JP6175396B2 - Communication server device, communication system, communication mediation method, and program - Google Patents

Description

  The present invention relates to a communication server device, a communication system, a communication mediating method, and a program for controlling communication between communication terminals according to a relationship in a social networking service (SNS).

  In the telecommunications industry, M2M (Machine-to-Machine), which allows machines to communicate with each other via the Internet, and uniquely identifiable “things” are connected to the Internet and exchange information with each other. There is an increasing need for using IoT (Internet of Things) with a control mechanism. Further, a communication style called SNS is now common, and not only text messages but also electronic contents such as images, videos and music are shared in real time.

  According to Patent Document 1, a device management method by a user of a communication network via an IMS (IP Multimedia Subsystem) application is proposed as M2M useful for a security system using a wireless monitoring camera.

  This management method supports messaging and presence on both authorized user terminals and devices by installing an IMS application client. The client is a cross-subscriber to presence information and the device to be managed appears as a buddy in the authorized user's contact list. Thus, the interaction between the user and the device takes place via presence information published by the device and messaging between the user and the device. By distributing the camera image to the user using this management method using the apparatus as a wireless camera, the user can be notified of the situation in the shooting area.

  Patent Document 2 proposes a locking system using M2M. In this system, when a reservation target is used, when a key opening / closing command is transmitted from the transmitting means, the control means receives the key opening / closing command and controls the lock device based on the reservation information, thereby delivering the key. It is possible to unlock a reservation object such as a room or facility without accompanying.

  Further, Patent Document 3 proposes a vehicle access control system using M2M. In this system, when the vehicle access control system mounted on the vehicle receives a vehicle reservation from the wireless communication device, the vehicle reservation is authenticated, and access to the vehicle (opening / closing of the door, engine starting, etc.) is permitted after the authentication. Vehicle reservations can be shared by members of a group or organization such as a family or company.

Patent No. 4,605,819 Japanese Patent Laid-Open No. 10-292689 Special table 2013-509640 gazette

http: // www. nikkei. com / article / DGXNASFK3100E_R30C13A7000000 /? df = 2 "Sensors everywhere, social devices that change society" [searched on March 11, 2014]

  In consideration of the current situation described above, as M2M and IoT spread in the future, the sharing of data generated from own devices and the sharing of devices and operations such as so-called “socialization of devices” will progress. is expected. Therefore, there is a need for a system in which a device owned by a friend or family and a device owned by the user can be shared, and the user can easily manage the communication between these devices and the right to use the device.

  However, in the techniques described in Patent Documents 1 to 3, a configuration of free inter-device communication (for example, 1: n) cannot be performed by a user, or communication between various devices cannot be transferred. As a result, there is a problem that the user cannot easily manage the communication between devices and the authority to use the device.

  On the other hand, by exchanging device specific information such as an IP address, it is possible to share data generated from the device and share the device. However, if the device specific information is disclosed, for example, the IP address is There was a problem that security was compromised, such as being exposed to all attacks. It can be solved by implementing a mechanism (tamper resistance) to protect security by the device itself, but a new problem has arisen that the cost of the device becomes high.

  In Non-Patent Document 1, introduction of “social devices” that support the solution of social infrastructure and life infrastructure issues is progressing in various fields, and examples already introduced are introduced. Here, the “social device” is called by the Nikkei BP Clean Tech Laboratories and uses a sensor network that automatically measures changes in the state of goods and makes it possible to grasp the tendency of changes. It is a technology and mechanism that is useful for the problem.

  However, for social devices, no technology has been proposed to limit sensor networks owned by individuals or companies to friends, family, employees, or customers who want to share the data, and device management methods. There is a problem that the user cannot easily manage the authority to use the device.

  Then, in view of the said subject, this invention aims at providing the communication server apparatus, communication system, communication mediating method, and program which control the communication between communication terminals according to the relationship in SNS between the owner users of a communication terminal. And

  The present invention proposes the following matters in order to solve the above problems. In addition, in order to make an understanding easy, although the code | symbol corresponding to embodiment of this invention is attached | subjected and demonstrated, it is not limited to this.

  (1) The present invention is a communication server device that mediates communication between communication terminals, and includes a communication means (for example, the communication unit 110 in FIG. 3) that communicates with a communication terminal, and a social user who participates in a plurality of users. Social management means for providing a networking service and managing social relationship information indicating the relationship between users in the service in association with user identification information of the user having the relationship (for example, the social management unit in FIG. 3) 120), terminal management means (for example, the terminal management unit 130 in FIG. 3) that manages terminal identification information of the communication terminal owned by the user in association with the user identification information, and the terminal management means. The use authority set for a communication terminal is given in association with social relation information of the user who owns the communication terminal, and managed Terminal usage authority management means (for example, the terminal usage authority management section 140 in FIG. 3) and the communication between the communication terminals, the terminal usage authority management means in association with social relation information between users who own each communication terminal The communication server device is provided with communication management means (for example, the communication management unit 160 in FIG. 3) that performs communication control in accordance with the use authority of the connection destination communication terminal managed in (1).

  According to this invention, the social authority and the use authority of a communication terminal can be managed simultaneously by giving the use authority of a communication terminal in association with the social relation of SNS. Thereby, since the use authority of a communication terminal is changed according to social relationship changing, the sharing setting of a communication terminal can be performed easily.

  (2) The present invention relates to an encryption key management means (for example, encryption management in FIG. 3) for managing the encryption key pair of the communication server device and the public key of the communication terminal for the communication server device of (1). A communication server device characterized in that the communication means performs public key based encrypted communication with the communication terminal using the encryption key pair and the public key. ing.

