JP2000259567A - Device and method for controlling access and storage medium - Google Patents

Abstract

PROBLEM TO BE SOLVED: To prevent the leak of secret information due to illegal access performed from a certain terminal to a file under system management in a computer system having plural terminals. SOLUTION: This computer system is provided with a first storage part 12 for storing a file, a second storage part 13 registering access managing tables 14-18 where a user ID, a password, a permitted time zone and a terminal ID are set as the managing information of access to the file and a file access control part 10 for discriminating the propriety of access on the basis of information contained in an access request and the user ID, the password, the permitted time zone and the terminal ID registered in the access managing tables 14-18 when there is the access request to the file and allowing a terminal to access the correspondent file when it is discriminated the access is proper.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

[0001] 1. Field of the Invention [0002] The present invention relates to an access control device, an access control method, and a storage medium used in a computer system having strict security requirements for managing highly confidential files and databases to be prevented from leaking to the outside.

[0002]

2. Description of the Related Art In a computer system in which a plurality of terminals are connected via a network, a technology for controlling access to a file or a database under system management has been introduced. In recent years, login information such as a user ID and a password has been illegally used. Unauthorized access to the confidential files used in the above may be performed, and measures must be strengthened.

[0003] Usually, the access right to a file under system management is managed by an operating system, and the change of this access right is possible only by the owner of the file and a privileged user. Therefore,
The owner of this file always has file access rights and can access the file at any time.

In such a situation, when a person other than the owner, for example, a malicious user illegally obtains the login ID and password of the owner of the file and accesses the file using the same, the file is accessed. Information contained therein, for example, confidential information, may be leaked.

[0005]

As described above, in the above-described conventional file access control method, the information used for the authentication processing for permitting access is determined by the user's login ID.
Since only D and the password are used, if the login ID and password are illegally acquired and used by anyone other than the person,
There was a problem that confidential information could be leaked.

The present invention has been made to solve such a problem, and an object of the present invention is to provide an access control device, an access control method, and a storage medium that can prevent leakage of confidential information.

[0007]

In order to achieve the above object, an access control apparatus according to the first aspect of the present invention comprises a first storage unit for storing a file or a database, and an access permission for the file or the database. When there is a request for access to a second storage unit in which accessor information, a password number, time information and terminal information are set as conditions and a file or a database stored in the first storage unit, Accessor information, password,
An authentication unit for authenticating using at least three pieces of information of time information and terminal information, and a control unit for granting access permission to the file or the database when the authentication unit has successfully authenticated.

According to a second aspect of the present invention, in the access control apparatus according to the first aspect, the authentication means is based on accessor information and a password set in the second storage means. User authentication means for determining whether the accessor is an accessible user,
A terminal authentication unit that determines whether a terminal operated by the accessor is a terminal accessible to the first storage unit, based on terminal information set in the second storage unit; A time authentication unit that determines whether the access time is within an accessible time zone based on the time information set in the second storage unit.

According to a third aspect of the present invention, in the access control apparatus according to any one of the first and second aspects, the access control apparatus receives an instruction from a first specific person having a higher setting authority than a general access user. A condition setting means for setting or changing an access permission condition of the second storage means.

According to a fourth aspect of the present invention, in the access control apparatus according to the third aspect, the condition setting means sets or changes an access permission condition of the second storage means. A first specific person having a request for setting change is applied, and the setting is made valid after approval of a second specific person having another approval right.

According to a fifth aspect of the present invention, in the access control apparatus according to the third aspect, the condition setting means sets a time zone in which access is permitted for each accessor as the time information. The authentication means is characterized in that it determines for each accessor whether or not the time zone where the access request is made is a time zone where access is permitted.

According to a sixth aspect of the present invention, in the access control device according to the third aspect, the condition setting means sets a time zone in which access is permitted for each file or each database as the time information. ,
The authentication unit is characterized in that it determines, for each file or each database, whether or not the time zone in which the access request is made is the time zone in which access is permitted.

