JP6287718B2 - Image forming system, image forming apparatus, portable terminal apparatus, information terminal apparatus, and transaction method - Google Patents

Description

  The present invention relates to an image forming system with improved security performance while reducing troublesomeness such as password entry, and an image forming apparatus, a portable terminal device, an information terminal device, and a transaction method for the image forming system.

  When printing a highly confidential document on an image forming apparatus such as a printer shared by a plurality of users in an office or the like, a printed material is taken from the information terminal device such as a personal computer that has performed printing to the image forming apparatus. In the meantime, there is a risk of being misunderstood by a third party, stolen, or taken away. Patent Document 1 discloses that a portable terminal can be instructed to print or stop using an electronic mail function of a portable terminal.

JP 2005-222213 A

  As described in Japanese Patent Application Laid-Open No. 2004-260, the above-described problem can be avoided by performing a print instruction or the like using a portable terminal at the image forming apparatus. However, Patent Document 1 has the trouble of selecting a print document stored in a personal computer with a portable terminal, specifying an address of an image forming apparatus that performs printing, and inputting a password or the like. In addition, the operability cannot be said to be good because it is different from a normal printing job.

  Generally, when performing printing or the like, since the setting of the image forming apparatus that is normally used is completed in the personal computer, there is no need to set an address unless printing is performed on another image forming apparatus at the time of printing. Printing can be easily performed using a mouse or keyboard, and the user himself is used to such operations.

  And in such a form that gives instructions to print on such a personal computer, when printing confidential documents, it is printed for the purpose of preventing them from being mistaken by a third party, being stolen, or taken away. In some systems, a password is input on a personal computer at the time of execution, print data is transmitted to the image forming apparatus, and the print data is output by inputting the password to the image forming apparatus.

  However, in this system, there is an annoyance that the user has to input a password to the information terminal device and the image forming apparatus when executing printing. Moreover, there is a possibility that the password is illegally obtained by a third party because the password input operation is stolen when the password is input.

  The present invention has been made in view of such circumstances, while reducing the annoyance of password entry and the like while being an operation format familiar to users performing printing on an information terminal device such as a personal computer, It is an object of the present invention to provide an image forming system, an image forming apparatus, a portable terminal device, an information terminal device, and a transaction method that can enhance security performance.

  The present invention is grasped by the following composition in order to achieve the above-mentioned object.

(1) The image forming system of the present invention creates first encrypted data by encrypting an authentication ID with a common key, and forms job data in which image forming data is added to the first encrypted data. A second encrypted data that is transmitted to the device and encrypted by encrypting the common key and the authentication ID with a public key received from the mobile terminal device, and the second encrypted data is code-converted An information terminal device that displays an image so that the mobile terminal device can read the image, and the image forming device includes a secret key in which the second encrypted data is pre-registered in the mobile terminal device based on the code image The decrypted common key is received from the portable terminal device as the confirmation common key and the authentication ID as the confirmation authentication ID, and the first encrypted data is decrypted with the confirmation common key. If the authentication ID obtained by the No. 該復 matches said confirmation authentication ID, and executes image forming based on the image formation data.
(2) The image forming apparatus of the present invention receives job data in which image formation data is added to the first encrypted data created by encrypting the authentication ID with a common key from the information terminal device, and confirms it. When a common key and a confirmation authentication ID are received from the portable terminal device, the first encrypted data is decrypted with the confirmation common key, and the authentication ID obtained by the decryption matches the confirmation authentication ID Then, image formation based on the image formation data is executed.
(3) The mobile terminal device of the present invention receives the common key encrypted with the public key previously passed to the information terminal device and the authentication ID as the second encrypted data, and is registered in advance corresponding to the public key. The common key obtained by decrypting the second encrypted data with the private key is used as a confirmation common key and the authentication ID is passed to the image forming apparatus as a confirmation authentication ID.
(4) The information terminal device of the present invention creates first encrypted data by encrypting an authentication ID with a common key, and forms job data in which image formation data is added to the first encrypted data. A second encrypted data that is transmitted to the device and encrypted by encrypting the common key and the authentication ID with a public key received from the mobile terminal device, and the second encrypted data is code-converted The image is displayed so that the portable terminal device can read the image.
(5) The transaction method of the present invention includes a custody step of associating first encrypted data created by encrypting the authentication ID with a common key and depositing a delivery target, and a public key received from the mobile terminal device To create second encrypted data by encrypting the common key and the authentication ID, and display a code image obtained by transcoding the second encrypted data so that the portable terminal device can read the code image. Based on the display step and the code image read by the mobile terminal device, the second encrypted data is decrypted with a secret key pre-registered in the mobile terminal device, and the common key obtained by this decryption is confirmed. A receiving step of receiving the authentication ID obtained by the decryption as a verification authentication ID and receiving the authentication ID as a common key; and the first encrypted data with the verification common key It decodes, having a delivery step of delivering the delivery target if the obtained authentication ID matches with the confirmation ID by No. 該復.

