JP2005332093A - Maintenance work system managing device, identifying device, personal digital assistance, computer program, recording medium, and maintenance work system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a system which surely and efficiently executes identification processing between a maintenance-object device and a person in charge of maintenance and surely manages maintenance work. <P>SOLUTION: A copying machine 50 holds device identification information for identifying the machine and an identification code. The copying machine 50 performs the image-encoding of the device identification information and displays the information thus encoded. A personal information terminal 52 acquires the image displayed on the copying machine 50 and decodes the image. The personal information terminal 52 transmits the decoded device identification information and information for identifying itself to a management server device 54. The management server device 54 reads stored work-permission information for the copying machine 50 in response to the information thus transmitted, performs the encoding of the information, and transmits it to the personal information terminal 52. The personal information terminal 52 receives the image-encoded work-permission information and displays it. The copying machine 50 acquires the information displayed on the personal information terminal 52 and determines whether the identification code satisfies a prescribed relation. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to a maintenance work system for confirming the work authority of a worker in charge of performing inspection, repair, etc. of a predetermined device, and in particular, the work of a worker in charge while confirming the work authority safely and efficiently. The present invention relates to a maintenance work system management device, an authentication device, and a portable information terminal device that perform management.

  So-called OA (Office Automation) equipment such as computers, copiers and fax machines (facsimile machines), and automatic cash handling machines, vending machines, etc. are installed in stores, offices, etc. where users of these machines are located. . Normally, maintenance work for these devices is performed by a specialized worker. The person in charge of work goes to the place where these devices are installed and performs necessary maintenance work while contacting the manager who manages and manages the maintenance work.

  When a worker in charge performs maintenance work on these devices (hereinafter referred to as “maintenance target device”), it is determined whether the worker in charge has the authority to perform maintenance work. The process to confirm with (hereinafter referred to as “authentication process”) is required. For example, some copying machines display an operation menu for maintenance work on a monitor when performing maintenance work. The operation menu displays various setting screens such as the current status of various consumables, the usage history of the copying machine by the customer, and the upper limit of the number of copies. The person in charge of the work confirms the current state and history, etc., and changes the settings from the operation menu.

  Since it is not preferable that these operations are performed by a person other than the worker, it is generally performed that the screen display for maintenance work is not performed unless the authority of the worker is authenticated by the above-described authentication process. That is, this operation menu is displayed for the first time by combining special operations such as operation buttons and a touch panel, and is protected for customers who are general users of the maintenance target device. In addition, for example, a part requiring maintenance work is locked with a key, a magnetic card, or an IC (Integrated Circuit) card, etc., and the person in charge possesses the key etc. and unlocks it, thereby protecting operations dedicated to maintenance work. There is also a way to do it.

  On the other hand, in order for a worker in charge to travel and perform maintenance work efficiently, it is necessary for an administrator who comprehensively manages the maintenance work to obtain accurate information on the current state of the worker. . Patent Document 1 to be described later discloses a field work support system that improves the efficiency of work management of a worker in charge of maintenance work.

  This system includes a service base where a schedule creator and a manager are arranged, a mobile phone and a personal computer owned by each worker, and a backward work support department. Each person in charge of the work further possesses a positioning device that performs positioning using radio waves from an artificial satellite or the like. The back work support department provides information necessary for maintenance work to the service base. The personal computer owned by the person in charge of work transmits the position information from the positioning device to the service base. The schedule creator constantly confirms the display of the received position information at the service base, and creates a work schedule and work instructions. The created schedule and work instructions are distributed to a mobile phone and a personal computer possessed by the person in charge of the work through a public line. The person in charge of the work performs maintenance work according to the work schedule and work instructions, and reports to the administrator after the work is finished. Therefore, the manager can grasp the current status of the worker and the progress status of the maintenance work.

JP 2000-148863 A

  The authentication process using special operations such as operation buttons and touch panels is practical because it is common to all maintenance target devices or at most a few patterns of operation procedures due to the workload of workers. is there. However, such an operation procedure has a problem that an operation dedicated to maintenance work cannot be sufficiently protected. On the other hand, to perform sufficient protection using a physical key or the like, it is necessary to prepare a key for each maintenance target device. However, the key existing for each maintenance target device needs to be handled with care. In addition, when handing over the person in charge of the work, it is necessary to physically exchange the key bundle or transmit the correspondence between the key and the device, and the handling is complicated. For this reason, the efficiency of maintenance work is reduced. Such a problem also occurs in an authentication process using a magnetic card or an IC card.

  In addition, in the technology described in Patent Document 1, when there are a plurality of maintenance target devices at a close distance, such as in the same business site, which device the person in charge actually performs the maintenance work of, It cannot be accurately grasped at the service base. As a result, the work efficiency of both the person in charge of operations and the manager is reduced. In addition, there is a problem that work management based on position information cannot be performed in an indoor or underground environment where radio waves used for radio positioning cannot be received.

  Therefore, an object of the present invention is to reliably and efficiently perform an authentication process between a maintenance target apparatus and a worker, and to further reliably perform work management of a worker who performs maintenance work. A maintenance work system management device, an authentication device, a portable information terminal device, and a maintenance work management system are provided.

  A maintenance work system management device according to a first aspect of the present invention is a maintenance work system management for managing a maintenance work system including one or more maintenance target devices and one or more work person information terminal devices. Device. This maintenance work system management device includes a storage means for storing work permission information necessary for permitting maintenance work for each maintenance target device, and device identification information for identifying the maintenance target device. An image encoding means for reading work permission information for the device specified by the device identification information from the storage means in response to a request for transmitting the permission information, and encoding the image by a predetermined encoding method; Transmitting means for transmitting the information coded into the image by the converting means to the destination specified based on the transmission request.

  Upon receiving a work permission information transmission request, the image coding means reads the work permission information for the apparatus from the storage means based on the device identification information included in the transmission request, and encodes the image. The transmission means transmits the image-coded information to the transmission destination specified based on the transmission request. At the transmission destination, it is possible to obtain work permission for maintenance work on the device identification information by decoding this image code by some means. The content of the image code cannot be known only by human viewing, and work permission information can be prevented from leaking. Further, it is not necessary for the person in charge of the work to use a key or the like, and the authentication process for permitting maintenance work can be performed safely and efficiently.

  Preferably, the maintenance work system management apparatus further includes receiving means for receiving a transmission request via communication. The transmission means includes means for transmitting the information encoded by the image encoding means to the transmission source of the transmission request.

  When the transmission request for the work permission information is received, the image-coded information is returned. Therefore, it is possible to accept a transmission request and permit maintenance work with an information terminal device for a worker in charge who goes to the place where the maintenance target apparatus is installed and performs maintenance work. Therefore, the authentication process can be made efficient.

  More preferably, the transmission request further includes worker identification information for identifying the worker. The maintenance work system management device further includes means for storing the device identification information and the work person identification information included in the transmission request in association with each other.

  By this transmission request, it is possible to identify the maintenance target device and the person in charge of the work who intends to perform work on the maintenance target device. Therefore, by storing the device identification information and worker identification information included in the transmission request in association with each other, the current status of the worker, that is, the maintenance target device that the worker is currently working on Can be reliably grasped, and it is possible to perform accurate work management.

  More preferably, the transmission request further includes additional information that is not related to the device identification information included in the transmission request. The maintenance work system management apparatus further includes additional information extracting means for extracting additional information from the transmission request received by the receiving means. In response to the transmission request, the image encoding means includes a reading means for reading work permission information for the work target device specified by the device identification information from the storage means, and a work permission read by the reading means. A reply information generating means for generating reply information as a function of the information and the additional information extracted by the additional information extracting means, and an image coding for the reply information generated by the reply information generating means by a predetermined encoding method Means.

  When reply information is generated based on work permission information for each maintenance target device and additional information and converted into an image code, an image code generated for permitting maintenance work for a certain maintenance target device is the device identification information. It will be unrelated. When the additional information changes, the information returned by the maintenance work system management apparatus also changes. Therefore, even when the device identification information is leaked, it is possible to prevent the information returned from the maintenance work system management device from being stolen. Therefore, it is possible to protect the maintenance target apparatus with high safety from a person who is not permitted to perform maintenance work.

  More preferably, the reply information generation means is configured to combine the information permitted by the means for combining the work permission information read by the reading means and the additional information extracted by the additional information extraction means with the predetermined information. Encryption means for encrypting according to the encryption method.

  By combining the additional information with the work permission information and further encrypting it, it is not possible to obtain the work permission information simply by decrypting the image of the reply information that has been image-coded. Therefore, it is possible to prevent the work permission information from being stolen even when the reply information converted into the image code is leaked. Therefore, it is possible to protect the maintenance target apparatus with high safety from a person who is not permitted to perform maintenance work.

  The encryption unit may include a hash calculation unit for converting the information combined by the unit for combining into a hash value using a predetermined one-way hash function.

  By encrypting using a one-way hash function, the original work permission information cannot be reproduced from the generated hash value, and different work permission information having the same hash value can be created extremely. It becomes difficult. Therefore, only those who can convert to a hash value using the same work permission information, the same additional information, and the same one-way hash function can obtain the same hash value. Therefore, by performing encryption using a one-way hash function, the security of the authentication process is improved.

  Preferably, the maintenance work system management device further includes input means for receiving an input of a transmission request. The transmission request further includes worker identification information for identifying the worker. The transmission means identifies, for each worker in charge, the address information holding means for holding the address of the transmission destination and the information encoded by the image encoding means by the worker identification information included in the transmission request. Means for transmitting to the address held in the address holding means for the worker in charge.

  Since the image-coded information is transmitted to the person in charge designated by the input in a limited manner, it is possible to prevent acts such as impersonating the person in charge of the work and obtaining work permission information illegally. Therefore, it is possible to improve the security of the authentication process.

  More preferably, in response to the transmission request, the image encoding means reads out work permission information for the device specified by the device identification information from the storage means, the work permission information and the work person identification information included in the transmission request, And means for image coding by a predetermined coding method.

  Since the work permission information and the worker identification information are combined into an image code, if the image coded information is decoded by some means, the work permission for the maintenance work for the device identification information, the work permission information, and the work It becomes possible to obtain the worker identification information included in the request.

  More preferably, the maintenance work system management device further includes additional information receiving means for receiving predetermined additional information not related to the device identification information from the device specified by the device identification information. In response to the transmission request, the image encoding means includes reading means for reading work permission information for the work target device specified by the device identification information from the storage means, and work permission information read by the reading means. And transmission information generating means for generating transmission information as a function of the additional information acquired by the additional information receiving means, and image encoding the transmission information generated by the transmission information generating means by a predetermined encoding method Means.

  Reply information is generated based on the work permission information for each maintenance target device and the additional information received from the maintenance target device and is encoded into an image code, so that maintenance work that is valid only for the maintenance target device is permitted. The image code is generated. Even when the device identification information is leaked, it is possible to prevent the information transmitted by the maintenance work system management device from being stolen. Therefore, it is possible to protect the maintenance target apparatus with high safety from a person who is not permitted to perform maintenance work.

  More preferably, the transmission information generating means combines the work permission information read by the reading means with the means for combining the additional information received by the additional information receiving means, and the information combined by the means for combining, Encryption means for encrypting by a predetermined encryption method.

  Since the information combined by the combining means is encrypted and then converted into an image code, the work permission information cannot be reproduced only by decoding the image code. Therefore, even when the reply information converted into an image is leaked, it is possible to prevent the work permission information from being stolen. Therefore, it is possible to protect the maintenance target apparatus with high safety from a person who is not permitted to perform maintenance work.

  The encryption unit may include a hash calculation unit for converting the information combined by the unit for combining into a hash value using a predetermined one-way hash function.

  When information is converted using a one-way hash function, a hash value that cannot reproduce the information before conversion is generated. One-way hash functions have the property that it is extremely difficult to create the same hash value from information different from each other. Therefore, only those who can convert the same information as the work permission information and the same information as the additional information into a hash value using the same one-way hash function can confirm the validity of the work permission information. Can be. Therefore, the security of the authentication process is improved.

  More preferably, the means for image coding includes the transmission information generated by the transmission information generation means and the worker identification information included in the transmission request together for image coding by a predetermined coding method. Including means.

  Since the work permission information and the worker identification information are combined into an image code, if the image coded information is decoded by some means, the work permission for the maintenance work for the device identification information, the work permission information, and the work It becomes possible to obtain the worker identification information included in the request.

  The maintenance work system management apparatus is further provided by the work person identified by the work person identification information in the apparatus identified by the apparatus identification information including the apparatus identification information and the work person identification information from another apparatus. A notification receiving unit for receiving a notification indicating that the authentication of the maintenance work has been successfully completed, and a device identification information and a work person identification information included in the notification received by the notification receiving unit are stored in association with each other. Means.

  This maintenance work system management apparatus receives a notification from another apparatus after transmitting the work permission information converted into an image code. The received notification is information indicating the current status of the worker, that is, to which maintenance target device the worker has successfully authenticated the maintenance work. Therefore, by associating and storing the device identification information included in the notification and the worker identification information, it is possible to reliably grasp the current situation of the worker and perform accurate work management.

  Preferably, the maintenance work system management device further includes a reference information holding unit for holding predetermined reference information related to the device specified by the device identification information, and a transmission request from the reference information holding unit in response to the transmission request. And a reference information reading means for reading reference information related to the device specified by the device identification information included. The transmission means includes means for transmitting the information encoded by the image encoding means and the reference information read by the reference information reading means to the transmission destination specified based on the transmission request. .

  If the predetermined reference information is transmitted together with the image-coded information in response to the transmission request, the transmission destination of the image-coded information can browse the reference information. Therefore, when performing a series of authentication processes, it is possible to provide useful information for the work to the person in charge of the work.

  The reference information may include maintenance work history information for the device specified by the device identification information. Further, the reference information may include information related to the user of the device specified by the device identification information.

