JP2001356951A - Information processing system, information processor, method for controlling the system and processor, and computer readable memory - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an information processing system, an information processor, a controlling method for the system and processor, and a computer readable memory capable of efficiently managing data. SOLUTION: A ciphering level set up in data to be backed up on a section server A203 is judged. The data to be backed up and data information indicating information concerned with the data are ciphered on the basis of the judged ciphering level to generate prescribed format data. The generated prescribed format data are backed up in a backup server 221.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

[0001] The present invention relates to an information processing system having at least a first server and a backup server,
The present invention relates to an information processing apparatus, a control method thereof, and a computer-readable memory.

[0002]

2. Description of the Related Art Conventionally, a shared document management system is composed of a client / server type system. In particular, when a server is set for each department and documents from other department servers are shared, replication is created between the servers or backup is performed using tape, etc. I downloaded it to my department server.

[0003]

Therefore, if there is a document to be made public on the own department server, but a document to be encrypted in the backup or a document not to be replicated to another department server, The processing was complicated. Or, actually, the data is transferred to another department server,
It was just secure.

SUMMARY OF THE INVENTION The present invention has been made in view of the above problems, and has as its object to provide an information processing system, an information processing apparatus, a control method thereof, and a computer-readable memory capable of efficiently managing data. Aim.

[0005]

An information processing system according to the present invention for achieving the above object has the following arrangement. That is, an information processing system having at least a first server and a backup server, wherein a determination unit for determining an encryption level set for data to be backed up on the first server, and a cipher determined by the determination unit Encryption of data information indicating the data to be backed up and information about the data based on the encryption level,
The backup server includes first generation means for generating predetermined format data, and backup means for backing up the predetermined format data generated by the first generation means to the backup server.

[0006] Preferably, the first server includes a setting unit for setting an encryption level of the data to be backed up, the data to be backed up, and the data including the encryption level set by the setting unit. And first management means for managing the data information.

[0007] Preferably, the backup server comprises a first decomposing means for decomposing the predetermined format data, and the data and data based on an encryption level set in the data decomposed by the first decomposing means. Second management means for managing data information of the data.

Preferably, the backup server obtains an encryption level of the data to be requested for download, and the data and data information of the data based on the encryption level obtained by the obtaining means. And a second transmission means for transmitting the predetermined format data generated by the second generation means to the second server which is the download request source.

[0009] Preferably, the second server comprises: first receiving means for receiving the predetermined format data from the backup server; and second decomposing means for decomposing the predetermined format data received by the first receiving means. ,
A third management unit that manages the data and data information of the data based on an encryption level set for the data decomposed by the second decomposing unit.

[0010] Preferably, the second server is one of the encrypted data managed by the backup server,
Third generating means for generating predetermined format data including an encryption key for decompressing the encrypted data to be downloaded, and second transmitting means for transmitting the predetermined format data generated by the third generating means to the backup server; A second receiving unit that receives the encrypted data to be downloaded from the backup server;
Decompression means for decompressing the encrypted data received by the reception means using the encryption key, and fourth management means for managing the data decompressed by the decompression means or data information of the data.

Preferably, the backup server includes a second receiving unit for receiving predetermined format data including the encryption key, an analyzing unit for analyzing the encryption key received by the second receiving unit, A third transmission unit configured to transmit the encrypted data to be downloaded to the second server based on an analysis result of the unit.

Preferably, the client connected to the first server displays data managed by the first server or data information of the data based on an encryption level set in the data. Display control means for controlling.

An information processing apparatus according to the present invention for achieving the above object has the following configuration. That is, an information processing apparatus having a backup server, wherein a determination unit that determines an encryption level set for data to be backed up, and the data to be backed up based on the encryption level determined by the determination unit. And generating means for encrypting data information indicating information on the data to generate predetermined format data, and backup means for backing up the predetermined format data generated by the generating means to the backup server.

[0014] Preferably, a setting means for setting an encryption level of the data to be backed up, and data information of the data including the data to be backed up and the encryption level set by the setting means are managed. Management means.

An information processing apparatus according to the present invention for achieving the above object has the following configuration. That is, an information processing apparatus for backing up data managed by a server, a first receiving unit for receiving predetermined format data from the server, and a decomposing unit for decomposing the predetermined format data received by the first receiving unit. Management means for managing the data and data information indicating information about the data based on the encryption level set for the data decomposed by the decomposing means.

[0016] Preferably, acquiring means for acquiring an encryption level of the data to be requested for download, and said data and data information of said data are encrypted based on the encryption level acquired by said acquiring means. The information processing apparatus further includes a generating unit that generates the format data, and a first transmitting unit that transmits the predetermined format data generated by the generating unit to a server that has requested download.

Preferably, a second receiving means for receiving predetermined format data including an encryption key,
Analysis means for analyzing the encryption key received by the reception means, and second transmission means for transmitting the encrypted data to be downloaded to the server, which is the download request source, based on the analysis result of the analysis means.

An information processing apparatus according to the present invention for achieving the above object has the following configuration. That is, the information processing device connected to the backup server of the server,
First receiving means for receiving the predetermined format data from the backup server, decomposing means for decomposing the predetermined format data received by the first receiving means, and an encryption level set for the data decomposed by the decomposing means And a first management unit that manages the data and data information of the data based on the data.

Preferably, among the encrypted data managed by the backup server, generating means for generating predetermined format data including an encryption key for decompressing the encrypted data to be downloaded, and Transmitting means for transmitting the generated predetermined format data to the backup server; and a second means for receiving the download target encrypted data from the backup server.
Receiving means, decompressing means for decompressing the encrypted data received by the second receiving means using the encryption key, and second managing means for managing the data decompressed by the decompressing means or data information of the data. Further provision.

