Authenticator, authenticatee and authentication method

The invention claimed is: 1. An authentication method between an authenticate and an authenticator, the authenticatee comprising a memory and first circuitry, and which stores in the memory a plurality of pieces of secret information XY and a plurality of pieces of secret information XY E , which are created by encrypting the plurality of pieces of secret information XY, and the authenticator comprising second circuitry, and which authenticates the authenticatee, the method comprising: executing, by the authenticator, a decryption process on the secret information XY E that is received from the authenticatee, and retrieving the secret information XY from the decrypted secret information XY E ; receiving, by the authenticatee, a random number B that is generated by the authenticator, and loading the secret information XY; generating, by the authenticatee, a random number A and data ν (ν having a probability η of occurrence of 1 (η<0.5)); generating, by the authenticatee, a first random number D that is composed of at least a part of the generated random number A and the received random number B; generating, by the authenticatee, first data C by executing a compression operation with respect to at least a part of the first random number D and the secret information XY; transmitting, by the authenticatee, a calculated result Z from the data v and the first data C, to the authenticator; generating, by the authenticator, a second random number D that is composed of at least a part of the generated random number A and the received random number B; generating, by the authenticator, second data C by executing a compression operation with respect to at least a part of the second random number D and the secret information XY; determining, by the authenticator, authenticity of the authenticatee by calculating a weighted value from the received calculated result Z and the generated second data C; and authenticating the authenticatee, by the authenticator, when the weighted value is less than a predetermined value. 2. The method of claim 1 , wherein the plurality of pieces of secret information XY E include an error correction code, and the authenticator executes an error correction process on the plurality of pieces of secret information XY E that are received from the authenticatee. 3. The method of claim 1 , wherein the plurality of pieces of secret information XY E are stored in a ROM area of the memory of the authenticatee, and the plurality of pieces of secret information XY are stored in a hidden area of the memory. 4. The method of claim 3 , wherein the authenticatee includes a controller that controls the memory and accesses the authenticator. 5. An authenticatee, comprising: a memory that stores a plurality of pieces of secret information XY and a plurality of pieces of secret information XY E , which are created by encrypting the plurality of pieces of secret information XY; a first random number generator that generates a random number A; a second random number generator that generates a random number D that is composed of at least a part of the generated random number A and a received random number B ; a first circuit that generates data C by executing a compression operation with respect to at least a part of the random number D and the secret information XY loaded from the memory; a data generator that generates data ν (νhaving a probability ηof occurrence of 1 (η<0.5)); and a second circuit that calculates a result Z from the data v and the data C, wherein the calculated result Z is used by an authenticator comprising a third circuit to determine the authenticity of the authenticatee by calculating a weighted value from the calculated result Z and the data C, and wherein the authenticatee is authenticated by the authenticator when the weighted value is less than a predetermined value. 6. The authenticatee of claim 5 , wherein the plurality of pieces of secret information XY E include an error correction code. 7. The authenticatee of claim 5 , wherein the plurality of pieces of secret information XY E are stored in a ROM area of the memory, and the plurality of pieces of secret information XY are stored in a hidden area of the memory. 8. The authenticatee of claim 5 , further comprising a controller that controls the memory and accesses the authenticator. 9. An authenticator that authenticates an authenticatee, the authenticatee comprising a memory and a first circuit, and which stores in the memory a plurality of pieces of secret information XY and a plurality of pieces of secret information XY E , which are created by encrypting the plurality of pieces of secret information XY, the authenticator comprising: second circuitry that executes a decryption process, with use of a key, on the plurality of pieces of encrypted secret information XY E , and retrieves the secret information XY from the decrypted secret information XY E ; a first random number generator that generates a random number B; a second random number generator that generates a random number D that is composed of at least a part of the generated random number B and a random number A that is received from the authenticatee; a first circuit that generates data C by executing a compression operation with respect to at least a part of the random number D and the secret information XY; and a third circuit that determines authenticity of the authenticatee by using the generated data C and a calculated result Z that is received from the authenticatee to calculate a weighted value from the generated data C and the calculated result Z, wherein the authenticator authenticates the authenticatee when the weighted value is less than a predetermined value. 10. The authenticator of claim 9 , wherein the plurality of pieces of secret information XY E include an error correction code, and further includes an additional circuit that executes an error correction process on the plurality of pieces of secret information XY E . 11. The authenticator of claim 9 , wherein the plurality of pieces of secret information XY E are stored in a ROM area of the memory of the authenticatee, and the plurality of pieces of secret information XY are stored in a hidden area of the memory. 12. The authenticator of claim 11 , wherein the authenticatee includes a controller that controls the memory and accesses the authenticator. 13. An authentication method between an authenticatee and an authenticator, the authenticatee comprising a memory and first circuitry, and which stores information XY in the memory, and the authenticator comprising second circuitry, and which authenticates the authenticatee, the method comprising: obtaining, by the authenticator, the information XY by executing a decryption process on encrypted information XY received from the authenticatee; generating, by the authenticator, a number D, which is composed of a number A that is generated by the authenticatee and a number B that is generated by the authenticator; generating, by the authenticator, data C by executing a compression operation with respect to the number D and the information XY; determining, by the authenticator, authenticity of the authenticatee by calculating a weighted value from the data C and a calculated result Z that is received from the authenticatee; and authenticating the authenticatee, by the authenticator, when the weighted value is less than a predetermined value.