According to a seventh aspect of the present invention, in the access control apparatus according to the third aspect, the condition setting means includes a terminal capable of accessing the file or the database and a time zone usable for each terminal. And the authentication means permits access when the terminal that has made the access request is a terminal that can be accessed and the terminal satisfies the two conditions of being in a usable time zone. .

According to an eighth aspect of the present invention, in the access control apparatus according to the third aspect, the condition setting means includes, as the accessor information, a time at which an authorized accessor goes to work and a time at which he leaves. And set the normal working hours of the authorized accessor,
The authentication means may be arranged such that the access requester is an authorized accessor, and the time period at which the access request is made is that the authorized accessor is out of the office, and the normal work time range It is characterized in that the access is permitted when the three conditions of being within are satisfied.

According to a ninth aspect of the present invention, there is provided an access control device comprising: first storage means for storing a file or a database; accessor information, a password, time information, terminal information, A second storage unit in which information of a room in which a terminal capable of accessing the file or the database is installed is set; an entry / exit information acquisition unit for acquiring information of a person entering and leaving the room; Detecting means for detecting, from the information of the person acquired by the person information acquiring means, whether or not the access person who issued the access request is occupied, and information stored in the first storage means; When there is an access request to a file or database that is stored, accessor information set in the second storage means Personal identification number, time information, terminal information,
An authentication unit for performing authentication using at least three pieces of room information and the presence status information of the accessor detected by the detection unit; and when the authentication unit has successfully authenticated, an access permission to the file or the database is given. And control means. An access control device according to a tenth aspect of the present invention is the access control device according to any one of the first to ninth aspects, wherein an access permission time zone is set for each of weekdays, Saturdays, Sundays, and holidays as the time information. Features.

An access control device according to an eleventh aspect of the present invention is the access control device according to any one of the first to ninth aspects, wherein an access permission time zone is set for each day as the time information.

According to a twelfth aspect of the invention, there is provided an access control method, comprising the steps of: setting accessor information, a password, time information, and terminal information as access permission conditions for a file or a database stored in a storage means; If there is an access request to a file or database stored in the server, authenticating using at least three pieces of information of the accessor information, personal identification number, time information and terminal information; and Granting access permission to the file or the database.

A storage medium according to a thirteenth aspect of the present invention is a computer readable storage medium storing a program for operating a computer storing a file or a database. When the access request to the file or the database is made, at least three of the accessor information, the password, the time information and the terminal information are set.
Authentication using the two pieces of information.
It is characterized in that access permission to the file or the database is given.

According to the first, twelfth and thirteenth aspects, time information and terminal information are set as access permission conditions for a file or a database stored in the first storage means, in addition to the accessor information and the password. When there is a request for access to a file or a database, authentication is performed using at least three pieces of information of accessor information, a password, time information and terminal information. Since access permission to the database is given, access to the file or the database from the terminal can be restricted, and leakage of confidential information can be prevented.

According to the second aspect of the present invention, in addition to the user authentication, the terminal authentication based on the terminal information and the time authentication based on the time information are performed, so that the access can be restricted at the terminal and the time zone level. Leakage of information can be prevented.

According to the third aspect of the present invention, an access permission condition of the second storage means is set or changed by an instruction from a first specific person having a higher setting authority than a general access person. It is possible to prevent the user from setting or changing the access permission condition by impersonating a general user.

According to the fourth aspect of the present invention, the first specific person having the setting authority applies for the setting change, and the setting is made valid after approval by the second specific person having the other approval authority. Even in the case of impersonating the first specific person, setting or changing of the access permission condition cannot be performed, and leakage of confidential information can be prevented.

According to the fifth aspect of the present invention, a time zone in which access is permitted is set for each accessor, and the authentication means determines whether or not the time zone requested for access is a time zone in which access is permitted. Since the judgment is made every time, the access permission condition can be set in more detail.

According to the present invention, a time zone in which access is permitted is set for each file or each database, and the authentication means determines whether the time zone requested for access is a time zone in which access is permitted. Is determined for each file or each database, so that the access permission condition can be set in more detail.