  According to the present invention, an image forming system capable of improving security performance while reducing the troublesomeness of password entry and the like while being in an operation format familiar to a user performing printing on an information terminal device such as a personal computer. An image forming apparatus, a portable terminal device, an information terminal device, and a transaction method can be provided.

1 is a diagram showing a system configuration of an image forming system according to an embodiment of the present invention. FIG. 2 is a block diagram showing an internal configuration of each apparatus constituting the image forming system of FIG. 1. FIG. 2 is a sequence diagram illustrating an image forming processing operation of the image forming system in FIG. 1. 3 is a flowchart showing a print processing operation of the information terminal device of FIG. 1. It is a figure which shows an example of the confidential document print setting screen produced | generated by the information terminal device of FIG. It is a figure which shows an example of the authentication data screen produced | generated by the information terminal device of FIG. 3 is a flowchart showing an operation of reading an encrypted two-dimensional code by the mobile terminal device of FIG. It is a figure which shows an example of the encrypted two-dimensional code displayed by the portable terminal device of FIG. 3 is a flowchart showing a confidential document output processing operation of the image forming apparatus of FIG. 1.

  DESCRIPTION OF EMBODIMENTS Hereinafter, embodiments for carrying out the present invention (hereinafter referred to as “embodiments”) will be described in detail with reference to the accompanying drawings. In description of embodiment, the same number is attached | subjected to the same element through the whole.

(Configuration of image forming system 1)
FIG. 1 is a system configuration diagram of an image forming system according to the present embodiment. As shown in FIG. 1, an image forming system 1 according to the present embodiment includes an image forming apparatus 30 that prints print data, an information terminal apparatus 10 that communicates with the image forming apparatus 30 in a wired or wireless manner, and a mobile terminal apparatus. 20. For example, the image forming apparatus 30 is connected to the LAN 40, and is connected to the information terminal apparatus 10 through the LAN 40. It is assumed that the user of the information terminal device 10 carries the mobile terminal device 20.

  The information terminal device 10 is, for example, a personal computer, and a printer driver that generates print control data to be transmitted to the image forming device 30 is installed. The print control data is data sent from the information terminal apparatus 10 to the image forming apparatus in order to cause the image forming apparatus 30 to form an image. For example, control data and drawing data (for example, control data for controlling the image forming apparatus 30). Image forming data including document data), authentication ID, control data for controlling the image forming apparatus 30, and image forming data including an authentication ID including drawing data (for example, document data).

  The printer driver serves as an interface between an OS (Operating System) installed in the information terminal device 10 and an application program (for example, a document creation application), and through a printing API (Application Programming Interface) provided by the OS printing subsystem. Perform drawing commands. The print subsystem receives the drawing command and instructs the printer driver to generate print control data. The generated print control data is transferred from the print subsystem to the image forming apparatus 30 and printing is executed. .

  Next, the configuration of the image forming system 1 according to the present embodiment will be described with reference to the functional block diagram of FIG.

  As shown in FIG. 2, the image forming system 1 includes an information terminal device 10, a mobile terminal device 20, and an image forming device 30.

(Configuration of information terminal device 10)
The information terminal device 10 includes a communication unit 11, an encryption key generation unit 12, a storage unit 13, a display unit 14, and a control unit 15.

  The communication unit 11 performs wireless or wired communication with the image forming apparatus 30 and transmits the print control data 130 to the image forming apparatus 30. Note that a function of performing wireless communication with the mobile terminal device 20 may be provided.