An information processing apparatus according to the present invention for achieving the above object has the following configuration. That is, an information processing device connected to a server, receiving means for receiving data or data indicating information related to the data from the server, and data received by the receiving means or data information of the data, Display control means for performing display control based on the encryption level set in the data.

A control method for an information processing system according to the present invention for achieving the above object has the following configuration. That is, a control method of an information processing system having at least a first server and a backup server, wherein a determining step of determining an encryption level set for data to be backed up on the first server; A first generation step of encrypting the data to be backed up and data information indicating information on the data based on the determined encryption level to generate predetermined format data; and a predetermined format data generated in the first generation step. A backup step of backing up to the backup server.

A method for controlling an information processing apparatus according to the present invention for achieving the above object has the following configuration. That is,
A method for controlling an information processing apparatus having a backup server, comprising: a determination step of determining an encryption level set for data to be backed up; and a backup of the backup target based on the encryption level determined in the determination step. A generation step of encrypting data and data information indicating information about the data, and generating predetermined format data;
A backup step of backing up the predetermined format data generated in the generation step to the backup server.

A method for controlling an information processing apparatus according to the present invention for achieving the above object has the following configuration. That is,
A method for controlling an information processing apparatus for backing up data managed by a server, comprising: a first receiving step of receiving predetermined format data from the server; and a decomposing step of decomposing the predetermined format data received in the first receiving step. And a management step of managing, in a storage medium, the data and data information indicating information related to the data based on an encryption level set for the data decomposed in the decomposing step.

A method for controlling an information processing apparatus according to the present invention for achieving the above object has the following configuration. That is,
A method for controlling an information processing device connected to a backup server of a server, comprising: a first receiving step of receiving the predetermined format data from the backup server; and a decomposing step of decomposing the predetermined format data received in the first receiving step. And a first management step of managing the data and data information of the data in a storage medium based on the encryption level set for the data decomposed in the decomposing step.

A method for controlling an information processing apparatus according to the present invention for achieving the above object has the following configuration. That is,
A method for controlling an information processing device connected to a server,
A receiving step of receiving data or data indicating information related to the data from the server; displaying the data received in the receiving step or data information of the data based on an encryption level set in the data; And a display control step of controlling.

A computer readable memory according to the present invention for achieving the above object has the following configuration. That is,
A computer-readable memory storing a program code for controlling an information processing system having at least a first server and a backup server, and determining an encryption level set in data to be backed up on the first server. A program code of a process, and a program code of a generation process of encrypting data information indicating the data to be backed up and information about the data based on the encryption level determined in the determination process, and generating predetermined format data; A program code for a backup step of backing up the predetermined format data generated in the generation step to the backup server.

A computer readable memory according to the present invention for achieving the above object has the following configuration. That is,
A computer readable memory storing a program code for controlling an information processing apparatus having a backup server, wherein a program code for a determination step of determining an encryption level set in data to be backed up is determined by the determination step; On the basis of the encryption level obtained, the data to be backed up and data information indicating information about the data are encrypted, and a program code of a generation step of generating predetermined format data, and the predetermined format data generated in the generation step, And a program code of a backup process for backing up to a backup server.

A computer readable memory according to the present invention for achieving the above object has the following configuration. That is,
A computer readable memory storing a program code for controlling an information processing apparatus for backing up data managed by a server, wherein a program code for a receiving step of receiving data of a predetermined format from the server, and a program code received in the receiving step Based on the program code of the decomposing step for decomposing the predetermined format data and the encryption level set for the data decomposed in the decomposing step,
A program code for a management step of managing the data and data information indicating information related to the data in a storage medium.

A computer readable memory according to the present invention for achieving the above object has the following configuration. That is,
A computer-readable memory storing a program code for controlling an information processing apparatus connected to a backup server of a server, wherein the program code includes a receiving step of receiving the predetermined format data from the backup server; And a management step of managing the data and the data information of the data in a storage medium based on the program code of the decomposition step of decomposing the predetermined format data and the encryption level set for the data decomposed in the decomposition step. Program code.

A computer readable memory according to the present invention for achieving the above object has the following configuration. That is,
A computer-readable memory storing a program code for controlling an information processing apparatus connected to a server, the program code being a receiving step of receiving data or data indicating information related to the data from the server; A display control step of controlling the display of the data received in the step or the data information of the data based on the encryption level set for the data.

[0031]

Embodiments of the present invention will be described in detail with reference to the drawings.

FIG. 1 is a configuration diagram of an information processing system to which the document management system of the present embodiment is applied.

Department server A 203, department server B 213
Is a server installed for each department, branch, or company. A client PC-A 201 is connected to the section server A 203 via a LAN 205. A client PC is connected to the department server B 213 via the LAN 215.
-B211 is connected. However, the connection form between each department server and the client PC is not limited to this, and another connection form such as wireless may be applied.
It should be noted that there is no particular data communication means between the servers.
The department servers A203 and B213 have document storage devices 204 and 214, respectively.

The document storage device has a document storage area such as a database or a file system, and a document management table for storing document information. These storage techniques are known. Each client PC has a browser 202,
212 is installed. The browser can refer to the document information in the document management table in the document storage device in the document storage device in the department server connected to each client PC and the documents in the document storage area.

The section servers A 203 and B 213 and the backup server 221 are connected by a telecommunication line such as WAN and Internet. However, the connection form between each department server and the backup server is not limited to these, and the department server is defined in a narrow range on a network, and the backup server is defined in a wide range on a network such as the Internet.

The backup server 221 has a document storage device 222 and stores backups of documents stored in each department server. The document storage device 222 has a document storage area such as a database (DB) and a file system.

Next, an example of the configuration of a client PC, a department server, and an information processing apparatus that constitutes a backup server that constitutes the document management system of this embodiment will be described with reference to FIG.

