JP4483816B2 - Portable terminal device and program - Google Patents

Description

The present invention relates to a portable terminal device and a program capable of browsing a plurality of information.

In this type of mobile terminal device with security function, the security lock is released on condition that a password is entered in order to prevent use by anyone other than the user. In order to put a heavy burden on the user, in the past, for example, by registering the operation status of a legitimate user, it is confirmed whether the operation is performed by the user himself or a third party, and the operation by the third party is performed. Then, a technique for applying a security lock is known (see Patent Document 1).
JP 2001-92783 A

 However, in this prior art, since the user's operation status is not registered at the initial use immediately after purchase, it cannot be confirmed whether the operation is an unauthorized operation by a third party, and is different from the normal operation. There was a problem that the security lock was applied only by performing the operation.

 By the way, if confidential information such as address book, incoming call history, schedule book, etc. is stolen by a third party by unauthorized operation, for example, the person himself / herself stood with his / her mobile terminal on the desk etc. This is the case. In such a case, an unauthorized operator tries to see a lot of information at once by accessing the address book etc., but if the user himself / herself accesses the address book etc. many times, There should be little operation.

An object of the present invention is to ensure that only unauthorized browsing by an unauthorized user can be reliably prevented without disturbing browsing by regular use when browsing a plurality of pieces of information .

The invention described in claim 1 is an information storage means for storing a plurality of pieces of information, and whether or not the selected information is browsed information that has already been browsed when the information is arbitrarily selected and browsed. First discriminating means for discriminating whether or not, second discriminating means for discriminating whether or not the information has been browsed continuously for a predetermined number or more, and browsing the information discriminated to be browsed for the predetermined number or more. And restricting means for restricting the browsing when it is determined that it has been performed.
Furthermore, a program for realizing the main functions shown in the invention described in claim 1 is provided to the computer (the invention described in claim 6 ).

The invention according to claim 2 is an information storage means for storing a plurality of pieces of information, a date and time when the browsing object information selected this time is stored when browsing each information arbitrarily selected, and previous browsing object information And a first discriminating means for discriminating whether or not the time difference between the compared storage dates and times is a time difference of a predetermined time or more, and browsing the information continuously for a predetermined number or more. A second discriminating unit for discriminating whether or not, and a limiting unit for limiting the browsing when it is determined that the information in which the time difference between each information is equal to or longer than a predetermined time is browsed continuously for the predetermined number or more, It is characterized by comprising.
Furthermore, a program for realizing the main functions shown in the invention described in claim 2 is provided to the computer (the invention described in claim 7 ).

Prior to the restriction by the restriction means, an authentication means is provided for requesting an authentication operation from the operator and executing user authentication processing based on the user information input in response thereto. As a result of the authentication processing by the authentication means, if browsing operation by an authorized user, and enables subsequent browsing operation, if browsing operation by a third party, to set the security status for disabling the subsequent browse operation (the invention of claim 3 ).

Address book function for storing and managing information related to communication partners, schedule function for storing and managing preset schedule information, incoming call history function for recording and managing incoming call history, outgoing call history function for storing and managing outgoing call history, storing outgoing mail A mobile terminal device having a send mail function for managing, a received mail function for storing and managing received mail, and a file function for storing and managing various file information, wherein the information is arbitrarily designated from the various functions This information is managed by this designated function for each function (the invention according to claim 4 ).
In this case, the predetermined number may be arbitrarily set for each of the designated functions (the invention according to claim 5 ).

According to this invention, when browsing a plurality of information, it is possible to reliably prevent only unauthorized browsing by an unauthorized user without hindering browsing by regular use.

Embodiments of the present invention will be described below with reference to FIGS.
This embodiment exemplifies a case where the present invention is applied to a mobile phone device as a mobile terminal device, and FIG. 1 is a block diagram showing basic components of the mobile phone device.
In addition to a telephone call function, an e-mail function, an Internet connection function (Web access function), etc., this cellular phone device has an address book function for storing and managing information related to a communication partner as a data management function, and preset schedule information. Schedule book function for memory management, call history function for recording and managing call history, outgoing mail function for storing and managing outgoing mail, incoming mail function for storing and managing incoming mail, folder function for storing and managing various files such as images, etc. Is provided.

