JP2009265277A - Map working device, program, map display apparatus, and geographical information system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a technology for reducing the burden of creation and storage load of maps for a geographical information system capable of disclosing a map corresponding to the authority. <P>SOLUTION: Encrypted data wherein map data having a plurality of layers created by a map original data holding device 110 and a map creating device 120 is encrypted for each layer with a common key and the common key performing the encryption is encrypted with an encryption key corresponding to the authority to browse the layers is transmitted to a map display apparatus 160. The map display apparatus 160 decrypts the encrypted data with a decryption key corresponding to the authority, decrypts the layers encrypted by using the common key, and superposes the decrypted layers to create a display map screen. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to a technique for encrypting and distributing map data composed of at least two parts.

  Geographic information systems that provide electronic map data combining various types of information with maps are used. However, since electronic map data includes highly confidential information, disclosure is based on the authority of the viewing user. You may want to restrict.

  In the conventional technology, a user having a decryption key corresponding to the type of vehicle is assigned to the vehicle type by performing encryption corresponding to the type of vehicle to be distributed on a map distributed by network or broadcast. A technique capable of decoding a corresponding map is known (see, for example, Patent Document 1).

JP 2005-121719 A

  In the technique described in Patent Document 1, an encrypted map is created according to the type of vehicle. Therefore, when the number of types of vehicles increases, the number of maps to be encrypted increases, and the map creation and storage load increases. .

  Therefore, an object of the present invention is to provide a technique capable of reducing the load of creating and storing a map in a geographic information system that can disclose a map according to authority.

  In order to solve the above-described problems, the present invention provides, for each part constituting a map, an encryption corresponding to a decryption key possessed by a person having authority to receive the part of information necessary for displaying the part. Encrypt with encryption key.

  For example, the present invention is a map processing device that encrypts map data composed of at least two parts, and includes authority encryption key management information for specifying an encryption key for each authority, and each authority. A storage unit that stores a disclosure management information that identifies a part to be disclosed in the authority, and a control unit, wherein the control unit uses an encryption key for each authority from the encryption key management information for authority. And a process for identifying a part disclosed in the authority from the disclosure management information and encrypting information necessary for displaying the identified part with the obtained encryption key. And

  As described above, according to the present invention, it is possible to provide a technique capable of reducing the map creation and storage load in a geographic information system that can disclose a map according to authority.

  FIG. 1 is a schematic diagram of a geographic information system 100.

  As shown in the figure, the geographic information system 100 includes a map original data holding device 110, a map creating device 120, a map processing device 130, a map distribution device 150, and a map display device 160, and the map original data holding device. 110, the map creation device 120, the map processing device 130, the map distribution device 150, and the map display device 160 can exchange information with each other via the network 190.

  FIG. 2 is a schematic diagram of the map source data holding device 110.

  As shown in the figure, the map source data holding device 110 includes a storage unit 111, a control unit 113, a communication unit 115, and a map source data input unit 116.

  The storage unit 111 has a map original data storage area 112.

  The map source data storage area 112 stores information (map source data) necessary for creating an electronic map. For example, data obtained by imaging a printed map in a map source data input unit 116, which will be described later, data obtained by imaging a drawing of a building or the like in a map source data input unit 116, CAD data of a building, etc. as map source data It is stored in the data storage area 112.

  The control unit 113 includes a map source data management unit 114.

  The map source data management unit 114 receives input of information necessary for creating an electronic map via the map source data input unit 116, and stores the input information as map source data in the map source data storage area 112. Perform the process.

  In addition, the map source data management unit 114 performs a process of transmitting the map source data stored in the map source data storage area 112 to the map creation device 120 via the communication unit 115.

  The communication unit 115 transmits and receives information via the network 190.

  The map source data input unit 116 accepts input of map source data required when creating an electronic map.

  The map source data holding device 110 described above includes, for example, a CPU (Central Processing Unit) 181, a memory 182, an external device such as a HDD (Hard Disk Drive) as shown in FIG. 3 (schematic diagram of the computer 180). A storage device 183, a reading device 185 that reads and writes information from a portable storage medium 184 such as a CD-ROM (Compact Disk Read Only Memory) and a DVD-ROM (Digital Versatile Disk Read Only Memory), and a keyboard and mouse Data input such as a scanner to a general computer 180 provided with an input device 186 such as a display, an output device 187 such as a display, and a communication device 188 such as a NIC (Network Interface Card) for connection to a communication network. This can be realized by connecting a device (not shown).

  For example, the storage unit 111 can be realized by the CPU 181 using the memory 182 or the external storage device 183, and the control unit 113 loads a predetermined program stored in the external storage device 183 into the memory 182. The communication unit 115 can be realized by the CPU 181 using the communication device 208, and the map source data input unit 116 is realized by the CPU 181 using the data input device. Is possible.

  The predetermined program is downloaded from the storage medium 184 via the reading device 185 or from the network via the communication device 188 to the external storage device 183, and then loaded onto the memory 182 and executed by the CPU 181. You may do it. Alternatively, the program may be directly loaded on the memory 182 from the storage medium 184 via the reading device 185 or from the network via the communication device 188 and executed by the CPU 181.

  FIG. 4 is a schematic diagram of the map creation device 120.

  As illustrated, the map creation device 120 includes a storage unit 121, a control unit 124, an input unit 126, an output unit 127, and a communication unit 128.

  The storage unit 121 includes a map original data storage area 122 and a map data storage area 123.

  The map source data storage area 122 stores map source data acquired from the map source data holding device 110.

