JP2006221407A - Network system, program, unauthorized use determining method of software, and unauthorized use preventing method of software - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To enable installation of software and determination of unauthorized use of the software regardless of whether a client PC can be connected to a network. <P>SOLUTION: A network system 10 comprises a client PC 20 to which the software requiring a license is installed, and a center PC 40 for taking in and processing the created data created by the client PC 20. The client PC 20 has an output means 250 for adding un-authorization check information including a product ID of the software to the created data created using the software and outputting them. The center PC has a determination processing means 430 for determining the unauthorized use of the software based on the unauthorized use check information added to the created data in starting taking in of the outputted created data and for permitting the use of the software according to the determination result. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to a network system, a program, a software unauthorized use determination method, and a software unauthorized use prevention method that take in and process data created by a client PC.

  In recent years, illegal use of game software, application software, and the like has become a major problem, but there is no exception in financial accounting systems used between accounting firms and their advisors. Usually, the financial accounting system is generated by introducing the main financial accounting software into the accounting office, and introducing the self-supporting software into the small and medium-sized business that is the advisor, and using the self-supporting software. Journal data is taken into a computer with financial accounting software installed and processed. For this reason, each of the consultants needs to purchase self-supporting software, install the self-supporting software on a computer, and input / generate journal data. However, there are cases in which unauthorized use such as purchasing only one license of self-supporting software at an accounting office and installing the software on a plurality of consultants may be performed.

Therefore, as a measure to prevent such unauthorized use, in a network system composed of a client computer and a server computer, unique identification data is generated when software is installed on the client computer, and the identification is performed. A method has been proposed in which data and a product ID are transmitted to a server computer as a set of data, and when the product IDs match and the identification data are different, the server computer transmits a use disapproval signal to the client computer. (For example, refer to Patent Document 1). According to this method, since it is not permitted to install the self-counting support software with the same license at a plurality of consultants, it can be an effective countermeasure method when applied to a financial accounting system.
Japanese Patent Laid-Open No. 2001-100808

  However, in the above-described method of permitting the use of software on the server computer, it is necessary to transmit identification data and product ID to the server computer at the time of software installation (setup). Must be connected. Therefore, there is a problem that the software cannot be installed when the network connection is difficult.

  In the present invention, in view of such problems, when data generated by a client computer is taken into a center computer and processed, software can be installed regardless of whether the client computer can be connected to a network. Another object of the present invention is to provide a network system, a program, a software unauthorized use determination method, and a software unauthorized use prevention method capable of determining unauthorized use of software.

  The network system of the present invention is a network system comprising a client PC in which software that requires a license is installed, and a center PC that captures and processes data generated by the client PC. The client PC stores the software. Storage means for inputting data, input means for inputting data, data generating means for generating generated data using software based on data input by the input means, and fraud for adding fraud check information including the product ID of the software to the generated data A check information adding means, and an output means for outputting the generated data to which fraud check information is added. The center PC takes in the generated data output by the output means, and at the start of taking in the generated data by the taking means Based on the bad check information added to the generated data, to determine the unauthorized use of software, in accordance with the determination result, the determination processing means for licensed software, characterized in that it comprises.

  In addition, the method for determining unauthorized use of software according to the present invention is a software system in a network system including a client PC in which software requiring a license is installed and a center PC that captures and processes generated data generated by the client PC. A method for determining fraudulent use, in which a client PC adds fraud check information including a product ID of software to generated data generated using software, and outputs generated data to which fraud check information is added The center PC executes a step of discriminating unauthorized use of software based on fraud check information added to the generated data when the output of the generated data is started. To do.

  According to these configurations, since the generation data generated by the client PC is captured by the center PC, the unauthorized use of the software is determined even when the client PC and the center PC are not connected to the network. Can be executed. In addition, since it is not necessary to determine unauthorized use when installing the software, the software can be installed without being connected to the network. In other words, even a client PC that cannot connect to the network can install software, and can also determine unauthorized use of software installed on the client PC. In this case, unauthorized use can be determined depending on whether the product ID is an appropriate (appropriate) value.

  In the above network system, when the determination processing unit determines that the software is illegally used, the determination processing unit interrupts the generation data generation by the acquisition unit, and determines that the software is normally used. It is preferable to permit the generation data to be continuously acquired by the acquisition unit with permission.

  In addition, the software unauthorized use prevention method of the present invention takes in the generated data when it is determined that the software is illegally used from each step of the software unauthorized use determination method described above, and the determination result of unauthorized use. A step of interrupting and a step of permitting the use of the software and continuing to fetch the generated data when it is determined that the software is normally used from the result of determination of unauthorized use are further executed.

  According to these configurations, when it is determined that the software is illegally used, the generation of the generated data is interrupted, so that illegal use of the software can be reliably prevented. Further, if the generation data import is interrupted, the generation data will be wasted as a result, so that attempts to illegal use can be effectively suppressed.

  In the above network system, the fraud check information is composed of software product ID and identification information having uniqueness for specifying the client PC, and the center PC uses the product ID and identification information included in the fraud check information. Storage means for storing an unauthorized management file for registration in association, and the discrimination processing means collates the unauthorized check information added to the generated data with the unauthorized management file, First determination means for determining whether or not a record with the same product ID as the product ID included in the check information exists. If a record with the same product ID exists in the fraud management file, the identification information of the record And whether the identification information included in the fraud check information matches. The second determination means, the record of the same product ID exists, and the identification information matches, the first determination processing means to determine normal use, the record of the same product ID exists, and the identification information matches If not, second determination processing means for determining fraudulent use, third determination processing means for determining normal use when there is no record with the same product ID, and further registering fraud check information in the fraud management file Preferably it consists of:

  According to this configuration, if the same product ID is set for a plurality of client PCs by determining the unauthorized use of the software based on the product ID and the identification information for identifying the client PC, the unauthorized use is determined. Can effectively prevent unauthorized use. In this case, it is preferable that the identification information cannot be rewritten by the user of the client PC. According to this configuration, it is possible to prevent unauthorized use by copying both the product ID and the identification information. Furthermore, the identification information is preferably managed so that the user cannot know it. According to this configuration, fraudulent acts such as falsification of identification information by the user can be prevented.

