JP7132679B1 - Program, information processing device, information processing system, information processing method - Google Patents

Abstract

Kind Code: A1 In recent years, when using devices and devices such as unmanned aerial vehicles such as drones (hereinafter referred to as devices), there are cases where users are required to possess qualifications such as appropriate licenses and licenses. Provided are a program, an information processing device, an information processing system, and an information processing method that allow a user to appropriately use a device that requires a qualification or permission to use. Kind Code: A1 In an information processing system, a program includes: a receiving step for receiving a request regarding use of a device from a user; and a determination step of determining whether the user is allowed to use the apparatus based on the use condition information acquired in the condition acquisition step. [Selection drawing] Fig. 15

Description

The present disclosure relates to a program, an information processing device, an information processing system, and an information processing method.

Techniques capable of authenticating the validity and legitimacy of user qualifications and authorities are known.
Patent Literature 1 discloses an authentication system capable of authenticating the validity and legitimacy of a person's qualifications anywhere.
Patent Literature 2 discloses a device with a security function that achieves both security protection and user convenience.
In Patent Document 3, acquired qualifications, licenses, certificates, etc. are centrally managed in a database, and various qualification acquisition histories can be referred to at any time as needed, and at the same time, falsification and falsification of qualifications, careers, etc. are prevented. A credential management system is disclosed that can.

JP 2017-182326 A JP 2015-226294 A JP 2007-226637 A

In recent years, when using devices and devices (hereinafter referred to as devices) such as unmanned aerial vehicles such as drones, there are cases where users are required to possess qualifications such as appropriate licenses and licenses. In addition, the user is required to have a license, license, etc., and specify the area (hereinafter referred to as the area) such as the date, time, place, etc., for using the device in advance, and submit a notification to the prescribed approval authority to obtain permission. sometimes you need to get The user may use the device only at the time and in the area permitted by the approval authority.
On the other hand, when using the device, the user has to use the device within the range of the date and time and the area permitted by the approval authority, which is troublesome. In addition, there are cases where the user forgets the date and time and the area permitted by the approval authority, thereby violating the use within the scope permitted by the approval period.
Therefore, the present disclosure has been made to solve the above problems, and its object is to provide a technology that allows a user to appropriately use a device that requires a license or permission to use. It is something to do.

A program to be executed by a computer comprising a processor and a storage unit, the program comprising: a receiving step for receiving a request from a user regarding the use of the device; and user information identifying the user received in the receiving step. and a condition acquisition step of acquiring usage condition information related to the usage condition of the device by the user based on the device information specifying the device; A program that causes a step to be executed.

According to the present disclosure, the user can properly use the device.

2 is a block diagram showing the functional configuration of the information processing system 1; FIG. 3 is a block diagram showing the functional configuration of the server 10; FIG. 2 is a block diagram showing the functional configuration of an organization server 20; FIG. 3 is a block diagram showing a functional configuration of a user terminal 30; FIG. 3 is a block diagram showing the functional configuration of the device terminal 40; FIG. FIG. 10 is a diagram showing the data structure of a user table 1012; FIG. FIG. 10 is a diagram showing the data structure of a group table 1013; FIG. FIG. 10 is a diagram showing the data structure of a device table 1014; FIG. FIG. 10 is a diagram showing the data structure of an authentication table 1015; FIG. FIG. 10 is a diagram showing the data structure of a log table 1016. FIG. FIG. 11 shows the data structure of a qualification table 2012; FIG. 13 is a diagram showing the data structure of a report table 2013; FIG. FIG. 10 is a diagram showing the data structure of a permission table 2014; FIG. It is a flowchart which shows the operation|movement of a notification process. 4 is a flow chart showing the operation of authentication processing; It is an example of a screen which shows operation|movement of an authentication process. 2 is a block diagram showing the basic hardware configuration of computer 90. FIG.

Hereinafter, embodiments of the present disclosure will be described with reference to the drawings. In all the drawings for explaining the embodiments, common constituent elements are given the same reference numerals, and repeated explanations are omitted. It should be noted that the following embodiments do not unduly limit the content of the present disclosure described in the claims. Also, not all the components shown in the embodiments are essential components of the present disclosure. Each figure is a schematic diagram and is not necessarily strictly illustrated.

<Configuration of information processing system 1>
An information processing system 1 according to the present disclosure is an information processing system that provides a service for authenticating use of a device to a user.
The information processing system 1 includes information processing devices such as a server 10, an institution server 20, a user terminal 30, and a device terminal 40, which are connected via a network N. FIG.
FIG. 1 is a block diagram showing the functional configuration of an information processing system 1. As shown in FIG.
FIG. 2 is a block diagram showing the functional configuration of the server 10. As shown in FIG.
FIG. 3 is a block diagram showing the functional configuration of the institution server 20. As shown in FIG.
FIG. 4 is a block diagram showing the functional configuration of the user terminal 30. As shown in FIG.
FIG. 5 is a block diagram showing the functional configuration of the device terminal 40. As shown in FIG.

Each information processing device is composed of a computer having an arithmetic device and a storage device. The basic hardware configuration of the computer and the basic functional configuration of the computer realized by the hardware configuration will be described later. For each of the server 10, the institution server 20, the user terminal 30, and the device terminal 40, descriptions overlapping the basic hardware configuration of the computer and the basic functional configuration of the computer, which will be described later, will be omitted.

<Configuration of Server 10>
The server 10 is an information processing device that provides a service for authenticating the use of the device to the user.
The server 10 has a storage unit 101 and a control unit 104 .

<Configuration of Storage Unit 101 of Server 10>
Storage unit 101 of server 10 includes application program 1011 , user table 1012 , group table 1013 , device table 1014 , authentication table 1015 and log table 1016 .

The application program 1011 is a program for causing the control unit 104 of the server 10 to function as each functional unit.
Application programs 1011 include applications such as web browser applications.

The user table 1012 is a table that stores and manages information on member users (hereinafter referred to as users) who use the service. By registering to use the service, the user's information is stored in a new record in the user table 1012 . This enables the user to use the service according to the present disclosure.
The user table 1012 is a table having user ID, user name, and group ID columns with user ID as a primary key.
FIG. 6 is a diagram showing the data structure of the user table 1012. As shown in FIG.

User ID is an item that stores user identification information for identifying a user. User identification information is an item in which a unique value is set for each user.
The user name is an item that stores the name of the user. Any character string such as a nickname may be set as the user name instead of the full name.
Group ID is an item that stores group identification information for identifying the group to which the user belongs.

The group table 1013 is a table for storing and managing information about groups (group information). The group can be defined by any organizational unit such as a company, organization, corporation, or organization to which the user belongs, or a department or organization within the company.
The group table 1013 is a table having a group ID as a primary key and columns of group ID, group name, and administrator ID.
FIG. 7 is a diagram showing the data structure of the group table 1013. As shown in FIG.