  The encryption key generation unit 12 is a part that generates a common key 110 according to a common key encryption method, and this common key 110 is used for encryption and decryption of an authentication ID 120 assigned to each print job. The common key encryption method is a method in which encryption and decryption can be performed with one key (common key).

  The storage unit 13 is composed of, for example, a rewritable flash memory, and stores programs executed by the control unit 15 and various data. The various data includes the public key 100, the common key 110 generated by the encryption key generation unit 12, the print control data 130, and the authentication ID 120 that is a unique number assigned for each print. The public key 100 is generated in advance by the mobile terminal device 20 and is stored in the storage unit 13 by input by the user.

  The display unit 14 is a device that displays various screens according to instructions from the user, and is a display having a display device such as an LCD (Liquid Crystal Display) or an organic EL (Organic Electro-Luminescence).

  The control unit 15 sequentially reads and executes a program stored in the storage unit 13 by a CPU (microprocessor), thereby encrypting the authentication ID 120 assigned to each print job (delivery target) with the common key 110 and performing the first encryption. A second authentication data is generated by encrypting the authentication ID 120 and the common key 110 with the registered public key 100. After that, the control unit 15 creates second encrypted code data obtained by encoding the second encrypted data (for example, QR code (registered trademark)) and print control data (image formation including the first encrypted authentication ID). Data) 130 is created, and each function is controlled. Details will be described later.

(Configuration of mobile terminal device 20)
The mobile terminal device 20 includes a communication unit 21, an encryption key generation unit 22, a storage unit 23, an imaging unit 24, a display unit 26, and a control unit 25.

  For example, when the mobile terminal device 20 is a smartphone or the like, the communication unit 21 is a communication interface that performs voice communication and data communication wirelessly. Note that the communication unit 21 may have a function capable of wireless communication with the information terminal device 10 and the image forming apparatus 30.

  The encryption key generation unit 22 generates the public key 100 and the secret key 140 according to the public key encryption method. Note that the public key encryption method is an encryption method that can be decrypted only with a private key when encrypted with the public key, and conversely only decrypted with the public key when encrypted with the private key. In general, a key that is disclosed for use in encryption is called a public key, and a key that is kept private for decryption without being disclosed is called a secret key. As described above, the public key 100 generated by the encryption key generation unit 22 is registered in the storage unit 13 of the information terminal device 10.

  The storage unit 23 is composed of, for example, a rewritable flash memory, and stores programs executed by the control unit 25 and various data. The various data includes the public key 100 and the secret key 140 generated by the encryption key generation unit 22.

  The imaging unit 24 is, for example, a camera and captures second encrypted code data (for example, data obtained by converting the second encrypted data into a QR code (registered trademark)) displayed on the display unit 14 of the information terminal device 10. Thus, the second encrypted code data is acquired. The acquired second encrypted code data is stored in the storage unit 23.

  The control unit 25 sequentially reads and executes a program stored in the storage unit 23 by a CPU (microprocessor). For example, the control unit 25 reads the second encrypted code data from the storage unit 23, analyzes the second encrypted code data to obtain the second encrypted data state, and then stores the secret stored in the storage unit 23. Using the key 140, the second encrypted data is decrypted into the state of the authentication ID 120 and the common key 110. Further, it plays a role of controlling each function such as creating coded data obtained by coding the authentication ID 120 and the common key 110 (for example, QR code (registered trademark)). Details will be described later.

  The display unit 26 is a display having a display device such as an LCD (Liquid Crystal Display) or an organic EL (Organic Electro-Luminescence), and encodes, for example, the common key 110 and the authentication ID 120 created by the control unit 25 (for example, Coded data or the like that has been converted into a QR code (registered trademark) is displayed.

(Configuration of image forming apparatus 30)
The image forming apparatus 30 includes a communication unit 31, a storage unit 32, a reading unit 33, an analysis unit 34, a comparison unit 35, an output unit 36, and a control unit 37.

  The communication unit 31 is a communication interface that performs wireless or wired communication with the information terminal device 10. Note that a function of performing wireless communication with the mobile terminal device 20 may be provided.

  The reading unit 33 reads the encoded data of the authentication ID 120 and the common key 110 encoded (for example, QR code (registered trademark)) by the mobile terminal device 20 displayed on the display unit 26 of the mobile terminal device 20. And sent to the analysis unit 34.

