[go: up one dir, main page]

WO2019031343A1 - Système de transfert de données, et dispositif de transmission de données et dispositif de réception de données associé - Google Patents

Système de transfert de données, et dispositif de transmission de données et dispositif de réception de données associé Download PDF

Info

Publication number
WO2019031343A1
WO2019031343A1 PCT/JP2018/028826 JP2018028826W WO2019031343A1 WO 2019031343 A1 WO2019031343 A1 WO 2019031343A1 JP 2018028826 W JP2018028826 W JP 2018028826W WO 2019031343 A1 WO2019031343 A1 WO 2019031343A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
encryption key
detection result
data transmission
packet
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/JP2018/028826
Other languages
English (en)
Japanese (ja)
Inventor
久保 誠雄
出野 徹
秀規 近藤
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Omron Corp
Omron Healthcare Co Ltd
Original Assignee
Omron Corp
Omron Healthcare Co Ltd
Omron Tateisi Electronics Co
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Omron Corp, Omron Healthcare Co Ltd, Omron Tateisi Electronics Co filed Critical Omron Corp
Publication of WO2019031343A1 publication Critical patent/WO2019031343A1/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords

Definitions

  • the present invention relates to data transmission / reception technology by one-way communication.
  • a blood pressure monitor having a function of transferring blood pressure data to a user's portable information terminal has been put on the market.
  • the portable information terminal for example, a smartphone, a tablet type terminal, or a notebook personal computer is used. By using this function, the user can list the measurement results of his / her blood pressure under various conditions on the portable information terminal.
  • near field communication technology in particular Bluetooth (registered trademark) technology is typically used.
  • Bluetooth communication connection
  • WLAN wireless local area network
  • connection bi-directional communication called connection can be performed.
  • the operation imposed on the user for pairing is complicated, the communication procedure after pairing is complicated, the portable information terminal side needs to support BLE, only the portable information terminal
  • the blood pressure monitor requires high-performance hardware (processor, memory), high development / evaluation cost, large communication overhead, and is not suitable for small-capacity data transmission.
  • BLE can also perform one-way communication called advertising.
  • Japanese Patent No. 5852620 discloses a technique for transmitting data including optional data in the margin of the data field of an advertisement packet.
  • blood pressure data is transmitted using advertising, pairing and subsequent complicated communication procedures become unnecessary, so the above problem is eliminated or alleviated.
  • blood pressure data transmission using advertising if blood pressure data is encrypted, leakage of blood pressure data to a third party can be prevented.
  • An object of the present invention is to provide a data transmission system capable of enhancing security of data in one-way communication, and a data transmission apparatus and a data reception apparatus therefor.
  • a data transmission system comprising a data transmission apparatus and a data reception apparatus used in a state of being attached to or held by a specific part of a user, wherein the data transmission apparatus is the data transmission apparatus.
  • a detection unit for detecting a mechanical motion applied to the data transmission device, a generation unit for generating a first encryption key based on the detection result of the mechanical motion applied to the data transmission apparatus, and the first encryption An encryption processing unit that encrypts transmission data using a key; a packet transmission processing unit that stores the encrypted transmission data in a packet for one-way communication; and transmits the packet; A detection unit for detecting a dynamic movement applied to the data receiving apparatus, and a generation unit for generating a second encryption key based on a detection result of the dynamic movement applied to the data receiving apparatus
  • a packet reception processing unit for receiving a packet for one-way communication in which the encrypted transmission data is stored, which is transmitted from the data transmission apparatus, and the transmission data stored in the received packet A data transmission system comprising: a decryption processing unit that decrypts using the second encryption key.
  • the data transmission apparatus creates the same encryption key as the encryption key generated by the data reception apparatus based on the detection result of the dynamic motion added to the data transmission apparatus. can do.
  • the data transmission apparatus can encrypt transmission data using the same encryption key as the encryption key used to decrypt the transmission data by the data reception apparatus.
  • the data receiving apparatus can create the same encryption key as the encryption key generated by the data transmitting apparatus based on the detection result of the dynamic motion added to the data receiving apparatus.
  • the data reception apparatus can decrypt the transmission data encrypted by the data transmission apparatus.
  • a second aspect of the present invention is a data transmission apparatus used in a state of being attached to or gripped by a specific part of a user together with a data reception apparatus, which detects mechanical motion applied to the data transmission apparatus.
  • a detection unit a creation unit that creates an encryption key based on the detection result of the dynamic motion applied to the data transmission apparatus; an encryption processing unit that encrypts transmission data using the encryption key;
  • a packet transmission processing unit that stores encrypted transmission data in a packet for one-way communication and transmits the packet.
  • the data transmission apparatus creates the same encryption key as the encryption key generated by the data reception apparatus based on the detection result of the dynamic motion applied to the data transmission apparatus. can do.
  • the data transmission apparatus can encrypt transmission data using the same encryption key as the encryption key used to decrypt the transmission data by the data reception apparatus.
  • the creation unit uses a detection result regarding a predetermined one direction based on a mechanical motion applied to the data transmission device.
  • the encryption key is created.
  • the data transmission apparatus uses the detection result on one direction determined in advance to obtain the encryption key. Can be created.
  • the data transmission apparatus receives the data of the encryption key generated by the data transmission apparatus. It is possible to reduce the possibility of being different from the encryption key generated by the device.
  • the generation unit compares the data amount of the detection result with a reference value, and the data amount of the detection result is less than the reference value
  • the encryption key is created using the detection result based on the comparison result indicating that.
  • the data transmission device creates the encryption key based on the dynamic motion applied to the uncomplicated data transmission device such that the amount of data is less than the reference value. it can.
