JP2012164111A - Access management system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an access management system which enables strict access history management without imposing excessive burden on users when log-on authentication is performed.SOLUTION: An access management system is accessible by multiple users with different authority and manages log-on authentication and access authority of each user. The access management system comprises: user registration means which can register records including user names, passwords and access authority; access authority setting means for setting operational commands for access authority; and access restriction means which applies an inputted user name and password to the user registration means to determine wether or not the user name and password is authenticated, stores the name of authenticated user when the user name and password is authenticated, applies access authority corresponding to the stored name to the access authority setting means and does not permit commands other than those approved by the authenticated user. The access authority setting means sets operational commands so that there is no overlap in the operational commands of different access authority, and log-on authentication management means manages the maximum number of users which can be log-on authenticated for one access authority to be one.

Description

  The present invention relates to an access management system when a plurality of users access an analysis apparatus or the like.

As analytical devices and clinical testing devices are routinely used for quality control of industrial products and pharmaceuticals, medical diagnosis, and the like, there is a strong demand for an analysis system that guarantees the validity of analysis results obtained by the devices. For example, federal regulations (21 CFRpart 11 of the US FDA) require an audit trail function that automatically records user-created, modified, and deleted operations for quality assurance systems for drug development. Yes. In addition, ISO15189 (established in 2003), which is an international standard for quality management systems in clinical laboratories, provides recommendations for protection of laboratory information systems.
(1) Information facilities and computer programs must be protected from access by unauthorized persons.
(2) Establish a strict policy on who can use the computer system in which state, and (3) The laboratory will include all individuals who have entered or modified patient data, management files, or computer programs. Must be identifiable,
Demands.

The clinical laboratory information management system disclosed in Patent Document 1 is
Administrator authority with execution authority for all functions,
Manager authority with all authority except the authority to release the approval of inspection results,
Power operator authority to handle inspection work menu and setting menu,
Operator authority that can handle inspection work menu, guest authority that can only check inspection data,
Is provided for each operator's ID, and has a function of storing a history of the approved or corrected inspection results together with the operator's ID. The automatic analysis system disclosed in Patent Document 2 includes means for confirming the approver's ID before approving the analysis result, thereby enabling accurate recording of the approver of the analysis result.

Japanese Patent Laid-Open No. 2001-076060 JP 2009-250656 A

  When the logon authentication procedure that requires the user to enter a password when logging on to the system is strictly applied in the system disclosed in Patent Document 1, another user accesses the system regardless of whether or not the access authority is the same. In this case, it is necessary to log off / log on each time, which causes an excessive burden on the busy laboratory staff. In addition, after the higher authority authorized to log on and change the settings, there was a risk of inducing an efficiency-priority illegal omission such that the lower authority would continue to use it with the upper authority. .

  On the other hand, when the system disclosed in Patent Document 2 is used, the places that require approval are assumed to be daily inspection approval, calibration curve approval, accuracy control result approval, sample measurement result approval, etc. Each of these approvals requires an individual ID confirmation (password entry) for the approver, and as with the system disclosed in Patent Document 1, there is a problem that imposes an excessive burden on the busy laboratory staff. It was. Note that Patent Document 2 discloses that the approval operations are reduced by consolidating the approval operations on one screen. However, since there is a problem in the amount of information necessary for approval and the timing of approval, Is expected to be difficult to operate.

  Therefore, an object of the present invention is to provide an access management system that can manage a strict access history without imposing an excessive burden on a user during logon authentication.

  This invention made | formed in view of the said subject includes the following aspects.

The first aspect of the present invention is:
An access management system for managing logon authentication and access authority of each user in a device accessible by a plurality of users having different authorities,
A user registration means capable of registering, for each user, a record including the name of each user, the password set by each user, and the access authority possessed by each user;
An access right setting means for setting an operable command in the access right;
Logon authentication management means for applying the user name and password input at the time of logon to the user registration means to determine whether or not logon authentication is possible, and storing the name as an authenticated user when authenticating,
An access restriction unit that applies an access right corresponding to the name stored in the logon authentication management unit to the access right setting unit, and does not permit an authenticated user to perform an operation other than a command set to be operable by the access right setting unit. When,
And having
The access right setting means is set so that commands that can be operated with different access rights do not overlap each other,
The logon authentication management means manages a user who can perform logon authentication so that there is a maximum of one person for one access authority.
Said system.