FIG. 2 is a block diagram showing the configuration of the information processing apparatus according to the present embodiment.

The client PC, the department server, and the backup server described with reference to FIG. 1 each include the components as shown in FIG.

A display device 301 is a CRT or LCD.
And displays data such as image information and applications such as the above-described browser. An input device 302 includes a pointing device, a keyboard, and the like.
Enter various information. 303 is a central processing unit,
Each component of the information processing apparatus is controlled. 304
Is an external storage device, which stores various programs and data such as a control program of the information processing device. A memory 305 functions as a work area for various data and a temporary save area. A network device 306 controls communication with a connected external device.

Next, a list of storage items and encryption levels of document information and document data managed by the document management system of this embodiment will be described with reference to FIG.

FIG. 3 is a diagram showing a list of storage items and encryption levels of document information and document data managed by the document management system of this embodiment.

When a document is stored, it is divided into "document information" such as a document name, a document size, an index, an access right, and an access history, and "document data" such as an image document and a code document. The document information is stored in a document management table in a document storage device of each department server, and the document data is stored in a document storage area. The document management table is configured as a database. Searching can be facilitated by managing the document information in the database, and concealment from the database can be achieved for security by not managing the document data in the database. However, there is no particular necessity.

Although the encryption level can be set for each document, each folder, or each document server, in this embodiment,
An example of setting for each document will be described. There are encryption levels from level 0 to level 3. Level 0 is a level at which no encryption is performed.

Level 1 is a level at which document information and document data are encrypted only during data communication between the department server and the backup server.
There is the same document information and document data on the department server. The key for this encryption is "Encryption Key 1"
I will call it. The encryption key 1 is shared between the department server and the backup server. The backup server will have different encryption keys 1 by the number of connected department servers.

At level 2, the document information is encrypted with the encryption key 1 only at the time of communication as in level 1, and is restored by the backup server. On the other hand, the document data is encrypted with the encryption key 2 owned only by the department server and transmitted to the backup server, and is not restored by the backup server. It is assumed that one encryption key 2 is owned by each department server.

In level 3, both the document information and the document data are completely encrypted with the encryption key 2 and transmitted to the backup server.

Next, a transmission format of data transmitted between the department server and the backup server according to the present embodiment will be described with reference to FIG.

FIG. 4 is a diagram showing a transmission format of data transmitted between the department server and the backup server according to the present embodiment.

The transmission format 1 is used when storing and downloading the level 0 and level 1 documents and when storing the level 2 and level 3 document information and document data from the department server to the backup server. The transmission format 2 is used when downloading the level 2 and level 3 document information from the backup server to the department server. Therefore, the document data is not combined.

The transmission format 3 is a level 2 and level 3 document I downloaded from the backup server.
This is a transmission format when a request for downloading document information or document data is made from the department server based on D. The encryption subkey is an encryption key created from encryption key 2,
The backup server determines that this encryption subkey is encryption key 2
The document information and the document data are downloaded only when it is confirmed that the sub key is a subkey. Note that document information and document data encrypted with the encryption key 2 cannot be decompressed using only the encryption subkey.

The transmission format 4 is a transmission format for downloading the level 2 and level 3 document information and document data. The document information and document data for the specified ID are downloaded in an encrypted state. The downloaded document information and document data are decompressed with the encryption key 2 in the department server.

Next, a main window of a browser for displaying document objects (document information and document data) in the document storage device (document storage area such as a database system or a file system) of the present embodiment will be described.
This will be described with reference to FIG.

FIG. 5 is a view showing a main window of a browser for displaying a document object in the document storage device of the present embodiment.

In the main window shown in FIG.
Reference numeral 01 denotes a thumbnail format display area for displaying document data in the document storage area α in a thumbnail format. Here, four document objects (A, B, C, and D) are displayed. In the thumbnail format display area 501, document data is converted into a thumbnail and displayed. 502
Is a list format display area for displaying the document storage area α in a list format. In the list format display area 502,
Document information is displayed. A designation button 503 is used to designate a document storage area to be displayed. In FIG. 5, there are three document storage areas α, β, and γ. A selection button 504 is used to select the display of the thumbnail display area 501 and the list display area 502.

The display form of the document objects stored in the own department server from the client PC is the same for all the document objects. However, when the document object backed up by the backup server at the encryption level described in FIG. 3 is downloaded to another department server and displayed, the display form is different.

A document of level 0 or level 1 can be similarly referred to by any department server. In FIG. 5, a document object A indicates a document of level 0, and a document object B indicates a document of level 1. However, data backed up at level 2 or level 3 cannot be downloaded without its encryption subkey.
That is, when a document backed up at level 2 is downloaded without an encryption subkey, the document information is downloaded but the document data is not downloaded. Therefore, although the document of the document object C indicating the level 3 cannot refer to the content of the document in the thumbnail format display (in order to indicate this, a cross is added in the figure),
It is possible to refer to only the document information in a list format display (in order to indicate this, it is shaded in the figure).

On the other hand, a document object D indicating level 4
Although the document is not recognized by the department server in the thumbnail format display (shaded in the figure to indicate this), it is possible to refer to only the document information in the list format display ( To indicate this, the figures are shaded in the figure). It should be noted that if the user knows that the document exists, but does not want to inform the general user of the existence of the document, it is possible to control not to display the document on the browser. In this case, the document object D may not be displayed, or only the fact that there is some document may be displayed. In any case, the document information on the Level 4 document cannot be obtained from the browser at all.

Next, a document management table managed by the department server and the backup server according to the present embodiment will be described with reference to FIG.

FIG. 6 is a diagram showing a document management table managed by the department server and the backup server according to this embodiment.

One document management table is provided for each server (or cabinet).

