JP2005339395A - Sensor information control system, control terminal, and sensor information control method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a sensor information control system enabling a user to easily perform control of sensor information in an environment where a number of sensors and a server for processing them are present. <P>SOLUTION: The sensor information control system comprises a sensor integration terminal 5 receiving sensor information from a sensor group 4 and integrating a plurality of pieces of sensor information; an internal filtering part 1 controlling sensor information received from the sensor group 4 and transmitted to the sensor integration terminal 5 based on sensor control information received from a control terminal 3; and an external filtering part 2 controlling sensor information received from the sensor integration terminal 5 and transmitted to an external network 6 located out of the sensor information control system. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to a sensor information control system, a control terminal, and a sensor information control method.

  In recent years, an attempt to realize an intelligent living space using sensor information has been studied. Life surrounded by sensors is convenient, but privacy-related information is collected without the user's knowledge and leaks out to others. With respect to privacy protection of sensor information, a technique has been disclosed in which sensor information is encrypted and only authorized users can access the sensor information (see, for example, Non-Patent Document 1).

In this technique, a sensor receives restriction information and a public key from a user terminal, and encrypts information collected based on the restriction information using a secret key generated in the sensor. The secret key is encrypted with the public key received from the user terminal, and is sent to the information server together with the encrypted data. The user requests sensor information from the information server, and receives the encrypted sensor information and the encrypted secret key. The user can decrypt the private key with the private key corresponding to the public key and decrypt the data encrypted with the private key.
Yu Miyake, Koji Nakao: "Proposal of data encryption method and key distribution method to protect privacy information in sensor information network", "Computer Security Symposium 2002, Proceedings", pp.361-366 (2002)

  In the case of sensor information control in the prior art as described above, it is assumed that all sensors have an encryption function, but there is a range in the processing capability of the sensors, and all sensors have an encryption function. A system based on this assumption is not realistic. Further, in this system, it is assumed that the processing of sensor information is a user terminal, but this significantly limits the service form using sensor information. Furthermore, operation of such a system requires advanced security knowledge and complicated setting work, and it is difficult to force a general user to acquire and work such knowledge.

  Accordingly, in view of the above problems, a sensor information control system, a control terminal, and a sensor information control method are provided that allow a user to easily control sensor information in an environment where there are a large number of sensors and a server that processes the sensors. The purpose is to do.

  In order to achieve the above object, the first feature of the present invention is: (a) a sensor integrated terminal that receives sensor information from a sensor group and integrates a plurality of sensor information; and (b) holds information about the sensor group. An external filtering unit that controls sensor information received from the sensor integration terminal and transmitted to an external network outside the sensor information control system based on sensor control information that controls the flow of sensor information received from the control terminal. The gist is that it is a sensor information control system.

  According to the sensor information control system according to the first feature, the sensor information can be easily controlled by the user by using the sensor control information received from the control terminal. In addition, it is possible to protect privacy related to sensor information transmitted to an external network.

  The sensor information control system according to the first feature further includes an internal filtering unit that controls sensor information received from the sensor group and transmitted to the sensor integrated terminal based on the sensor control information received from the control terminal. May be. According to this sensor information control system, privacy protection relating to sensor information transmitted to the sensor integrated terminal can be achieved.

  In the sensor information control system according to the first feature, the internal filtering unit or the external filtering unit includes a control terminal confirmation unit that periodically transmits a terminal confirmation request to the control terminal, and after transmitting the terminal confirmation request If there is no response from the control terminal within a certain time, the sensor information may not be transmitted. According to this sensor information control system, it is possible to control the sensor information by the user himself / herself and to ensure that the sensor information never flows out to the outside if there is no control terminal.

  Further, in the sensor information control system according to the first feature, the internal filtering unit or the external filtering unit is a pseudo information generated by the control terminal, which is used by replacing the sensor information acquired from the sensor group. You may provide the pseudo information receiving part which receives information. According to this sensor information control system, even if the sensor is not actually operating, the sensor integrated terminal and the server of the external network can be made to appear to be operating.

  In the sensor information control system according to the first feature, when the internal filtering unit or the external filtering unit receives different sensor control information from a plurality of control terminals, the internal filtering unit or the external filtering unit controls the sensor information according to a predetermined rule. It is good. According to this sensor information control system, it is guaranteed that only sensor information permitted by the user is always processed or leaked to the outside.