According to the present invention, a terminal which can access a file or a database and a time zone which can be used for each terminal are set, and the authentication means is a terminal which can access the terminal which has requested access. Since access is permitted when the two conditions that the terminal can be used are satisfied, access to the file or the database can be restricted from different angles.

[0026] In the invention according to claim 8, the time when the authorized accessor starts and leaves the office, and the normal working hours of the authorized accessor are set. Satisfies the three conditions that the authorized accessor is an authorized accessor, and the time slot requested for access is within the normal working hours and the authorized accessor is in the office. Allow access in case. In other words, access is not allowed unless a legitimate accessor is working during normal working hours, so even if an unknown terminal requests access at midnight or on holidays, it cannot access files or databases, Leakage of confidential information can be prevented.

According to the ninth aspect of the present invention, information of a person who enters and exits a room in which a terminal capable of accessing a file or a database is obtained, and from this information, an access person who has issued an access request is present. Is detected, and if there is a request for access to a file or a database stored in the first storage means, the accessor information and password set in the second storage means are detected. Authentication is performed using at least three pieces of information of the number, time information, terminal information, and room information and the presence status information of the detected accessor, and when the authentication is successfully performed, permission to access a file or a database is given. Therefore, if you are not in a room where a terminal that allows authorized access to files or databases is installed Lever can not access the file or database, it is possible to prevent the leakage of confidential information.

According to the tenth aspect of the present invention, more realistic access permission conditions can be set by setting the access permission time zone for each of weekdays, Saturdays, Sundays, and holidays.

According to the eleventh aspect of the present invention, by setting the access permission time zone for each day, the information obtained by the unauthorized user on the previous day cannot be used, and leakage of the confidential information can be prevented.

That is, according to the present invention, in managing access to storage means in a computer system, for example, a file or database stored in a hard disk or a medium (such as a CD-ROM), a user I
D. Information such as time zone and terminal is used together with a password, and the information is combined to restrict access to a file or a database.

Accordingly, when an access request from a user is for a confidential file, for example, and the access request is given an access permission, the user I
D. In addition to the password, access is restricted and managed based on time and terminal information, so that an unauthorized user issues an access request using the login ID and password of an authorized user illegally. Such an unauthorized access request can be rejected to prevent information leakage from a confidential file. This focuses on the fact that unauthorized access is often performed from a terminal whose location is unknown at midnight or on holidays.

It should be noted that the information of the access permission condition for judging whether access is permitted is basically all encrypted. However, encryption and decryption use a general technique, and the description thereof will be omitted. Omitted.

[0033]

Embodiments of the present invention will be described below in detail with reference to the drawings. FIG. 1 shows a first example of a computer system in which the file access control device of the present invention is used.
It is a figure showing an embodiment.

As shown in FIG. 1, the computer system according to the first embodiment has an attendance management system 1 and an entry / exit management system 3 for managing entry / exit of a person into / from the terminal installation room 2.
And a file access control device 4 that obtains information from the entry / exit management system 3 and the attendance management system 1 to perform an authentication operation when there is an access request to a file under its management, and controls file access. It is composed of Each system and device are connected by a network and can exchange information.

The attendance and attendance management system 1 manages the time at which an employee goes to the company and the time at which he / she leaves the company, and responds to an inquiry from the file access control device 4 whether or not the employee is working. The access request includes a terminal ID, a user ID, a password, a file name, and the like.

The terminal installation room 2 is provided with a card reader for reading the information of the IC card possessed by the employee, sends the obtained employee information to the entry / exit management system 3 and receives the employee authentication result from the entry / exit management system 3. An entry / exit detector 5;
As a result of employee authentication based on the information of the IC card acquired by the entry / exit detector 5, an access request is issued to the door 6 that automatically opens when permission is granted and the file access control device 4, and permission is granted. And an access terminal 7 that accesses a file managed by the file access control device 4 and obtains various information. Entry and exit detector 5
Is a component of the entry / exit management system 3.