  The CPU 1 is a central central processing unit that controls the overall operation of the mobile phone device according to various programs in the storage unit 2. In addition to the main CPU 1, the mobile phone device includes a plurality of functions according to functions. The sub CPU (not shown) is included. The storage unit 2 is a non-volatile memory (internal memory), which is configured by, for example, a flash memory, and has a program area and a data area, and the operation shown in FIGS. A program for realizing the present embodiment is stored according to the procedure.

  The data area of the storage unit 2 includes an address book ADT, a schedule book SDT, a received mail folder RMF, an outgoing mail folder TMF, a call history (incoming history / outgoing history) CAR, an image folder POF, other folders OTF, browsing The availability condition setting table IPT and the like are stored. The recording medium 3 is a removable portable memory that supplies image data, various data, programs, and the like to the outside. The recording medium 3 includes, for example, smart media, an IC card, and the like. The memory 4 is an internal memory having a work area, and is composed of, for example, DRAM, SDRAM (Synchronous DRAM) or the like. The memory 4 is provided with a browsing number counter CT and a browsing time timer TM which will be described later.

  The telephone communication unit 5 constitutes a mobile phone communication function. After the signal is received from the receiving side of the transmission / reception unit (baseband unit) connected to the antenna 5A and demodulated into a reception baseband signal, the acoustic control unit 6, the voice is output from the reception speaker 7. In addition, the telephone communication unit 5 takes in the voice data input from the transmission microphone 8 from the acoustic control unit 6, encodes it into a transmission baseband signal, gives it to the transmission side of the transmission / reception unit, and outputs the transmission from the antenna 5 </ b> A. Let On the other hand, the display data received and acquired via the telephone communication unit 5 by the mail transmission / reception function and the Web access function is given to the main display unit 10 having an LCD (liquid crystal display device) or the like via the display control unit 9 for display. Is output.

  The main display unit 10 displays character information, image data, various messages, and the like with high quality, and the sub display unit 11 provided on the back side of the apparatus main body displays the current date and time, simple messages, icons, and the like. . The key operation unit 12 performs dial input, character input, command input, and the like. The CPU 1 executes processing according to a key input signal from the key operation unit 12. The notification unit 13 includes a speaker for notification of incoming call notification, an LED (light emitting diode), and a vibration motor. The notification unit 13 is driven when an incoming call / mail is received, and is also driven when an alarm is notified. The camera imaging unit 14 can shoot moving images in addition to still images. In addition to a photographing lens, a mirror / lens block such as a mirror, an imaging device, and a driving system thereof, a distance measuring sensor, a light amount sensor, an analog processing circuit A signal processing circuit, a compression / decompression circuit, and the like for adjusting and controlling the optical zoom and controlling drive control, shutter drive control, exposure, white balance, and the like during autofocus.

FIG. 2 is a diagram showing the contents of the received mail folder RMF.
The received mail folder RMF stores and manages each item of “viewed flag” in addition to the “sender” and “reception date / time” every time a mail is received. Is turned “ON” when browsing “”, indicating that the corresponding received mail has been browsed (opened) by the user. Here, when a predetermined number or more (for example, 10 or more) of the received received mails are viewed at a time, it is recognized that there is a high probability of unauthorized operation by a third party, but the received mails are continuous. Even if it is viewed manually, if it is unopened mail (mail that has not been viewed), there is a high possibility of legitimate users viewing the mail. I am doing so.

FIG. 3 is a diagram showing the contents of the outgoing mail folder TMF.
The transmission mail folder TMF stores and manages each item of “transmission date and time” in addition to its “destination” and “title” every time an email is transmitted. "Second" information, indicating the date and time when the mail was sent. Here, for example, when a legitimate user sends 10 emails within 10 minutes, that is, when many emails are sent in a short time, these emails are sent after sending the email. However, it is not common to browse one month's outgoing mail at a time. Therefore, it is not considered an unauthorized operation for continuous viewing of outgoing emails whose “sent date / time” is close in time, but when more than a predetermined number of outgoing emails whose “sent date / time” is separated in time are viewed, It is assumed that there is a high probability of unauthorized operation by a third party.