  The map data storage area 123 stores map data that is an electronic map generated by a map data generation unit 125 of the control unit 124 described later.

  For example, in the present embodiment, the object table 123a as shown in FIG. 5 (schematic diagram of the object table 123a) for specifying the arrangement of each object constituting the map, and the object image (FIG. (Not shown) are stored in the map data storage area 123.

  As illustrated, the object table 123a includes an OID column 123b, a coordinate information column 123c, a layer ID column 123d, an item ID column 123e, and an attribute column 123f.

  The OID column 123b stores an object ID that is identification information for uniquely identifying each object.

  The coordinate information column 123c stores information for specifying coordinates for arranging image data corresponding to the object specified in the OID column 123b. Here, in the present embodiment, the coordinates of the two points (the x coordinate of the first point, the y coordinate of the first point, the x coordinate of the second point, the second point x, By specifying (y-coordinate), the image data corresponding to the object specified in the OID field 123b is arranged in a rectangle whose diagonals are the two points. However, the present invention is limited to this mode. Do not mean.

  The layer ID column 123d stores information for specifying a layer on which the object specified by the OID column 123b is arranged. In the present embodiment, a unique layer ID is assigned to each layer constituting the electronic map (for example, a serial number), and the layer ID is stored in the layer ID column 123d.

  The item ID field 123e stores information that identifies the type of object specified in the OID field 123b. For example, as the type of object, the constituent elements constituting the electronic map are classified in advance, such as roads, buildings, restaurants, gas stations, etc., and item IDs are assigned so as to be unique to the respective classifications. The ID is stored in the item ID column 123e.

  The attribute column 123f stores information for specifying the attribute of the object specified in the OID column 123b.

  In the present embodiment, as the attribute of the object, information specifying a use form such as whether or not rain is possible, information specifying a unique name such as the name of a bookstore, the name of a conference room, the name of a building, the opening of a store Information for specifying the usage time such as the current time zone is stored in the attribute column 123f.

  The control unit 124 includes a map data generation unit 125.

  The map data generation unit 125 selects and selects objects to be placed on the electronic map from the map source data stored in the map source data storage area 122 by the operator of the map creation device 120 via the input unit 126. The object table 123a is generated for each electronic map by receiving the information for specifying the coordinates and the layer where the object is placed, and further receiving the input of the item ID and attribute of the selected object, and the object table 123a By associating the image data of the identified object with the generated object table 123 a, map data is generated and stored in the map data storage area 123.

  Regarding the technology for constructing an electronic map by dividing it into layers, Hitoshi Yoshida, “GIS from the Basics”, Morikita Publishing, March 2005, p. 31-32.

  Further, the map data generation unit 125 performs processing for transmitting the map data stored in the map data storage area 123 to the map processing device 130 via the communication unit 128.

  The input unit 126 receives input of information.

  The output unit 127 outputs information.

  The communication unit 128 transmits and receives information via the network 190.

  The map creation device 120 described above can be realized by a general computer 180 as shown in FIG. 3, for example.

  For example, the storage unit 121 can be realized by the CPU 181 using the memory 182 or the external storage device 183, and the control unit 124 loads a predetermined program stored in the external storage device 183 to the memory 182. The input unit 126 can be realized by using the input device 186 by the CPU 181, and the output unit 127 can be realized by using the output device 187 by the CPU 181. The communication unit 128 can be realized by the CPU 181 using the communication device 188.

  The predetermined program is downloaded from the storage medium 184 via the reading device 185 or from the network via the communication device 188 to the external storage device 183, and then loaded onto the memory 182 and executed by the CPU 181. You may do it. Alternatively, the program may be directly loaded on the memory 182 from the storage medium 184 via the reading device 185 or from the network via the communication device 188 and executed by the CPU 181.

  FIG. 6 is a schematic diagram of the map processing device 130.

  As illustrated, the map processing device 130 includes a storage unit 131, a control unit 140, an input unit 145, an output unit 146, and a communication unit 147.

  The storage unit 131 includes a map data storage area 132, a first map display control rule storage area 133, a situation information storage area 134, a post-change map data storage area 135, an encryption key information storage area 136, an authority And an encryption map management information storage area 137, a disclosure management information storage area 138, and an encrypted map data storage area 139.

  The map data storage area 132 stores map data received from the map creation device 120. In the present embodiment, an object table 123a as shown in FIG. 5 and image data of each object are stored in the map data storage area 132 as map data.

  The first map display control rule storage area 133 stores information for specifying conditions for changing the display of the map and processing to be performed when the conditions are met.

  For example, in the present embodiment, the first map display control rule table 133a as shown in FIG. 7 (schematic diagram of the first map display control rule table 133a) is stored in the first map display control rule storage area 133. Is done.

  As shown in the drawing, the first map display control rule table 133a has a condition column 133b and a processing column 133c.

  The condition column 133b stores information for specifying a condition for the situation information stored in the situation information storage area 134 described later. For example, in the present embodiment, information for specifying conditions (for example, a predetermined position range, rain, sunny, cloudy, time range, etc.) for a situation such as a position, weather, and time of a map display device 160 described later. Is stored in the condition column 133b.

  In the processing column 133c, when the condition specified in the condition column 133c is satisfied, information for specifying the attribute of the object whose display is to be changed, processing for changing the object image of the object having the specified attribute, Is stored. For example, in this embodiment, highlighting by selecting a map in an appropriate range, marking a part of the map, changing the size of characters, etc., changing the color, Processing such as controlling non-display and display, adding related information, and the like are specified.