  When the computer program according to the second aspect of the present invention is executed by a computer, it causes the computer to operate as a maintenance work system management device according to the first aspect. As a result, the same operational effects as the maintenance work system management apparatus described above can be obtained.

  An authentication apparatus according to a third aspect of the present invention is an authentication apparatus for performing authentication relating to the presence or absence of authority to perform a predetermined process. The authentication apparatus includes an authentication code storage unit for storing a predetermined authentication code, an acquisition unit for acquiring authentication request information that has been image-coded in response to a predetermined operation for authentication, and an acquisition unit A determination means for determining whether or not the authentication request information converted into an image code obtained by the above satisfies a predetermined relationship with the authentication code stored in the authentication code storage means; Means for enabling predetermined processing in response to determining that the relationship is satisfied.

  Upon receiving a predetermined operation for requesting authentication, the acquisition means acquires authentication request information that is image-coded, and the determination means is based on the relationship between the authentication request information that is image-coded and the stored authentication code. Judgment of authority. If it is determined that the user has authority, the enabling means enables processing. At the time of authentication, the person who receives the authentication does not need to use a key or the like, and the authentication process for confirming the authority of maintenance work can be performed safely and efficiently.

  Preferably, the acquisition means is an image acquisition means for acquiring an image of the authentication request information that has been image-coded in response to a predetermined operation, and an image-coded authentication from the image acquired by the image acquisition means. Decrypting means for decrypting the request information. The determination means includes means for determining whether or not the authentication request information decrypted by the decryption means satisfies a predetermined relationship with the authentication code stored in the authentication code storage means.

  The authentication request information encoded as an image is acquired as an image and decrypted to obtain authentication request information. Since the contents of the image code cannot be known only by human eyes, the authentication request information can be prevented from leaking. In addition, in order for the authentication device to acquire an image, it is necessary that a person who gives the image to the authentication device and receives authentication is in the vicinity of the authentication device. Therefore, it is possible to prevent a person who does not actually exist on the spot from impersonating the person who performs the work and receiving authentication.

  Preferably, the authentication device is further held in the device identification information holding unit for holding the device identification information for specifying the authentication device, and in the device identification information holding unit in response to a predetermined condition being satisfied. Image coding means for coding the device identification information according to a predetermined coding method, and display means for displaying the device identification information image-coded by the image coding means. The acquisition means is an authentication request for acquiring authentication request information encoded in image in response to the display means displaying the image encoded device identification information and performing a predetermined operation. Includes information acquisition means.

  In response to a predetermined operation, device identification information is image-coded and displayed so that a person who obtains an image of the image-coded information can identify the authentication device by decoding the acquired image code become. Since the information encoded in the image cannot be known only by human viewing, the device identification information can be prevented from leaking. Further, in order to acquire the device specifying information, it is necessary that a person who acquires and acquires this information is in the vicinity of the authentication device. Therefore, it is possible to prevent a person who does not actually exist on the spot from impersonating the person who acquires the device identification information and stealing the device identification information.

  More preferably, the device identification information holding unit includes a unit for holding the device identification information and address information of the management device for managing the authentication status by the authentication device. The image coding means includes means for image coding the device identification information held in the device identification information holding means and the address information of the management device according to a predetermined coding method.

  By converting the address information of the management device and the device identification information into an image code, a person who acquires an image of the image-coded information can extract the address information and access the management device. Notification of device identification information to the management device is facilitated, and work management can be made more efficient.

  Preferably, the authentication device further includes device identification information holding means for holding device identification information for specifying the authentication device and address information of a predetermined transmission destination, and in response to a predetermined condition being satisfied, Transmitting means for transmitting the device identification information held in the identification information holding means to the transmission destination specified by the address information. The obtaining means includes an authentication request information obtaining means for obtaining authentication request information encoded in an image in response to the device identification information being transmitted to the transmission destination by the transmitting means and a predetermined operation being performed. Including.

  In performing authentication, by transmitting the device identification information to the management device in advance, it is possible for the management device and the person in charge of the work to perform processing for work permission in advance. Therefore, the authentication process can be made efficient.

  The transmission unit may include a unit for repeatedly transmitting the device identification information held in the device identification information holding unit to a transmission destination specified by the address information at a predetermined time interval.

  Preferably, the authentication device further includes a device identification information holding unit for holding device identification information for specifying the authentication device, and a random number generation unit for generating a random number in response to a predetermined condition being satisfied A random number adding means for adding the random number generated by the random number generating means to the device identification information held in the identification information holding means, and a predetermined encoding method for adding the random number added by the random number adding means to the device identification information. And image display means for displaying the device identification information image-coded by the image coding means. The determination means includes a calculation means for calculating a value determined as a predetermined function of the authentication code stored in the authentication code storage means and the random number generated by the random number generation means, and the encoded code acquired by the acquisition means. The authentication request information includes a means for determining whether or not a predetermined relationship with the value calculated by the calculating means is satisfied.

  Prior to authentication, the device identification information to which the generated random number is added is converted into an image code and displayed, so that a person who acquires the image of the image encoded information decrypts the acquired image code and Can be identified. Since the displayed image changes depending on the random number, it is possible to prevent the displayed image from being stolen. Further, the authentication request information is determined using a random number. Since the value calculated by the calculation means varies depending on the random number, a person who has not acquired the generated random number cannot be authenticated by the authentication request information. Therefore, the security of the authentication process is improved.

  More preferably, the device identification information holding unit includes a unit for holding the device identification information and address information of the management device for managing the authentication status by the authentication device. The image coding means includes means for image coding the device identification information to which the random number is added by the random number adding means and the address information of the management device according to a predetermined coding method.

  By converting the address information of the management device and the device identification information to which a random number is added into an image code, a person who acquires an image of the image-coded information extracts the address information and accesses the management device. It can be made possible. The management device can be notified of a random number and device identification information.

  Preferably, the authentication device further includes device identification information holding means for holding device identification information for specifying the authentication device, address information holding means for holding address information of a predetermined destination, and a predetermined condition. In response to being satisfied, a random number generating means for generating a random number, a random number adding means for adding the random number generated by the random number generating means to the device identification information held in the identification information holding means, and a random number Means for transmitting the device identification information to which the random number is added by the adding means to the transmission destination specified by the address held in the address information holding means. The determination means includes a calculation means for calculating a value determined as a predetermined function of the authentication code stored in the authentication code storage means and the random number generated by the random number generation means, and the image coding acquired by the acquisition means And means for determining whether or not the authentication request information that has been satisfied satisfies a predetermined relationship with the value calculated by the calculating means.

  By transmitting the device identification information to which the generated random number is added prior to the authentication, the authentication device can be specified by the device identification information at the transmission destination. Further, the means for determining makes a determination on the authentication request information using a random number. Since the value calculated by the calculation means varies depending on the random number, a person who has not acquired the generated random number cannot be authenticated by the authentication request information. Therefore, the security of the authentication process is improved.

  The calculation means includes a means for adding the random number generated by the random number generation means to the authentication code stored in the authentication code storage means, and an authentication code in which the random number is added by the means for adding a predetermined encryption method And means for encrypting according to.

  By adding a random number to the stored authentication code and further encrypting it, it is possible to prevent the authentication code from being stolen. Therefore, the security of the authentication process is improved.

  The encryption unit may include a hash calculation unit for converting the authentication code to which the random number is added by the adding unit into a hash value using a predetermined one-way hash function.

  When an authentication code to which a random number is added is converted using a one-way hash function, a hash value that cannot reproduce the information before conversion is generated. Since it is extremely difficult to create the same hash value from information different from each other, use the same one-way hash function from the same information as the stored authentication code and the same information as the generated random number Only those who can convert to a hash value can generate authentication request information consisting of the same hash value. Therefore, the validity of the authentication request information can be confirmed by making a determination on the authentication request information using a hash function. Therefore, the security of the authentication process is improved.

  Preferably, the authentication device is further responsive to the device identification information storage means for storing device identification information identifying the authentication device and the determination means determining that the predetermined relationship is satisfied. Output means for reading out and outputting the device identification information from the device identification information holding means.

  By outputting device identification information when enabling predetermined processing, it is possible for a person who has received this output to obtain information that authentication has been successful and work has been enabled in the authentication device. Therefore, the person who receives this output can efficiently manage the authentication device.

  More preferably, the output unit reads out the device identification information held in the device identification information holding unit in response to the determination unit determining that the predetermined relationship is satisfied, and performs a predetermined encoding method. Image coding means for image coding according to the above and means for displaying device identification information image coded by the image coding means.

  By displaying the device identification information as an image code when enabling predetermined processing, the device that acquired the display image obtains information that the authentication is successful and the work is enabled. It can be made possible. When this information is acquired from the device that acquired the display image, it becomes possible for the person who acquired the display image using the acquired device to know that the authentication device has succeeded in authentication. Therefore, it is possible to efficiently manage the authentication device and the device that acquires the display image from the authentication device.

  More preferably, the device identification information holding unit includes a unit for holding the device identification information and address information of a management device for managing an authentication status by the authentication device. The image coding means includes means for image coding the device identification information held in the device identification information holding means and the address information of the management device according to a predetermined coding method.

  The image display of the information encoded by the image encoding means becomes the device identification information and the address information of the management device when acquired and decoded. The device that has acquired the display image can transmit the device identification information to the address information management device. The management device can grasp the authentication status in the authentication device. Therefore, it is possible for the management apparatus to reliably manage the authentication status.

  More preferably, the authentication device further includes address information holding means for holding address information of a predetermined transmission destination. In response to the determination unit determining that the predetermined relationship is satisfied, the output unit notifies the device identification information held in the device identification information holding unit of the address held in the address holding unit. A transmission means for transmitting to the destination is included.

  By transmitting the device identification information to a predetermined transmission destination when enabling the predetermined processing, it is possible to obtain information indicating that the authentication is successful and the work is enabled by the predetermined transmission destination. It is possible to efficiently manage the current status of the worker in the authentication device at a predetermined transmission destination.

  The image-coded authentication request information is used to identify a comparison authentication code to be compared with the authentication code stored in the authentication code storage means and a user of the apparatus that created the image-coded authentication request information. And person-in-charge identification information. The determination means includes means for determining whether or not the comparison authentication code and the authentication code match. In response to the determination unit determining that the comparison authentication code and the authentication code match, the transmission unit transmits the device identification information held in the device identification information holding unit and the image code. Means for transmitting the person-in-charge identification information included in the authentication request information to the notification destination of the address held in the address holding means.

  When enabling predetermined processing, device identification information and worker identification information can be transmitted to a predetermined transmission destination to notify the predetermined transmission destination which worker has been authenticated. It becomes possible. It is possible to efficiently manage the current state of the person in charge of the work in the authentication apparatus at the predetermined transmission destination that has received this notification.

  An authentication apparatus according to a fourth aspect of the present invention is an authentication apparatus for performing authentication relating to the presence or absence of authority to perform a predetermined process. This authentication device responds to the successful authentication by the authentication means for performing a predetermined authentication process, the device identification information holding means for holding predetermined device identification information for specifying the authentication device, and the authentication means. Then, the device identification information held in the device identification information holding means is read out, and the image coding means for image coding according to a predetermined coding method and the information coded by the image coding means are displayed. Means.

  The device that has acquired the display image of the device identification information that has been image-coded can be notified that the authentication has succeeded in the authentication device. The device that has received this notification can efficiently manage the authentication device.

  Preferably, the device identification information holding unit includes a unit for holding the device identification information and address information of the management device for managing the authentication status by the authentication device. The image coding means includes means for image coding the device identification information held in the device identification information holding means and the address information of the management device according to a predetermined coding method.

  The image display of the information encoded by the image encoding means becomes the device identification information and the address information of the management device when acquired and decoded. The device that has acquired the display image can transmit the device identification information to the address information management device. The management device can grasp the authentication status in the authentication device. Therefore, it is possible for the management apparatus to reliably manage the authentication status.

  When the computer program according to the fifth aspect of the present invention is executed by a computer, it causes the computer to operate as the authentication device according to the third aspect or the fourth aspect. As a result, the same operational effects as those of the authentication device described above can be achieved.

  The mobile information terminal device for authentication according to the sixth aspect of the present invention includes an image acquisition means for acquiring an image of information necessary for authentication, which has been image-coded by a predetermined encoding method, and image acquisition Authentication permission request comprising decryption means for decrypting information necessary for authentication from the image acquired by the means, information necessary for authentication decrypted by the decryption means, and information for identifying itself Including a transmission means for transmitting the image information to a predetermined apparatus and a display means for displaying image information transmitted from the predetermined apparatus in response to the authentication permission request.

  Information necessary for authentication is obtained by obtaining and decoding an image of the image-coded information. The contents of an image code that has been converted into an image code cannot be known only by human viewing, and leakage of information necessary for authentication can be prevented. Also, an authentication permission request including information necessary for authentication and information for identifying itself is transmitted. The transmission destination can surely grasp the current status of the worker in charge of carrying the portable information terminal device, that is, the situation in which the worker in charge requires authentication permission. Further, by displaying the image information transmitted in response to the authentication permission request, it is possible to acquire this image information and perform authentication based on this image information. There is no need to use a key or the like for authentication, the burden on the person receiving the authentication can be reduced, and the authentication process can be performed safely and efficiently.

  Preferably, the portable information terminal device for authentication further includes an identification information holding unit for holding information identifying itself and an address for holding an address used for communication between a predetermined device A holding unit; and an authentication permission request generating unit for generating an authentication permission request including information decrypted by the decoding unit and information identifying the self held in the identification information holding unit. The transmitting means includes means for transmitting the authentication permission request generated by the authentication permission request generating means to the device having the address held in the address holding means.

  By accessing the device that provides the image information using an address that is held in advance, a person who wants to be authenticated can receive authentication without acquiring a separate address.