Reference numeral 601 denotes a document management table stored in the document storage device 204 of the department server A 203 that was first registered from the client PC. Documents of any encryption level are stored in the department server at this point without any difference. As the information on the storage location of the document, the storage location of the document on the document storage area in the document storage device 204 is stored.

Reference numeral 602 denotes a document management table stored in the document storage device 222 of the backup server 221. The level 0 and level 1 documents are exactly the same as the document management table 601. Level 2 documents are
Further, a document ID is stored. Since the document information of the level 3 document is encrypted, the document information and the document data are stored in the storage location. Further, an information ID and a document ID are stored. As the information on the storage location of the document, the storage location of the document on the document storage area in the document storage device 222 is stored.

Reference numeral 603 denotes a document management table stored on the department server 213B downloaded from the backup server 221. Level 0 and level 1 documents are stored in the document management table 601 or the document management table 602.
Is the same as The storage location of the document storage area in the document storage device 214 is stored as information on the storage location of the document. Since only the document information is downloaded for the level 2 document, only the document information is stored in the document information table 603, but the storage location of the document data is unknown. Therefore, the document ID is stored. Level 3 documents are all unknown because neither document information nor document data is downloaded, but only the information ID and document ID are stored.

The information ID and the document ID are information for determining permission to download data. For example, if the department server B 213 has the encryption key 2 of the department server A 203 or this encryption subkey, the backup server 221 stores the encryption subkey, the information ID, and the document ID.
, It is possible to download data that cannot be normally downloaded.

Here, the relationship between the backup and download processing and the encryption level in the present invention will be described.

Level 0 is a level at which no encryption is performed. At level 1 or higher, some encryption is performed. The encryption key 1 is for encryption at the time of communication, and the department server and the backup server hold the same key. Encryption key 2
Is stored only in the department server, and the document information or document data encrypted with the encryption key 2 cannot be decompressed on the backup server side. Level 1 encrypts only with encryption key 1, level 2 encrypts only document data with encryption key 2, and level 3 encrypts both document information and document data with encryption key 2.
To encrypt.

Once backed up, document data and document information are not downloaded even if a download request is made from the second department server. Information ID or Document I
Only D is stored on the department server. If the second department server holds the encryption key 2, the document information or the document data that could not be downloaded first is obtained by using only the encryption subkey created from the encryption key 2 and the information ID or the document ID. It is structured so that you can download it.

A program for executing this embodiment is stored in an external storage device (FD, CD-RO) on the department server side.
M, ROM, magnetic tape, etc.), and the program may be stored in a storage device (memory) by a reading device (not shown) in the central processing unit.

Next, the backup processing to the backup server 221 performed by the central processing unit 303 of the department server A 203 of this embodiment will be described with reference to FIG.

FIG. 7 is a flowchart showing the backup processing to the backup server performed by the central processing unit of the department server according to the present embodiment.

The backup process is set for each cabinet and is started at a timing set separately.

In step S101, the document information to be backed up and the encryption level of the document data are obtained from the document management table. In step S102, it is determined whether or not the obtained encryption level is level 0. If it is level 0 (YES in step S102), step S109
Proceed to. On the other hand, when the level is not level 0 (step S102)
NO), and the process proceeds to step S103.

In step S103, it is determined whether or not the encryption level is level 3. If it is not level 3 (NO in step S103), that is, if it is level 1 or level 2, the process proceeds to step S104, where the document information is encrypted with the encryption key 1, and the process proceeds to step S106. on the other hand,
If the level is level 3 (YES in step S103), the flow advances to step S105 to encrypt the document information using the encryption key 2, and the flow advances to step S108.

In step S106, it is determined whether or not the encryption level is level 2. If the level is not level 2 (NO in step S106), the flow advances to step S107 to encrypt the document data using the encryption key 1, and the flow advances to step S109. On the other hand, if the level is level 2 (YES in step S106), the flow advances to step S108 to encrypt the document data using the encryption key 2, and the flow advances to step S109.

In step S109, the encryption level, document information, and document data are combined into a transmission format. In step S110, it is determined whether encryption processing and transmission formatting have been completed for all the document information and document data to be transmitted. If the processing has not been completed (NO in step S110), the process returns to step S101, and the processing is continued for the next backup target document information and document data. On the other hand, if it has been completed (step S11
(YES at 0), the process proceeds to step S111, and all data combined in the transmission format is transmitted to the backup server 221 and the process ends.

Next, the client PC-A of this embodiment
The document registration process performed by the central processing unit 201 in the department server A 203 will be described with reference to FIG. FIG. 8 is a flowchart illustrating a document registration process performed on the department server A by the central processing unit of the client PC according to the present embodiment.

In step S701, the document information and document data to be registered are specified. In step S702, an encryption level is input. In step S703, the document management table stored in the document storage device 204 in the department server A 203 is read. In step S704, the document data is stored in the document storage area in the document storage device 204. In step S705, document information such as an encryption level, a document name, and a storage location is set in the document management table.
In step S706, the document management table is stored in the document storage device 204, and the process ends.

Next, the backup server 2 of this embodiment
The backup data storage process performed by the central processing unit 303 will be described with reference to FIG.

FIG. 9 is a flowchart showing backup data storage processing performed by the central processing unit of the backup server according to this embodiment.

In step S801, the department server A203
, And stores them in a temporary storage area (not shown) in the external storage device 304 of the backup server 221. In step S802, step S8
The data combined with the transmission format received at 01 is decomposed into an encryption level, document information, and document data, and is temporarily stored.

From step S803, processing is performed for each data. First, the document information is processed.

First, in step S803, it is determined whether or not the encryption level is level 3. If the level is level 3 (YES in step S803), the flow advances to step S807 to store the document information in the document storage area of the document storage device 222 without setting the document information in the document management table, and to set an arbitrary information ID to the document. This is set in the document management table in the storage device 222, and the process proceeds to step S808. Note that the document information encrypted with the encryption key 2 cannot be decompressed by the backup server, and is stored in the document storage area.