Group ID is an item that stores group identification information for identifying a group. Group identification information is an item in which a unique value is set for each group information.
The group name is an item that stores the name of the group. Any character string can be set for the group name.
The administrator ID is an item that stores the user identification information of the administrator assigned to the group.

The device table 1014 is a table for storing and managing information about devices (device information).
The device table 1014 is a table having a device ID as a primary key and columns of device ID and device type.
FIG. 8 is a diagram showing the data structure of the device table 1014. As shown in FIG.

The device ID is an item that stores device identification information for identifying the device. The device identification information is an item in which a unique value is set for each piece of device information.
The device type is an item that stores information (device type information) indicating the type of device specified by the device identification information. The device type includes a name indicating the type of device, a device type code indicating the type of device, and the like.
Specifically, equipment types include doors, safes, air conditioning equipment, POS systems (point of sale information management systems), automobiles, trucks, buses, trains, ships, airplanes, drones, lifting lifts installed in factories, cranes, Machine tools, belt conveyors, shutters, product manufacturing lines, seals (registered seals), and other arbitrary equipment, equipment, and devices are included.

The authentication table 1015 is a table for storing and managing information (authentication information) relating to authentication of device use by the user.
The authentication table 1015 is a table having columns of user ID, device ID, permission period, and permission area.
FIG. 9 is a diagram showing the data structure of the authentication table 1015. As shown in FIG.

User ID is an item that stores user identification information for identifying a user.
The device ID is an item that stores device identification information for identifying the device.
The permitted period is an item that stores the period during which the user can use the device. Specifically, the permitted period includes a start date and time and an end date and time that define a period during which the user identified by the user ID can use the device identified by the device ID.
The permitted area is an item that stores the area (area information) in which the user can use the device. Specifically, the permitted area includes information defining an area in which the user identified by the user ID can use the device identified by the device ID.
The area information may include an arbitrary area identification code or the like assigned to each mesh-shaped geographic area partitioned by predetermined latitude and longitude. The area information may include an arbitrary area identification code such as a national local government code given to each administrative division such as a municipality such as a municipality. Area information may also include information about the altitude at which the user can use the device.
In addition, in the present disclosure, other environmental conditions such as altitude, weather, air pressure, temperature, etc. may be stored as conditions for using the device by the user, in addition to the permitted period and permitted area. The usage conditions are not limited to the permitted period and permitted area, and the user can use the device within the scope of the usage conditions.

The log table 1016 is a table for storing and managing information (log information) regarding device usage. As the user uses the device, information about the device is stored in the log data item of log table 1016 .
The log table 1016 is a table having columns of user ID, device ID, and log data.
FIG. 10 is a diagram showing the data structure of the log table 1016. As shown in FIG.

User ID is an item that stores user identification information for identifying a user.
The device ID is an item that stores device identification information for identifying the device.
The log data is an item that stores log information of the user identified by the user ID using the device identified by the device ID. Specifically, the log information includes sensing data from the device terminal 40 at each time. For example, the log information includes location information such as latitude and longitude of the device for each time. Log information may include information such as device temperature, pressure, altitude, and the like.

<Configuration of Control Unit 104 of Server 10>
The control unit 104 of the server 10 has a user registration control unit 1041 and an authentication unit 1042 . Control unit 104 implements each functional unit by executing application program 1011 stored in storage unit 101 .

The user registration control unit 1041 performs processing for storing information of users who wish to use the service according to the present disclosure in the user table 1012 .
The information stored in the user table 1012 is transmitted to the server 10 by the user opening a web page or the like operated by the service provider from any information processing terminal, entering information in a predetermined input form, and transmitting the information to the server 10 . The user registration control unit 1041 stores the received information in a new record of the user table 1012, and user registration is completed. As a result, the users stored in the user table 1012 can use the service.
Prior to registration of user information in the user table 1012 by the user registration control unit 1041, the service provider may perform a predetermined examination to limit the user's permission to use the service.
The user ID may be any character string or number that can identify the user, any character string or number desired by the user, or any character string or number automatically set by the user registration control unit 1041. .

<Configuration of Institution Server 20>
The institution server 20 is an information processing device that provides a service of storing and managing information on qualifications possessed by users and permission information on use of the device for each user and qualification information. The agency server 20 is an information processing device operated and managed by an approval agency.
In the present disclosure, the organization server 20 is configured to store the qualification table 2012, the report table 2013, and the permission table 2014, but the qualification table 2012, the report table 2013, and the permission table 2014 are realized by a plurality of different servers. I don't mind. Specifically, the first organization server provides a service for storing and managing information related to qualifications possessed by users, and the second organization server provides a service for storing and managing authentication information related to use of devices for each user and qualification information. It may be realized by a plurality of institution servers such as a two-institution server.
The engine server 20 has a storage unit 201 and a control unit 204 .

<Configuration of Storage Unit 201 of Institution Server 20>
Storage unit 201 of institution server 20 includes application program 2011 , qualification table 2012 , notification table 2013 , and permission table 2014 .

The application program 2011 may be stored in advance in the storage unit 201, or may be downloaded from a web server or the like operated by the service provider via the communication IF.
Application programs 2011 include applications such as web browser applications.
Application program 2011 includes an interpreted programming language such as JavaScript® that runs on a web browser application stored on institution server 20 .

The qualification table 2012 is a table for storing and managing information on qualification (qualification information). The entitlements include information such as public, private, and national entitlement for the user to use the device, as well as authority to use the device.
The qualification table 2012 is a table having columns of user ID, qualification code, and qualification name.
FIG. 11 shows the data structure of the qualification table 2012. As shown in FIG.

User ID is an item that stores user identification information for identifying a user.
A qualification code is an item that stores qualification identification information for identifying a qualification.
The qualification name is an item that stores the name of the qualification. Any character string can be set for the qualification name.

The report table 2013 is a table for storing and managing information (report information) related to a report received from a user for using the device.
The report table 2013 is a table having columns of user ID, device ID, and report data.
FIG. 12 is a diagram showing the data structure of the notification table 2013. As shown in FIG.

User ID is an item that stores user identification information for identifying a user. Instead of the user identification information, the user name, the user's full name, etc. may be stored.
The device ID is an item that stores device identification information of a device that the user desires to use.
The notification data is an item that stores notification information for using the device by the user. The notification information includes the start date and time of use of the device, the end date and time of use of the device, area identification information for specifying the use area, and the like.

The permission table 2014 is a table for storing and managing information (permission information) regarding the usage conditions of the device permitted by the approval authority.
The permission table 2014 is a table having columns of user ID, device ID, permission period, and permission area.
FIG. 13 shows the data structure of the permission table 2014. As shown in FIG.

