JP2006343875A - Information processing apparatus and its control method, and computer program and computer readable storage medium - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To switch an operation environment relating to security in accordance with the number of characters of a log-in password to be input in the case of log-in. <P>SOLUTION: User ID and a log-in password whose characters exceed the predetermined number are registered in an information processing apparatus. In the case of log-in, the number of characters of the log-in password input at the time of log-in is stored for deciding whether log-in has been performed by inputting the whole characters of the registered log-in password or by inputting the log-in password configured of the partial predetermined number of characters. After log-in, when a file using the application is stored, the number of characters of the log-in password is decided (S13). When performing log-in with the predetermined number of characters, it is stored as it is (S20). On the other hand, when performing log-in by using the log-in password with more than the predetermined number of characters, dialog display for setting a file password for a file to be stored is executed (S14), and the file is stored with the file password (S19). <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to a technique for managing files in a computer system.

  Usually, various files are stored in a storage device such as a hard disk device of a personal computer (hereinafter simply referred to as a computer). This file includes a file that has a high sensitivity for the user and a file that does not have a high sensitivity. Therefore, when a user saves a highly sensitive file in his / her computer, a password is attached to the file in order to increase the security of the file (see, for example, Patent Document 1).

  Hereinafter, a method of attaching a password to a file created by a user and saving it in a computer on a predetermined application program that has been conventionally performed will be described.

  FIG. 1 is a file save dialog displayed by an application program when a user attempts to save a file created. The general function of this file save dialog is well known and will be described briefly here.

  In the file saving dialog shown in FIG. 1, a password saving check box 1 is provided. When the user wants to attach a password when saving the file, the user checks the save password check box 1. Specifically, a cursor linked to a pointing device such as a mouse is moved to the check box 1 and an operation of pressing a button provided on the pointing device is performed (hereinafter, this operation is simply “click” or “click”. ").

  After that, when the save button is clicked, the password setting dialog shown in FIG. 2 is displayed. There is a password input area 2 in the password setting dialog, and the user inputs a password to be set here. The entered password is usually displayed as “*”, so that it cannot be understood even if it is seen by someone else. When the password has been entered, the user presses the “OK” button 3. Then, this time, the password confirmation dialog shown in FIG. 3 is displayed and the password is required to be input again. This is done for the purpose of confirming the correctness of the input by entering the password again because the password entered in the password input area 2 in the password setting dialog is displayed as “*” and cannot be read by the user himself / herself. . Therefore, the user inputs the password again in the password input area 6 and presses the “OK” button 7.

  As a result, if the password input for the first time matches the password input for confirmation, processing is performed so that the file to be stored cannot be opened unless that password is used, and the file is stored.

If the confidentiality of the file to be saved is not so high and the user does not need to assign a password, the normal save without checking the password save check box 1 in the file save dialog in FIG. Just click the button. In this case, the saving process is performed without being prompted for the password.
JP 2004-164604 A

  In the conventional method described above, when the user wants to save a file with a password, the user needs to check the password saving check box 1 in the first file saving dialog, which takes extra time. End up. Further, if the user forgets to check the password saving check box 1 and performs a file saving operation, there is a problem that a low-security file without a password is saved.

  Also, as shown in FIG. 4, the password saving check box 1 in the file saving dialog of FIG. 1 is not attached, and when the user performs the file saving operation, the password setting dialog of FIG. 2 is always displayed. A way to put out is also possible. In this case, the user who wants to save with a password is freed from the trouble of checking the password saving check box 1 and the file is not saved without the password. However, on the contrary, if you want to save the file without adding a password because the security is not high, the “Cancel” button 4 in the password setting dialog in FIG. 2 or “Password” in the password confirmation dialog in FIG. There is a problem that it becomes necessary to press the “Cancel” button 8 and instruct that the password is not attached to the file.

  The present invention has been made in view of such a problem, and an object of the present invention is to provide a technique for determining the operating environment of a computer in accordance with the number of characters of a password input when logging in.

In order to solve this problem, for example, an information processing apparatus of the present invention has the following configuration. That is,
An information processing apparatus capable of performing processing by allowing a user to input a user ID and a login password,
Storage means for storing the number of characters constituting the character string of the login password entered at the time of login;
And switching means for switching an operating environment related to security after login in accordance with the number of stored characters.

