportable recording medium
US20070239615A1 (en) Personal Information Management Device, Distributed Key Storage Device, and Personal Information Management System
US8918633B2 (en) Information processing device, information processing system, and program
CN100407129C (en) Equipment and method for limitting contents access and storage
US20140245014A1 (en) Remote control app for smart phones
JP4405575B2 (en) Encryption management device, decryption management device, and program
US20090041249A1 (en) Method and system for managing a key for encryption or decryption of data
US20020178370A1 (en) Method and apparatus for secure authentication and sensitive data management
US20060059094A1 (en) Method and apparatus for digital rights management
US20080260155A1 (en) Storage Medium Processing Method, Storage Medium Processing Device, and Program
US20040052378A1 (en) Contents management system
US7472123B2 (en) Server device, communication device, and program for managing contents usage
CN101213538A (en) Electronic business card exchange system and method
JP4353552B2 (en) Content server, terminal device, and content transmission system
JP5218338B2 (en) Information transmission system
US20040030891A1 (en) Information processing system, information processing apparatus and method, recording medium, and program
JP2003530635A (en) System and method for securely storing confidential information, and digital content distribution device and server used in the system and method
JP2005209181A (en) File management system and management method
JP2002157226A (en) Centralized password managing system
JP2002328904A (en) System for managing application service providers
JP2002157223A (en) Service providing system
JPH11212874A (en) System and method for communication data secrecy control
US20050038990A1 (en) Authorization device, method and program
JP2009093670A (en) File security management system, authentication server, client device, program and recording medium

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): JP US

ENP Entry into the national phase

Ref country code: JP

Ref document number: 2001 552318

Kind code of ref document: A

Format of ref document f/p: F

WWE Wipo information: entry into national phase

Ref document number: 09936610

Country of ref document: US