JP2007080250A - Authentication program and system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an authentication program and system that can exclude use by unauthorized users even upon the theft of authentication information and the theft of apparatus after authentication. <P>SOLUTION: The authentication system has a prohibition information storage means for storing prohibition information representing prohibited operation content, an input monitoring means for monitoring input operations to a computer when the operation status of the computer is shifted to a usable state, an input information acquisition means for, when any input operation is detected, acquiring input information representing the content of the input operation, a comparison means for comparing the input information with the prohibition information, an authentication means for performing authentication according to the result of the comparison means, and a use control means for shifting the operation status of the personal computer to a use-restricted state if the user authentication fails. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to a technique for preventing an unauthorized person from accessing a system by specifying an individual.

  When the use of a personal computer or the like is started, use permission authentication using ID & PASSWORD is performed in order to exclude the use other than the authorized user. In addition, in order to eliminate the inconvenience when the user leaves after authentication, when an input does not occur within a predetermined time, the state before authentication is automatically performed.

  However, the more opportunities to authenticate the use permission, the more improved the security of a device such as a personal computer and the information handled thereby, but there is a problem that the convenience of the user is impaired.

  Therefore, Patent Document 1 discloses a technique for performing authentication based on a pattern of an input operation using a mouse or the like at the start of use or at the time of reuse, as a technique for reducing a user's operational burden in authorization of use permission. Is described.

In addition, as another technique for solving the inconvenience when the user leaves after authentication, Patent Document 2 regularly performs non-contact communication with an IC card carried by the user and is registered in advance. A technique for making a device available only when a device that matches an identification code can be obtained is disclosed.
WO01 / 039099 Publication JP 09-233542 A

  Although the above-mentioned conventional technology exists as a technology for ensuring the convenience of the user while improving security, it is against theft or theft immediately after the user leaves after authentication or after authentication. No security at all. The same applies to the case where the ID and PASSWORD input at the time of authentication are stolen, or to the theft of an IC card or the like carried by the user in the technology of Patent Document 2.

  Accordingly, an object of the present invention is to provide an authentication program and system capable of excluding use other than a legitimate user even for theft of authentication information at the time of authentication or theft of a device after authentication. .

  An authentication program according to the present invention monitors a computer when an operation state of the computer is changed to a usable state, and prohibition information storage means for storing prohibition information indicating prohibited operation contents. And when the input monitoring means detects an input operation, the input information acquisition means for acquiring input information indicating the contents of the input operation, the acquired input information, and the prohibition information storage means are stored. Based on the result of the comparison means, the comparison means for comparing the prohibited information, the authentication means for authenticating the user, and the authentication means determine that the authentication of the user is not permitted. And functioning as usage control means for transitioning the operating state of the personal computer to a state where usage is restricted.

  Further, in the authentication program described above, if the comparison means includes the prohibition information corresponding to the operation content indicated by the input information as a result of the comparison by the comparison means, the authentication of the user is not permitted. The computer is made to function as a means for determining that there is.

  Further, in the above-described authentication program, the computer includes feature information indicating operation contents, feature information storage means for storing feature information including the frequency of permitting the operation, and the input information acquisition Input information temporary storage means for storing input information acquired by the means, second input information acquisition means for acquiring input information stored in the input information temporary storage means, and second input information acquisition means The acquired input information is classified according to the operation content, and the frequency acquisition means for acquiring the appearance frequency for each classified input information, and the feature information corresponding to the operation content shown in the classified input information A comparison unit that is obtained from the feature information storage unit and compares the frequency indicated by the acquired feature information with the appearance frequency obtained by the frequency acquisition unit, and a result of the comparison unit Therefore, the authentication unit for determining whether or not the appearance frequency of the operation content indicated in the acquired input information is included in the allowable frequency range, and the operation unit of the acquired input information by the authentication unit. If it is determined that the appearance frequency is not included in the allowable frequency range, the use state of the operation state of the personal computer is limited, and the authentication means determines the appearance frequency of the operation content of the acquired input information. When it is determined that the frequency is within the allowable frequency range, the personal computer is made to function as a usage control unit that makes the operating state of the personal computer usable.

