JP2005196687A - Electronic recording protecting method, program and information processing device - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To surely establish the propriety of a protected file. <P>SOLUTION: The certification of a protector himself or herself instructing the protection of the protected file is confirmed by a certification confirming means 63, the protection authentication file 52 including the information on a protector name composed of the name of the protector whose certification is confirmed, a file name of the protected file 51, and a protection date of the protected file 51 is created by a protection authentication file creating means 64, and the protection authentication file 52 is encoded by using a specific secret key by an encoding means 65, and stored in a protection holder 50. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  The present invention relates to an electronic record protection technique, and more particularly to a technique for proving and protecting electronic record information relating to pharmaceutical research and development and pharmaceutical / pharmaceutical production.

In recent years, management operations for the production and manufacture of goods have established manufacturing equipment standards to prevent accidents and contamination, and verify that these standards are functioning as intended.・ It is necessary to record.
For example, in the field of medicine and medical care, manufacturing management and quality called GMP (Good Manufacturing Practice), which defines management at the time of manufacturing and compliance items, in order to supply high-quality pharmaceuticals and medical devices that can be used with confidence. Management rules are in place. This GMP requires scientific verification (validation) for feedback to the production / manufacturing process and further to the research stage, and it is also required to record and store the results of the implementation as information.

  Such information on R & D and production / manufacturing is created and stored as electronic record information by a computer system as the equipment is digitized. This electronic record information is easier to be tampered with than information recorded on paper, and there is no trace of tampering. Necessary.

  As a specific example of a mechanism for verifying the validity of electronic record information, there is a regulation “21 CFR Part 11” promulgated in 1997 by the US Food and Drug Administration (FDA). Under this regulation, regarding the management of electronic record information used in application documents for the manufacture and sale of pharmaceuticals, foodstuffs, and raw materials to the United States, tamper protection for the electronic record information, historical record for tampering, electronic record information We are seeking tamper protection against electronic signatures indicating the legitimacy of In particular, with regard to ensuring the validity of electronic record information, it is required that the computer system automatically generate an audit trail that records creation and correction operations on the electronic record information.

  As a system for managing such electronic record information, a dedicated computer system for centrally managing electronic record information necessary for application has been introduced. However, such a system is expensive, and there is a need for a system for managing electronic recording information using an inexpensive general-purpose computer such as a commercially available personal computer.

When managing electronic record information using a general-purpose computer in accordance with the regulation “21 CFR Part 11”, a process for protecting the validity of the electronic record information as shown in FIG. 5 can be considered. FIG. 5 is an explanatory diagram showing an electronic record protection process that can be assumed based on the prior art.
In FIG. 5, a protection target file 81 is an electronic file in which information obtained at the time of manufacturing a pharmaceutical product is electronically recorded, for example. The protection target folder 80 is a logical storage location provided in a storage device such as a hard disk or a memory by an OS (Operation System) that controls the entire computer. A protection target file 81 is stored in the protection target folder 80. Stored.

Access to the folders provided in the storage device is managed based on the security information of each folder by the access management function of the OS. The folder immediately after creation is normally managed in an updatable state, and new files can be written to the folder, and files stored in the folder can be changed (tampered), deleted, and read. It is.
Therefore, when the protection target file 81 is generated in the protection target folder 80, the protection target file 81 can be updated (tampered).

Here, in order to protect the validity of the electronic record information in conformity with the regulation “21CFR Part11”, first, a protection certification file 82 certifying the validity of the protection target file 81 is generated in the protection target folder 80. . In the protection certification file 82, a file name to be validated, a name of a guardian who proves its validity, date information that has proved validity, and the like are written. Then, the security information of the protection target folder 80 is set to read only.
As a result, it becomes possible to read only the file in the protection target folder 80, and it becomes impossible to write a new file to the folder, and to change (tamper) or delete the file stored in the folder. The file 81 and the protection certification file 82 are protected.