User ID is an item that stores user identification information for identifying a user authorized by the approval authority. Instead of the user identification information, the user name, the user's full name, etc. may be stored.
The device ID is an item for storing device identification information of a device permitted by an approval authority.
The permitted period is an item that stores the usable period of the device permitted by the approval authority. Since it is the same as the permitted period item in the authentication table 1015, the description is omitted.
The permitted area is an item that stores the usable area of the device permitted by the approved period. Since it is the same as the permitted area item in the authentication table 1015, the description is omitted.
In addition, in the present disclosure, in addition to the permitted period and permitted area, other environmental conditions such as altitude, weather, air pressure, and temperature may be stored as the usage conditions of the device permitted by the approved period. . The terms of use are not limited to the permitted period or permitted area.

<Configuration of control unit 204 of engine server 20>
The control unit 204 of the institution server 20 has a reporting unit 2041 . Control unit 204 implements each functional unit by executing application program 2011 stored in storage unit 201 .

<Configuration of User Terminal 30>
The user terminal 30 is an information processing device operated by an administrator who manages services. The user terminal 30 may be, for example, a mobile terminal such as a smart phone or a tablet, a stationary PC (Personal Computer), or a laptop PC. Moreover, it may be a wearable terminal such as an HMD (Head Mount Display) or a wristwatch type terminal.
The user terminal 30 includes a storage unit 301 , a control unit 304 , an input device 306 and an output device 308 .

<Configuration of Storage Unit 301 of User Terminal 30>
The storage unit 301 of the user terminal 30 has a user ID 3011 and an application program 3012 .

A user ID 3011 is a user's account ID. The user transmits the user ID 3011 from the user terminal 30 to the server 10 . The server 10 identifies the user based on the user ID 3011 and provides the user with the service according to the present disclosure. The user ID 3011 includes information such as a session ID temporarily assigned by the server 10 to identify the user using the user terminal 30 .

The application program 3012 may be stored in advance in the storage unit 301, or may be downloaded from a web server or the like operated by the service provider via the communication IF. Application program 3012 includes an interpreted programming language such as JavaScript® that runs on a web browser application stored in user terminal 30 .

<Configuration of control unit 304 of user terminal 30>
The control unit 304 of the user terminal 30 has an input control unit 3041 and an output control unit 3042 . Control unit 304 implements each functional unit by executing application program 3012 stored in storage unit 301 .

<Configuration of Input Device 306 of User Terminal 30>
The input device 306 of the user terminal 30 has a camera 3061 , a microphone 3062 , a position information sensor 3063 , a motion sensor 3064 and a touch device 3065 .

<Configuration of output device 308 of user terminal 30>
The output device 308 of the user terminal 30 has a display 3081 and a speaker 3082 .

<Configuration of Device Terminal 40>
The device terminal 40 is an information processing device for controlling the device. The device terminal 40 may be a dedicated information processing device for controlling the device. For example, it may be a mobile terminal such as a smart phone or a tablet, a stationary PC (Personal Computer), or a laptop PC. Moreover, it may be a wearable terminal such as an HMD (Head Mount Display) or a wristwatch type terminal.
The device terminal 40 may be configured integrally with the device or may be configured separately. The device terminal 40 can sense input information from an input device and control the device using an actuator 4083 or the like that is an output device.
Since the types of devices controlled by the device terminal 40 are the same as the device types in the device table 1014, description thereof will be omitted.
The device terminal 40 includes a storage section 401 , a control section 404 , an input device 406 and an output device 408 .

<Configuration of storage unit 401 of device terminal 40>
The storage unit 401 of the device terminal 40 has a device ID 4011 and an application program 4012 .

The device ID 4011 is device terminal identification information for identifying the device terminal 40 . The server 10 identifies the device terminal 40 based on the device ID 4011 and provides the service according to the present disclosure. Note that the device ID 4011 includes information such as a session ID temporarily assigned by the server 10 .
The device ID 4011 may be attached as a character string or a two-dimensional code such as a QR code (registered trademark) to the exterior of the device terminal 40 or a device whose control target is the device terminal 40 . The device ID 4011 may be a number such as the serial number of the device or a character string.

The application program 4012 may be stored in the storage unit 401 in advance, or may be downloaded from a web server or the like operated by the service provider via the communication IF. Application program 4012 includes an interpreted programming language such as JavaScript (registered trademark) executed on a web browser application stored in administrator terminal 40 .

<Configuration of control unit 404 of device terminal 40>
The control unit 404 of the device terminal 40 includes an input control unit 4041 and an output control unit 4042 . Control unit 404 implements each functional unit by executing application program 4012 stored in storage unit 401 .

<Configuration of input device 406 of device terminal 40>
The input device 406 of the device terminal 40 has a camera 4061 , a microphone 4062 , a position information sensor 4063 and an acceleration sensor 4064 .

<Configuration of output device 408 of device terminal 40>
The output device 408 of the device terminal 40 has a display 4081 , a speaker 4082 and an actuator 4083 .

The actuator 4083 is an actuator that drives and controls a device to be controlled by the device terminal 40 . Actuators include any drive elements such as motors, engines, piezoelectric elements, electromagnetic actuators, piezo actuators, and the like. The device terminal 40 can operate the device by driving and controlling the actuator.

<Operation of information processing system 1>
Each process of the information processing system 1 will be described below.
FIG. 14 is a flowchart showing the operation of notification processing.
FIG. 15 is a flowchart showing the operation of authentication processing.
FIG. 16 is a screen example showing the operation of authentication processing.

<Notification processing>
The notification process is a process in which the user designates in advance the usage conditions such as the date, time, and area in which the device is to be used, and submits the notification to the approval authority. Based on the content of the notification, the approval authority determines whether or not the user is permitted to use the device, and if permitted, determines the usage conditions.

<Overview of notification processing>
The notification process is a series of processes of submitting an application for use of a predetermined device by a user, judging whether or not to permit use of the application for use by the user, determining conditions for using the predetermined device, and notifying the user of the result of the notification. .

<Details of notification processing>
Details of the notification process are described below.

In step S101, the user submits an application for using the device to an approval authority.
Specifically, the user logs in to a device usage application reporting service (reporting service) provided by the institution server 20 . Specifically, the user operates the input device 306 or the like of the user terminal 30 to execute a browser application or the like, and inputs the URL (Uniform Resource Locator) that provides the notification service provided by the institution server 20. , open the notification service web page (reservation page). The notification page is provided with input fields for a user ID, a password, and the like.
By operating the input device 306 or the like of the user terminal 30, the user enters his or her user ID 3011 in the entry fields provided on the notification page for the user ID, device ID, content of notification, etc. device ID 4011, and information regarding usage conditions such as the usage period of the device and the usage area of the device as notification contents are input and transmitted. The notification unit 2041 of the institution server 20 stores the received user ID 3011, device ID 4011, and usage conditions in the user ID, device ID, and notification data items of the new record in the notification table 2013, respectively.