  According to the present invention, the operating environment can be switched according to the number of characters of the login password input at the time of login.

  Hereinafter, embodiments according to the present invention will be described in detail with reference to the accompanying drawings.

<First Embodiment>
First, in the following description, the password includes a password input when logging in to the PC and a password attached to the file. To avoid confusion, the former is called the login password and the latter is called the file password.

  FIG. 5 is a block diagram of a PC in the embodiment. In the figure, 101 is a CPU that controls the entire apparatus, 102 is a ROM storing a BIOS and a boot program, and 103 is a RAM used as a work memory of the CPU 101. Reference numeral 104 denotes a hard disk device (HDD), which includes an OS 104a, various applications 104b, a user ID of a user who uses the apparatus and a login password file 104c storing the login password, and when login is successful. A login password character count file 104d for storing the number of characters of the input login password is stored. A file created by each application is also stored in the HDD 104.

  Reference numeral 105 denotes a keyboard, and 106 denotes a pointing device such as a mouse. Reference numeral 107 denotes a display control unit which draws data in an internal video memory based on control from the CPU 101, reads out data in the video memory, and outputs it to the display device 108 as a video signal. The display device 108 is a display device such as a CRT or a liquid crystal. Reference numeral 109 denotes a network interface.

  In the above configuration, when the apparatus is turned on, the CPU 101 executes the boot program stored in the ROM 102, loads the OS from the HDD 104 to the RAM 103, displays the user login screen, and inputs the user ID and login password. The screen is displayed on the display device 108 via the display control unit 107. When a legitimate user logs in, it becomes possible to move to work using various applications.

  An example of the login password file 104c is shown in FIG. As shown in the figure, the login password file is registered with the user ID 21 and the login password 22 as a pair. The user ID needs to be unique. In the embodiment, the login password for registering one user is always registered with a length of 10 characters or more (it is assumed that registration is not possible below that). As will be described in detail later, there are two types of registered login passwords: when logging in using all the character strings, and when logging in with a predetermined number of characters from the beginning (7 characters in the embodiment). Exists.

  FIG. 7 is a flowchart illustrating computer login processing when the OS of the PC according to the embodiment is activated.

  First, in step S1, a login dialog is displayed on the display device. This login dialog is as shown in FIG. 8, for example, and includes a user ID input field 31, a login password input field 32, an OK button 33, and the like.

  Next, in step S2, a user ID and a login password are input by the user using the keyboard 105, and the user waits for the OK button 33 to be pressed. When the OK button 33 is pressed, the process proceeds to step S3, where the number N of characters constituting the login password input in the login password input field 32 is stored in the login password character number file 104d of the HDD 104.

  Next, the process proceeds to step S4, and the login password of the user ID that matches the user ID entered in the user ID column 31 of the login dialog is read from the login password file 104c. Then, it is determined whether or not the read login password matches the password input in the login password input field 32 of the login dialog. Here, it is a determination of whether or not the login passwords match. Of course, if the character string of the input login password matches the registered login password, the first seven characters of the input login password are If the registered login password matches the first seven characters, it is determined that the login is a regular user. In the case of other password mismatches and when the user ID input in the user ID column 31 of the login dialog is an unregistered user that does not exist in the login password file 104c, it is determined that the login is not an authorized user. .

  If it is determined that the login is not an authorized user, the process proceeds to step S5 to display an error message indicating that the authentication has failed, and the process returns to step S1.

  If it is determined that the login is a regular user, the process proceeds to step S6 to shift to a state where the computer can be used.

  In the above login operation, when creating and editing a highly confidential file using an application, login is performed using all characters of a login password longer than a predetermined number of characters (threshold = 7 characters) and a user ID. When creating or editing a file whose confidentiality is not questioned, the user logs in using a seven-character login password and user ID. In any case, as described above, since the number of characters N of the password is stored in the predetermined area of the HDD 104 in step S3, the application having the same function as the application described in the embodiment can be used. For example, when saving a file, the login password character count file 104d is examined, and it is possible to determine whether a highly confidential file or a non-confidential file is to be stored, and a file using a GUI corresponding thereto Save.

  The application in the embodiment does not matter about the type of document editing, image editing, etc., and the details are omitted. Here, a process when an instruction to save a file created or edited by the application is given will be described with reference to the flowchart of FIG.

