JP2007115025A - Image forming method, image forming apparatus, program and recording medium - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an image forming method, capable of eliminating the need of an inquiry to a sender and performing the deciphering processing of mail, an image forming apparatus, a program and a recording medium. <P>SOLUTION: The image forming apparatus is provided with a document control means for determining whether received electronic mail is ciphered and for keeping the electronic mail, when the electronic mail has been ciphered and an authentication means for determining whether it is a user who has the right of use. The document control means deciphers the electronic mail, corresponding to an authentication results. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to an image forming method, an image forming apparatus, a program, and a recording medium that are applied to a printer, a scanner, a facsimile machine, and a multi-function device having these functions, particularly an apparatus capable of receiving electronic mail.

  In recent years, “multifunction devices” that have realized functions as a printer, a scanner, and a facsimile machine with a single device have come to the market. Such a multifunction device includes hardware such as an imaging unit, a printing unit, and a communication unit, and also includes a plurality of types of software corresponding to a printer, a scanner, a facsimile, and the like. And function as a facsimile.

  In such a multi-function peripheral, the received electronic mail and the image data attached to the electronic mail are also printed on the printing apparatus. For example, the apparatus itself has a mail server function, and prints after receiving an e-mail (see, for example, Patent Document 1).

  Further, regarding such a multifunction device, for example, a printer device that has a function as a POP client and receives and prints mail on a mail server is disclosed (for example, see Patent Document 2).

  In addition, the image data transmitted by e-mail is transferred to the image forming apparatus management apparatus on the receiving side after being encrypted, and for the sake of security, the permission to decrypt the image data is permitted. An image data transfer device is disclosed that performs decoding on the receiving side when it is obtained from (see, for example, Patent Document 3).

This image data transfer device has a POP client function, and the device self-confidence is decoded and printed out. In addition, the received mail data is not held in the HDD.
JP-A-8-305518 JP-A-11-353262 JP 2005-84893 A

  However, the background art described above has the following problems.

  In the above-described apparatus, when an electronic mail is received, an inquiry about permission for decryption is made to the sender. However, in this case, there is a problem that printing cannot be performed unless permission is obtained from a situation where communication with the sender is impossible.

  In addition, when it is desired to decrypt and print the received data at a later date, it is necessary to communicate with the transmission partner in order to inquire about the decryption permission, and immediate printing is difficult.

  Although it is possible to perform decryption on the device side without making an inquiry, the secret key used for decryption is the one previously held in the device. In this case, the e-mails that can be decrypted are limited to those encrypted using the public key corresponding to the private key held in the device, and the public key corresponding to the private key not held in the device. An e-mail encrypted with a key cannot be decrypted.

  Also, the authentication process is not mentioned, and anyone who can access the device can print, which is insufficient for security.

  Accordingly, an object of the present invention is made to solve at least one of the above-described problems, an image forming method capable of performing an email decryption process without requiring an inquiry to a sender, An object is to provide an image forming apparatus, a program, and a recording medium.

  In order to solve the above-described problem, an image forming method of the present invention includes a receiving step of receiving an e-mail and an encryption determination for determining whether or not the e-mail is encrypted in the image forming method in the image forming apparatus. A step of storing the e-mail when the e-mail is encrypted, an authentication step of determining whether or not the user has authority to use, and depending on an authentication result, And a decrypting step for decrypting the e-mail.

  By doing so, it is possible to ensure the security of accumulated data in the main body (image forming apparatus).

  Further, the image forming apparatus according to the present invention determines whether or not the received e-mail is encrypted, and when the e-mail is encrypted, document control means for storing the e-mail; One of the features is that the document control unit decrypts the e-mail according to the authentication result. The authentication unit determines whether or not the user has authority to use.

  With this configuration, it is possible to ensure the security of accumulated data in the main body (image forming apparatus).

  The program of the present invention is a program for causing a computer to execute the above-described image forming method.

  The recording medium of the present invention is a computer-readable recording medium that records the above-described program.

  According to the embodiments of the present invention, it is possible to realize an image forming method, an image forming apparatus, a program, and a recording medium that do not require an inquiry to a sender and can perform a mail decryption process.

Next, the best mode for carrying out the present invention will be described based on the following embodiments with reference to the drawings.
In all the drawings for explaining the embodiments, the same reference numerals are used for those having the same function, and repeated explanation is omitted.

  A configuration of a system to which an image forming apparatus according to an embodiment of the present invention is applied will be described with reference to FIGS. 1A and 1B.

As shown in FIG. 1A, the system includes at least a part of the functions of a copier 10, a printer 12, a mail server 14, a scanner 16, PCs 18 ₁ and 18 ₂ , a facsimile 20, and those functions. A multi function printer (MFP) 22.