On the other hand, when the level is not level 3 (step S8)
03 (NO), the process proceeds to step S804, and it is determined whether the encryption level is level 1 or level 2.
If it is level 1 or level 2 (step S80
(YES at 4), the process proceeds to step S805, and the document information is decompressed with the encryption key 1, and the process proceeds to step S806. On the other hand, if it is not level 1 or level 2 (step S804)
NO), that is, when the level is 0, step S
Proceed to 806.

In step S806, the document information is set in the document management table in the document storage device 222. next,
Process the document data. In step S808, it is determined whether the encryption level is level 3 or level 2. If it is level 3 or level 2 (step S
(YES in 808), the process proceeds to step S812, the document data is stored as it is in the document storage area in the document storage device 222, an arbitrary document ID is set in the document management table in the document storage device 222, and the process proceeds to step S813. .

On the other hand, if it is not level 3 or level 2 (NO in step S808), the flow advances to step S809 to determine whether the encryption level is level 1 or not.
If it is level 1 (YES in step S809), the flow advances to step S810 to decompress the document data using the encryption key 1, and the flow advances to step S811. On the other hand, if the level is not level 1 (NO in step S809), the flow advances to step S811.

In step S811, the document data is stored in the document storage area of the document storage device 222. Step S
At 813, it is determined whether or not processing of all data has been completed. If not completed (NO in step S813)
It returns to step S803. On the other hand, if the processing has been completed (YES in step S813), the processing ends.

Next, the backup server 2 of the present embodiment
The download process to the department server B 213, which is the second department server, performed by the central processing unit 303 will be described with reference to FIG.

FIG. 10 is a flowchart showing the download processing to the department server performed by the central processing unit of the backup server according to the present embodiment.

In step S901, the document storage device 222
Get the encryption level of the document to be downloaded from the document management table. In step S902, it is determined whether the obtained encryption level is level 1. If it is level 1 (YES in step S902), the flow advances to step S903 to encrypt the document data using the encryption key 1, and the flow advances to step S905.

On the other hand, when the level is not level 1 (step S9)
(NO at 02), the process proceeds to step S904, and it is determined whether the encryption level is level 2 or not. If the level is level 2 (YES in step S904), the flow advances to step S905 to encrypt the document information using the encryption key 1, and then to step S9.
Proceed to 06. On the other hand, if the level is not level 2 (step S9
04 (NO), the process proceeds to step S906.

In step S906, the encryption level, document information, and document data are combined into a transmission format according to the encryption level. In the case of level 0 and level 1, transmission format 1 is used, and in the case of level 1 and level 2, transmission format 2 is used. In the case of level 3, the transmission format 4 is used.

In step S907, it is determined whether or not all data has been combined into the transmission format. If not combined (NO in step S907), the process returns to step S901. On the other hand, if they are combined (YES in step S907), the flow advances to step S908 to transmit all the combined data to the department server B 213, and ends the processing.

Next, download processing from the backup server 221 performed by the central processing unit 303 of the department server B 213 according to this embodiment will be described with reference to FIG.

FIG. 11 is a flowchart showing the download processing from the backup server performed by the central processing unit of the department server according to the present embodiment.

In step S1001, all data combined from the backup server 221 is received and stored in a temporary storage area (not shown) in the external storage device 304 in the department server B 213. In step S1002, all the combined data received in step S1001 is decomposed into an encryption level, document information, and document data according to the transmission format. In step S1003, the encryption level and the document information are stored in the document management table in the document storage device 214 of the department server B 213.

In step S1004, it is determined whether the encryption level is level 1. If it is level 1 (YES in step S1004), step S1005
To decompress the document data with the encryption key 1, and
Proceed to 1006. If the level is not level 1 (NO in step S1004), the process advances to step S1006.

In step S1006, it is determined whether the encryption level is level 0. If the level is not level 0 (NO in step S1006), the flow advances to step S1008. On the other hand, when the level is level 0 (step S1006)
In step S1007, the document data is stored in the document storage area in the document storage device 214 in the department server B 213, and the storage position is set in the document management table in the document storage device 214.

In step S1008, it is determined whether decomposition and storage have been completed for all data. If not completed (NO in step S1008), step S10
Return to 02. On the other hand, when the processing is completed (step S1008)
And the process ends.

Next, the processing of requesting encrypted data to the backup server by the central processing unit 303 of the department server B 213 and the processing of transmitting encrypted data to the department server B 213 performed by the central processing unit 303 of the backup server 221 of the present embodiment will be described. This will be described with reference to FIG.

FIG. 12 is a flowchart showing the processing of requesting encrypted data to the backup server by the central processing unit of the department server B and the processing of transmitting encrypted data to the department server B by the central processing unit of the backup server according to the present embodiment. is there.

The department server B 213 determines in step S110
In step 1, an encryption key 2 stored in a temporary storage area (not shown) is obtained. In step S1102, an encryption subkey is created from the obtained encryption key 2. Step S110
At 3, the encryption subkey and the desired acquisition ID (information ID or document ID) are combined into the transmission format 3. In step S1104, the combined data is stored in the backup server 22.
1 and waits for a response from the backup server 221.

The backup server 221 determines in step S
At 1121, an encryption subkey and a desired acquisition ID are received from the department server B 213. In step S1122, the data (document information or document data) indicated by the received ID is obtained from the document storage area in the document storage device 222. In step S1123, the data acquired in step S1102 is analyzed using the encryption subkey. Step S1124
Then, it is determined whether or not the encryption subkey is valid. If the ID is valid (YES in step S1124), the flow advances to step S1125 to combine the data indicated by the ID with the transmission format 4, transmit the data to the department server B 213, and end the process. On the other hand, if it is not valid (step S1124)
If NO, that is, if it is determined to be an invalid encryption subkey, the process advances to step S1126 to transmit an error to the department server B 213 and end the process.