  When the probability of unauthorized operation is high in this way, the CPU 1 requests the operator to input a password for user authentication, determines whether the user is a legitimate user based on the input password, and the legitimate user. If the user is not a legitimate user, the security lock state is set because the possibility of an unauthorized operator by a third party is high. The security lock state is, for example, a state where the entire terminal is inoperable or a state where information browsing is prohibited.

FIG. 4 is a diagram showing the contents of the browsing permission / inhibition condition setting table IPT.
The browsing permission condition setting table IPT includes “address book”, “sent mail”, “received mail”, “schedule book”, “call history”, “image folder”, and “other folders” as various application functions. Corresponding to the application function arbitrarily specified from the inside, it is configured to be able to arbitrarily set a condition for determining whether or not browsing is possible, in other words, a condition for requesting user authentication. , “Continuous browsing time” and “Time difference”.

  “Continuous browsing number”, “Continuous browsing time”, and “Time difference” indicate that when multiple pieces of information are browsed continuously at the same time, that is, information exceeding the predetermined number indicated by “Continuous browsing number” This is a condition for requesting an authentication operation to the operator, assuming that the probability of an unauthorized operation by a third party is high when continuously viewed within a short time indicated by “time”. Here, the browsing number counter CT in the memory 4 is counted up every time information is browsed one by one. The CPU 1 compares the contents of the browsing number counter CT with the “continuous browsing number”. Thus, it is recognized whether or not information of a predetermined number or more has been browsed. The browsing time timer TM elapses from the time when the first information is browsed until the current time, and the CPU 1 determines the predetermined time by comparing the contents of the browsing time timer TM with the “continuous browsing time”. It recognizes whether information more than the number of items has been viewed once (short time).

  The “continuous browsing time” is counted by the browsing time timer TM in the memory 4. “Continuous browsing number” is an indispensable item, but “continuous browsing time” and “time difference” are optional items that are arbitrarily set as necessary, and these are AND conditions (logical product conditions). ing. In the figure, “-” indicates that the condition data is not set. “Time difference” indicates the time difference of “sent date / time” between outgoing emails when the outgoing emails are viewed continuously. If these “sent date / time” are separated in time, the probability of unauthorized operation is high. Although it is presumed to be something, if it is close, it is a condition value for preventing it from being regarded as an unauthorized operation.

  In the browsing enable / disable condition setting table IPT in the example shown in the figure, “5” for “continuous browsing”, “5 minutes” for “continuous browsing time”, and “5 minutes” for “time difference” corresponding to “address book”. -”Is set. Corresponding to “Sent mail”, “10” is set in “Number of continuous browsing” and “−” is set in “Continuous browsing time” and “Time difference”. Thus, “10” is set in “Number of continuous browsing”, “−” is set in “Continuous browsing time”, and “10 minutes” is set in “Time difference”.

  Next, the operation concept of the mobile phone device in this embodiment will be described with reference to the flowcharts shown in FIGS. Here, each function described in these flowcharts is stored in the form of a readable program code, and operations according to the program code are sequentially executed. In addition, the operation according to the above-described program code transmitted via the transmission medium can be sequentially executed. In other words, in addition to the recording medium, an operation peculiar to this embodiment can be executed by using a program / data supplied externally via a transmission medium.

5 to 8 are flowcharts showing the overall operation of the mobile phone device that is started to be executed when the power is turned on, and FIG. 9 shows the user authentication process / authentication result handling process shown in FIGS. This is a subroutine for detailed description.
First, the CPU 1 activates the telephone communication unit 5 to perform a location registration response via the nearest base station constituting the public mobile telephone network (mobile communication network), thereby allowing the exchange (the mobile phone) The current position is registered and a standby state is entered (step A1). In this standby state, the CPU 11 checks whether there is an incoming call or mail (step A2), and checks whether there is an operation (step A4).