  According to the present invention, communication between communication terminals can be performed safely by a public key infrastructure system.

  (3) In the communication server device according to (1) or (2), the present invention allows a communication terminal owned by a user of the service to communicate with a communication terminal of another user who is granted authority to use the communication terminal. Therefore, it is further provided with pre-connection management means (for example, the pre-connection management unit 150 in FIG. 3) for managing the combination configuration of the communication terminals that are set in advance by the user and have the use authority grant relationship. A communication server device is proposed.

  According to the present invention, by setting a combination of communication terminals that perform communication in advance, when the communication terminal is activated, M2M communication with the combination partner communication terminal can be automatically started.

  (4) The present invention proposes a communication server device according to (1) to (3), wherein the use authority can be set for each communication terminal.

  According to this invention, the usage authority can be set for each communication terminal.

  (5) The present invention proposes a communication server device characterized in that, for the communication server devices of (1) to (4), the use authority can be set for each type of communication terminal.

  According to this invention, the usage authority can be set for each type of communication terminal.

  (6) In the communication server device according to (1) to (5), the social relation information includes information indicating a group that classifies users participating in the service, and the usage authority is set for each group. A communication server device that can be set is proposed.

  According to the present invention, the usage authority can be set for each group for classifying SNS users.

  (7) The present invention is a communication system including a communication server device that mediates communication between communication terminals, and a plurality of communication terminals that communicate with the communication server device, wherein the communication server device includes the plurality of communication terminals. A first communication means for communicating with a communication terminal (for example, the communication unit 110 in FIG. 3) and a social networking service in which a plurality of users participate and a social relationship indicating a relationship between users in the service Social management means (for example, the social management unit 120 in FIG. 3) that manages information in association with user identification information of a user having the relationship, and terminal identification information of a communication terminal owned by the user, the user identification Terminal management means for managing in association with information (for example, terminal management in FIG. 3) 130) and a terminal usage authority management means (for example, for example) that grants and manages the usage authority set for the communication terminal managed by the terminal management means in association with the social relationship information of the user who owns the communication terminal. 3 in connection with the terminal usage authority management unit 140 in FIG. 3 and the connection destination communication terminal managed by the terminal usage authority management means in association with social relation information between users who own each communication terminal. Communication management means (for example, the communication management unit 160 in FIG. 3) that performs communication control according to the use authority of the second communication means, wherein the plurality of communication terminals communicate with the communication server device; When communication with the communication server device is started, the terminal identification information for associating with the user identification information of the user who owns the terminal is stored in the coordinator. Proposed is a communication system comprising: communication start means for transmitting to a communication server device via the second communication means.

  According to this invention, the social authority and the use authority of a communication terminal can be managed simultaneously by giving the use authority of a communication terminal in association with the social relation of SNS. Thereby, since the use authority of a communication terminal is changed according to social relationship changing, the sharing setting of a communication terminal can be performed easily.

  (8) The present invention is a communication mediating method in a communication server device that mediates communication between communication terminals, wherein the communication server device provides a social networking service in which a plurality of users participate, and the service Social management means, terminal management means, terminal usage authority management means, communication management means, and communication terminal for managing social relation information indicating the relation between users in association with user identification information of the user having the relation Communication means for communicating with the user, the terminal management means accepts the terminal identification information of the communication terminal owned by the user received from the user of the service via the communication means to the user identification information of the user First step to register with (for example, step of FIG. 6) 31) and the terminal usage authority management means assigns the usage authority to the user's own communication terminal registered in the terminal management means, which is given to the social relation information of the user by the user of the service. A second step (for example, step S32 in FIG. 6) for managing the use authority in association with the social relation information of the user, and the communication management means In communication between designated communication terminals, third communication control is performed according to the use authority of the connection destination communication terminal managed by the terminal use authority management means in association with social relation information between users who own each communication terminal. (For example, step S33 in FIG. 6). The

  According to this invention, the social authority and the use authority of a communication terminal can be managed simultaneously by giving the use authority of a communication terminal in association with the social relation of SNS. Thereby, since the use authority of a communication terminal is changed according to social relationship changing, the sharing setting of a communication terminal can be performed easily.

  (9) The present invention is a program for causing a computer to execute a communication mediation method in a communication server device that mediates communication between communication terminals, and the communication server device is a social networking in which a plurality of users participate. Social management means that provides a service and manages social relation information indicating the relation between users in the service in association with user identification information of the user having the relation, terminal management means, terminal use authority management means Communication management means, and communication means for communicating with a communication terminal, wherein the terminal management means receives terminal identification information of a communication terminal owned by the user received from the service user via the communication means, Register in association with the user identification information of the user The first step (for example, step S31 in FIG. 6) and the terminal usage authority management means registered in the terminal management means given to the social relation information of the user by the user of the service A second step (for example, step S32 in FIG. 6) for managing the usage authority in association with the social relationship information of the user in response to receiving the usage authority for the communication terminal via the communication means; In the communication between the communication terminals designated by the user of the service, the communication management unit is connected to the social relation information between the users who own each communication terminal and is managed by the terminal usage authority management unit The third step (for example, step S33 in FIG. 6) for performing communication control according to the use authority of the terminal is executed on the computer. Proposes a program to make it run.

  According to this invention, the social authority and the use authority of a communication terminal can be managed simultaneously by giving the use authority of a communication terminal in association with the social relation of SNS. Thereby, since the use authority of a communication terminal is changed according to social relationship changing, the sharing setting of a communication terminal can be performed easily.