  A second feature of the present invention is a control terminal used in a sensor information control system including a sensor integrated terminal that receives sensor information from a sensor group and integrates a plurality of sensor information, and (a) information related to the sensor group. (B) a sensor control information generator for generating sensor control information for controlling the flow of sensor information, and (c) sensor information received from the sensor integrated terminal. The gist of the invention is that the control terminal includes a sensor control information transmitting unit that transmits sensor control information to an external filtering unit that transmits to an external network outside.

  According to the control terminal which concerns on a 2nd characteristic, a user can control sensor information simply by transmitting sensor control information to an external filtering part.

  The control terminal according to the second feature further includes a sensor control information template accumulating unit that stores a filtering pattern including a plurality of predetermined sensor control information, and the sensor control information generating unit applies the specified filtering pattern. The corresponding sensor control information may be generated. According to this control terminal, sensor information can be generated only by specifying a filtering pattern ID or the like without inputting sensor control information, pseudo information, and encryption information every time sensor information.

  The third feature of the present invention is that (a) receiving sensor information from a sensor group and integrating a plurality of sensor information; and (b) a flow of sensor information from a control terminal holding information relating to the sensor group. And (c) a step of controlling sensor information received from the sensor integrated terminal and transmitted to an external network outside the sensor information control system based on the sensor control information. The gist is that it is an information control method.

  According to the sensor information control method according to the third feature, the user can easily control the sensor information by using the sensor control information received from the control terminal.

  According to the present invention, it is possible to provide a sensor information control system, a control terminal, and a sensor information control method in an environment where there are a large number of sensors and a server that processes the sensors.

  Next, embodiments of the present invention will be described with reference to the drawings. In the following description of the drawings, the same or similar parts are denoted by the same or similar reference numerals. However, it should be noted that the drawings are schematic.

  In the embodiment of the present invention, a system and method for selectively processing or transmitting information obtained by a sensor group to an external network will be described.

(Sensor information control system)
As shown in FIG. 1, the sensor information control system according to the embodiment of the present invention includes a sensor group 4, an internal filtering unit 1, a sensor integrated terminal 5, an external filtering unit 2, and a control terminal 3. Is done. Here, it is assumed that the sensor group 4 and the sensor integrated terminal 5 are connected via a network. The internal filtering unit 1 arranged between the sensor group 4 and the sensor integrated terminal 5 may be provided in, for example, a hub or switch on this network, or may be configured as a different device. Similarly, the external filtering unit 2 disposed between the sensor integrated terminal 5 and the external network 6 (for example, the Internet) may be provided in a router connected to the external network 6 and is configured as a different device. Also good.

  The sensor group 4 includes a plurality of sensors that detect various values such as a temperature sensor, a moving body sensor, a floor pressure sensor, a pulse sensor, and a heart rate sensor.

  The internal filtering unit 1 controls sensor information received from the sensor group 4 and transmitted to the sensor integrated terminal 5 based on the sensor control information received from the control terminal 3.

  The sensor integration terminal 5 integrates and processes a plurality of pieces of sensor information received from the sensor group 4 via the internal filtering unit 1.

  The external filtering unit 2 controls sensor information received from the sensor integration terminal 5 and transmitted to the external network 6 outside the sensor information control system based on the sensor control information received from the control terminal 3.

  The control terminal 3 transmits sensor control information for controlling the flow of sensor information to the internal filtering unit 1 and the external filtering unit 2. Here, the “sensor control information” includes sensor control information (information indicating whether the sensor information is transmitted or blocked), pseudo information, and encryption designation information. The “pseudo information” is pseudo information generated by the control terminal 3 that is used in place of the sensor information acquired from the sensor group 4. The filtering information, pseudo information, and encryption designation information will be described in detail later. As the control terminal 3, for example, a mobile phone, a personal computer, a notebook computer, a PHS, a PHS, a PDA, an electronic notebook or the like can be used.

  Next, details of the internal filtering unit 1, the external filtering unit 2, and the control terminal 3 will be described with reference to FIG.

  The internal filtering unit 1 includes a sensor information receiving unit 101, a separator 102, a sensor initial arrangement information storage unit 103, a filtering application unit 104, a pseudo information adding unit 105, an encryption unit 106, and a multiplexer 107. An encrypted information reception unit 108, a sensor information transmission unit 109, a pseudo information reception unit 110, a control terminal authentication unit 111, a control terminal confirmation unit 112, and a sensor control information reception unit 113.

  The sensor information receiving unit 101 receives sensor information from each of the sensor groups 4. The separator 102 separates the plurality of sensor information received from the plurality of sensor groups 4 into individual sensor information. The sensor initial arrangement information storage unit 103 stores the installation state of the sensors in the sensor network.