The applicant has not yet found prior art documents related to the present invention by the time of filing other than the prior art documents specified by the prior art document information described in this specification.
FDA (Food and Durg Administration), Department of Health and Human Services 21CFR (Code of Federal Reguration) Part11: Electronic records; electionic signatures

However, with the above-described electronic recording protection technology using a general-purpose computer, the protection target file 81 and the protection certification folder 82 in the protection target folder 80 can be protected from tampering. There was a problem that could not be confirmed.
In the protection certification file 82, the name of the guardian who proved the validity of the protection target file 81 is described. However, in the above-mentioned electronic record protection technology, it is not guaranteed whether this description is due to the guardian himself. For example, the protection certificate file related to the protected file that has been tampered with is illegally used by a third party. It is also possible to create and create a protection target folder separately.

  The present invention has been made to solve such problems, and an object of the present invention is to provide an electronic record protection method, a program, and an information processing apparatus that can reliably prove the validity of a file to be protected.

  In order to achieve such an object, the electronic recording protection method according to the present invention stores and stores a file composed of various information electronically recorded in a folder provided in a storage unit as a logical storage location. Authentication of a guardian who instructs protection of a file to be protected in an electronic record protection method for proving and protecting the validity of a file to be protected stored in a predetermined protection target folder provided in a storage unit in a processing device A protection certificate file that generates a protection certificate file that includes information on the authentication confirmation step for performing the protection and the name of the guardian whose name has been confirmed, the file name of the protected file, and the protection date and time of the protected file A generation step, an encryption step for encrypting the protection certificate file using a predetermined secret key, and an encrypted protection certificate file for the protection target file. In which and a storing step of storing the folder.

  As for the encryption step, a secret key preliminarily incorporated in a program for causing the computer of the information processing apparatus to execute the electronic recording method may be used as the secret key.

  As a security measure, based on access management information for a folder provided in the storage unit, an access management step for managing access to the folder, and access management information for the protection target folder A security setting step for prohibiting writing, changing to a file in the folder, and deleting a file in the folder, and setting a state in which only reading of the file in the folder is permitted.

Further, the authentication confirmation step may be realized by an authentication management step of authenticating the guardian himself / herself at the start of use of the information processing apparatus in order to manage the availability of the information processing apparatus.
Alternatively, the authentication confirmation step may be realized by a step of acquiring authentication input information from the guardian and a step of authenticating the guardian himself / her by comparing the authentication input with the authentication information registered in advance. Good.

  The program according to the present invention is an information processing apparatus that stores and stores a file composed of various information electronically recorded in a folder provided in the storage unit as a logical storage location. A program for performing an electronic record protection process that proves and protects the validity of a protected file stored in a protected folder, and is a program for protecting a protected file on a computer of an information processing device. A protection certificate file generating step for generating a protection certificate file including information on the name of the guardian, the file name of the protection target file, and the protection date and time of the protection target file; and a protection certificate file using a predetermined secret key An encryption step for encryption and a storage step for storing the encrypted protection certificate file in the protection target folder are executed. Than it is.

  As for the encryption step, a secret key incorporated in advance in the program may be used as the secret key.

  As a security measure, after the storing step, the access management information used when managing access to the protection target folder by the access management means of the information processing apparatus is used to write a new file to the folder, A change to the file and deletion of the file in the folder may be prohibited, and a security setting step may be executed in which only reading of the file in the folder is permitted.

  In addition, for the authentication of the guardian himself, the guardian himself is authenticated prior to the protection certificate file generation step, and if the authentication is obtained, the process proceeds to the protection certificate file generation step and the authentication is not obtained. In this case, an authentication confirmation step for ending the electronic record protection process may be further executed.

  In addition, in the protection certificate file generation step, the name of the guardian confirmed by the personal authentication performed at the start of use of the information processing apparatus is used as the guardian name in order to manage the availability of the information processing apparatus. Also good.

