JP2006330818A - Leakage source work investigation system and leakage source work investigation method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a leakage source work investigation system and a leakage source work investigation method that can easily specify the work that has caused a leakage from the leaked character string. <P>SOLUTION: This system comprises an input device for inputting a character string, a storage device for storing a private information file in which the name of private information which is the expression form of the item name of the private information is described while being associated with a legitimate expression of the private information name which is the legitimate expression matching the expression form of the content of the private information, and a work file in which a work name which is the name of a work is described while being associated with the private information name used in the work, the first search part that refers to the private information file, searches the legitimate expression of the private information name that a character string inputted by the input device matches, and extracts the private information name corresponding to the matching legitimate expression of the private information name, and the second search part that refers to the work file, extracts the work name corresponding to the private information name extracted by the first search part, and outputs it to an output device. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to a leakage source business identification system and a leakage source business identification method for identifying a leakage source of information.

  In a personal information management system that manages personal information, personal information may be managed by storing the personal information in association with business names related to the individual. When personal information is leaked in such a personal information management system, it is desirable to identify the work that caused the leak as soon as possible.

  In such a system, the representation form of personal information often differs depending on the business. For example, in one job, “name” is used as the item name of personal information and the content is expressed in “kanji”, but in another job, the item name is “NAME” and the content is expressed in “English capital letters”. There are various forms of expression of personal information such as expression. Even if personal information has the same meaning, the type and length of characters, numbers, symbols, and the like used for expression may differ depending on the business. In other words, there are almost countless combinations that can be expressed even with personal information having the same meaning.

  When personal information data is leaked from the personal information management system as described above, if a character string indicating the content of the leaked personal information is found, the business that is the source of the leakage is identified from the character string. . However, in a personal information management system that handles a large number of tasks, it is difficult to specify which task the character string is used for. Furthermore, as described above, since there are almost a myriad of forms of expression of personal information, it is difficult even to specify the type (item name) of personal information indicated by the character string.

  Therefore, it is desired to provide a technique for easily identifying the work causing the leakage from the character string of the leaked personal information. Furthermore, it is desired to provide a technique for easily specifying the type (item name) of personal information indicated by the character string from the leaked character information character string.

  In relation to the above, Patent Document 1 is an information processing apparatus that executes decryption and reproduction control of encrypted data stored in an information recording medium, and executes decryption processing of the encrypted data stored in the information recording medium Encryption processing means, and playback control means for executing playback control processing of the content decrypted by the encryption processing means, wherein the encryption processing means performs decryption processing of the encrypted content stored in the information recording medium. The encryption set by corresponding to the entity of the information recording medium manufacturing route stored in the information recording medium by applying the encryption key information stored in the information recording medium while generating decrypted content by executing The first entity code is calculated by executing the decryption process of the encrypted entity code, and the second entity code stored in the decrypted content is calculated. Performs matching processing with de, when collating is not satisfied, it discloses an information processing apparatus, characterized by having a configuration for executing the stop processing of the content reproduction.

  Further, in relation to the above, Patent Document 2 describes a text input means for inputting text, a pattern processing means for matching a character string by a regular expression, and a regular expression consisting of a character string that can be a constituent element of a keyword. Using the pattern storage means having at least the keyword constituent element pattern and the pattern processing means, the character string in the text and the keyword constituent element pattern are matched, and the text matches the keyword constituent element pattern. Keyword component extraction means for extracting character strings that do not overlap with each other as keyword components, keyword candidate set generation means for generating a keyword candidate set from each keyword component, and keyword candidates in the keyword candidate set as keywords As out Keyword extracting device, characterized in that with the keyword output means, for disclose.

  Further, in relation to the above, Patent Document 3 discloses that a regular expression search means in which a program having a search function is a function of an operating system using a character string and a regular expression as parameters, activates a regular expression search preparation means, A regular expression analysis means and a regular expression conversion means generate a regular internal expression, and then a regular internal expression search means is started, and a character string search control method for performing a character string search by the regular internal expression interpretation means and the character string search means, Is disclosed.

  Further, in relation to the above, Japanese Patent Laid-Open No. 2004-228561 expresses a developed character string similar to the character string of the question with respect to the question in the character string format input from the user, which is a key for database search. In obtaining the result in accordance with a similarity criterion prepared in advance, the similarity criterion includes one or more similar character tables in which characters having a similar relationship in terms of the character string of one or two character strings are recorded; The character string at each position of the expanded character string is composed of a set of one or more regular expressions representing a pattern of a derived type column that is a symbol indicating how to derive from the character string of the question, and based on this similarity criterion, For each character position of the expanded character string for the question, a set of derived elements that are a pair with a derived type list of one or more derived types used for derivation of the character, and a regular expression that is the basis of the automaton Find a set Then, based on the set of regular expressions, a finite state automaton having a derivation type representing a permitted combination of the derived elements as a transition condition at each character position of the expanded character string is obtained, and the set of the derived elements and the finite state are obtained. A similar character string expansion method is disclosed that outputs a set of state automata as a result of expansion of the question.