  • the data transmission apparatus receives the data of the encryption key generated by the data transmission apparatus. It is possible to reduce the possibility of being different from the encryption key generated by the device.
  • the creating unit creates the encryption key based on an operation instructing the user to create the encryption key. It is.
  • the data transmitting apparatus can create an encryption key triggered by an operation instructing the user to create an encryption key. Therefore, the data transmitting apparatus can prevent the user from creating the encryption key at a timing when the creation of the encryption key is not desired.
  • the data transmitting device is the same as the encryption key generated by the data receiving device. You can create a key.
  • a sixth aspect of the present invention is a data receiving apparatus used in a state of being attached to or gripped by a specific part of a user together with a data transmitting apparatus, which detects mechanical motion applied to the data receiving apparatus.
  • a data reception apparatus comprising: a packet reception processing unit for receiving a packet for one-way communication; and a decryption processing unit for decrypting transmission data stored in the received packet using the encryption key.
  • the data receiving apparatus creates the same encryption key as the encryption key generated by the data transmitting apparatus based on the detection result of the dynamic motion added to the data receiving apparatus. can do. As a result, even if the encryption key can not be passed between the data transmission apparatus and the data reception apparatus, the data reception apparatus can decrypt the transmission data encrypted by the data transmission apparatus.
  • the creating unit uses a detection result regarding a predetermined one direction based on a mechanical motion applied to the data receiving apparatus.
  • the encryption key is created.
  • the data receiving apparatus uses the detection result on one direction determined in advance, even if the mechanical motion applied to the data receiving apparatus is complex. Can be created. As a result, for example, when the user gives the data transmission apparatus and the data reception apparatus the same mechanical motion, the data reception apparatus transmits data of the encryption key generated by the data reception apparatus. It is possible to reduce the possibility of being different from the encryption key generated by the device.
  • the generation unit compares the data amount of the detection result with a reference value, and the data amount of the detection result is less than the reference value
  • the encryption key is created using the detection result based on the comparison result indicating that.
  • the data receiving apparatus creates the encryption key based on the mechanical motion applied to the uncomplicated data receiving apparatus such that the amount of data is less than the reference value. it can.
  • the data reception apparatus transmits data of the encryption key generated by the data reception apparatus. It is possible to reduce the possibility of being different from the encryption key generated by the device.
  • the creation unit creates the encryption key based on an operation instructing the user to create the encryption key. It is.
  • the data receiving apparatus can create an encryption key triggered by an operation of instructing creation of an encryption key by the user. Therefore, the data receiving apparatus can prevent the user from creating the encryption key at a timing when the creation of the encryption key is not desired.
  • the data receiving device may use the same encryption key as the encryption key created by the data transmitting device. You can create a key.
  • FIG. 1 is a block diagram showing an application example of the data transmission apparatus and the data reception apparatus according to the embodiment.
  • FIG. 2 is a block diagram illustrating a data transmission system including the data transmission apparatus and the data reception apparatus according to the embodiment.
  • FIG. 3 is a block diagram illustrating the hardware configuration of the data transmission apparatus according to the embodiment.
  • FIG. 4 is a block diagram illustrating the software configuration of the data transmission apparatus according to the embodiment.
  • FIG. 5 is a block diagram illustrating the hardware configuration of the data receiving apparatus according to the embodiment.
  • FIG. 6 is a block diagram illustrating the software configuration of the data receiving apparatus according to the embodiment.
  • FIG. 7 is an explanatory diagram of advertising performed in BLE.
  • FIG. 8 is a diagram illustrating the data structure of packets transmitted and received in BLE.
  • FIG. 8 is a diagram illustrating the data structure of packets transmitted and received in BLE.
  • FIG. 9 is a diagram illustrating the data structure of the PDU field of the advertisement packet.
  • FIG. 10 is a flowchart illustrating the operation of the data transmission apparatus according to the embodiment.
  • FIG. 11 is a flowchart illustrating the operation of the data receiving apparatus according to the embodiment.
  • FIG. 1 schematically shows an application example of the data transmitting apparatus 100 and the data receiving apparatus 200 according to the present embodiment.
  • the data transmitting apparatus 100 and the data receiving apparatus 200 are used in a state of being mounted or gripped at a specific site of the user. Thereby, the data transmission device 100 and the data reception device 200 add the same dynamic motion according to the motion of the specific part of the user.
  • the data transmission device 100 is a sensor device that measures the amount of biological information or activity information of the user on a daily basis.
  • the data transmission apparatus 100 is an apparatus capable of one-way communication such as BLE.
  • the data transmission apparatus 100 includes a creation unit 1111, an encryption processing unit 1112 and a packet transmission processing unit 1113.
  • the creation unit 1111 creates an encryption key based on the detection result of the dynamic motion added to the data transmission apparatus 100.
  • the encryption processing unit 1112 encrypts measurement data indicating biological information or activity information of the user using the encryption key generated by the generation unit 1111.
  • the packet transmission processing unit 1113 stores the encrypted transmission data in the advertisement packet in BLE, and transmits the advertisement packet.
  • the data transmitting apparatus 100 can transmit an advertisement packet using one-way communication of BLE.
  • the data reception device 200 is a portable information terminal such as a smartphone or a tablet.
  • the data receiving apparatus 200 is an apparatus capable of BLE wireless communication.
  • the data receiving apparatus 200 receives, from the data transmitting apparatus 100, an advertisement packet in which encrypted measurement data is stored.
  • the creation unit 2111 creates an encryption key based on the detection result of the dynamic motion added to the data receiving apparatus 200.
  • the decryption processing unit 2112 decrypts the encrypted measurement data stored in the advertisement packet, using the encryption key generated by the generation unit 2111.