The file access control device 4 comprises a file access control unit 10, a physical input / output unit 11, a first storage unit 12, a second storage unit 13, and the like. When there is a request to access a file stored in the first storage unit 12, the file access control unit 10 performs authentication in cooperation with other systems (the attendance management system 1 and the entry / exit management system 3). Perform the operation. Physical input / output unit 1
Reference numeral 1 denotes an I / O (interface) between the file access control unit 10 and the first storage unit 12.

Various files that can be used by in-house users are stored (stored) in the first storage unit 12. A database or the like may be stored in addition to the file. The second storage unit 13 stores (sets) a plurality of access management tables 14 to 18 as file access management information.

As shown in FIG. 2, the access management table 14 includes, as user authentication information, a user ID (accessor information), a name (accessor information), a password (personal identification number), and an authorized terminal ID (plurality). , Permitted time zone (s), and setting authority. This user authentication information exists for each user, that is, as table data for the number of users.

As shown in FIG. 3, in the access management table 15, a terminal ID, an installation room ID, a use permitted time zone, and the like are set as terminal information.

As shown in FIG. 4, the access management table 16 includes, as installation room information, an installation room ID and an installation terminal I.
D (plurality), room occupant ID (plurality) and the like are set. Note that the access management table 16 also has the entry / exit management system 3 and can return a response to the inquiry of the occupant.

As shown in FIG. 5, in the access management table 17, a plurality of file IDs (1), (2)...
(N) is linked to each file ID (1), (2)
.. (N), access authority (R, W, RW) and permitted time zone (plurality) are set. Note that R indicates read only, W indicates write only, and RW indicates both read and write are possible.

As shown in FIG. 6, the access management table 18 stores file IDs (1), (2)... For each of a plurality of files as file access management information.
(N), each file ID (1),
(2)... (N), access authority (R, W, RW) and permitted time zone (plurality) are set. Note that R indicates read only, W indicates write only, and RW indicates both read and write are possible.

Each of the access management tables 14 to
In some cases, the access permitted time zone information is not linked to the user 18. In such a case, the access permitted time zone is defined (set) as an attribute of the file or database when accessing. After the definition, the access management tables 14 to 18 are used for determining access permission.

Next, the operation of the computer system according to the first embodiment will be described with reference to FIGS. FIG. 7 is a flowchart showing the user authentication operation, and FIG. 8 is a flowchart showing the terminal / time authentication operation.

First, the user authentication operation of the computer system will be described. When a user enters the terminal installation room 2 and passes the IC card possessed by the user through the card reader of the entry / exit detector 5, the entry / exit detector 5 detects the user as an entry and the detection information is entered. The data is sent to the room exit management system 3, and the database (information on the occupants) of the room entrance / exit management system 3 is updated.

When a certain user accesses a desired file stored in the first storage unit 12 under the control of the file access control device 4 from a certain terminal installed in the office or another place, first, Activate the terminal and enter login information (user ID and password). Then, the terminal accesses the file access control device 4
The user ID and the password are sent in the input order.

The user ID is stored in the file access control device 4
, The file access control unit 10 of the file access control device 4 first stores the received user ID in the file access management information registered in advance in the second storage unit 13, that is, the user ID in the access management table 14. Check by collation (S101, S102).
Subsequently, upon receiving the password from the terminal, the file access control unit 10 checks and checks the file access management information registered in the second storage unit 13 in advance, that is, the password in the access management table 14 (S103). , S104).

Here, if both the user ID and the password are registered as file access management information in the access management table 14 (y in S104),
Subsequently, the file access control unit 10 checks the terminal information, that is, the access management table 15, to determine whether the terminal to which the login information is input is a permitted terminal, and determines whether the current time is a permitted terminal. Check if it is time zone.

As a result of the check, if the terminal to which the login information is input is a permitted terminal and the current time is within the permitted time period of the terminal, then
The file access control unit 10 inquires of the entry / exit management system 3 whether or not the person indicated by the user ID is present in the terminal installation room 2 where this terminal is installed (S105). As an occupancy check method other than the inquiry check, the file access control unit 10 acquires the current occupant information of the corresponding terminal installation room 2 from the entry / exit management system 3 and the access management table shown in FIG. 16 (installation room information).