The department server B 213 determines in step S 110
At 5, the data transmitted from the backup server 221 is received. In step S1106, it is determined whether the data is an error. If an error has occurred (YES in step S1106), the process ends. On the other hand, if there is no error (NO in step S1106), the flow advances to step S1107 to decompress the received data using encryption key 2.

In step S1108, it is determined whether the decompressed data is document information or document data. If it is document information, the process advances to step S1109 to set the document information in the document storage table in the document storage device 214 in the department server B 213, and ends the processing. On the other hand, if it is document data, the process proceeds to step S1110, where the department server B2
13 is set in the document storage area in the document storage device 214 in the document storage device 214, and the process is terminated.

It should be noted that a known technique is used for the process of creating an encryption subkey from the encryption key 2 and the process of checking the validity of data using the encryption subkey.

As described above, according to the present embodiment, the encryption level is added to each document, and the document data and the document information are encrypted according to the encryption level. Then, the document on the department server is backed up by the backup server, and the backup server stores the data according to the encryption level. This allows data to be encrypted and backed up by the backup server according to the encryption level.

Further, when downloading from the backup server to another department server, data corresponding to the encryption level is downloaded. Thereby, when downloading from the backup server to another department server, it is possible to prevent the data encrypted according to the encryption level from being downloaded.

Further, based on the encryption key in the department server, data that cannot be obtained by being encrypted by a normal method is downloaded from the backup server. This allows
When another department server holds the encryption key, data that cannot be downloaded by a normal method can be intentionally downloaded. [Other Embodiments] In the above embodiment, an encryption level is provided for each document.
An encryption level may be provided for each cabinet when the data is stored in the document storage device of the department server. In this case, in step S702, the encryption level stored as the cabinet attribute may be obtained.

The present invention can be applied to a system composed of a plurality of devices (for example, a host computer, an interface device, a reader, a printer, etc.), but it can be applied to a single device (for example, a copying machine, a facsimile machine) Etc.).

An object of the present invention is to provide a storage medium storing a program code of software for realizing the functions of the above-described embodiments to a system or an apparatus, and to provide a computer (or CPU) of the system or apparatus.
And MPU) read and execute the program code stored in the storage medium.

In this case, the program code itself read from the storage medium realizes the function of the above-described embodiment, and the storage medium storing the program code constitutes the present invention.

Examples of a storage medium for supplying the program code include a floppy disk, hard disk, optical disk, magneto-optical disk, CD-ROM, and CD.
-R, a magnetic tape, a nonvolatile memory card, a ROM, or the like can be used.

When the computer executes the readout program codes, not only the functions of the above-described embodiments are realized, but also the OS (Operating System) running on the computer based on the instructions of the program codes. ) May perform some or all of the actual processing, and the processing may realize the functions of the above-described embodiments.

Further, after the program code read from the storage medium is written into a memory provided in a function expansion board inserted into the computer or a function expansion unit connected to the computer, based on the instructions of the program code, It goes without saying that the CPU included in the function expansion board or the function expansion unit performs part or all of the actual processing, and the processing realizes the functions of the above-described embodiments.

When the present invention is applied to the storage medium, the storage medium stores program codes corresponding to the flowcharts shown in FIGS. 7 to 12 described above.

[0117]

As described above, according to the present invention,
An information processing system, an information processing apparatus, a control method thereof, and a computer-readable memory capable of efficiently managing data can be provided.

[Brief description of the drawings]

FIG. 1 is a configuration diagram of an information processing system to which a document management system according to an embodiment is applied.

FIG. 2 is a block diagram illustrating a configuration of an information processing apparatus according to the embodiment.

FIG. 3 is a diagram showing a list of storage items and encryption levels of document information and document data managed by the encrypted three-level document management system of the embodiment.

FIG. 4 is a diagram illustrating a transmission format of data transmitted between a department server and a backup server according to the embodiment.

FIG. 5 is a view showing a main window of a browser for displaying a document object in the document storage device of the embodiment.

FIG. 6 is a diagram illustrating a document management table managed by a department server and a backup server according to the embodiment.

FIG. 7 is a flowchart illustrating backup processing to a backup server performed by the central processing unit of the department server according to the embodiment.

FIG. 8 is a flowchart illustrating a document registration process performed on the department server A by the central processing unit of the client PC according to the present embodiment.

FIG. 9 is a flowchart illustrating backup data storage processing performed by the central processing unit of the backup server according to the embodiment.

FIG. 10 is a flowchart illustrating a download process to a department server performed by the central processing unit of the backup server according to the embodiment.

FIG. 11 is a flowchart illustrating download processing from a backup server performed by the central processing unit of the department server according to the embodiment.

FIG. 12 is a flowchart illustrating a process of requesting encrypted data to a backup server performed by the central processing unit of the department server B and a process of transmitting encrypted data to the department server B performed by the central processing unit of the backup server according to the embodiment.