  First, in step S11, a file save dialog is displayed on the display device. The file save dialog displayed in this case may be as shown in FIG.

  In step S12, the user selects a folder to be saved in the file save dialog, inputs a file name to be saved, and clicks a save button. However, when an existing file is edited, the file name is set by default to be saved at the path location and displayed. Therefore, in this case, simply click the save button. If you want to change the file name, change the name and click the Save button.

  In any case, when the save button is clicked and the file name (and storage location) to be saved is determined, the process proceeds to step S13, the login password character count file 104d in the HDD 104 is checked, and the user logs in to the apparatus. The number N of characters of the login password is obtained, and the number of characters is compared with a threshold value (7 characters in the embodiment).

  If it is determined by this comparison that the number of characters N is the same as the threshold value, the process proceeds to step S20, the file is saved without attaching the file password, and the process ends.

  If it is determined in step S13 that the number of characters in the login password exceeds the threshold (when logging in using all characters registered as the login password), the following processing from step S14 is performed.

  First, in step S14, a file password input dialog as shown in FIG. 2 is displayed. In step S15, the process waits for the user to input a file password and press the OK button. When the file password is input (when pressing of the OK button is detected), the process proceeds to step S16 to display a file password confirmation dialog as shown in FIG. In step S17, the user again waits for input of a file password.

  In step S18, it is determined whether or not the two file passwords input in steps S15 and S17 match. If it is determined that they do not match, the process returns to step S14 to input the file password again. If the two file passwords are the same, the process proceeds to step S19, the file saving process is executed with the file password attached, and the process ends. Note that “attaching a password” here means that when the file is opened for editing, the application cannot be read into an editable state unless the passwords match.

  In the above process, when the number of login passwords is the same as the threshold value, the file password is unconditionally stored without requiring input. However, even if the number of login passwords is less than the threshold value, the user explicitly In the case where the user is instructed to input the file password, the processing after step S14 may be executed. Conversely, even when the number of login passwords exceeds the threshold, if it is explicitly instructed not to set a file password, the process may proceed to step S20 instead of step S14. In other words, whether or not to input a file password as a default may be determined by the number of characters of the login password.

  Next, the actual access to the file stored as described above will be specifically described.

  Note that when determining the number of characters of the login password, a predetermined value that is determined in advance is required. In the following description, the predetermined value is “7”.

  In addition, the user who logs in uses the user ID “suzuki-tarou” in the login password file in FIG. 3. When using a long login password, enter the login password “abcde12345” using all 10 characters and use a short login password. In this case, a login password for 7 characters, that is, “abcde12” is input.

  When the user attempts to log in to the computer, the login dialog shown in FIG. 8 is displayed in step S1 of FIG. In the next step S2, the user inputs the user ID “suzuki-tarou” in the user ID input area 31 of the login dialog of FIG. In addition, the login password is entered in the login password input area 32. If the user intends to create and save a highly sensitive file, he / she will use the registered login password all characters “abcde12345”. Will be input. Also, when creating a file that does not require much confidentiality, a 7-character password “abcde12” is input.

  In step S3, the number of characters of the login password, that is, “10” or “7” is stored in the login password character number file 104d.

  Next, in step S4, it is determined whether the entered user ID and login password match those registered, and the user can use the computer.

  Thereafter, the user can create or edit the data file using the application of this computer. If the application tries to save as a file, a file saving dialog shown in FIG. 4 is displayed in step S11 of FIG. In step S12, the user selects a folder to be saved in the file save dialog shown in FIG. 4 and inputs a file name to be saved. Next, in step S13, it is determined whether or not the number of characters of the login password stored in the login password character number file 104d is “7”. If it is determined that the user has logged in using the seven-character login password, the file storage process is performed as it is in step S20. In other words, when logging in to create a file that does not require much confidentiality, the storage process is unconditionally performed.

  On the other hand, if it is determined that the number N of characters stored in the login password character number file 104d exceeds 7, the process proceeds to step S14 because the user has logged in to create a highly confidential file. become. In step S14, the file password input dialog shown in FIG. 2 is displayed. In step S15, the user inputs a file password to be set. In the next step S16, the file password confirmation dialog shown in FIG. 3 is displayed. In step S17, the user again inputs the file password to be set. In the next step S18, the file password input in step S15 is compared with the file password re-input in step S17, and if they match, the file in which this file password is set is the HDD 104 in FIG. Saved in.