 When it is detected that there is an incoming call or an incoming mail (YES in step A2), the notification unit 13 is driven to perform an incoming call notification, a call process or an incoming mail incoming process is executed (step A3), and an operation is detected. If so (YES in step A4), it is checked whether activation of a private use application such as address book display or mail display is instructed (step A5), and if it is another instruction operation (in step A5) NO), it is checked whether or not a process for setting the required condition is instructed in the browsing permission / prohibition condition setting table IPT (step A6).

 When an operation other than activation of a private application or setting of authentication request conditions is performed (NO in step A6), for example, camera shooting processing, mail creation processing, etc. are executed as the operation corresponding processing. However (step A8), when the condition setting in the browsing permission condition setting table IPT is instructed, the process proceeds to step A7, where “address book”, “sent mail”, “received mail”, “schedule book”, Processing to arbitrarily set “Number of continuous browsing”, “Continuous browsing time” and “Time difference” corresponding to the application arbitrarily specified from “Call history”, “Image folder”, “Other folder” After that, the process returns to step A1 and enters a standby state.

 When the activation of a private application such as address book display or mail display is instructed (YES in step A5), initialization processing for turning off the “authenticated flag” set in the memory 4 is performed (step A9). ). This “authenticated flag” indicates that there is a high probability of unauthorized operation by a third party when information of a predetermined number or more is continuously viewed within a short period of time. This flag is turned on when the user is authenticated. Then, the flow proceeds to the flow of FIG. 6 to check whether the activation of “address book display” is instructed as a private use application (step A10). When “address book display” is instructed, the address book ADT is displayed. Open (step A11), and display and output the name list (step A12).

 FIG. 10A shows the name list screen. When an arbitrary name is selected and designated from the list screen (step A13), detailed address information is displayed and output (step A14). FIG. 10B shows an address detail screen when “Mr. A” is selected from the name list screen. “Name”, “phone number”, “address”, “mail address”, “face photo” The personal information such as is displayed in detail. When the first address detailed information is browsed after the address book ADT is opened in this way, the browsing number counter CT in the memory 4 is reset and the time counting operation of the browsing time timer TM is started (step) A15).

 If there is any operation in the state where the address detail screen is displayed (YES in step A16), it is checked whether it is the next selection operation for selecting the next address information (step A17). Then, it is checked whether the operation is an end operation for instructing the end of the application (step A18). Here, when the end operation is performed, the process returns to the standby state as it is (step A1 in FIG. 5). However, if the operation is other than the end operation (NO in step A18), as the operation corresponding process, for example, Information editing processing or the like is performed (step A19).

 If it is a next address selection operation (YES in step A17), it is checked whether or not the “authenticated flag” is turned on (step A20), but since the “authenticated flag” is turned off first, step A21 Next, the value is updated by adding “1” to the value of the browsing number counter CT. As a result, the contents of the browsing number counter CT are updated from the initial value “1” to “2”. Then, the “consecutive browsing number: 5” corresponding to the designated application “address book” is read from the browsing enable / disable condition setting table IPT, and the “continuous browsing number” is compared with the value of the browsing number counter CT to compare the browsing number counter. It is checked whether the value of CT is equal to or greater than “the number of continuous browsing” (step A22). Now, the value of the number of browsing counter CT is “2” and “the number of continuous browsing” is “5”. Since it is not recognized as an unauthorized operation by the user, the process proceeds to step A25, where the detailed address information specified by the above-described next selection operation is read and switched and displayed, and then the operation is waited (step A16).

 When the detailed information is being browsed while sequentially selecting the contents of the address book ADT one by one in this way, when five addresses that are “the number of continuous browsing” are selected (YES in step A17). Since the value of the browsing number counter CT is “5”, which is equal to or greater than “the number of continuous browsing”, this is detected in step A22 and the process proceeds to step A23, and the CPU 1 reads the measurement time from the browsing time timer TM. At the same time, the “continuous browsing time: 5 minutes” corresponding to the designated application “address book” is read from the browsing availability condition setting table IPT, and the “continuous browsing time” is compared with the measured time of the browsing time timer TM to measure the time. Checks if it is within "continuous browsing time".