  Preferably, the image-encoded authentication request information includes an address used for communication with a predetermined device, and a processing target to be authenticated and to be transmitted to the predetermined device. Device identification information for specifying the device. The transmission means includes self-identification information holding means for holding self-identification information for identifying itself, device identification information included in the information decoded by the decoding means, and self-holding information held in the self-identification information holding means. Authentication permission request generating means for generating an authentication permission request including identification information, and means for transmitting the generated authentication permission request to a device having an address included in the information decrypted by the decrypting means. Including.

  By using the address obtained by decrypting the image and accessing the device that provides the image information, it becomes possible for the person who wants to be authenticated to receive the authentication without acquiring a separate address. .

  When the computer program according to the seventh aspect of the present invention is executed by a computer, it causes the computer to operate as a portable information terminal device for authentication according to the sixth aspect.

  A portable information terminal device according to an eighth aspect of the present invention is an image acquisition unit for acquiring an image of image-coded information, and for decoding information from the image acquired by the image acquisition unit. Decoding means, and transmission means for transmitting a notification composed of information decoded by the decoding means and information for identifying itself to a predetermined apparatus.

  The contents of the image coded information cannot be known only by human eyes. By decoding an image and notifying based on information obtained by decoding and information identifying itself, the current state of the portable information terminal device can be notified by a series of operations via the image.

  When the computer program according to the ninth aspect of the present invention is executed by a computer, the computer program causes the computer to operate as the portable information terminal device according to the eighth aspect. As a result, the same operational effects as the above-described portable information terminal device can be obtained.

  A recording medium according to a tenth aspect of the present invention is a computer-readable recording in which a computer program according to any one of the second aspect, the fifth aspect, the seventh aspect, and the ninth aspect is recorded. It is a medium. Therefore, by causing a computer program recorded on this recording medium to be executed by a computer, the same as the invention according to the first aspect, the third aspect, the fourth aspect, the sixth aspect, or the eighth aspect An effect can be produced.

  A maintenance work system according to an eleventh aspect of the present invention includes a portable information terminal device for authentication, including display means for receiving and displaying image information transmitted from another device, A maintenance work system management device according to an aspect and an authentication device according to a third aspect are included. The maintenance work system management device is required to permit maintenance of the device specified by the device identification information encoded in the image in response to the authentication request for the work authority including the device identification information for identifying the authentication device. Is transmitted to the portable information terminal device for authentication. The portable information terminal device for authentication receives and displays the image-coded work permission information transmitted from the maintenance work system management device. In response to a predetermined operation, the authentication device acquires image-coded work permission information displayed by the portable information terminal device for authentication.

  In this maintenance work system, the maintenance work system management apparatus transmits the work permission information, which has been image-coded, to the portable information terminal apparatus in order to perform processing by the person in charge carrying the portable information terminal apparatus. Also, the authentication device acquires the work permission information imaged from the portable information terminal device, and the determination means determines the relationship between the image-coded work permission information and the stored authentication code. Depending on the result of the determination, it is made possible by means for enabling work by the worker. The contents of the image code cannot be known only by human viewing, and leakage of work permission information can be prevented. Therefore, the authentication process for permitting maintenance work can be performed safely and efficiently. In addition, since authentication is not performed by the operation person who operates the authentication device itself, it is not necessary to force the worker person to perform complicated operations. Therefore, the operation can be simplified and the work load on the worker can be reduced.

  A maintenance work system according to a twelfth aspect of the present invention includes a maintenance work system management apparatus according to the first aspect, an authentication apparatus according to the third aspect, and a portable information terminal for authentication according to the sixth aspect. Including the device. The authentication device further includes device identification information holding means for holding device identification information for identifying the authentication device, and device identification held in the device identification information holding means in response to a predetermined condition being satisfied. Image coding means for image-coding information according to a predetermined coding method, and display means for displaying device identification information image-coded by the image coding means. The maintenance work system management device further includes receiving means for receiving a transmission request via communication. The transmission means of the maintenance work system management apparatus includes means for transmitting the information encoded by the image encoding means to the transmission source of the transmission request. An authentication device acquisition means is used for acquiring authentication request information that has been image-coded in response to display of device identification information that has been image-coded by the display means and a predetermined operation being performed. Authentication request information acquisition means is included.

  In this maintenance work system, in a series of authentication processes, the portable information terminal device acquires the device identification information image-coded from the authentication device, generates an authentication request, and transmits it to the maintenance work system management device. The work permission information converted into an image code is obtained from the maintenance work management apparatus. Since the authentication request includes the device identification information and the worker identification information, the maintenance work system management device can reliably acquire the current status information of the worker. That is, the notification of the current state by the worker is present on the critical path for the worker. Therefore, the maintenance work is performed without omitting the notification to the current maintenance work system management apparatus. In addition, since authentication is not performed by the operation person who operates the authentication device itself, it is not necessary to force the worker person to perform complicated operations. Therefore, the operation can be simplified and the work load on the worker can be reduced.

  A maintenance work system according to a thirteenth aspect of the present invention includes an authentication device according to the fourth aspect and a portable information terminal device according to the eighth aspect. The authentication device displays the image-coded information in response to the success of the predetermined authentication process, and the portable information terminal device acquires the image of the image-coded information displayed by the authentication device.

  In this maintenance work system, after authentication by the authentication device is successful, an image code for specifying the device is displayed. The content of the image code cannot be known only by human viewing, and device specific information can be prevented from leaking. The possibility that the device identification information that has been image-coded is referred to by a third party other than the worker is reduced. In addition, since a series of operations via an image notifies that a series of authentication processes has been successful, it is possible for the administrator who receives the current status notification to perform management reliably and efficiently. Therefore, it becomes possible to reduce the work burden of the person in charge of the work accompanying the notification of the current situation.

  According to the first aspect of the present invention, work permission can be given by an image code whose contents cannot be known only by human eyes. Therefore, leakage of work permission information can be prevented, and an authentication process for permitting maintenance work can be performed safely and efficiently. It is possible to give permission for maintenance work to the information terminal device for the person in charge who goes to the place where the maintenance target device is installed and performs maintenance work, and the authentication process can be made more efficient.

  Furthermore, it is possible to reliably grasp the current situation of the person in charge of the work, and to perform accurate work management. In addition, it is possible to prevent the work permission information from being stolen, the leaked information from being misused when the image-coded reply information is leaked, and unauthorized acquisition of the work permission information. It becomes possible to protect with high safety.

  Further, it is possible to provide work permission for maintenance work on the device identification information, and work permission information and work person identification information included in the work request. In addition, when performing a series of authentication processes, it is possible to provide useful information for the work to the person in charge of the work.

  According to the third aspect of the present invention, at the time of authentication, it is not necessary for a person receiving authentication to use a key or the like, and an authentication process for confirming the authority of maintenance work can be performed safely and efficiently. Also, leakage of authentication request information can be prevented. Further, it is possible to prevent a person who does not actually exist on the spot from impersonating the person who performs the work and receiving authentication.

  In addition, it is possible for a person who acquires an image of information encoded as an image to decrypt the acquired image code and specify the authentication apparatus. Notification of device identification information to the management device is facilitated, and work management can be made more efficient. Further, it is possible to prevent the device identification information image that has been image-coded from being stolen, the authentication code from being stolen, and the person who has not obtained the random number from being authenticated. Therefore, the security of the authentication process is improved. In addition, the validity of the authentication request information can be confirmed.

  Information that authentication was successful and work has been made possible can be provided. Furthermore, this information can be provided to a specific management device. Therefore, the person who receives this output can efficiently manage the authentication device.

  According to the fourth aspect of the present invention, it is possible for a device that has acquired a display image of device identification information that has been image-coded to notify that authentication has been successful. In the apparatus that has received this notification, the authentication apparatus can be managed efficiently and reliably.

  According to the sixth aspect of the present invention, leakage of information necessary for authentication can be prevented. In addition, it is possible to reliably notify the current status of the worker in charge carrying the portable information terminal device. Also, authentication can be performed based on the image information. The burden on the person receiving the certification can be reduced, and the certification process can be performed safely and efficiently. Furthermore, it becomes possible for a person who wants to be authenticated to obtain authentication without acquiring a separate address.

  According to the 8th aspect of this invention, the present condition of a portable information terminal device can be notified by a series of operation | movement via an image.

  According to the eleventh aspect of the present invention, work permission information can be prevented from leaking, and an authentication process for permitting maintenance work can be performed safely and efficiently. Further, it is not necessary to force the worker in charge of complicated operations, the operation can be simplified, and the workload of the worker in charge can be reduced.

  According to the twelfth aspect of the present invention, the notification of the current state by the worker is present on the critical path for the worker, and the maintenance work system management apparatus can reliably acquire the current state information of the worker. . Further, it is not necessary to force the operator in charge of complicated operations. Therefore, the operation can be simplified and the work load on the worker can be reduced.

  According to the thirteenth aspect of the present invention, it is less likely that the image-coded device specifying information is referred to by a third party other than the worker, and leakage of the device specifying information can be prevented. In addition, it is possible to perform management reliably and efficiently on the side of the manager who receives notification of the current status. Therefore, it becomes possible to reduce the work burden of the person in charge of the work accompanying the notification of the current situation.

[First Embodiment]
Hereinafter, an embodiment of the present invention will be described with reference to the drawings. In the drawings used for the following description, the same parts are denoted by the same reference numerals. Their names and functions are also the same. Therefore, detailed description thereof will not be repeated.

  In the maintenance work system according to the present embodiment, the management server device that manages this maintenance work system on the maintenance work manager's side grasps the current status of the person in charge of the work, and the work is performed by the maintenance target device that is the maintenance work target. Authenticate the work authority of the person in charge. Both of these are realized by a series of operations involving a portable information terminal device carried by a worker.

  FIG. 1 shows an apparatus configuration of a maintenance work system 40 according to the present embodiment. Referring to FIG. 1, a maintenance work system 40 includes a copying machine 50 that is a maintenance target device, a portable information terminal device 52 that is carried by a person in charge of work and is used for authentication or the like during maintenance work, and a portable information terminal. It includes a management server device 54 for managing the history of maintenance work of the copying machine 50 and the current state of work by the worker in charge by communicating with the device 52.

  The copier 50 has a display device and a scanner function as will be described later. The portable information terminal device 52 includes a camera, a display device, and a communication function, and is typically a camera-equipped mobile phone. The portable information terminal device 52 and the management server device 54 can communicate with each other via the communication network 60.

  Each of the copying machine 50 and the management server device 54 is requested to input information for identifying information identifying the copying machine 50 and information necessary for permitting maintenance work by the person in charge, that is, maintenance work authority. Keep information. Hereinafter, the former information is referred to as “device ID”. The latter information is called “cancellation code”. In the present embodiment, it is assumed that the apparatus ID and the release code are uniquely assigned to each copying machine 50. Further, the portable information terminal device 52 holds information for identifying a worker in charge of carrying the device. In the following description, this information is referred to as “worker ID”.

  The copying machine 50 further holds the address of the management server device 54 used by the portable information terminal device 52 to communicate with the management server device 54. The copier 50 generates device specifying information for causing the management server device 54 to specify the copier 50 by combining the held device ID and the address of the management server device 54, and displays the device specifying information as a two-dimensional code. . The portable information terminal device 52 acquires and decodes this image. The portable information terminal device 52 combines the decrypted information and the worker ID to generate access information for requesting permission for maintenance work. The portable information terminal device 52 communicates with the management server device 54 via the communication network 60 based on the access information, transmits the device ID and the worker ID, and requests transmission of information for permitting maintenance work. To do. The management server device 54 receives a transmission request composed of the device ID and the worker ID from the portable information terminal device 52, and stores it as information indicating the current status of the worker.

  In response to a transmission request from the portable information terminal device 54, the management server device 54 further generates image data obtained by two-dimensionally encoding the release code held corresponding to the received device ID, and the portable information terminal device 52. The portable information terminal device 52 receives and displays this image data. When the copying machine 50 acquires this image, the copying machine 50 accepts an authentication request. The copier 50 decodes the release code from the acquired image. The copying machine 50 authenticates the work authority by collating the release code obtained by decryption with the release code held in the copying machine 50. In the following description, an image generated by converting the device specifying information into a two-dimensional code is referred to as a “device specifying two-dimensional code”. An image generated by converting the release code into a two-dimensional code is referred to as a “device authentication two-dimensional code”.

  FIG. 2 shows a functional configuration of the copying machine 50 in a block diagram form. Referring to FIG. 2, copier 50 stores display unit 108, device information storage unit 100 that stores the device ID and release code of copier 50, and the address of management server device 54 (see FIG. 1). Responding to the management server information storage unit 102, the operation unit 104 that generates a predetermined input signal according to the operation by the worker, and the input signal that instructs the maintenance unit 104 to start maintenance work Then, the device identification information is generated based on the device ID stored in the device information storage unit 100 and the address stored in the management server information storage unit 102, is converted into a two-dimensional code, and a two-dimensional code for device identification is generated. And a two-dimensional code generation unit 106 for displaying on the display unit 108.

  The copier 50 further has an image input unit 110 having a scanner function and capable of acquiring an image of a device authentication two-dimensional code displayed on a display unit described later of the portable information terminal device 52 (see FIG. 1), and an operation unit. The two-dimensional code decoding unit 112 that decodes the cancellation code from the two-dimensional code image for device authentication input by the image input unit 110 according to the input signal generated by the image input unit 110, and the cancellation code and device decoded by the two-dimensional code decoding unit 112 A user authentication unit 114 that authenticates the authority of maintenance work by collating with a release code stored in the information storage unit 100, and a maintenance work unit 116 that receives maintenance work by a worker in charge authenticated by the user authentication unit 114. Including.