Note that the notification page may be configured to input a user name instead of the user ID. In this case, the institution server 20 may refer to a database (not shown) in which user IDs and user names are associated with each other to identify the user ID.

In step S102, the notification unit 2041 of the institution server 20 determines whether or not the user is allowed to use the device based on the received notification information.
Specifically, the notification unit 2041 of the institution server 20 searches the user ID item of the qualification table 2012 based on the received user ID, and acquires the qualification code and qualification name items. The notification unit 2041 of the institution server 20 compares the received qualification code and qualification name with the device identified by the device ID included in the notification information, and obtains the proper qualification or authority for the user to use the device. It is determined whether the user is permitted to use the device based on whether or not the user has the For example, the notification unit 2041 of the institution server 20 refers to a database that associates a qualification code (not shown) with a device ID, or a device type specified by the device ID with reference to the device table 1014, thereby determining whether the You may decide whether to accept or not.
For example, if the device is a drone, the user is permitted to use the drone if the user is qualified to fly the drone.

Also, the notification unit 2041 of the institution server 20 may determine whether or not the user is allowed to use the device based on the usage conditions included in the notification information. It should be noted that a configuration may also be adopted in which a staff member of the approval agency or the like examines the content of the notification information received from the user and manually determines whether or not to permit use of the device.

When determining whether the user is permitted to use the device, the usage conditions included in the notification information may be modified to permit the user to use the device. For example, the usage period and usage area included in the usage conditions may be limited to a partial period and a partial area included in the usage period and usage area, and the use of the device by the user may be permitted. Also, the usage period and usage area included in the usage conditions may be limited to other usage periods and usage areas, and the user may be permitted to use the device.

In step S103, the notification unit 2041 of the institution server 20 determines the user's device usage conditions and stores them in the permission table 2014 as permission information.
Specifically, when permitting a usage application from a user, the notification unit 2041 of the institution server 20 transmits the items of the user ID 3011 and the device ID 4011 received from the user, the period for which the user is permitted to use the device, and the area. , are respectively stored in the items of user ID, device ID, permitted period, and permitted area of the permission table 2014 . As a result, permission information is stored in the organization server 20, indicating that the application for use of the apparatus by the user is permitted under the conditions of use defined in the permitted period and the permitted area. After that, the process proceeds to step S104.

On the other hand, the notification unit 2041 of the institution server 20 does not store the permission information in the permission table 2014 when not permitting the usage application from the user. The reporting unit 2041 of the institution server 20 transmits to the user terminal 30 information indicating that the usage application is not permitted, and ends the reporting process. The display 3081 of the user terminal 30 presents to the user information indicating that the received use application is not permitted.

In step S104, the notification unit 2041 of the institution server 20 notifies the user of the approval result for the use application notification.
Specifically, the notification unit 2041 of the institution server 20 transmits permission information stored in the permission table 2014 to the user terminal 30 . The display 3081 of the user terminal 30 displays and presents to the user the information regarding the usage conditions, such as the device ID, the permitted period, and the permitted area, which are included in the received permission information. The user confirms the information regarding the conditions of use such as the presented device ID, permitted period, permitted area, etc., and performs authentication processing for using the device within the permitted period and permitted area.

<Modification>
A configuration in which a plurality of users can execute notification processing may be employed. Also, a configuration may be adopted in which an organization such as a group to which the user belongs can execute the notification process. In this case, the institution server 20 executes notification processing for each of a plurality of users and groups.
Specifically, the reporting unit 2041 of the institution server 20 stores user IDs identifying a plurality of users or group IDs identifying groups, device IDs, and notification data, respectively, in the user IDs and device IDs of the notification table 2013. , is stored in the item of notification data. Similarly, the reporting unit 2041 of the institution server 20 sets the user ID specifying a plurality of users or the group ID specifying a group, the device ID, the permission period, and the permission area to the user ID of the permission table 2014, respectively. It is stored in the items of device ID, permitted period, and permitted area.
Thereby, a plurality of users or users belonging to a group may be configured to use the device under the permitted usage conditions. In this case, priority may be set for a plurality of users, and only one user with the highest priority among the plurality of users may use the device. For example, if the user with the highest priority is not available under the permitted conditions of use, the user with the next highest priority may be allowed to use the device.

<Authentication process>
The authentication process, when the user uses the device, inquires that the user is qualified to use the device at the time of use, and obtains the usage conditions for the user to use the device from the approval authority. 2) determines whether or not the user is permitted to use the device, and if permitted, allows the user to use the device.

<Outline of authentication processing>
The authentication process receives a request from the user regarding the use of a given device, inquires to the approval authority that the user has the qualification to use the given device, and confirms the usage conditions of the given device by the approval authority. , determines whether or not the user is permitted to use a predetermined device, and if so, permits the user to use the predetermined device.

<Details of authentication processing>
Details of the authentication process will be described below.

In step S301, the authentication unit 1042 of the server 10 executes a receiving step of receiving a request regarding use of the device from the user.
Specifically, the user operates the input device 306 or the like of the user terminal 30 to execute the application program 3012 or the like for using the device. By operating the input device 306 of the user terminal 30 or the like, the user inputs the device ID of the device to be used in the device ID input field displayed on the display 3081 of the user terminal 30 . By operating the camera 3061 of the user terminal 30 or the like, the user can also input by photographing a character string written on the exterior of the device to be used, a two-dimensional code such as a QR code (registered trademark), or the like. good.
A user transmits a request including a user ID 3011 and a device ID to the server 10 by operating the input device 306 or the like of the user terminal 30 .

Note that the device terminal 40 may read the user ID 3011 of the user terminal 30 and transmit a request including the device ID 4011 to the server 10 . For example, the user may operate the device terminal 40 to input a user ID and transmit a request including the user ID and the device ID 4011 to the server 10 .

Also, in step S301, the authentication unit 1042 of the server 10 may perform a presentation step of presenting a plurality of devices usable by the user to the user.
Specifically, the authentication unit 1042 of the server 10 searches the device table 1014 , acquires the device ID and device type, and transmits them to the user terminal 30 . At this time, only the device IDs and device types of devices that can be selected by the user to be presented may be transmitted to the user terminal 30 by referring to a database (not shown).
In addition, the authentication unit 1042 of the server 10 refers to the permission table 2014 of the institution server 20, etc., acquires the device IDs that the user is permitted to use, and only the device IDs and device types that the user can use are sent to the user terminal 30. It is good also as a structure which transmits to. In particular, the authentication unit 1042 of the server 10 compares the current date and time with the permission period included in the permission information associated with the device ID, and sends only the device ID and device type permitted for use at the current date and time to the user terminal 30. It is good also as a structure which transmits.
The display 3081 of the user terminal 30 displays a list of the received device IDs and device types, and presents them to the user.