 If the measurement time of the browsing time timer TM is “10 minutes”, it has exceeded “5 minutes” of the “continuous browsing time”. Therefore, it is determined that there is a high possibility that the user himself / herself is browsing, and after moving to step A25, the detailed address information specified by the above-described next address selection operation is read and displayed, and the operation waiting state is set. However, if the measurement time of the browsing time timer TM is within the “continuous browsing time” (YES in step A23), the operator is a legitimate user because the possibility of unauthorized operation by a third party is high. In order to confirm whether or not, the process proceeds to step A24 to execute user authentication processing.

FIG. 9 is a flowchart detailing the user authentication process.
First, the CPU 1 displays a pop-up message requesting password input to request an authentication operation from the operator (step B1). FIG. 10C shows a password request screen, and a password input area (not shown) is provided in this screen. When a password is input in response to this input request (step B2), the CPU 1 reads a registered password set and registered in advance by the authorized user, and compares this registered password with the input password (step S2). B3), it is determined whether or not the operator is a legitimate user (step B4).

 If a match between both passwords is detected (YES in step B4), it is determined that the authorized user is browsing information, and the “user authenticated flag” is turned on to enable subsequent browsing of information. (Step B5). Then, the browsing number counter CT is reset and the browsing time timer TM is cleared and started (step B6). Then, the process proceeds to step B25 in FIG. Hereinafter, every time the next selection operation is performed, since it is detected in step A20 that the “user authenticated flag” is turned on, the detailed information is switched and displayed. Here, when an application ending operation is performed (YES in step B18), the above standby state is restored (step B1 in FIG. 5). On the other hand, if a mismatch between the two passwords is detected (NO in step B4 in FIG. 9), it is determined that there is a high possibility of an unauthorized operation by a third party, and the security lock state such as disabling the entire terminal Set to.

 On the other hand, when activation of “mail display” is instructed as a private use application (YES in step A26 in FIG. 7), a message requesting selection of a display target folder is displayed and the user is responded to it. When a folder is selected by operation (step A27), it is checked whether the received mail folder RMF is selected or the transmitted mail folder TMF is selected (step A28). Here, when the received mail folder RMF is selected, the contents of the received mail folder RMF are opened and displayed (step A29), the browsing number counter CT is reset (step A30), and the operation is waited for (step A30). Step A31).

 Here, if any operation is performed, it is checked whether an e-mail selection operation for browsing the e-mail content is performed (step A32) or an e-mail display end operation is performed (step A33). (NO in step A33) As the processing corresponding to the operation, for example, processing such as mail deletion is performed (step A34). Now, when a mail selection operation is performed (YES in step A32), the on / off state of the “authenticated flag” is checked (step A35), but since the “authenticated flag” is initially turned off, Moving to A36, the received mail folder RMF is referred to, and it is checked whether or not the selected mail has been browsed based on ON / OFF of the “viewed flag” corresponding to the selected mail.

 If the selected mail has not been browsed (NO in step A36), the corresponding “viewed flag” is turned on (step A37), but if it has been browsed (YES in step A36), the value is set to the number of browsing counter CT. After adding “1” (step A38), the “continuous browsing number: 10” corresponding to the designated application “received mail” is read from the browsing permission condition setting table IPT, and the “continuous browsing number” and the browsing number counter CT are read. By comparing with the value, it is checked whether the value of the browsing number counter CT is equal to or greater than the “continuous browsing number” (step A39). If the value of the browsing number counter CT is less than the “continuous browsing number”, the process proceeds to step A40, the details of the selected mail are displayed, and then the process returns to step A31 to wait for an operation. Hereinafter, when the value of the browsing number counter CT reaches “continuous browsing number” or more by several mail selection operations (YES in step A39), the above-described user authentication is performed because the possibility of unauthorized operation by a third party is high. The process proceeds to execution (step A41).