  FIG. 3 shows a functional configuration of the portable information terminal device 52 shown in FIG. 1 in a block diagram format. Referring to FIG. 3, portable information terminal device 52 includes an image input unit 140 including a camera for acquiring an image of a device specifying two-dimensional code displayed by copying machine 50 (see FIG. 1), and image input. A two-dimensional code decoding unit 142 that decodes the device identification information from the image acquired by the unit 140, a user information storage unit 144 that stores a worker ID, a device identification information that is decoded by the two-dimensional code decoding unit 142, and And an access information generation unit 146 that generates access information to the management server device 54 (see FIG. 1) based on the worker ID stored in the user information storage unit 144. The portable information terminal device 52 further communicates with the management server device 54 via the communication control unit 150 that performs communication with the management server device 54 and the access information generated by the access information generation unit 146 via the communication control unit 150. A web browser unit 148 for accessing and receiving a two-dimensional code for device authentication, a display unit 152 for displaying the two-dimensional code for device authentication received by the web browser unit 148, and a worker in charge of the image input unit 140 and the web browser And an operation unit 154 that receives an input for operating the unit 148.

  FIG. 4 shows a functional configuration of the management server device 54 in a block diagram form. Referring to FIG. 4, management server device 54 communicates with portable information terminal device 52 (see FIG. 1) from communication control unit 180, and from portable information terminal device 52 via communication control unit 180. The web server unit 182 that receives the access information and acquires the device ID and the worker ID from the access information, receives and stores the device ID and the worker ID acquired by the web server unit 182, and the copying machine 50. The information necessary for the maintenance work such as the release code (see FIG. 1) and the reference information to be referred to by the person in charge during the maintenance work is held, and the release code corresponding to the device ID and the information necessary for the maintenance work are stored And a database unit 184 provided to the web server unit 182. The management server device 54 further includes a two-dimensional code generation unit 186 that generates a two-dimensional code for device authentication by converting the release code provided by the database unit 184 to the web server unit 182 into a two-dimensional code.

  The web server unit 182 gives a cancellation code to the two-dimensional code generation unit 186, and includes the two-dimensional code for device authentication generated by the two-dimensional code generation unit 186 and other information such as reference information provided from the database unit 184. And generating information to be displayed on the portable information terminal device 52 and transmitting the information to the portable information terminal device 52 via the communication control unit 180.

  FIG. 5 shows a configuration of data stored in the database unit 184 of the management server device 54. Referring to FIG. 5, the database unit 184 has a worker status table 200 that stores information indicating the current status of the worker, and a cancellation code table 202 that stores a device ID and a cancellation code assigned to the copier 50. As a reference information to be referred to by a person in charge during maintenance work, a maintenance history table 204 that stores a history of maintenance work for the copying machine 50 and a customer information table 206 that stores information about the customer of the copying machine 50 and the like. Including.

  FIG. 6 shows an example of the worker status table 200 shown in FIG. Referring to FIG. 6, the worker status table 200 includes entries for each worker ID. Each entry includes a worker ID 220 and a device ID 222 of the copying machine 50 on which maintenance work is performed by the worker in charge of the worker ID. The information stored in the worker-in-progress status table 200 is received when the management server device 54 receives access from the portable information terminal device 52.

  FIG. 7 shows an example of the release code table 202 shown in FIG. Referring to FIG. 7, the release code table 202 includes entries for each device ID of the copying machine 50. Each entry includes a device ID 230 and a release code 232 of the copier 50 corresponding to the device ID. The same information as the device ID and the release code for a certain copying machine 50 is stored in advance in the device information storage unit 100 shown in FIG.

  FIG. 8 shows an example of the maintenance history table 204 shown in FIG. Referring to FIG. 8, the maintenance history table 204 includes entries for each apparatus ID of the copying machine 50. Each entry includes a device ID 240, a maintenance date 242 indicating the date of the maintenance work, and a work person ID 244 that stores the work person ID of the work person who performed the maintenance work on the date stored on the maintenance date 242. Including. Furthermore, it includes a work content 246 for storing information indicating the work content, and a replacement part ID 248 indicating a part replaced in the work indicated by the history.

  FIG. 9 shows an example of the customer information table 206 shown in FIG. Referring to FIG. 9, customer information table 206 is data in a table format composed of entries for each device ID, and is copied with device ID 260 and address 262 indicating the installation location of copying machine 50 of this device ID. A customer name 264 indicating the name of a customer who is a user of the device 50 and a customer contact 266 indicating a contact address when contacting the customer are included.

  The copying machine 50 according to the present embodiment is realized by hardware equipped with a computer, a program executed by the hardware, and data stored in the hardware. FIG. 10 shows a hardware configuration of the copying machine 50. Referring to FIG. 10, copying machine 50 includes a monitor 280 made up of an LCD (Liquid Crystal Display) or the like, operation buttons 282, and a touch panel 284. The copier 50 further includes a scanner 286 and a printer 288. The copier 50 is further connected to a CPU (Central Processing Unit) 290, a monitor 280, an operation button 282, a touch panel 284, a scanner 286, a printer 288, a CPU 290, and a bus 292, and a boot-up program. , A memory 294 that stores program instructions, system programs, work data, and the like, and a fixed disk 296.

  A computer program for realizing each function of the copying machine 50 is stored in the fixed disk 296. The program is loaded into the memory 294 when executed.

  The portable information terminal device 52 is realized by hardware such as a camera-equipped mobile phone equipped with a computer, a program executed by the hardware, and data stored in the hardware. 11 and 12 respectively show the front and back of an external appearance example of the portable information terminal device 52, and FIG. 13 shows the internal configuration thereof.

  Referring to FIG. 11, portable information terminal device 52 includes a monitor 310 formed of an LCD or the like, and a plurality of keys (hereinafter, these keys are collectively referred to as “ten keys”) 312 that are operated. The portable information terminal device 52 further includes a speaker 314 and a microphone device (hereinafter simply referred to as “microphone”) 316. Referring to FIG. 12, portable information terminal device 52 further includes a camera 318 and an external memory card slot 322 for connecting to external memory card 320.

  Referring to FIG. 13, portable information terminal device 52 further includes a communication interface (communication IF) 324 and CPU 326. The portable information terminal device 52 is further connected to the bus 328 connected to the monitor 310, numeric keypad 312, speaker 314, microphone 316, camera 318, external memory card slot 322, communication IF 324, and CPU 326, and to the bus 328 for boot-up. A memory 330 for storing programs, program instructions, system programs, work data, and the like.

  A computer program for realizing each function of the portable information terminal device 52 is stored in the external memory card 320 inserted into the external memory card slot 322 and further transferred to the memory 330. Alternatively, the program may be transmitted from the network to the portable information terminal device 52 via the communication IF 324 and stored in the memory 330.

  The management server device 54 is realized by computer hardware, a program executed by the computer hardware, and data stored in the computer hardware. FIG. 14 shows an internal configuration of hardware of the management server device 54.

  Referring to FIG. 14, the management server device 54 includes a mouse 340, a keyboard 342, a monitor 344, an FD (flexible disk) driving device 348, a CD-ROM (compact disk read only memory) driving device 352, and a local area. And a communication IF 354 that provides connection to a network (LAN) or the like. The management server device 54 is further connected to the CPU 356, the bus 358 connected to the CPU 356, the FD drive device 348, and the CD-ROM drive device 352, and the bus 358, and is connected to the boot up program, program command, system program, and work data. And the like, and a fixed disk 362.

  A computer program for realizing each function of the management server device 54 is stored in the CD-ROM 350 or FD 346 inserted in the CD-ROM drive 352 or FD drive 348 and further transferred to the fixed disk 362. Alternatively, the program may be transmitted from the network to the management server device 54 via the communication IF 354 and stored in the fixed disk 362. The program is loaded into the memory 360 when executed. The program may be loaded directly into the memory 360 from the CD-ROM 350, from the FD 346, or via the communication IF 354.

  A program for realizing each function of each device of the maintenance work system 40 by the hardware described above includes a plurality of instructions for realizing each functional unit shown in FIGS. 2 to 4 of these devices. Some of the basic functions required to perform these processes are provided by operating system (OS) or third-party programs that run on the hardware of these devices or modules of various toolkits that are installed. Is done. Therefore, the program does not necessarily include all functions necessary for realizing each of the functional units. This program need only include instructions for executing the processing of each device described above by calling an appropriate function or “tool” in a controlled manner so as to obtain a desired result. . The operation of the computer is well known and will not be repeated here.

  FIG. 15 shows a processing sequence of the maintenance work system 40 according to the present embodiment. Referring to FIG. 15, in response to the operation of a specific operation button 282 or touch panel 284 (see FIG. 10) of the copying machine 50 when the person in charge of the work starts the maintenance work, the copying machine 50 performs processing. In step 400, the device ID and the address of the management server device 54 are read out, and a device specifying two-dimensional code is generated based on these. In step 402, the copying machine 50 displays the device specifying two-dimensional code generated in step 400.

  In step 404, the portable information terminal device 52 acquires and decodes the display image of the device specifying two-dimensional code by the copying machine 50. Information obtained by decoding the device specifying two-dimensional code includes the address of the management server device 54 and the device ID of the copier 50. In step 406, the portable information terminal device 52 adds the worker ID stored in advance to the information obtained by decoding, and generates access information to the management server device 54. In step 408, the portable information terminal device 52 accesses the management server device 54 based on the access information, and sends the device ID and the worker ID to the management server device 54 as a request for transmitting a two-dimensional code for device authentication. To send.

  In step 410, the management server device 54 receives access from the portable information terminal device 52. At this time, the management server device 54 acquires the device ID and the worker ID as parameters. In step 412, the parameters acquired by the management server device 54 are stored in the worker status table 200 (see FIG. 6), and the table is updated. Also, the management server device 54 reads the release code of the copying machine 50 and the maintenance work history information of the copying machine 50 using the acquired device ID as a search key. In step 414, the management server device 54 converts the read release code into a two-dimensional code to generate a device authentication two-dimensional code. In step 416, the management server device 54 generates a web page in which the history information read in step 412 and the device authentication two-dimensional code generated in step 414 are arranged. Further, the management server device 54 transmits the generated web page as a response to access to the portable information terminal device 52.

  In step 418, the mobile information terminal device 52 receives and displays the web page transmitted by the management server device 54 in step 416. At this time, an image of the two-dimensional code for device authentication of the copying machine 50 and past maintenance history are displayed on the portable information terminal device 52.

  In step 420, the copying machine 50 acquires an image of the device authentication two-dimensional code displayed on the portable information terminal device 52. Further, the copying machine 50 decodes the acquired image to obtain a release code. In step 422, the release code obtained in step 420 is compared with the release code stored in advance to determine whether or not there is work authority. If they match, it is determined that there is work authority. The process proceeds to step 424, where the copying machine 50 releases the lock and makes maintenance work possible. That is, maintenance work is enabled. Otherwise, it is determined that there is no work authority. Ends a series of processing of the authentication process. In this case, the lock is not released.

  Each functional unit shown in FIGS. 2 to 4 of the maintenance work system 40 according to the present embodiment operates as follows.

  Referring to FIG. 2, when a person in charge performs a predetermined operation for requesting the start of maintenance work to operation unit 104 of copying machine 50, operation unit 104 generates an input signal. In response to this input signal, the two-dimensional code generation unit 106 reads the device ID and the address of the management server device 54 from the device information storage unit 100 and the management server information storage 102, respectively, and generates device specifying information.

  For example, it is assumed that the read device ID is “sociid = 100006234” and the address of the management server device 54 is “http://kanserver.co.jp/maintenance/login.cgi”. In such a case, the two-dimensional code generation unit 106 combines the device ID and the address of the management server device 54 together with the device identification information “http://kanrisserver.co.jp/maintenance/login.cgi?souchid=10006234”. Is generated. Further, the two-dimensional code generation unit 106 generates a two-dimensional code for device identification by converting the created device identification information into a two-dimensional code, and provides the generated information to the display unit 108. The display unit 108 displays the given device specifying two-dimensional code.

  Referring to FIG. 3, when the person in charge of the operation operates the operation unit 154 of the portable information terminal device 52 to acquire an image of the device specifying two-dimensional code, the operation unit 154 generates a predetermined input signal. The image input unit 140 acquires an image of the apparatus specifying two-dimensional code displayed on the display unit 108 of the copier 50 according to the generated input signal.

  FIG. 16 schematically shows the operation of displaying the device specifying two-dimensional code by the copying machine 50 and acquiring the device specifying two-dimensional code by the portable information terminal device 52. Referring to FIG. 16, when the person in charge of the operation operates a specific one of the operation buttons 282 (see FIG. 10) of the copying machine 50 in order to start the maintenance work, the monitor 280 of the copying machine 50 includes a device. The specifying two-dimensional code 444 is displayed. When the person in charge of the operation operates the portable information terminal device 52 in order to acquire an image of the device specifying two-dimensional code, the camera 318 of the portable information terminal device 52 images the displayed device specifying two-dimensional code 444 and performs predetermined processing. Digitized image data. Thereby, the portable information terminal device 52 acquires an image of the device specifying two-dimensional code.

  Referring to FIG. 3, image input unit 140 of portable information terminal device 52 provides the acquired image to two-dimensional code decoding unit 142. The two-dimensional code decoding unit 142 decodes the device specifying information described above from the image of the device specifying two-dimensional code. The two-dimensional code decoding unit 142 gives the decoded device specifying information to the access information generating unit 146.

  In response to the device identification information being given, the access information generation unit 146 reads out the worker ID from the user information storage unit 144, and adds the read worker ID to the given device identification information. To do. Thereby, access information to the management server device 54 is generated. For example, it is assumed that the device specifying information is “http://kanrisserver.co.jp/maintenance/login.cgi?souchid=10006234”. If the worker ID is “S234567”, the access information includes the worker identifier and the identifier “tantouid =” added to the device identification information, and “http://kanrisserver.co.jp/maintenance”. /Login.cgi?sourchiid=10006234 & tantouid = S234567 ”.

  The access information generation unit 146 gives the generated access information to the web browser unit 148. The web browser unit 148 accesses the management server device 54 (see FIG. 1) via the communication control unit 150 based on the given access information. At this time, the address of the management server device 54 in the access information is used to establish communication with the management server device 54. The device ID and the worker ID are transmitted to the management server device 54 as a request for transmitting a device authentication two-dimensional code.