In this case, the receiving step receives a request from the user regarding use of a predetermined device among the plurality of devices presented to the user in the presenting step.
Specifically, the user operates the input device 306 or the like of the user terminal 30 to select a desired device from the listed devices, and transmits a request including the device ID to the server 10 . User ID 3011 is included in the request.

The authentication unit 1042 of the server 10 receives and accepts the request including the user ID 3011 and device ID.

In step S302, the authentication unit 1042 of the server 10 executes a qualification obtaining step of obtaining qualification information associated with the user based on the user information identifying the user received in the receiving step.
The entitlement obtaining step includes sending a request containing user information to an external authority server, receiving a response to the request from the authority server, and obtaining the credential information contained in the response.

Specifically, the authentication unit 1042 of the server 10 transmits the user ID included in the received request to the institution server 20 . The control unit 204 of the institution server 20 searches the user ID item of the qualification table 2012 based on the received user ID, and acquires the qualification code and qualification name. The control unit 204 of the institution server 20 transmits the acquired qualification code and qualification name to the server 10 .
The authentication unit 1042 of the server 10 acquires and accepts the qualification code and qualification name.

In the present disclosure, the authentication unit 1042 of the server 10 is configured to acquire the qualification information from the institution server 20, but the server 10 may be configured to store the qualification information. A configuration in which a credential server such as an institution stores the credential information may also be used. In this case, the authentication unit 1042 of the server 10 may acquire the qualification information from the storage unit 101 of the server 10 or inquire of the qualification server to acquire the qualification information.

In step S303, the authentication unit 1042 of the server 10 performs a condition acquisition step of acquiring usage condition information related to the usage conditions of the device by the user based on the user information specifying the user and the device information specifying the device received in the receiving step. Run.
The condition acquisition step includes a step of transmitting a request including user information and device information to an external institution server, a step of receiving a response to the request from the institution server, and acquiring usage condition information included in the response.
The condition acquisition step includes a step of acquiring area information regarding an area in which the device is used by the user as usage condition information. The condition acquisition step includes a step of acquiring period information regarding the usage period of the device by the user as usage condition information.

Specifically, the authentication unit 1042 of the server 10 transmits the user ID and device ID included in the received request to the institution server 20 . Based on the received user ID and device ID, the control unit 204 of the institution server 20 searches the items of the user ID and device ID in the permission table 2014 and acquires usage conditions such as the permitted period and permitted area. The control unit 204 of the institution server 20 transmits to the server 10 permission information including usage conditions such as the obtained permission period and permission area.
The authentication unit 1042 of the server 10 acquires and accepts usage conditions such as the permitted period and the permitted area. In the present disclosure, the usage conditions have been described for the permitted period and the permitted area, but the usage conditions may include other environmental conditions such as altitude, weather, air pressure, and temperature.

In the present disclosure, the authentication unit 1042 of the server 10 is configured to acquire permission information including usage conditions from the institution server 20, but the server 10 may be configured to store the permission information. In this case, the authentication unit 1042 of the server 10 may acquire permission information from the storage unit 101 of the server 10 and specify the usage conditions.

In step S304, the authentication unit 1042 of the server 10 executes a determination step of determining whether the user is permitted to use the device based on the user information and the qualification information acquired in the qualification acquisition step.
Specifically, the authentication unit 1042 of the server 10 compares the received qualification code and qualification name with the device identified by the device ID received in step S101, thereby confirming that the user is properly qualified to use the device. Alternatively, whether or not the user is permitted to use the device is determined based on whether or not the user has authority. For example, the authentication unit 1042 of the server 10 refers to a database in which a qualification code (not shown) is associated with a device ID, or a device type specified by the device ID by referring to the device table 1014, so as to determine whether or not use is permitted. can be judged.
For example, if the device is a drone, the user is permitted to use the drone if the user is qualified to fly the drone. In the present disclosure, if a user was properly entitled to use the device at the time of the notification process, but subsequently loses his/her qualification during the authentication process, the user is not permitted to use the device. That is, in the authentication process, usage permission is determined based on the latest credential information possessed by the user.

In step S304, the determining step executes a step of determining whether the user is allowed to use the device based on the use condition information acquired in the condition acquiring step.
The determination step includes a step of determining whether the user is permitted to use the device based on the area information acquired in the condition acquisition step. The determination step includes a step of determining permission or denial of use of the device by the user when the location of the device is included in the area information acquired in the condition acquisition step.
The determination step includes a step of determining whether the user is allowed to use the device based on the period information acquired in the condition acquisition step.

Specifically, the authentication unit 1042 of the server 10 compares the received usage conditions with the environmental conditions of the device specified by the device ID received in step S101, and determines the usage conditions for the user to use the device. It is determined whether the user is permitted to use the device based on whether or not the conditions are satisfied.

For example, if the current date and time is included in the permitted period accepted in step S303, it is determined that the usage conditions are satisfied. On the other hand, if the current date and time is not included in the permitted period, it is determined that the usage conditions are not satisfied.
For example, if the current position of the device is included in the permitted area accepted in step S303, it is determined that the usage conditions are met. On the other hand, if the current position of the device is not included in the permitted area, it is determined that the usage conditions are not met.

In step S104, if the user is qualified to use the device and the environmental conditions of the device meet the usage conditions included in the permission information, the user is permitted to use the device; Proceed to S305.

Otherwise, the user is not allowed to use the device. If the user is not permitted to use the device, the authentication unit 1042 of the server 10 transmits to the user terminal 30 information to the effect that use is not permitted, and terminates the authentication process. The display 3081 of the user terminal 30 presents information to the user to the effect that use of the device is not permitted.

In step S305, the authentication unit 1042 of the server 10 executes a storage step of storing the use condition information acquired from the external server in the condition acquisition step as authentication information.
Specifically, in step S104, if the user is qualified to use the device and the environmental conditions of the device satisfy the usage conditions included in the permission information, the authentication unit 1042 of the server 10 stores the permission information acquired from the institution server 20 in step S303 in the authentication table 1015 as authentication information. Specifically, the authentication unit 1042 of the server 10 converts the obtained user ID, device ID, permission period, and permission area included in the obtained permission information into the user ID, device ID, and permission period of the new record in the authentication table 1015, respectively. , stored in the permitted area entry. Note that the authentication table 1015 may be configured to store use condition information included in the permission information other than the permission period and permission area.

The authentication unit 1042 of the server 10 executes a periodical reception step of periodically receiving inquiries about whether or not to use the device from the user who was permitted to use the device in the determination step.
The authentication unit 1042 of the server 10, in response to the inquiry regarding permission to use the device received in the regular reception step, inquires the authentication information stored in the storage step based on the user information and the device information, without inquiring to the external server. A periodic judgment step is executed for judging whether or not the user is allowed to use the device.