  In addition, an information processing apparatus according to the present invention includes a storage unit that stores and stores a file including various information electronically recorded in a folder provided as a logical storage location, and a predetermined protection provided in the storage unit. An information processing apparatus having a control unit that proves and protects the legitimacy of a protection target file stored in a target folder, and performs authentication for authenticating a guardian who protects the protection target file to the control unit A confirmation means, and a protection certificate file generation means for generating a protection certificate file including information on the name of the guardian who has been authenticated, the name of the protection target file, and the protection date and time of the protection target file. And an encryption unit for encrypting the protection certificate file using a predetermined secret key, and a storage unit for storing the encrypted protection certificate file in the protection target folder. Than it is.

  As the encryption means, a secret key incorporated in advance in a program for causing the computer of the information processing apparatus to execute the electronic recording method may be used as the secret key.

  Also, as a security measure, based on access management information for a folder provided in the storage unit, access management means for managing access to the folder, and access management information for the protection target folder are used for new file access to the folder. Security setting means for prohibiting writing, changing to a file in the folder, and deleting a file in the folder and setting only reading of the file in the folder may be further provided.

Further, the authentication confirmation unit may be realized by an authentication management unit that authenticates a parent person at the start of use of the information processing apparatus in order to manage the availability of the information processing apparatus.
Alternatively, as the authentication confirmation means, authentication input information may be acquired from the guardian, and the authentication of the guardian may be performed by comparing the authentication input with previously registered authentication information.

  According to the present invention, if the protection certificate file can be decrypted with the public key released by the guardian at the time of verification, it can be determined that the protection certificate file has been protected with the secret key. As a result, it can be determined that the protection certificate file is protected by a guardian who has the private key, and the successful decryption of the protection certificate file with the public key proves the validity of the protection certificate file, and is subject to protection. You can be sure that the file is legitimate. Further, without requiring a dedicated computer system, electronic recording protection can be realized with a general-purpose computer such as a personal computer, and the electronic recording protection system can be introduced at low cost.

Next, embodiments of the present invention will be described with reference to the drawings.
[Configuration of information processing device]
First, an information processing apparatus according to an embodiment of the present invention will be described with reference to FIG. FIG. 1 is a block diagram showing a configuration of an information processing apparatus according to an embodiment of the present invention.
The information processing apparatus 10 is composed of a general-purpose computer such as a personal computer as a whole, and executes a predetermined electronic recording protection program to cooperate the hardware and the program to perform protection processing of electronic recording information.

The information processing apparatus 10 includes a screen display unit 1, an operation input unit 2, a data interface unit (referred to as a data I / F unit) 3, a storage unit 4, and a control unit 6.
The screen display unit 1 includes a screen display device such as an LCD or a CRT, and displays various information necessary for processing in the information processing device 10 based on an instruction from the control unit 6. The operation input unit 2 includes an operation input device such as a keyboard and a mouse, detects an operation of a guardian instructing protection processing, and outputs the detected operation to the control unit 6. The data I / F unit 3 is a circuit unit that exchanges various data via a recording medium 11 such as a CD or DVD, or a data communication network (not shown) such as a LAN or the Internet.

The storage unit 4 includes a storage device such as a hard disk or a memory, and stores programs and various processing information necessary for processing in the control unit 6, and electronic recording information to be protected.
In the storage unit 4, a folder is provided as a logical storage location by the OS function, and the protection target folder 50 is one of them. The electronic record information to be protected is described in the protection target file 51 using a predetermined program and stored in the protection target folder 50 in advance. Further, the protection target folder 50 stores an encrypted protection certification file 52 automatically generated by an electronic record protection process described later.

Examples of the program include an OS program 41 that realizes an OS (Operation System) function that controls the entire information processing apparatus 10, and an electronic record protection program 42 that realizes an electronic record protection process, and the like via the data I / F unit 3. The data is taken in via the recording medium 11 and the data communication network and stored in the storage unit 4 in advance. In particular, a secret key 42A for encrypting the protection certification file 52 is incorporated in the electronic record protection program 42 in advance.
As the processing information, there is authentication information 43 for authenticating the guardian's identity, which is registered in advance by the guardian or the administrator and stored in the storage unit 4. Further, access management information 44 for managing access to each folder in the storage unit 4 is stored in the storage unit 4 by the access management means 62.