  The situation information storage area 134 stores situation information that identifies the situation of the geographic information system 100.

  For example, information for specifying the situation such as the position of each map display device 160, weather such as rain, fine weather, and cloudy, time, etc. is stored, and updated each time the situation changes.

  In the post-change map data storage area 135, the map data stored in the map data storage area 132 is changed map data obtained by changing the object image based on the first map display control rule table 133a. Some changed map data is stored.

  The map data after change is generated by a map display change unit 143 described later and stored in the map data storage area 135 after change.

  In the encryption key information storage area 136, information for specifying an encryption key used in the map processing device 130 is stored.

  The authority encryption key management information storage area 137 stores information for specifying an encryption key to be used for each predetermined user authority.

  For example, in the present embodiment, the authority encryption key table 137a as shown in FIG. 8 (schematic diagram of the authority encryption key table 137a) is stored in the authority encryption key management information storage area 137.

  As shown in the figure, the authority encryption key table 137a has an authority field 137b and an authority encryption key field 137c.

  The authority column 137b stores information for specifying the authority to be allocated to the user in advance.

  The authority encryption key field 137c stores information for specifying an encryption key used when encrypting information disclosed to a user having the authority specified in the authority field 137b.

  The disclosure management information storage area 138 stores information for specifying a portion of the map to be disclosed for each user authority. In the present embodiment, whether or not to disclose for each authority is specified in units of layers constituting the map, but is not limited to such an aspect.

  For example, in the present embodiment, a disclosure management table 138a as shown in FIG. 9 (schematic diagram of the disclosure management table 138a) is stored in the disclosure management information storage area 138.

  As shown in the figure, the disclosure management table 138a has an authority column 138b, a layer 1 column 138c, a layer 2 column 138d, a layer 3 column 138e, and a layer 4 column 138f, and is specified in the authority column 138b. In the layer column of the layer to be disclosed for the authority to be disclosed, information specifying the disclosure (in this embodiment, a symbol “◯”) is stored.

  The encrypted map data storage area 139 stores encrypted map data obtained by encrypting each layer using an encryption key corresponding to each authority. The encrypted map data will be described in detail with reference to FIG.

  The control unit 140 includes a map display control rule generation unit 141, a status information management unit 142, a map display change unit 143, and an encrypted map data generation unit 144.

  The map display control rule generation unit 141 inputs information specifying conditions for changing the display of the map and processing to be performed when the conditions are met, from the operator of the map processing device 130 via the input unit 145. Is received and the inputted information is stored in the first map display control rule table 133a.

  The situation information management unit 142 measures time, receives necessary information such as position information from the map display device 160 via the network 190, and receives information such as weather from other servers (not shown) via the network 190. The situation information is stored in the situation information storage area 134 by receiving the necessary information.

  The map display changing unit 143 acquires the situation information stored in the situation information storage area 134, and maps data (object table) in a predetermined range corresponding to the current position of the map display device 160 that distributes the map. 123a and the object image) are acquired from the map data storage area 132.

  Then, the map display changing unit 143 stores the condition when the situation information satisfying the condition specified in the condition column 133b of the first map display control rule table 133a is stored in the situation information storage area 134. The processing specified in the processing column 133c of the record being executed is executed.

  For example, when the weather is “rainy” according to the situation information, the first map display control rule table in which the attribute “rainy” is specified and the condition “rainy” is set The process of “emphasize an object having a rainy day attribute” stored in the processing column 133c of 133a is performed on the object image of the identified object.

  Besides raining, it is also possible to process and display objects related to rain, and display character information and graphic information related to rain together.

  Furthermore, the object on the map can be changed according to the time. For example, it is possible to highlight a store whose current time is in the business hours range, or display character information or graphic information according to the current time.

  In addition, the map display changing unit 143 specifies and specifies an object having an item ID in the item ID column 123e corresponding to the situation specified by the situation information stored in the situation information storage area 134 in the object table 123a. An object image corresponding to the object is subjected to predetermined highlighting such as enlarging display or surrounding with an enclosing line. Note that the method of associating the item ID with the situation information and highlighting the object is determined in advance and stored in the storage unit 131.

  The map display changing unit 143 stores the map data (the object table 123a and the object image) changed as described above in the post-change map data storage area 135 as post-change map data.

  Specifically, the map display changing unit 143 specifies an object in the predetermined range with respect to the object table 123a and the position of the map display device 160 that distributes the map, using the object table 123a. Corresponding object images are acquired from the map data storage area 132, and the acquired object images are subjected to predetermined processing to generate post-change map data. That is, the post-change map data is generated for each predetermined range.

  The encrypted map data generation unit 144 acquires post-change map data stored in the post-change map data storage area 135, and uses the encryption key for each authority specified in the authority encryption key management table 137a. Based on the disclosure conditions specified in the disclosure management table 138a, the map data after change is encrypted, and the encrypted map data is stored in the encrypted map data storage area 139. A specific processing method for encryption will be described later.

  Further, the encrypted map data generation unit 144 performs processing for acquiring the encrypted map data from the encrypted map data storage area 139 and transmitting the acquired encrypted map data to the map distribution device 150.

  In the present embodiment, the encrypted map data is generated at a predetermined timing and transmitted to the map distribution device 150.

  The input unit 145 receives information input.

  The output unit 146 outputs information.

  The communication unit 147 transmits and receives information via the network 190.

  The map processing device 130 described above can be realized by, for example, a general computer 180 as shown in FIG.