The copier 10, the printer 12, the scanner 16, the facsimile machine 20, and the multifunction machine 22 are provided with user databases (user DBs) 24 ₁ , 24 ₂ , 24 ₃ , 24 ₄ and 24 ₅ , respectively. The user DBs 24 ₁ , 24 ₂ , 24 ₃ , 24 ₄ and 24 ₅ each store a user account for specifying a user.

Further, the copier 10, the printer 12, the mail server 14, the scanner 16, the PCs 18 ₁ and 18 ₂ , the facsimile machine 20, and the multifunction machine 22 are connected by a LAN 50, respectively.

  Further, a system to which the image forming apparatus is applied may be configured as shown in FIG. 1B. In other words, the server 26 connected to the LAN 50 and the user DB 24 connected to the server 26 are provided. With this configuration, it is not necessary to provide the user DB in the copier 10, printer 12, scanner 16, facsimile 20, and multifunction device 22. In addition, since the user DB can be collectively managed, maintenance is easy.

  Next, the image forming apparatus 100 according to the present embodiment will be described with reference to FIG.

  The image forming apparatus 100 according to the present embodiment includes at least one of a copier 10 that can be connected to a network, a printer 12, a scanner 16, a facsimile 20, and a multifunction machine 22 that includes at least some of these functions. It has a function.

  In this embodiment, a case where the image forming apparatus 100 has the functions of the facsimile machine 20 and the multifunction machine 22 will be described. When the image forming apparatus 100 has the functions of the copier 10, the printer 12, and the scanner 16, the image forming apparatus 100 is a subset when configured to have the function of the multifunction device 22.

  A hardware configuration of the image forming apparatus 100 will be described.

  The image forming apparatus 100 includes a CPU 102, a ROM 104, a RAM 106, an image storage memory 108, a storage device 110, a LAN controller 112, a transformer 114 connected to the LAN controller 112, and an image information compression / reproduction unit (DCR). 116, a scanner 118, a plotter 120, and an operation panel unit (operation port) 122. The CPU 102, ROM 104, RAM 106, image storage memory 108, storage device 110, LAN controller 112, image information compression / playback unit 116, scanner 118, plotter 120, and operation panel unit 122 are connected by a bus 150.

  Here, the operation panel unit 122 includes an IC card reader for reading an IC card, and a device I / F such as USB or IEEE 1394 for reading data such as a secret key from an external authentication device.

  As described above, the image forming apparatus 100 according to the present embodiment includes the CPU 102, the ROM 104, the RAM 106, and the large-capacity storage device 110 such as a hard disk device, and further includes an auxiliary storage device such as a flexible disk device. Prepare.

  A program for causing a computer to function as an image forming apparatus is provided in a state of being recorded on a recording medium such as a flexible disk, a CD-ROM, or a memory card. When this recording medium is inserted into an auxiliary storage device of a computer, a program recorded on the medium is read. Then, the CPU 102 writes the read program into the RAM 106 or the storage device 110, and executes processing according to this program.

  In this case, the program causes the computer to receive the e-mail, to determine whether the e-mail is encrypted, and to determine whether the e-mail is encrypted. A storage step for storing mail, an authentication step for determining whether or not the user has an authority that can be used, and a decryption step for decrypting the electronic mail according to the authentication result are executed.

  Further, the program may cause the computer to determine whether or not each user has an authority to decrypt the e-mail in the authentication step.

  Further, the program causes the computer to execute decryption of the e-mail with the private key corresponding to the user when it is determined in the decryption step that the user has an authority that can be used. Also good.

  Further, the program may cause the computer to execute determination in the authentication step based on the user name and password transmitted by the external authentication device as to whether or not the user has an authority that can be used. .

  Further, the program causes the computer to execute sending an e-mail to the external authentication device and receiving the e-mail decrypted by the external authentication device according to the authentication result in the decryption step. Also good.

  Further, the program may cause the computer to fetch a private key used for decryption from the external authentication device in the decryption step.

  Further, the program may cause the computer to execute an authentication process using a document password when the encrypted e-mail includes an encrypted PDF document in the authentication step. .

  Further, the program may cause the computer to execute a notification step of notifying that the e-mail is stored by at least one of e-mail, display on the user interface, and printout of the received report.

  Next, the functional configuration of the image forming apparatus according to the present embodiment will be described with reference to FIG.

  The image forming apparatus 100 includes a main control unit 124, a user account management unit 126 connected to the main control unit 124, a copier control unit 128, an authentication unit 130, a scanner control unit 132, a network I / F 134, and a facsimile control unit 136. , A document control unit 138, a stored document management unit 140, and a user DB 24 connected to the user account management unit 126.

  The user DB 24 is configured by a nonvolatile storage device, and includes user account information for identifying an individual, various attributes such as an email address assigned to each user account, group information to which a user belongs, an individual and a group private key. Remembered.