Then, when a response (occupancy status information) that the user is occupied is returned from the entry / exit management system 3 (S).
In 105 y), the file access control unit 10 further inquires of the time and attendance management system 1 whether or not the person indicated by the user ID is working during a predetermined working time (S106). .

Then, when a reply is received that the person indicated by the user ID is working within a predetermined working time (y in S106), the file access control unit 10 sends a message to the user who has input the login information. On the other hand, login is permitted for the first time, and user authentication is OK (S107).

If at least one of the above conditions is not satisfied (n in S102, n in S104, n in S105, S
In 106) n), the file access control unit 10 does not permit the user who has input the login information to log in and sets the user authentication to NG (user is not authenticated) (S108), and the user is not authenticated and cannot log in.

Next, a terminal / time authentication operation of the computer system will be described. When a user who has been authenticated as a user inputs a file name (same as a file ID) of a file to be accessed from the terminal (S20).
1) The file access control unit 10 sets the access authority (R, W, RW) set for each file from the user access management information of the access management table 17 shown in FIG.
Then, the access permission time zone is extracted (S202), and it is checked whether or not the authenticated user and terminal give access permission to the file desired to be accessed. That is, file attributes (permitted terminal, permitted user ID, permitted time zone, etc.) are checked for each file.

The access terminal and the user ID are both permitted (S202, S204), the current time is within the access permitted time zone (S205), and the access type (read, write) is the access right. If the file access is permitted, this file access is permitted (S
206). If any one of the above conditions is not satisfied (n in S203, n in S204, n in S205), the file access control unit 10 does not permit (disable) file access (S207).

As a result, the file access control unit 10
When the user permits access to the logged-in user and the terminal, a file access instruction is issued from the permitted terminal, so that file input / output can be executed via the physical input / output unit 11.

As described above, according to the computer system of the first embodiment, the user ID, the password, the permitted time zone, and the terminal ID are set as the access management information for the file stored in the first storage unit 12. The access management tables 14 to 18 are registered in the second storage unit 13, and when a user logs in from a certain terminal in the company and tries to access a file in the first storage unit 12,
At the time of login, the file access control unit 10 sends the user I registered in the access management tables 14 to 18
User authentication based on D, password, permitted time zone, and terminal ID, and then, when a file is specified, the time zone and the terminal are authenticated, and any one of these authentication operations does not match , The leakage of confidential information due to unauthorized access from a certain terminal can be prevented.

That is, the user ID which is usually used,
Since the authentication operation is performed by setting information such as the permitted time zone and the terminal ID in addition to the password, unauthorized access other than the correct one cannot be performed.

Next, a second embodiment of a computer system using the file access control device of the present invention will be described with reference to FIGS. In addition, the first
The same components as those of the embodiment are denoted by the same reference numerals, and description thereof is omitted. As shown in FIG. 9, the file access control device 4a of the computer system according to the second embodiment includes an access control information setting unit 19 and a second storage unit 13
a. The access control information setting unit 19 is connected to an external setting terminal 20, for example, a terminal operated by an authorized person A having a higher authority than a normal user. Update the registered contents (file access control information).

The second storage unit 13a stores a plurality of access management tables 31 to 3 as file access management information.
5 are registered (set). Only the access control information setting unit 19 can add or change the information registered in the plurality of access management tables 31 to 35.

As shown in FIG. 10, the access management table 31 includes, as user authentication information, information such as a user ID, a name, a password, a permitted terminal ID (a plurality), a permitted time zone (a plurality), and setting authority. Is set. This user authentication information exists for each user, that is, as table data for the number of users. This access management table 31 is the access management table 1 shown in the first embodiment.
Same as 4.