  In the above network system, it is preferable that the output means outputs generated data to which fraud check information is added by data transmission via a network or storage in a recording medium.

  According to this configuration, the generated data can be output by data transmission via a network or storage in a recording medium in accordance with the specifications of the client PC and user convenience. As a recording medium, a CD-ROM, flash ROM, memory card (compact flash (registered trademark), smart media, memory stick, etc.), compact disc, magneto-optical disc, digital versatile disc, flexible disc, etc. can be used. it can. Further, in this case, it is assumed that the center PC can receive data via a network and / or read a recording medium.

  The program of the present invention is a program for causing a computer to function as each means of a client PC or a center PC in the network system described in any one of the above items.

  According to this configuration, when the data created by the client PC is taken into the center PC for processing, the software can be installed regardless of whether or not the client PC can be connected to the network, and unauthorized use of the software is possible. Can be determined.

  Hereinafter, a network system, a program, a software unauthorized use determination method, and a software unauthorized use prevention method according to an embodiment of the present invention will be described with reference to the accompanying drawings. The present invention provides a network system in which data generated by a client computer is captured and processed by a center computer, and unauthorized use of software installed on the client computer is centered regardless of whether or not the client computer can be connected to the network. The problem is to make a determination by a computer. Therefore, a case where the present invention is applied to a financial accounting system used between an accounting office and its adviser will be described as an example.

  FIG. 1 is a system configuration diagram of a financial accounting system 10 according to an embodiment of the present invention. As shown in the figure, the financial accounting system 10 is installed in a center computer 40 (hereinafter referred to as “center PC”) installed in an accounting office and an advisory company that is an advisory office of the accounting office. And one or more client computers 20 (hereinafter referred to as “client PCs”). The center PC 40 is installed with the main financial accounting software S0 for constructing the financial accounting system 10, and the client PC 20 can be used in conjunction with the financial accounting software S0 to mainly input journal data. Self-supporting software S1 used for generation is installed. The center PC 40 takes in the journal data generated by the client PC 20, performs financial management using the financial accounting software S0, and creates various reports. Further, the center PC 40 performs processing for determining / preventing unauthorized use of the self-counting support software S1 installed in the client PC 20 at the time of taking in the journal data.

  Here, the control configuration of each of the PCs 20 and 40 will be described. The center PC 40 includes an input device 41 such as a keyboard and a mouse, a display 42 for displaying input data and processing results, operation instructions to the user, an operating system as basic software, and various software such as financial accounting software S0. A hard disk 43 (hereinafter referred to as “HD”) for storing (application), a media drive 44 for reading / writing a recording medium, and a communication interface 45 for transmitting / receiving data via a network 60 such as the Internet, These are respectively connected to the input / output interface 46.

  The center PC 40 further includes a CPU (Central Processing Unit) 48, a ROM (Read Only Memory) 49, and a RAM (Random Access Memory) 50, which are connected to an input / output interface 46 via an internal bus 47. The ROM 49 stores a control program for controlling various processes such as unauthorized use prevention processing (see FIG. 4) and financial accounting processing of the self-supporting software S1 by the CPU 48, and displays an error display (message box B1, FIG. 6). Various control data such as display data for performing reference) is stored. The RAM 50 has a file area 51 for storing an unauthorized management file (see FIG. 3) for managing unauthorized use of software, in addition to a work area used as a work area for flags and control processing. Even if the power is turned off, it is always backed up so that the stored data is retained.

  The input / output interface 46 incorporates a logic circuit that complements the functions of the CPU 48 and handles interface signals with various peripheral circuits. The data and control signals output from the CPU 48 to the internal bus 47 are output as they are or after being processed in conjunction with the CPU 48. And according to the control program in ROM49, CPU48 inputs various signals and data from each part in center PC40 via input / output interface 46 by the above-mentioned composition, and it is in RAM50 based on various input signals and data. These various data are processed and various controls are performed by outputting various signals and data to each part in the center PC 40 via the input / output interface 46.

  On the other hand, the client PC 20 (20a, 20b) is almost the same as the center PC 40, and includes an input device 21, a display 22, an HD 23, an input / output interface 26, an internal bus 27, a CPU 28, a ROM 29, and a RAM 30. However, since the client PC 20a is not connected to the network 60 and operates as a stand-alone, the generated journal data (generated data) is written and stored in the recording medium M using the media drive 24. Journal data is provided by causing the media drive 44 of the center PC 40 to read it. The client PC 20b is connected to the network 60 via the communication interface 25, and provides journal data to the center PC 40 using a data communication function.

  That is, the client PC 20 can output the journal data by either data transmission via the network 60 or data storage in the recording medium M, and the center PC 40 can take in the journal data output in any of these forms. It has become. As the recording medium M for storing data, CD-ROM, flash ROM, memory card (compact flash (registered trademark), smart media, memory stick, etc.), compact disc, magneto-optical disc, digital versatile disc, flexible disc, etc. Can be used.