  • the data processing unit 2113 transmits the decoded measurement data to another device.
  • the data transmitting apparatus 100 and the data receiving apparatus 200 can enhance the security of data in one-way communication.
  • FIG. 2 is a block diagram illustrating a data transmission system including the data transmission apparatus 100 and the data reception apparatus 200 according to the present embodiment.
  • the data transmitting apparatus 100 and the data receiving apparatus 200 are used in a state of being mounted or gripped at a specific site of the user. Thereby, the data transmission device 100 and the data reception device 200 add the same dynamic motion according to the motion of the specific part of the user.
  • the data transmission device 100 is a sensor device that routinely measures an amount related to biological information or activity information of the user, such as a blood pressure monitor, a thermometer, an activity meter, a pedometer, a body composition meter, and a weight scale.
  • the data transmission apparatus 100 is an apparatus capable of one-way communication such as BLE.
  • BLE the appearance of a wristwatch type wearable sphygmomanometer is shown as the data transmission device 100, but the data transmission device 100 is not limited to this, and may be a stationary sphygmomanometer. It may be a sensor device that measures quantities related to other biometric information or activity information.
  • the data transmitting apparatus 100 transmits measurement data indicating biological information or activity information to the data receiving apparatus 200 by one-way communication. Measurement data may be referred to as transmission data.
  • the data transmission device 100 is used with the data reception device 200 in a state of being attached to or gripped by a specific part of the user. As a result, the data transmitting apparatus 100 applies the same mechanical motion as the mechanical motion applied to the data receiving device 200 according to the motion of the specific part of the user.
  • the data reception device 200 is a portable information terminal such as a smartphone or a tablet.
  • the data receiving apparatus 200 is mainly an apparatus capable of wireless communication such as BLE, mobile communication (3G, 4G, etc.) and WLAN.
  • the data receiving apparatus 200 is used with the data transmitting apparatus 100 in a state of being attached to or gripped by a specific part of the user.
  • the data receiving apparatus 200 has the same mechanical movement as the mechanical movement applied to the data transmitting apparatus 100 according to the movement of the specific part of the user.
  • the data receiving apparatus 200 receives the measurement data from the data transmitting apparatus 100 by BLE.
  • the data receiving apparatus 200 transmits measurement data to the server 300 via the network.
  • the data receiving apparatus 200 uses, for example, mobile communication or WLAN.
  • the server 300 corresponds to a database that manages biometric information or activity information of a large number of users based on measurement data.
  • FIG. 3 schematically shows an example of the hardware configuration of the data transmission apparatus 100. As shown in FIG.
  • the data transmission apparatus 100 includes a control unit 111, a storage unit 112, a communication interface 113, an input device 114, an output device 115, an external interface 116, a battery 117, and a living body sensor 118. And the motion sensor 119 are electrically connected.
  • the communication interface and the external interface are described as “communication I / F” and “external I / F”, respectively.
  • the control unit 111 includes a central processing unit (CPU), a random access memory (RAM), a read only memory (ROM), and the like.
  • the CPU is an example of a processor.
  • the CPU develops the program stored in the storage unit 112 in the RAM. Then, the CPU interprets and executes this program, whereby the control unit 111 can execute various information processing, for example, processing of functional blocks described in the item of software configuration.
  • the storage unit 112 is a so-called auxiliary storage device, and may be, for example, a semiconductor memory such as a built-in or external flash memory, a hard disk drive (HDD), or a solid state drive (SSD).
  • the storage unit 112 stores a program executed by the control unit 111, data used by the control unit 111, and the like.
  • the program can also be referred to as an instruction to operate the control unit 111.
  • the communication interface 113 includes at least a wireless module for transmitting (advertising) a packet of one-way communication such as BLE. Advertising of BLE will be described later.
  • the wireless module receives, from the control unit 111, an advertisement packet in BLE in which encrypted measurement data is stored. The encryption of measurement data will be described later.
  • the wireless module sends an advertisement packet.
  • the wireless module may be referred to as a transmitter. Note that BLE may be replaced by another low power consumption, one-way communication standard that can be used in the future. In that case, the following description may be read appropriately.
  • the input device 114 is a device for receiving user input such as a touch screen, a button, and a switch.
  • the output device 115 is, for example, a device for performing output such as a display and a speaker.
  • the external interface 116 is a universal serial bus (USB) port, a memory card slot, or the like, and is an interface for connecting to an external device.
  • USB universal serial bus
  • the battery 117 supplies the power supply voltage of the data transmission apparatus 100.
  • the battery 117 may be replaceable.
  • Data transmission apparatus 100 may be connectable to a commercial power supply via an AC (Alternating Current) adapter. In this case, the battery 117 can be omitted.
  • AC Alternating Current
  • the biometric sensor 118 obtains measurement data by measuring the amount of biometric information of the user.
  • the operation of the biological sensor 118 is controlled by, for example, a sensor control unit (not shown).
  • the measurement data is stored in the storage unit 112 in association with date and time data.
  • Biosensor 118 typically includes a blood pressure sensor that obtains blood pressure data by measuring an amount related to the user's blood pressure.
  • the measurement data includes blood pressure data.
  • Blood pressure data may include, but is not limited to, for example, systolic blood pressure SBP (systolic blood pressure) and diastolic blood pressure DBP (diastolic blood pressure) values and pulse rate.
  • measurement data can include electrocardiogram data, pulse wave data, body temperature data, and the like.
  • the blood pressure sensor may include a blood pressure sensor (hereinafter also referred to as a continuous blood pressure sensor) capable of continuously measuring an amount related to the user's blood pressure every one beat.
  • the continuous blood pressure sensor may continuously measure an amount related to the user's blood pressure from pulse wave transit time (PTT), or may realize continuous measurement by tonometry or other techniques.
  • PTT pulse wave transit time
  • the blood pressure sensor is a blood pressure sensor that performs a measurement operation in response to a user operation or at a preset measurement time instead of or in addition to a continuous blood pressure sensor (hereinafter referred to as discontinuous blood pressure Can also be included).