  In the authentication program described above, each time the computer acquires input information by the input information acquisition unit, the computer determines whether or not there is feature information corresponding to the operation content indicated by the input information, and When the presence is detected, the appearance frequency of the operation content indicated by the input information is acquired by the frequency acquisition unit and functions as an authentication unit that performs authentication based on the acquired frequency.

  Further, in the above-described authentication program, after the computer is transitioned to a state where the use of the personal computer is restricted by the use control unit, an input of authentication information for specifying the user is received, When the second authentication unit authenticates the user based on the input authentication information and the second authentication unit determines that the user authentication is permitted, the operation state of the personal computer is changed. When it is determined that the user authentication is permitted by the usage control means for transitioning to a usable state and the second authentication means, information on the operation content that triggered the use restriction is updated. It functions as an updating means.

  Further, in the above-described authentication program, before the computer updates the information regarding the operation content that triggered the use restriction by the updating unit, the operation content that caused the use restriction is displayed, Registration enable / disable selection means for accepting selection as to whether or not to register the operation content as permitted operation content, and the update means, and selection of registration as the permitted operation content by the registration availability selection means. When an instruction is received, it functions as an updating means for updating information related to the operation content that triggered the use restriction.

  The authentication program of the present invention includes a prohibition information storage unit that stores prohibition information indicating prohibited operation contents, a feature information storage unit that stores feature information indicating permitted operation contents, and the computer. When the operation state changes to a usable state, the input monitoring means for monitoring the input operation to the computer, and the input information for acquiring the input information indicating the content of the input operation when the input monitoring means detects the input operation An acquisition unit, a comparison unit that compares the acquired input information with the prohibition information stored in the prohibition information storage unit, and a prohibition corresponding to the operation content indicated by the input information as a result of comparison by the comparison unit As registration means for registering feature information permitting the operation content for the user in the feature information storage means when information exists Characterized in that to ability.

  The above-described authentication program includes a feature information storage unit that stores the feature information including the frequency of allowing the operation in the feature information indicating the permitted operation content in the feature information storage unit. Input information temporary storage means for storing the input information acquired by the input information acquisition means; and second input information acquisition means for acquiring the input information stored in the input information temporary storage means at a predetermined timing; The input information acquired by the second input information acquisition means is classified according to the operation content, and the frequency acquisition means for acquiring the appearance frequency for each classified input information, and acquired by the frequency acquisition means It is characterized by functioning as an update means for updating the feature information based on the frequency.

  Further, the authentication system of the present invention includes prohibition information storage means for storing prohibition information indicating prohibited operation contents, and an input for monitoring an input operation to the computer when the operation state of the computer is changed to an available state. When the monitoring means and the input monitoring means detect an input operation, the input information acquisition means for acquiring input information indicating the contents of the input operation, the acquired input information, and the prohibition stored in the prohibition information storage means When it is determined by the comparison unit that compares information, the authentication unit that performs authentication of the user based on the result of the comparison unit, and the authentication unit that the user authentication is not permitted, It is characterized by having usage control means for transitioning the operating state of the personal computer to a state where usage is restricted.

  Further, the authentication system of the present invention includes prohibition information storage means for storing prohibition information indicating prohibited operation contents, feature information storage means for storing feature information indicating permitted operation contents, and an operating state of the computer Transition to a usable state, input monitoring means for monitoring an input operation on the computer, and input information acquisition means for acquiring input information indicating the content of the input operation when the input monitoring means detects the input operation; A comparison unit that compares the acquired input information with the prohibition information stored in the prohibition information storage unit, and as a result of comparison by the comparison unit, there is prohibition information corresponding to the operation content indicated by the input information. In this case, the information processing apparatus includes a registration unit that registers, in the feature information storage unit, feature information that permits the operation content for the user.