  ADVANTAGE OF THE INVENTION According to this invention, the communication between communication terminals can be controlled according to the relationship in SNS between the owner users of a communication terminal. Moreover, the use authority of a communication terminal can be changed according to the relationship in SNS changing, and the share setting of a communication terminal can be performed easily.

It is a figure showing the whole communication system composition concerning a 1st embodiment of the present invention. It is a figure which shows the processing flow of the communication terminal which concerns on embodiment of this invention. It is a figure which shows the function structure of the server apparatus which concerns on embodiment of this invention. It is a figure which shows the communication control processing flow in the server apparatus which concerns on embodiment of this invention. It is a figure which shows the communication control processing flow in the server apparatus which concerns on embodiment of this invention. It is a figure which shows the communication processing flow in the server apparatus which concerns on embodiment of this invention.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. Note that the constituent elements in the present embodiment can be appropriately replaced with existing constituent elements and the like, and various variations including combinations with other existing constituent elements are possible. Therefore, the description of the present embodiment does not limit the contents of the invention described in the claims.

<Configuration of communication system>
FIG. 1 is a diagram showing an overall configuration of a communication system 1 according to the first embodiment of the present invention. As shown in FIG. 1, the communication system 1 includes a communication server device (hereinafter referred to as a server device) 100, a plurality of operation terminals 20a and 20b, and a plurality of communication terminals 10a and 10b. It is connected. In the present embodiment, the communication terminals 10a and 10b are communication terminals 10 if they are not distinguished. The operation terminals 20a and 20b are also referred to as the operation terminal 20 when not distinguished from each other.

  The communication system 1 is a system in which the communication terminals 10a and 10b perform communication controlled to the use authority via the server device 100 that manages the use authority of the communication terminal 10 associated with the relationship in the SNS.

  In the communication system 1, since communication terminals communicate with each other via the server device 100, communication can be performed without disclosing information for identifying the communication terminals, so that security can be improved. It is also possible for communication terminals to have a 1: n communication configuration, and it is also possible to have a configuration in which communication terminals do not communicate directly with each other, so there is an advantage that NAT (Network Address Translation) can be easily exceeded. .

  The communication terminal 10 communicates with the server device 100, and performs communication with the other communication terminal directly or via the server device 100 via the server device 100. The communication terminal 10 is a terminal owned by a user participating in a social networking service (hereinafter referred to as SNS), and the user can also own a plurality of communication terminals 10. The communication terminal 10 may be anything as long as it has a communication function. For example, a monitoring camera, a monitoring post for observation, various sensor devices for monitoring biological information, a content media server, a telephone, various types Examples include home appliances, cars, room keys, and dolls that operate according to sensor data.

  The process of the communication terminal 10 is demonstrated using FIG. The processing of the communication terminal 10 starts in response to being activated.

  First, in step S1, the communication terminal 10 determines whether or not it is the first activation. If it is the first activation (YES), the process proceeds to step S2. On the other hand, if it is the second activation or later (NO), the process proceeds to step S3.

  Next, in step S2, the communication terminal 10 performs communication settings with the wireless LAN. For communication setting with a wireless LAN, for example, a communication terminal 10 and a PC (personal computer) are connected by a USB (universal serial bus), and a wireless LAN access point (master unit) and the communication terminal 10 (slave unit) are connected. Wireless access simply by pressing the button at the same time on both the wireless LAN access point (base unit) and the communication terminal 10 (slave unit) using a method such as access setting with the AOSS (registered trademark) There is a method for setting access including LAN security. There is also a method of making a simple setting by using Wi-Fi (registered trademark) handover by NFC (Near Field Communication).

  In addition, although the example which uses wireless LAN was given, the area which the communication system 1 provides a service can also be made wider using the wireless communication module which a carrier provides. In this case, the NAT traversal problem (problem in which a communication session cannot be established by NAT) that occurs when performing a video call using UDP communication via the Internet from a wireless LAN can be easily solved.

  Next, in step S3, the communication terminal 10 connects to the server apparatus 100 by wireless LAN access based on address information stored in a storage unit (not shown). Here, the address information is the URL or IP address of the server device 100. As a data communication protocol between the communication terminal 10 and the server apparatus 100, it is desirable to use HTTP / HTTPS. Further, data communicated between the communication terminal 10 and the server device 100 is exchanged with meaning given by a meta language such as XML.

  Next, in step S4, the communication terminal 10 establishes public key infrastructure encryption communication with the server apparatus 100 connected in step S3. When the communication terminal 10 is connected to the server device 100 at the first startup, the communication terminal 10 transmits its own public key stored in the storage unit to the server device 100 and receives the public key of the server device 100 from the server device 100. The storage unit of the communication terminal 10 stores its own public key and secret key, and the public key of the server device 100.

  Next, in step S <b> 5, the communication terminal 10 transmits a terminal ID and terminal attribute information to the server device 100. The terminal ID and terminal attribute information are stored in the storage unit of the communication terminal 10.

  Here, the terminal ID is, for example, a MAC address. The terminal attribute information is information necessary for the communication terminal 10 to communicate with the server device 100 and other communication terminals, and information necessary for the user to know the function of the communication terminal 10. It includes the presence / absence of a function, a used protocol, an IP address, a port number, a model number list of communication terminals capable of communication, type information indicating the type of the communication terminal 10, and the like. Here, the type information is a name or code for classifying the functions of the communication terminal 10. The terminal attribute information may be transmitted to the server device 100 only when the communication terminal 10 is activated for the first time.