  The filtering application unit 104 applies filtering based on the sensor control information received from the control terminal 3. Here, “filtering” means transmitting corresponding sensor information to the sensor integrated terminal 5 or blocking it.

  When the pseudo information is added as sensor control information received from the control terminal 3 to the sensor information, the pseudo information adding unit 105 replaces the sensor information with the pseudo information.

  When encryption is designated as sensor control information received from the control terminal 3 for the sensor information, the encryption unit 106 encrypts the sensor information.

  The multiplexer 107 multiplexes and integrates a plurality of processed sensor information.

  The encrypted information receiving unit 108 receives information necessary for encryption from the control terminal 3. The sensor information transmission unit 109 transmits sensor information to the sensor integrated terminal 5. The pseudo information receiving unit 110 receives pseudo information from the control terminal 3.

  The control terminal authentication unit 111 authenticates the control terminal 3. The control terminal confirmation unit 112 receives an authentication request transmitted from the control terminal 3. Also, the control terminal confirmation unit 112 periodically transmits a terminal confirmation request to the control terminal 3.

  The sensor control information receiving unit 113 receives sensor control information from the control terminal 3.

  The external filtering unit 2 includes a sensor information receiving unit 201, a separator 202, a filtering applying unit 204, a pseudo information adding unit 205, an encrypting unit 206, a multiplexer 207, and an encrypted information receiving unit. 208, a sensor information transmission unit 209, a pseudo information reception unit 210, a control terminal authentication unit 211, a control terminal confirmation unit 212, and a sensor control information reception unit 213.

  The sensor information receiving unit 201 receives sensor information from the sensor integrated terminal 5. The separator 202 separates the plurality of sensor information received from the sensor integration terminal 5 into individual sensor information.

  The filtering application unit 204 applies filtering based on the sensor control information received from the control terminal 3. Here, “filtering” means transmitting the corresponding sensor information to the external network 6 or blocking it.

  When the pseudo information is added as sensor control information received from the control terminal 3 to the sensor information, the pseudo information adding unit 205 replaces the sensor information with the pseudo information.

  When encryption is specified as sensor control information received from the control terminal 3 with respect to sensor information, the encryption unit 206 encrypts the sensor information.

  The multiplexer 207 multiplexes and integrates a plurality of processed sensor information.

  The encryption information receiving unit 208 receives information necessary for encryption from the control terminal 3. The sensor information transmission unit 209 transmits sensor information to the external network 6. The pseudo information receiving unit 210 receives pseudo information from the control terminal 3.

  The control terminal authentication unit 211 authenticates the control terminal 3. The control terminal confirmation unit 212 receives an authentication request transmitted from the control terminal 3. Also, the control terminal confirmation unit 212 periodically transmits a terminal confirmation request to the control terminal 3.

  The sensor control information receiving unit 213 receives sensor control information from the control terminal 3.

  In addition, the control terminal 3 includes a pseudo information transmission notification unit 301, a pseudo information transmission unit 302, a pseudo information generation unit 303, an authentication request unit 304, a sensor information correspondence table 305, a sensor control information template storage unit 306, A sensor control information generation unit 307, a sensor control information transmission unit 308, an encryption information generation unit 309, an encryption information transmission unit 310, an output unit 311, and an input unit 312.

  When transmitting pseudo information to the internal filtering unit 1 or the external filtering unit 2, the pseudo information transmission notification unit 301 notifies the sensor integrated terminal 5 that pseudo information is to be transmitted.

  The pseudo information transmission unit 302 transmits pseudo information to the internal filtering unit 1 or the external filtering unit 2. The pseudo information generation unit 303 generates pseudo information.

  The authentication request unit 304 requests the internal filtering unit 1 or the external filtering unit 2 to authenticate the control terminal 3. Further, the authentication request unit 304 receives a terminal confirmation request periodically transmitted from the internal filtering unit 1 or the external filtering unit 2.

  As shown in FIG. 3, the sensor information correspondence table 305 stores information on the sensor group 4 (for example, sensor type, installation location, pseudo information, etc.). By outputting these pieces of information to the output unit 311, the user can check the position of the sensor and the nature of the sensor.

  As shown in FIG. 4, the sensor control information template storage unit 306 stores a filtering pattern including a plurality of predetermined sensor control information. The user can call a stored filtering pattern by specifying an identifier (ID) assigned to each filtering pattern using the input unit 312. For example, when the filtering pattern ID1 (template number 1) is selected, the state is “out of office”, the sensor 1 is shut off, and sensor control information for setting the sensor 3 as pseudo information can be generated.