  Referring to FIG. 4, web server unit 182 of management server device 54 receives access from portable information terminal device 52 via communication control unit 180. At this time, the web server unit 182 acquires the apparatus ID and the worker ID as a request for transmitting the apparatus authentication two-dimensional code. The web server unit 182 gives the acquired device ID and worker ID to the database unit 184.

  The device ID and the worker ID assigned to the database unit 184 are not only a request for transmitting a two-dimensional code for device authentication but also the current status of the worker. Therefore, the database unit 184 updates the worker-in-progress status table 200 (see FIG. 6) based on the given device ID and worker-in-charge ID. Further, the release code table 202 (see FIG. 7) and the maintenance history table 204 (see FIG. 8) are searched using the given apparatus ID as a search key, and the release code of the copying machine 50 and the history of maintenance work related to the copying machine 50 are searched. And read. The database unit 184 gives the extracted information to the web server unit 182. The web server unit 182 provides the cancellation code among the information provided from the database unit 184 to the two-dimensional code generation unit 186. The two-dimensional code generation unit 186 converts the given release code into a two-dimensional code, generates a two-dimensional code for device authentication, and provides the web server unit 182 with it.

  The web server unit 182 generates a web page in which the maintenance work history given from the database unit 184 and the device authentication two-dimensional code given from the two-dimensional code generation unit 186 are arranged. The data is transmitted to the portable information terminal device 52.

  With reference to FIG. 3, the web browser unit 148 of the portable information terminal device 52 acquires the web page data generated by the web server unit 182 (see FIG. 4) of the management server device 54 via the communication control unit 150. To do. This web page includes a two-dimensional code for device authentication. The web browser unit 148 displays the given display information on the display unit 152. The display unit 152 displays a two-dimensional code for device authentication.

  In FIG. 17, the example of a web page display by the portable information terminal device 52 is shown. Referring to FIG. 17A, device authentication two-dimensional code 462 is displayed on screen 460 of portable information terminal device 52. Further, when the screen is scrolled upward, a screen 466 shown in FIG. 17B is displayed. The screen 466 displays a maintenance work history 468 for the copying machine 50.

  The person in charge of the work places the portable information terminal device 52 at a predetermined position of the copying machine 50. In FIG. 18, an example of arrangement | positioning of the portable information terminal device 52 is shown. Referring to FIG. 18, the copying machine 50 (see FIG. 10) in this example includes a scanner 286 as means for acquiring an image. The portable information terminal device 52 displays the device authentication two-dimensional code 462 such as the display screen 460 shown in FIG. 17 so that the monitor 310 (see FIG. 11) faces the image reading surface 482 of the scanner 286. Be placed.

  When a predetermined operation for inputting a two-dimensional code for device authentication is performed on the operation unit 104 of the copying machine 50 shown in FIG. 2, the operation unit 104 issues a predetermined input signal to the image input unit 110. In response to the input signal from the operation unit 104, the image input unit 110 acquires an image of the device authentication two-dimensional code displayed on the display unit 152 (see FIG. 3) of the portable information terminal device 52. The image input unit 110 gives the acquired image to the two-dimensional code decoding unit 112. The two-dimensional code decoding unit 112 decodes the given two-dimensional code for device authentication, and obtains the cancellation code of the copying machine 50 held by the management server device 54 (see FIG. 4). The two-dimensional code decoding unit 112 gives the release code obtained by decoding to the user authentication unit 114.

  The user authentication unit 114 collates the release code obtained by decryption with the release code stored in advance in the device information storage unit 100. If the two match, the user authentication unit 114 gives a signal instructing the maintenance work unit 116 to release the lock so that the maintenance work can be performed. The maintenance work unit 116 operates in response to the command so that maintenance work can be performed. For example, a menu screen specialized for maintenance work is displayed, and an operation by the menu screen is made possible. Moreover, you may make it open | release a physical lock | rock. As a result, the person in charge of work can enter a state where maintenance work for the copying machine 50 can be started.

  As described above, the maintenance work system 40 does not require a physical key in a series of processes related to authentication of a worker. Further, in this maintenance work system 40, since authentication is not performed by the operation itself of the copier 50 by the operator, it is not necessary to force the operator to perform complicated operations. Therefore, the operation can be simplified and the work load on the worker can be reduced.

  Further, in this series of authentication processes, the person in charge of work can start maintenance work only after accessing the management server device 54 and obtaining a two-dimensional code for device authentication. Further, since the device ID and the worker ID are transmitted as a transmission request for the device authentication two-dimensional code at the time of access, the management server device 54 can acquire the current status information of the worker. That is, the notification of the current state by the worker is present on the critical path for the worker. Therefore, the maintenance work is performed without omitting the current notification to the management server device 54.

  In the above-described embodiment, the device specifying two-dimensional code is generated and displayed by the copying machine 50. Of course, the present invention is not limited to this. It is. For example, if the copying machine 50 has a function of printing an image on paper, the generated device specifying two-dimensional code may be printed on paper. Alternatively, a seal or the like on which a device specifying two-dimensional code is printed in advance may be prepared and attached to the casing of the copying machine 50. In this case, it is not necessary to provide a display device in the copying machine 50.

[Second Embodiment]
In the first embodiment described above, the copying machine 50 (see FIG. 2), which is a maintenance target device, is obtained by decrypting the release code stored in the device information storage unit 100 and the device authentication two-dimensional code. Verifying the authority of maintenance work by collating with the release code. In order for the maintenance target device to authenticate only to appropriate work subjects, it is desirable to prevent the release code and the device authentication two-dimensional code indicating it from leaking and being misused or misused. Further, in order to correctly manage the maintenance work, it is necessary that information for specifying the maintenance target device is definitely transmitted from the maintenance target device. In other words, it is desirable to prevent others including the person in charge of the work from being involved in the information itself exchanged between the maintenance target device and the management server device.

  A maintenance work system according to the second embodiment described below includes a copying machine, a portable information terminal device, and a management server device, which are maintenance target devices, as in the first embodiment. Among these, the portable information terminal device is the same as the portable information terminal device 52 (see FIG. 3) according to the first embodiment. However, in the maintenance work system, the maintenance target device and the management server device each generate a two-dimensional code for device identification and a two-dimensional code for device authentication that are different for each authentication process.

  FIG. 19 is a block diagram showing the functional configuration of the copying machine 500 that is a maintenance target apparatus according to the present embodiment. Referring to FIG. 19, a copier 500 has the same device information storage unit 100, management server information storage unit 102, operation unit 104, and display unit 108 as those of the copier 50 according to the first embodiment shown in FIG. , An image input unit 110, a two-dimensional code decoding unit 112, and a maintenance work unit 116. The copier 500 further generates a finite-length random number that is not directly related to the device ID in response to a predetermined command, and generates the temporary random number storage unit 502 and the random number generation storage unit 502. Hash calculation for adding the random number thus added to the cancellation code stored in the device information storage unit 100, and converting the cancellation code with the random number into a fixed-length pseudo-random number called a hash value using a one-way hash function Part 504.

  In addition to the two-dimensional code generation unit 106 shown in FIG. 2, the copying machine 500 gives a predetermined command to the random number generation storage unit 502 according to the input signal, and stores the device ID and management stored in the device information storage unit 100. A two-dimensional code generation unit 506 that generates an apparatus specifying two-dimensional code based on the address stored in the server information storage unit 102 and the random number generated by the random number generation storage unit 502 is included. In addition to the user authentication unit 114 shown in FIG. 2, the copying machine 500 collates the release code decrypted by the two-dimensional code decryption unit 112 with the hash value generated by the conversion by the hash calculation unit 504 to perform maintenance work. A user authentication unit 508 for authenticating the authority of the user.

  The random number generation storage unit 502 generates and stores a different random number each time according to the request from the two-dimensional code generation unit 506, and outputs the stored random number in response to the request from the hash calculation unit 504. If a random number is generated again before the request from the hash calculation unit 504, the previous random number stored is discarded and a new random number is stored.

  Here, the one-way hash function is an arithmetic technique for generating a fixed-length hash value for a given character string. The original character string cannot be reproduced from the generated hash value, and it is extremely difficult to create different data having the same hash value. Therefore, in order to obtain the same hash value, it is necessary to generate a hash value based on the same character string using the same one-way hash function.

  FIG. 20 shows a functional configuration of the management server device 520 in a block diagram form. Referring to FIG. 20, management server device 520 includes a communication control unit 180 and a database unit 184 that are the same as those of management server device 54 shown in FIG. 4. Further, the management server device 520 acquires a random number in addition to the device ID and the worker ID from the information received by the communication control unit 180 instead of the web server unit 182 shown in FIG. Includes a web server unit 522 that receives the release code and information necessary for maintenance work from the database unit 184. The management server device 520 further adds the random number acquired by the web server unit 522 to the cancellation code received by the web server unit 522, and uses the cancellation code with the random number added using the same one-way hash function as the copier 500. A hash calculation unit 524 that converts the hash value generated by the conversion by the hash calculation unit 524 into a two-dimensional code and generates a two-dimensional code for device authentication. The web server unit 522 is similar to the web server unit 182 according to the first embodiment based on the two-dimensional code for device authentication generated by the two-dimensional code generation unit 526 and other information read from the database unit 184. A web page is generated and transmitted to the portable information terminal device 52 via the communication control unit 180.

  FIG. 21 shows a processing sequence of the maintenance work system according to the present embodiment. Referring to FIG. 21, copier 500 starts the process triggered by an operation by a worker in the same manner as the process according to the first embodiment shown in FIG. 15, and in step 540, management server device 520 is started. Address information and device ID are read out. In step 542, the copier 500 generates and stores a random number. In step 544, device specifying information is generated based on the address information and device ID of the management server device 520 read in step 540, and the random number generated in step 542 is added, and the device specifying information to which the random number is added is obtained. A two-dimensional code for device identification is generated by two-dimensional coding. The random number generated in step 542 is different each time it is generated. Therefore, the device specifying two-dimensional code generated by converting the device specifying information to which the random number is added into a two-dimensional code is different every time. In step 546, as in step 402 of the process according to the first embodiment shown in FIG. 16, the copier 500 displays the device specifying two-dimensional code. The processing shifts to step 404, which is the same as that in the first embodiment shown in FIG.

  The portable information terminal device 52 executes a series of processes from step 404 to step 408 similar to those in the first embodiment shown in FIG. However, the information generated by decoding the device specifying two-dimensional code in the process of step 404, the access information generated in the process of step 406, and the apparatus transmitted as a transmission request to the management server apparatus 520 in step 408 The ID and the worker ID are added with the random numbers generated in step 542, respectively. The process proceeds to step 550.

  In step 550, the management server device 520 receives access from the portable information terminal device 52 as in step 410 shown in FIG. 15. At this time, the management server device 520 acquires a device ID, a worker ID, and a random number as a transmission request. In step 552, as in step 412 shown in FIG. 15, the management server device 520 updates the worker-in-progress status table, and reads maintenance work history information and release codes of the copier 500. In step 554, the random number acquired in step 550 is added to the extracted release code. Further, the release code to which the random number is added is converted into a hash value using a one-way hash function. In step 556, the hash value generated by the conversion in step 554 is two-dimensionally encoded to generate a two-dimensional code for device authentication. In step 558, as in step 416 shown in FIG. 16, the management server device 520 generates a web page in which the maintenance history information and the device authentication two-dimensional code generated in step 556 are arranged, and the portable information terminal device 52 Web page data generated for is sent.

  The processing moves to step 418 similar to the processing shown in FIG. The portable information terminal device 52 displays an image of a device authentication two-dimensional code and a work history. The process proceeds to step 560.

  In step 560, the copying machine 500 acquires and decodes the image of the two-dimensional code for device authentication as in step 420 of the process according to the first embodiment shown in FIG. In step 562, the random number generated and stored in step 542 is added to the release code stored in advance. Further, the release code to which the random number is added is converted into a hash value using the same one-way hash function used by the management server device 520 in step 554.

  In step 564, the hash value obtained by decrypting in step 560 and the hash value generated by the conversion in step 562 are collated, and the presence / absence of work authority is determined. If both release codes match, it is determined that there is work authority. Control proceeds to step 566, which is the same as step 424 shown in FIG. 15, and the copying machine 500 releases the lock and makes maintenance work possible. Otherwise, it is determined that there is no work authority. Ends a series of processing of the authentication process. In this case, the lock is not released.

  Each functional unit of the maintenance work system according to the present embodiment operates as follows.

  Referring to FIG. 19, when a person in charge of operation operates operation unit 104 of copying machine 500 to start maintenance work, operation unit 104 generates an input signal. In response to the input signal from the operation unit 104, the two-dimensional code generation unit 506 reads the device ID and the address of the management server device 520 from the device information storage unit 100 and the management server information storage unit 102, respectively. Further, the random number generation storage unit 502 is requested to generate a random number. The random number generation storage unit 502 generates and stores a random number every time a request is received from the two-dimensional code generation unit 506. For example, the random number to be generated is a character string “3sdf8fSFu87”. At this time, if a random number is generated and stored in the previous authentication process, it is discarded and a new random number is stored. The random number generation storage unit 502 further gives the generated random number to the two-dimensional code generation unit 506.

  The two-dimensional code generation unit 506 combines the device ID and the address of the management server device 54 to generate device specifying information. The two-dimensional code generation unit 506 further adds the random number generated by the random number generation storage unit 502 to the device specifying information. For example, the device ID is “10006234”, the address of the management server device 54 is “http://kanserver.co.jp/maintenance/login.cgi”, and the random number generation storage unit 502 generates Assume that the random number is “3sdf8fSFu87”. In such a case, the two-dimensional code generation unit 506 uses the device identification information “http://canserver.co.jp/maintenance/login.cgi? Is generated. Furthermore, the two-dimensional code generation unit 506 generates a two-dimensional code for device identification by converting the device identification information to which the random number has been added into a two-dimensional code, and provides the device identification information to the display unit 108. The display unit 108 displays the given device specifying two-dimensional code.