  Next, in step S <b> 6, the communication terminal 10 determines whether it is connected to another communication terminal via the server device 100. If it is connected to another communication terminal (YES), the process proceeds to step S7. On the other hand, if it is not connected to another communication terminal (NO), the process proceeds to step S8.

  Next, in step S <b> 7, the communication terminal 10 performs data communication with other communication terminals via the server device 100.

  Next, in step S8, the communication terminal 10 determines whether or not the connection with the server device 100 is disconnected. If the connection with the server apparatus 100 is disconnected (YES), the process is terminated. On the other hand, if the connection with the server apparatus 100 is not disconnected (NO), the process returns to step S6.

  Although the case where the communication terminal 10 always communicates with the server apparatus 100 after connection with the server apparatus 100 has been described, if it is not preferable to always communicate with the server apparatus 100, a predetermined communication interval (for example, real time) It can also be set so that the communication terminal 10 communicates with the server device 100 in (several hours). The predetermined communication interval can be set directly in the communication terminal 10 or can be set from the server device 100.

  The operation terminal 20 is a terminal on which a user of the communication system 1 performs a setting operation in the communication system 1. The users of the communication system 1 include users participating in the SNS used in this system and manufacturers who provide the communication terminal 10.

  The operation terminal 20 only needs to include an input / output unit such as a touch display that receives an operation from the user and outputs information necessary for the operation and an operation result, such as a PC or a smartphone. The operation terminal 20 may be one of the communication terminals 10. In the present embodiment, the communication system 1 is set using a Web browser mounted on the operation terminal 20, but may be a dedicated application or the like.

  The setting operation includes a terminal setting operation, a social relationship setting operation, a use authority setting operation, a communication source destination setting operation, and a product information setting operation.

  The terminal setting operation is an operation in which the user registers / changes / deletes the communication terminal 10 owned by the user in the server apparatus 100 using a Web browser. The communication terminal 10 can be used in the communication system 1 by performing the terminal setting operation. In the communication terminal 10, a terminal ID is written on a position where the user can visually recognize, for example, a product package or a main body, and the user uses this terminal ID at the time of the terminal setting operation.

  The social relationship setting operation is an operation in which a user registers / changes / deletes a social relationship in his / her SNS. The usage authority setting operation is an operation in which the user registers, changes, or deletes the usage authority of another communication terminal for the communication terminal 10 owned by the user. The communication source destination setting operation is an operation in which the user communicates via the server device 100 and sets the communication terminal 10 owned by the user and another communication terminal.

  The product information setting operation is an operation in which the manufacturer that provides the communication terminal 10 registers, changes, or deletes the product attribute information of the provided communication terminal 10 in the server device 100.

<Functional configuration of server device>
FIG. 3 is a diagram illustrating a functional configuration of the server apparatus 100 according to the embodiment of the present invention. As shown in FIG. 3, the server device 100 includes a communication unit 110, a social management unit 120, a terminal management unit 130, a terminal usage authority management unit 140, a pre-connection management unit 150, a communication management unit 160, and an encryption management unit 170. Is provided.

  The communication unit 110 communicates with the communication terminal 10 and the operation terminal 20, for example, performs communication via the Internet.

  The social management unit 120 includes a social relationship storage unit 121, and manages a social relationship indicating a relationship between users in the SNS. The SNS that the server device 100 manages social relationships may be provided by the server device 100 itself, or may be provided by an SNS server connected to the server device 100. Here, the social relationship includes, for example, friends, acquaintances, families, business associates, project members, and the like.

  The social relationship storage unit 121 stores social information indicating who and who are in what social relationship, specifically, social relationship information for identifying the relationship between users in the SNS, and the relationship Is stored in association with the user ID of the user in The social relationship information is, for example, a community ID that identifies a community to which the user belongs, or a group ID that identifies a group in which users who are friends are classified as project members or university friends.

  When an instruction to display social information is given on the operation terminal 20, the social management unit 120 receives the user ID of the user who is operating the operation terminal 20 from the operation terminal 20, and the social relation storage unit based on the received user ID With reference to 121, social information of a user who is operating (hereinafter referred to as an operating user) is extracted. Then, the social management unit 120 transmits the extracted social information to the operation terminal 20, and the social information is displayed on the web browser of the operation terminal 20. Here, the social information to be displayed is configured in a tree shape in which, for example, the user to which the user belongs is associated under the social relation information.

  When the operation user performs a social relationship setting operation for adding a new social relationship or changing or deleting an existing social relationship on the operation terminal 20 on which social information is displayed on the web browser, the social management unit 120 receives the setting content and reflects the setting content received by the social relationship storage unit 121.

  Moreover, the social management unit 120 includes an authentication information storage unit (not shown) that stores a user ID and a password, and whether or not the user ID and password received from the operation terminal 20 are stored in the authentication information storage unit. As a result, authentication when the operation terminal 20 connects to the server device 100 can be performed.

  The terminal management unit 130 includes a terminal information storage unit 131 and a product information storage unit 132, and manages various types of information of the communication terminal 10 that uses the communication system 1.

  The terminal information storage unit 131 stores terminal information indicating who owns which communication terminal, what function the communication terminal has, and what communication state the communication terminal has. Stores the terminal ID, user ID, terminal attribute information, and communication state.

  When an instruction to display the communication terminal is given on the operation terminal 20, the social management unit 120 receives the user ID of the operation user from the operation terminal 20, and refers to the social relationship storage unit 121 based on the received user ID, Extract user social information. Next, the terminal management unit 130 refers to the terminal information storage unit 131 based on the received user ID and the user ID included in the extracted social information, and terminal information of the user who has a social relationship with the operating user and the operating user. To extract. At this time, only the communication terminals in the communication state may be extracted.