  Further, the authentication program of the present invention, when the computer transitions to a usable state, the input monitoring means for monitoring the input operation to the computer, and when the input monitoring means detects the input operation, Input information acquisition means for acquiring input information indicating the contents of the input operation, and feature information storage means for storing feature information including the frequency of allowing the operation, which is feature information indicating the operation contents The input information temporary storage means for storing the input information acquired by the input information acquisition means, the second input information acquisition means for acquiring the input information stored in the input information temporary storage means, and the second A frequency acquisition method for classifying the input information acquired by the input information acquisition means according to the operation content and acquiring the appearance frequency for each classified input information. And the feature information corresponding to the operation content indicated in the classified input information is acquired from the feature information storage unit, and the frequency indicated by the acquired feature information is compared with the appearance frequency acquired by the frequency acquisition unit A comparison unit, an authentication unit for determining whether the appearance frequency of the operation content indicated in the acquired input information is included in an allowable frequency range based on a result of the comparison unit, and the authentication unit If the appearance frequency of the operation content of the acquired input information is determined not to be included in the allowable frequency range, the operation state of the personal computer is caused to function as a usage control unit that transitions to a state where usage is restricted. It is characterized by that.

  Further, the authentication program of the present invention determines the presence or absence of feature information corresponding to the operation content indicated by the input information every time the computer acquires the input information by the input information acquisition means, and the presence of the corresponding feature information. When the frequency is detected, the frequency acquisition unit acquires the appearance frequency of the operation content indicated by the input information, and functions as an authentication unit that performs authentication based on the acquired frequency.

  Further, the authentication program of the present invention receives an input of authentication information for identifying the user after the computer has been transitioned by the use control means to a state where use of the personal computer is restricted. When the second authentication unit that authenticates the user based on the input authentication information and the second authentication unit determines that the user authentication is permitted, the operation state of the personal computer is used. Update that updates information on the operation content that triggered the use restriction when the use control means for transitioning to a possible state and the second authentication means determine that the user authentication is permitted It is made to function as a means.

  Further, the authentication program of the present invention displays the operation content that triggered the use restriction before the computer updates the information related to the operation content that caused the use restriction by the updating means, and Registration enable / disable selection means for accepting selection as to whether or not to register the operation content as permitted operation content, and the update means, wherein the registration enable / disable selection means selects registration as the permitted operation content Is received, it is made to function as an update means for updating information related to the operation content that triggered the use restriction.

According to the present invention, it is possible to exclude use other than a legitimate user even for theft of a device after authentication by a conventional user ID and password. In particular, according to the present invention, it is possible to immediately eliminate unauthorized use by detecting an operation that is not used by a legitimate user. Further, according to the present invention, authentication can be controlled according to the frequency of use by a legitimate user. Further, according to the present invention, it becomes possible to automatically set feature information, and the setting burden is reduced.

  The best mode of the present invention will be described below with reference to the drawings.

  FIG. 1 is a diagram illustrating a configuration of an information processing apparatus provided with an authentication apparatus according to an embodiment of the present invention. An information processing apparatus 400 of the present invention shown in FIG. 1 includes an operating system unit 410 that realizes an information processing function of the information processing apparatus, an input unit 420 that inputs instructions to the operating system unit, and the authentication apparatus 100 of the present invention. Configured. Note that the input unit 420 may be configured by a plurality of input units such as a keyboard and a mouse. The authentication device 100 of the present invention includes an input monitoring unit 110 that monitors an input operation on the information processing device, an input acquisition unit 120 that acquires input information indicating the content of the input operation, the acquired input information, and a prohibition described later. The feature comparison unit 130 that compares the prohibition information stored in the information storage unit 200 or the feature information stored in the feature information storage unit 210 (to be described later), and the operation content indicated in the acquired input information is the operation content prohibited. An authentication determination unit 140 that determines whether or not, a usage control unit 150 that controls a usable range in the operation of the personal computer based on the result of the authentication determination unit, and a feature information storage unit that will be described later is updated with the acquired input information Feature update unit 160, frequency acquisition unit 170 that acquires frequency from input information stored in an input information temporary storage unit, which will be described later, and prohibition information that specifies a prohibited operation among input operations to the information processing apparatus A prohibition information storage unit 200 for storing, a feature information storage unit 210 for storing feature information including information for specifying an input operation to the information processing apparatus and including a frequency of permitting the input operation, the acquisition The input information temporary storage unit 300 is configured to store the input information.