However, the above-mentioned document has no description regarding a method for easily specifying the type of leaked personal information from the character string of leaked personal information. In addition, there is no mention of how to identify the work that caused the leak.
JP 2004-342246 A JP-A-2005-63470 JP-A-5-94476 JP-A-8-339378

  That is, an object of the present invention is to provide a leakage source business investigation system and a leakage source business investigation method that easily identify a business that has caused a leakage from a leaked character string.

  Another object of the present invention is to provide a leakage source business investigation system and a leakage source business investigation method that easily specify the type of personal information indicated by a character string from the leaked character string.

  Hereinafter, means for solving the problem will be described using the numbers and symbols used in the [Embodiments of the Invention]. These numbers and symbols are added to clarify the correspondence between the description of [Claims] and the description of the [Embodiments of the Invention]. However, the added numbers and symbols should not be used for the interpretation of the technical scope of the invention described in [Claims].

The leakage source business investigation system (1) according to the present invention is:
An input device (2) for inputting a character string;
A personal information file (3) in which a personal information name that is an expression form of an item name of personal information is described in association with a personal information name regular expression that is a regular expression that matches the expression form of the content of the personal information; A storage device (5) that stores a business file (4) in which a business name corresponding to the personal information name used in the business is described.
The personal information name regular expression matching the character string input by the input device (2) is searched with reference to the personal information file (3), and the personal information name corresponding to the matched personal information name regular expression is searched. A first search unit (6) for extracting
A second search unit (8) that refers to the business file (4), extracts the business name corresponding to the personal information name extracted by the first search unit (6), and outputs it to the output device (7). When,
Is provided.
As described above, when a character string indicating the content of leaked personal information is input by associating a personal information name with a personal information name regular expression, a personal information name regular expression that matches the character string is detected. The personal information name corresponding to this is extracted. By associating the business name with the personal information name, the business name that handles the extracted personal information name is extracted and output. Therefore, just by inputting the leaked character string, the business name that is the source of the leak is output. That is, it is possible to easily identify the business that is the source of the leak from the character string of the leaked personal information.

In the leakage source business investigation system (1) according to the present invention,
The storage device (5) stores a personal information sequence file (9) describing the personal information name extracted by the first search unit (6),
The first search unit (6) stores the extracted personal information name in the personal information array file (9),
The second search unit (8) refers to the business file (4) and searches for the business name corresponding to the personal information name stored in the personal information array file (9).
As described above, when a character string indicating the content of leaked personal information is input by associating a personal information name with a personal information name regular expression, a personal information name regular expression that matches the character string is detected. The personal information name corresponding to this is extracted. By associating the business name with the personal information name, the business name that handles the extracted personal information name is extracted and output. Therefore, just by inputting a character string indicating the content of personal information leaked by the user, the business name that is the source of the leak is output. That is, it is possible to easily identify the business that is the source of the leakage from the leaked personal information.

In the leakage source business investigation system (1) according to the present invention,
The storage device (5) stores a business name count file (10) in which the business name is described in association with a number indicating the number of times extracted by the second search unit (8).
When the business name is extracted, the second search unit refers to the business name count file (10) and changes the number N corresponding to the extracted business name to N + 1.
There is not always one personal information name regular expression that matches the input character string. When a certain character string is input, a plurality of personal information name regular expressions are detected, and personal information names corresponding to the respective regular information names may be extracted. In this case, since a plurality of personal information names are extracted, there are a plurality of business names that are extracted and output. The business name of the business that is the leakage source is one of the extracted business names. According to the above-described configuration, the business name count file (10) associates the business name with the number of times of extraction. Accordingly, when a plurality of leaked personal information character strings are input, the business name is output in association with the number of times of extraction. Therefore, it is possible to specify the leaked work more accurately.

In the leakage source business investigation system (1) according to the present invention,
The second search unit (8) sorts the business name count file (10) in descending order of the numbers, and outputs the correspondence between the sorted business names and the numbers to the output device (7).
By sorting and outputting the business names in descending order of the number of times the business names are extracted, it is possible to immediately know the business name having the highest number of extracted business names. Therefore, the leaked business can be easily identified.