The control unit 6 includes a microprocessor such as a CPU and its peripheral circuits, and reads and executes a program stored in the storage unit 4 to cooperate the hardware and the program with various functional units. Realize.
As this functional means, an authentication management means 61, an access management means 62, an authentication confirmation means 63, a protection certification file generation means 64, an encryption means 65, and a security setting means 66 are provided. Among these, the authentication management means 61 and the access management means 62 are realized by the OS program 41, and the authentication confirmation means 63, the protection certification file generation means 64, the encryption means 65, and the security setting means 66 are the electronic record protection program. 42 is realized.

  The authentication management unit 61 performs a registration process of the authentication information 43 for performing the personal authentication of the guardian and a personal authentication process for the guardian using the authentication information 43. The access management unit 62 manages access to each folder provided in the storage unit 4 based on the access management information 44 of the folder. The authentication confirmation means 63 confirms the authentication of the guardian who has instructed to start the electronic record protection process. The protection certificate file generating means 64 generates the protection certificate file 52 using the identification information of the guardian who has been authenticated, the file name to be protected, and the protection date information. The encryption unit 65 encrypts the protection certification file 52 by using a secret key 42A incorporated in advance in the electronic record protection program 42. The security setting unit 66 changes the access management information 44 of the protection target folder 50 to set the protection target folder 50 to a read-only state.

  In the present embodiment, as shown in FIG. 2, when the protection process is performed on the protection target file 51 in the protection target folder 50, the protection process is first performed by executing the electronic recording protection program 42 by the control unit 6. After the authentication of the guardian is performed and the authentication is obtained, a protection proof file 52 is generated to prove the validity of the protection target file 51. At this time, the personal authentication is performed as the guardian name described in the protection proof file 52. The name of the parent who has been confirmed is used. Then, the protection certification file 52 is encrypted using a secret key incorporated in advance in the electronic record protection program 42.

[Electronic record protection]
Next, with reference to FIG. 3, an electronic recording protection process will be described as an operation of the information processing apparatus according to the present embodiment. FIG. 3 is a flowchart showing electronic record protection processing in the information processing apparatus 10.
When the protection processing start operation by the guardian is detected from the operation input unit 2, the control unit 6 reads the electronic recording protection program 42 from the storage unit 4 and executes it to start the electronic recording protection processing of FIG. .

  First, the control unit 6 uses the authentication confirmation unit 63 to fetch an authentication input for personal authentication by the guardian's operation from the operation input unit 2 (step 100) and to read the authentication information 43 from the storage unit 4 (step 101). . As the authentication input, for example, a pair of a logon name and a password may be used as information for specifying a guardian, and similar information may be registered in the authentication information 43 and stored in the storage unit 4 in advance. . The authentication information 43 may be registered in association with, for example, a guardian's name or ID as guardian identification information used in the protection certificate file 52. Further, authentication may be performed using biometric information such as a fingerprint.

  Then, the authentication management means 61 checks whether or not the obtained authentication input is registered in the authentication information 43 (step 102). Here, if the obtained authentication input is not registered in the authentication information 43 (step 102: NO), since the guardian cannot be confirmed, the series of electronic record protection processing is terminated.

  On the other hand, when the obtained authentication input is registered in the authentication information 43 (step 102: YES), the protection certification file generation means 64 uses the operation input unit 2 to specify the protection target file name for specifying the protection target file 51. At the same time, the identification information of the parent whose authentication confirmation has already been obtained is captured from the authentication information 43 (step 111). Then, the protection certification file 52 is generated using the protection target file name, the guardian name, and the date / time information obtained from the OS function (step 112).

Subsequently, the control unit 6 encrypts the protection certificate file 52 using the secret key 42A previously incorporated in the electronic record protection program 42 by the encryption unit 65 (step 113), and the encrypted protection The certification file 52 is stored in the protection target folder 50 (step 114).
For the configuration of the secret key and the encryption processing method, a public key encryption technique such as RSA (Rivest Shamir Adleman) may be used. The public key cryptosystem is a scheme in which a key for creating a ciphertext, that is, a secret key used for encryption, and a key for restoring the ciphertext, that is, a public key used for decryption, are different. It can only be decrypted with a key. In the present embodiment, the secret key 42A is strictly managed by incorporating the secret key 42A into the electronic record protection program 42, and the secret key 42A and the electronic record protection program 42 are associated with each other.