  The user account management unit 126 stores user account information for identifying an individual stored in the user DB 24, various attributes such as an email address assigned to each user account, group information to which the user belongs, an individual and a group private key. to manage.

  When the copier function is provided, the copier control unit 128 inputs an instruction to control, for example, an instruction indicating that printing is performed, to the copier. As a result, the image is printed on the printing paper in the copying machine.

  For example, the authentication unit 130 performs authentication processing of the device administrator password input from the main body panel, and determines whether or not the user has authority to use.

  When the scanner control unit 132 has a scanner function, the scanner control unit 132 inputs a command to control, for example, a command to transmit an image to another apparatus via the LAN 50. As a result, the image is transmitted to another apparatus in the scanner.

  The network I / F is an I / F that exchanges information with other devices, for example, receives an email having a print job from a client.

  When the facsimile control unit 136 has a facsimile function, the facsimile control unit 136 inputs a command to control the facsimile, for example, a command to transmit an image to another apparatus via the LAN 50. As a result, the image is transmitted to another apparatus in the facsimile.

  The document control unit 138 determines whether the received electronic mail is encrypted. For example, the document control unit 138 refers to the header of the electronic mail and determines whether or not it is encrypted. In addition, when the electronic mail is encrypted, the document control unit 138 stores it in the stored document management unit 140 as it is encrypted. Further, the document control unit 138 decrypts the encrypted electronic mail and prints it.

  The stored document management unit 140 stores encrypted email data.

  Next, the operation of the image forming apparatus 100 as an image forming method according to the present embodiment will be described with reference to FIG.

  An email having a print job is received from the client via the network I / F 134 (step S402).

  The document control unit 138 refers to the mail header of the received e-mail and determines whether it is encrypted (step S404).

  If encrypted (step S404: YES), the document control unit 138 stores the received e-mail in the stored document management unit 140 in an encrypted state (step S406). On the other hand, if it is not encrypted (step S404: NO), the process proceeds to step S418 described later.

  Next, the authentication unit 130 performs authentication processing of the device administrator password input from the main body panel, for example (step S408). The authentication unit 130 performs user authentication by determining whether or not the user who has input the apparatus administrator password is a usable user of the image forming apparatus, that is, whether or not the user has authority to use (step S410). ). Here, an authentication process may be performed using an external authentication device such as an IC card. In this case, the authentication unit 130 determines whether or not the user has authority to use based on the user name and password transmitted by the external authentication device. By doing so, operations related to authentication processing can be simplified, such as saving the trouble of inputting a password.

  As a result of the authentication process, when the user who has input the apparatus administrator password is not identified as an available user of the image forming apparatus, that is, when it is determined that the user has no authority to use (step S410: NO), step The process returns to S408. On the other hand, when the user who has input the apparatus administrator password is identified as a usable user of the image forming apparatus, that is, when it is determined that the user has the authority to use (YES in step S410), the user account control unit 126. Searches for the secret key held in the apparatus body (step S412). That is, it is determined for each user whether the electronic mail can be decrypted.

  The user account control unit 126 refers to the user DB 24 and searches for a secret key held in the apparatus main body (step S414).

  If there is no secret key held in the main body (step S414: NO), the process returns to step S408. On the other hand, if there is a private key held in the main body (step S414: YES), the document control unit 138 takes out the encrypted electronic mail stored in the stored document management unit 140 and uses the private key. Decryption is performed (step S416). That is, when it is determined that the user has the authority to use, the e-mail is decrypted with the secret key corresponding to the user.

  Next, the document control unit 138 develops the decrypted electronic mail (print data) as a print image (step S418). For example, the document control unit 138 develops the decrypted print data in the image storage memory 108 as a print image.

  Next, the document control unit 138 prints out the developed print data (step S420). For example, the document control unit 138 inputs a command to print out the print data expanded in the image storage memory 108 to at least one of the copier control unit 128, the scanner control unit 132, and the facsimile control unit 136. As a result, the image is printed on the printing paper in the copying machine, and the image is transmitted to the other device in the scanner and the facsimile, and is printed out in the other device.

  After the printing is completed, the document control unit 138 deletes the print image developed in the image storage memory 108 (step S422). Here, the data (e-mail) stored in the accumulated document management unit 140 may also be deleted.

  In the operation of the image forming apparatus 100 described above, the authentication determination process in steps S408 and S410 and the secret key search process in steps S412 and S414 may be performed as follows.

  In step S408, the authentication unit 130 performs authentication determination based on the user name and password input from the authentication screen on the main body panel. In this case, as shown in FIG. 5, the authentication screen displays a user name, a password, a document password, and a key acquisition column for inputting a password when a private key is acquired from an external authentication device.