Specifically, the authentication unit 1042 of the server 10 determines whether or not to permit the use of the device based on the authentication information related to the conditions of use stored in the authentication table 1015, and responds to the inquiry about whether to use the device from the user terminal 30. It is good as
For example, after the use of the device is permitted in the authentication process, the user terminal 30 periodically inquires of the server 10 whether the use of the device has been authenticated. In this case, the authentication unit 1042 of the server 10 determines whether or not the user is permitted to use the device based on the authentication information stored in the authentication table 1015 without inquiring of the institution server 20 , and transmits the determination result to the user terminal 30 . The user can continue to use the device if the received determination result permits the use of the device. On the other hand, if the received judgment result does not permit the use of the device, the user cannot continue to use the device.
In this way, since the server 10 holds the authentication information, it is possible to reduce the number of inquiries to the institution server 20 and reduce the processing load of the institution server 20. can also provide appropriate authentication services to users.

It should be noted that the server 10 may periodically inquire of the institution server 20 and update the authentication information in the authentication table 1015 based on the authorization information stored in the authorization table 2014 of the institution server 20 . As a result, the authentication information in the authentication table 1015 of the server 10 can be kept up-to-date. For example, the authentication unit 1042 of the server 10 acquires the permission information from the institution server 20 at the time of the first authentication process, and thereafter obtains the permission information from the institution at a frequency lower than that of inquiries about device use permission from the user terminal 30. It may be configured such that it is acquired from the server 20 and stored in the authentication table 1015 .

In step S306, the authentication unit 1042 of the server 10 executes an area presentation step of presenting the area information regarding the area in which the device is used by the user, acquired in the condition acquisition step, to the user or an administrator associated with the user.
The authentication unit 1042 of the server 10 executes a period presenting step of presenting the period information regarding the period of use of the device by the user acquired in the condition acquiring step to the user or an administrator associated with the user.

Specifically, the authentication unit 1042 of the server 10 transmits the obtained device ID, permission period, and permission area to the user terminal 30 . The display 3081 of the user terminal 30 displays the items of the received device ID, permission period, and permission area, and presents them to the user.

Similarly, the authentication unit 1042 of the server 10 may transmit the acquired device ID, permission period, and permission area to the administrator terminal (not shown). The display of the administrator terminal displays the items of the received device ID, permitted period, and permitted area, and presents them to the administrator.
Specifically, the authentication unit 1042 of the server 10 searches the user ID item of the user table 1012 based on the acquired user ID 3011 and acquires the group ID item. The authentication unit 1042 of the server 10 retrieves the group ID item in the group table based on the acquired group ID, and acquires the administrator ID. The authentication unit 1042 of the server 10 identifies the administrator terminal based on the administrator ID, and transmits the acquired device ID, permission period, and permission area to the administrator terminal.
As a result, the administrator associated with the group can also check the usage record of the device by the user. Note that the administrator may refer to the log table 1016 to check the usage status of the device by the user.

FIG. 16 shows an example of an authentication screen presented to the user or administrator. A screen 70 displayed on the display 3081 of the user terminal 30 includes an object 701 indicating the device to be used, an object 711 indicating the permitted period, an object 712 indicating the permitted area, and a start button 721 for starting use of the device. .

The user confirms the displayed permitted period and permitted area items, and when using the device, operates the input device 306 of the user terminal 30 or the like to press and select the start button 721 . A display 3081 of the user terminal 30 displays and presents a user interface screen and the like for using the device to the user. The user interface screen includes various user interfaces such as buttons and sliders for operating each device.

The user can use the device by operating the user interface displayed on the display 3081 of the user terminal 30 via the input device 306 of the user terminal 30 or the like.
Specifically, by operating the input device 306 or the like of the user terminal 30, the user transmits a request to operate the device to the device terminal 40 specified by the device ID of the device permitted to use. can do. The device terminal 40 can drive and control the device by driving the actuator 4083 or the like according to the received request. That is, the user can use the device by operating the input device 306 of the user terminal 30 or the like.
In addition, the device terminal 40 transmits detection values of the camera 4061, the microphone 4062, the position information sensor 4063, the acceleration sensor 4064, etc. to the user terminal 30 in response to the received request. The user can confirm the detected value received at the user terminal 30 and also transmits the detected value, the user ID 3011 and the device ID 4011 to the server 10 .
The authentication unit 1042 of the server 10 stores the user ID 3011, the device ID 4011, and the detected value in the user ID, device ID, and log data items of the new record in the log table 1016, respectively. As a result, the server 10 stores log information regarding the use of the device by the user. The log information may include detection of the input device 406 of the device terminal 40 and signal information for controlling the output device 408 and the like. Specifically, the log information may include information such as a drive signal for driving the actuator 4083 .

The display 3081 of the user terminal 30 may display and present to the user that the permitted period ends when the current date and time approaches the end date and time included in the permitted period. Thereby, the user can perform an operation to end the use of the device before the permitted period elapses.
The display 3081 of the user terminal 30 may display and present a warning to the user not to exceed the permitted area when the position information of the device approaches the outer edge of the permitted area. This allows the user to operate and use the device without exceeding the permitted area.

<Modification>
In the authentication process of the present disclosure, the user terminal 30 inquires of the server 10, and the server 10 inquires of the institution server 20 to perform qualification inquiry, use condition acquisition, use permission/denial determination, and apparatus use permission. The 30 itself may directly inquire of the institution server 20 without going through the server 10 to perform the qualification inquiry, use condition acquisition, use permission determination, and apparatus use permission. That is, the user terminal 30 may be configured to have the authentication unit 1042 of the server 10 .
Specifically, the control unit 304 of the user terminal 30 may be configured to acquire qualification inquiries and usage conditions from the institution server 20, determine usage permission/denial, and permit the device terminal 40 to use the device.

<Basic computer hardware configuration>
FIG. 17 is a block diagram showing the basic hardware configuration of the computer 90. As shown in FIG. The computer 90 includes at least a processor 901, a main storage device 902, an auxiliary storage device 903, and a communication IF 991 (interface). These are electrically connected to each other by a communication bus 921 .

The processor 901 is hardware for executing an instruction set described in a program. The processor 901 is composed of an arithmetic unit, registers, peripheral circuits, and the like.

The main storage device 902 is for temporarily storing programs and data processed by the programs. For example, it is a volatile memory such as a DRAM (Dynamic Random Access Memory).

Auxiliary storage device 903 is a storage device for storing data and programs. For example, flash memory, HDD (Hard Disc Drive), magneto-optical disk, CD-ROM, DVD-ROM, semiconductor memory, and the like.