  Next, the control unit 6 sets the access management information 44 of the protection target folder 50 to the read-only state by the security setting means 66 (step 115), and ends the series of electronic record protection processing. This read-only state is a state in which writing of a new file to the folder, modification to a file in the folder, and deletion of a file in the folder are prohibited, and only reading of the file in the folder is permitted. It is. Thereby, access to the protection target folder 50 is managed in a read-only state by the access management means 62.

  In this way, the authentication of the guardian who instructs the protection of the protection target file 51 is confirmed, the guardian name consisting of the name of the guardian whose authentication is confirmed, the file name of the protection target file 51, and the protection target file 51. Since the protection certificate file 52 including each information of the protection date and time is generated, the protection certificate file 52 is encrypted with the private key 42A. If the file 52 can be decrypted, it can be determined that the protection certificate file 52 has been protected by the private key 42A.

As a result, it can be determined that the protection certificate file 52 is protected by the guardian having the secret key 42A, and that the decryption of the protection certificate file 52 using the public key proves the validity of the protection certificate file 52. Therefore, the correctness of the protected file can be reliably proved.
Further, without requiring a dedicated computer system, electronic recording protection can be realized with a general-purpose computer such as a personal computer, and the electronic recording protection system can be introduced at a low cost.

  When the protection certificate file is encrypted with a different secret key, the public key corresponding to the secret key is naturally different, and therefore cannot be decrypted with a regular public key. Therefore, the legitimacy of the protection certificate file is not proved, and even if the protected folder itself that stores the altered protection target file and the encrypted illegal protection certificate file is forged, the correctness can be easily confirmed. it can.

In addition, since the secret key 42A preliminarily incorporated in the electronic record protection program 42 is used as a secret key when encrypting the protection certification file 52, the secret key is strictly managed without burdening the guardian. High security can be obtained. At this time, the secret key 42A is associated with the electronic record protection program 42, not the guardian. However, since the personal authentication of the guardian is confirmed when the electronic record protection program 42 is activated, It can be determined that the protection certification file 52 has been protected by the guardian.
Further, since the secret key 42A and the electronic record protection program 42 are associated with each other, for example, a plurality of guardians belonging to an arbitrary organization can share the electronic record protection program 42. Therefore, the validity of the protection certificate file protected by the organization with one public key can be confirmed, and the work burden at the time of verification can be greatly reduced as compared with the case where a secret key is used for each guardian.

Further, since the protection target folder 50 is set to be read-only, access to the protection target folder 50 can be restricted, and this can prevent not only malicious but also file falsification and deletion due to negligence.
Further, the protection target file 51 may be encrypted in the same manner as the protection certification file 52, and high security can be obtained. Note that the contents of the protection target file 51, that is, the desired electronic record information is stored in the protection target folder 50 in a state generated without encryption as described above, and the public key corresponding to the guardian is stored. It is possible to easily browse without selecting and decrypting, and the use work load of the protection target file 51 can be greatly reduced.

  Further, since the authentication confirmation unit 63 confirms the authentication of the guardian based on the authentication result for the guardian obtained at the start of use of the information processing apparatus 10 by the OS function, the authentication information 43 in the storage unit 4 is confirmed. It is no longer necessary to authenticate the guardian using the password, and the processing burden can be reduced. In the authentication confirmation means, the authentication information set in advance and the authentication input inputted by the guardian may be collated to confirm the personal authentication of the guardian, and the OS function is used. Electronic record protection processing can be executed.

  For the public key that is paired with the encryption key 42A, the protection certificate file 52 is disclosed to the verifier. At this time, the public key may be registered with a certificate authority provided on the Internet together with information on the guardian, and the verifier can easily check the validity of the public key and the correspondence between the public key and the guardian. it can.