  As a result of the authentication determination in step S408, if the user who entered the password is not identified as a user who can use the image forming apparatus (step S410: NO), the process returns to step S408. On the other hand, if the user who entered the password is identified as a user who can use the image forming apparatus (step S410: YES), the user account control unit 126 displays the received e-mail and the attached image. It is determined whether or not the user can print a file (hereinafter referred to as mail TO print), and if the user is capable of mail TO print, the secret key held in the apparatus body is searched. (Step S412). For example, the user account control unit 126 refers to the user DB 24 and determines whether or not the user is a user capable of mail TO printing based on various attributes assigned to each user account. A secret key held in the apparatus body is searched according to the result (step S414).

  The secret key searched here uses a secret key held in the image forming apparatus 100 instead of a secret key for each user. For example, a secret key corresponding to the group to which the authenticated user belongs is used. That is, the account used for the authentication process and the owner of the secret key do not need to match. As described above, by using one group account for a plurality of users, it is possible to limit users who can perform mail TO printing.

  As a result of the secret key search in step S414, if the secret key corresponding to the group to which the authenticated user belongs is held (step S414: YES), the secret key is used to encrypt the encrypted email. Data is decrypted (step S416). On the other hand, if the secret key is not found, the process returns to step S408.

  In the operation of the image forming apparatus 100 described above, the authentication determination process in steps S408 and S410 and the secret key search process in steps S412 and S414 may be performed as follows.

  In step S408, the authentication unit 130 performs user authentication.

  As a result of the authentication process, when the user who has input the apparatus administrator password is not identified as a usable user of the image forming apparatus (step S410: NO), the process returns to step S408. On the other hand, when the user who has input the apparatus administrator password is identified as an available user of the image forming apparatus (step S410: YES), the user account control unit 126 refers to the user DB 24 and the user is the user. It is determined whether or not the user has been registered. If the user has been registered, a secret key for the corresponding user is searched (step S412).

  For example, the user account control unit 126 refers to the authentication table held in the user DB 24, and determines whether or not the main key is held in the main body (step S414). Here, as shown in FIG. 6, the authentication table stores a user identification number, a user name, a password, an e-mail address, information indicating the presence / absence of a secret key, and information indicating whether or not mail TO print is possible. For example, as the information indicating the presence or absence of a secret key, “1” is described when there is a secret key, and “0” when there is no secret key. In addition, “1” is described for a user who can perform mail TO print, and “0” is described for a user who cannot. The user account control unit 126 searches for a secret key registered for each user.

  If there is no secret key for the user (step S414: NO), the process returns to step S408. On the other hand, if there is a secret key for the user (step S414: YES), the document control unit 138 takes out the encrypted electronic mail stored in the stored document management unit 140, uses the private key, and decrypts it. (Step S416).

  By doing so, only the addressee of the received electronic mail can be decrypted, and security can be improved.

  Further, in the operation of the image forming apparatus 100 described above, the authentication determination process in step S408 and step S410 may be performed as follows.

  In the authentication processing in step S408, the IC card reader provided in the image forming apparatus 100 is held over the IC card as the external authentication device, and the user name and password are read. By doing so, operations related to authentication processing can be simplified, such as saving the trouble of inputting a password.

  Next, another operation of the image forming apparatus 100 according to the present embodiment will be described with reference to FIG.

  An electronic mail having a print job is received from the client via the network I / F 134 (step S702).

  The document control unit 138 refers to the mail header of the received e-mail and determines whether or not it is encrypted (step S704).

  If it is encrypted, the document control unit 138 determines whether there is an encrypted PDF format document. If there is an encrypted PDF format document (step S704: YES), document control is performed. The unit 138 stores the received email in the stored document management unit 140 in an encrypted state (step S706). On the other hand, if there is no encrypted PDF document (step S704: NO), the process proceeds to step S714 to be described later. For example, the document control unit 138 determines whether or not the document is an encrypted PDF document depending on whether or not an Encrypt entry is included in the trailer portion of the PDF document.

  Next, the authentication unit 130 performs user authentication by determining whether or not the user is a usable user of the image forming apparatus. Also, the authentication unit 130 performs authentication determination based on the document password of the encrypted PDF document input from the main body panel (step S708). Here, in order to improve security, an account input by a user name and a password may be performed. That is, when the encrypted electronic mail includes an encrypted PDF document, authentication processing is performed using the document password.

  If the e-mail is encrypted with S / MIME or the like, the e-mail is decrypted with the secret key, and then decrypted with the document password of the input PDF document.

  If the input password does not match the document password as a result of the authentication process (step S710: NO), the process returns to step S708. On the other hand, when the input password matches the document password (step S710: YES), the document control unit 138 decrypts the encrypted PDF document data (step S712).

  Next, the document control unit 138 develops the decrypted electronic mail (print data) as a print image (step S714). For example, the document control unit 138 develops the decrypted print data in the image storage memory 108 as a print image.