  The analysis unit 34 analyzes the encoded data read by the reading unit 33 and acquires the authentication ID 120 and the common key 110. The obtained authentication ID 120 and common key 110 are stored in the storage unit 32.

  The storage unit 32 is composed of, for example, a rewritable flash memory, and stores programs executed by the control unit 25 and various data. Among these various types of data, the encoded data obtained by encoding the authentication ID 120 and the common key 110 (for example, QR code (registered trademark)) acquired from the mobile terminal device 20 by being read by the reading unit 33, An authentication ID 120 and a common key 110 obtained by analyzing the encoded data by the analysis unit 34 are included. The various data includes print control data (image forming data including the first encryption authentication ID) 130 transmitted from the information terminal device 10 and the like.

  The comparison unit 35 uses the common key 110 acquired by the analysis of the analysis unit 34 and the first encryption authentication of the print control data (image forming data including the first encryption authentication ID) 130 stored in the storage unit 32. The authentication ID 120 obtained by decrypting the ID is compared with the authentication ID 120 obtained by the analysis unit 34 analyzing the encoded data acquired from the mobile terminal device 20.

  When the authentication ID 120 is matched by the comparison of the authentication ID 120 of the comparison unit 35, the output unit 36 performs output processing according to the image formation data including the first encrypted authentication ID with which the authentication ID 120 matches, for example, the first encryption A document is output based on drawing data of image forming data including an authentication ID.

  In the control unit 37, a CPU (microprocessor) sequentially reads and executes a program stored in the storage unit 32. For example, the control unit 37 reads the encoded data obtained by encoding the authentication ID 120 and the common key 110 (for example, QR code (registered trademark)) displayed on the display unit 26 of the mobile terminal device 20 by the reading unit 33. When read, the analysis unit 34 analyzes the encoded data acquired by the reading, thereby acquiring the authentication ID 120 and the common key 110 and storing them in the storage unit 32. Further, each print control data (image forming data including the first encryption authentication ID) 130 stored in the storage unit 32 is sequentially accessed, and each print control data is obtained using the common key 110 obtained from the coded data. The first encrypted authentication ID that can be decrypted by trying to decrypt the first encrypted authentication ID 130 is decrypted into the authentication ID 120. Then, the control unit 37 collates the authentication ID 120 by causing the comparison unit 35 to compare the authentication ID 120 of the first encrypted authentication ID that can be decrypted with the authentication ID 120 obtained from the encoded data. When the authentication ID 120 matches in the verification of the authentication ID 120, the control unit 37 performs an output process according to the print control data (image forming data including the first encrypted authentication ID) 130 with the matching authentication ID 120. For example, a document is output based on drawing data of image formation data including the first encryption authentication ID. The control unit 37 controls the blocks 31 to 36 described above in order to realize this function. Details will be described later.

  FIG. 3 is an operation sequence diagram illustrating an image forming processing operation of the image forming system 1 according to the present embodiment. According to FIG. 3, the mobile terminal device 20 generates the public key 100 and the private key 140 according to the public key encryption method, and stores the public key 100 and the private key 140 in the storage unit 23. Then, the user registers the public key 100 in the information terminal device 10 (step S101). For example, the user inputs the public key 100 to the information terminal device 10 by using the confidential document print setting screen of the printer property displayed on the display unit 14 of the information terminal device 10 shown in FIG. 100 registrations are made. Since the public key 100 itself can only be used for encryption, there is no problem even if it is known to a third party.

  Since the registered public key 100 is stored in the information terminal device 10, the work for inputting the public key 100 is unnecessary from the next time. However, when the public key 100 is changed, the public key 100 is registered again using this confidential document print setting screen. For example, when another user uses it, it is necessary to change to the public key 100 corresponding to the private key 140 of the mobile terminal device 20 of the user who intends to use the user.

  As shown in FIG. 5, the confidential document printing setting screen is provided with a confidential document printing box. Check whether the confidential document printing setting is valid or not. Select by whether or not. Next, when a printing instruction is issued by the user, the information terminal apparatus 10 executes processing for creating the printing control data 130 and transmitting the printing control data 130 to the image forming apparatus 30 (step S201).