  • a non-continuous blood pressure sensor for example, uses a cuff as a pressure sensor to measure an amount related to the user's blood pressure (oscillometric method).
  • Non-continuous blood pressure sensors tend to have higher measurement accuracy than continuous blood pressure sensors. Therefore, the blood pressure sensor is replaced with the continuous blood pressure sensor, for example, triggered by that a certain condition is satisfied (for example, the amount related to the user's blood pressure measured by the continuous blood pressure sensor suggested a predetermined state) By operating the non-continuous blood pressure sensor, the amount related to blood pressure may be measured with higher accuracy.
  • the motion sensor 119 may be, for example, an acceleration sensor or a gyro sensor.
  • the motion sensor 119 detects acceleration / angular velocity received by the motion sensor 119 to obtain a detection result indicating acceleration / angular velocity data (hereinafter also referred to as motion data) of three axes.
  • the motion sensor 119 detects the mechanical motion applied to the data transmission device 100.
  • the motion sensor 119 may be referred to as a detection unit.
  • the operation of the motion sensor 119 is controlled by, for example, a sensor control unit (not shown).
  • the detection result is used to create an encryption key for encrypting measurement data as described later.
  • control unit 111 may include a plurality of processors.
  • the data transmission device 100 may be configured by a plurality of sensor devices.
  • FIG. 4 schematically illustrates an example of the software configuration of the data transmission apparatus 100.
  • the control unit 111 implements a creation unit 1111, an encryption processing unit 1112 and a packet transmission processing unit 1113.
  • the creation unit 1111 will be described.
  • the creation unit 1111 creates the encryption key based on the detection result of the dynamic motion added to the data transmission apparatus 100 as exemplified below.
  • the creation unit 1111 creates the encryption key based on an operation instructing the user to create the encryption key.
  • the data transmission apparatus 100 is worn on the wrist of the user and moves in response to the movement of the user.
  • the creation unit 1111 receives the detection result of the dynamic motion applied to the data transmission apparatus 100 from the motion sensor 119 in time series.
  • the creation unit 1111 receives, from the motion sensor 119, the detection result of the dynamic motion added to the data transmission apparatus 100 during a predetermined time after detecting an instruction regarding the creation start of the encryption key by the user.
  • the creating unit 1111 is added to the data transmitting apparatus 100 after detecting an instruction regarding the start of creation of the encryption key by the user until detecting an instruction regarding the end of creation of the encryption key by the user.
  • the detection result of the dynamic motion may be received from the motion sensor 119.
  • the creation unit 1111 creates an encryption key using detection results along a time series according to a predetermined algorithm.
  • the creation unit 1111 outputs the encryption key to the encryption processing unit 1112.
  • the encryption processing unit 1112 will be described.
  • the encryption processing unit 1112 encrypts measurement data using an encryption key as exemplified below.
  • the encryption processing unit 1112 receives the encryption key from the creation unit 1111.
  • the encryption processing unit 1112 acquires measurement data from the storage unit 112.
  • the encryption processing unit 1112 encrypts measurement data using the encryption key generated by the data transmission apparatus 100 according to a predetermined algorithm.
  • the encryption method for example, the transmitting side and the receiving side have a common key, and the transmitting side substitutes the plaintext into a ciphertext using the common key and transmits it, and the receiving side receives the ciphertext using the common key
  • a common key scheme to decrypt is used.
  • any method may be used as long as the transmitting side and the receiving side use the common key.
  • the encryption processing unit 1112 outputs the encrypted measurement data to the packet transmission processing unit 1113.
  • the packet transmission processing unit 1113 will be described.
  • the packet transmission processing unit 1113 stores the encrypted measurement data in the advertisement packet in BLE, and transmits the advertisement packet.
  • the packet transmission processing unit 1113 transmits an advertisement packet via the communication interface 113.
  • FIG. 5 schematically illustrates an example of the hardware configuration of the data receiving apparatus 200.
  • the control unit 211, the storage unit 212, the communication interface 213, the input device 214, the output device 215, the external interface 216, and the motion sensor 217 are electrically connected.
  • the control unit 211 includes a CPU, a RAM, a ROM, and the like.
  • the CPU is an example of a processor.
  • the CPU develops the program stored in the storage unit 212 in the RAM. Then, the CPU interprets and executes this program, whereby the control unit 211 can execute various information processing, for example, processing of the functional blocks described in the item of the software configuration.
  • the storage unit 212 is a so-called auxiliary storage device, and may be, for example, a semiconductor memory such as a built-in or external flash memory.
  • the storage unit 212 stores a program executed by the control unit 211, data used by the control unit 211, and the like.
  • the program can also be referred to as an instruction to operate the control unit 211.
  • the communication interface 213 mainly includes various wireless communication modules for BLE, mobile communication (3G, 4G, etc.) and WLAN.
  • the communication interface 213 may further include a wired communication module such as a wired LAN (Local Area Network) module.
  • the communication module for BLE receives the advertisement packet, which is transmitted from the data transmitting apparatus 100, in which the encrypted measurement data is stored.
  • the communication module for BLE may be referred to as a packet reception processor.
  • the input device 214 is a device for receiving user input such as a touch screen, for example.
  • the output device 215 is, for example, a device for performing an output such as a display or a speaker.
  • the external interface 216 is a USB port, a memory card slot, or the like, and is an interface for connecting to an external device.
  • the motion sensor 217 may be, for example, an acceleration sensor or a gyro sensor, similar to the motion sensor 119 described above.
  • the motion sensor 217 detects an acceleration / angular velocity received by the motion sensor 217 to obtain a detection result indicating acceleration / angular velocity data of three axes.
  • the motion sensor 217 detects the mechanical motion applied to the data receiving device 200.
  • the motion sensor 217 may be referred to as a detection unit.
  • the operation of the motion sensor 217 is controlled by, for example, a sensor control unit (not shown).