  As described above, according to the embodiment, whether or not the user creates a highly sensitive file is determined from the number of characters of the login password, so the user instructs the necessity of the file password. The procedure becomes unnecessary and the workability is improved. It also eliminates the problem of forgetting to assign a password to a highly confidential file.

<Second Embodiment>
Next, a second embodiment will be described.

  The second embodiment is characterized in that, when a file is saved, whether or not the file to be saved is encrypted is determined by the number of characters of the login password.

  Note that the apparatus configuration in the second embodiment is the same as that in the first embodiment. Also, the login process is the same as that of the first embodiment, and the process at the time of saving a file in the application program of the second embodiment will be described with reference to the flowchart of FIG.

  First, a file save dialog is displayed on the display device 108 in step S21. The file save dialog displayed in this case may be as shown in FIG.

  In step S22, the user selects a folder to be saved in the file save dialog, inputs a file name to be saved, and clicks a save button. However, when an existing file is edited, the file name is set by default to be saved at the path location and displayed. Therefore, in this case, simply click the save button. If you want to change the file name, change the name and click the Save button.

  In any case, when the save button is clicked and the file name (and storage location) to be saved is determined, the process proceeds to step S23, the login password character count file 104d in the HDD 104 is checked, and the user logs in to the apparatus. The number N of characters of the login password is acquired, and the number of characters is compared with a threshold value (7 characters in the embodiment).

  If it is determined by this comparison that the number of characters N is the same as the threshold value, the process proceeds to step S25, and the file is stored as it is.

  If it is determined in step S23 that the number N of characters in the login password exceeds the threshold (when logging in using all characters registered as the login password), the following processing from step S24 is performed.

  A dialog for inputting an encryption key for encrypting data to be stored is displayed, and the user is prompted to input the encryption key twice. The reason for inputting twice is to eliminate a key input error. If the keys input twice match, the data to be stored is encrypted based on the input encryption key and stored as a file.

  The next time this encrypted file is read, a dialog prompting you to enter the key for decrypting (same as the key used for encryption) is displayed. Do not do it.

  As described above, according to the second embodiment, it is determined from the number of characters of the login password whether or not the user creates a highly confidential file. The procedure to instruct becomes unnecessary, and workability is improved. In addition, the problem of forgetting to encrypt and save highly confidential files is eliminated.

<Third Embodiment>
Next, a third embodiment will be described.

  In general, a screen saver is operated in order to prevent burn-in of a display device such as a CRT included in a personal computer (PC). This screen saver is executed when there is no instruction input from the outside such as a keyboard or pointing device even after a predetermined time has elapsed (hereinafter referred to as a non-input period).

  Recently, there is a screen saver with a password. This is because once the screen saver starts its operation, the screen saver continues to operate unless a correct password is entered. This utilization is used to prevent a PC screen that was being worked on by another person from being looked into when the user leaves the seat.

  In many cases, the user can freely set the non-input period, but if it is too short, the screen saver will start operating while the user is thinking and it will be necessary to enter a password. become. Therefore, the non-input period is set longer. However, if the non-input period is lengthened or the screen saver is set not to be activated, there is a high possibility that a third person can look into the working screen once the user leaves the seat. There is a security problem.

  Therefore, in the third embodiment, an example in which the non-input period is set according to the number of characters of the login password when logging in will be described in order to solve such a problem.

  The apparatus configuration and the login process to the PC are assumed to be the same as those in the first embodiment. Hereinafter, the processing procedure of the screen saver program in the embodiment will be described with reference to the flowchart of FIG.

  First, when the login is performed normally, in step S31, the login password character count file 104d in the HDD 104 is checked, and the login password character count N when the user logs in to the apparatus is obtained. In the embodiment, it is compared with 7 characters). That is, it is determined whether the user has logged in with a short login password or a long login password (all registered password characters). If it is determined that the user has logged in with a long login password, the process proceeds to step S32, where 1 minute is set as the screen saver activation time (non-input period) T. If it is determined that the user has logged in with a short login password, 10 minutes is set as the screen saver activation time T in step S33. It should be noted that the number of characters of the login password and the activation time T need only be reversed, and are not limited to 1 minute and 10 minutes shown here. In some cases, as long as the above condition is satisfied, the user can set the value.