  Next, the document control unit 138 prints out the developed print data (step S716). For example, the document control unit 138 inputs a command to print out the print data expanded in the image storage memory 108 to at least one of the copier control unit 128, the scanner control unit 132, and the facsimile control unit 136. As a result, the image is printed on the printing paper in the copying machine, and the image is transmitted to the other device in the scanner and the facsimile, and is printed out in the other device.

  After the printing is completed, the document control unit 138 deletes the print image developed in the image storage memory 108 (step S718). Here, the data stored in the accumulated document management unit 140 may also be deleted.

  Thus, by performing the authentication process with the PDF document password, security can be ensured in units of documents.

  Next, another operation of the image forming apparatus 100 according to the present embodiment will be described with reference to FIG.

  An electronic mail having a print job is received from the client via the network I / F 134 (step S802).

  The document control unit 138 refers to the mail header of the received electronic mail and determines whether or not it is encrypted (step S804).

  If it is encrypted (step S804: YES), the document management unit 138 stores the received email in the stored document management unit 140 in an encrypted state (step S806). On the other hand, if it is not encrypted (step S804: NO), the process proceeds to step S822 described later.

  Next, the authentication unit 130 detects that the IC card is held over the card reader provided in the main system, and performs authentication determination based on the input pin number (step S808). For example, authentication is performed by detecting that the IC reader is held over the IC card reader provided in the operation panel unit 122 and a pin number is further input (step S810).

  As a result of the authentication process, if the user who holds the IC card and inputs the pin number is not identified as a user who can use the image forming apparatus (step S810: NO), the process returns to step S808. On the other hand, when the user who holds the IC card and inputs the pin number is identified as a user who can use the image forming apparatus (step S810: YES), the document control unit 138 uses the encrypted data (e-mail). ) Is transmitted to the IC card (step S812).

  When the IC card receives the encrypted data (step S814), it decrypts it with the secret key stored in the IC card (step S816).

  Next, the IC card transmits the decrypted data to the image forming apparatus 100 (step S818). That is, the document control unit 138 transmits an e-mail to an external authentication device, for example, an IC card, according to the authentication result, and receives the e-mail decrypted by the external authentication device. In this case, the external authentication device includes a decryption unit that decrypts the encrypted electronic mail.

  When the image forming apparatus 100 receives the decrypted data (step S820), the document control unit 138 develops the decrypted electronic mail (print data) as a print image (step S822). For example, the document control unit 138 develops the decrypted print data in the image storage memory 108 as a print image.

  Next, the document control unit 138 prints out the developed print data (step S824). For example, the document control unit 138 inputs a command to print out the print data expanded in the image storage memory 108 to at least one of the copier control unit 128, the scanner control unit 132, and the facsimile control unit 136. As a result, the image is printed on the printing paper in the copying machine, and the image is transmitted to the other device in the scanner and the facsimile, and is printed out in the other device.

  After printing is completed, the document control unit 138 deletes the print image developed in the image storage memory 108 (step S826). Here, the data (e-mail) stored in the accumulated document management unit 140 may also be deleted.

  As described above, by causing the external authentication device to perform the decryption process, it is not necessary to obtain the secret key from the outside, and thus the uniqueness of the secret key can be maintained. That is, it is possible to prevent the secret key from being distributed.

  Next, another operation of the image forming apparatus 100 according to the present embodiment will be described with reference to FIG.

  An electronic mail having a print job is received from the client via the network I / F 134 (step S902).

  The document control unit 138 refers to the mail header of the received e-mail and determines whether it is encrypted (step S904).

  If it is encrypted (step S904: YES), the document control unit 138 stores the received email in the stored document management unit 140 in an encrypted state (step S906). On the other hand, if it is not encrypted (step S904: NO), the process proceeds to step S924 described later.

  Next, the authentication unit 130 performs authentication processing based on the user name and password input from the authentication screen on the main body panel (step S908). The authentication unit 130 performs user authentication by determining whether or not the user who has input the user name and password is a usable user of the image forming apparatus (step S910).

  As a result of the authentication process, when the user who has input the user name and password is not identified as the user who can use the image forming apparatus 100 (step S910: NO), the process returns to step S908. On the other hand, when the user who has input the user name and password is identified as a usable user of the image forming apparatus 100 (step S910: YES), the user account control unit 126 displays the authentication table held in the user DB 24. , It is determined whether or not the user is registered as a user, and the secret key for the user is searched according to the result (step S912). For example, when the user is registered, the user account control unit 126 determines whether or not the main body holds a secret key for the user (step S914).