The leakage source business investigation system (1) according to the present invention is:
Furthermore,
A character string input count counter (11) for storing the number of times a character string is input from the input device (2);
Referring to the business name count file (10), retrieves the number that matches the number stored in the character string input number count unit (11), and outputs the business name corresponding to the retrieved number A third search unit (12) to output to (7);
Is provided.
In the above-described leakage source business investigation system, when a single character string indicating the content of leaked personal information is input, the business name that has become the leakage source is always extracted. Thereby, in the business name count file (10), the business name of the business that has become the leakage source is always counted once. Therefore, multiple character strings indicating the contents of the leaked personal information are identified, and when multiple character strings are input, the number of times the character string is input and the business name that is the source of the leakage are extracted. The number of times matches. As described above, by outputting a business name whose number of extractions matches the number of times a character string has been input, business names that do not match can be excluded. That is, since the business name extracted as noise can be excluded, the business that caused the leakage can be identified more easily.

In the leakage source business investigation system (1) according to the present invention,
The personal information name regular expression expresses the expression form of the contents of the personal information by including at least one character group including a character type and a number of consecutive character types as a set.
By describing the personal information name regular expression as described above, the number of business names extracted as noise is reduced for the input character string, and the business name of the business that is definitely the source of the leak Is output.

In the leakage source business investigation system (1) according to the present invention,
The first search unit (6) matches the matched personal information name regular expression by a complete match that matches the entire input character string or a partial match that matches a part of the input character string. And the personal information name is stored in the personal information array file (9) in association with information on whether partial matching or complete matching is performed,
In the business name count file (10), the business name is stored in association with the partial match count that is the number of times of matching by partial match and the complete match count that is the number of times of matching by complete match,
When the business name is extracted from the business file (4), the second search unit (8) counts up the number of partial matches or the number of complete matches corresponding to the extracted business name.
By determining whether it is a complete match or a partial match, it is possible to more accurately identify a business that is a leakage source.

In the leakage source business investigation system (1) according to the present invention,
The second search unit (8) sorts the business name count file (10) in descending order of the number of complete matches, and outputs the correspondence between the sorted business names and the number of complete matches to the output device (7). To do.

The leakage source business investigation method according to the present invention is:
A step (step S10) in which the character string is input to the computer by the input device (2);
Refer to the personal information file (3) in which the arithmetic processing unit describes the personal information name, which is a character string indicating personal information, in association with the personal information name regular expression, which is a regular expression that matches the personal information name. Searching for the personal information name regular expression that matches the character string input from the input device (2) (step S20);
A step (step S30) in which the arithmetic processing unit extracts the personal information name corresponding to the searched personal information name regular expression;
The arithmetic processing device refers to the business file (4) in which the business name, which is the name of the business, is associated with the personal information name of the personal information handled in the business, and the extracted personal information name and A business name search step (step S50) for searching for the corresponding business name;
An output step (step S80) in which the arithmetic processing device outputs the searched business name to the output device (7);
Is provided.

The leakage source business investigation method according to the present invention is:
Furthermore,
The arithmetic processing unit stores the extracted personal information name in the personal information array file (9) stored in the storage device (5) (step S40);
With
In the business name search step (step S50), the arithmetic processing unit searches the business name corresponding to the personal information name stored in the personal information array file (9) with reference to the business name file (4). To do.

The leakage source business investigation method according to the present invention is:
Furthermore,
The arithmetic processing unit refers to the business name count file (10) described with the business name associated with the number, and counts up the number corresponding to the retrieved business name (step S60).
Is provided.

The leakage source business investigation method according to the present invention is:
Furthermore,
The arithmetic processing unit sorts the business name count file (10) in descending numerical order (step S70);
A step (step S80) in which the arithmetic processing unit outputs the correspondence between the sorted business names and the numbers to the output unit (7);
Is provided.

The leakage source business investigation method according to the present invention is:
Furthermore,
The arithmetic processing unit counts the number of times the character string is input from the input device (2), and stores it in the character string input number counting unit (11) for storing the number of times (step S11);
The arithmetic processing unit refers to the business name count file (10) and searches for the number that matches the number stored in the character string input number count unit (11) (step S71);
With
In the output step (step S80), the arithmetic processing device outputs the business name corresponding to the searched number to the output device (7).

In the leakage source business investigation method according to the present invention,
The personal information name regular expression expresses the personal information name using a group of characters composed of at least one character and the number of consecutive characters included in the character group.

The leakage source business investigation method according to the present invention is:
Furthermore,
A step (step S21) in which the arithmetic processing unit determines whether the matched personal information name regular expression is matched by perfect match or partial match;
The arithmetic processing unit associates the personal information name corresponding to the matched personal information name regular expression with information indicating whether the matching is a partial match or a complete match, and stores it in the personal information array file (9). A storing step (step S41);
When the arithmetic processing unit extracts the business name from the business file (4), the step of counting up the number of partial matches or the number of complete matches corresponding to the extracted business name (step S62);
Is provided.