Next, an authentication confirmation process will be described as an operation of the information processing apparatus according to the present embodiment with reference to FIG. FIG. 4 is a flowchart showing authentication confirmation processing in the information processing apparatus 10.
In the above description, the case of confirming the authentication of the guardian in the electronic record protection processing has been described as an example. The authentication management process for performing authentication may be used to confirm the authentication of the guardian, and the electronic record protection program 42 can be simplified.

Hereinafter, the authentication confirmation process will be described.
The control unit 6 reads the OS program 41 from the storage unit 4 and executes it according to the activation of the information processing apparatus 10, thereby realizing an OS function necessary for controlling the entire apparatus. At the time of activation (logon), the control unit 6 performs authentication management processing shown in FIG. 4 by using the authentication management means 61 to authenticate a parent who uses the information processing apparatus 10.

  First, the authentication management means 61 takes in an authentication input for personal authentication by a guardian's operation from the operation input unit 2 (step 120), and reads the authentication information 43 from the storage unit 4 (step 121). As the authentication input, for example, a pair of a logon name and a password may be used as information for specifying a guardian, and similar information may be registered in the authentication information 43 and stored in the storage unit 4 in advance. . The authentication information 43 may be registered in association with, for example, a guardian's name or ID as guardian identification information used in the protection certificate file 52.

  Then, the authentication management means 61 checks whether or not the obtained authentication input is registered in the authentication information 43 (step 122). Here, for example, when a combination of a logon name and password for authentication input is registered in the authentication information 43 (step 122: YES), a state in which various programs such as the electronic record protection program 42 can be used (logon state) is entered. The process proceeds (step 123), and the series of authentication management processing is terminated. In this case, personal authentication is obtained, and an electronic record protection program 42 described later can be executed.

On the other hand, when the combination of the logon name and password for authentication input is not registered in the authentication information 43 (step 122: NO), the series of authentication management processing is terminated. In this case, personal authentication is not obtained, and the electronic recording protection program 42 described later cannot be executed.
By performing such an authentication management process, only a guardian who has been authenticated can execute the electronic record protection program 42 to perform the electronic record protection process. Therefore, steps 100 to 102 in the electronic record protection process (see FIG. 3) described above can be omitted, the electronic record protection program 42 can be simplified, and the authentication work burden on the guardian can be reduced.

It is a block diagram which shows the structure of the information processing apparatus concerning one embodiment of this invention. It is description which shows the outline | summary of the electronic record protection method concerning one embodiment of this invention. It is a flowchart which shows the electronic record protection process in information processing apparatus. It is a flowchart which shows the authentication management process in information processing apparatus. It is description which shows the outline | summary of the conventional electronic record protection method.

Explanation of symbols

DESCRIPTION OF SYMBOLS 10 ... Information processing apparatus, 1 ... Screen display part, 2 ... Operation input part, 3 ... Data I / F part, 4 ... Memory | storage part, 41 ... OS program, 42 ... Electronic record protection program, 42A ... Private key, 43 ... Authentication information 44 ... Access management information 50 ... Protection target folder 51 ... Protection target file 52 ... Protection certificate file 6 ... Control unit 61 ... Authentication management means 62 ... Access management means 63 ... Authentication confirmation means 64: Protection proof file generation means, 65: Encryption means, 66: Security setting means.

Claims (15)