  The client PC 20 (20a, 20b) is installed with the self-counting support software S1 as described above and stored in the HD 23. The self-counting support software S1 is a stand-alone type, and has a configuration in which a network drive cannot be specified. Therefore, the client PC 20a and the client PC 20b (and other PCs that provide journal data to the center PC 40) cannot use the self-counting support software S1 having the same product ID (same license).

  Meanwhile, the self-counting support software S1 is installed by inserting a CD-ROM or the like (not shown) on which the user has recorded this into the media drive 24 and inputting predetermined information such as a product ID. That is, the client PC 20 prompts the user to input a product ID based on a predetermined installation program, and determines whether or not the input product ID is an appropriate (valid) value. Here, if it is determined that the input product ID is an appropriate value, installation is permitted. Therefore, the self-supporting software S1 used in the client PC 20 can be installed by borrowing from an accounting office or other consulting company. However, when the self-counting support software S1 having the same product ID is used by a plurality of consulting companies, when importing journal data to the center PC 40, it is determined that the data is illegally used, and the import process is interrupted. Become. In other words, the financial accounting system 10 of the present invention has the feature that it permits the installation of illegally used software, but prevents unauthorized use by restricting the process of importing journal data. In addition, the restriction | limiting of the said acquisition process is explained in full detail behind.

  Next, the functional configuration of the financial accounting system 10 will be described with reference to FIG. In the following description, when simply referred to as “software”, it means self-supporting software S 1 installed in the client PC 20. The client PC 20 inputs storage means 210 for storing the installed software (corresponding to the HD 23, see FIG. 1) and data for generating journal data (data for creating a book such as a journal and a bank book). Input means 220 (corresponding to the input device 21, see FIG. 1), based on data input by the input means 220, data generation means 230 for generating journal data to be loaded into the center PC 40 using software, and the generated journal data Fraud check information adding means 240 for adding fraud check information including software product ID, and output means 250 for outputting journal data with fraud check information added (corresponding to media drive 24 and communication interface 25, see FIG. 1) It is equipped with.

  The fraud check information adding unit 240 adds fraud check information for performing fraud determination by the center PC 40 when the journal data generated by the data generation unit 230 is output. The fraud check information is obtained from the product ID (license code) assigned to each software (self-counting support software S1) and the unique identification information for specifying the client PC 20 using the software. (See FIG. 3). As the identification information, for example, a MAC (registered trademark) address allocated to an ETHERNET (registered trademark) card or a GUID (Global Unique Identifier) indicating a class ID of an object used in WINDOWS (registered trademark) is used. ) Can be used. As the identification information, the date and time (year / month / day / hour / minute / second) when the self-supporting software S1 is installed may be used, or information combining the date and time and the unique identifier of the client PC 20 is used. It may be used.

  With the above configuration, the client PC 20 first stores the product ID and the automatically generated identification information in the registry of the operating system at the time of software installation. Then, when the software stored in the storage unit 210 is activated by a predetermined operation by the user, data input using the input unit 220 and an operation for outputting journal data generated based on the input data are performed. The fraud check information adding means 240 adds the fraud check information read from the registry to the journal data. Further, the output unit 250 outputs the journal data with the fraud check information added thereto by data transmission or writing to the recording medium M.

  On the other hand, the center PC 40 stores financial accounting software S0, and a storage means 410 (corresponding to the HD 43, see FIG. 1) for storing a fraud management file for registering the product ID and identification information included in the fraud check information in association with each other. Capture means 420 for capturing journal data output by the output means 250 of the client PC 20 (corresponding to the media drive 44 and the communication interface 45, see FIG. 1), and discrimination processing means 430 for performing processing for preventing unauthorized use of software. It is equipped with.

  The discrimination processing unit 430 functions at the start of importing journal data, and includes a discrimination unit 440 for discriminating illegal use of software, and permission to use software according to the discrimination result of the discrimination unit 440. Determination processing means 450 for performing processing. Further, the determination unit 440 is classified into first to third determination units 441, 442, 443, and the determination processing unit 450 is classified into first to fourth determination processing units 451, 452, 453, 454, respectively.

  The first determination unit 441 determines whether a product ID having the same value as the product ID included in the fraud check information exists in the fraud management file. Therefore, for example, as shown in FIG. 3, in the state where two records “001” and “002” are registered, when journal data of (Yes) Yamada Shot is taken in (process 1), the journal data is included in the journal data. Since the product ID included in the added fraud check information and the value of the product ID of the record “002” are the same, it is determined that “a record with the same product ID exists”.

  In addition, when the first determination unit 441 determines that “a record with the same product ID exists”, the second determination unit 442 matches the identification information of the record with the identification information included in the fraud check information. It is discriminate | determined whether to do. Therefore, in the case of (Processing 1) shown in FIG. 3, the identification information {bbbbb} of the record “002” and the identification information {xxxxx} included in the fraud check information of Yamada Shoten do not match. It is determined that the information does not match.

  Further, the third determining unit 443 determines that “there is a record with the same product ID” by the first determining unit 441 and determines that “the identification information does not match” by the second determining unit 442. It is determined whether or not the identification information is predetermined data. In this embodiment, even when it is determined that the software is illegally used and the process is interrupted, the new product ID is input by the functions of the third determination unit 443 and the fourth determination processing unit 454 described later. Thus, the capture process can be resumed (see FIG. 6). At that time, it is necessary to register new identification information in association with the new product ID in the fraud management file. However, the fraud check information becomes invalid when it is determined to be fraudulent use. Identification information cannot be acquired. Therefore, in this case, an asterisk {*****} is set as predetermined data, and this asterisk {*****} is added to the journal data when the journal data is imported next time. It corresponds by rewriting to information. That is, the third determination unit 443 determines whether or not the identification information is an asterisk {*****} when the product ID is the same and the identification information does not match.