 Even in the user authentication process in this case, when the authorized user is browsing the mail by detecting the password match, after returning to step A40 and displaying the details of the selected mail in order to enable subsequent mail browsing, Then, the operation waits (step A31), and each time a mail selection operation is performed, it is switched to the detailed information of the mail. Thereafter, when an application ending operation is performed (YES in step A33), the process returns to the standby state described above (step A1 in FIG. 5). On the other hand, if a mismatch between the two passwords is detected, it is determined that the operation is unauthorized by a third party, and the security lock state is set such that the entire terminal is disabled.

 If the transmission mail folder TMF is selected when the above mail folder is selected (NO in step A28), the process proceeds to the flow of FIG. 8 and the contents of the transmission mail folder TMF are displayed open (step A43). Then, the browsing number counter CT is reset (step A44), and the operation is waited (step A45). When any operation is performed, it is checked whether an email selection operation for browsing the email content is performed (step A46) or an email display end operation is performed (step A47). For example, processing such as e-mail deletion is performed as the operation corresponding processing (step A48).

 If an email selection operation has been performed (YES in step A46), the on / off state of the “authenticated flag” is checked (step A49), but since the “authenticated flag” is initially off, The process moves to step A50, and the presence / absence of the mail read just before is checked. Now, since there is no mail that has been browsed immediately before in the first case, the process proceeds to step A55, and after displaying the details of the selected mail in detail, the operation waits (step A45). And since there is a previous read mail when browsing the second and subsequent mails, the "sent date" set corresponding to this previous read mail and the current selected mail is read from the outgoing mail folder TMF and compared. In addition to calculating the time difference between them, the “time difference: 10 minutes” corresponding to the designated application “sent mail” is read from the browsing permission condition setting table IPT, and the calculated time difference is compared with the set time difference (step A51), it is checked whether the calculated time difference is greater than the set time difference (step A52).

  That is, the “time difference” is a time difference of “transmission date and time” between the respective transmission emails when the transmission email is continuously browsed as described above. When it is close in time, that is, when a predetermined number or more of emails are sent sequentially within a short period of time, the user is more likely to view the contents of each email after sending the email. Even if near-sent emails are viewed continuously, it is not regarded as an unauthorized operation. However, if more than a predetermined number of sent emails whose “sent date / time” are separated in time are viewed sequentially, an unauthorized operation by a third party is performed. The probability of. Therefore, the calculated time difference is compared with the set time difference in order to confirm whether the browsing operation is performed by the authorized user.

  As a result, if the calculated time difference is equal to or greater than the set time difference and the transmitted mails whose transmission dates are separated are continuously viewed (YES in step A52), “1” is added to the value of the browsing number counter CT (step A53). ), “Number of continuous browsing: 10” corresponding to the designated application “sent mail” is read from the browsing permission condition setting table IPT, and the “Number of continuous browsing” is compared with the value of the browsing number counter CT to compare the number of browsing counters. It is checked whether the CT value is equal to or greater than the “number of continuous browsing” (step A54). If the value of the browsing number counter CT is less than “the number of continuous browsing”, the process proceeds to step A55, the contents of the selected mail are displayed in detail, and then the process returns to step A45 to wait for an operation. Hereinafter, when the value of the number of browsing counter CT reaches “the number of continuous browsing” or more by several mail selection operations (YES in step A54), the above-mentioned user authentication is performed because the possibility of an unauthorized operation by a third party is high. The process proceeds (step A56).

 Even in the user authentication process in this case, when the authorized user is browsing the mail by detecting the password match, after returning to step A55 and displaying the details of the selected mail in order to enable subsequent mail browsing, Then, the operation waits (step A45), and each time the mail selection operation is performed, the detailed information of the mail is switched and displayed. Thereafter, when an application ending operation is performed (YES in step A47), the above standby state is restored (step A1 in FIG. 5). On the other hand, if a mismatch between the two passwords is detected, it is determined that the operation is unauthorized by a third party, and the security lock state is set such that the entire terminal is disabled.