  For example, the storage unit 131 can be realized by the CPU 181 using the memory 182 or the external storage device 183, and the control unit 140 loads a predetermined program stored in the external storage device 183 into the memory 182. The input unit 145 can be realized by using the input device 186 by the CPU 181, and the output unit 146 can be realized by using the output device 187 by the CPU 181. The communication unit 147 can be realized by the CPU 181 using the communication device 188.

  The predetermined program is downloaded from the storage medium 184 via the reading device 185 or from the network via the communication device 188 to the external storage device 183, and then loaded onto the memory 182 and executed by the CPU 181. You may do it. Alternatively, the program may be directly loaded on the memory 182 from the storage medium 184 via the reading device 185 or from the network via the communication device 188 and executed by the CPU 181.

  FIG. 10 is a schematic diagram of the map distribution device 150.

  As illustrated, the map distribution apparatus 150 includes a storage unit 151, a control unit 153, an input unit 155, an output unit 156, and a communication unit 157.

  The storage unit 151 has an encrypted map data storage area 152.

  The encrypted map data storage area 152 stores the encrypted map data received from the map processing device 130.

  The control unit 153 includes an encrypted map data transmission unit 154.

  The encrypted map data transmission unit 154 receives a map data distribution request specifying the position (here, longitude and latitude) from the map display device 160 via the communication unit 157, and corresponds to the position (the position Is obtained from the encrypted map data storage area 152 and sent back to the map display device 160 that has transmitted the distribution request.

  The input unit 155 receives input of information.

  The output unit 156 outputs information.

  The communication unit 157 transmits and receives information via the network 190.

  The map distribution device 150 described above can be realized by, for example, a general computer 180 as shown in FIG.

  For example, the storage unit 151 can be realized by the CPU 181 using the memory 182 or the external storage device 183, and the control unit 153 loads a predetermined program stored in the external storage device 183 to the memory 182. The input unit 155 can be realized by using the input device 186 by the CPU 181, and the output unit 156 can be realized by using the output device 187 by the CPU 181. The communication unit 157 can be realized by the CPU 181 using the communication device 188.

  The predetermined program is downloaded from the storage medium 184 via the reading device 185 or from the network via the communication device 188 to the external storage device 183, and then loaded onto the memory 182 and executed by the CPU 181. You may do it. Alternatively, the program may be directly loaded on the memory 182 from the storage medium 184 via the reading device 185 or from the network via the communication device 188 and executed by the CPU 181.

  FIG. 11 is a schematic diagram of the map display device 160.

  As illustrated, the map display device 160 includes a storage unit 161, a control unit 168, an input unit 174, an output unit 175, a communication unit 176, and a GPS unit 177.

  The storage unit 161 includes a decryption key storage area 162, a second map display control rule storage area 163, a map related information storage area 164, an encrypted map data storage area 165, a decryption map data storage area 166, and a change. A map data storage area 167.

  In the decryption key storage area 162, information for specifying a decryption key according to the authority of the user of the map display device 160 is stored.

  For example, the provider who provides the map information in the geographic information system 100 passes the map display device 160 to the user in advance based on a contract separately concluded with the user who receives the provision of the map information. Holds the map display device 160 during the contract period. At that time, the decryption key is stored in advance in the decryption key storage area 162 of the map display device 160 according to the authority of the user.

  Alternatively, when the user comes to a predetermined location, the map display device 160 stores the decryption key according to the authority of the user and passes the map display device 160 when the user leaves the location. Good.

  Alternatively, the service provider stores a decryption key according to the authority of the user at a predetermined location in the decryption key storage area 162 of the map display device 160 owned by the user, and the user returns from the location. Sometimes, the stored decryption key may be deleted.

  Further, when the user authority is changed, the decryption key is deleted and added. The service provider distributes a new decryption key to the user, and the user enters a new decryption key into the map display device 160 and deletes the decryption key that is no longer needed. This may be performed by the service provider or a mobile phone company.

  Sales or lending of the map display device 160 to a user, distribution of a decryption key, and provision of a distribution service of map information may be performed by the user at a cost to the service provider or free of charge.

  The second map display control rule storage area 163 stores information for specifying a condition for changing the display of the map and a process to be performed when the condition is met.

  For example, in the present embodiment, a second map display control rule table (not shown) configured similarly to the first map display control rule table 133a as shown in FIG. It is stored in the storage area 163.

  In the map-related information storage area 164, information that needs to be displayed specially when displaying a map is stored as map-related information.

  For example, in the present embodiment, the operator of the map display device 160 receives input of information that requires special display when displaying a map via the input unit 174, and stores it as map related information. deep.

  The encrypted map data storage area 165 stores encrypted map data received from the map distribution device 150 via the communication unit 176.

  The decrypted map data storage area 166 stores decrypted map data obtained by decrypting the encrypted map data.

  The changed map data storage area 167 stores changed map data obtained by changing the display of the decoded map data.

  The control unit 168 includes a map display control rule generation unit 169, a map data decoding unit 172, and a map data display processing unit 173.

  The map display control rule generation unit 169 inputs information specifying conditions for changing the display of the map and processing to be performed when the conditions are met, from the operator of the map display device 160 via the input unit 174. Is received, and the input information is stored in the second map display control rule table.

  The position measurement unit 170 performs a process of calculating the position (longitude and latitude) of the map display device based on a detection signal detected by a GPS unit 177 described later.

  The map data acquisition unit 171 transmits the position calculated by the position measurement unit 170 to the map distribution device 150 via the communication unit 176, and acquires encrypted map data corresponding to the position transmitted from the map distribution device 150. Then, the process of storing in the encrypted map data storage area 165 is performed.