  Details of the creation and transmission processing of the print control data 130 in step S201 will be described below with reference to the flowchart shown in FIG. First, the user creates a document (drawing data), and if the created document (drawing data) is a confidential document, the user checks the box for confidential document printing described above, and does not. In this case, a print instruction is issued with the confidential document printing box unchecked (start). When the print instruction is given, the control unit 15 determines whether the print setting of the confidential document is valid (step S21).

  If the box for confidential document printing is checked and the setting for confidential document printing is valid (“YES” in step S21), the control unit 15 generates an authentication ID 120 (step S22). Note that this authentication ID 120 is generated for each print job. Next, the control unit 15 causes the encryption key generation unit 12 to generate the common key 110 (step S23). The common key 110 is also generated for each print job. Subsequently, the control unit 15 creates a first encrypted authentication ID obtained by encrypting the authentication ID 120 with the common key 110 (step S24). The first encryption authentication ID is assigned to the image formation data to create print control data (image formation data including the first encryption authentication ID) 130 (step S25).

  Here, since the authentication ID 120 of the print control data 130 is in the state of the first encrypted authentication ID encrypted with the common key 110, the print control data 130 propagating on the LAN is eavesdropped and the malicious first Even if the three parties acquire the print control data 130, the authentication ID 120 performed by the image forming apparatus 30 cannot be collated, so that the printing process cannot be executed in the image forming apparatus 30.

  Next, the control unit 15 creates second encrypted data by encrypting the authentication ID 120 and the common key 110 with the public key 100 registered in advance (step S26). Further, the control unit 15 encodes the second encrypted data (step S27), and displays the encoded second encrypted code data on the display unit 14 (step S28). For example, in the present embodiment, since the two-dimensional code (QR code (registered trademark)) is adopted as the type of encoding, the second encrypted code data is the QR code (registered trademark) as shown in FIG. Is output to the display unit 14.

  In this way, not only can a third party not see what is displayed just by looking from the side, but even if this QR code (registered trademark) is taken by a third party. Since it is encrypted with the public key 100, a third party who does not have the private key 140 cannot decrypt it.

  In addition, although demonstrated in detail later, the 2nd encryption code data is displayed on the display part 14 in order to make a user's portable terminal device 20 acquire. In the above, the case of encoding with a two-dimensional code (QR code (registered trademark)) is illustrated, but the type of encoding is not particularly limited, and a one-dimensional code (bar code) may be used. However, since the two-dimensional code (QR code (registered trademark)) can more compactly display data having a larger data capacity, the two-dimensional code (QR code (registered trademark)) has a larger data capacity. Suitable for displaying a lot of encrypted data.

  Returning to the flowchart of FIG. In parallel with displaying the second encrypted code data on the display unit 14 (step S28), the control unit 15 sends the print control data 130 to the image forming apparatus 30 via the communication unit 11 of the information terminal apparatus 10. Transmit (step S29).

  On the other hand, if the box for confidential document printing is not checked and the setting for confidential document printing is not valid ("NO" in step S21), control data and drawing data for controlling the image forming apparatus 30 (for example, a document) The normal print control data 130 that is printed without verification of the authentication ID 120 is generated (step S30), and the normal print control data 130 is converted into an image via the communication unit 11 of the information terminal device 10. It is transmitted to the forming apparatus 30 (step S29).

Returning to the description of FIG. The image forming apparatus 30 stores the print control data 130 transmitted in step S29 of FIG. (Step S301).
If the print control data 130 stored in the storage unit 23 is normal print control data 130 that is not accompanied by the verification of the authentication ID 120, the image forming apparatus 30 executes the printing process. On the other hand, if the print control data 130 is image formation data including the first encrypted authentication ID, the print control data 130 is held in the storage unit 23 without executing the printing process until the verification of the authentication ID 120 is cleared.

  Next, the user uses the imaging unit 24 (for example, camera) of the mobile terminal device 20 to store the second encrypted code data (see step S28 in FIG. 4) displayed on the display unit 14 of the information terminal device 10 described above. The portable terminal device 20 captures the second encrypted code data, and when the second encrypted code data is acquired, the portable terminal device 20 creates coded data to be read by the image forming apparatus 30 ( Step S401).