  The sensor control information generation unit 307 generates sensor control information for controlling the flow of sensor information. Moreover, when the identifier (ID) attached | subjected for every filtering pattern is designated, the sensor control information generation part 307 produces | generates the sensor control information according to the designated filtering pattern.

  The sensor control information transmission unit 308 transmits the sensor control information to the internal filtering unit 1 or the external filtering unit 2.

  The encryption information generation unit 309 generates information necessary for encrypting the sensor information. The encryption information transmission unit 310 transmits information necessary for encryption to the internal filtering unit 1 or the external filtering unit 2.

  The output unit 311 outputs a sensor information correspondence table and a sensor control information template. The output unit 311 indicates, for example, a screen such as a touch panel or a monitor, and a liquid crystal display (LCD), a light emitting diode (LED) panel, an electroluminescence (EL) panel, or the like can be used.

  The input unit 312 indicates devices such as a touch panel, a keyboard, and a mouse. When an input operation is performed from the input unit 312, corresponding key information and position information are transmitted to the authentication request unit 304, the pseudo information generation unit 303, the sensor control information generation unit 307, and the like.

  Also, the internal filtering unit 1 according to the present embodiment has a processing control device (CPU), and includes a filtering application unit 104, a pseudo information adding unit 105, an encryption unit 106, and the like built in the CPU as modules. be able to. Similarly, the external filtering unit 2 includes a processing control device (CPU), and the filtering application unit 204, the pseudo information adding unit 205, the encryption unit 206, and the like can be built in the CPU as modules. Further, the control terminal 3 can be configured such that the pseudo information generation unit 303, the sensor control information generation unit 307, the encryption information generation unit 309, and the like are built in the CPU as modules. These modules can be realized by executing a dedicated program for using a predetermined program language in a general-purpose computer such as a personal computer.

  The sensor information correspondence table 305 and the sensor control information template storage unit 306 in the control terminal 3 are recording media that store sensor information and the like. Examples of the recording medium include RAM, ROM, hard disk, flexible disk, compact disk, IC chip, and cassette tape. According to such a recording medium, data can be easily stored, transported, sold, and the like.

  Although not shown, the internal filtering unit 1 may include a program holding unit that stores a program for causing a processing control device (CPU) to execute filtering application processing, pseudo information addition processing, encryption processing, and the like. Good. Similarly, the external filtering unit 2 may include a program holding unit that stores a program for causing a processing control device (CPU) to execute a filtering application process, a pseudo information providing process, an encryption process, and the like. In addition, the control terminal 3 may include a program holding unit that stores a program for causing a processing control device (CPU) to execute pseudo information generation processing, sensor control information generation processing, encryption information generation processing, and the like. The program holding unit is a recording medium such as a RAM, a ROM, a hard disk, a flexible disk, a compact disk, an IC chip, and a cassette tape. According to such a recording medium, the network management program can be easily stored, transported, sold, and the like.

(Sensor information control method)
Next, a sensor information control method according to the present embodiment will be described with reference to FIGS.

  First, as an initialization process, the internal filtering unit 1 receives information on the sensors installed in the sensor network by the sensor information receiving unit 101, confirms the installation state of the sensors in the sensor network, and detects the sensor initial arrangement information storage unit 103. To store. Thereafter, the sensor information received by the sensor information receiving unit 101 is compared with the sensor initial arrangement information stored in the sensor initial arrangement information storage unit 103, and sensor information not included in the information is stored as unauthenticated information. . When a new sensor is added, initialization processing is performed again.

  Next, when the user enters the sensor network with the control terminal 3 in hand, the authentication process of the control terminal 3 is started as shown in FIG.

  (A) First, in step S101, an authentication request is made from the input unit 312 of the control terminal 3. Then, in step S102, the authentication request unit 304 of the control terminal 3 transmits an authentication request to the control terminal confirmation unit 112 of the internal filtering unit 1 and the control terminal confirmation unit 212 of the external filtering unit 2.

  (B) Next, in step S103, the control terminal confirmation units 112 and 212 transmit the received information to the control terminal authentication units 111 and 211, and the control terminal authentication units 111 and 211 authenticate the control terminal 3. As a method of authentication, a simple method in which secret information is shared between the control terminal 3 and the internal filtering unit 1 or the external filtering unit 2 in advance can be used, but the control terminal 3 is unique as a mobile phone. If the authentication method is used, the use of the authentication method of the control terminal 3 makes the system safer.