  The map data decryption unit 172 performs a process of decrypting the encrypted map data stored in the encrypted map data storage area 165 to generate decrypted map data. This process will be described later.

  Then, the map data decoding unit 172 performs a process of storing the decoded map data in the decoded map data storage area 166.

  When the map related information satisfying the condition specified in the condition column of the second map display control rule table is stored in the map related information storage area 164, the map data display processing unit 173 stores the condition. The processing specified in the processing column of the record being processed is performed.

  For example, when position information of another user who performs communication is stored in the map related information storage area 164 as the map related information, a predetermined mark is added to the position specified by the position information. Can do. In addition, when information specifying a user's hobby is set as the map-related information, highlighting such as enlarging display is performed on an object image of an object having an attribute corresponding to the hobby. Can do.

  Further, the map data display processing unit 173 identifies an object having an item ID corresponding to the map related information stored in the map related information storage area 164 in the item ID column 123e in the object table of the decoded map data. The object image corresponding to the selected object is subjected to a process of performing predetermined highlighting such as enlarging display or surrounding with an enclosing line. Note that the method of associating the item ID with the map-related information and highlighting the object is predetermined and stored in the storage unit 161.

  And the map data display process part 173 performs the process which memorize | stores the change map data which changed the display as mentioned above in the change map data storage area | region 167. FIG.

  Further, the map data display processing unit 173 performs a process of generating a display map screen for display from the changed map data stored in the changed map data storage area 167 and outputting it to the output unit 175. Specifically, the map data display processing unit 173 generates a map display screen by arranging an object image at a position specified by the object table in the changed map data.

  The input unit 174 receives information input.

  The output unit 175 outputs information.

  The communication unit 176 transmits and receives information via the network 190.

  The GPS unit 177 receives GPS radio waves.

  The map display device 160 described above can be realized, for example, by providing a general computer 180 as shown in FIG. 3 with a GPS unit (not shown) for receiving GPS radio waves.

  For example, the storage unit 161 can be realized by the CPU 181 using the memory 182 or the external storage device 183, and the control unit 168 loads a predetermined program stored in the external storage device 183 into the memory 182. The input unit 174 can be realized by using the input device 186 by the CPU 181, and the output unit 175 can be realized by using the output device 187 by the CPU 181. The communication unit 176 can be realized by the CPU 181 using the communication device 188, and the GPS unit 177 can be realized by the CPU 181 using the GPS unit.

  The predetermined program is downloaded from the storage medium 184 via the reading device 185 or from the network via the communication device 188 to the external storage device 183, and then loaded onto the memory 182 and executed by the CPU 181. You may do it. Alternatively, the program may be directly loaded on the memory 182 from the storage medium 184 via the reading device 185 or from the network via the communication device 188 and executed by the CPU 181.

  FIG. 12 is a flowchart showing processing when the map display device 160 acquires and displays map data from the map distribution device 150.

  First, the position measuring unit 170 of the map display device 160 measures the position of the map display device 160 from the GPS signal obtained from the radio wave received by the GPS unit 177 (S10).

  Next, the map data acquisition unit 171 transmits, via the communication unit 176, a map data transmission request including the position information specifying the position measured in step S10 to the map distribution device 150 (S11).

  In the map distribution device 150 that has received such a map data transmission request, the encrypted map data transmission unit 154 acquires position information from the map data transmission request and corresponds to the position information (the position information is specified). Encrypted map data is acquired from the encrypted map data storage area 152 and sent back to the map display device 160 via the communication unit 157 (S12).

  Here, the map distribution device 150 selects the encrypted map data transmitted in step S12 based on the current position transmitted in step S11. The selected map is not limited to the map including the current position, but may be a map including the current position and surrounding maps, or only a map obtained by excluding previously distributed maps from these maps (in this case, The past distribution history is stored in the storage unit 151 together with the address and the like).

  In the map display device 160 that has received the encrypted map data, the map data acquisition unit 171 stores the encrypted map data in the encrypted map data storage area 165, and the map data decryption unit 172 decrypts the stored encrypted map data according to the authority. (S13). This process will be described in detail with reference to FIG. Here, the decoded map data is stored in the code map data storage area 166 as decoded map data.

  Next, the map data display processing unit 173 changes the display of the decoded map data based on the second map display control rule table and the map related information, and uses the changed map data as the changed map data as the changed map data storage area 167. The display map image is generated from the changed map data, output to the output unit 175, and displayed (S14).

  FIG. 13 is a flowchart showing a process when the map processing apparatus 130 encrypts map data.

  In the following, in order to generally express the encryption processing procedure, the map layer is represented by M_i (i = 1,..., N), and the encryption key assigned to the authority is represented by pk_i (i = 1, , M), each row of the disclosure management table 138a is represented by access control information AD_i (i = 1,..., M). The disclosure layer management table 214 manages the correspondence between layers to be disclosed according to authority. Also, the authority encryption key management table 215 manages the correspondence relationship of the encryption keys corresponding to the authority. Furthermore, content delimiter information S_i (i = 1,..., N) representing how to divide the map is defined in advance, and encrypted in the access control information AD_i with the encryption key pk_i. An index j (j = 1,..., N) for specifying the map content delimiter information S_i is added.

  In the present embodiment, since encryption is performed for each layer M_i, the content delimiter information S_i is the same as that of the layer M_i.

  Here, n and m are natural numbers of 2 or more.