As shown in FIG. 11, in the access management table 32, a user ID, a start year, an end year, a calendar start year pointer, and the like are set as calendar information. The calendar information exists corresponding to the user ID of the user authentication information. Therefore, not all users exist, and some users do not have calendar information. The user ID corresponds to the user ID of the user authentication information. The start year and the end year are information for grasping the number of registered user calendars. The number of days in each year can be calculated based on the start year and the end year. The start year pointer is a pointer for taking out the user calendar.

As shown in FIG. 12, in the access management table 33, weekdays, Saturdays, Sundays, public holidays, and the like are identified as user calendars (starting years) for each date (eg, 1st, 2nd, 31st, etc.). And weekday, holiday, and holiday identification information, and information on a user accessible time zone associated with each of the weekday, holiday, and holiday identification information.

This user calendar exists for each user having calendar information. The user calendar contains
There is information on the period from the calendar start year to the end year in the calendar information. Thereby, the daily accessible time of each user can be specified. It is irrelevant to the referenced file.

As shown in FIG. 13, in the access management table 34, a plurality of file IDs (1), (2)...
An end code is linked to each file ID (1),
(2)... A file access time zone is set in the end code. Each file ID (1), (2) ...
A file calendar (start year) table 35 is linked to each end year calendar pointer.

The file calendar management information exists independently. That is, there is no information existing at a higher rank. Here, information for extracting the file calendar of the file ID existing in the file is set. Since the file has an increase or decrease, there is an end code indicating the final position. File calendar (start year) table 35
Exists for each file ID of the file calendar management information. The file calendar (start year) is indicated by the calendar pointer of the file ID (n) of the file calendar management information. Since the number of registrations can be calculated from the start year and end year of the file calendar management information,
No end code is required at the end. The start year and the end year are information for managing as a whole, not for each file. In other words, the start year and the end year are not set for each file, but are managed for the entire system. Thereby, the daily accessible time of each file can be specified.

By setting each of the tables 31 to 35, the daily accessible time for each user and each file can be determined. Therefore, access is permitted only when these access permission conditions are satisfied. In this case, it is possible to prevent information leakage from unauthorized access.

That is, in the second embodiment, a function of setting a time zone based on a calendar and a function of setting or changing an access condition are added to the computer system of the first embodiment.

In the case of the second embodiment, by setting the calendar, the time period during which the user is permitted to access is
It can be set on a daily basis. Also, as shown in FIG.
Since the access management table 34 (calendar information) is provided, it is possible to set the file-permitted access time zone on a daily basis as a file attribute. This calendar information is reflected in the user access permitted time zone.

Here, user authentication information related to setting and changing of calendar information will be described.

There is a setting authority in the access management table 31, and in the setting authority column, a setting change inputter (first specific person) i who sets or changes the access management information and a person who approves (second specific person) Person) a is set. According to the information on the setting authority, the setting change input person (first specific person) i of the access management information including the access management table 32 (calendar information) and the person who approves (second specific person) a
Is determined. For the setting authority, any one of the fields of none, setting input, and approval is set, and one user ID is set in each of the setting input and approval fields. The same user ID cannot be set in the setting input and approval fields.

Next, the operation of the computer system according to the second embodiment will be described. In the case of this computer system, the time zone is set on the access control information setting screen of the setting terminal 20. If a person having the setting authority inputs and sets the permitted time zone for each day using calendar information, and inputs and sets the permitted time zone for the day at 0:00 using the access management table 32 (calendar information), the access control information setting is performed. The unit 19 copies the calendar information to create temporary calendar information, changes the setting, applies for permission to change the temporary calendar information, and is approved by the approver (second specific person). In this case, the original access management table 32 (calendar information) is copied and replaced with the changed contents. As a result, it is possible to set the access permission time zone on a daily basis.

As described above, according to the computer system of the second embodiment, in addition to the functions of the first embodiment, the access management table 32 (calendar information) is set, and the date is set for each user or file. By providing a function of setting a unit access permitted time zone, opportunities for unauthorized access can be reduced and confidential leakage can be prevented. The information to be set in the setting authority column of the access management table 31 is such that the input person (first specific person) i and the approver (second specific person) a are different from each other, This makes it impossible to rewrite the registered contents, which has the effect of suppressing fraud.