  • the detection result is used to create an encryption key for decrypting the encrypted measurement data as described later.
  • control unit 211 may include a plurality of processors.
  • FIG. 6 schematically illustrates an example of the software configuration of the data receiving apparatus 200.
  • the control unit 211 mounts the creation unit 2111, the decoding processing unit 2112, and the data processing unit 2113.
  • the creation unit 2111 creates the encryption key based on the detection result of the dynamic motion added to the data receiving apparatus 200 as illustrated below. For example, the creation unit 2111 creates an encryption key based on an operation instructing the user to create an encryption key. For example, the data receiving apparatus 200 moves with the data transmitting apparatus 100 according to the movement of the user by being held by the hand of the user to which the data transmitting apparatus 100 is attached.
  • the creation unit 2111 receives the detection result of the dynamic motion added to the data reception device 200 from the motion sensor 217 in time series. In one example, the creation unit 2111 receives, from the motion sensor 217, the detection result of the dynamic motion added to the data reception device 200 during a predetermined time after detecting an instruction regarding the creation start of the encryption key by the user.
  • the creating unit 2111 is added to the data receiving apparatus 200 after detecting an instruction regarding the start of creation of the encryption key by the user until detecting an instruction regarding the end of creation of the encryption key by the user.
  • the detection result of the mechanical motion may be received from the motion sensor 217.
  • the creation unit 2111 creates an encryption key using detection results along a time series according to a predetermined algorithm.
  • the creation unit 2111 outputs the encryption key to the decryption processing unit 2112.
  • the decryption processing unit 2112 decrypts the measurement data using the encryption key generated by the data receiving apparatus 200 as exemplified below.
  • the decryption processing unit 2112 receives the encryption key from the creation unit 2111. Also, the decryption processing unit 2112 receives, from the communication interface 213, an advertisement packet in which the encrypted measurement data is stored.
  • the decryption processing unit 2112 decrypts the encrypted measurement data stored in the advertisement packet using the encryption key generated by the data receiving apparatus 200 according to a predetermined algorithm.
  • the decoding processing unit 2112 outputs the decoded measurement data to the data processing unit 2113.
  • the data processing unit 2113 will be described.
  • the data processing unit 2113 stores the measurement data in the storage unit 212. Furthermore, the data processing unit 2113 transmits measurement data to the server 300 via the network in accordance with a predetermined communication protocol.
  • FIG. 8 shows the basic structure of the BLE wireless communication packet.
  • the BLE wireless communication packet has a 1-byte preamble, a 4-byte access address, a 2-39-byte (variable) protocol data unit (PDU), and a 3-byte cyclic redundancy check (CRC: Cyclic). And Redundancy Checksum).
  • the length of the BLE wireless communication packet is 10 to 47 bytes, depending on the length of the PDU.
  • a 10-byte BLE wireless communication packet (PDU is 2 bytes) is Empty Also called a PDU packet, it is periodically exchanged between the master and the slave.
  • the preamble field is prepared for synchronization of BLE wireless communication, and stores "01" or "10" repetitions.
  • the access address is a fixed numerical value in the advertising channel and a random access address in the data channel.
  • an advertisement packet which is a BLE wireless communication packet transmitted on an advertising channel, is targeted.
  • the CRC field is used to detect a reception error.
  • the calculation range of CRC is only the PDU field.
  • the PDU field of the advertisement packet will be described using FIG.
  • the PDU field of the data communication packet which is a BLE wireless communication packet transmitted on the data channel has a data structure different from that of FIG. 9, the data communication packet is not targeted in the present embodiment, and therefore, the description is omitted.
  • the PDU field of the advertisement packet includes a 2-byte header and a payload of 0 to 37 bytes (variable).
  • the header further includes a 4-bit PDU Type field, a 2-bit unused field, a 1-bit TxAdd field, a 1-bit RxAdd field, a 6-bit Length field, and a 2-bit unused field. Including.
  • the PDU Type field stores a value indicating the type of this PDU.
  • TxAdd field a flag indicating whether or not there is a transmission address in the payload is stored.
  • RxAdd field a flag indicating whether or not there is a reception address in the payload is stored.
  • Length field a value indicating the byte size of the payload is stored.
  • the payload can store any data. Therefore, the data transmission apparatus 100 stores measurement data and date and time data in the payload using a predetermined data structure.
  • This data structure is, for example, an identifier representing a user, an identifier representing the data transmission apparatus 100 as a transmission source apparatus, an identifier representing a data reception apparatus 200 as a destination apparatus, date and time data, systolic blood pressure SBP associated with date and time data, It may include one or more measurement data such as diastolic blood pressure DBP, pulse rate, activity, and the like.
  • FIG. 10 is a flowchart illustrating an example of the operation of the data transmission apparatus 100.
  • the data transmitting apparatus 100 is used with the data receiving apparatus 200 in a state of being attached to or gripped by a specific part of the user.
  • the data transmitting apparatus 100 adds the same mechanical motion as the mechanical motion applied to the data receiving device 200 according to the motion of the specific part of the user.
  • the data transmission apparatus 100 is worn on the wrist of the user.
  • the process sequence demonstrated below is only an example, and each process may be changed as much as possible.
  • omission, substitution, and addition of steps can be made as appropriate.
  • the creation unit 1111 creates the encryption key based on the detection result of the dynamic motion added to the data transmission apparatus 100 (step S101).
  • the encryption processing unit 1112 acquires measurement data from the storage unit 112 (step S102).
  • the encryption processing unit 1112 encrypts the measurement data using the encryption key generated by the data transmission apparatus 100 (step S103).
  • the packet transmission processing unit 1113 stores the encrypted measurement data in the advertisement packet, and transmits the advertisement packet (step S104).
  • the data transmitting apparatus 100 can transmit the advertisement packet storing the encrypted measurement data to the data receiving apparatus 200.
  • step S101 the creating unit 1111 creates an encryption key using a detection result on one direction determined in advance based on the dynamic movement applied to the data transmitting apparatus 100 as illustrated below. You may
  • the creation unit 1111 extracts a detection result along a time series of predetermined unidirectional components from the detection results along the time series.