  In the configuration shown in FIG. 1, only the portion directly related to the authentication processing of the present invention is shown, and the other configuration is omitted. The authentication device of the present invention operates as one function of the information processing device, for example. That is, it may be configured to operate as a process executed by the calculation unit of the information processing apparatus, or may be attached to the information processing apparatus and function in cooperation with the configuration of the information processing apparatus. In this embodiment, the authentication apparatus of the present invention monitors the input operation to the information processing apparatus by the input monitoring unit 110, and when the input operation is detected, the respective components are linked to achieve the effects of the present invention.

  Next, as Example 1 of the present invention, the flow of authentication processing in the authentication apparatus of the present invention will be described with reference to FIG. First, the information processing apparatus 400 provided with the authentication apparatus 100 of the present invention is activated, and authentication processing of the authentication apparatus 100 of the present invention is started. In addition, when the use restriction of the information processing apparatus is lifted, the authentication process of the authentication apparatus 100 of the present invention may be started.

  When the authentication process is started, the authentication device 100 of the present invention monitors an input operation on the information processing device (S100 in FIG. 5). When an input operation on the information processing apparatus is detected, input information related to the input operation is acquired (S101 in FIG. 5), and the acquired input information is stored in the input information temporary storage unit (S102 in FIG. 5). Here, the input information related to the input operation includes the target of the input operation, the content of the input operation, and the time of the input operation. Here, the target of the input operation corresponds to, for example, an application program activated on the information processing apparatus or an operating system that provides a basic function of the information processing apparatus. Here, the content of the input operation corresponds to, for example, the activation of the application program and the input operation for the activated application program.

  It should be noted that the content of the input operation is information that can identify information that is instructed by a different operation method, even if the content produces the same result. More specifically, the content of the input operation includes operation types classified according to the purpose of the input operation and operation characteristics corresponding to a specific operation instruction method. Note that the authentication apparatus 100 of the present invention can acquire the above-described input information by detecting event information for an input operation provided by the operating system of the attached information processing apparatus.

  Next, the authentication device 100 according to the present invention compares the acquired input information with the prohibition information stored in the prohibition information storage unit 200 (S103 in FIG. 5). Here, the prohibition information stored in the prohibition information storage unit 200 includes an operation target 201, an operation type 202, and an operation feature 203 (see FIG. 2). In the example shown in FIG. 2, for the operation content having the operation target “General File” and the operation type “Open”, the prohibition information “No. 1” having the operation feature “Start from [Mouse Right Menu]” and the operation feature “[ Forbidden information “No. 2” with “Activation by operation” with ALT key ”, Operation feature“ Operation from [right mouse menu] ”for operation content having“ Object file ”and operation type“ Copy ” Forbidden information “No.4” with prohibition information “No.3” and operation feature “Start by [CTR + C] operation”, operation feature “Operation file” and operation type “Operation” with operation type “Start” Prohibition information “No. 5” with “Start from menu”, operation information “No. 6” with “Start from [Mouse right menu]”, Operation target “Executable file” and Operation type “Copy” The Forbidden information “No. 7” having operation feature “Activation from [Mouse right menu]”, prohibition information “No. 8” having operation feature “Activation by [CTR + C] operation”, operation target “execution” For the operation content having “file” and operation type “menu operation”, prohibition information “No. 9” having an operation feature “activation by [without ALT key] operation” is shown.

  In the above comparison process, the operation target and the operation content indicated by the input information are compared with the operation target, operation type, and operation feature of the prohibition information, and the presence of the prohibition information corresponding to the input information exists. The presence or absence of is determined.

  Next, the authentication apparatus 100 according to the present invention performs authentication determination of the user according to the result of the comparison determination process described above (S104 in FIG. 5). That is, if there is no prohibition information corresponding to the input information, it is determined that the authentication is possible (YES in S105 in FIG. 5), and the above-described input monitoring process is continued (S100 in FIG. 5).