  (C) If terminal authentication is successful in step S104, the process proceeds to step S105, where the sensor control information receiving unit 113 of the internal filtering unit 1 and the sensor control information receiving unit 213 of the external filtering unit 2 Receiving the sensor control information transmitted from the control information transmitting unit 308 is permitted. On the other hand, if the terminal authentication is not successful in step S104, the process proceeds to step S106, and the sensor control information receiving unit 113 of the internal filtering unit 1 and the sensor control information receiving unit 213 of the external filtering unit 2 are connected from the control terminal 3. Ignore sensor control information.

  If the terminal authentication is successful, thereafter, the internal filtering unit 1 and the external filtering unit 2 periodically confirm that the control terminal 3 exists, as shown in FIG.

  (A) First, in step S201, the control terminal confirmation unit 112 of the internal filtering unit 1 and the control terminal confirmation unit 212 of the external filtering unit 2 periodically transmit a terminal confirmation request to the authentication request unit 304 of the control terminal 3. . Here, there is also a simple method for inquiring whether the control terminal 3 can communicate with the control terminal 3 from the control terminal confirmation units 112 and 212, but the method of requesting authentication again from the authentication request unit 304 of the control terminal 3 is more secure The above is desirable. Also, a method of combining both can be considered. Here, a method for requesting authentication again will be described.

  (B) If there is a response from the control terminal 3 within a predetermined time in step S202, that is, while the internal filtering unit 1 and the external filtering unit 2 can confirm the presence of the control terminal 3, the process proceeds to step S203. Based on the sensor control information transmitted from the control terminal 3, the internal filtering unit 1 and the external filtering unit 2 control the sensor information.

  (C) On the other hand, if no response is received from the control terminal 3 within a predetermined time in step S202, the process proceeds to step S204, where the confirmation of the control terminal 3 has failed, and the internal filtering unit 1 and the external filtering unit 2 All subsequent sensor information is blocked. That is, the internal filtering unit 1 does not transmit the sensor information to the sensor integrated terminal 5, and the external filtering unit 2 does not transmit the sensor information to the external network 6.

  Next, processing in which the user performs filtering, provision of pseudo information, and designation of encryption for each sensor information using the input unit 312 of the control terminal 3 will be described with reference to FIG. Information about the sensor is stored in the sensor information correspondence table 305 shown in FIG. 3, and the user can check the position of the sensor and the nature of the sensor.

  (A) In step S301, the user selects how to control the sensor information. That is, it is determined whether each sensor information is a filter pattern based on a template, whether pseudo information is added, or encrypted. Each specific process will be described in detail below.

  (B) In step S302, the user determines whether to specify a filter pattern based on the template.

  It is very complicated for a user to input sensor control information, pseudo information, and encryption information every time for each sensor. In addition, some predetermined filtering patterns (general life patterns, sleeping patterns, etc.) are generally used depending on the situation. These filtering patterns can be stored in the sensor control information template storage unit 306 of the control terminal 3 (see FIG. 4), and the user can call the pattern stored in the input unit 312.

  You may make it transmit the filtering pattern defined as default at the timing which the control terminal 3 requests | requires terminal authentication to the internal filtering part 1 and the external filtering part 2. FIG. In this way, the user can automatically filter the sensor information just by bringing the control terminal 3.

  In step S302, when the filter pattern based on the template is selected using the input unit 312 of the control terminal 3, the process proceeds to step S303, the sensor control information template storage unit 306 is referred to, and the filter pattern based on the template is not selected. In step S304, the sensor information correspondence table 305 is referred to.

  (C) Next, in step S305, the sensor control information generation unit 307 generates filtering information. This filtering information is information for setting whether to block or transmit (outflow) the sensor information. Then, the sensor control information transmission unit 308 transmits the filtering information to the sensor control information reception unit 113 of the internal filtering unit 1 and the sensor control information reception unit 213 of the external filtering unit 2.

  (D) Next, in step S307, the user determines whether or not to specify provision of pseudo information.

  The provision of the pseudo information is performed when it is desired not to completely block the sensor information but to make it appear that the sensor is operating to the server on the sensor integrated terminal 5 or the external network 6. For example, in a system in which it is determined that the sensor information is not obtained for a certain period of time (for example, it is an abnormal situation that sensor information cannot be obtained in a system that monitors vital signs such as heart rate and blood pressure). In some cases, it may be desirable to make the sensor appear to be operating normally. Appropriate value types and value ranges as sensor information differ from sensor to sensor (for example, the heart rate is an integer value from 0 to 200 and the blood pressure is a real value from 0 to 200). These pieces of information are stored in the sensor information correspondence table 305. The pseudo information generation unit 303 generates pseudo information with reference to the sensor information table 305. At this time, it may be explicitly notified from the pseudo information transmission notification unit 302 to the sensor integrated terminal 5 that the pseudo information is added.