[Explanation of symbols]

 201 Client PC-A 202 Browser 203 Department server A 204 Document storage device 205 LAN 206 Client PC-B 207 Browser 208 Department server B 209 Document storage device 210 LAN 221 Backup server 222 Document storage device 223 Telecommunication line 301 Display device 302 Input Device 303 Central processing unit 304 External storage device 305 Memory 306 Network device

──────────────────────────────────────────────────続 き Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat ゛ (Reference) G06F 15/177 678 G06F 15/177 678B

Claims (37)

[Claims] 1. An information processing system having at least a first server and a backup server, comprising: a determination unit configured to determine an encryption level set for data to be backed up on the first server; First generation means for encrypting the data to be backed up and information about the data based on the determined encryption level to generate predetermined format data; and predetermined format data generated by the first generation means. And a backup means for backing up data to the backup server. 2. The first server, wherein: a setting unit for setting an encryption level of the data to be backed up; data information of the data including the data to be backed up and an encryption level set by the setting unit; The information processing system according to claim 1, further comprising a first management unit that manages the information. 3. The backup server according to claim 1, further comprising: first decomposing means for decomposing the predetermined format data; and the data and the data of the data based on an encryption level set for the data decomposed by the first decomposing means. The information processing system according to claim 1, further comprising a second management unit that manages data information. 4. The backup server obtains an encryption level of data to be requested for download, and encrypts the data and data information of the data based on the encryption level obtained by the obtainment unit. And a second transmitting means for transmitting predetermined format data generated by the second generating means to a second server which is a download request source. 2. The information processing system according to 1. 5. The second server, a first receiving unit that receives the predetermined format data from the backup server, a second decomposing unit that decomposes the predetermined format data received by the first receiving unit, 5. The information processing apparatus according to claim 4, further comprising a third management unit that manages the data and data information of the data based on an encryption level set for the data decomposed by the two decomposing units. 6. system. 6. The third server, wherein the second server generates a predetermined format data including an encryption key for decompressing the encrypted data to be downloaded from among the encrypted data managed by the backup server. A second transmitting unit that transmits the predetermined format data generated by the third generating unit to the backup server; a second receiving unit that receives the encrypted data to be downloaded from the backup server; and a second receiving unit. 5. A decompressing means for decompressing the encrypted data received in the step (b) using the encryption key, and a fourth managing means for managing the data decompressed by the decompressing means or data information of the data. An information processing system according to claim 1. 7. The backup server, a second receiving unit that receives the predetermined format data including the encryption key, an analysis unit that analyzes the encryption key received by the second reception unit, and an analysis of the analysis unit. The information processing system according to claim 6, further comprising: a third transmission unit configured to transmit the encrypted data to be downloaded to the second server based on a result. 8. A display for controlling display of data managed by the first server or data information of the data based on an encryption level set for the data, wherein the client is connected to the first server. The information processing system according to claim 1, further comprising a control unit. 9. An information processing apparatus having a backup server, comprising: a determination unit that determines an encryption level set for data to be backed up; and the backup based on the encryption level determined by the determination unit. It is characterized by comprising: generating means for encrypting target data and data information indicating information on the data to generate predetermined format data; and backup means for backing up the predetermined format data generated by the generating means to the backup server. Information processing device. 10. A setting means for setting an encryption level of the data to be backed up, and a management means for managing data information of the data to be backed up and the data including the encryption level set by the setting means. The information processing apparatus according to claim 9, further comprising: 11. An information processing apparatus for backing up data managed by a server, wherein the first information processing apparatus receives predetermined format data from the server.
Receiving means; decomposing means for decomposing predetermined format data received by the first receiving means; and indicating the data and information on the data based on an encryption level set for the data decomposed by the decomposing means. An information processing apparatus further comprising: a management unit that manages data information. 12. An obtaining means for obtaining an encryption level of data to be requested for download, and encrypting the data and data information of the data based on the encryption level obtained by the obtaining means, and converting predetermined format data. The information processing apparatus according to claim 11, further comprising: a generating unit configured to generate; and a first transmitting unit configured to transmit the predetermined format data generated by the generating unit to a server that has requested download. 13. A second receiving means for receiving predetermined format data including an encryption key, an analyzing means for analyzing the encryption key received by the second receiving means, and a download based on an analysis result of the analyzing means. The information processing apparatus according to claim 11, further comprising: a second transmission unit configured to transmit the target encrypted data to a server that has requested download. 14. An information processing apparatus connected to a backup server of a server, comprising: first receiving means for receiving the predetermined format data from the backup server; and disassembling the predetermined format data received by the first receiving means. An information processing apparatus, comprising: a decomposing unit that performs a decomposing operation; and a first management unit that manages the data and data information of the data based on an encryption level set for the data decomposed by the decomposing unit. . 15. A generating means for generating, from among the encrypted data managed by the backup server, predetermined format data including an encryption key for decompressing the encrypted data to be downloaded, and a predetermined format generated by the generating means. Transmitting means for transmitting format data to the backup server; second receiving means for receiving the encrypted data to be downloaded from the backup server; and using the encryption key to transmit the encrypted data received by the second receiving means. The information processing apparatus according to claim 14, further comprising: a decompression unit that decompresses and decompresses data; and a second management unit that manages data decompressed by the decompression unit or data information of the data. 16. An information processing apparatus connected to a server, comprising: receiving means for receiving data or data indicating information related to the data from the server; and data received by the receiving means or data of the data. An information processing apparatus, comprising: display control means for controlling display of information based on an encryption level set in the data. 17. A method for controlling an information processing system having at least a first server and a backup server, comprising: a determination step of determining an encryption level set for data to be backed up on the first server; A first generation step of encrypting the data to be backed up and data information indicating information about the data based on the encryption level determined in the determination step, and generating predetermined format data; A backup step of backing up predetermined format data to the backup server. 18. The first server, wherein: a setting step of setting an encryption level of the backup target data; and data information of the data including the backup target data and the encryption level set in the setting step. 18. The method according to claim 17, further comprising: a first management step of managing the information in a storage medium. 19. The backup server according to claim 1, further comprising: a first decomposing step of decomposing the predetermined format data; and an encryption level set in the data decomposed in the first decomposing step. The method according to claim 17, further comprising: a second management step of managing data information in a storage medium. 20. The backup server, comprising: an acquisition step of acquiring an encryption level of data requested to be downloaded; and encrypting the data and data information of the data based on the encryption level acquired in the acquisition step. A second generation step of generating predetermined format data; and a first transmission step of transmitting the predetermined format data generated in the second generation step to a second server that is a download request source. 18. The method for controlling an information processing system according to claim 17. 21. The first server, wherein the second server receives the predetermined format data from the backup server.