The second aspect of the present invention is:
Logon display means for displaying a logon state by an authenticated user corresponding to the name stored in the logon authentication management means;
Logon recording means for recording a logon state by the authenticated user together with an operation log that is a history of commands;
The system according to the first aspect, further comprising:

The third aspect of the present invention is:
The system according to the first or second aspect is an access management system for an analyzer.
The command includes one or more of a measurement operation command group, an approval operation command group, and a management operation command group,
Said system.

  In the present invention, the analyzer includes all instrumental analyzes that perform qualitative / quantitative analysis of one or more specific components contained in a measurement sample. As an example, biochemical analyzers and immunological analyzers, genetic diagnostic devices, chromatographic devices, and other physicochemical analyses, which are used in clinical tests, industrial product / pharmaceutical / food analysis, factory and process process management, environmental analysis, etc. Equipment.

The system of the present invention
Manages the logon authentication and access authority of each user in a device that can be accessed by a plurality of users having different authorities, and includes the user name, each user name, the password set by each user, and the access authority each user has. A user registration unit that can register a record for each user, an access right setting unit that sets an operable command for the access right, and a user name and password input at logon are applied to the user registration unit. When authenticating by determining whether or not logon authentication is possible, an authentication user who stores the name as an authenticated user and an access user corresponding to the name stored in the logon authentication management unit is applied to the access right setting unit. Is set to be operable by the access right setting means And access limiting means does not allow operations other than command, with a, an access management system,
The access right setting means is set so that commands that can be operated with different access rights do not overlap with each other, and the logon authentication management means manages a user who can perform logon authentication so that there is at most one user for one access right. It is characterized by that. With the system, it is possible to uniquely identify who is the user who has operated a specific command.

  In the system of the present invention, when the user switches to a user having the same access authority after operating a specific command, a new logon authentication of the user is required. On the other hand, when switching to a user having a different access authority, a state where logon authentication is performed concurrently is allowed. In the system of the present invention, an authenticated user having access authority to a specific command can log on / off independently of an authenticated user having different access authority. That is, the authenticated user is permitted to acquire logon authentication in parallel from the standpoint of the user having each access authority. Therefore, for example, when the measurement operator (operator) logs on again after the end of the operation for approving the inspection result by the user having the approver authority, or when the measurement result is approved by the user having the authority of the approver, The system of the present invention can avoid the trouble of logging on again by the user having the approver authority.

  In addition, the system of the present invention is, for example, for the purpose of preventing an approval operation pretending to be a user having an approver authority, after the approval operation is completed, the user having the approver authority logs off each time or Even if an operation that automatically logs off in a certain time is adopted, it is possible to avoid the trouble that the measurer logs on again. Therefore, after a user having higher authority such as approver authority or administrator authority performs approval, editing, setting change operation, etc., the user who has only the lower authority (for example, measurer authority) with the above upper authority Therefore, it is possible to prevent an illegal omission with priority given to efficiency, for example, so that an apparatus (for example, an analysis apparatus) provided with the system of the present invention can be correctly operated.

The figure which shows an example of the user registration screen in the system of this invention The figure which shows an example of the access right setting screen in the system of this invention. The figure which shows an example of a logon authentication screen. The figure which shows an example of the user name display of a logon state. The figure which shows an example of an inspection result approval screen. The figure which shows an example of a calibration curve approval screen. The figure which shows an example of a measurement result approval screen. The figure which shows the logoff screen by manual.

  Hereinafter, the present invention will be described in more detail with reference to the drawings, taking an automatic analyzer as an example.

  An example of user registration means (user registration screen) in the system of the present invention is shown in FIG. The user registration means shown in FIG. 1 is composed of records including a user name (user name), password, and authority (access authority) for each registered user. In the case of FIG. 1, the authority “system administrator” is assigned to the user name “Administrator”, and the authority “approver” is assigned to the user name “Auditor” “Operator 1 · 2 · 3”. The authority “operator” is registered for each user name. In FIG. 1, the password field is blank, but in practice, a password with unreadable display is registered in the user registration means. As shown in FIG. 1, for the convenience of operation, a column in which a comment can be entered for each registered user may be provided as necessary.