As a result, unauthorized access of a secret file from a certain terminal can be suppressed.

The present invention is not limited to only the above embodiments. For example, the tables shown in the first and second embodiments may be used in combination. Also, in order to make the user ID unique to the same user,
The user ID and the password may be registered by adding physical characteristics of the individual such as a fingerprint, an iris, and a voiceprint, for example. This unification makes it possible to systematically prevent the same person from having both the authority to input and set the access management information and the authority to approve it.

Further, the file access control section 10 described in the above embodiment can be realized as software. In this case, the software may be stored in a computer-readable storage medium such as a floppy disk. In this case, the computer reads out the software (program) stored in the storage medium, thereby executing the processing in each embodiment. Becomes possible.

The storage medium in the present invention includes:
Magnetic disk, floppy disk, hard disk,
Optical disks (CD-ROM, CD-R, DVD, etc.),
Any storage medium, such as a magneto-optical disk (MO or the like) or a semiconductor memory, which can store a program and can be read by a computer, may have any storage format.

Also, an OS (Operating System) running on the computer based on instructions of a program installed in the computer from the storage medium.
Alternatively, MW (middleware) such as database management software and network software may execute a part of each process for realizing the present embodiment.

Further, the storage medium in the present invention is not limited to a medium independent of a computer, but also includes a storage medium in which a program transmitted via a LAN or the Internet is downloaded and stored or temporarily stored.

Further, the number of storage media is not limited to one, and the case where the processing in this embodiment is executed from a plurality of media is also included in the recording medium of the present invention, and any media configuration may be used.

The computer according to the present invention executes each processing in the present embodiment based on a program stored in a storage medium. An apparatus such as a personal computer and a plurality of apparatuses are connected to a network. Any configuration such as a system performed may be used.

The computer in the present invention is
It is not limited to a personal computer, but also includes an arithmetic processing unit, a microcomputer, and the like included in an information processing device, and collectively refers to devices and devices that can realize the functions of the present invention by a program.

[0083]

As described above, according to the present invention, in addition to a user ID and a password, time information and terminal information are used in response to an access request to the contents of a file or database, especially confidential information. Since the management is performed with restrictions, even if the login ID and the password of the access permitted person are acquired and used by an unauthorized user, access is not permitted by itself.

As a result, leakage of confidential information due to unauthorized access from a certain terminal to a file or database under system management can be prevented.

[Brief description of the drawings]

FIG. 1 is a diagram showing a configuration of a computer system according to a first embodiment of the present invention.

FIG. 2 is a view showing an access management table (user authentication information) in the computer system.

FIG. 3 is a diagram showing an access management table (terminal information) in this computer system.

FIG. 4 is a diagram showing an access management table (installation room information) in the computer system.

FIG. 5 is a diagram showing an access management table (user access management information) in the computer system.

FIG. 6 is a view showing an access management table (file access management information) in the computer system.

FIG. 7 is a flowchart showing a user authentication operation in this computer system.

FIG. 8 is a flowchart showing a terminal / time authentication operation in the computer system.

FIG. 9 is a diagram illustrating a configuration of a computer system according to a second embodiment of this invention.

FIG. 10 is a view showing an access management table (user authentication information) in the computer system.

FIG. 11 is a diagram showing an access management table (calendar information) in this computer system.

FIG. 12 is a diagram showing an access management table (user calendar) (start year) in this computer system.

FIG. 13 is a diagram showing an access management table (file calendar management information) in the computer system.

[Explanation of symbols]

1. Attendance management system, 2. Terminal installation room, 3. Entry / exit management system, 4, 4a. File access control device,
5 Entry / exit detector, 6 Door, 7 Access terminal, 8…
9 ... 10 ... file access control unit, 11 ... physical input / output unit, 12 ... first storage unit, 13, 13a ... second storage unit, 14-18, 31-35 ... access management table.