  Subsequently, when the first determination processing unit 451 determines from the determination results of the first determination unit 441 and the second determination unit 442 that records with the same product ID exist and the identification information matches, the software is normal. It is determined that it is being used. Therefore, for example, as shown in (Processing 2) in FIG. 3, when journal data of ABC Corporation is imported with two records “001” and “002” registered, the record “001” ”And the product ID and identification information included in the fraud check information of ABC Co., Ltd. match, and therefore“ normal use ”is determined.

  Further, if the second determination processing unit 452 determines from the determination results of the first determination unit 441 and the second determination unit 442 that records with the same product ID exist and the identification information does not match, the software is illegal. It is determined that it is being used. Therefore, in the case of (Process 1) shown in FIG. If it is determined as “illegal use”, the user is prompted to input a new product ID as described above. When the new product ID is input, the use of the software of the new product ID is permitted and the journalizing by the importing unit 420 is performed. Continue capturing data. However, when no new product ID is input, the importing of journal data by the importing means 420 is interrupted.

  Further, the third determination processing unit 453 determines that the record is the normal use from the determination result of the first determination unit 441 and determines that the record is normally used, and registers the fraud check information in the fraud management file. To do. Therefore, in the case of (Process 3) shown in FIG. 3, since there is no record having the same product ID as the product ID included in the fraud check information of Work Co., Ltd., it is determined that it is normally used (first entry of journal data). Then, a new record (record “003”) is created on the basis of the fraud check information of Work Corporation.

  On the other hand, if the fourth determination processing unit 454 determines from the determination result of the third determination unit 443 that the identification information included in the fraud check information is an asterisk, the first journal entry after the processing is resumed by inputting a new product ID. It is determined that the data has been fetched, the identification information of the corresponding record in the fraud management file is rewritten with the regular identification information included in the fraud check information, and the journal data fetching by the fetching means 420 is continued. .

  Next, the unauthorized use prevention processing of software in the center PC 40 will be described with reference to the flowcharts of FIGS. The center PC 40 acquires fraud check information added to the journal data when the journal data is taken in (S01). Subsequently, the obtained fraud check information and the fraud management file are collated, and a record having the same product ID as the product ID included in the fraud check information (hereinafter referred to as “product ID identical record”) is stored in the fraud management file. It is determined whether or not it exists (S02 and S03, first determination processing).

  If it is determined that there is no record with the same product ID (S03: No), it is determined whether or not the product ID included in the fraud check information is a null value (S04). If it is determined that the value is NULL in this step (S04: Yes), it means that the product ID could not be acquired due to the registry corruption of the client PC 20 (which is an impossible situation). In order to prevent further problems, the unauthorized use prevention process is stopped, and the journal data import process is continued as it is (S05). If the product ID included in the fraud check information is not a null value (S04: No), a new record is created (S06), and the process is continued (S07). Note that S06 to S07 correspond to a third determination process.

  On the other hand, if there is a record with the same product ID (S03: Yes), the identification information of these records with the same product ID is collated with the identification information included in the fraud check information (S08). It is determined whether or not the same record exists in the identification information (S09, second determination process). Here, when there is no record having the same identification information (S09: No), it is determined whether or not a record having the identification information as an asterisk exists in the same product ID record (S10, third). Discrimination process). If an asterisk record exists (S10: Yes), the identification information of the record is rewritten (S11), and the process is continued (S12). S11 to S12 correspond to a fourth determination process.

  If there is a record with the same identification information in the same product ID record (S09: Yes), it is regarded as normal use and the process is continued (S13, first determination process). If there is no record with the same identification information in the same product ID record and the identification information is not an asterisk (S10: No), it is regarded as unauthorized use and the message box B1 shown in FIG. 6 is displayed ( An error is displayed) (S14).

  As shown in FIG. 6, the message box B1 displays a message indicating that an unauthorized product ID is used, a company code and company name obtained from information included in the journal data, and a product ID. Then, a message prompting the user to input a new product ID is displayed. Here, when the new product ID is not input and the “cancel” button is clicked (S21: No in FIG. 5), the journal data import process is interrupted (S22). That is, in order for the user to take in the journal data, the software must be purchased in a regular manner. If a new purchase is not made, the generation of the journal data becomes useless.

  When the new product ID is input and the “OK” button is clicked (S21 in FIG. 5: Yes), the input new product ID is the old product ID (the product displayed in the message box B1 in FIG. 6). (S23: Yes), the processing is interrupted (S22). If it is not the same as the old product ID (S23: No), it is determined whether or not the input new product ID is valid data (S24). If it is determined that it is not valid (S24: No). Processing is interrupted (S22). If it is determined that the input new product ID is valid data (S24: Yes), it is determined whether a record having the same product ID as the input new product ID exists (S25). . If it is determined that a record with the same product ID exists (S25: Yes), the software with the new product ID is regarded as being illegally used, and the process is interrupted (S22).

  If it is determined that a record with the same product ID does not exist (S25: No), the journal data import process is continued (S26). At this time, an asterisk is registered as new identification information in the fraud management file together with the new product ID, and is rewritten to the legitimate identification information at the time of the next unauthorized use prevention processing (when journal data is loaded) (see FIG. 4 S11). Note that S14 to S26 correspond to a second determination process.

  As described above, according to the present embodiment, since the journal data generated by the client PC 20 is captured by the center PC 40, it is determined whether the software is illegally used. And unauthorized use of software installed on the client PC 20 can be determined.