  And the terminal management part 130 transmits the integrated terminal information which integrated the extracted social information and terminal information to the operating terminal 20, and integrated terminal information is displayed on the web browser of the operating terminal 20. FIG. Here, the integrated terminal information is configured in a tree shape in which, for example, users belonging under the social relation information are linked, and further, terminal information of the communication terminals owned by the user is linked under the user. The

  On the operation terminal 20 on which the integrated terminal information is displayed on the Web browser, a new communication terminal 10 is added, the terminal attribute information of the existing communication terminal 10 is changed, or the existing communication terminal 10 is deleted. When the terminal setting operation is performed by the operating user, the terminal management unit 130 receives the setting content and reflects the received setting content in the terminal information storage unit 131.

  The terminal management unit 130 updates the communication state of the terminal information storage unit 131 in response to a change in the communication state of the communication terminal. In the communication state, “communication established” indicating that communication terminals are connected and communication is possible, and “communication” indicating that communication terminal 10 is connected to server device 100 and is waiting for connection with another communication terminal. There are three types: “waiting for establishment” and “not connected” indicating that the communication terminal 10 is not connected to the server device 100.

  The product information storage unit 132 stores product attribute information for each product of the communication terminal 10. Here, the product attribute information includes the terminal ID of the product, the range of the terminal ID, the manufacturer's model number, the description of the communication terminal, the type information indicating the product type, the communication method and data format of the communication terminal, and the communication terminal capable of communication Model number list etc. are included. When a manufacturer performs a product information setting operation for adding new product attribute information or changing or deleting existing product attribute information on the operation terminal 20, the terminal management unit 130 receives the setting content. The setting information received by the product information storage unit 132 is reflected.

  The terminal attribute information in the terminal information storage unit 131 and the product attribute information in the product information storage unit 132 are notified to the user so that the user knows the function of the communication terminal 10 and the user selects the communication terminal 10 with which the user communicates. Used. The communication conditions such as the data format and the protocol used are referred to when the server apparatus 100 mediates communication between communication terminals, and are used to determine whether or not both can communicate.

  The terminal management unit 130 can also collect and manage a status log that is a log related to a change in the communication status of the communication terminal 10 and an operation log that is a log related to the operation and operation result of the communication terminal. Thereby, it is possible to manage the communication status such as when the communication terminal 10 was connected, the operating status of the communication terminal, and information exchanged between the communication terminals. Further, the terminal management unit 130 can create statistical information obtained by statistically processing the status log and the operation log for each product, and can provide the statistical information to a manufacturer that provides the product. Moreover, the terminal management part 130 has a function which searches the user who owns the same kind of communication terminal 10, and can also accelerate a device share between users.

  The terminal use authority management unit 140 includes a use authority storage unit 141 and manages the use authority for each communication terminal 10.

  The usage authority storage unit 141 stores usage authority given in association with a social relationship such as a group of SNS community or a group in which users who are friends in SNS are classified. Specifically, a terminal ID, social relationship information, And the usage authority are stored in association with each other. Here, the usage authority includes, for example, an exclusive operation right, an operation right, and a viewing right. The usage authority storage unit 141 can also store social relationship information and usage authority in association with the type information of the communication terminal instead of the terminal ID. Thereby, when the user owns a plurality of communication terminals of the same type, the use authority can be given to the type, and the trouble of giving the use authority to each terminal can be saved.

  When one communication terminal is selected on the operation terminal 20 in which the integrated terminal information is displayed on the Web browser, the terminal use authority management unit 140 receives the terminal ID of the selected communication terminal from the operation terminal 20, Based on the received terminal ID, the usage authority storage unit 141 is referred to extract the usage authority information of the selected communication terminal. Then, the terminal use authority management unit 140 transmits the extracted use authority information to the operation terminal 20, and the use authority information is displayed on the Web browser of the operation terminal 20. Here, the extracted usage authority information is displayed as a list in which, for example, information indicating whether or not each social relationship has an exclusive operation right, an operation right, and a viewing right is associated.

  When a user performs a usage authority setting operation for adding a new usage authority or changing or deleting an existing usage authority on the operation terminal 20 on which the usage authority information of the communication terminal 10 is displayed on the Web browser. The terminal use authority management unit 140 receives the setting contents and reflects the setting contents received by the use authority storage unit 141.

  By granting the usage authority in association with the social relationship, the usage authority that has already been granted to the constructed relationship can be automatically granted to the user who has newly constructed the relationship after the grant of the usage right. On the other hand, the usage authority granted based on the relationship can be automatically deleted for the user whose relationship has been resolved after the usage right is granted. For example, when viewing authority is given to a certain group, viewing authority can be automatically granted to a user who newly belongs to a certain group, while viewing authority is granted to a user who is out of a certain group. It can be deleted automatically.

  The pre-connection management unit 150 includes a connection pair storage unit 151 and manages communication between communication terminals set to perform communication in advance. Thereby, M2M can be automatically started by the communication management unit 160 when the communication terminal 10 is activated.

  The connection pair storage unit 151 stores combinations of communication terminals that are preset by the user and have a usage authority grant relationship, and specifically stores the terminal IDs of communication terminals that perform communication in association with each other.

  The pre-connection management unit 150 can also preferentially connect combinations of communication terminals stored in the connection pair storage unit 151. When a certain communication terminal is connected to a communication terminal other than the combination communication terminal stored in the connection pair storage unit 151, the combination communication terminal stored in the connection pair storage unit 151 is transferred to the server apparatus 100. In response to the connection, the communication management unit 160 is instructed to disconnect the connected communication terminal and newly connect to the combination of communication terminals stored in the connection pair storage unit 151. You can also.