  When the two-dimensional code for device identification is displayed by the copying machine 500, the portable information terminal device 52 acquires and decodes the image of the two-dimensional code for device identification by the same operation as in the first embodiment. . A random number is added to the decrypted device specifying information. Referring to FIG. 3, access information generating unit 146 of portable information terminal device 52 reads the worker ID from user information storage unit 144, adds the worker ID to the device identification information, and manages server device. Access information to 520 is generated. For example, when the worker ID is “S234567”, the access information is “http://kanrisserver.co.jp/maintenance/login.cgi?souchid=10006234&rand=3sdf8fSFu87&tantouid=S234567”. . Based on the generated access information, the web browser unit 148 accesses the management server device 520 (see FIG. 20) via the communication control unit 150 by the same operation as in the first embodiment. At this time, in addition to the device ID and the worker ID, a random number is transmitted as a parameter to the management server device 520.

  Referring to FIG. 20, web server unit 522 of management server device 520 receives access from portable information terminal device 52 via communication control unit 180. At this time, the web server unit 522 acquires a random number as a parameter in addition to the device ID and the worker ID. The web server unit 522 gives the acquired device ID and worker ID to the database unit 184. The database unit 184 updates the database, reads the maintenance work history regarding the copier 500 and the release code of the copier 500 in the same operation as in the first embodiment, and reads the read information to the web server unit 522. give. The web server unit 522 gives the given release code and the random number obtained from the transmission request to the hash calculation unit 524.

  The hash calculator 524 adds the given random number to the given release code. Hash calculation unit 524 Further, the release code to which the random number is added is converted using a one-way hash function. For example, if the random number is “3sdf8fSFu87” and the release code is “a92dflGDkH”, a hash value of “35344619607c0d71b17bd94d5c084f12” is generated by converting the hash value using a general MD5 (Message Digest 5) as a one-way hash function. Is done. The hash calculation unit 524 gives the generated hash value to the two-dimensional code creation unit 526.

  The two-dimensional code generation unit 526 converts the given hash value into a two-dimensional code, generates a two-dimensional code for device authentication, and provides the web server unit 522 with it. The web server unit 522 generates a web page in which the work history information given from the database unit 184 and the device authentication two-dimensional code generated by the two-dimensional code generation unit 526 are arranged, and the data is stored as portable information. It transmits to the terminal device 52.

  The portable information terminal device 52 receives the data of the web page by the same operation as that of the first embodiment, and displays the web page. When the person in charge of the work places the portable information terminal device 52 at a predetermined position for inputting an image on the copying machine 500 and performs an operation for inputting a two-dimensional code on the operation section 104 of the copying machine 500, the operation section 104 issues a predetermined input signal to the image input unit 110. In response to the input signal, the image input unit 110 acquires the displayed image of the two-dimensional code for device authentication. The two-dimensional code decoding unit 112 decodes the two-dimensional code for device authentication and obtains a hash value calculated by the management server device 520. The two-dimensional code decryption unit 112 gives the hash value obtained by decryption to the user authentication unit 508.

  In response to the hash value given from the two-dimensional code decryption unit 112, the user authentication unit 508 gives a signal requesting the hash calculation unit 504 to calculate the hash value. In response to the signal, the hash calculation unit 504 reads the release code stored in the device information storage unit 100 and the random number stored in the random number generation storage unit 502, adds the random number to the read release code, and The release code to which the random number is added is converted into a hash value using the same one-way hash function used by the management server device 520. The hash calculation unit 504 gives the hash value generated by the conversion to the user authentication unit 508.

  The user authentication unit 508 collates the hash value obtained by decryption with the hash value calculated by the hash calculation unit 504. If the two match, the user authentication unit 114 gives a signal to the maintenance work unit 116 to instruct to release the lock and enable maintenance work. The maintenance work unit 116 operates in response to the command so that maintenance work can be performed.

  As described above, in the system according to the present embodiment, the copier 500 generates a device specifying two-dimensional code using a random number that is different for each authentication process. The management server device 520 also generates a two-dimensional code for device authentication using this random number. Therefore, these two-dimensional codes used in one authentication process cannot be used in another authentication process. Therefore, it is possible to prevent the device specifying two-dimensional code or the device authentication two-dimensional code from being stolen and misused. Also, since it is extremely difficult to infer the original cancellation code from the hash value, the cancellation code can be safely exchanged in the authentication process by encryption using a one-way hash function.

[Third Embodiment]
In the maintenance work system 40 according to the first embodiment, the copying machine 50, which is a maintenance target apparatus, displayed the apparatus specifying two-dimensional code at the start of a series of authentication processes. However, the present invention is not limited to such an embodiment.

  In order to improve the security of the maintenance target device, it is desirable to prevent an unspecified person from acquiring the device specifying two-dimensional code and device specifying information, and the device authentication two-dimensional code and release code. For example, even if a portable information terminal device carried by a person in charge of work or a device having an equivalent function is stolen, it is desirable to prevent a device without work authority from succeeding in authentication.

  In the present embodiment described below, work authority is authenticated before maintenance work management based on the device specifying information. The management server device does not issue a two-dimensional code for device authentication in response to an access from the portable information terminal device, but the portable information terminal device possessed by the person in charge of work based on the managed information Unilaterally transmits a device authentication two-dimensional code.

  FIG. 22 shows a functional configuration of management server apparatus 600 according to the present embodiment in a block diagram format. Referring to FIG. 22, management server device 600 includes a communication control unit 180 that is the same as management server device 54 according to the first embodiment shown in FIG. 4, and a two-dimensional code generation unit 186. The management server device 600 further sets a pair of the device ID of the maintenance target device and the worker ID of the worker in charge of the maintenance target device as a transmission request for the device authentication two-dimensional code by the user of this device. In addition to the information held by the input unit 610 to be received from a certain manager and the database unit 184 shown in FIG. 4, the e-mail address of each portable information terminal device carried by the worker is held and input from the input unit 610 A database unit 602 that searches and reads out the maintenance code for the maintenance target device, information necessary for the maintenance work, and the e-mail address of the portable information terminal device using the device ID and the worker ID as a search key.

  The management server device 600 further receives the e-mail address of the portable information terminal device, the release code of the maintenance target device, and other information necessary for maintenance work from the database unit 602, and designates them using the two-dimensional code generation unit 186. A mail transmitting unit 606 that generates information to be transmitted to the mobile information terminal device that has been transmitted and transmits the generated information to the mobile information terminal device of the given mail address via the communication control unit 180; A receiving unit 608 that receives an access from the portable information terminal device via the control unit 180, acquires the device ID and the worker ID as parameters, and gives them to the database unit 602. The database unit 602 has a function of receiving and storing the device ID and the work manager ID given from the receiving unit 608.

  FIG. 23 shows a functional configuration of portable information terminal device 620 according to the present embodiment. Referring to FIG. 23, portable information terminal device 620 according to the present embodiment has the same image input unit 140 and 2 as those of portable information terminal device 52 according to the first embodiment shown in FIG. A dimension code decoding unit 142, a user information storage unit 144, an access information generation unit 146, a communication control unit 150, a display unit 152, and an operation unit 154 are included. The portable information terminal device 620 further includes a web browser unit 622 that transmits the device ID and the worker ID to the management server device 600 via the communication control unit 150 based on the access information generated by the access information generation unit 146. A mail application (hereinafter, referred to as “mail application”) unit 624 that receives an electronic mail transmitted from the management server device 600 via the communication control unit 150 and displays the device authentication two-dimensional code on the display unit 152. including.

  FIG. 24 shows a functional configuration of a copying machine 640 that is a maintenance target apparatus according to the present embodiment. The copier 640 according to the present embodiment has the same device information storage unit 100, management server information storage unit 102, operation unit 104, display unit 108 as the copier 50 according to the first embodiment shown in FIG. An image input unit 110, a two-dimensional code decoding unit 112, and a maintenance work unit 116 are included. In addition to the functions of the user authentication unit 114 shown in FIG. 2, the copying machine 640 further responds to a notification by the user authentication unit 642 and a user authentication unit 642 having a function of issuing a notification indicating that the authentication is successful. And a two-dimensional code generation unit 644 that generates a two-dimensional code for device identification based on the device ID stored in the device information storage unit 100 and the address stored in the management server information storage unit 102.

  FIG. 25 shows the configuration of a worker email address table stored in the database unit 602 (see FIG. 22) of the management server apparatus 600 according to the present embodiment. Referring to FIG. 25, worker email address table 650 includes worker ID 652 and email address 654.

  FIG. 26 shows a processing sequence of the maintenance work system according to the present embodiment. Referring to FIG. 26, the system according to the present embodiment is different from the systems according to the first and second embodiments, and an administrator or the like assigns the apparatus ID of copying machine 640 and the copying machine 640 to the copying machine 640. The process is started when a pair with the work clerk ID of the work clerk to whom the maintenance work is assigned is determined and inputted to the management server apparatus 600 as a request for sending the apparatus authentication two-dimensional code. When the process is started, in step 660, the management server apparatus 600 searches for information holding the determined set of apparatus IDs as a search key, and information on the maintenance history of the copying machine 640 and the copying machine. 640 release code is read. Further, the customer information table 206 (see FIG. 9) is searched using the device ID as a search key, and customer information such as the customer name, address and telephone number is extracted.

  In step 662, a two-dimensional device authentication code is generated based on the release code read in step 660. In step 664, a maintenance mail history information read in step 660 and customer information to be visited, and a notification mail in which the two-dimensional device authentication code generated in step 662 is arranged are created. Further, the e-mail address of the portable information terminal device 620 possessed by the worker is retrieved from the worker-email address table 650 (see FIG. 25), set as the destination of the notification mail and transmitted. The processing moves to step 666.

  In step 666, portable information terminal device 620 receives the mail from management server device 600. In step 668, the received mail is displayed on the screen. In this screen display, a device authentication two-dimensional code is displayed as in the web page in the first and second embodiments. The process proceeds to step 670.

  In step 670, the copier 640 obtains an image of the device authentication two-dimensional code displayed on the portable information terminal device. Further, the copier 640 decodes the acquired image to obtain a release code. In step 672, the release code obtained in step 670 is compared with the release code stored in advance to determine whether or not there is work authority. If both release codes match, it is determined that there is work authority. Processing proceeds to step 674. Otherwise, it is determined that there is no work authority. The process ends. In this case, the lock is not released.

  In step 674, a device specifying two-dimensional code is generated in the same manner as in step 400 of the processing according to the first embodiment shown in FIG. In step 676, the device specifying two-dimensional code generated in the same manner as in step 402 shown in FIG. 16 is displayed. Thereafter, the process proceeds to Step 690.

  On the other hand, in portable information terminal device 620, in step 680, as in step 404 of the process according to the first embodiment shown in FIG. To do. In step 682, the portable information terminal device 620 generates access information by adding the worker ID to the information obtained by decryption. In step 684, the portable information terminal device 620 accesses the management server device 600 based on the generated access information. At this time, the device ID and the worker ID are transmitted to the management server device 600. The processing moves to step 686.

  In step 686, the management server device 600 receives access from the portable information terminal device 620. At this time, the management server apparatus 600 acquires the apparatus ID and the worker ID as parameters. In step 688, the management server device 600 stores the acquired worker ID and device ID in the worker status table (see FIG. 13), updates the table, and ends the process.

  On the other hand, the processing of the copying machine 640 displays the device specifying two-dimensional code in step 676, and then proceeds to step 690, where the copying machine 640 releases the lock and makes maintenance work possible.

  As described above, in this embodiment, since the two-dimensional code for specifying the device is displayed after the authentication using the two-dimensional code for device authentication transmitted from the management server device 600 is successful, the two-dimensional code for specifying the device is displayed. Is less likely to be referred to by a third party other than the worker. Further, since the maintenance worker receives a notification mail transmitted from the management server device when the maintenance work for the copying machine 640 is assigned, the notification mail is sent before the worker in charge arrives at the copying machine. Can be referred to. Therefore, before the maintenance work, it is possible to refer to information useful for the maintenance, for example, past maintenance work history, customer information, and the like. Therefore, maintenance work can be started after preparations such as procurement of necessary replacement parts by the worker in charge are made.

[Fourth Embodiment]
As in the maintenance work system according to the third embodiment described above, when the current status report is performed after authentication, the current status report work does not exist on the critical path. Therefore, even in such a case, it is desirable to perform the maintenance work without omitting the notification to the current management server device. Even in such a case, it is desirable to use a different two-dimensional device authentication code every time authentication is performed.

  Incidentally, in the above-described embodiment, the maintenance target device does not directly exchange information with the management server device in a series of authentication processes. However, the present invention is not limited to such an embodiment.

  FIG. 27 shows a configuration of the maintenance work system according to the present embodiment. Referring to FIG. 27, a maintenance work system 700 according to the present embodiment includes a copying machine 710 that is a maintenance target apparatus, a portable information terminal device 712 carried by a person in charge of work, and an apparatus on the maintenance work manager side. Management server device 714. The portable information terminal device 712 and the management server device 714, and the copier 710 and the management server device 714 are connected via predetermined communication networks 716 and 718, respectively.

  The copier 710 has a function of generating a random number as in the second embodiment. The generated random number is transmitted to the management server device 714 via the communication network 718 together with the device ID. The management server device 714 generates a hash value using a hash function based on the random number and the release code acquired from the copier 710, and generates a two-dimensional code for device authentication by encoding the generated hash value. To do. The management server device 714 transmits the device authentication two-dimensional code to the portable information terminal device 712 by mail.

  The portable information terminal device 712 displays a device authentication two-dimensional code included in the received mail. The copier 710 acquires the displayed image of the two-dimensional code for device authentication and authenticates the person in charge of the work. If the authentication is successful, the copier 710 notifies the management server device 714. Based on this notification, the management server device 714 updates the current status.