  In addition, when the center PC 40 determines that the software is illegally used, the center PC 40 interrupts the acquisition of the journal data, so that the illegal use of the software can be reliably prevented. Further, if the import of the journal data is interrupted, the journal data will be wasted as a result, so that it is possible to effectively prevent the user's unauthorized use.

  In addition, by determining the unauthorized use of the software based on the product ID and the identification information for identifying the client PC 20, if the same product ID is set for a plurality of client PCs 20, it is determined that the software is illegally used. Unauthorized use can be prevented.

  Moreover, even if it is determined that the information has been illegally used, the journal data can be taken in by inputting a new product ID, so that the journal data is not wasted and does not cause any disadvantage to the user. .

  In addition, when the process can be resumed by inputting a new product ID, predetermined data (asterisk) is provisionally set as identification information, and is written in the regular identification information in the unauthorized use prevention process at the next journal data import. Therefore, even when the processing is resumed, unauthorized use of the software can be reliably prevented.

  It is preferable that the software installation program not update the registry (do not rewrite the identification information) if the identification information is stored in the registry when the software is reinstalled. Thereby, the identification information is changed by the re-setup, and when the journal data is taken into the center PC 40 next time, it is not mistakenly determined to be unauthorized use.

  Further, it is preferable that the identification information cannot be rewritten by the user of the client PC 20. According to this configuration, it is possible to prevent unauthorized use by copying both the product ID and the identification information. Furthermore, the identification information is preferably managed so that the user cannot know it. According to this configuration, fraudulent acts such as falsification of identification information by the user can be prevented.

  The fraud management file is preferably managed as a separate file for each program version. Thereby, an increase in the number of records in the fraud management file can be suppressed. In this case, the software installation program stores the version information (product identification code) in the registry together with the product ID and identification information. The client PC 20 adds the product ID, identification information, and version information to the journal data as fraud check information when the journal data is output. The center PC 40 refers to the fraud management file of the corresponding program version based on the version information included in the fraud check information when collating the fraud check information with the fraud management file. Even if the fraud management file is managed for each program version in this way, a new product ID is issued in the case of a paid revision (version upgrade), so there is no problem in the fraud determination. Also, there is no problem because the product ID is different at the time of version down.

  In the present embodiment, the fourth determination processing means 454 (see FIG. 2) sets an asterisk {*****} as new identification information together with the input new product ID. It is also possible to retain the identification information at the time of the determination, and set the retained identification information together with the input new product ID. According to this configuration, it is possible to omit the process of rewriting the identification information from the asterisk to the regular value in the next unauthorized use prevention process, and thus the control configuration can be simplified.

  In this embodiment, the unauthorized use of software is determined based on the product ID and the identification information. However, the unauthorized use may be determined only by the product ID. That is, only the product ID read from the registry may be added to the journal data generated by the client PC 20, and the center PC 40 may determine unauthorized use depending on whether the product ID is valid. According to this configuration, the control configuration can be further simplified. Also in this case, when it is determined that the product ID is not valid (when it is determined that the software is illegally used), the user is prompted to input a new product ID, the new product ID is input, and the value is If it is determined that the processing is appropriate, it is preferable that the capturing process can be continued.

  Next, a second embodiment of the present invention will be described with reference to FIGS. In the above embodiment, the product ID and the identification information are registered in the fraud management file in association with each other (see FIG. 3). However, in the present embodiment, a counter indicating the number of fraudulent use (see FIG. 11 and FIG. 11). (See FIG. 12) is registered in association with each other. In addition, by providing the counter in this way, even when the user changes the client PC 20, the same software (software with the same product ID) as that used on the previous PC can be used. Thus, differences from the first embodiment will be mainly described.

  Compared with the first embodiment, the present embodiment is a first determination process (corresponding to S13 in the first embodiment, see FIG. 4) and a second determination process (corresponding to S14 to S26 in the first embodiment, FIG. 4 and FIG. 5) are greatly different. The first determination process is a process performed when it is determined from the determination results of the first determination unit 441 and the second determination unit 442 that records with the same product ID exist and the identification information matches. In this case, the counter is referred to, and processing is performed according to the value of the counter. The second determination process is a process performed when it is determined from the determination results of the first determination unit 441 and the second determination unit 442 that records with the same product ID exist and the identification information does not match. In this embodiment, in this case, the processing is performed assuming that the used PC is changed or illegally used.

  Therefore, both these processes will be described with reference to the flowcharts of FIGS. FIG. 7 shows the main routine of the unauthorized use prevention process according to this embodiment, and FIGS. 8 to 10 show the subroutine. First, the main routine of FIG. 7 will be described, but the processing of S31 to S42 is the same as the processing of S01 to S12 of FIG.

  In S39, if there is a record with the same identification information in the same product ID record (S39: Yes), the counter of the corresponding record is referred to (S43). Here, if the counter is 0, it is assumed that the software is normally used, and the capturing process is continued (S44). On the other hand, if the counter is 1, it is determined that the software may be illegally used, a message box Bb (see FIG. 13B) is displayed, and << Process B >> is executed (S45). If the counter is 2, it is determined that the software is illegally used, a message box Bc (see FIG. 13C) is displayed, and << Process C >> is executed (S46). Note that S43 to S46 correspond to the first determination process of the present embodiment.

  If there is no record with the same identification information in the same product ID record and the identification information is not an asterisk (S40: No), it is regarded as a change in the use PC or unauthorized use, and the message box Ba (FIG. 13 (a)) is displayed and << Process A >> is executed (S47). Note that S47 corresponds to the second determination process of the present embodiment.

  Here, an example of performing both processes will be described. FIG. 11 shows an example of the first determination process, and FIG. 12 shows an example of the second determination process. In both of these figures, the “counter” indicates how many times unauthorized use of the software subject to unauthorized lending is performed, for example, when unauthorized lending of software is performed.