The leakage source business investigation method according to the present invention is:
Furthermore,
The arithmetic processing unit sorts the business name count file (10) in descending order of the number of complete matches (step S72);
With
In the output step (step S80), the arithmetic processing unit outputs the correspondence between the sorted business name and the number of complete matches to the output unit (7).

  According to the present invention, there are provided a leakage source business investigation system and a leakage source business investigation method that easily identify a business that has caused a leakage from a leaked character string.

  Furthermore, according to the present invention, there is provided a leakage source business investigation system and a leakage source business investigation method for easily specifying the type of personal information indicated by a character string from the leaked character string.

(First embodiment)
Hereinafter, a first embodiment according to the present invention will be described in detail with reference to the drawings.

(Constitution)
FIG. 1 is a diagram showing an overall configuration of a leakage source business investigation system according to the present embodiment. The leakage source business investigation system 1 according to the present embodiment includes an input device 2 exemplified by a keyboard and a mouse, a storage device 5 exemplified by a hard disk and a memory, a data processing device 13 including a CPU and a memory storing a program, And an output device 7 exemplified by a display. The storage device 5 stores a personal information file 3, a personal information array file 9, a business name file 4, and a business name count file 10. The data processing device 13 includes a first search unit 6 and a second search unit 8 as programs, and these functions are realized by accessing the storage device 5 by the CPU.

  FIG. 5 is a diagram illustrating the contents described in the personal information file 3. The personal information file is a personal information name regular expression that is a regular expression that matches a personal information name indicating an item name expression form of personal information, for example, “ID”, “NAME”, with an expression form of the content of the personal information It is described in association with. Personal information name regular expression is a regular expression that expresses the contents of the personal information using a group of at least one character and a consecutive number of characters selected from the group of characters. Preferably there is. In the present embodiment, in the personal information indicating the personal identification number, the personal information name is “ID”, and the expression form of the content of the personal information is “3 lowercase alphabetic characters” and “5 numeric characters”. In this case, the regular expression [az] {3} [0-9] {5} is described in association with “ID” as a personal information name regular expression. That is, a group of characters is written as [a-z] and [0-9], and the number of consecutive characters selected from each group of characters is expressed as {3} and {5}.

  FIG. 6 is a diagram illustrating the contents described in the business name file 4. The business name file 4 describes the business name, which is the name of the business, in association with the personal information name handled by the business. As illustrated in FIG. 6, by associating the business name “service A” with the personal information name “ID”, it is indicated that “service A” handles personal information with the item name “ID”. . In the example illustrated in FIG. 6, “service A” indicates that “NAME” is handled in addition to “ID”.

  FIG. 7 illustrates the contents described in the business name count file. The business name count file stores a plurality of business names in association with numbers.

  When one word is input from the input device 2, the first search unit 6 refers to the personal information file 3 and detects a personal information name regular expression that matches the input character string. A function for extracting a personal information name corresponding to the personal information name regular expression is realized. More specifically, when the character string is input from the input device 2, the first search unit 6 acquires personal information data that is a set of a personal information name and a personal information name regular expression from the personal information file 3. Is realized. The first search unit 6 further realizes a function of dividing the acquired personal information data into a personal information name and a personal information name regular expression. The first search unit 6 further performs matching (matching processing) between the divided personal information name regular expression and the input character string, and whether or not the input character string matches the personal information name regular expression. Realize the function to determine whether. The first search unit 6 further realizes a function of storing the personal information name corresponding to the personal information name regular expression in the personal information array file 9 when matching is performed as a result of the matching process. The first search unit 6 performs these processes on all personal information data stored in the personal information file 3, and stores all personal information names corresponding to the matched personal information name regular expressions in the personal information array file 9. Realize the function to store.

  The second search unit 8 refers to the business name file 4 and extracts a business name corresponding to each personal information name stored in the personal information array file 9 and outputs it to the output device. Realize. Further, the second search unit 8 implements a function of accessing the business name count file 10 and counting up the number N corresponding to the extracted business name to N + 1. Further, the second search unit 8 realizes a function of sorting the business names stored in the business name count file 10 in the descending order of the numbers and outputting the relationship between the sorted business names and the numbers to the output device 7. .

(Operation)
Subsequently, an operation method of the leakage source business investigation method according to the present embodiment will be described in detail.