  • the predetermined one direction is, for example, the vertical direction, but may be another direction.
  • the creation unit 1111 creates an encryption key using a predetermined one-way component detection result.
  • the creation unit 1111 can create the encryption key using the detection result of the predetermined one-way component as it is according to the predetermined algorithm.
  • the creating unit 1111 detects the number of vibrations in one direction determined in advance from the detection result of the component in one direction determined in advance, and creates an encryption key based on the number of vibrations. be able to.
  • the creation unit 1111 can create the encryption key using the simplified detection result.
  • step S101 the generation unit 1111 compares the data amount of the detection result of the dynamic motion added to the data transmission apparatus 100 with the reference value as exemplified below, and the data amount of the detection result is the reference
  • the detection result may be used to create the encryption key based on the comparison result indicating that the value is less than the value.
  • the creation unit 1111 compares the detection result along the time series with the reference value.
  • the reference value is appropriately set so that the data amount of the detection result does not become too large. The reason is that, as the amount of data of the detection result increases, the possibility that the encryption key generated by the data transmission apparatus 100 will not match the encryption key generated by the data reception apparatus 200 increases.
  • the creation unit 1111 creates an encryption key using the detection result based on the comparison result indicating that the data amount of the detection result is less than the reference value.
  • the creation unit 1111 discards the detection result based on the comparison result indicating that the data amount of the detection result is equal to or greater than the reference value.
  • the creation unit 1111 controls the output device 115 to output a message prompting the user to create the encryption key again.
  • the creation unit 1111 receives the detection result of the dynamic motion newly added to the data transmission apparatus 100 from the motion sensor 119.
  • the creating unit 1111 compares the data amount of the new detection result with the reference value, and processes the same as the above according to the comparison result.
  • the creation unit 1111 can create the encryption key using the detection result that the amount of data does not become too large.
  • FIG. 11 is a flowchart illustrating an example of the operation of the data receiving apparatus 200.
  • the data receiving apparatus 200 is used together with the data transmitting apparatus 100 in a state of being attached to or gripped by a specific part of the user.
  • the data receiving apparatus 200 adds the same mechanical movement as the mechanical movement applied to the data transmitting apparatus 100 according to the movement of the specific part of the user.
  • the data receiving apparatus 200 is held by the user's hand on which the data transmitting apparatus 100 is attached.
  • the mechanical motion applied to the data receiving apparatus 200 according to the motion of the user's hand is the same as the mechanical motion applied to the data transmitting apparatus 100.
  • the process sequence demonstrated below is only an example, and each process may be changed as much as possible.
  • the processing procedure described below depending on the embodiment, omission, substitution, and addition of steps can be made as appropriate.
  • the creating unit 2111 creates the encryption key based on the detection result of the dynamic motion added to the data receiving apparatus 200 (step S201).
  • the decryption processing unit 2112 receives, from the communication interface 213, the advertisement packet in which the encrypted measurement data is stored (step S202).
  • the decryption processing unit 2112 decrypts the encrypted measurement data stored in the advertisement packet using the encryption key generated by the data receiving apparatus 200 (step S203).
  • the data receiving apparatus 200 can use the decoded measurement data.
  • step S201 the creating unit 2111 creates the encryption key using the detection result on one direction determined in advance based on the mechanical movement applied to the data receiving apparatus 200 as illustrated below. You may
  • the creating unit 2111 extracts a detection result along a time series of predetermined unidirectional components from the detection results along the time series.
  • the predetermined one direction is, for example, the vertical direction, but may be another direction.
  • the creation unit 2111 creates an encryption key using a predetermined one-way component detection result.
  • the creation unit 2111 can create the encryption key using the detection result of the predetermined one-way component as it is according to the predetermined algorithm.
  • the creating unit 2111 detects the number of vibrations in one direction determined in advance from the detection result of the component in one direction determined in advance, and creates an encryption key based on the number of vibrations. be able to.
  • the creation unit 2111 can create the encryption key using the simplified detection result.
  • step S201 the generation unit 2111 compares the data amount of the detection result of the dynamic motion added to the data receiving apparatus 200 with the reference value as exemplified below, and the data amount of the detection result is a reference
  • the detection result may be used to create the encryption key based on the comparison result indicating that the value is less than the value.
  • the creation unit 2111 compares the detection result along the time series with a reference value.
  • the reference value is appropriately set so that the data amount of the detection result does not become too large. The reason is that as the amount of data of the detection result increases, the possibility that the encryption key generated by the data receiving apparatus 200 will not match the encryption key generated by the data transmitting apparatus 100 increases.
  • the creation unit 2111 creates an encryption key using the detection result based on the comparison result indicating that the data amount of the detection result is less than the reference value.
  • the creating unit 2111 discards the detection result based on the comparison result indicating that the data amount of the detection result is equal to or more than the reference value.
  • the creation unit 2111 controls the output device 215 to output a message prompting the user to create the encryption key again.
  • the creation unit 2111 receives from the motion sensor 217 the detection result of the dynamic motion newly added to the data receiving apparatus 200.
  • the creating unit 2111 compares the data amount of the new detection result with the reference value, and processes the same as the above according to the comparison result.
  • the creating unit 2111 can create the encryption key using the detection result that the amount of data does not become too large.
  • the data transmission system includes the data transmitting apparatus 100 and the data receiving apparatus 200 which are used in a state of being attached to or gripped by a specific part of the user.