An information processing apparatus for storing and storing files composed of various information electronically recorded in a folder provided in the storage unit as a logical storage location, and stored in a predetermined protection target folder provided in the storage unit In the electronic record protection method to prove and protect the legitimacy of protected files,
An authentication confirmation step for authenticating a guardian who instructs protection of the protection target file;
A protection certificate file generating step for generating a protection certificate file including each information of a guardian name, a file name of the protection target file, and a protection date and time of the protection target file, the name of the guardian whose authentication has been confirmed;
An encryption step of encrypting the protection certificate file using a predetermined secret key;
And a storage step of storing the encrypted protection certificate file in the protection target folder. The electronic record protection method according to claim 1,
The electronic recording protection method, wherein the encryption step uses, as the secret key, a secret key incorporated in advance in a program for causing the computer of the information processing apparatus to execute the electronic recording method. The electronic record protection method according to claim 1,
An access management step for managing access to the folder based on access management information for the folder provided in the storage unit;
The access management information of the protection target folder is prohibited from writing a new file to the folder, changing the file in the folder, and deleting the file in the folder, and only reading the file in the folder. And a security setting step for setting to a permitted state. The electronic record protection method according to claim 1,
The electronic record protection method, wherein the authentication confirmation step includes an authentication management step of authenticating the guardian himself / herself at the start of use of the information processing apparatus in order to manage the availability of the information processing apparatus. The electronic record protection method according to claim 1,
The authentication confirmation step includes obtaining authentication input information from the guardian, and authenticating the guardian by comparing the authentication input with previously registered authentication information. A method for protecting electronic records. An information processing apparatus for storing and storing files composed of various information electronically recorded in a folder provided in the storage unit as a logical storage location, and stored in a predetermined protection target folder provided in the storage unit A program for performing electronic record protection processing to prove and protect the validity of a protected file,
A computer of the information processing apparatus;
A protection certificate file generating step for generating a protection certificate file including information on the name of a guardian who protects the protection target file, the file name of the protection target file, and the protection date and time of the protection target file; ,
An encryption step of encrypting the protection certificate file using a predetermined secret key;
A storage step of storing the encrypted protection certificate file in the protection target folder; The program according to claim 6,
The encryption step uses a secret key previously incorporated in the program as the secret key. The program according to claim 6,
After the storing step, the access management information used when managing access to the protection target folder by the access management means of the information processing apparatus is written into the folder, a new file is written to the folder, and the file in the folder is changed. And a security setting step for prohibiting deletion of files in the folder and setting a state in which only reading of the files in the folder is permitted. The program according to claim 6,
Prior to the protection certificate file generation step, the guardian himself is authenticated, and if the authentication is obtained, the process proceeds to the protection certificate file generation step, and if the authentication is not obtained, the electronic record A program for further executing an authentication confirmation step for ending a protection process. The program according to claim 6,
The protection certification file generation step uses, as the guardian name, the name of the guardian confirmed by the personal authentication performed at the start of use of the information processing apparatus in order to manage the availability of the information processing apparatus. A featured program. A storage unit for storing and storing a file composed of various information electronically recorded in a folder provided as a logical storage location, and a protection target file stored in a predetermined protection target folder provided in the storage unit An information processing apparatus having a control unit that proves and protects the validity,
The controller is
Authentication confirmation means for authenticating a guardian who protects the protection target file;
A protection certificate file generating means for generating a protection certificate file including each information of a guardian name consisting of the name of a guardian whose authentication has been confirmed, a file name of the protection target file, and a protection date and time of the protection target file;
An encryption means for encrypting the protection certificate file using a predetermined secret key;
An information processing apparatus comprising: storage means for storing the encrypted protection certification file in the protection target folder. The information processing apparatus according to claim 11,
The information processing apparatus, wherein the encryption unit uses a secret key incorporated in advance in a program for causing the computer of the information processing apparatus to execute the electronic recording method as the secret key. The information processing apparatus according to claim 11,
Access management means for managing access to the folder based on access management information for the folder provided in the storage unit;
The access management information of the protection target folder is prohibited from writing a new file to the folder, changing the file in the folder, and deleting the file in the folder, and only reading the file in the folder. An information processing apparatus comprising: security setting means for setting a permitted state. The information processing apparatus according to claim 11,
The information processing apparatus according to claim 1, wherein the authentication confirmation means includes authentication management means for authenticating the guardian himself / herself at the start of use of the information processing apparatus in order to manage the availability of the information processing apparatus. The information processing apparatus according to claim 11,
The authentication confirmation means obtains authentication input information from the guardian, and authenticates the guardian himself / herself by collating the authentication input with previously registered authentication information. .

Images