  FIG. 28 shows a functional configuration of the copying machine 710. Referring to FIG. 28, copier 710 has a configuration similar to that of copier 500 according to the second embodiment shown in FIG. However, the copying machine 710 according to the present embodiment replaces the display unit 108 and the two-dimensional code generation unit 506 shown in FIG. 19, respectively, and a communication control unit 730 that performs communication with the management server device 714; The device ID stored in the device information storage unit 100 and the random number generated by the random number generation storage unit 502 are transmitted to the management server device 714 via the communication control unit 730 based on the address stored in the management server information storage unit 102. A web client unit 732. Further, the copying machine 710 replaces the user authentication unit 508 shown in FIG. 19 with a function of issuing a notification to the web client unit 732 upon successful authentication in addition to the function of the user authentication unit 508. An authentication unit 734 is included. The web client unit 732 further has a function of transmitting a predetermined notification to the management server device 714 via the communication control unit 730 in response to the notification from the user authentication unit 734.

  FIG. 29 shows a functional configuration of portable information terminal device 712 according to the present embodiment. Referring to FIG. 29, portable information terminal device 712 according to the present embodiment may be any device that can receive and display mail. The portable information terminal device 712 includes a communication control unit 150, a mail application unit 624, and a display unit 152 similar to those of the portable information terminal device 620 according to the third embodiment shown in FIG.

  FIG. 30 shows a functional configuration of the management server device 714 according to the present embodiment. Referring to FIG. 30, the management server device 714 includes a hash calculation unit 524, a two-dimensional code generation unit 526 similar to those of the management server device 520 according to the second embodiment shown in FIG. A database unit 602 similar to that of the management server device 600 according to the third embodiment shown in FIG. The management server device 714 further includes a communication control unit 750 that communicates with the portable information terminal device 712 and the copier 710 via the communication networks 716 and 718, and an access from the copier 710 via the communication control unit 750. And a receiving unit 752 for receiving the device ID of the copying machine 710 and the random number generated by the copying machine 710.

  The management server device 714 further uses a database unit 602, a hash calculation unit 524, and a two-dimensional code generation unit 526 when a set of a copier 710 and a person in charge of the copier 710 is designated. And a mail transmission unit 756 for creating and transmitting information to be transmitted to the portable information terminal device 712 of the designated worker. The receiving unit 752 further has a function of receiving a set of the apparatus ID and the worker ID that the copying machine 710 transmits after the authentication is completed and giving the set to the database unit 602.

  FIG. 31 shows a processing sequence of each apparatus in the maintenance work system 700 according to the present embodiment. Referring to FIG. 31, in the maintenance work system according to the present embodiment, in step 770, copying machine 710 reads the address and device ID on communication network 718 of management server device 714 stored in advance. . Furthermore, a random number is generated. In step 772, the copying machine 710 generates access information to the management server device 714 based on the read information and the generated random number, and accesses the management server device 714. At this time, the device ID and the random number are transmitted as parameters to the management server device 714. The processing moves to step 774.

  In step 774, the management server device 714 receives access from the copying machine 710, acquires and holds the device ID and random number as parameters.

  In the management server device 714, when the manager or the like assigns the person in charge of the work and the maintenance work of the copier 710, the process proceeds to step 776. In step 776, the management server device 714 reads the maintenance work history information and the release code of the copying machine 710 using the given device ID as a search key. The management server device 714 reads customer information such as the customer name, address, and telephone number of the copier 710 to be allocated.

  In step 778, the management server device 714 combines the read release code and the random number acquired in step 774, and calculates a hash value using a one-way hash function. A device authentication two-dimensional code is generated based on the calculated hash value and the worker ID of the worker assigned to the maintenance work.

  In step 780, based on the information read in step 776 and the two-dimensional code for device authentication generated in step 778, a notification mail to be transmitted to the portable information terminal device 712 is generated. Further, the e-mail address of the portable information terminal device 712 carried by the person in charge of the work is retrieved, set as the destination of the notification e-mail, and transmitted. The processing moves to step 782.

  In step 782, the portable information terminal device 712 receives a mail from the management server device 714. In step 784, the mail received in step 782 is displayed on the screen.

  In step 786, the copier 710 acquires and decodes the image of the device authentication two-dimensional code included in the mail displayed by the portable information terminal device 712. By decoding the image, the copier 710 obtains a hash value and a worker ID. In step 788, a one-way hash value is generated from the random number and release code held by the copying machine 710, and the generated hash value is compared with the hash value obtained in step 786. If the two hash values match, the process proceeds to step 790. Otherwise, the process ends. The lock is not released and no authority is granted for maintenance work.

  In step 790, the copying machine 710 notifies the management server device 714 that the authentication of the person in charge of the work has been successful. At this time, the copying machine 710 creates access information based on the stored address of the management server device 714, the device ID of the copying machine 710, and the worker ID obtained in step 786, and the management server Access device 714. At this time, the apparatus ID of the copying machine 710 and the worker ID are transmitted to the management server apparatus 714 as parameters.

  In step 792, the management server device 714 receives access from the copying machine 710 and acquires a worker ID and device ID. The management server device 714 updates the held worker status table 200 (see FIG. 6) based on the acquired worker ID and device ID.

  On the other hand, the processing of the copying machine 710 proceeds to step 796, where the lock is released and the maintenance work is possible.

  As described above, in the present embodiment, when the copier 710 generates a random number in advance and transmits the random number to the management server device 714, the management server device 714 is assigned a work assignment to a maintenance worker. Thus, a different device authentication two-dimensional code can be transmitted for each authentication process. Furthermore, in the system according to the present embodiment, the work person does not need to acquire the device specifying two-dimensional code and access the management server device, and the work person's work amount in the authentication process is reduced. Can do. In addition, the person in charge of work can perform authentication using a general device that can receive and display mail.

  In the fourth embodiment, the processing from step 770 to step 774 is performed when the maintenance work system 700 starts a series of authentication processes. However, the series of processing from step 770 to step 774 may be repeated at regular intervals, for example, once per hour. Further, when a situation requiring maintenance work occurs in the copying machine 710, a series of these processes may be automatically performed.

  In the first to third embodiments described above, the maintenance target device generates device specifying information including the address of the management server device. However, the present invention is not limited to such an embodiment. For example, the portable information terminal device may hold the address of the management server device. In such a case, the maintenance target device creates device identification information including a device ID or a device ID and a random number, encodes the device identification information into a two-dimensional code for device identification, and displays it. The portable information terminal device decodes the device specifying two-dimensional code to obtain a device ID or a device ID and a random number. The portable information terminal device generates a parameter by combining the information obtained here and the held worker ID, and further creates access information together with the address of the holding management server device To do. By doing in this way, the address of a management server apparatus can be kept secret from the customer who is the user of a maintenance object apparatus. Therefore, more reliable authentication can be performed in a series of authentication processes.

  In the third embodiment, the copier 640 that is the maintenance target apparatus generates the apparatus specifying two-dimensional code after authenticating the work authority using the apparatus authentication two-dimensional code. Therefore, the contents of the device authentication two-dimensional code can be reflected in the device specifying two-dimensional code. For example, when there are a plurality of companies that perform maintenance work for one copying machine 640, each has a maintenance service system operated by a different management server device. Specifically, when a maintenance service company that performs normal maintenance work and the manufacturer of the copying machine maintain a single copying machine, their roles are different, and the maintenance service company cannot repair (for example, If the copy machine itself is locked when the bill is copied due to the counterfeit bill copy prohibition function of the copy machine), it is necessary to receive maintenance from the manufacturer, and is included in the two-dimensional code for device identification. It is necessary to use different management server address information.

  In order to realize this, there is a method of encoding the address information of the management server device together with the release code when generating the two-dimensional code for device authentication in the management server device. In this case, the two-dimensional code generation unit of the copying machine does not use the management server address information stored in the management server information storage unit, but uses the management server address information obtained by the two-dimensional code decoding unit. And generate a two-dimensional code. As a result, the access destination of the mobile phone is based on the address information set in the management server.

  In the present invention, the two-dimensional code for device identification and the two-dimensional code for device recognition are not limited. For example, it may be a two-dimensional code generally used in a mobile phone with a camera function. Alternatively, it may be an image code such as a general barcode. When the portable information terminal device or the maintenance target device has an OCR (Optical Character Recognition) function, characters may be displayed as a device specifying two-dimensional code or a device recognition two-dimensional code.

  In the above-described embodiment, information exchange between the portable information terminal device and the maintenance target device is performed by displaying and acquiring images. However, instead of exchanging images, infrared rays or the like are used. It is also possible to use conventional optical communication or near field communication. In any case, it is desirable that the exchange of information between the portable information terminal device and the maintenance target device is performed at a very short distance.

  The embodiment disclosed herein is merely an example, and the present invention is not limited to the above-described embodiment. The scope of the present invention is indicated by each claim in the claims after taking into account the description of the detailed description of the invention, and all modifications within the meaning and scope equivalent to the wording described therein are intended. Including.

It is a figure showing composition of a maintenance work system concerning a 1st embodiment of the present invention. FIG. 2 is a block diagram showing a functional configuration of a copier 50 that is a maintenance target apparatus according to the first embodiment. It is a block diagram which shows the functional structure of the portable information terminal device 52 which concerns on 1st Embodiment. It is a block diagram which shows the functional structure of the management server apparatus 54 which concerns on 1st Embodiment. It is a figure which shows the structure of the data stored in the database part 184 of the management server apparatus 54. FIG. It is a figure which shows an example of the person in charge present condition table. It is a figure which shows an example of the cancellation | release code table. 6 is a diagram illustrating an example of a maintenance history table 204. FIG. It is a figure which shows an example of the customer information table. 2 is a diagram illustrating a hardware configuration of a copying machine 50. FIG. 4 is a front view illustrating an example of an appearance of a portable information terminal device 52. FIG. 4 is a rear view illustrating an example of an appearance of a portable information terminal device 52. FIG. 3 is a diagram illustrating an internal configuration of hardware of a portable information terminal device 52. FIG. 3 is a diagram showing an internal configuration of hardware of a management server device 54. FIG. It is a figure which shows the process structure of the maintenance work system 40 which concerns on 1st Embodiment. 5 is a diagram schematically showing an operation in which a copying machine 50 displays a device specifying two-dimensional code and a portable information terminal device 52 acquires the device specifying two-dimensional code. FIG. 6 is a diagram illustrating a display example of a two-dimensional code for device authentication by the portable information terminal device 52. FIG. 6 is a diagram illustrating an example of an arrangement of portable information terminal devices 52 when the copying machine 50 acquires an image of a device authentication two-dimensional code. FIG. 6 is a block diagram illustrating a functional configuration of a copier 500 that is a maintenance target apparatus according to a second embodiment. FIG. It is a block diagram which shows the functional structure of the management server apparatus 520 which concerns on 2nd Embodiment. It is a figure which shows the process structure of the maintenance work system which concerns on 2nd Embodiment. It is a block diagram which shows the functional structure of the management server apparatus 600 which concerns on 3rd Embodiment. It is a block diagram which shows the functional structure of the portable information terminal device 620 which concerns on 3rd Embodiment. It is a block diagram which shows the functional structure of the copying machine 640 which is a maintenance object apparatus based on 3rd Embodiment. It is a figure which shows the structure of a work person in charge mail address table. It is a figure which shows the process structure of the maintenance work system which concerns on 3rd Embodiment. It is a figure which shows the structure of the maintenance work system which concerns on 4th Embodiment. 2 is a block diagram illustrating a functional configuration of a copier 710 that is a maintenance target apparatus. FIG. It is a block diagram which shows the functional structure of the portable information terminal device 712. 3 is a block diagram showing a functional configuration of a management server device 714. FIG. It is a figure which shows the processing structure of the maintenance work system 700 which concerns on 4th Embodiment.

Explanation of symbols

  50, 500, 640, 710 Copier, 52, 620, 712 Portable information terminal device, 54, 520, 600, 714 Management server device, 60, 716, 718 Communication network, 100 Device information storage unit, 102 Management server information storage Unit, 104, 154 operation unit, 106, 186, 506, 526, 644 two-dimensional code generation unit, 108, 152 display unit, 110, 140 image input unit, 112, 142 two-dimensional code decoding unit, 114, 508, 642 , 734 User authentication unit, 116 Maintenance work unit, 144 User information storage unit, 146 Access information generation unit, 148, 622 Web browser unit, 150, 180, 730, 750 Communication control unit, 182, 522 Web server unit, 184, 602 Database department, 200 202, release code table, 204 maintenance history table, 206 customer information table, 280, 310, 344 monitor, 282 operation buttons, 284 touch panel, 286 scanner, 288 printer, 290, 326, 356 CPU, 292, 328, 358 bus , 294, 330, 360 Memory, 296, 362 Fixed disk, 312 Numeric keypad, 314 Speaker, 316 microphone, 318 camera, 320 External memory card, 322 External memory card slot, 324, 354 Communication IF, 340 Mouse, 342 Keyboard, 346 FD, 348 FD drive unit, 350 CD-ROM, 352 CD-ROM drive unit, 502 random number generation storage unit, 504, 524 hash calculation unit, 606, 756 mail transmission unit, 08,752 receiving unit, 610 input section, 624 mail application unit, 650 worker-mail address table, 732 web client section

Claims (46)