An example of access right setting means (access right setting screen) in the system of the present invention is shown in FIG. In the access right setting means shown in FIG.
The “operator” has the operation authority for daily inspection, calibration curve (calibration) measurement, QC (accuracy control) material registration and measurement, sample measurement, and end processing (collectively referred to as measurement operation command group). Have
“Approver” has the authority to approve inspection results, approve calibration curves (calibration), approve quality control results, and approve sample measurement results (collectively referred to as approval operation command group). ,
The “administrator” has the operation authority to add and edit item parameters, change the system environment, and log on user management (edit user registration means) (collectively referred to as a management operation command group).
As shown in FIG. 2, the access authority that can operate the measurement operation command group, the access authority that can operate the approval operation command group, and the access authority that can operate the management operation command group do not overlap each other. Therefore, the access authority of the user who can operate the command group is uniquely determined.

  An example of the logon authentication screen is shown in FIG. A box for entering a password is provided for each of a user having operator authority (operator name), a user having approver authority (approver name), and a user having system administrator authority (system administrator name). Yes. In the logon authentication screen shown in FIG. 3, the operator name, the approver name, and the system administrator name are selected from a maximum of one user (user name) registered in advance by the user registration means (FIG. 1). It can be selected and input. The logon authentication management means determines whether or not logon authentication is possible by applying the user name and password selected and input on the logon authentication screen to the user registration means, and stores the authentication user name when authenticating. The system of the present invention may further comprise a logon display means for displaying a logon status by the stored authentication user name. As an example, a screen displaying the operator name and the approver name on the title bar is shown. 4 shows.

  An example of the inspection result approval screen is shown in FIG. In the approval screen shown in FIG. 5, a user having an approver authority can give approval to the result of daily inspection by checking a check box for confirmation attached to each column.

  An example of a calibration curve approval screen is shown in FIG. In the approval screen shown in FIG. 6, a confirmation dialog for confirming a calibration curve for a specific measurement item and lot is displayed. By selecting “Yes”, the calibration curve can be approved. .

  An example of the measurement result approval screen is shown in FIG. The approval screen shown in FIG. 7 approves the “Final” button to confirm as valid data, the “Reject” button to be invalid data, and the flag attached to the measurement result for the measurement result in the selected range. A confirmation dialog with a “Delete Flag” button to delete based on the responsibility of the operator is displayed. Approval / invalidation of the measurement result and deletion of the flag can be performed by selecting from these dialogs as appropriate. Can be done. In the approval operation, the system may be set to automatically log off when there are no unapproved measurement results.

  In the system of the present invention, after a user having an approver authority logs on, a user having an approver authority manually logs off (FIG. 8) in order to prevent impersonation approval by a user having only operator authority. It can also be operated so that it can be separated from the analyzer, and can also be operated so that it automatically logs off at a fixed time after the end of the approval operation.

  The setting of the access right for a specific command is the setting shown in FIG. 2, and the users who can log on and authenticate are a user having only administrator authority, a user having only approver authority, and a user having only operator authority. In this case, the impersonation approval can be made by either a user having only administrator authority or a user having only operator authority. In this case, even if the user who has only the approver authority forgets to log off, and even if the impersonation approval is performed by another user, the logon recording means for recording the logon state by the authenticated user together with the operation log that is the history of the command. If the system of the present invention is provided, the approval operation (operation log) is recorded together with the approver name and the operation time, and a user having the approver authority can check the log. Therefore, if the user who has the approver authority manages the approval place which should be performed, it will become clear that the impersonation approval was performed.

Claims (3)

An access management system for managing logon authentication and access authority of each user in a device accessible by a plurality of users having different authorities,
A user registration means capable of registering, for each user, a record including the name of each user, the password set by each user, and the access authority possessed by each user;
An access right setting means for setting an operable command in the access right;
Logon authentication management means for applying the user name and password input at the time of logon to the user registration means to determine whether or not logon authentication is possible, and storing the name as an authenticated user when authenticating,
An access restriction unit that applies an access right corresponding to the name stored in the logon authentication management unit to the access right setting unit, and does not permit an authenticated user to perform an operation other than a command set to be operable by the access right setting unit. When,
And having
The access right setting means is set so that commands that can be operated with different access rights do not overlap each other,
The logon authentication management means manages a user who can perform logon authentication so that there is a maximum of one person for one access authority.
Said system. Logon display means for displaying a logon state by an authenticated user corresponding to the name stored in the logon authentication management means;
Logon recording means for recording a logon state by the authenticated user together with an operation log that is a history of commands;
The system of claim 1, further comprising: The system according to claim 1 or 2 is an access management system for an analyzer.
The command includes one or more of a measurement operation command group, an approval operation command group, and a management operation command group,
Said system.

Images