  In step S307, when the provision of pseudo information is specified using the input unit 312 of the control terminal 3, the process proceeds to step S308, and the pseudo information generation unit 303 generates pseudo information. In step S309, the pseudo information transmission unit 302 transmits the pseudo information to the pseudo information reception unit 110 of the internal filtering 1 and the pseudo information reception unit 210 of the external filtering unit 2. If the provision of pseudo information is not designated, the process proceeds to step S310.

  (E) Next, in step S310, the user determines whether or not to specify encryption.

  Encryption is performed when the communication path through which sensor information flows is not reliable. In the encryption of the internal filtering unit 1, encryption that is decrypted by the sensor integrated terminal 5 is generally performed. Also, it is desirable to give a digital signature together with encryption from the viewpoint of security. A general public key cryptosystem or the like can be used for the encryption and signature method.

  In step S310, when specifying the encryption using the input unit 312 of the control terminal 3, the process proceeds to step S311 and the encryption information generation unit 309 refers to the sensor information correspondence table 305 and is necessary for the encryption. Generate information. In step S312, the encryption information transmission unit 310 transmits the encryption information to the encryption information reception unit 108 of the internal filtering 1 and the encryption information reception unit 208 of the external filtering unit 2. If encryption is not designated, the process proceeds to step S313.

  (F) Next, in step S313, the filtering information receiving unit 113 of the internal filtering unit 1 and the sensor control information receiving unit 213 of the external filtering unit 2 receive the sensor control information. In step S314, the pseudo information receiving unit 110 of the internal filtering unit 1 and the pseudo information receiving unit 210 of the external filtering unit 2 receive the pseudo information. At this time, the internal filtering 1 and the external filtering unit 2 notify the control terminal 3 that the information has been received. If a notification of reception confirmation is not received within a certain time, or if an error is confirmed in the reception confirmation, processing such as retransmission of information is performed.

  (G) Next, in step S315, when the internal filtering unit 1 and the external filtering unit 2 receive a plurality of pieces of sensor information, the internal filtering unit 1 and the external filtering unit 2 divide the pieces of information and apply filtering for each piece of sensor information. Performs processing such as information assignment and encryption.

  (H) In step S316, the filtering application unit 105 of the internal filtering unit 1 and the filtering application unit 205 of the external filtering unit 2 apply filtering based on the received sensor control information.

  (L) Next, in step S317, if provision of pseudo information is specified for the received sensor information, the process proceeds to step S318, where the pseudo information adding unit 105 of the internal filtering unit 1 and the external filtering unit 2 The pseudo information adding unit 205 performs replacement with pseudo information. If the provision of pseudo information is not designated, the process proceeds to step S319.

  (Nu) Next, in step S319, when encryption is designated with respect to the received sensor information, it progresses to step S320 and the encryption part 106 of the internal filtering part 1 and the encryption part of the external filtering part 2 206 performs encryption processing. If encryption is not specified, the process proceeds to step S320.

  (L) Next, in step S320, it is determined whether or not all sensor information has been processed. If there is sensor information that has not been processed, the process returns to step S316. When all the sensor information has been processed, the process proceeds to step S322, and the multiplexer 107 of the internal filtering unit 1 and the multiplexer 207 of the external filtering unit 2 multiplex and integrate a plurality of processed sensor information. In step S323, the sensor information transmission unit 109 of the internal filtering unit 1 transmits the sensor information to the sensor integrated terminal 5, and the sensor information transmission unit 209 of the external filtering unit 2 transmits the sensor information to the external network 6.

  In addition, when a plurality of control terminals 3 that have been terminal-authenticated transmit different control information, the internal filtering unit 1 and the external filtering unit 2 pass only sensor information permitted by all the control terminals 3. Is desirable. By applying such a predetermined rule (policy), it is guaranteed that only sensor information permitted by the user is always processed or leaked to the outside. However, since it may be too strict to apply such a policy to all sensor information, another policy such as a majority decision should be applied to sensor information with low privacy. It may be.

  Also, when the internal filtering unit 1 and the external filtering unit 2 cannot recognize the presence of the control terminal 3, all sensor information is blocked (this is a simple action of "turning off the control terminal") It also means that information can be blocked). In this way, the control terminal 3 can be regarded as a kind of “key”, and if there is no “key”, it is guaranteed that the sensor information does not flow out to the outside at all. However, since this method is strict and clear and lacks flexibility, a filtering pattern when the control terminal 3 cannot be confirmed may be prepared and the pattern may be applied.