  On the other hand, if the prohibition information corresponding to the input information exists, it is determined that the authentication is not possible (NO in S105 in FIG. 5), and then it is determined whether the prohibition operation is within the permitted range. (S106-S110 in FIG. 5). First, accumulated input information corresponding to the operation target and operation type indicated in the input information acquired in the above-described processing S101 is acquired from the input information temporary storage unit 300 (S106 in FIG. 5). Then, the input information acquired from the input information temporary storage unit is classified based on the operation target, the operation type, and the operation feature, and the frequency for each classified input information is acquired (S107 in FIG. 5).

  More specifically, in the content example of the temporary input information storage unit shown in FIG. 4, the case where the input information acquired in the above-described process S101 is the operation target “program A” and the operation type “copy” will be described. The input information acquired from the input information temporary storage unit includes two pieces of input information “No. 2” and “No. 3” having the operation target “program A” and the operation type “copy”. This is one input information acquired in the above-described processing S101 not shown, and the total is three. At this time, when the operation feature of the input information acquired in the process S101 is “start from“ mouse right menu ””, the input information classified by the operation target, the operation type, and the operation feature is two in total, The frequency of the input information is “67% (≈2 / 3). Similarly, when the operation feature of the input information acquired in step S101 is “activation by“ CTR + C ”operation”, the frequency is similarly “67%”. In the above description, the input information acquired in step S101 is stored in the input information temporary storage unit in step S102, but is not shown in the content example of the input information temporary storage unit shown in FIG. And

  Next, the frequency of the input information obtained by the above-described processing is compared with the lock level of the feature information corresponding to the input information in the feature information storage unit (S108 in FIG. 5), and whether authentication is possible or not is determined according to the comparison result. Determination is made (S109 in FIG. 5). Here, following the above specific example, in the example of the content of the feature information storage unit shown in FIG. 3, the input information is input from the operation target “program A”, the operation type “copy”, and the operation feature ““ mouse right menu ”. In the case of “activation”, the lock level 214 of the feature information “No. 4” corresponding to the input information is “usable”, so that the authentication is determined to be possible regardless of the frequency of the input information (FIG. 5). (YES in S110), the above-described input monitoring process is continued (S100 in FIG. 5). In the example illustrated in FIG. 4, the feature information in the feature information storage unit includes an operation target 211, an operation type 212, an operation feature 213, a lock level 214, and an update time 215. Here, when there is feature information corresponding to the input information acquired in S101 in the comparison processing in S108, the update time 215 is the update time of the feature information when the input information is acquired in S101. The value updated at. That is, the feature information update time 215 indicates the latest time when the operation content indicated by the feature information is detected. Therefore, the update information indicates the older time as the feature information of the operation content with lower usage frequency is obtained.

  On the other hand, in the example of the contents of the feature information storage unit shown in FIG. 3, when the input information is the operation target “program A”, the operation type “copy”, and the operation feature “start from“ CTR + C ””, the input information corresponds to the input information. Since the lock level 214 of the feature information “No. 5” is “available within 50%” and the frequency of the input information is “67%” following the above specific example, the lock level of the feature information Since the frequency “67%” of the input information exceeds the frequency “50%” of the allowable range indicated by “”, it is determined that the authentication is not possible (NO in S110 in FIG. 5), and the operating state of the personal computer is used. The restricted lock state is set (S111 in FIG. 5). In the example of the contents of the input information temporary storage section shown in FIG. 4, the operation contents indicated by the input information “No. 1”, “No. 2”, and “No. 3” are the prohibited information storage section. (See FIG. 2, for example, the input information “No. 1” corresponds to the prohibition information “No. 6”). Since the appearance frequency of the input information is included in the permissible range indicated by the lock level of the corresponding feature information registered in the feature information storage unit (see FIG. 3), it is determined as “possible” in the authentication propriety determination in step S109. , The computer's operating status is not locked. However, when the operation order of the input information “No. 2” and “No. 3” in the input information temporary storage unit shown in FIG. 4 is reversed, that is, the operation time 304 of the input information “No. 3” is the input information “No. 2 ”, the frequency of appearance of the input information exceeds the allowable range indicated by the lock level of the corresponding feature information registered in the feature information storage unit shown in FIG. .3 ”is obtained in the process S101, since the frequency of appearance of the input information is“ 100% ”), the authentication propriety determination in the process S109 determines“ impossible ”. The operation content indicated by the input information “No. 4” in the temporary input information storage unit shown in FIG. 4 is because the corresponding prohibition information “No. 5” is registered in the prohibition information storage unit (see FIG. 2). ), It is determined as “impossible” in the authentication propriety determination in the process S104, and the feature information corresponding to the input information is not registered in the feature information storage unit (see FIG. 3). It is determined as “impossible”. Note that the operation targets “program A” and “program B” of the input information in the input information temporary storage unit shown in FIG. 4 also correspond to the operation targets “general file” and “executable file” shown in FIGS. It shall be.