  In either case, the process proceeds to step S34, and time measurement is started from 0 seconds. Then, in the next step S35, it is determined whether or not there is any input from the PC keyboard or pointing device, and the time measurement is reset by performing the process in step S34 whenever it is determined that there is any input. .

  If it is determined in step S35 that there is no instruction input from the user, the process proceeds to step S36 to determine whether the non-input period T set in step S32 or S33 has elapsed. If it is determined that the non-input period T has elapsed, the process proceeds to step S37 to start screen saver processing. Note that the screen saver process canceling process is well known and will not be described. However, when logging in with a short login password, the screen saver with no password is activated, and when logging in with a long login password, there is a password (the password here is the password for the screen saver. (It is often the same as a password).

  As described above, according to the third embodiment, when a user logs in using a long login password in order to create a highly sensitive file, when the user removes his / her seat, etc. The screen saver is operated after a relatively short period of time, and it is possible to reduce the risk of peeping by a third party.

<Fourth Embodiment>
A fourth embodiment will be described.

  Internet connection has become easier and more convenient, but on the other hand, there has been an incident that malicious software called spyware is built in a computer. Spyware is software that is stored in a computer and steals user's personal information. For example, software called key logger, which is a kind of spyware, is all information that the user inputs from the keyboard. Since it collects passwords and sends them to specific sites on a regular basis, there is a problem that important passwords entered by users are stolen. On the other hand, software that searches and removes spyware in computers has been developed, so if you use it, you can use your computer with confidence. Since details of the spyware removal software are already known, detailed description thereof is omitted here.

  However, if such spyware removal software is made resident in the computer, it always operates as a process, so there is a problem that the resources of the computer are used and the operation performance of other processes deteriorates. In addition, it is possible to search and disinfect the computer only when necessary without resident, but if the user accidentally forgets the operation and enters an important password, the information is stored. There was a problem of being stolen. It is also possible to search and disinfect immediately after the user logs in, but even if the user does not access important information, the user is kept waiting while the search is performed, and time is wasted. There is a problem.

  Therefore, in the fourth embodiment, an example will be described in which whether or not the spyware removal program is to be automatically executed at the time of login is determined according to the number of characters of the login password.

  The apparatus configuration is assumed to be the same as that in the first embodiment, and the login process in the fourth embodiment will be described with reference to the flowchart of FIG. In addition, the same process as FIG. 7 in 1st Embodiment attached | subjected the same code | symbol. Therefore, different points will be described below.

  When the user inputs the correct user ID and login password (either using all registered login password characters or logging in using the registered first seven characters), the process proceeds to step S41.

  In step S41, it is determined whether or not the number N of characters of the login password stored in step S3 is larger than a predetermined value (“7” in the embodiment). That is, it is determined whether or not the user has logged in for the purpose of creating a highly sensitive file.

  If it is determined that the user has logged in with all characters of the registered login password (10 characters as described in the first embodiment), the process proceeds to step S42, and spyware removal software is executed.

  As a result of the above, according to the fourth embodiment, when a user logs in to perform highly confidential work, the spyware removal process is always performed, and the work is performed after ensuring the safety of the system. It becomes possible to do. In addition, when logging in to perform work regardless of confidentiality, the spyware removal process is not performed, and the work can be started without waiting for the completion of the process.

<Fifth Embodiment>
A fifth embodiment will be described.

  When using a computer, copying files to external media may be prohibited in order to eliminate the risk that files important to others will be copied to external media such as MOs, memory cards, and flexible disks. Has been done.

  This function activates a process that resides in the computer, and this process monitors interfaces such as USB, IEEE1394, SCSI, and flexible disk to which an external medium can be connected, and through these interfaces to the external medium. When a write operation is performed, this is realized by detecting and prohibiting this.

  Further, even when used by an authorized computer user, there is no risk of accidentally copying important files that are prohibited from being written to an external medium.

  However, when a legitimate user of a computer tries to copy a file with a high confidentiality to an external medium, there is a problem that the copy prohibition works and copying cannot be performed.

  Therefore, in the fifth embodiment, an example will be described in which whether or not a module for prohibiting writing to an external medium is resident is determined according to the number of characters of the login password.