 On the other hand, when activation other than “address book display” and “mail display” is instructed as a private use application (NO in step A10 in FIG. 6 and NO in step A26 in FIG. 7), the process proceeds to an operation handling process. (Step A42). In this case, when activation of “schedule display”, “call history”, and “image folder” is instructed, basically the same operation as in the case of “address book display” is performed. Is called. That is, when information browsing is started, the measurement operation of the browsing time timer TM is started and the value of the browsing number counter CT is updated every time information is browsed one by one. It is determined whether the count value has reached or exceeded the number of “continuous browsing” by the time the “browsing time” is reached. A user authentication process similar to that described above is performed as high.

 As described above, in this embodiment, the CPU 1 refers to the “continuous browsing number” set in the browsing permission condition setting table IPT when browsing information such as a mail folder, a schedule book, and an address book. It is determined whether or not a continuous browsing operation for continuously browsing information of a predetermined number or more indicated by “number” has been performed, and if a continuous browsing operation is performed, the probability of unauthorized operation by a third party is high. By setting the security status as something, if there is a high probability of unauthorized operation by a third party, it is possible to prevent subsequent unauthorized browsing and minimize damage even without forcing the user to take information security measures. It becomes possible to suppress to.

  In the browsing permission condition setting table IPT, “continuous browsing time” is set in addition to “continuous browsing number”, and information more than this “continuous browsing number” is continuously browsed within the “continuous browsing time”. Since it was determined that an extraordinary operation was performed when an operation was performed, browsing a large amount of information such as emails in a short time is an operation that is rarely performed on a daily basis, It can be assumed that such an extraordinary operation has a high probability of an unauthorized operation. In this case, since “the number of continuous browsing” and “continuous browsing time” can be arbitrarily set according to the user operation, it is possible to take into account the user's daily operation status.

  The received mail folder RMF stores and manages a “viewed flag” in association with each received mail, and the CPU 1 refers to this “viewed flag” when a predetermined number of browsed mails are browsed. Since it was determined that an extraordinary operation has been performed, a legitimate user rarely revisits many emails that have already been confirmed. In that case, since it is going to see many mails, it becomes possible to guess whether it is a fraudulent operator by whether it is a confirmed mail.

  The transmission mail folder TMF stores “transmission date / time” corresponding to each transmission mail, and the browsing availability condition setting table IPT stores “time difference” corresponding to the transmission mail. When the email is viewed, the “send date” of each email is referred, and if the “send date” of each email is close in time and within the “time difference”, the possibility of a browsing operation by a regular user is high. Therefore, although it is not regarded as an unauthorized operation, when the “transmission date and time” is separated in time, it can be estimated that the probability of an unauthorized operation by a third party is high.

  When the probability of unauthorized operation is high, the CPU 1 requests the operator to input a password for user authentication, determines whether or not the user is a legitimate user based on the input password. However, if the user is not a legitimate user, the security lock state is set to increase the possibility of unauthorized operation by a third party. In addition, the security lock can be set.

  In addition, in the browsing permission condition setting table IPT, any one of “address book”, “sent mail”, “received mail”, “schedule book”, “call history”, “image folder”, “other folder” is selected. Since the application function can be set, the security target can be arbitrarily specified, and the “number of continuous browsing”, “continuous browsing time”, and “time difference” can be set arbitrarily corresponding to the arbitrarily specified application. It is possible to cope with the user's operation status.

 In the above-described embodiment, “sent date” is set in the outgoing mail folder TMF corresponding to each outgoing mail, and “time difference” is set in the browsing availability condition setting table IPT corresponding to the outgoing mail. Is viewed continuously, refer to the "sent date" of each email, and if the "sent date" of each email is close in time and within "time difference", the possibility of browsing operations by authorized users However, not only the outgoing mail folder TMF but also the incoming mail folder RMF, the “reception date” of each mail is close in time and within the “time difference”. In this case, since the possibility of a browsing operation by a regular user is high, it may not be regarded as an unauthorized operation.

In the above-described embodiment, password authentication is exemplified. However, as biometric authentication, user authentication may be performed based on, for example, fingerprint, iris, retina, vein, voice, face, and the like.
In addition, the present invention is not limited to the mobile phone device, and can be similarly applied to a mobile terminal device such as a PDA with a security function, an electronic camera, an electronic wristwatch, and a music player.