  As shown in FIG. 11, when importing journal data of ABC Corporation with records “001” to “005” registered in the registration management file, there is a record having the same product ID and identification information. Since the counter is “0” (record “001”), it is regarded as normal use. That is, when the counter is “0”, the unauthorized data is not illegally loaned, or even if it is provided, the journal data generated by the borrower using the software is taken into the center PC 40. In the latter case, it is impossible to determine unauthorized use, and as a result, normal use is obtained.

  In addition, when importing journal data for Work Co., Ltd., there is a record with the same product ID and identification information (record “002”), and the counter is “1”. To do. In the example shown in the figure, the software with the product ID “222-222-222” is illegally copied to the PC with the identification information {yyyyy}, and the journal data generated by the PC with the identification information {yyyyy} is captured. This is because it is performed once (record “003”), and the counter is set to “1” by the addition of the record. Although a warning is given at this time (see FIG. 13B), the import process can be continued (provisional use of software, << Process B >>).

  In addition, when the journal data of Yamada Shoten is taken in, there is a record having the same product ID and identification information (record “004”), and the counter is “2”, which is regarded as unauthorized use. In the example shown in the figure, the software with the product ID “333-333-333” is illegally copied to the PC with the identification information {xxxxx}, and the journal data generated by the PC with the identification information {xxxxx} is captured. Since it has been performed once (record “005”), the counter becomes “1” by adding the record, and after adding the record, its own PC (identification information {ccccc}) has taken in journal data. This means that the counter has become “2”. In this case, unless the new product ID is input (see FIG. 13C), the import process is interrupted (<< Process C >>).

  Next, an example of the second determination process will be described. As shown in FIG. 12, in the case where records “001” and “002” are registered in the registration management file and when importing journal data of ABC Co., Ltd., there is a record with the same product ID, but the identification information Since the two do not match, it is considered that the PC used has been changed or illegally used. This is because in the example shown in the figure, it can be considered that the journal data is taken in by changing the PC of the identification information {aaaaa} or the identification information {bbbbb} to the PC of the identification information {yyyyy}. Therefore, in this case, the fraud check information of ABC Co., Ltd. is newly registered in (record “003”) (<Process A>). However, in this case, since the counter of the record with the counter “0” (record “002”) is “1”, the PC with the identification information {aaaaa} or the identification information {bbbbb} takes in the journal data again. If this is the case, the counter becomes “2”, and a new product ID needs to be input. That is, when the use PC is not changed but the use is illegal (when the PC having the identification information regarded as the change source is used), it is determined that the use is illegal.

  Here, << Processes A to C >> will be described with reference to the flowchart again. 8 shows << Processing A >>, FIG. 9 shows << Processing B >>, and FIG. 10 shows << Processing C >>. As shown in FIG. 8, << Processing A >> displays the message box Ba shown in FIG. 13 (a), and acquires information on whether or not to change the registration information (S51). The message box Ba is for prompting the user to “confirm”, and displays a message, a company code, a company name, and a product ID that the PC (client PC 20) used at the destination has been changed, Display a confirmation message asking whether to change the registration information.

  If the “No” button is clicked (S51: No), the process is interrupted (S52). If the “Yes” button is clicked (S51: Yes), a record with the same product ID is searched from the fraud management file, and whether or not a record with the counter “0” exists in the same record with the product ID. Is determined (S53). At this time, there is no possibility that the record of counter “0” does not exist (the change-source PC always exists). Therefore, when it is determined that the record of counter “0” does not exist (S53: No), The processing is interrupted as an error (S54).

  If there is a record with a counter “0” (S53: Yes), the counter of any one record (for example, the first record) of the records with the same product ID is incremented by 1 (S55). . In S53, there is theoretically only one record of counter “0”. However, in consideration of a case where a program error or the like occurs, the process can be continued even when a plurality of records of counter “0” exist. It is configured. Further, a new record is created based on the fraud check information added to the journal data (S56), and the import process is continued (S57).

  Subsequently, << Process B >> will be described. As shown in FIG. 9, << Process B >> displays a message box Bb of "Warning" shown in FIG. 13 (b), a message indicating that an invalid product ID is used, a company code, a company name, and In addition to displaying the product ID, a message is displayed to the effect that the product cannot be used from the next time unless it is properly purchased. Here, only the “OK” button is displayed. When the user clicks the “OK” button after confirming the contents (S61), the counter of the corresponding record is incremented by 1 (S62), and the capturing process is continued (S63).

  Next, << Process C >> will be described. As shown in FIG. 10, << Processing C >> displays a message box Bc of "Warning" shown in FIG. 13 (c), a message indicating that an illegal product ID is used, a company code, a company name, and A product ID is displayed, and if a regular purchase is not made, a message prompting the user to input a new product ID is displayed. Note that the message box Bc has the same contents as the message box B1 shown in FIG. 6, and S71 to S76 shown in FIG. 10 are S21 to S26 shown in FIG. That is, in << Process C >>, when a new product ID is input, the value of the product ID is not the same as the old product ID, is the value valid, or is the same as the value in the fraud management file? When it is determined whether or not there is a record and all of these determination processes are cleared, the capture process can be resumed.