  The apparatus configuration is assumed to be the same as that of the first embodiment, and the log-in processing in the fifth embodiment will be described with reference to the flowchart of FIG. In addition, the same process as FIG. 7 in 1st Embodiment attached | subjected the same code | symbol. Therefore, different points will be described below.

  When the user inputs the correct user ID and login password (either using all registered login password characters or logging in using the registered first seven characters), the process proceeds to step S51.

  In step S51, it is determined whether or not the number N of characters of the login password stored in step S3 is larger than a predetermined value (“7” in the embodiment). That is, it is determined whether or not the user has logged in for the purpose of creating a highly sensitive file.

  If it is determined that the login has been performed with all characters of the registered login password (10 characters as described in the first embodiment), the process proceeds to step S52, and the memory prohibition of the writing prohibition module to the external medium is started. .

  As a result, according to the fifth embodiment, when the user logs in to perform highly confidential work, writing to an external medium is prohibited. Accordingly, not only the logged-in user but also the logged-in user is out of the seat, the third party cannot write out to the external media. In addition, when logging in to perform work regardless of confidentiality (when logging in with a 7-character login password), a module that prohibits writing to external media will not be resident in the memory. You can export files to external media.

<Sixth Embodiment>
A sixth embodiment will be described.

  In order to monitor unauthorized access when using a computer (PC), a log of operations performed on the computer is recorded. This function starts a process resident in the computer, and when the user performs an operation such as reading or writing a file, this process writes the user name, time, and the contents of the operation to a log file. It was realized by the thing. In addition, since the technical content regarding log recording is already well-known, detailed description here is abbreviate | omitted.

  This log recording is important not only for the purpose of recording a trace of an unauthorized user operating a computer but also for the purpose of proving that a legitimate user has correctly operated a computer.

  However, even when a legitimate computer user operates a file that is not sensitive, the log recording function is activated, which causes a problem that the operation of the computer becomes slow. Further, in such a case, a log record having no value is left, which causes a problem of wastefully using an area of a computer storage device. Furthermore, since a worthless log remains, there is a problem that it takes more time than necessary when searching the log later.

  Therefore, in the sixth embodiment, an example will be described in which whether or not the log recording module is resident is determined according to the number of characters of the login password.

  The apparatus configuration is assumed to be the same as that of the first embodiment, and the login process in the sixth embodiment will be described with reference to the flowchart of FIG. In addition, the same process as FIG. 7 in 1st Embodiment attached | subjected the same code | symbol. Therefore, different points will be described below.

  When the user inputs the correct user ID and login password (either using all registered login password characters or logging in using the registered first seven characters), the process proceeds to step S61.

  In step S61, it is determined whether or not the number N of characters of the login password stored in step S3 is larger than a predetermined value (“7” in the embodiment). That is, it is determined whether or not the user has logged in for the purpose of creating a highly sensitive file.

  If it is determined that the login has been performed with all characters of the registered login password (10 characters as described in the first embodiment), the process proceeds to step S62, and the memory resident of the log recording module is started.

  As a result of the above, according to the sixth embodiment, the log recording module operates because the user determines that the user only accesses a file that is not sensitive because the number of characters of the login password is short. It can solve the problem of unnecessary computer slowdown. In addition, unnecessary logs are not recorded, and the problem of wasteful use of the storage area of the computer is solved. Further, it is possible to solve the problem that it takes time for a later log search.

  Although the first to sixth embodiments have been described above, the embodiments may be combined as necessary.

  In the embodiment, the example in which the number of characters of the short login password is “7” has been described. However, this is an example, and the number is not limited to this value. Further, the storage device of the local computer is taken as an example of the file storage destination. However, the file may be stored in a file server or the like on the network device.

  In the above embodiment, an example has been described in which all the characters of one login password and the first seven characters are used. However, two independent passwords having different character string lengths are registered and used. Also good.

  Furthermore, in this embodiment, user authentication is performed with login passwords having different lengths. However, a plurality of different authentication methods may be used, and a method of switching the operating environment related to security according to the security of authentication may be used. Absent. For example, authentication by login password, authentication by IC card, and authentication by fingerprint are made possible. When the user authenticates by login password, the file is saved without attaching the file password, and the IC In the case where authentication by card or fingerprint is performed, it is equivalent to this example to store a file with a file password.