  First, the encrypted map data generation unit 144 of the map processing device 130 reads the changed map data from the changed map data storage area 135 (S20). Here, the post-change map data is assumed to be composed of n layers M_1,..., M_n, and the content delimiter information is content delimiter information S_1,. The

  Next, the encrypted map data generation unit 144 performs encryption according to a method that allows partial disclosure control (S21).

  For example, in the present embodiment, the encrypted map data generation unit 144 applies a common key (content encryption key) K_i (i = 1, 1) of the common key encryption technology to each piece of content delimiter information S_1,. ..., n) are generated randomly.

  Next, the encrypted map data generation unit 144 uses the content encryption key K_i to encrypt the object image included in each layer M_i corresponding to each content delimiter information S_i. Here, it is assumed that the data calculated as a result of encryption is partially encrypted data D_i (i = 1,..., N).

  Next, the encrypted map data generation unit 144 determines, from the access control information AD_i, an index set j_i (i = 1,...) That is a set of indexes j that specify the content delimiter information S_i added to the access control information AD_i.・ ・, Get n).

  Further, the encrypted map data generation unit 144 extracts all the content encryption keys K_i obtained by encrypting the layer specified by each index j included in the acquired index set j_i, and the index set j_i and the content corresponding thereto. The encryption key K_i is concatenated, and the concatenated concatenated data is encrypted with the encryption key pk_i corresponding to the authority specified in the authority column 138b of the access control information AD_i. Here, the encrypted data is referred to as key encrypted data E_i.

  Then, partially encrypted data D = D_i (i = 1,..., N), key encrypted data E = E_i (i = 1,..., M), access control information AD = AD_i (i = 1). ,..., M) and the object table are generated.

  Here, FIG. 14 shows a schematic diagram of the encrypted map data 139a.

  As shown in the figure, the encrypted map data 139a includes a header area 139b and a content encrypted data area 139c, and the header area 139b includes a content delimiter information area 139d, an access control information area 139e, and key encryption. A data area 139f.

  Content delimiter information S_i is stored in the content delimiter information area 139d.

  Access control information AD_i is stored in the access control information area 139e.

  The key encrypted data area 139f stores key encrypted data E = E_i.

  The content encrypted data area 139c stores partially encrypted data D = D_i and the object table 123a.

  Returning to FIG. 13, the encrypted map data generation unit 144 stores the generated encrypted map data in the encrypted map data storage area 139 (S22).

  FIG. 15 is a flowchart showing a process for decrypting the encrypted map data in the map display device 160.

  First, the map data decryption unit 172 of the map display device 160 reads the encrypted map data from the encrypted map data storage area 165 (S30), content delimiter information S_i, access control information AD_i, key encrypted data E = E_i and Partially encrypted data D = D_i is extracted.

  Next, the map data decoding part 172 decodes according to the method in which partial disclosure control is possible (S31).

  Specifically, the index set j_i is acquired from the access control information AD_i.

  Next, the map data decryption unit 172 decrypts the key encrypted data E_j using the decryption key sk_j stored in the decryption key storage area 162, and obtains the content encryption key K_i.

  Next, the map data decryption unit 172 decrypts the partially encrypted data D_i specified by each index j of the index set j_i using the content encryption key K_i (S31), and decrypted object image and object table. Is stored in the decoded map data storage area 166 as decoded map data.

  As described above, in the present embodiment, it is possible to control whether or not a part (here, a layer) of map data is disclosed according to authority.

  For example, as shown in FIG. 16 (schematic diagram showing an example of use of the geographic information system 100), when the user 50 moves while carrying the map display device 160, the user 50 first exists at the point A in the area 51. It is assumed that the map display device 160 is carried. Then, the user 50 moves to the point B in the area 52.

  Here, the user 50 operates the map display device 160 to request map distribution to the map distribution device 150 at the points A and B, and receives the encrypted map data as a response.

  In the encrypted map data to be distributed, a separate map is prepared for each area. Here, the area 52 has a confidential area 54. The confidential area 54 should be disclosed only to users with special authority.

  FIG. 17 shows an example in which encrypted map data is decrypted by a user who has authority to view the confidential area 54 and a user who does not have the authority to view the confidential area 54 in such a situation.

  Since the encrypted map data is stored in the map distribution device 150 and the map of the area 52 includes the confidential area 54, the map distribution apparatus 150 includes two layers, a confidential area layer 55 and a general area layer 56. These two layers are encrypted by the above-described method, and the two layers are delivered together to the map display device 160.

  The map display device 160 stores a decryption key for decrypting the encrypted map data in the decryption key storage area 162.

  When the decryption key storage area 162 stores both a decryption key that can decrypt the confidential area layer 55 and a decryption key that can decrypt the general area layer 56, the area 52 is displayed as shown in the display map screen 58. When only the decryption key that can decrypt the general area layer 56 is stored, only the part other than the confidential area 54 in the area 52 is displayed as in the display map screen 57.

  In this way, in this embodiment, the map distribution device 150 only transmits predetermined encrypted map data without depending on the user's authority, and the map display device 160 responds to the authority according to the authority. Disclosure becomes possible.

  Also, for example, in FIG. 17, when another layer is added and additional information is given to the map, a new layer map is created by the map creation device 120 and encrypted by the map processing device 130. Generate encrypted map data.

  Here, the creation date of the layer can be known later by giving the creation date of the layer as an attribute of the layer. When deleting a layer, except for the layer to be deleted by the map processing device 130, the remaining layers may be encrypted to generate encrypted map data.