  As described above, according to the present embodiment, the center PC 40 compares the fraud check information added to the journal data with the fraud management file, and the same product ID as the product ID included in the fraud check information. In order to continue fetching the generated data even when the record of the record exists and the identification information of the record does not match the identification information included in the fraud check information (S47 in FIG. 7, second determination process), the user Can use software with the same product ID even when the PC is changed. However, in this case, for example, there is a possibility of unauthorized use that the consulting company A borrowed software from the consulting company B and copied, so the counter of the record of the counter 0 in the record of the same product ID is used. +1 is added (S55 in FIG. 8). As a result, when the consulting company B tries to take in the journal data to the center PC 40, the message box Bb (see FIG. 13B) is displayed (S45 in FIG. 7). In this case, unauthorized software lending can be suppressed. Further, when the consulting company B tries to import the journal data into the center PC 40 again, a message box Bc (see FIG. 13C) is displayed to prompt the input of a new product ID (S46 in FIG. 7). . In this way, by using the counter for management, it is possible to effectively prevent unauthorized use of software without adversely affecting the user.

  Further, in the first fraud determination process, even when the counter is 1, it is possible to continue fetching the generated data (S45 in FIG. 7), so even if the software is mistakenly lent to another person, 1 The generated data can be taken in only once. Therefore, although the warning is given, the generated data is not wasted. However, when the counter is 2, since the generation data generation is interrupted (S46 in FIG. 7), unauthorized use can be prevented. Therefore, unauthorized use of software can be surely prevented while minimizing the user's disadvantage.

  In the above, in the first fraud determination process, it is assumed that the process can be continued when the counter is 1, but at this time (that is, when the counter is other than 0), it is determined that the fraudulent use has been performed. C >> (S46 in FIG. 7) may be executed. According to this configuration, it is only necessary to determine whether or not the counter is 0, so that the control configuration can be simplified. Alternatively, the configuration may be such that the processing is interrupted as it is without prompting for the input of a new product ID when it is determined to be unauthorized use. According to this configuration, the control configuration can be further simplified.

  In the first and second embodiments described above, the case where the present invention is applied to the financial accounting system 10 used by the accounting office and its advisory company is exemplified. However, the client PC 20 uses the software. Any system can be applied as long as the system generates data and the center PC 40 captures and processes the data. Therefore, the present invention can be applied to the case where the center PC 40 is arranged at the head office, the client PC 20 is arranged at the sales office (branch), and the data input / generated by the client PC 20 is captured and processed by the center PC 40. This is also applicable to the case where the data generated in (1) is backed up (update of data stored in the center PC 40) and the data is compressed.

  Furthermore, it may be configured to determine whether to add fraud check information according to the type of data output by the client PC 20. For example, in the case of the financial accounting system 10, fraud check information is added when journal data is output, but it may be used such that it is not added to data when an account item is added. According to this configuration, fraud determination can be performed only on necessary data.

  Next, a third embodiment of the present invention will be described with reference to FIG. In the first and second embodiments described above, a system is configured by the client PC 20 that generates journal data and the center PC 40 that fetches the journal data, and the center PC 40 determines whether the software installed in the client PC 20 is illegally used. In this embodiment, the client PC 520 and the server 540 constitute a system, and the server 540 determines whether the software is illegally used. Further, the server 540 according to the present embodiment is not based on the premise that the journal data generated by the client PC 520 is taken in like the center PC 40 of the financial accounting system 10 described in the above embodiment, and is commercially available. It is also applicable when purchasing and using software. Therefore, the points different from the above embodiment will be mainly described.

  As shown in the figure, the network system 510 according to the present embodiment is configured to be connectable to a client PC 520 (520a, 520b) in which software requiring use permission is installed, and the client PC 520 via the network 560. And a server 540 that licenses the use of the software. Each of the client PCs 520 has a communication interface (not shown) for communicating with the server 540, and is required to be connected to the network at least when installing software. The software installed in the client PCs 520a and 520b is not limited to the same type. That is, the server 540 can discriminate unauthorized use of multiple types of software.

  The software installed on the client PC 520 is configured so as to be licensed by the installation program. That is, when a user inserts a recording medium in which software is recorded into the media drive of the client PC 520, the installation program is activated and prompts the user to input a product ID by display. When the user inputs a product ID according to the input instruction, fraud check information including the product ID and the automatically generated identification information is transmitted to the server 540 via the network 560.

  The server 540 includes a database (not shown) that stores a fraud management file (see FIG. 3) for registering the product ID and identification information included in the fraud check information in association with each software type. When the fraud check information is acquired from the client PC 520, the fraud check information and the fraud management file are collated to determine whether the software is illegally used.

  In other words, if there are records with the same product ID in the fraud management file and the identification information matches, it is determined as normal use and the use of the software is permitted (first determination process).

  If there is a record with the same product ID and the identification information does not match, it is determined to be unauthorized use, and a message (message box B1, FIG. 3) prompting the user to input a new product ID is sent to the client PC 520. To do. As a result, a message is displayed on the display of the client PC 520. When a new product ID is input according to the message, the client PC 520 transmits the new product ID to the server 540 based on the installation program. Upon receiving the new product ID, the server 540 permits the use of the software of the new product ID, and does not permit the use of the software when the new product ID is not transmitted (second determination process). At this time, identification information is added to the new product ID transmitted from the client PC 520, and the server 540 associates the new product ID with this identification information and registers it in the fraud management file.

  Further, if there is no record with the same product ID in the fraud management file, it is determined as normal use, the use of the software is permitted, and fraud check information is registered in the fraud management file (third determination process). ). Note that the server 540 transmits a permission signal to the client PC 520 when the use of the software is permitted, and transmits a non-permission signal when the use is not permitted.

  When the client PC 520 receives the permission signal from the server 540, the client PC 520 continues the software installation process based on the installation program. When the client PC 520 receives the non-permission signal, the installation process is interrupted.