The block diagram which showed the basic component of the mobile telephone apparatus applied as a portable terminal device. The figure which showed the content of the received mail folder RMF. The figure which showed the content of the transmission mail folder TMF. The figure which showed the content of the browsing permission condition setting table IPT. The flowchart which showed the whole operation | movement of the mobile telephone apparatus started execution with power activation. The flowchart following FIG. The flowchart following FIG. The flowchart following FIG. 9 is a subroutine for explaining in detail the user authentication process shown in FIGS. In the display state diagram when the address book is opened, (A) shows the name list screen of the address book, (B) shows the address details screen of the name selected from the name list screen, (C) FIG. 4 is a diagram showing a password input request screen.

Explanation of symbols

1 CPU
2 Storage unit 5 Telephone communication unit 10, 11 Display unit 12 Key operation unit 14 Camera imaging unit ADT Address book SDT Schedule book RMF Incoming mail folder TMF Outgoing mail folder CAR Call history POF Image folder OTF Other folders IPT Viewability setting table CT browsing number counter TM browsing time timer

Claims (7)

Information storage means for storing a plurality of information;
First discriminating means for discriminating whether or not the selected information is browsed information that has already been browsed when the information is arbitrarily selected and browsed;
A second discriminating unit for discriminating whether or not the information is continuously browsed over a predetermined number;
Limiting means for limiting the browsing when it is determined that the information determined to be browsed has been continuously browsed more than the predetermined number,
Mobile terminal characterized by comprising a. Information storage means for storing a plurality of information;
When selecting and browsing each information arbitrarily, the date and time when the currently selected browsing target information is stored is compared with the date and time when the previous browsing target information is stored, and the time difference between the compared storage dates and times First discriminating means for discriminating whether or not the time difference is a predetermined time or more;
A second discriminating unit for discriminating whether or not the information is continuously browsed over a predetermined number;
Limiting means for limiting the browsing when it is determined that the predetermined number or more of the information in which the time difference between each information is equal to or longer than the predetermined time has been browsed,
Mobile terminal characterized by comprising a. Prior to the restriction by the restriction means, an authentication means is provided for requesting an authentication operation to the operator and executing user authentication processing based on user information input in response thereto,
As a result of the authentication processing by this authentication means, if the browsing operation is a legitimate user, the subsequent browsing operation is possible, and if the browsing operation is by a third party, the security state is set to invalidate the subsequent browsing operation. Set to
Mobile terminal apparatus according to claim 1, wherein it has to. Address book function for storing and managing information related to communication partners, schedule function for storing and managing preset schedule information, incoming call history function for recording and managing incoming call history, outgoing call history function for storing and managing outgoing call history, storing outgoing mail A mobile terminal device having a send mail function for managing, a received mail function for storing and managing received mail, and a file function for storing and managing various file information,
The information, the each function specified arbitrarily from among various functions is information the specified function is managed, mobile terminal apparatus according to claim 1 or 2, wherein the. The predetermined number is arbitrarily set for each designated function.
Mobile terminal apparatus according to claim 4, characterized in that as. Against the computer,
A function for storing a plurality of information;
When selecting and browsing each information arbitrarily, a function of determining whether the selected information is already browsed information that has been browsed,
A function of determining whether or not the information has been browsed continuously for a predetermined number or more;
A function that restricts the browsing when it is determined that the information determined to be browsed has been continuously browsed more than the predetermined number;
A program to realize Against the computer,
A function for storing a plurality of information;
When selecting and browsing each information arbitrarily, the date and time when the currently selected browsing target information is stored is compared with the date and time when the previous browsing target information is stored, and the time difference between the compared storage dates and times A function for determining whether or not the time difference is equal to or greater than a predetermined time;
A function of determining whether or not the information has been browsed continuously for a predetermined number or more;
A function that restricts the browsing when it is determined that the predetermined number or more of the information in which the time difference of each information is equal to or longer than the predetermined time has been continuously viewed;
A program to realize

Images