  FIG. 2 is a flowchart showing the operation of the leakage source business investigation method according to the present embodiment. The leakage source business investigation method according to the present embodiment includes a step of inputting a character string (step S10), a step of detecting a personal information name regular expression (step S20), a step of extracting a personal information name (step S30), The step of storing the personal information name in the personal information array file (step S40), the step of searching for the business name (step S50), the step of counting up the number corresponding to the business name (step S60), and the step of sorting (step S70) ) And an output step (step S80). Each operation will be described in detail below.

(Step S10)
In step S <b> 10, first, a character string indicating the content of the leaked personal information is input from the input device 2 to the data processing device 13. Here, as an example, it is assumed that the character string “abc12345” is input.

(Step S20)
Subsequently, in step S20, the first search unit 6 refers to the personal information file 3 and acquires one of a plurality of personal information data stored in the personal information file 3, and the personal information name and personal information are acquired. Split into regular expressions. In the present embodiment, “ID” “[az] {3} [0-9] {5}”, which is personal information data, is “ID”, which is a personal information name, and “[ az] {3} [0-9] {5} ". Further, the first search unit 6 determines whether or not the character string input to the divided personal information regular expression “[az] {3} [0-9] {5}” matches. In this embodiment, the first search unit 6 determines that the input character string “abc12345” matches the personal information regular expression “[az] {3} [0-9] {5}”. .

(Step S30)
If the input character string matches the personal information name regular expression, in step S30, the first search unit 6 acquires a personal information name corresponding to the matched personal information regular expression.

(Step S40)
Further, the first search unit 6 stores the acquired personal information name in the personal information array file 9.
In the present embodiment, “ID” is stored in the personal information array file 9 as a personal information name.

The first search unit 6 executes the processes of steps S20 to S40 for each of all personal information data stored in the personal information file 3, and selects all personal information names corresponding to all matched personal information name regular expressions. Store in the personal information array file 9. When the search is completed for all personal information data, the output device 7 is notified that the search for the input character string has ended, and another character string is input following the user, or the character string Prompts the user to decide whether or not to end the input. If the following string is entered,
Returning to step S10, the processing of steps S10 to S40 is repeated for another character string. On the other hand, if it is determined that the input of the character string has been completed, the process proceeds to the next step S50.

(Step S50)
Subsequently, in step S50, the second search unit 8 refers to the business name file 4 and extracts a business name corresponding to one of the personal information names stored in the personal information array file 9. For example, when the process of S50 is performed on “ID” stored in the personal information array file 9, the business name corresponding to “ID” in the business name file illustrated in FIG. 6 is “service A”. , “Service A” is extracted by the second search unit 8.

(Step S60)
The second search unit 8 refers to the business name count file 10 in step S60, and counts up the number N corresponding to the business name extracted in step S50 to N + 1. Here, the number N is set to zero in the initial state. The second search unit 8 performs the processes of steps S50 and S60 for all the personal information names stored in the personal information array file 9. That is, if there is a personal information name stored in the personal information array file 9 that has not yet undergone the processing of steps S50 and S60, the process returns to step S50, and the personal information name from which the corresponding business name has not been extracted. The processing of S50 and S60 is performed. On the other hand, when the processes of step S50 and step S60 are completed for all personal information names stored in the personal information array file 9, the process proceeds to step S70.

(Step S70)
In step S70, the second search unit 8 sorts the relationship between business names and numbers described in the business name count file 10 in descending order of numbers. Further, the second search unit 8 outputs the relationship between the sorted business names and numbers to the output device 7. This completes a series of operations. FIG. 7 illustrates the relationship between the output business name and the number. In this example, “service A” is extracted three times and “service B” is extracted once to notify the user.

(Action / Effect)
In the present embodiment, a personal information file 3 in which a personal information name is associated with a regular expression in the form of content of personal information in advance is created, and the personal information file 3 is referenced from the leaked character string. In order to retrieve the personal information name, it is possible to determine what personal information name the leaked character string belongs to.

  Furthermore, according to the present embodiment, a business name file 4 in which a business name is associated with a personal information name handled in the business is created in advance, and the business name is determined from the personal information name of the leaked character string. be able to.

  Furthermore, in the business name count file 10, the business name and the number of times the business name is extracted are described in association with each other. Therefore, when a plurality of character strings are input, the user can count how many times each business name is You can know if it was extracted. Users can know the business name of a business that may be a leak source and the number of times that business name was extracted by simply inputting at least one character string that is known to be leaked personal information. it can. For example, when the user inputs a character string leaked three times, “ID”, “date of birth”, and “NAME”, which are personal information names, are extracted from each of the character strings. Furthermore, “Service A” is handled three times from those personal information names, ie, “ID”, “Birth date”, and “NAME”, and “Service B” is once, for example, “Birth date” Suppose that it is extracted. In this case, since the number of extractions of “service A” is larger than that of “service B”, the user can easily identify the leakage source job as having a high suspicion of being the leakage source job.