Claims (13)

[Claims] A first storage unit for storing a file or a database; a second storage unit in which accessor information, a password, time information, and terminal information are set as access permission conditions for the file or the database; When there is an access request to a file or database stored in the first storage means, at least three pieces of information of accessor information, a password, time information, and terminal information set in the second storage means An access control apparatus, comprising: an authentication unit that performs authentication by using the authentication unit; and a control unit that gives an access permission to the file or the database when the authentication unit has successfully authenticated. 2. The access control device according to claim 1, wherein the authentication means determines whether or not the accessor is a user who can access, based on accessor information and a password set in the second storage means. User authentication means for determining whether or not the terminal operated by the accessor is a terminal capable of accessing the first storage means based on the terminal information set in the second storage means Terminal authentication means for determining whether or not the access time is an accessible time zone based on time information set in the second storage means. Access control device. 3. The access control device according to claim 1, wherein an access from said second storage unit is permitted by an instruction from a first specific person having a higher setting authority than a general access person. An access control device comprising condition setting means for setting or changing conditions. 4. The access control device according to claim 3, wherein the condition setting unit sets or changes an access permission condition of the second storage unit, and the first specific person having setting authority changes the setting. An access control device, wherein the application is made effective after approval of a second specific person who has another approval authority. 5. The access control device according to claim 3, wherein the condition setting unit sets a time zone in which access is permitted for each accessor as the time information, and the authentication unit determines a time when the access request is issued. An access control device for determining, for each accessor, whether or not the band is a time period in which access is permitted. 6. The access control device according to claim 3, wherein the condition setting means sets a time zone in which access is permitted for each file or each database as the time information, and wherein the authentication means receives an access request. An access control device for determining, for each file or each database, whether or not the set time zone is a time zone in which access is permitted. 7. The access control device according to claim 3, wherein the condition setting unit sets a terminal that can access the file or the database and a time zone that can be used for each terminal. An access control device, wherein access is permitted when a terminal that has made an access request is an accessible terminal and the terminal satisfies two conditions that the terminal is available for use. 8. The access control apparatus according to claim 3, wherein the condition setting means includes, as the accessor information, a time at which the authorized accessor has left and left the office, and a normal time of the authorized accessor. The authentication means, the access requester is an authorized accessor, and the time of the access request is the authorized accessor is coming to work, An access control device, wherein access is permitted when three conditions are satisfied within the normal working hours. 9. A first storage means for storing a file or a database, and access terminal information, a personal identification number, time information, terminal information, and a terminal capable of accessing the file or the database as access permission conditions for the file or the database. A second storage unit in which information of the installed room is set; an entry / exit information acquisition unit that acquires information of a person entering and leaving the room; From the information, there is a detecting means for detecting occupancy status information as to whether or not the accessor who issued the access request is occupied, and an access request to a file or database stored in the first storage means. In the case, the accessor information, personal identification number, time information, terminal information, room information set in the second storage means Means for authenticating using at least three pieces of information of the information and the occupant status information of the accessor detected by the detecting means; and control for giving access permission to the file or database when the authenticating means has successfully authenticated. And an access control device. 10. The access control device according to claim 1, wherein an access permitted time zone is set for each of weekdays, Saturdays, Sundays, and holidays as the time information. 11. The access control device according to claim 1, wherein an access permitted time zone is set for each day as the time information. 12. A step of setting accessor information, a personal identification number, time information and terminal information as access permission conditions for a file or a database stored in a storage means, and for accessing a file or a database stored in the storage means. A step of performing authentication using at least three pieces of information of the accessor information, the password, the time information, and the terminal information when requested; and a step of granting access permission to the file or the database if the authentication is successful. An access control method comprising: 13. A computer-readable storage medium storing a program for operating a computer storing a file or a database, wherein the computer stores, as access permission conditions for the file or the database, accessor information, a password, and a time. Information and terminal information are set, and when there is an access request to the file or the database, authentication is performed using at least three pieces of information of the accessor information, password, time information, and terminal information. A storage medium for giving access permission to the file or the database.