(Function and effect)
According to the sensor information control system and the sensor information control method according to the present embodiment, based on the sensor control information generated by the control terminal 3 carried by the user, the internal filtering unit 1 and the external filtering unit 2 filter the sensor information, Pseudo information is added and encrypted. For this reason, the user can easily control the sensor information.

  In addition, by controlling the sensor information in the external filtering unit 2, privacy protection regarding the sensor information transmitted to the external network 6 can be achieved. On the other hand, privacy control regarding the sensor information transmitted to the sensor integrated terminal 5 can be achieved by controlling the sensor information in the internal filtering unit 1.

  While the internal filtering unit 1 and the external filtering unit 2 can confirm the control terminal 3, sensor information control based on the control information specified by the user is performed, and the internal filtering unit 1 and the external filtering unit 2 confirm the control terminal. If it becomes impossible, the sensor information is completely blocked. For this reason, it is possible to control the sensor information by the user himself / herself, and it is possible to obtain a guarantee that the sensor information never flows outside without the control terminal 3.

  Further, according to the sensor information control system and the sensor information control method according to the present embodiment, the pseudo information that is pseudo information can be used by replacing the sensor information acquired from the sensor group. For this reason, even if the sensor is not actually operating, it can appear that the sensor is operating to the server of the sensor integrated terminal 5 or the external network 6.

  Moreover, according to the sensor information control system and the sensor information control method according to the present embodiment, when different sensor control information is received from a plurality of control terminals, the sensor information can be controlled according to a predetermined rule. For this reason, it is guaranteed that only the sensor information permitted by the user is always processed or leaked to the outside.

  Further, the control terminal 3 according to the present embodiment can store a filtering pattern including a plurality of predetermined sensor control information, and generate sensor control information according to the designated filtering pattern. For this reason, sensor information can be generated only by specifying a filtering pattern ID or the like without inputting sensor control information, pseudo information, and encryption information every time sensor information.

(Other embodiments)
Although the present invention has been described according to the above-described embodiments, it should not be understood that the descriptions and drawings constituting a part of this disclosure limit the present invention. From this disclosure, various alternative embodiments, examples and operational techniques will be apparent to those skilled in the art.

  For example, in the present embodiment, the control terminal 3 transmits sensor control information to the internal filtering unit 1 and the external filtering unit 2, but selects either the internal filtering unit 1 or the external filtering unit 2, and sensor control information May be sent. At this time, the internal filtering unit 1 or the external filtering unit 2 can be selected using the input unit 312.

  In FIG. 7, sensor control information generation / transmission processing (steps S302 to S306), pseudo information generation / transmission processing (steps S307 to S309), and encryption information generation / transmission processing (steps S310 to 312). Although described in order, this order may be changed.

  In the present embodiment, the separator 102 of the internal filtering unit 1 separates the received sensor information, and the multiplexer 107 multiplexes the processed sensor information. It is assumed that the internal filtering unit 1 receives and transmits sensor information with one terminal. When the internal filtering unit 1 has a plurality of terminals, a plurality of pieces of sensor information may be received by a plurality of terminals. In this case, separation by the separator 102 is not performed. Further, the internal filtering unit 1 may transmit a plurality of sensor information through a plurality of terminals on the assumption that the sensor integrated terminal 5 has a plurality of terminals. In this case, multiplexing by the multiplexer 107 is not performed.

  Similarly, it has been described that the separator 202 of the external filtering unit 2 separates a plurality of received sensor information, and the multiplexer 207 multiplexes the plurality of sensor information after processing. 2 is assumed to receive and transmit sensor information at one terminal. When the external filtering unit 2 has a plurality of terminals, a plurality of sensor information may be received by a plurality of terminals on the assumption that the sensor integrated terminal 5 has a plurality of terminals. In this case, separation by the separator 102 is not performed. Further, the external filtering unit 2 may transmit a plurality of sensor information through a plurality of terminals. In this case, multiplexing by the multiplexer 107 is not performed.

  The necessity of separation and multiplexing in the internal filtering unit 1 or the external filtering unit 2 described above depends on the specifications of the devices (such as the sensor group 4 and the sensor integrated terminal 5) connected to the internal filtering unit 1 or the external filtering unit 2. It should be noted that this is determined arbitrarily.

  In addition, as for the internal filtering unit 1, it has been described that the filtering application unit 104, the pseudo information adding unit 105, the encryption unit 106, and the like may be provided as one module in one CPU. Also good. In that case, a plurality of devices are connected by a bus or the like. The same applies to the external filtering unit 2 and the control terminal 3.