The communication IF 991 is an interface for inputting and outputting signals for communicating with other computers via a network using a wired or wireless communication standard.
The network is composed of various mobile communication systems constructed by the Internet, LAN, wireless base stations, and the like. For example, networks include 3G, 4G, and 5G mobile communication systems, LTE (Long Term Evolution), wireless networks (for example, Wi-Fi (registered trademark)) that can be connected to the Internet through predetermined access points, and the like. When connecting wirelessly, communication protocols include, for example, Z-Wave (registered trademark), ZigBee (registered trademark), Bluetooth (registered trademark), and the like. In the case of wired connection, the network includes direct connection using a USB (Universal Serial Bus) cable or the like.

It should be noted that the computer 90 can be virtually realized by distributing all or part of each hardware configuration to a plurality of computers 90 and connecting them to each other via a network. Thus, the computer 90 is a concept that includes not only the computer 90 housed in a single housing or case, but also a virtualized computer system.

<Basic Functional Configuration of Computer 90>
A functional configuration of the computer realized by the basic hardware configuration (FIG. 17) of the computer 90 will be described. The computer includes at least functional units of a control section, a storage section, and a communication section.

Note that the functional units included in the computer 90 can also be implemented by distributing all or part of each functional unit to a plurality of computers 90 interconnected via a network. The computer 90 is a concept that includes not only a single computer 90 but also a virtualized computer system.

The control unit is implemented by the processor 901 reading out various programs stored in the auxiliary storage device 903, developing them in the main storage device 902, and executing processing according to the programs. The control unit can implement functional units that perform various information processing according to the type of program. Thereby, the computer is implemented as an information processing device that performs information processing.

A storage unit is realized by the main storage device 902 and the auxiliary storage device 903 . The storage unit stores data, various programs, and various databases. Also, the processor 901 can secure a storage area corresponding to the storage unit in the main storage device 902 or the auxiliary storage device 903 according to a program. In addition, the control unit can cause the processor 901 to execute addition, update, and deletion processing of data stored in the storage unit according to various programs.

A database refers to a relational database, and is used to manage tabular tables structurally defined by rows and columns, and data sets called masters in association with each other. In a database, a table is called a table, a master is called a column, and a row is called a record. In a relational database, relationships between tables and masters can be set and associated.
Normally, each table and each master has a primary key column for uniquely identifying a record, but setting a primary key to a column is not essential. The control unit can cause the processor 901 to add, delete, and update records in specific tables and masters stored in the storage unit according to various programs.

Note that the database and master in the present disclosure may include any data structure (list, dictionary, associative array, object, etc.) in which information is structurally defined. The data structure also includes data that can be regarded as a data structure by combining data with functions, classes, methods, etc. written in any programming language.

A communication unit is implemented by the communication IF 991 . The communication unit implements a function of communicating with another computer 90 via a network. The communication section can receive information transmitted from another computer 90 and input it to the control section. The control unit can cause the processor 901 to execute information processing on the received information according to various programs. Also, the communication section can transmit information output from the control section to another computer 90 .

<Appendix>
The items described in the above embodiments will be added below.
You can limit the use of the device by

(Supplementary Note 1) A program to be executed by a computer comprising a processor and a storage unit, the program comprising: a receiving step (S301) for receiving a request regarding use of the device from a user to the processor; a condition acquisition step (S303) for acquiring usage condition information relating to the usage conditions of the device by the user based on the user information specifying the user and the device information specifying the device; and based on the usage condition information acquired in the condition acquisition step, A program for executing a determination step (S304) for determining permission or denial of use of the device by a user.
This makes it possible to determine whether or not the user is allowed to use the device based on the usage conditions of the user and the device. For example, it is possible to limit the use of devices that do not satisfy the usage conditions by the user.

(Appendix 2) The condition acquisition step (S303) is a step of transmitting a request including user information and device information to an external server, a step of receiving a response to the request from the external server, and acquiring use condition information included in the response. and the program according to Appendix 1.
This makes it possible to determine whether or not the user is allowed to use the device based on the latest usage conditions in the external server that manages the usage conditions. For example, it is possible to limit the use of devices that do not satisfy the usage conditions by the user.

(Appendix 3) The program causes the processor to execute a qualification acquisition step (S302) of obtaining qualification information associated with the user based on the user information specifying the user received in the reception step, and a judgment step (S304 ) is a step of determining whether the user is permitted to use the device based on the qualification information and the user information acquired in the qualification acquisition step.
This makes it possible to determine whether or not the user is permitted to use the device based on the user's credential information. For example, use of the device by unqualified and inappropriate users can be restricted.

(Appendix 4) The qualification acquisition step (S302) includes a step of transmitting a request including user information to an external server, and a step of receiving a response to the request from the external server and obtaining the qualification information included in the response. , the program according to Appendix 3.
Accordingly, it is possible to determine whether or not the user is allowed to use the device based on the latest user's credential information in the external server that manages the credential information. For example, unqualified and inappropriate users

(Supplementary Note 5) The condition acquisition step (S303) includes a step of acquiring area information regarding the area in which the device is used by the user as usage condition information, and the determination step (S304) is based on the area information acquired in the condition acquisition step. 4. The program of claim 4, comprising the step of determining whether the user is authorized to use the device.
Accordingly, it is possible to determine whether or not the user is permitted to use the device based on the area in which the user and the device are used. For example, it is possible to limit the use of the device outside the usage area by the user.

(Supplementary note 6) The program according to Supplementary note 5, wherein the determination step (S304) includes a step of determining permission or denial of use of the device by the user when the location of the device is included in the area information acquired in the condition acquisition step.
Accordingly, it is possible to determine whether or not the user is permitted to use the device based on the area in which the user and the device are used. For example, it is possible to limit the use of the device outside the usage area by the user.

(Supplementary Note 7) The program includes an area presenting step (S306) of presenting, in the processor, to the user or an administrator associated with the user, the area information regarding the area in which the device is used by the user, which is acquired in the condition acquiring step. The program according to appendix 5 to be executed.
Accordingly, the user or administrator can appropriately use the device by confirming the information on the permitted use area.

(Supplementary Note 8) The condition acquisition step (S303) includes a step of acquiring period information regarding the usage period of the device by the user as use condition information, and the determination step (S304) is based on the period information acquired in the condition acquisition step. 4. The program according to claim 3, comprising the step of determining whether the user is authorized to use the device.
Accordingly, it is possible to determine whether or not the user is allowed to use the device based on the period of use of the user and the device. For example, it is possible to limit the use of the device by the user outside the usage period.

(Supplementary Note 9) The program includes a period presenting step (S306) of presenting, to the processor, the period information regarding the period of use of the device by the user, which is acquired in the condition acquiring step, to the user or an administrator associated with the user. The program according to appendix 8 to be executed.
Accordingly, the user or administrator can appropriately use the device by confirming the information on the permitted usage period.