  The details of the encoded data creation processing in step S401 will be described below with reference to the flowchart shown in FIG. The user uses the imaging unit 24 of the mobile terminal device 20 to store the second encrypted code data displayed on the display unit 14 of the information terminal device 10 in the state of, for example, a two-dimensional code (QR code (registered trademark)). A picture is taken (step S41). Then, when the second encrypted code data is captured by the imaging unit 24 and the mobile terminal device 20 acquires the second encrypted code data, the control unit 25 of the mobile terminal device 20 obtains the code of the second encrypted code data. The second encrypted data is obtained by analysis (step S42).

  Next, the control unit 25 uses the private key 140 stored in the storage unit 23 to decrypt the second encrypted data encrypted with the public key 100 (step S43). By this decryption, the mobile terminal device 20 acquires the authentication ID 120 and the common key 110. Subsequently, the control unit 25 codes the authentication ID 120 and the common key 110 to create coded data (step S44). In the present embodiment, the type of encoding is a two-dimensional code (QR code (registered trademark)), but the type of encoding is not particularly limited, such as a one-dimensional code (bar code). But you can.

  Next, the control unit 25 displays the encoded data (in this example, QR code (registered trademark)) obtained by encoding the authentication ID 120 and the common key 110 on the display unit 26 of the mobile terminal device 20 as shown in FIG. (Step S45). Note that the process of displaying the coded data on the display unit 26 of the mobile terminal device 20 in step S45 does not need to be performed immediately. For example, the user has given an instruction to display on the mobile terminal device 20. Sometimes, the portable terminal device 20 may perform processing for displaying the coded data.

  Returning to the description of FIG. The user displays the encoded data (two-dimensional code in this example) on the display unit 26 of the portable terminal device 20 and causes the reading unit 33 (for example, a two-dimensional code reader) of the image forming apparatus 30 to read the image data. When the device 30 acquires the encoded data from the mobile terminal device 20, the image forming device 30 starts a printing process (step S501).

  Details of the printing process in step S501 will be described below with reference to the flowchart shown in FIG. When the image forming apparatus 30 reads the encoded data (two-dimensional code) displayed on the display unit 26 of the portable terminal device 20 with the reading unit 33 (for example, a two-dimensional code reader) (step S51), the control unit 37 Causes the analysis unit 34 to analyze the code of the encoded data (two-dimensional code) and obtains the authentication ID 120 and the common key 110 (step S52).

  Next, the control unit 37 sequentially accesses each print control data (image forming data including the first encryption authentication ID) 130 stored in the storage unit 32, and uses the common key 110 obtained from the encoded data. Then, the first encrypted authentication ID that can be decrypted is tried and decrypted to the authentication ID 120 (step S53).

  Subsequently, the control unit 37 causes the comparison unit 35 to authenticate the authentication ID 120 obtained from the encoded data and the authentication encrypted from the first encrypted authentication ID of the print control data (image forming data including the first encrypted authentication ID) 130. The IDs 120 are collated to determine whether or not the authentication IDs 120 match each other (step S54). If there is a matching authentication ID 120 (step S54 "YES"), the control unit 37 corresponds to the authentication ID 120. Print document is output by causing the output unit 36 to execute a process of printing the drawing data (document data) of the print control data 130 according to the print control data (image forming data including the first encryption authentication ID) 130 to be performed ( Step S55).

  On the other hand, when there is no matching authentication ID 120 (step S54 “NO”), the control unit 37 displays an error message on the operation panel (not shown) (step S56). Although not shown, in step S53, each print control data (image forming data including the first encryption authentication ID) 130 stored in the storage unit 32 is sequentially accessed, and the common data obtained from the encoded data is obtained. Even if the first encrypted authentication ID of any print control data 130 cannot be decrypted as a result of attempting to decrypt the first encrypted authentication ID of each print control data 130 using the key 110, the control unit An error message 37 is displayed on an operation panel (not shown).

  As described above, in the image forming system 1 according to the present embodiment, when printing a confidential document, the information terminal device 10 generates the authentication ID 120 and the common key 110 and encrypts the authentication ID 120 with the common key 110. The first encrypted authentication ID is created, and print control data (image forming data including the first encrypted authentication ID) 130 for printing the confidential document having the first encrypted authentication ID is created. Since the process of transmitting the print control data 130 to the image forming apparatus 30 is performed, even if the print control data 130 is wiretapped on the communication path and the print control data 130 is acquired by a malicious third party, the authentication ID 120 is encrypted. Therefore, printing processing is not executed and security can be ensured.