  As described above, the present invention naturally includes various embodiments not described herein. Therefore, the technical scope of the present invention is defined only by the invention specifying matters according to the scope of claims reasonable from the above description.

1 is a configuration block diagram of a sensor information control system according to an embodiment of the present invention. It is a block diagram of an internal filtering unit, an external filtering unit, and a control terminal according to an embodiment of the present invention. It is an example of the sensor information corresponding table which concerns on embodiment of this invention. It is an example of the sensor control information template which concerns on embodiment of this invention. It is a flowchart which shows the authentication method of the control terminal which concerns on embodiment of this invention. It is a flowchart which shows the confirmation method of the control terminal which concerns on embodiment of this invention. It is a flowchart which shows the sensor information control method which concerns on embodiment of this invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 ... Internal filtering part 101 ... Sensor information receiving part 102 ... Separator 103 ... Sensor initial arrangement information storage part 104 ... Filtering application part 105 ... Pseudo information provision part 106 ... Encryption part 107 ... Multiplexer 108 ... Encryption information reception 109: Sensor information transmitting unit 110 ... Pseudo information receiving unit 111 ... Control terminal authenticating unit 112 ... Control terminal confirming unit 113 ... Sensor control information receiving unit 2 ... External filtering unit 201 ... Sensor information receiving unit 202 ... Separator 204 ... Filtering Application unit 205 ... Pseudo information adding unit 206 ... Encryption unit 207 ... Multiplexer 208 ... Encrypted information reception unit 209 ... Sensor information transmission unit 210 ... Pseudo information reception unit 211 ... Control terminal authentication unit 212 ... Control terminal confirmation unit 213 ... sensor control information receiving unit 3 ... control terminal 301 ... pseudo information transmission notifying unit 30 ... Pseudo information transmission unit 303 ... Pseudo information generation unit 304 ... Authentication request unit 305 ... Sensor information correspondence table 306 ... Sensor control information template storage unit 307 ... Sensor control information generation unit 308 ... Sensor control information transmission unit 309 ... Encryption information generation Unit 310 ... Encryption information transmission unit 311 ... Output unit 312 ... Input unit 4 ... Sensor group 5 ... Sensor integrated terminal 6 ... External network

Claims (8)

A sensor integrated terminal that receives sensor information from a sensor group and integrates a plurality of sensor information;
Sensor information received from the sensor integration terminal and transmitted to an external network outside the sensor information control system based on sensor control information for controlling the flow of sensor information received from a control terminal holding information on the sensor group And an external filtering unit for controlling the sensor information control system.   The apparatus according to claim 1, further comprising: an internal filtering unit that controls sensor information received from the sensor group and transmitted to the sensor integrated terminal based on the sensor control information received from the control terminal. Sensor information control system.   The internal filtering unit or the external filtering unit includes a control terminal confirmation unit that periodically transmits a terminal confirmation request to the control terminal, and a response is received from the control terminal within a predetermined time after the terminal confirmation request is transmitted. The sensor information control system according to claim 2, wherein when there is no sensor information, the sensor information is not transmitted.   The internal filtering unit or the external filtering unit includes a pseudo information receiving unit that receives pseudo information that is pseudo information generated by the control terminal, which is used in place of the sensor information acquired from the sensor group. The sensor information control system according to claim 2 or 3, wherein   The internal filtering unit or the external filtering unit controls sensor information according to a predetermined rule when different sensor control information is received from a plurality of the control terminals. The sensor information control system according to claim 1. A control terminal used in a sensor information control system including a sensor integration terminal that receives sensor information from a sensor group and integrates a plurality of sensor information,
A sensor information correspondence table that holds information about the sensor group;
A sensor control information generator for generating sensor control information for controlling the flow of sensor information;
A sensor control information transmitting unit that transmits the sensor control information to an external filtering unit that transmits the sensor information received from the sensor integrated terminal to an external network outside the sensor information control system. Control terminal. A sensor control information template storage unit for storing a filtering pattern including a plurality of predetermined sensor control information;
The control terminal according to claim 6, wherein the sensor control information generation unit generates sensor control information corresponding to the specified filtering pattern. Receiving sensor information from the sensor group and integrating a plurality of sensor information;
Receiving sensor control information for controlling the flow of sensor information from a control terminal holding information on the sensor group;
A sensor information control method comprising: controlling sensor information received from the sensor integrated terminal and transmitted to an external network outside the sensor information control system based on the sensor control information.

Images