  Further, as can be easily understood from the above embodiments, the processing according to each embodiment is based on a computer program. Normally, a computer program is stored in a computer-readable storage medium such as a CD-ROM, and can be executed by being set in a computer reader (CD-ROM drive or the like) and copied or installed in a system. Such computer-readable storage media are also within the scope of the present invention.

It is a figure which shows an example of the file save dialog with a password input. It is a figure which shows an example of a file password input dialog. It is a figure which shows an example of a file password confirmation dialog. It is a figure which shows an example of a file save dialog. It is a system configuration diagram in an embodiment. It is a figure which shows an example of the content of a login password file. It is a flowchart which shows the process sequence at the time of login in 1st Embodiment. It is a figure which shows an example of the login dialog in 1st Embodiment. It is a flowchart which shows the process at the time of the file preservation | save in 1st Embodiment. It is a flowchart which shows the process at the time of the file preservation | save in 2nd Embodiment. It is a flowchart which shows the starting process procedure of the screen saver in 3rd Embodiment. It is a flowchart which shows the process sequence at the time of login in 4th Embodiment. It is a flowchart which shows the process sequence at the time of login in 5th Embodiment. It is a flowchart which shows the process sequence at the time of login in 6th Embodiment.

Claims (10)

An information processing apparatus capable of performing processing by allowing a user to input a user ID and a login password,
Storage means for storing the number of characters constituting the character string of the login password entered at the time of login;
An information processing apparatus comprising: switching means for switching an operating environment related to security after login in accordance with the number of stored characters.   When the number of characters of the login password exceeds a predetermined number, the switching means switches to a mode for automatically displaying a dialog prompting to set a file password during the file saving process, and the number of characters of the login password is equal to or less than the predetermined number 2. The information processing apparatus according to claim 1, wherein the information processing apparatus is switched to a saving mode without displaying a dialog prompting to set a file password.   The switching means switches to a mode in which encryption processing is performed during file saving processing when the number of characters of the login password exceeds a predetermined number, and encryption when the number of characters of the login password is equal to or less than the predetermined number. The information processing apparatus according to claim 1, wherein the information processing apparatus is switched to a mode in which the data is stored without being stored. Furthermore, a screen saver means for executing a screen saver is provided,
The switching means switches to a mode in which a first period is set as a time until the screen saver starts to be activated when the number of characters of the login password is a predetermined number or less, and the number of characters of the login password exceeds the predetermined number. 2. The information processing apparatus according to claim 1, wherein the information processing apparatus switches to a mode for setting a second period shorter than the first period. Furthermore, a spyware removal means for executing a process for removing spyware is provided,
The switching means switches the spyware removal means to a mode to be executed immediately after login when the number of characters of the login password exceeds a predetermined number, and the spyware removal when the number of characters of the login password is equal to or less than the predetermined number. The information processing apparatus according to claim 1, wherein the information processing apparatus is switched to a mode in which the means is not executed. Furthermore, a write prohibiting means for prohibiting writing to the external storage medium is provided.
The switching means switches the write prohibiting means to a mode to be executed immediately after login when the number of characters of the login password exceeds a predetermined number, and when the number of characters of the login password is equal to or less than the predetermined number, The information processing apparatus according to claim 1, wherein the mode is switched to a mode in which the prohibiting unit is not executed. Furthermore, the storage device includes log recording means for generating an operation history log in a predetermined storage device,
The switching means switches the log recording means to a mode that starts immediately after login when the number of characters of the login password exceeds a predetermined number, and when the number of characters of the login password is equal to or less than the predetermined number, The information processing apparatus according to claim 1, wherein the information processing apparatus is switched to a mode in which the recording unit is not executed. A method of controlling an information processing apparatus that allows a user to input a user ID and a login password and perform processing,
A storage step of storing the number of characters constituting the character string of the login password entered at the time of login;
And a switching step of switching an operating environment related to security after login in accordance with the number of stored characters. A computer program that functions as an information processing apparatus capable of performing processing by allowing a user to input a user ID and a login password,
Storage means for storing the number of characters constituting the character string of the login password entered at the time of login;
A computer program in which switching means for switching an operating environment related to security after login functions according to the number of stored characters.   A computer-readable storage medium storing the computer program according to claim 9.

Images