  In addition, the pre-connection management unit 150 has started communication with the connected communication terminal 10 when the communication management unit 160 automatically starts M2M according to the combination stored in the connection pair storage unit 151. Can also be notified.

  The communication management unit 160 controls communication between communication terminals via the server device 100. The communication management unit 160 controls the communication between the communication terminals in response to the communication source destination setting operation being performed on the operation terminal 20 and the communication terminal 10 is connected to the server device 100. Thus, there are two cases of controlling communication between the communication terminal 10 and another communication terminal in accordance with an instruction from the pre-connection management unit 150.

  First, a case where communication between the communication terminal 10 and another communication terminal is controlled in response to a communication source / destination setting operation performed on the operation terminal 20 will be described with reference to FIG. The processing starts in response to the communication management unit 160 receiving the communication source destination setting from the operation terminal 20 on which the communication source destination setting operation has been performed. Here, the communication source destination setting includes the terminal ID of the communication terminal serving as the communication source and the terminal ID of the other communication terminal serving as the communication destination.

  First, in step S11, the communication management unit 160 is referred to as a communication source user in the description of FIG. 4 (hereinafter, referred to as a communication source user in the description of FIG. 4). It is determined whether or not the user of the other communication terminal of the communication destination has the authority to use the other communication terminal of the communication destination (hereinafter referred to as the communication destination terminal in the description of FIG. 4).

  Specifically, first, the communication management unit 160 acquires the user ID of the communication source user from the terminal ID of the communication source terminal and the user ID of the communication destination user from the terminal ID of the communication destination terminal from the terminal management unit 130. To do. Next, based on the acquired user ID, social relationship information between the communication source user and the communication destination user is acquired from the social management unit 120. Then, from the acquired social relation information and the terminal ID of the communication destination terminal, the use authority of the communication destination terminal given to the communication source user is acquired from the terminal use authority management unit 140 and determined.

  If the communication source user has the authority to use the communication destination terminal (YES), the communication management unit 160 proceeds to step S12. If the communication user has no usage authority (NO), the communication management unit 160 ends the process.

  Next, in step S12, the communication management unit 160 acquires the communication state from the terminal management unit 130 based on the terminal ID included in the communication source destination setting, and both the communication source terminal and the communication destination terminal are “not connected”. It is determined whether or not. The communication state of the communication source terminal and the communication destination terminal indicates not only “waiting for establishment of communication” indicating a state of waiting for connection with another communication terminal but also a state in which communication with another communication terminal is already possible. It may be “communication established”. This is because the communication system 1 can have a communication configuration of 1: n (n = 1, 2,...). If neither is “not connected”, the process proceeds to step S13. On the other hand, if either one is “not connected”, the process proceeds to step S16.

  Next, in step S13, the communication management unit 160 connects the communication source terminal and the communication destination terminal. When the communication source terminal and the communication destination terminal are connected by the communication management unit 160, they are in a communicable state, that is, “communication established” in the communication state. The communication source terminal and the communication destination terminal that are in a communicable state may perform data communication directly or may perform data communication via the communication management unit 160.

  When data communication is performed directly between communication terminals, the communication management unit 160 acquires connection information (information necessary for connection such as an IP address and a port number) of a communication destination terminal serving as a server from the terminal management unit 130, and the client To the communication source terminal. Then, by connecting the communication source terminal to the communication destination terminal based on the information of the communication destination terminal serving as the server notified from the communication management unit 160, data communication can be performed directly between the communication terminals.

  When data communication is performed via the communication management unit 160, the communication management unit 160 emulates communication so that data communication is performed directly between communication terminals. The communication management unit 160 notifies the communication source terminal serving as the client of connection information assigned to the communication management unit 160 of the server device as connection information of the communication destination terminal serving as the server. Then, in response to the connection of the communication source terminal to the server device 100 based on the connection information notified from the communication management unit 160, the communication management unit 160 determines the communication destination terminal to be the server acquired from the terminal management unit 130. By connecting to the communication destination terminal based on the connection information, the communication source terminal and the communication destination terminal are connected by relay. As a result, the communication source terminal and the communication destination terminal can perform data communication via the communication management unit 160.

  Whether data communication is performed directly between communication terminals or data communication is performed via the communication management unit 160, the communication management unit 160 always obtains various types of information such as connection information from the terminal management unit 130 to perform communication. Manage the communication status of the terminal.

  Next, in step S14, the communication management unit 160 manages the communication state between the communication terminals connected in step S13, and mediates data communication when mediating data communication.

  Next, in step S15, the communication management unit 160 determines whether or not the connection with at least one of the communication source terminal and the communication destination terminal is disconnected. If it is determined that the connection with at least one has been disconnected (YES), the process is terminated. If no connection is disconnected (NO), the process returns to step S14.

  Next, in step S16, the communication management unit 160 transmits the terminal ID of the communication source terminal and the terminal ID of the communication destination terminal included in the communication source destination setting to the pre-connection management unit 150, and the connection pair storage unit 151 is stored.

  Further, FIG. 5 is used for controlling communication between the communication terminal 10 and another communication terminal in response to an instruction from the pre-connection management unit 150 in response to the communication terminal 10 being connected to the server device 100. I will explain. The processing starts in response to the communication terminal 10 connecting to the server device 100.