(Supplementary Note 10) The program causes the processor to store the usage condition information acquired from the external server in the condition acquisition step as authentication information (S305), and from the user permitted to use the device in the determination step, a periodical reception step (S305) for periodically receiving inquiries regarding the permission or denial of use of the device; authentication information stored in the storage step based on the user information and the device information in response to the inquiry regarding the permission or denial of use of the device received in the periodical reception step; and a periodical determination step (S305) of determining whether the user is allowed to use the device without querying the external server.
As a result, even when the state of communication with the institution server 20 is unstable, it is possible to appropriately provide permission information to the user using the device.

(Supplementary note 11) The storage step is a step of acquiring usage condition information from an external server and storing it as authentication information with a frequency lower than that of inquiries about permission to use the device received from the user in the regular reception step. program.
As a result, the number of inquiries to the institution server 20 can be reduced, the processing load on the institution server 20 can be reduced, and an appropriate authentication service can be provided to the user even when the communication condition with the institution server 20 is poor. can do.

(Additional Note 12) The program causes the processor to execute a presentation step (S301) of presenting a plurality of devices usable by the user to the user, and the receiving step (S301) receives from the user in the presentation step 1. The program according to appendix 1, which is a step of receiving a request regarding use of a predetermined device among the plurality of devices presented to the user.
This allows the user to select a device to use from a plurality of displayed available devices.

(Appendix 13) The program according to appendix 3, wherein the device is a drone.
As a result, it is possible to determine whether or not the use of the drone device is permitted based on the user's credential information. For example, use of the device by unqualified and inappropriate users can be restricted.

(Appendix 14) An information processing apparatus comprising a processor and a storage unit, wherein the processor executes the program according to any one of Appendices 1 to 13.
This makes it possible to determine whether or not the user is permitted to use the device based on the user's credential information. For example, use of the device by unqualified and inappropriate users can be restricted.

(Appendix 15) An information processing system including an information processing device having a processor and a storage unit, wherein the processor executes the program according to any one of Appendices 1 to 13.
This makes it possible to determine whether or not the user is permitted to use the device based on the user's credential information. For example, use of the device by unqualified and inappropriate users can be restricted.

(Appendix 16) An information processing method executed by a computer comprising a processor and a storage unit, the information processing method comprising causing the processor to execute the program according to any one of Appendices 1 to 13.
This makes it possible to determine whether or not the user is permitted to use the device based on the user's credential information. For example, use of the device by unqualified and inappropriate users can be restricted.

1 information processing system, 10 server, 101 storage unit, 104 control unit, 106 input device, 108 output device, 20 engine server, 201 storage unit, 204 control unit, 206 input device, 208 output device, 30 user terminal, 301 storage Unit 304 Control Unit 306 Input Device 308 Output Device 40 Device Terminal 401 Storage Unit 404 Control Unit 406 Input Device 408 Output Device

Claims (16)

A program to be executed by a computer comprising a processor and a storage unit,
The program causes the processor to:
presenting to a user a plurality of devices available to said user;
a receiving step of receiving a request regarding use of the device from the user;
a condition acquisition step of acquiring usage condition information relating to usage conditions of the device by the user based on the user information identifying the user and the device information identifying the device received in the receiving step;
a determination step of determining whether the user is allowed to use the device based on the use condition information acquired in the condition acquisition step;
and
The receiving step is a step of receiving a request from the user regarding use of a predetermined device among the plurality of devices presented to the user in the presenting step,
program. A program to be executed by a computer comprising a processor and a storage unit,
The program causes the processor to:
a receiving step of receiving a request for use of the device from a user;
a condition acquisition step of acquiring, from an external server , usage condition information relating to usage conditions of the device by the user, based on the user information identifying the user and the device information identifying the device received in the receiving step;
a determination step of determining whether the user is allowed to use the device based on the use condition information acquired in the condition acquisition step;
a storage step of storing the usage condition information acquired from the external server in the condition acquisition step as authentication information;
an inquiry receiving step of receiving an inquiry about whether or not to use the device from a user who is permitted to use the device in the determining step;
In response to an inquiry regarding permission to use the device received in the inquiry receiving step, the authentication information stored in the storing step is inquired based on the user information and the device information, without inquiring the external server, a periodic determination step of determining whether the user is allowed to use the device;
program to run. The inquiry receiving step is a step of periodically receiving an inquiry about whether or not to use the device from the user who was permitted to use the device in the determining step.
3. A program according to claim 2. The condition acquisition step includes:
sending a request containing said user information and said device information to an external server;
receiving a response to the request from the external server and obtaining the usage condition information included in the response;
A program according to claim 1. The program causes the processor to:
a qualification obtaining step of obtaining qualification information associated with the user based on the user information identifying the user received in the receiving step;
and
The determining step is a step of determining whether the user is permitted to use the device based on the user information and the qualification information acquired in the qualification obtaining step.
A program according to claim 1. The qualification step includes:
sending a request containing the user information to an external server;
receiving a response to the request from the external server and obtaining credentials included in the response;
including,
6. A program according to claim 5 . the condition obtaining step includes obtaining area information regarding an area in which the device is used by the user as the use condition information;
The determination step includes a step of determining permission or denial of use of the device by the user based on the area information acquired in the condition acquisition step,
7. The program according to claim 6 . The determining step includes determining permission or denial of use of the device by the user when the location of the device is included in the area information acquired in the condition acquiring step.
8. A program according to claim 7 . The program causes the processor to:
an area presenting step of presenting the area information relating to the area in which the device is used by the user, acquired in the condition acquiring step, to the user or an administrator associated with the user;
8. The program according to claim 7 , causing the execution of the condition acquisition step includes a step of acquiring, as the usage condition information, period information relating to a usage period of the device by the user;
The determination step includes a step of determining permission or denial of use of the device by the user based on the period information acquired in the condition acquisition step,
7. The program according to claim 6 . The program causes the processor to:
a period presenting step of presenting the period information regarding the period of use of the device by the user, acquired in the condition acquiring step, to the user or an administrator associated with the user;
11. The program according to claim 10 , causing the execution of The storing step is a step of acquiring the usage condition information from the external server and storing it as the authentication information with a frequency lower than that of inquiries regarding permission to use the device received from the user in the receiving step.
4. A program according to claim 3 . the device is a drone;
A program according to claim 1 . An information processing device comprising a processor and a storage unit,
Cause the processor to execute the program according to any one of claims 1 to 13,
Information processing equipment. An information processing system including an information processing device comprising a processor and a storage unit,
Cause the processor to execute the program according to any one of claims 1 to 13,
Information processing system. An information processing method executed by a computer comprising a processor and a storage unit,
Cause the processor to execute the program according to any one of claims 1 to 13,
Information processing methods.

Images