  • the data transmission apparatus 100 creates an encryption key based on the detection result of the dynamic motion applied to the data transmission apparatus 100, encrypts transmission data using the encryption key, and advertises encrypted transmission data. Store in a packet and send an advertisement packet.
  • the data receiving apparatus 200 creates an encryption key based on the detection result of the dynamic motion applied to the data receiving apparatus 200, and uses the encryption key for the encrypted transmission data stored in the advertisement packet. To decrypt.
  • the data transmitting apparatus 100 can create the same encryption key as the encryption key generated by the data receiving apparatus 200 based on the detection result of the dynamic motion added to the data transmitting apparatus 100.
  • the data transmitting apparatus 100 can encrypt the transmission data using the same encryption key as the encryption key used to decrypt the transmission data by the data receiving apparatus 200.
  • the data receiving apparatus 200 can create the same encryption key as the encryption key generated by the data transmitting apparatus 100 based on the detection result of the dynamic motion added to the data receiving apparatus 200.
  • the data receiving apparatus 200 can decrypt the transmission data encrypted by the data transmitting apparatus 100. it can.
  • the data transmission apparatus 100 creates an encryption key using the detection result regarding one predetermined direction based on the dynamic motion added to the data transmission apparatus 100.
  • the data transmission apparatus 100 can create an encryption key using the detection result on one direction determined in advance.
  • the data transmitting apparatus 100 when the user holds the data transmitting apparatus 100 and the data receiving apparatus 200 and applies the same mechanical motion to them, the data transmitting apparatus 100 generates the code generated by the data transmitting apparatus 100. It is possible to reduce the possibility that the key will be different from the encryption key generated by the data receiving apparatus 200.
  • the data transmitting apparatus 100 compares the data amount of the detection result of the dynamic motion added to the data transmitting device 100 with the reference value, and the data amount of the detection result is less than the reference value.
  • the encryption key is created using the detection result based on the comparison result indicating.
  • the data transmitting apparatus 100 can create the encryption key based on the dynamic motion applied to the data transmitting apparatus 100 which is not complicated such that the amount of data is less than the reference value.
  • the data transmitting apparatus 100 generates the code generated by the data transmitting apparatus 100. It is possible to reduce the possibility that the key will be different from the encryption key generated by the data receiving apparatus 200.
  • the data transmitting apparatus 100 creates the encryption key based on the operation of instructing the creation of the encryption key by the user.
  • the data transmitting apparatus 100 can create an encryption key, triggered by an operation of instructing creation of an encryption key by the user. Therefore, the data transmitting apparatus 100 can prevent the creation of the encryption key at the timing when the user does not want to create the encryption key.
  • the data transmitting apparatus 100 when the user gives the data transmitting apparatus 100 and the data receiving apparatus 200 an operation of simultaneously instructing creation of an encryption key, the data transmitting apparatus 100 generates the encryption key generated by the data receiving apparatus 200. The same encryption key can be created. 0 can decrypt the measurement data encrypted by the data transmission apparatus 100.
  • the data receiving apparatus 200 creates an encryption key using the detection result regarding one predetermined direction based on the mechanical motion applied to the data receiving apparatus 200.
  • the data receiving apparatus 200 can create an encryption key using the detection result on one direction determined in advance.
  • the data receiving apparatus 200 when the user holds the data transmitting apparatus 100 and the data receiving apparatus 200 and applies the same dynamic motion to them, the data receiving apparatus 200 generates the code generated by the data receiving apparatus 200. It is possible to reduce the possibility that the key will be different from the encryption key generated by the data transmission device 100.
  • the data receiving apparatus 200 compares the data amount of the detection result of the dynamic motion added to the data receiving device 200 with the reference value, and the data amount of the detection result is less than the reference value.
  • the encryption key is created using the detection result based on the comparison result indicating.
  • the data receiving apparatus 200 can create the encryption key based on the dynamic motion applied to the data receiving apparatus 200 which is not complicated such that the amount of data is less than the reference value.
  • the data receiving apparatus 200 generates the code generated by the data receiving apparatus 200. It is possible to reduce the possibility that the key will be different from the encryption key generated by the data transmission device 100.
  • the data receiving apparatus 200 creates an encryption key based on an operation of instructing creation of an encryption key by the user.
  • the data receiving apparatus 200 can create an encryption key using an operation instructing the creation of an encryption key by the user as a trigger. Therefore, the data receiving apparatus 200 can prevent the creation of the encryption key at the timing when the user does not want to create the encryption key.
  • the data receiving apparatus 200 when the user simultaneously gives the data transmitting apparatus 100 and the data receiving apparatus 200 an operation of instructing creation of an encryption key, the data receiving apparatus 200 generates the encryption key generated by the data transmitting apparatus 100. The same encryption key can be created.
  • the encrypted data transmitted and received between the devices may be data other than the measurement data.
  • a data transmission device used in a state of being mounted or held on a specific part of a user together with a data reception device, A detection unit for detecting a mechanical movement applied to the data transmission device; Generating an encryption key based on the detection result of the dynamic motion added to the data transmission device; Encrypt transmission data using the encryption key, A processor configured to store the encrypted transmission data in a packet for one-way communication and transmit the packet; A memory storing instructions for operating the processor;
  • a data transmission apparatus comprising: (Supplementary Note 2) A data receiving apparatus used in a state of being mounted or held on a specific part of a user together with a data transmitting apparatus, A detection unit for detecting a mechanical movement applied to the data receiving apparatus; A packet reception processing unit that receives, from the data transmission apparatus, a packet for one-way communication in which encrypted transmission data is stored; Creating an