  First, in step S21, the communication management unit 160 is stored in the connection pair storage unit 151 based on the terminal ID received from the connected communication terminal 10 (hereinafter referred to as a communication source terminal in the description of FIG. 5). It is determined whether there is a combination including the communication source terminal among the combinations that are set to perform communication in advance. If there is a combination (YES), the communication management unit 160 acquires a combination including the communication source terminal from the pre-connection management unit 150, and advances the process to step S22. On the other hand, if there is no combination (NO), the process is terminated.

  Next, in step S22, the communication management unit 160 manages the terminal based on the terminal ID of another communication terminal (hereinafter referred to as a communication destination terminal in the description of FIG. 5) included in the combination acquired in step S21. The communication state is acquired from the unit 130, and it is determined whether the communication destination terminal is not “not connected”. Similar to step S12 in FIG. 4, the communication state of the communication destination terminal may be not only “waiting for communication establishment” but also “communication establishment”. If it is not “not connected” (YES), the process proceeds to step S23, whereas if it is “not connected” (NO), the process is terminated.

  Next, in step S23, the communication management unit 160 connects the communication destination terminal, which is included in the combination acquired in step S21 and determined not to be “unconnected” in step S22, and the communication source terminal. . When connected by the communication management unit 160, both are in a communicable state, that is, “communication established” in the communication state. The communication source terminal and the communication destination terminal that are in a communicable state may perform data communication directly or may perform data communication via the communication management unit 160. A specific process for performing data communication is the same as that in step S13.

  Next, in step S24, the communication management unit 160 manages the communication state between the communication terminals connected in step S23, and mediates data communication when mediating data communication.

  Next, in step S25, the communication management unit 160 determines whether or not the connection with at least one of the communication source terminal and the communication destination terminal connected in step S23 has been disconnected. If it is determined that the connection with at least one has been disconnected (YES), the process is terminated. If no connection is disconnected (NO), the process returns to step S24.

  The encryption management unit 170 includes an encryption key storage unit 171 and manages encrypted communication between the communication terminal 10 and the server device 100. The encryption key storage unit 171 stores the public key and secret key of the server device 100 and the public key of the communication terminal 10 received from the communication terminal 10. The public key of the communication terminal 10 is stored for each communication terminal 10.

  When data is transmitted to the communication terminal 10, the data is transmitted from the communication unit 110 to the communication terminal after the encryption management unit 170 encrypts the data with the public key of the communication terminal 10. On the other hand, when the encrypted data is received from the communication terminal 10, the data encrypted by the encryption management unit 170 is decrypted with the secret key of the server device 100.

<Communication processing flow>
FIG. 6 is a diagram showing a communication processing flow in the communication system 1 according to the first embodiment of the present invention. This processing starts in response to the communication terminal 10 being connected to the server device 100.

  First, in step S31, the terminal management unit 130 of the server device 100 determines the user ID of the operating user and the terminal ID of the communication terminal owned by the operating user in response to the terminal setting operation being performed on the operating terminal 20. , Received from the operation terminal 20, stored in the terminal information storage unit 131, and managed.

  Next, in step S <b> 32, the terminal use authority management unit 140 of the server device 100 responds to the use authority setting operation performed on the operation terminal 20, the terminal ID of the communication terminal for which the use authority is set, and the use authority. Is associated with the terminal ID and the social relationship information, and is stored and managed in the utilization authority storage unit 141.

  Next, in step S33, the communication management unit 160 of the operation terminal 20 is given to the user of the communication source communication terminal (communication source terminal) in response to the communication source destination setting operation being performed on the operation terminal 20. The use authority of the communication destination communication terminal (communication destination terminal) is determined with reference to the terminal use authority management unit 140, and communication control is performed according to the use authority.

<Example>
When the pet in the cage is to be watched together with a social friend, the server apparatus 100 uses the communication system 1 of the present invention to transfer the video of the surveillance camera that photographs the pet to a communication terminal such as a friend's mobile phone. Can be sent through.

  Specifically, the user who owns the monitoring camera grants the viewing right of the monitoring camera to a social relationship with a friend who wants to watch the pet (for example, a group called a pet watching group including a friend who wants to watch the pet). Then, the friend who has been granted the viewing right sets the connection between the communication terminal and the monitoring camera, so that both are connected via the server device 100, and the video of the monitoring camera is transmitted to the communication terminal.

  Further, when a customer wants to use a room in a hotel or the like, the room key information (password) can be delivered to the user's communication terminal using the communication system 1 of the present invention. The key information in this example is generated every time an unlock request is made, and is preferably time-limited, and may be a personal identification number, a password, or an electronic key used in NFC. This key is preferably encrypted and communicated using a public key infrastructure system.

  Specifically, a user who manages a lock in a room grants the exclusive operation right of a lock in a room to a social relationship with the user (for example, a group called a user in room 1201). In addition, the user sets up a connection between his / her communication terminal and the lock of the room where he / she stays. Then, when the user operates the keypad of the lock input / output unit installed on the door of the room to make an unlock request, the key information generated by the lock is transferred to the user's communication terminal via the server device 100. The user can unlock it by entering the key information into the lock.

  As described above, according to the present embodiment, communication between communication terminals can be controlled according to the relationship in the SNS between users who own communication terminals. Moreover, the use authority of a communication terminal can be changed according to the relationship in SNS changing, and the share setting of a communication terminal can be performed easily.

  The communication server device of the present invention can be realized by recording the processing of the communication server device on a recording medium that can be read by the computer system, and reading and executing the processing on the communication server device recorded on the recording medium. . The computer system here includes an OS and hardware such as peripheral devices.