  As described above, according to the present embodiment, if the client PC 520 can be connected to the network, the server 540 can easily determine unauthorized use of software. Even when the server 540 determines that the software is illegally used, the use of the software is permitted by the input / transmission of the new product ID by the client PC 520, so that it is not necessary to perform the installation again, and the processing Can continue.

  In the above description, the license is granted (invalidity check information is transmitted) at the start of software installation. However, the software is generated when the software is started on the client PC 520 or using the software according to the software specifications. A configuration may be adopted in which a license is used when saving the data. According to the latter configuration, if the server 540 determines unauthorized use, the use of software is not permitted, and as a result, generated data is wasted, so that unauthorized use can be more effectively suppressed.

  In the above description, the server 540 receives fraud check information including the product ID and the identification information, and identifies the fraudulent use of the software by comparing the fraud check information with the fraud management file. You may make it discriminate | determine unauthorized use only by project ID. That is, in this case, the server 540 determines unauthorized use depending on whether or not the value of the product ID is valid.

  As described above, the present invention has been described in the first to third embodiments. However, it is also possible to provide the function of each unit (each unit) in the systems 10 and 510 shown in the above example as a program. It is also possible to provide the program stored in a storage medium (not shown). As a recording medium, a CD-ROM, a flash ROM, a memory card (compact flash (registered trademark), smart media, memory stick, etc.), a compact disk, a magneto-optical disk, a digital versatile disk, a flexible disk, and a hard disk may be used. it can.

  In addition, the system configuration and processing steps can be appropriately changed without departing from the gist of the present invention, regardless of the above-described embodiments.

It is a system configuration figure of the financial accounting system concerning a 1st embodiment. It is a functional block diagram of a financial accounting system. It is a figure which shows an example of a fraud management file and fraud check information. It is a flowchart which shows the unauthorized use prevention process in center PC. It is a flowchart following FIG. It is a figure which shows an example of the message box displayed on center PC. It is a flowchart which shows the unauthorized use prevention process which concerns on 2nd Embodiment. FIG. 8 is a diagram showing a subroutine (<Process A>) of FIG. 7. It is a figure which shows the subroutine (<< process B >>) of FIG. FIG. 8 is a diagram showing a subroutine (<Process C>) of FIG. 7. It is a figure which shows an example of a fraud management file and fraud check information, and << Process B >> and << Process C >>. It is a figure which shows an example of a fraud management file and fraud check information, and << process A >>. It is a figure which shows an example of the message box which concerns on 2nd Embodiment. It is a system configuration figure of the network system concerning a 3rd embodiment.

Explanation of symbols

10 Financial accounting system 20 Client PC
40 center PC 51 file area 210 storage means 220 input means 230 data generation means 240 fraud check information addition means 250 output means 410 storage means 420 capture means 430 discrimination processing means 440 discrimination means 450 determination processing means 510 network system 520 client PC
540 Server 560 Network B Message box M Recording medium S0 Financial accounting software S1 Self-supporting software

Claims (7)

A client PC with software that requires a license,
In a network system comprising a center PC that captures and processes the generated data generated by the client PC,
The client PC
Storage means for storing the software;
Input means for inputting data,
Data generating means for generating the generated data using the software based on data input by the input means;
Fraud check information adding means for adding fraud check information including a product ID of the software to the generated data;
Output means for outputting the generated data with the fraud check information added thereto,
The center PC is
Capture means for capturing the generated data output by the output means;
At the start of fetching of the generated data by the fetching means, the illegal use of the software is determined based on the fraud check information added to the generated data, and the use of the software is permitted according to the determination result A network system, comprising: a discrimination processing means for performing.   If the determination processing unit determines that the software is illegally used, the determination processing unit interrupts the generation data generation by the acquisition unit, and determines that the software is normally used, the use of the software is determined. 2. The network system according to claim 1, wherein permission is given and the fetching of the generated data by the fetching unit is continued. The fraud check information includes a product ID of the software and identification information having uniqueness for specifying the client PC,
The center PC is
A storage unit for storing a fraud management file for associating and registering the product ID and the identification information included in the fraud check information;
The discrimination processing means includes
The fraud check information added to the generated data is compared with the fraud management file, and whether or not a record with the same product ID as the product ID included in the fraud check information exists in the fraud management file. First discriminating means for discriminating
A second discriminating unit for discriminating whether or not the identification information of the record matches the identification information included in the fraud check information when there is a record of the same product ID in the fraud management file;
A first determination processing means for determining normal use when records of the same product ID exist and the identification information matches;
A second determination processing means for determining unauthorized use when records having the same product ID exist and the identification information does not match;
3. A third determination processing unit which determines that the record is the normal use when there is no record having the same product ID and further registers the fraud check information in the fraud management file. The network system described.   4. The network according to claim 1, wherein the output unit outputs the generated data to which the fraud check information is added by data transmission through a network or storage in a recording medium. system.   The program for functioning a computer as each means of the client PC or center PC in the network system of any one of Claims 1 thru | or 4. A client PC with software that requires a license,
A method of determining unauthorized use of software in a network system comprising: a center PC that captures and processes generated data generated by the client PC,
The client PC is
Adding fraud check information including a product ID of the software to the generated data generated using the software;
Outputting the generated data with the fraud check information added thereto,
The center PC is
Determining the unauthorized use of the software, at the start of fetching the generated generated data, determining the unauthorized use of the software based on the fraud check information added to the generated data Method. Each step in the unauthorized use determination method for software according to claim 6,
A step of interrupting the import of the generated data when it is determined from the determination result of the unauthorized use that the software is illegally used;
If it is determined that the software is normally used from the determination result of the unauthorized use, the software unauthorized operation is further performed, the step of permitting the use of the software and continuing the fetching of the generated data. Use prevention method.

Images