  In addition, the authentication ID 120 and the common key 110 from the information terminal device 10 are transferred to the mobile terminal device 20 in the state of the second encrypted data obtained by encrypting the authentication ID 120 and the common key 110 with the public key 100. Furthermore, since the portable terminal device 20 is acquired in the state of the encoded second encrypted code data, it is not only possible for a third party to see what kind of data it is, but tentatively, this second encryption Even if the encrypted code data is obtained by a third party, the decryption of the second encrypted code data requires the private key 140 possessed only by the mobile terminal device 10, and therefore the authentication ID 120 and The common key 110 can be transferred.

  Further, when executing the printing process, after the user decrypts the image data in the mobile terminal device 20 at the image forming apparatus 30, the encoded authentication ID 120 and the encoded data of the common key 110 are displayed on the mobile terminal device 20. Since printing can be executed simply by displaying the image on the unit 26 and causing the reading unit 33 of the image forming apparatus 30 to read the image, there is no need to bother entering a password into the image forming apparatus 30.

  In addition, an operation for causing the mobile terminal device 20 necessary for performing the above-described printing performed by the user to acquire the authentication ID 120 and the common key 110 is the second encryption displayed on the display unit 14 of the information terminal device 10. This is an extremely simple operation, since the coded code data is only captured by the imaging unit 24 of the mobile terminal device 20. The printing is performed while the user is at the image forming apparatus 30, so that the third party can see or hold the confidential document while taking the printed matter at the image forming apparatus 30. There is no worry of being left behind.

  In addition, in order to print a confidential document, the user operation performed on the information terminal apparatus 10 is to register the public key 100 once in the confidential document print setting screen of the printer properties. When printing, just check the box for confidential document printing in the secure document print setting screen of the printer properties, and there is no hassle of entering a password for each printing. In addition, changing the printer properties This is a procedure that is generally performed for other items, so that the operation format is relatively easy for the user to perform operations.

  As mentioned above, although description of this invention has been performed based on specific embodiment, this invention is not limited to the said embodiment. For example, according to the image forming system 1 according to the present embodiment, for example, a two-dimensional code reader is used as the reading unit 33 of the image forming apparatus 30, but an MFP (multifunction printer) is used as the image forming apparatus 30. In this case, a built-in scanner may be substituted. Further, in the above-described embodiment, the case where a print job is applied as a delivery target has been described. However, the delivery target can also be applied to various articles that are targeted for commercial transactions. As described above, the present invention includes modifications and improvements as long as the object of the present invention can be achieved.

  The invention described in the scope of claims attached to the application of this application will be added below. The item numbers of the claims described in the appendix are as set forth in the claims attached to the application of this application.

[Appendix]
<Claim 1>
First encrypted data is created by encrypting an authentication ID with a common key, and job data in which image formation data is added to the first encrypted data is transmitted to the image forming apparatus and received from the portable terminal device The second encryption data is created by encrypting the common key and the authentication ID using the public key so that the portable terminal device can read the code image obtained by transcoding the second encryption data. With an information terminal device to display
The image forming apparatus uses a common key obtained by decrypting the second encrypted data with a secret key registered in advance in the mobile terminal device based on the code image as a confirmation common key and an authentication ID as a confirmation authentication ID. When the first encrypted data is decrypted with the confirmation common key and the authentication ID obtained by the decryption matches the confirmation authentication ID, the image forming data is received from the portable terminal device as An image forming system that executes image formation based on the above.
<Claim 2>
Receiving job data in which image formation data is added to the first encrypted data created by encrypting the authentication ID with a common key from the information terminal device;
The confirmation common key and the confirmation authentication ID are received from the portable terminal device, the first encrypted data is decrypted with the confirmation common key, and the authentication ID obtained by the decryption matches the confirmation authentication ID In this case, image formation is performed based on the image formation data.
<Claim 3>
Receiving a common key encrypted with a public key preliminarily passed to the information terminal device and an authentication ID as second encrypted data;
A common key obtained by decrypting the second encrypted data with a secret key registered in advance corresponding to the public key is passed to the image forming apparatus as a confirmation common key and an authentication ID as a confirmation authentication ID. The portable terminal device characterized by the above-mentioned.
<Claim 4>
First encrypted data is created by encrypting an authentication ID with a common key, and job data in which image formation data is added to the first encrypted data is transmitted to the image forming apparatus and received from the portable terminal device The second encryption data is created by encrypting the common key and the authentication ID using the public key so that the portable terminal device can read the code image obtained by transcoding the second encryption data. An information terminal device characterized by being displayed on the screen.
<Claim 5>
A custody step of associating the first encrypted data created by encrypting the authentication ID with the common key and depositing the delivery target;
A second encrypted data is created by encrypting the common key and the authentication ID with a public key received from a portable terminal device, and a code image obtained by transcoding the second encrypted data is generated as the portable terminal device. A display step to display the data so that it can be read,
Based on the code image read by the mobile terminal device, the second encrypted data is decrypted with a secret key registered in advance in the mobile terminal device, and a common key obtained by the decryption is received as a confirmation common key. And a receiving step of receiving the authentication ID obtained by the decryption as a verification authentication ID;
A delivery step of decrypting the first encrypted data with the confirmation common key and delivering the delivery target when an authentication ID obtained by the decryption matches the confirmation ID;
A transaction method characterized by comprising:

DESCRIPTION OF SYMBOLS 1 Image forming system 10 Information terminal device 11 Communication part 12 Encryption key generation part 13 Storage part 14 Display part 15 Control part 20 Portable terminal device 21 Communication part 22 Encryption key generation part 23 Storage part 24 Imaging part 25 Control part 26 Display part 30 Image forming apparatus 31 Communication unit 32 Encryption key generation unit 33 Storage unit 34 Reading unit 35 Analysis unit 36 Comparison unit 37 Output unit 38 Control unit 40 LAN
100 Public key 110 Common key 120 Authentication ID
130 Print control data 140 Private key

Claims (5)

First encrypted data is created by encrypting an authentication ID with a common key, and job data in which image formation data is added to the first encrypted data is transmitted to the image forming apparatus and received from the portable terminal device The second encryption data is created by encrypting the common key and the authentication ID using the public key so that the portable terminal device can read the code image obtained by transcoding the second encryption data. With an information terminal device to display
The image forming apparatus uses a common key obtained by decrypting the second encrypted data with a secret key registered in advance in the mobile terminal device based on the code image as a confirmation common key and an authentication ID as a confirmation authentication ID. When the first encrypted data is decrypted with the confirmation common key and the authentication ID obtained by the decryption matches the confirmation authentication ID, the image forming data is received from the portable terminal device as An image forming system that executes image formation based on the above. Receiving job data in which image formation data is added to the first encrypted data created by encrypting the authentication ID with a common key from the information terminal device;
The confirmation common key and the confirmation authentication ID are received from the portable terminal device, the first encrypted data is decrypted with the confirmation common key, and the authentication ID obtained by the decryption matches the confirmation authentication ID In this case, image formation is performed based on the image formation data. Receiving a common key encrypted with a public key preliminarily passed to the information terminal device and an authentication ID as second encrypted data;
A common key obtained by decrypting the second encrypted data with a secret key registered in advance corresponding to the public key is passed to the image forming apparatus as a confirmation common key and an authentication ID as a confirmation authentication ID. The portable terminal device characterized by the above-mentioned. First encrypted data is created by encrypting an authentication ID with a common key, and job data in which image formation data is added to the first encrypted data is transmitted to the image forming apparatus and received from the portable terminal device The second encryption data is created by encrypting the common key and the authentication ID using the public key so that the portable terminal device can read the code image obtained by transcoding the second encryption data. An information terminal device characterized by being displayed on the screen. A custody step of associating the first encrypted data created by encrypting the authentication ID with the common key and depositing the delivery target;
A second encrypted data is created by encrypting the common key and the authentication ID with a public key received from a portable terminal device, and a code image obtained by transcoding the second encrypted data is generated as the portable terminal device. A display step to display the data so that it can be read,
Based on the code image read by the mobile terminal device, the second encrypted data is decrypted with a secret key registered in advance in the mobile terminal device, and a common key obtained by the decryption is received as a confirmation common key. And a receiving step of receiving the authentication ID obtained by the decryption as a verification authentication ID;
A delivery step of decrypting the first encrypted data with the confirmation common key and delivering the delivery target when an authentication ID obtained by the decryption matches the confirmation ID;
A transaction method characterized by comprising:

Images