A maintenance work system management device for managing a maintenance work system including one or more maintenance target devices and one or more work person information terminal devices,
Storage means for storing work permission information necessary for permitting maintenance work for each maintenance target device;
In response to a request for transmission of work permission information including device identification information for identifying a maintenance target device, work permission information for the device specified by the device identification information is read from the storage means, and a predetermined encoding method is provided. Image coding means for image coding according to:
A maintenance work system management apparatus, comprising: transmission means for transmitting information encoded by the image encoding means to a transmission destination specified based on the transmission request. And further comprising receiving means for receiving the transmission request via communication,
The maintenance work system management apparatus according to claim 1, wherein the transmission unit includes a unit for transmitting information encoded by the image encoding unit to a transmission source of the transmission request. The transmission request further includes worker identification information for identifying a worker.
The maintenance work system management apparatus according to claim 2, wherein the maintenance work system management apparatus further includes means for storing the apparatus identification information and the work person identification information included in the transmission request in association with each other. apparatus. The transmission request further includes additional information not related to the device identification information included in the transmission request,
The maintenance work system management device further includes additional information extracting means for extracting the additional information from the transmission request received by the receiving means,
The image encoding means includes
In response to the transmission request, reading means for reading work permission information for the work target device specified by the device identification information from the storage means;
Reply information generating means for generating reply information as a function of the work permission information read by the reading means and the additional information extracted by the additional information extracting means;
The maintenance work system management apparatus according to claim 2, further comprising: means for image-coding the reply information generated by the reply information generating means using the predetermined encoding method. The reply information generating means
Means for combining the work permission information read by the reading means with the additional information extracted by the additional information extracting means;
5. The maintenance work system management apparatus according to claim 4, further comprising encryption means for encrypting the information combined by said combining means according to a predetermined encryption method. 6. The maintenance work system according to claim 5, wherein the encryption means includes a hash calculation means for converting the information combined by the combining means into a hash value using a predetermined one-way hash function. Management device. Furthermore, an input means for receiving an input of the transmission request includes
The transmission request further includes worker identification information for identifying a worker.
The transmission means includes
Address holding means for holding a destination address for each person in charge of work,
Means for transmitting the information encoded by the image encoding means to the address held in the address holding means for the worker in charge identified by the worker identification information included in the transmission request; The maintenance work system management apparatus according to claim 1, further comprising: In response to the transmission request, the image encoding means reads work permission information for the device specified by the device identification information from the storage means, and the work person in charge included in the work permission information and the transmission request. The maintenance work system management apparatus according to claim 7, further comprising means for image coding by the predetermined coding method together with identification information. The maintenance work system management device further includes additional information receiving means for receiving predetermined additional information not related to the device identification information from the device specified by the device identification information,
The image encoding means includes
In response to the transmission request, reading means for reading work permission information for the work target device specified by the device identification information from the storage means;
Transmission information generating means for generating transmission information as a function of the work permission information read by the reading means and the additional information acquired by the additional information receiving means;
The maintenance work system management apparatus according to claim 7, further comprising means for image-coding transmission information generated by the transmission information generation means by the predetermined encoding method. The transmission information generating means
Means for combining the work permission information read by the reading means with the additional information received by the additional information receiving means;
The maintenance work system management apparatus according to claim 9, further comprising encryption means for encrypting the information combined by the combining means by a predetermined encryption method. The maintenance work system according to claim 10, wherein the encryption means includes a hash calculation means for converting the information combined by the combining means into a hash value using a predetermined one-way hash function. Management device. The image coding means performs image coding by the predetermined coding method by combining the transmission information generated by the transmission information generation means and the worker-in-person identification information included in the transmission request. The maintenance work system management apparatus according to claim 9, comprising means for The maintenance system management device further
Successful authentication of maintenance work by the worker in charge identified by the worker identification information in the device identified by the device identification information, including device identification information and worker identification information from another device Notification receiving means for receiving a notification indicating that;
10. The maintenance according to claim 7, further comprising means for storing device identification information and worker identification information included in the notification received by the notification reception unit in association with each other. Work system management device. Reference information holding means for holding predetermined reference information related to the device specified by the device identification information;
In response to the transmission request, the reference information holding means further includes reference information reading means for reading the reference information related to the device specified by the device identification information included in the transmission request,
The transmission unit transmits the information encoded by the image encoding unit and the reference information read by the reference information reading unit to a transmission destination specified based on the transmission request. The maintenance work system management apparatus according to claim 1, comprising means for the above. The maintenance work system management apparatus according to claim 14, wherein the reference information includes maintenance work history information for an apparatus specified by the apparatus identification information. The maintenance work system management apparatus according to claim 14, wherein the reference information includes information related to a user of the apparatus specified by the apparatus identification information. A computer program that, when executed by a computer, causes the computer to operate as the maintenance work system management device according to any one of claims 1 to 16. An authentication device for performing authentication relating to the presence or absence of authority to perform a predetermined process,
An authentication code storage means for storing a predetermined authentication code;
An acquisition means for acquiring authentication request information encoded in image in response to a predetermined operation for requesting authentication;
Determining means for determining whether or not the image-coded authentication request information acquired by the acquiring means satisfies a predetermined relationship with the authentication code stored in the authentication code storage means; ,
An authentication apparatus comprising: means for enabling predetermined processing in response to the determination by the determination means that the predetermined relationship is satisfied. The acquisition means is an image acquisition means for acquiring an image of the authentication request information that is image-coded in response to a predetermined operation;
Decoding means for decoding the image-encoded authentication request information from the image acquired by the image acquisition means,
The determination means determines whether the authentication request information decrypted by the decryption means satisfies a predetermined relationship with the authentication code stored in the authentication code storage means. The authentication device according to claim 18, comprising: Furthermore, device identification information holding means for holding device identification information for specifying the authentication device;
In response to a predetermined condition being satisfied, an image encoding unit for encoding the device identification information held in the device identification information holding unit according to a predetermined encoding method;
Display means for displaying the device identification information image-coded by the image coding means,
The acquisition means displays the image-encoded authentication request information in response to the display means displaying the image-encoded device identification information and performing the predetermined operation. The authentication apparatus according to claim 18, further comprising authentication request information acquisition means for acquiring The device identification information holding means includes means for holding the device identification information and an address of a management device for managing an authentication status by the authentication device,
21. The image encoding unit according to claim 20, wherein the image encoding unit includes a unit for image encoding the device identification information held in the device identification information holding unit and the address of the management device according to the predetermined coding method. Authentication device. Furthermore, apparatus identification information holding means for holding apparatus identification information for specifying the authentication apparatus and an address of a predetermined transmission destination;
In response to the satisfaction of a predetermined condition, including transmission means for transmitting the device identification information held in the device identification information holding means to a transmission destination specified by the address,
The acquisition unit is configured to acquire the image-coded authentication request information in response to the device identification information being transmitted to the transmission destination by the transmission unit and the predetermined operation being performed. The authentication device according to claim 18, comprising authentication request information acquisition means. The transmission unit includes a unit for repeatedly transmitting the device identification information held in the device identification information holding unit to a transmission destination specified by the address at a predetermined time interval. The authentication device described. Furthermore, device identification information holding means for holding device identification information for specifying the authentication device;
A random number generating means for generating a random number in response to the predetermined condition being satisfied;
Random number adding means for adding the random number generated by the random number generating means to the device identification information held in the identification information holding means;
Image coding means for image coding the device identification information to which the random number is added by the random number adding means according to a predetermined coding method;
Display means for displaying the device identification information image-coded by the image coding means,
The determination means includes
A calculation means for calculating a value determined as a predetermined function of the authentication code stored in the authentication code storage means and the random number generated by the random number generation means;
19. The means for determining whether or not the encoded authentication request information acquired by the acquisition means satisfies a predetermined relationship with the value calculated by the calculation means. The authentication device described in 1. The device identification information holding means includes means for holding the device identification information and an address of a management device for managing an authentication status by the authentication device,
The image coding means includes means for image-coding the device identification information to which the random number is added by the random number adding device and the address of the management device according to the predetermined coding method. The authentication device described. Furthermore, device identification information holding means for holding device identification information for specifying the authentication device;
Address holding means for holding a predetermined destination address;
A random number generating means for generating a random number in response to the predetermined condition being satisfied;
Random number adding means for adding the random number generated by the random number generating means to the device identification information held in the identification information holding means;
Means for transmitting the device identification information to which the random number is added by the random number adding means to a transmission destination specified by an address held in the address holding means;
The determination means includes
A calculation means for calculating a value determined as a predetermined function of the authentication code stored in the authentication code storage means and the random number generated by the random number generation means;
And means for determining whether the image-coded authentication request information acquired by the acquisition unit satisfies a predetermined relationship with a value calculated by the calculation unit. 18. The authentication device according to 18. The calculating means includes
Means for adding the random number generated by the random number generation means to the authentication code stored in the authentication code storage means;
27. The authentication apparatus according to claim 24, further comprising: means for encrypting the authentication code to which the random number is added by the means for adding according to a predetermined encryption method. The encryption means includes a hash calculation means for converting the authentication code, to which the random number is added by the means for adding, into a hash value using a predetermined one-way hash function. The authentication device described. Furthermore, device identification information storage means for storing device identification information for specifying the authentication device;
And an output means for reading out and outputting the device identification information from the device identification information holding means in response to the determination means determining that the predetermined relationship is satisfied. 18. The authentication device according to 18. The output means includes
In response to determining that the predetermined relationship is satisfied by the determination unit, the device identification information held in the device identification information holding unit is read, and image coding is performed according to a predetermined coding method. Image coding means for
30. The authentication apparatus according to claim 29, further comprising: means for displaying the apparatus identification information that has been image-encoded by the image encoding means. The device identification information holding means includes means for holding the device identification information and an address of a management device for managing an authentication status by the authentication device,
The image encoding means includes means for image-coding the device identification information held in the device identification information holding means and the address of the management device in accordance with the predetermined coding method. Authentication device. Furthermore, it includes an address holding means for holding a predetermined destination address,
In response to the determination that the predetermined relationship is satisfied by the determination unit, the output unit stores the device identification information held in the device identification information holding unit in the address holding unit. 30. The authentication apparatus according to claim 29, further comprising transmission means for transmitting to the notification destination of the held address. The image-coded authentication request information includes a comparison authentication code to be compared with the authentication code stored in the authentication code storage means, and a user of the apparatus that created the image-coded authentication request information Worker identification information for identifying
The determination means includes means for determining whether or not the comparison authentication code and the authentication code match.
In response to determining that the comparison authentication code matches the authentication code by the determination unit, the transmission unit, the device identification information held in the device identification information holding unit, 33. The information processing apparatus according to claim 32, further comprising: means for transmitting the worker-in-charge identification information included in the image-coded authentication request information to the notification destination of the address held in the address holding means. The authentication device described. An authentication device for performing authentication relating to the presence or absence of authority to perform a predetermined process,
An authentication means for performing a predetermined authentication process;
Device identification information holding means for holding predetermined device identification information for specifying the authentication device;
In response to the successful authentication by the authentication means, the device identification information held in the device identification information holding means is read, and image coding means for image coding according to a predetermined coding method;
Means for displaying information encoded by the image encoding means. The device identification information holding means includes means for holding the device identification information and an address of a management device for managing an authentication status by the authentication device,
The image coding means includes means for image-coding the device identification information held in the device identification information holding means and the address of the management device according to the predetermined coding method. Authentication device. A computer program that, when executed by a computer, causes the computer to operate as the authentication device according to any one of claims 18 to 35. Image acquisition means for acquiring an image of information necessary for authentication, which is image-coded by a predetermined encoding method;
Decoding means for decoding information necessary for the authentication from the image acquired by the image acquisition means;
Transmitting means for transmitting an authentication permission request composed of the information necessary for the authentication decrypted by the decrypting means and information for identifying itself to a predetermined device;
A portable information terminal device for authentication, including display means for displaying image information transmitted from the predetermined device in response to the authentication permission request. And identification information holding means for holding information identifying the self,
Address holding means for holding an address used for communication with the predetermined device;
An authentication permission request generating means for generating an authentication permission request including information decrypted by the decrypting means and information identifying the self held in the identification information holding means;
The transmission means includes
38. The portable information terminal device for authentication according to claim 37, further comprising means for transmitting the authentication permission request generated by the authentication permission request generating means to a device having an address held in the address holding means. . The image-coded authentication request information includes an address used for communication with a predetermined device and a device that is a target of processing to be authenticated and to be transmitted to the predetermined device. Including device identification information for identifying
The transmission means includes
Self-identification information holding means for holding self-identification information for identifying the self;
Authentication permission request generating means for generating an authentication permission request including the device identification information included in the information decrypted by the decrypting means and the self identification information held in the self identification information holding means; ,
38. The portable information terminal device for authentication according to claim 37, further comprising means for transmitting the generated authentication permission request to the device at the address included in the information decrypted by the decryption means. 40. A computer program that, when executed by a computer, causes the computer to operate as a portable information terminal device for authentication according to any one of claims 37 to 39. Image acquisition means for acquiring an image of the image-coded information;
Decoding means for decoding the information from the image acquired by the image acquisition means;
A portable information terminal device comprising: a transmission unit for transmitting a notification composed of information decoded by the decoding unit and information for identifying itself to a predetermined device. A computer program that, when executed by a computer, causes the computer to operate as the portable information terminal device according to claim 41. A computer-readable recording medium on which the computer program according to any one of claims 17, 36, 40, and 42 is recorded. A portable information terminal device for authentication, including display means for receiving and displaying image information transmitted from another device;
A maintenance work system management device according to claim 1;
An authentication device according to claim 18,
The maintenance work system management device is responsive to a request for transmission of work authority including device identification information for identifying the authentication device, to permit maintenance of the device specified by the device identification information that has been image-coded. Work permission information necessary for the authentication is transmitted to the portable information terminal device for the authentication,
The portable information terminal device for the authentication receives and displays the work permission information that is image-coded and transmitted by the maintenance work system management device,
The authentication apparatus, in response to a predetermined operation, acquires the image-encoded work permission information displayed by the portable information terminal apparatus for authentication. The maintenance work system management device according to claim 2;
An authentication device according to claim 20,
A maintenance work system, comprising: the portable information terminal device for authentication according to claim 37. An authentication device according to claim 34;
A portable information terminal device according to claim 41,
In response to the success of the predetermined authentication process, the authentication device displays image-coded information,
The portable information terminal device is a maintenance work system that acquires an image of the image-coded information displayed by the authentication device.

Images