A receiving step; a second decomposing step of decomposing the predetermined format data received in the first receiving step; and the data and the data based on an encryption level set in the data decomposed in the second decomposing step. 21. The control method according to claim 20, further comprising a third management step of managing the data information in a storage medium. 22. A third generation step of generating, in the encrypted data managed by the backup server, predetermined format data including an encryption key for decompressing the encrypted data to be downloaded, and A second transmission step of transmitting the predetermined format data generated in the third generation step to the backup server, a second reception step of receiving the download target encrypted data from the backup server, and a second reception step And a fourth management step of managing the data decompressed in the decompression step or data information of the data in a storage medium. A control method for an information processing system according to claim 20. 23. The backup server, wherein the backup server receives a predetermined format data including the encryption key, an analysis step of analyzing the encryption key received in the second reception step, and an analysis of the analysis step 23. The control method according to claim 22, further comprising: a third transmission step of transmitting the encrypted data to be downloaded to the second server based on a result. 24. A display for controlling display of data managed by the first server or data information of the data based on an encryption level set in the data, wherein the client is connected to the first server. The control method for an information processing system according to claim 17, comprising a control step. 25. A method for controlling an information processing apparatus having a backup server, comprising: a determination step of determining an encryption level set for data to be backed up; and a determination step based on the encryption level determined in the determination step. Generating a predetermined format data by encrypting the data to be backed up and data information indicating the information about the data; and a backup step of backing up the predetermined format data generated in the generation step to the backup server. A method for controlling an information processing apparatus, comprising: 26. A setting step of setting an encryption level of the data to be backed up, and managing, in a storage medium, data information of the data to be backed up and the data including the encryption level set in the setting step. The method according to claim 25, further comprising a management step. 27. A method of controlling an information processing apparatus for backing up data managed by a server, the method comprising: receiving a predetermined format data from the server;
A receiving step; a decomposing step of decomposing the predetermined format data received in the first receiving step; and indicating the data and information about the data based on an encryption level set for the data decomposed in the decomposing step. A control step of managing data information in a storage medium. 28. An obtaining step of obtaining an encryption level of data to be requested for download, and encrypting the data and data information of the data based on the encryption level obtained in the obtaining step, and converting predetermined format data. 28. The method according to claim 27, further comprising: a generating step of generating; and a first transmitting step of transmitting the predetermined format data generated in the generating step to a server that has requested download. . 29. A second receiving step of receiving predetermined format data including an encryption key, an analyzing step of analyzing the encryption key received in the second receiving step, and downloading based on an analysis result of the analyzing step. 29. The control method for an information processing apparatus according to claim 28, further comprising: a second transmission step of transmitting the target encrypted data to a server that has requested download. 30. A method for controlling an information processing device connected to a backup server of a server, comprising: a first receiving step of receiving the predetermined format data from the backup server; and a predetermined format received in the first receiving step. A decomposing step of decomposing the data; and a first management step of managing the data and data information of the data in a storage medium based on an encryption level set for the data decomposed in the decomposing step. A method for controlling an information processing device, which is characterized by the following. 31. A generating step of generating, from among the encrypted data managed by the backup server, predetermined format data including an encryption key for decompressing the encrypted data to be downloaded; A transmitting step of transmitting format data to the backup server; a second receiving step of receiving the encrypted data to be downloaded from the backup server; and using the encryption key to transmit the encrypted data received in the second receiving step. 31. The control of the information processing apparatus according to claim 30, further comprising: a decompression step of decompressing and decompressing; and a second management step of managing data decompressed in the decompression step or data information of the data in a storage medium. Method. 32. A method for controlling an information processing device connected to a server, comprising: a receiving step of receiving data or data indicating information related to the data from the server; A display control step of performing display control of data information of the data based on an encryption level set for the data. 33. A computer-readable memory storing a program code for controlling an information processing system having at least a first server and a backup server, wherein the encryption set in data to be backed up on the first server is performed. Generating a predetermined format data by encrypting the data to be backed up and data information indicating information related to the data based on the program code of the determining step of determining the level and the encryption level determined in the determining step; And a program code for a backup step of backing up the predetermined format data generated in the generation step to the backup server. 34. A computer readable memory in which a program code for controlling an information processing apparatus having a backup server is stored, wherein a program code for a determination step of determining an encryption level set in data to be backed up; Based on the encryption level determined in the determination step, the data to be backed up and data information indicating information on the data are encrypted, and a program code of a generation step of generating predetermined format data is generated in the generation step. A program code for a backup process for backing up predetermined format data to the backup server. 35. A computer-readable memory storing a program code for controlling an information processing apparatus for backing up data managed by a server, wherein the program code includes a receiving step of receiving data of a predetermined format from the server. Based on a program code of a decomposing step for decomposing predetermined format data received in the receiving step, and data information indicating information on the data based on an encryption level set for the data decomposed in the decomposing step, is stored. And a program code for a management step of managing the medium. 36. A computer readable memory storing a program code for controlling an information processing device connected to a backup server of a server, wherein: a program code of a receiving step of receiving the predetermined format data from the backup server; On the basis of the program code of the decomposing step of decomposing the predetermined format data received in the receiving step and the encryption level set for the data decomposed in the decomposing step, the data and the data information of the data are stored in a storage medium. And a program code for a management process for managing. 37. A computer-readable memory storing a program code for controlling an information processing apparatus connected to a server, wherein the program is a program for a receiving step of receiving data or data indicating information on the data from the server. A computer-readable memory comprising: a code; and a display control step of controlling display of data received in the receiving step or data information of the data based on an encryption level set in the data.