When there is no secret key for the corresponding user in the main body (step S914: NO), the document control unit 138 displays a secret key reading screen (step S916), executes key reading after connecting the external authentication device, and It is determined whether or not a user private key can be acquired (step S918). If the private key for the user cannot be acquired (step S918: NO), the process returns to step S908. On the other hand, when the secret key for the corresponding user can be obtained, that is, when the secret key for the corresponding user is found (step S918: YES), the secret key for the corresponding user is read from the external authentication device and is stored in the main system. The private key data for the user is fetched (step S920).
That is, the document control unit 138 takes in the secret key used for decryption from the external authentication device. For example, the external storage device that stores the secret key may be configured by a secure device such as a USB, and the secret key may be captured from the external storage device. In this case, an authentication technique such as a one-time password may be used in order to ensure security between the external authentication apparatus and the image forming apparatus.

  When the private key for the corresponding user is held in the main body (step S914: YES) and when the private key for the corresponding user is captured in step S920, the private key for the corresponding user is used for encryption. The e-mail data is decrypted (step S922).

  Next, the document control unit 138 develops the decrypted print data as a print image (step S924). For example, the document control unit 138 develops the decrypted print data in the image storage memory 108 as a print image.

  Next, the document control unit 138 prints out the developed print data (step S926). For example, the document control unit 138 inputs a command to print out the print data expanded in the image storage memory 108 to at least one of the copier control unit 128, the scanner control unit 132, and the facsimile control unit 136. As a result, the image is printed on the printing paper in the copying machine, and the image is transmitted to the other device in the scanner and the facsimile, and is printed out in the other device.

  After printing is completed, the document control unit 138 deletes the print image developed in the image storage memory 108 (step S928). Here, the data (e-mail) stored in the accumulated document management unit 140 may also be deleted.

  Next, the document control unit 138 determines whether or not to delete the captured private key (step S930). For example, the document control unit 138 displays a secret key deletion screen and determines whether or not to delete the captured secret key according to the user's determination. If it is determined that the captured private key is to be deleted (step S930: YES), the private key is deleted (step S932) and the process ends. On the other hand, if it is determined not to delete the captured private key (step S930: NO), the process ends.

  As described above, by making it possible to acquire the secret key used in the image forming apparatus 100 from the external authentication apparatus, it becomes possible to change the key periodically, thereby improving security. it can.

  Next, another operation of the image forming apparatus 100 according to the present embodiment will be described with reference to FIG.

  An electronic mail having a print job is received from the client via the network I / F 134 (step S1002).

  The document control unit 138 refers to the mail header of the received e-mail and determines whether it is encrypted (step S1004).

  If encrypted (step S1004: YES), the document control unit 138 stores the received e-mail in the stored document management unit 140 in an encrypted state (step S1006). On the other hand, if it is not encrypted (step S1004: NO), the process proceeds to step S1022 to be described later.

  Next, the user account management unit 126 determines whether or not mail notification is set (step S1008). For example, a table in which information indicating the presence / absence of mail notification for each sender is stored in the user DB 24, and the user account management unit 126 makes a determination with reference to the table.

  When the mail notification is set (step S1008: YES), the document control unit 138 transmits an e-mail indicating reception, for example, an e-mail indicating that the e-mail is stored to the transmission source (step S1010). For example, as shown in FIG. 11, as a mail reception report, the sender is notified that the mail has been received and stored in the main body while being encrypted. Here, as a mail transmission destination, in addition to the transmission source, the mail may be transmitted to the administrator of the image forming apparatus 100 and to a user group using the same image forming apparatus 100.

  When the mail notification is not set (step S1008: NO) and when an e-mail indicating reception is transmitted to the transmission source, the authentication unit 130 performs authentication determination of the device administrator password input from the main body panel ( Step S1012). The authentication unit 130 performs user authentication by determining whether or not the user who has input the apparatus administrator password is a usable user of the image forming apparatus (step S1014).

  As a result of the authentication process, when the user who has input the apparatus administrator password is not identified as an available user of the image forming apparatus 100 (step S1014: NO), the process returns to step S1012. On the other hand, when the user who has input the apparatus administrator password is identified as an available user of the image forming apparatus 100 (step S1014: YES), the user account control unit 126 is stored in the user DB 24 as described above. With reference to the authentication table, it is determined whether or not the user is registered as a user, and the secret key for the user is searched according to the result (step S1016). For example, when the user is registered, the user account control unit 126 determines whether or not the main body holds a secret key for the user (step S1018).

  When there is no secret key for the user in the main body (step S1018: NO), the process returns to step S1012. On the other hand, if the private key for the corresponding user is held in the main body (step S1018: YES), the encrypted electronic mail data is decrypted using the private key for the corresponding user (step S1020). .

  Next, the document control unit 138 develops the decrypted electronic mail (print data) as a print image (step S1022). For example, the document control unit 138 develops the decrypted print data in the image storage memory 108 as a print image.