  On the other hand, when updating a layer, the map processing apparatus 130 replaces the layer and encrypts it. Again, by giving the layer creation date as a layer attribute, the layer creation date can be known later. In addition, the old layer is not deleted but left and the updated layer is added, so that the old and new layers can be compared. Here, the new and old layers having the same contents are identified by the creation date.

  What is characteristic in the present embodiment is that the user is not authenticated when a map is requested in step S11 of FIG. The condition used for the map search is the current position of the map distribution device 150 and does not include information for identifying the user. That is, it becomes possible to distribute encrypted map data that is partially disclosed in accordance with a predetermined user authority regardless of who uses it. Thereby, even when the distributed encrypted map data is distributed from user to user, appropriate partial disclosure according to the authority of the user is possible.

  In the embodiment described above, the encrypted map data is transmitted from the map distribution device 150 to the map display device 160 by one-to-one communication. However, the present invention is not limited to such a method. The encrypted map data may be distributed using digital broadcasting. In such a case, the encrypted map data in an area corresponding to the position of the antenna that distributes data to the map display device 160 (with the antenna position as the center position) may be broadcast.

  In the case of such digital broadcasting, the map display device 160 receives encrypted map data without making a map distribution request, and uses a decryption key held in accordance with the user's authority to partially or entirely map the map. Can be decrypted. Moreover, according to such digital broadcasting, there exists an advantage that the structure of the map delivery apparatus 150 or the map display apparatus 160 can be simplified.

  In the embodiment described above, the layer is the unit of encryption. However, in addition to the layer, the map in one layer may be divided into regions and each may be used as the unit of encryption. Such a case can be dealt with by allocating the content delimiter information S_i to the divided areas.

  In the embodiment described above, the entire map is encrypted. However, the present invention is not limited to such an aspect, and only a part of the layer can be encrypted according to authority.

  Furthermore, it is possible to change the contents of the map based on the time and environment, and to make the map usable according to the user's authority. For this purpose, the map may be divided at portions that change in the map and encrypted for each portion divided by the method described above. At this time, there are a plurality of types of map portions in a certain divided portion, each of which is encrypted with a different encryption key, and a plurality of types of map portions are delivered together.

  In the embodiment described above, the case where there is one decryption key sk_j has been described for the sake of simplicity. However, even when a plurality of decryption keys are given, by repeating the process of step S31 in FIG. Decryption processing using a plurality of decryption keys can be performed.

  In the map display device 160, the decryption key is not necessarily stored in the decryption key storage area 162. For example, the decryption key is generated in a tamper-resistant device, and the map display device 160 Only the reference may be managed. This makes it difficult for a person who manages the map display device 160 to directly operate the decryption key, which is desirable from the viewpoint of security.

  In addition, as an example of use of the geographical information system 100 described above, for example, the map display device 160 is used for shoppers, passengers, employees, and the like who come to department stores, underground malls, stations, airports, business offices, and the like. It is assumed that the map is partially disclosed.

  In the present embodiment, a process for encrypting data so that it can be partially decrypted and a process for decrypting data so that it can be partially disclosed are described in detail in Japanese Patent Application Laid-Open No. 2007-251921.

  In the embodiment described above, an electronic map composed of a plurality of layers has been described as an example. However, the present invention is not limited to such an aspect, and for example, in image editing software using raster format data or vector format data. Layers are used, and the present invention can be applied to partially disclosing such data.

  The electronic map partially disclosed above includes, for example, an outdoor map, an indoor map, an underground shopping area map, an organization confidential map used only within the organization, and the like.

  In the embodiment described above, the object display of the object is changed using the first map display control rule table 133a and the second map display control rule table. However, the present invention is limited to such an aspect. For example, it is also possible to distribute the encrypted map data that has not been changed by the user's request.

  In the embodiment described above, each layer is encrypted with each common key, and the common key is encrypted with the encryption key for each authority. However, the present invention is not limited to this mode. For example, it is also possible to encrypt each layer with an encryption key corresponding to the authority to view the layer.

  In the embodiment described above, the generation and distribution of the encrypted map data are performed by the map source data holding device 110, the map creation device 120, the map processing device 130, and the map distribution device 150. However, the number of apparatuses can be increased or decreased by integrating or distributing the processes performed in these processes. For example, the processing performed by the map processing device 130 and the map distribution device 150 can be performed by a single device, and the processing performed by the map source data holding device 110 and the map creation device 120. It is also possible to carry out with one apparatus. Furthermore, the processing performed by the map source data holding device 110, the map creation device 120, the map processing device 130, and the map distribution device 150 can be performed by one device.

  In the embodiment described above, the map source data holding device 110, the map creation device 120, the map processing device 130, the map distribution device 150, and the map display device 160 perform information transmission / reception via the network 190. However, information transmitted and received by these devices can be stored in a storage medium and transferred.

Schematic diagram of geographic information system. Schematic of the map original data holding device. Schematic diagram of a computer. Schematic of a map creation device. Schematic diagram of an object table. Schematic of a map processing device. Schematic of a first map display control rule table. Schematic diagram of an authority encryption key table. Schematic of a disclosure management table. Schematic of a map distribution apparatus. Schematic of a map display device. The flowchart which shows the process at the time of a map display apparatus acquiring and displaying map data from a map delivery apparatus. The flowchart which shows the process at the time of encrypting map data in a drawing processing apparatus. Schematic of encrypted map data. The flowchart which shows the process which decodes encryption map data in a map display apparatus. Schematic which shows the usage example of a geographic information system. Schematic which shows the example at the time of the user who has the authority to browse a confidential area, and the user who does not have decrypted encryption map data.