(Second Embodiment)
A second embodiment of the present invention will be described below with reference to the drawings.

(Constitution)
FIG. 8 shows the configuration of the leakage source business investigation system 1 according to the present embodiment. The configuration of the leakage source business investigation system 1 according to the present embodiment is a configuration in which a third search unit 12 and a character string input count unit 11 are added to the configuration according to the first embodiment.

  The character string input count unit 11 is provided in the storage device 5. The character string input count unit 11 stores numbers.

  In addition to the function in the first embodiment, the first search unit 6 in the present embodiment, when a character string of one word is input from the input device 2 to the data processing device 13, the character string input count counter 11 To realize the function of counting up the stored number N to N + 1.

  The third search unit 12 implements a function of accessing the business name count file 10 and searching for a number that matches the number stored in the character string input frequency count unit 11. Further, the third search unit 12 realizes a function of extracting a business name corresponding to the matched number and outputting it to the output device 7.

  Since functions other than the first search unit 6, the character string input count unit 11, and the third search unit 12 are the same as those in the first embodiment, the description thereof is omitted.

(Operation)
FIG. 3 is a flowchart showing an operation flow of the leakage source business investigation method according to the present embodiment. In the leakage source work investigation method according to the present embodiment, a step of inputting a character string (step S10), a step of storing the number of times of inputting a character string (step S11), and a step of searching for a personal information name regular expression (step S20) ), A step of extracting the personal information name (step S30), a step of storing the personal information name in the personal information array file (step S40), a step of searching for the business name (step S40), and a step of counting up the business name ( Step S60), a step of searching for a number that matches the number of times of input (Step S71), and an output step (Step S80).

  In the leakage source business investigation method according to the present embodiment, steps S10, S20, S30, S40, S50, and S60 are the same as the leakage source business investigation method according to the first embodiment, and thus description thereof is omitted.

(Step S11)
In step S <b> 10, when a character string is input from the input device 2 to the data processing device 13, the first search unit 6 accesses the character string input count counter 11 and is stored in the character string input count counter 11. The number N is counted up to N + 1. The number stored in the character string input count unit 11 is zero at the initial stage. In other words, the number stored in the character string input count counter 11 indicates the number of times the character string has been input.

(Step S71)
In step S60, business names are searched for all the personal information names stored in the personal information array file 9, and when counting up the numbers corresponding to the business names is completed, the third search unit 3 executes the business in step S71. With reference to the name count file 10, a number that matches the number stored in the character string input number counting unit 11 is searched. Further, the third search unit 3 extracts a business name corresponding to the matched number.

(Step S80)
When the business name is extracted in step S71, the third search unit 3 outputs the business name to the output device as the business name that is suspected of the business that has become the leakage source.
Thus, a series of operations in the present embodiment is completed.

(Action / Effect)
According to the leakage source business investigation system in the present embodiment, in addition to the operations and effects according to the first embodiment, the third search unit 12 uses the business name extracted by the number of times the character string is input. , Output as a candidate for the source of the leak. Therefore, in order to further narrow down the business names output in the first embodiment and output a business that is highly likely to be a leakage source, it is possible to more easily identify the business of the leakage source.

(Third embodiment)
A third embodiment of the present invention will be described below.

(Constitution)
The configuration of the leakage source business investigation system 1 according to the present embodiment is the same as the configuration according to the first embodiment. The function of the first search unit 6, the content stored in the personal information array file 9, the second search unit 8 This is the same as the first embodiment except that the function and the contents stored in the business name count file 10 are different. Descriptions other than the first search unit 6, the personal information array file 9, the second search unit 8, and the business name count file 10 are omitted.

  The first search unit 6 implements the following functions in addition to the functions in the first embodiment. That is, the first search unit 6 realizes a function of determining whether the matched personal information name regular expression matches a part of the input character string or the entire character string. Furthermore, the first search unit 6 realizes a function of storing the extracted personal information name in the personal information array file 9 in association with a flag indicating whether the matching is partial matching or complete matching.

  The personal information array file 9 stores the personal information name extracted by the first search unit 6 in association with a flag indicating whether matching is based on partial matching or matching based on complete matching.

  The business name count file 10 stores business names in association with the number of extractions, the number of extractions by partial matching, and the number of extractions by complete matching.