  Next, the document control unit 138 prints out the developed print data (step S1024). For example, the document control unit 138 inputs a command to print out the print data expanded in the image storage memory 108 to at least one of the copier control unit 128, the scanner control unit 132, and the facsimile control unit 136. As a result, the image is printed on the printing paper in the copying machine, and the image is transmitted to the other device in the scanner and the facsimile, and is printed out in the other device.

  After printing is completed, the document control unit 138 deletes the print image developed in the image storage memory 108 (step S1026). Here, the data (e-mail) stored in the accumulated document management unit 140 may also be deleted.

  Here, a case has been described in which the mail notification timing is set at the time of reception, but it may be performed at the time of decoding the mail, that is, in step S1020.

  In this way, by sending an e-mail reception result to the sender, it is possible to notify the sender of a mail reception report. For this reason, the location of security data can be clarified.

  In the operation of the image forming apparatus 100 described above, the notification determination process in step S1008 may be performed as follows.

  If the result of determination in step S1008 is mail notification setting (step S1008: YES), a mail reception notification is sent to the main body panel. That is, it is displayed on the user interface. For example, as shown in FIG. 12, information indicating reception date and time, data, a source mail address, and a destination mail address is displayed as a mail reception report. Further, as a notification method, in addition to displaying a message on the main body panel liquid crystal, notification by the mail reception LED of the main body panel unit or connection to the WEB server screen of the main body may be made so as to determine whether or not there is reception.

  The notification timing of the mail may be determined based on the determination whether or not the mail notification is set when the user logs in to the main body as well as at the time of reception.

  Thus, by displaying the mail reception report on the operation panel instead of outputting the secure print data on paper, the security of the received data can be ensured. In addition, the receiver side can be notified of the reception.

  In the operation of the image forming apparatus 100 described above, the notification determination process in step S1008 may be as follows.

  If the result of determination in step S1008 is mail notification setting (step S1008: YES), a communication report is printed out and a mail reception notification is output on paper. For example, as shown in FIG. 13, information indicating reception date / time, data, a mail address of a transmission source, and a mail address of a transmission destination is output on paper as a mail reception notification.

  In this case, it is possible to select information related to the received data, and the contents with security problems may be hidden.

  In this way, the security of the document itself can be ensured by printing only the received report instead of outputting the secure print data on paper. In addition, the receiver side can be notified of the reception.

  Further, the storage of the e-mail may be notified by at least one of e-mail, display on the user interface, and print output of the received report.

  According to the embodiment of the present invention, when an e-mail is received, it is determined whether or not it is encrypted. If it is encrypted, the received data is stored in a built-in storage area (stored document management unit). The data is stored, and authentication processing, decryption processing, and print output are performed on the device side.

  In this case, the security of the stored data of the main body can be protected by performing the authentication process before decryption. That is, since the apparatus itself performs the mail decryption process, it is possible to eliminate an unnecessary inquiry from the sender. Also, it is not necessary to communicate with the sender again when decoding after the elapse of time after reception. Further, by retaining the encrypted data in the main body without decrypting it, it is possible to ensure security when the data is illegally taken out.

  In addition, since it is stored in the storage area of the device after determining whether it is encrypted, there is a risk that unencrypted data will remain in the main body and information will be taken out by a third party. Can be avoided. Further, security can be improved by authenticating a secret key for decryption and selecting a secret key corresponding to the authenticated user as appropriate. In addition, even when a plurality of users share an apparatus, the sender of the e-mail can perform S / MIME transmission using a different public key for each transmission partner.

  The processing of data held in the built-in storage area is controlled according to the account. That is, whether to print is controlled according to the authentication account. By doing so, security can be improved.

  Also, a secret key for decryption for each authentication account is stored, that is, a secret key is prepared for each group, and a secret key can be selected according to an account registered in the group. Printing is possible.

  In addition, when the data stored in the built-in storage area is an encrypted PDF document, security can be ensured not for each user but for each document by performing an authentication process using a document password. .

  In addition, the authentication operation can be facilitated by performing authentication processing using an external authentication device such as an IC card.

  In addition, by performing data decryption processing with an external authentication device, for example, an IC card equipped with a means for decrypting, it is possible to eliminate the need to obtain a secret key from the outside, and to keep the secret key unique. be able to.

  It is also possible to change the key periodically by fetching the private key used for decryption from an external authentication device, such as a USB token, and obtaining the private key used by the device from the user's external authentication device. , Can improve security.

  In addition, a mail job is received, that is, an e-mail having a print job is received and notified by sending an e-mail indicating that it has been stored in the built-in storage area, and the result of the reception is sent to the sender as a mail reply. You can do a result report to In addition, the location of security data can be clarified.

  In addition, when a mail job is received, a notification is displayed on a user interface (UI), for example, an operation panel, LED, or WEB, and the result is displayed on the operation panel instead of paper output of secure print data. Thus, the security of received data can be ensured. In addition, the reception side can be notified of the reception.