Explanation of symbols

100 Geographic Information System 110 Map Source Data Holding Device 111 Storage Unit 113 Control Unit 116 Map Source Data Input Unit 116
115 Communication Unit 120 Map Making Device 121 Storage Unit 124 Control Unit 126 Input Unit 127 Output Unit 128 Communication Unit 130 Map Processing Device 131 Storage Unit 140 Control Unit 145 Input Unit 146 Output Unit 147 Communication Unit 150 Map Distribution Device 151 Storage Unit 153 Control Unit 155 input unit 156 output unit 157 communication unit 160 map display device 161 storage unit 168 control unit 174 input unit 175 output unit 176 communication unit 177 GPS unit 177

Claims (17)

A map processing device for encrypting map data composed of at least two parts,
Encryption key management information for authority that identifies the encryption key for each authority;
For each authority, disclosure management information that identifies the part to be disclosed in the authority,
A storage unit for storing the control unit, and a control unit,
The controller is
An encryption key for each authority is acquired from the authority encryption key management information, a part disclosed in the authority is specified from the disclosure management information, and information necessary for displaying the specified part is acquired. Encrypting with an encryption key,
A map processing device. The map processing apparatus according to claim 1,
The map processing apparatus characterized in that the information necessary for displaying the specified portion includes at least key information that can decrypt the partially encrypted data obtained by encrypting the portion. The map processing apparatus according to claim 1,
The map data is composed of at least two layers,
The portion is image data of an object arranged in each layer;
A map processing device. The map processing apparatus according to claim 1,
In the storage unit,
Stores a map display control rule for specifying a change process for changing the display of the part when a predetermined condition is satisfied,
The controller is
When it is determined that the situation information satisfies the condition, performing the process of changing the display of the portion by performing the change process;
A map processing device. The map processing device according to claim 4,
The situation information is information specifying at least one of the hobby, weather, and time of the user of the map data;
A map processing device. A program that causes a computer to function as a map processing device that encrypts map data composed of at least two parts,
The computer,
Encryption key management information for authority that identifies the encryption key for each authority;
For each authority, disclosure management information that identifies the part to be disclosed in the authority,
Function as storage means, control means,
In the control means,
An encryption key for each authority is acquired from the authority encryption key management information, a part disclosed in the authority is specified from the disclosure management information, and information necessary for displaying the specified part is acquired. Encrypting with an encryption key, and
A program characterized by The program according to claim 6,
The information necessary for displaying the specified portion includes at least key information that can decrypt the partially encrypted data obtained by encrypting the portion. The program according to claim 6,
The map data is composed of at least two layers,
The portion is image data of an object arranged in each layer;
A program characterized by The program according to claim 6,
In the storage means,
A map display control rule for specifying a change process for changing the display of the portion when a predetermined condition is satisfied is stored,
In the control means,
If it is determined that the situation information satisfies the condition, performing the process of changing the display of the portion by performing the change process;
A program characterized by The program according to claim 9, wherein
The situation information is information specifying at least one of the hobby, weather, and time of the user of the map data;
A program characterized by A map display device for displaying map data composed of at least two parts,
A decryption key according to the user's authority;
Information necessary for displaying the part to be disclosed in the authority, encrypted map data encrypted with an encryption key corresponding to the authority, and
A storage unit for storing the control unit, and a control unit,
The controller is
A process of decrypting the encrypted map data with the decryption key;
Among the information necessary for displaying the part disclosed in the authority, a process of generating a map image using information that can be decrypted with the decryption key;
Performing a process of displaying the generated display map image on the output unit,
A map display device characterized by the above. A geographic information system comprising a map processing device for encrypting map data composed of at least two parts, and a map display device for displaying map data,
The map processing device includes:
Encryption key management information for authority that identifies the encryption key for each authority;
For each authority, disclosure management information that identifies the part to be disclosed in the authority,
A storage unit for storing the control unit, and a control unit,
The control unit of the map processing device includes:
An encryption key for each authority is acquired from the authority encryption key management information, a part disclosed in the authority is specified from the disclosure management information, and information necessary for displaying the specified part is acquired. Encrypting with an encryption key,
Geographic information system characterized by A geographic information system according to claim 12, comprising:
The information necessary for displaying the specified portion includes at least key information capable of decrypting the partially encrypted data obtained by encrypting the portion. A geographic information system according to claim 12, comprising:
The map data is composed of at least two layers,
The portion is image data of an object arranged in each layer;
Geographic information system characterized by A geographic information system according to claim 12, comprising:
In the storage unit of the map processing device,
Stores a map display control rule for specifying a change process for changing the display of the part when a predetermined condition is satisfied,
The control unit of the map processing device includes:
If it is determined that the situation information satisfies the condition, performing the process of changing the display of the portion by performing the change process;
Geographic information system characterized by The geographic information system according to claim 15, comprising:
The situation information is information specifying at least one of the hobby, weather, and time of the user of the map data;
Geographic information system characterized by A geographic information system according to claim 12, comprising:
The map display device
A decryption key according to the user's authority;
The encrypted map data;
A storage unit for storing the control unit, and a control unit,
The control unit of the map display device includes:
A process of decrypting the encrypted map data with the decryption key;
Among the information required when displaying the part disclosed in the authority, using the information that can be decrypted with the decryption key, a process of generating a map image,
Performing a process of displaying the generated display map image on the output unit,
Geographic information system characterized by

Images