  The second search unit 8 realizes the following functions in addition to the functions in the first embodiment. That is, after the business name is acquired from the business name file 4, the second search unit 8 stores the business name in the business name count file 10 when the business name is acquired from the personal information name extracted by the complete match. Realizes a function that counts up the number of complete matches corresponding to the business name and counts up the number of partial matches if it is due to partial match

(Operation)
FIG. 4 is a flowchart showing a flow of operation of the leakage source business investigation method according to the present embodiment. The leakage source business investigation method according to the present embodiment includes a step of inputting a character string (step S10), a step of searching for a personal information name regular expression (step S20), and a step of determining whether it is a complete match or a partial match ( Step S21), Step for extracting personal information name (Step S30), Step for storing personal information name in personal information array file (Step S41), Step for retrieving business name (Step S50), Number of complete matches of business name Alternatively, the method includes a step of counting up the number of partial matches (step S62), a step of sorting the number of complete matches in descending order (step S72), and a step of outputting (step S80).

  In the leakage source business investigation method according to the present embodiment, steps S10, S20, S30, and S50 are the same as the leakage source business investigation method according to the first embodiment, and thus description thereof is omitted.

(Step S21)
In step S20, when the personal information name regular expression matches the input character string, the first search unit 6 performs the matching, and the personal information name regular expression matches the part of the input character string. Judgment is made as to whether it is a match or a complete match that matches all of the input character strings. For example, if the input character string is the character string “IDabc12345”, “IDabc12345” is a complete name for the personal information name regular expression [az] {3} [0-9] {5}. Although it is not a match, in order to partially match the “abc12345” portion, the corresponding personal information name is stored in the personal information array file together with a partial match flag.

(Step S41)
The first search unit 6 stores the personal information name extracted in step S30 in the personal information name array file 9 in association with a flag indicating whether the personal information name is extracted by partial matching or extracted by complete matching.

(Step S62)
When the business name is searched in step S50, the business name count file 10 is accessed, and the first search unit 6 uses the flag stored in the personal information array file 9 to extract the business name. The number N indicating the corresponding number of complete matches or partial matches is counted up to N + 1.

(Step S72)
When the processing of steps S50 and S62 is completed for all personal information names stored in the personal information array file 9, the third search unit 12 stores the business name count file 10 as shown in FIG. The correspondence between the business name and the number of complete matches and the number of partial matches is sorted in descending order of the number of complete matches.

(Step S80)
The third search unit 12 outputs the correspondences sorted in step S71 to the output device and notifies the user. This completes a series of processing.

(Action / Effect)
In addition to the operations and effects of the first embodiment, the leakage source business investigation system according to the present embodiment determines whether the first search unit is a matching by partial matching or matching by complete matching. Therefore, even when the character string input by the user includes extra information in addition to the contents of the leaked personal information, the work causing the leak can be extracted and specified. That is, it is possible to specify the business that is the leakage source with higher accuracy.

It is a lineblock diagram of the leak source business investigation system concerning a 1st embodiment. It is a flowchart which shows the flow of operation | movement in 1st Embodiment. It is a flowchart which shows the flow of operation | movement in 2nd Embodiment. It is a flowchart which shows the flow of operation | movement in 3rd Embodiment. It is the conceptual diagram which illustrated the content of the personal information file. It is the conceptual diagram which illustrated the content of the business name file. It is the conceptual diagram which illustrated the content of the business name count file in 1st Embodiment. It is a block diagram of the leak source business investigation system which concerns on 2nd Embodiment. It is the conceptual diagram which illustrated the content of the work name count file in 3rd Embodiment.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Leakage source business investigation system 2 Input device 3 Personal information file 4 Business name file 5 Storage device 6 1st search part 7 Output device 8 2nd search part 9 Personal information name arrangement file 10 Business name count file 11 Counting the number of times of character string input Unit 12 third search unit 13 data processing device

Claims (16)