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

La présente invention peut améliorer la sécurité des données dans une communication unidirectionnelle. Un dispositif de transmission de données est utilisé tout en étant monté sur un site spécifique d'un utilisateur, ou enserré par celui-ci, conjointement avec un dispositif de réception de données, et comprend : une unité de détection pour détecter un mouvement mécanique appliqué au dispositif de transmission de données ; une unité de création pour créer une clé de chiffrement sur la base du résultat de détection du mouvement mécanique appliqué au dispositif de transmission de données ; une unité de traitement de chiffrement pour chiffrer les données de transmission à l'aide de la clé de chiffrement ; et une unité de traitement de transmission de paquets pour stocker les données de transmission chiffrées dans un paquet pour une communication unidirectionnelle et transmettre le paquet.
PCT/JP2018/028826 2017-08-09 2018-08-01 Système de transfert de données, et dispositif de transmission de données et dispositif de réception de données associé Ceased WO2019031343A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2017-154764 2017-08-09
JP2017154764A JP2019033454A (ja) 2017-08-09 2017-08-09 データ伝送システムとそのデータ送信装置及びデータ受信装置

Publications (1)

Publication Number Publication Date
WO2019031343A1 true WO2019031343A1 (fr) 2019-02-14

Family

ID=65270983

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2018/028826 Ceased WO2019031343A1 (fr) 2017-08-09 2018-08-01 Système de transfert de données, et dispositif de transmission de données et dispositif de réception de données associé

Country Status (2)

Country Link
JP (1) JP2019033454A (fr)
WO (1) WO2019031343A1 (fr)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2011130224A (ja) * 2009-12-18 2011-06-30 Lenovo Singapore Pte Ltd 通信端末装置における共有情報の作成方法
US20150117645A1 (en) * 2013-10-24 2015-04-30 Medtronic, Inc. Medical device communication using encryption based on correlated motion
US20160036965A1 (en) * 2014-07-31 2016-02-04 Samsung Electronics Co., Ltd. Mobile terminal and method of operating the same
US20160066212A1 (en) * 2014-08-31 2016-03-03 Ashoka Sathanur Visweswara System and method for broadcasting encoded beacon signals
JP2016519861A (ja) * 2013-03-08 2016-07-07 トムトム ソフトウェア リミテッドTomtom Software Limited デバイス間でセンサデータを通信する方法
JP2017067735A (ja) * 2015-10-02 2017-04-06 株式会社電通国際情報サービス 測位システム

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2011130224A (ja) * 2009-12-18 2011-06-30 Lenovo Singapore Pte Ltd 通信端末装置における共有情報の作成方法
JP2016519861A (ja) * 2013-03-08 2016-07-07 トムトム ソフトウェア リミテッドTomtom Software Limited デバイス間でセンサデータを通信する方法
US20150117645A1 (en) * 2013-10-24 2015-04-30 Medtronic, Inc. Medical device communication using encryption based on correlated motion
US20160036965A1 (en) * 2014-07-31 2016-02-04 Samsung Electronics Co., Ltd. Mobile terminal and method of operating the same
US20160066212A1 (en) * 2014-08-31 2016-03-03 Ashoka Sathanur Visweswara System and method for broadcasting encoded beacon signals
JP2017067735A (ja) * 2015-10-02 2017-04-06 株式会社電通国際情報サービス 測位システム

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
XU, W. ET AL.: "Walkie-Talkie: Motion-Assisted Automatic Key Generation for Secure On-Body Device Communication", 2016 15TH ACM/ IEEE INTERNATIONAL CONFERENCE ON INFORMATION PROCESSING IN SENSOR NETWORKS, April 2016 (2016-04-01), pages 1 - 12, XP032896122, DOI: doi:10.1109/IPSN.2016.7460726 *

Also Published As

Publication number Publication date
JP2019033454A (ja) 2019-02-28

Similar Documents

Publication Publication Date Title
US11171932B2 (en) Data transmitting apparatus, data receiving apparatus, method and program
US11223974B2 (en) Data transmission apparatus and data reception apparatus
JP6900272B2 (ja) データ送信装置
JP2019033450A (ja) 情報処理システム、データ送信装置、データ受信装置、情報処理方法及びプログラム
WO2019031334A1 (fr) Système de communication de données et dispositif de communication de données
WO2019031330A1 (fr) Dispositif de mesure, procédé de transmission et programme
WO2019031343A1 (fr) Système de transfert de données, et dispositif de transmission de données et dispositif de réception de données associé
WO2019031332A1 (fr) Dispositif de mesure, procédé d'émission et programme
US11271667B2 (en) Data receiving apparatus, data transmission apparatus and data transmission system
CN110999358B (zh) 信息处理装置、服务器以及数据传输系统
JP6967911B2 (ja) データ受信装置およびデータ送信装置
JP2019033449A (ja) データ送信装置、データ受信装置、方法及びプログラム
WO2019031342A1 (fr) Dispositif de gestion d'informations, procédé de réception, et programme
JP2022123667A (ja) 無線通信システム、無線通信方法、無線通信装置およびプログラム

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18844039

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 18844039

Country of ref document: EP

Kind code of ref document: A1