  Further, the “computer system” includes a homepage providing environment (or display environment) if a WWW (World Wide Web) system is used. The program may be transmitted from a computer system storing the program in a storage device or the like to another computer system via a transmission medium or by a transmission wave in the transmission medium. Here, the “transmission medium” for transmitting the program refers to a medium having a function of transmitting information, such as a network (communication network) such as the Internet or a communication line (communication line) such as a telephone line.

  The program may be for realizing a part of the functions described above. Furthermore, what can implement | achieve the function mentioned above in combination with the program already recorded on the computer system, and what is called a difference file (difference program) may be sufficient.

  The embodiments of the present invention have been described in detail with reference to the drawings. However, the specific configuration is not limited to the embodiments, and includes designs and the like that do not depart from the gist of the present invention.

10a, 10b Communication terminal 20a, 20b Operation terminal 100 Server device 110 Communication unit 120 Social management unit 121 Social relation storage unit 130 Terminal management unit 131 Terminal information storage unit 132 Product information storage unit 140 Terminal usage authority management unit 141 Usage authority storage unit 150 Pre-connection management unit 151 Connection pair storage unit 160 Communication management unit 170 Encryption management unit 171 Encryption key storage unit

Claims (9)

A communication server device that mediates communication between communication terminals,
A communication means for communicating with a communication terminal;
Social management means for providing a social networking service in which a plurality of users participate, and managing social relationship information indicating a relationship between users in the service in association with user identification information of the user having the relationship; ,
Terminal management means for managing terminal identification information of a communication terminal owned by a user in association with the user identification information;
Terminal usage authority management means for granting and managing the usage authority set for the communication terminal managed by the terminal management means in association with the social relationship information of the user who owns the communication terminal;
In communication between the communication terminals, communication management means for performing communication control according to the use authority of the connection destination communication terminal managed by the terminal use authority management means in association with social relationship information between users who own each communication terminal When,
A communication server device comprising: Further comprising encryption key management means for managing the encryption key pair of the communication server device and the public key of the communication terminal;
The communication server device according to claim 1, wherein the communication unit performs public-key-based encrypted communication with the communication terminal using the encryption key pair and the public key.   A communication terminal in a relationship of granting the use authority set in advance by the user in order to cause the communication terminal owned by the user of the service to communicate with the communication terminal of another user who is granted the use authority of the communication terminal The communication server device according to claim 1, further comprising: a pre-connection management unit that manages the combination configuration.   The communication server device according to any one of claims 1 to 3, wherein the usage authority can be set for each communication terminal.   The communication server device according to any one of claims 1 to 4, wherein the usage authority can be set for each type of communication terminal. The social relation information includes information indicating a group for classifying users participating in the service,
The communication server device according to claim 1, wherein the usage authority can be set for each group. A communication system comprising a communication server device that mediates communication between communication terminals, and a plurality of communication terminals that communicate with the communication server device,
The communication server device is
First communication means for communicating with the plurality of communication terminals;
Social management means for providing a social networking service in which a plurality of users participate, and managing social relationship information indicating a relationship between users in the service in association with user identification information of the user having the relationship; ,
Terminal management means for managing terminal identification information of a communication terminal owned by a user in association with the user identification information;
Terminal usage authority management means for granting and managing the usage authority set for the communication terminal managed by the terminal management means in association with the social relationship information of the user who owns the communication terminal;
In communication between the communication terminals, communication management means for performing communication control according to the use authority of the connection destination communication terminal managed by the terminal use authority management means in association with social relationship information between users who own each communication terminal When,
With
The plurality of communication terminals are
Second communication means for communicating with the communication server device;
Communication start means for transmitting terminal identification information for associating with user identification information of a user who owns the terminal to the communication server apparatus via the second communication means when starting communication with the communication server apparatus; ,
A communication system characterized by comprising: A communication mediating method in a communication server device that mediates communication between communication terminals,
The communication server device provides a social networking service in which a plurality of users participate, and associates social relationship information indicating a relationship between users in the service with user identification information of a user having the relationship. Social management means for managing, terminal management means, terminal use authority management means, communication management means, and communication means for communicating with the communication terminal,
A first step in which the terminal management means registers the terminal identification information of the communication terminal owned by the user received from the user of the service in association with the user identification information of the user;
The terminal usage authority management means has received the usage authority for its own communication terminal registered in the terminal management means, which is given to the user's social relation information by the user of the service, via the communication means. In response, a second step of managing the use authority in association with the social relationship information of the user;
In the communication between the communication terminals designated by the user of the service, the communication management means is associated with the social relationship information between the users who own each communication terminal and is managed by the terminal use authority management means. A third step of performing communication control according to the use authority of
A communication mediating method characterized by including: In a communication server device that mediates communication between communication terminals, a program for causing a computer to execute a communication mediation method,
The communication server device provides a social networking service in which a plurality of users participate, and associates social relationship information indicating a relationship between users in the service with user identification information of a user having the relationship. Social management means for managing, terminal management means, terminal use authority management means, communication management means, and communication means for communicating with the communication terminal,
A first step in which the terminal management means registers terminal identification information of a communication terminal owned by the user received from the user of the service via the communication means in association with the user identification information of the user; ,
The terminal usage authority management means has received the usage authority for its own communication terminal registered in the terminal management means, which is given to the user's social relation information by the user of the service, via the communication means. In response, a second step of managing the use authority in association with the social relationship information of the user;
In the communication between the communication terminals designated by the user of the service, the communication management means is associated with the social relationship information between the users who own each communication terminal and is managed by the terminal use authority management means. A third step of performing communication control according to the use authority of
A program that causes a computer to execute.

Images