  In addition, when a mail job is received, the received report is printed and notified, and the security of the document itself is ensured by printing only the received report instead of printing the secure print data on paper. Can do. In addition, reception can be notified to the receiver side.

  The image forming method, the image forming apparatus, the program, and the recording medium according to the present invention can be applied to a printer, a scanner, a facsimile machine, and a multifunction machine having these functions, particularly an apparatus that can receive an e-mail.

1 is a block diagram illustrating a system to which an image forming apparatus according to an embodiment of the present invention is applied. 1 is a block diagram illustrating a system to which an image forming apparatus according to an embodiment of the present invention is applied. 1 is a block diagram illustrating a hardware configuration of an image forming apparatus according to an embodiment of the present invention. 1 is a block diagram illustrating a configuration of an image forming apparatus according to an embodiment of the present invention. 3 is a flowchart illustrating an operation of the image forming apparatus according to the embodiment of the present invention. FIG. 3 is an explanatory diagram illustrating an example of an operation panel of the image forming apparatus according to the embodiment of the present invention. It is explanatory drawing which shows an example of the authentication table of the image forming apparatus concerning one Example of this invention. 3 is a flowchart illustrating an operation of the image forming apparatus according to the embodiment of the present invention. 3 is a flowchart illustrating an operation of the image forming apparatus according to the embodiment of the present invention. 3 is a flowchart illustrating an operation of the image forming apparatus according to the embodiment of the present invention. 3 is a flowchart illustrating an operation of the image forming apparatus according to the embodiment of the present invention. It is explanatory drawing which shows an example of a reception report. It is explanatory drawing which shows an example of a reception report. It is explanatory drawing which shows an example of a reception report.

Explanation of symbols

  100 Image forming apparatus

Claims (18)

In the image forming method in the image forming apparatus,
A receiving step for receiving e-mail;
An encryption determination step for determining whether or not the email is encrypted;
A storage step for storing the email when the email is encrypted;
An authentication step of determining whether or not the user has the authority to use;
A decrypting step for decrypting the e-mail according to an authentication result;
An image forming method comprising: The image forming method according to claim 1,
The image forming method according to claim 1, wherein the authentication step determines whether or not each user has an authority to decrypt the electronic mail. The image forming method according to claim 2.
In the image forming method, the decrypting step decrypts the e-mail with a secret key corresponding to the user when it is determined that the user has an authority to use. The image forming method according to claim 2 or 3,
The image forming method according to claim 1, wherein the authentication step determines whether or not the user has an authority to use based on a user name and a password transmitted by an external authentication device. The image forming method according to claim 4.
The decrypting step transmits the electronic mail to an external authentication device in accordance with an authentication result, and receives the electronic mail decrypted by the external authentication device. The image forming method according to claim 1,
The image forming method, wherein the decrypting step takes in a secret key used for decryption from an external authentication device. The image forming method according to claim 1,
The image forming method according to claim 1, wherein the authentication step performs an authentication process using a document password when the encrypted electronic mail includes an encrypted PDF document. The image forming method according to claim 1,
An image forming method comprising: a notification step of notifying that an e-mail has been stored by at least one of e-mail, display on a user interface, and printout of a received report. A document control means for determining whether or not the received e-mail is encrypted, and storing the e-mail when the e-mail is encrypted;
An authentication means for determining whether or not the user has an authority to use, and
The image forming apparatus, wherein the document control unit decrypts the e-mail according to the authentication result. The image forming apparatus according to claim 9.
The image forming apparatus according to claim 1, wherein the authentication unit determines whether each user has an authority to decrypt the electronic mail. The image forming apparatus according to claim 10.
When it is determined that the document control unit is a user having an authority to use, the image forming apparatus decrypts the electronic mail using a secret key corresponding to the user. The image forming apparatus according to claim 10 or 11,
The image forming apparatus according to claim 1, wherein the authentication unit determines whether or not the user has an authority to use based on a user name and a password input by an external authentication apparatus. The image forming apparatus according to claim 11.
The image forming apparatus, wherein the document control unit transmits the electronic mail to an external authentication apparatus according to an authentication result, and receives the electronic mail decrypted by the external authentication apparatus. The image forming apparatus according to claim 9.
The image forming apparatus, wherein the document control unit takes in a secret key used for decryption from an external authentication apparatus. The image forming apparatus according to claim 9.
The image forming apparatus, wherein the authentication unit performs an authentication process using a document password when the encrypted electronic mail includes an encrypted PDF document. The image forming apparatus according to claim 9.
The image forming apparatus according to claim 1, wherein the document control means notifies that the e-mail is stored by at least one of e-mail, display on a user interface, and print output of a reception report.   A program for causing a computer to execute the image forming method according to any one of claims 1 to 8.   The computer-readable recording medium which recorded the program of Claim 17.

Images