An input device for inputting a character string;
A personal information file that describes a personal information name that is an expression form of an item name of personal information in association with a personal information name regular expression that is a regular expression that matches the expression form of the content of the personal information, and a business name A storage device storing a business file in which a business name is described in association with the personal information name used in the business;
The personal information file is searched for the personal information name regular expression that matches the character string input by the input device with reference to the personal information file, and the personal information name corresponding to the matched personal information name regular expression is extracted. 1 search part,
A second search unit that refers to the business file, extracts the business name corresponding to the personal information name extracted by the first search unit, and outputs the business name to an output device;
Leakage source business investigation system equipped with. The leakage source business investigation system according to claim 1,
The storage device stores a personal information array file describing the personal information name extracted by the first search unit,
The first search unit stores the extracted personal information name in the personal information array file;
The second search unit refers to the business file, and the leakage source business investigation system searches the business name corresponding to the personal information name stored in the personal information array file. A leakage source business investigation system according to claim 2,
The storage device stores a business name count file in which the business name is described in association with a number indicating the number of times extracted by the second search unit;
When the business name is extracted, the second search unit refers to the business name count file and changes the number N corresponding to the extracted business name to N + 1. A leakage source business investigation system according to claim 3,
The second search unit sorts the business name count file in descending order of the numbers, and outputs a correspondence relationship between the sorted business names and the numbers to an output device. The leakage source business investigation system according to claim 3 or 4,
Furthermore,
A character string input number counting unit for storing the number of times a character string is input from the input device;
Referencing the business name count file, searching for the number that matches the number of times stored in the character string input frequency count unit, and outputting the business name corresponding to the searched number to an output device 3 search units,
Leakage source business investigation system equipped with. The leakage source business investigation system according to any one of claims 1 to 5,
The personal information name regular expression is a leakage source business that expresses the personal information name by using a group of at least one character and a number of consecutive characters included in the character group. Survey system. The leakage source business investigation system according to any one of claims 1 to 6,
The first search unit determines whether the matched personal information name regular expression is matched by complete match or partial match, and the personal information name is matched by partial match or by complete match It is stored in the personal information array file in association with information on whether it is matching,
In the business name count file, the business name is stored in association with a partial match count that is the number of times of matching by partial match and a complete match count that is the number of times of matching by complete match,
When the business name is extracted from the business file, the second search unit counts up the partial match count or the complete match count corresponding to the extracted business name. The leakage source business investigation system according to claim 7,
The second search unit sorts the business name count file in descending order of the complete match count, and outputs a correspondence relationship between the sorted business name and the complete match count to an output device. A step of inputting a character string to a computer by an input device;
A personal information file in which an arithmetic processing unit describes a personal information name that is an expression form of an item name of personal information in association with a personal information name regular expression that is a regular expression that matches the expression form of the content of the personal information. Referencing, searching for the personal information name regular expression that matches the character string input from the input device;
The arithmetic processing unit extracting the personal information name corresponding to the searched personal information name regular expression;
The arithmetic processing unit refers to a business file in which a business name that is the name of a business is associated with the personal information name used in the business, and determines the business name corresponding to the extracted personal information name. A business name search step to search;
An output step in which the arithmetic processing device outputs the searched business name to an output device;
Leakage source business investigation method equipped with. The leakage source business investigation method according to claim 9,
Furthermore,
The arithmetic processing unit storing the extracted personal information name in a storage device as a personal information array file;
Comprising
In the business name search step, the arithmetic processing device refers to the business file, and searches for the business name corresponding to the personal information name stored in the personal information file. A leakage source business investigation method according to claim 10,
Furthermore,
Leakage source business investigation method comprising the step of counting up the number corresponding to the retrieved business name with reference to a business name count file in which the arithmetic processing unit describes the business name in association with a number . A leakage source business investigation method according to claim 11,
Furthermore,
The arithmetic processing unit sorting the business name count file in descending order of the numbers;
Comprising
The output step includes
The arithmetic processing unit outputting a correspondence relationship between the sorted business names and the numbers to an output device;
Comprising
Leakage source business investigation method. The leakage source business investigation method according to claim 11 or 12,
Furthermore,
The arithmetic processing unit counts the number of times a character string is input from the input device, and stores it in a character string input number counting unit that stores the number of times.
The arithmetic processing unit refers to the business name count file, and searches for the number that matches the number of times stored in the character string input number count unit;
Comprising
The output step includes
A leakage source job investigation method comprising a step in which the arithmetic processing device outputs the job name corresponding to the searched number to an output device. A leakage source business investigation method according to any one of claims 9 to 13,
The personal information name regular expression is a leakage source business that expresses the personal information name by using a group of at least one character and a number of consecutive characters included in the character group. Survey method. A leakage source business investigation method according to any one of claims 9 to 14,
Furthermore,
The arithmetic processing unit determining whether the matched personal information name regular expression is matched by a complete match or a partial match;
The arithmetic processing unit stores the personal information name corresponding to the matched personal information name regular expression in the personal information array in association with information on partial matching or complete matching. When,
The arithmetic processing unit, when the business name is extracted from the business file, counting up the number of partial matches or complete matches corresponding to the extracted business name;
Leakage source business investigation method equipped with. A leakage source business investigation method according to claim 15,
Furthermore,
The arithmetic processing unit sorting the business name count file in descending order of the exact number of matches;
Comprising
The output step includes
A step of outputting, to an output device, the correspondence between the sorted business names and the number of complete matches;
Leakage source business investigation method comprising.

Images