  Next, the authentication apparatus 100 of the present invention accepts user authentication information in a locked state where the use of a personal computer is restricted (S112 in FIG. 5). Here, the user authentication information is information that can uniquely identify the user, such as a combination of a unique identifier for each user and a password arbitrarily set by the user, or biological information such as a palm vein. . If the authentication determination using the authentication information accepted in the process S112 is impossible (NO in S113 in FIG. 5), the authentication information acceptance process in the process S112 is continued.

  On the other hand, when the authentication determination using the authentication information accepted in step S112 is possible (YES in S113 in FIG. 5), the operation content indicated by the input information that triggered the use restriction is excluded from the prohibited operation. Is selected (S114 in FIG. 5). At this time, the operation content indicated by the input information that has triggered the event may be displayed on the display unit of the information processing apparatus 400. In the above-described selection, not only the selection of “available” but also the increase / decrease of the frequency within the allowable range may be accepted. In the above-described process S114, when the selection to increase or decrease the frequency of excluding the operation content indicated by the input information as the trigger from the prohibited operation or making it an allowable range is accepted (YES in S114 of FIG. 5) Accordingly, the feature information in the feature information storage unit is updated (S115 in FIG. 5), and the operation state of the information processing apparatus 400 is made available (S116 in FIG. 5). On the other hand, in the above-described processing S114, when the selection not to exclude or not to increase or decrease the frequency is accepted (NO in S114 in FIG. 5), the operating state of the information processing apparatus 400 is changed without updating the feature information storage unit. It is made available (S116 in FIG. 5). With these configurations, it is possible to construct more optimal feature information in a normal use process.

  When the operation state of the information processing apparatus 400 is available, the authentication apparatus 100 of the present invention starts input monitoring of the information processing apparatus 400 (S100 in FIG. 5).

  In addition to the examples shown in FIGS. 2 and 4, the operation types of the feature information and the input information include program start / end, file operation (create / copy / move / delete / send / print), folder operation. (Select / Move / Delete / Send / Search / Share), menu operation (for each program), control panel operation, printer operation, network operation, task manager operation, etc.

  The feature information stored in the feature information storage unit 200 may be stored separately for each user. In that case, it is possible to specify the feature information to be referred to based on the user identification code or the like input when the use restriction of the information processing apparatus is released.

  In the above-described embodiment, the authentication is performed based on the frequency of the input operation when the elapsed time of the input monitoring exceeds a predetermined position. In addition, the input information stored in the input information temporary storage unit is used. The process may be started when the number of cases is equal to or greater than a predetermined value.

  As described above, when a suspicious operation is detected in a state where the information processing apparatus is available, it can be locked immediately. It is possible to automatically lock by judging the situation. It is also possible to learn the features of the user from normal use and automatically register them as feature information.

  In addition, according to the present invention, the individual operation is not specified only by the operation contrast or the operation type, but the individual operation is specified by referring also to the feature information indicating the operation instruction method. Authentication is possible at any time. In addition, when a predetermined operation for a certain object is set as a prohibited operation, the method of using the operation object is not interrupted at all, and the operation instruction method is different from the prohibited operation. Since the instruction content for the operation target is the same as that for the prohibited operation, it is permitted, so that it is possible to ensure the convenience of a legitimate user. In the above description, the prohibited operation is registered as the feature information for specifying the user. However, instead of registering the prohibited operation, a permitted operation may be registered. In consideration of the variety of operation contents of the terminal, it is possible to reduce the amount of information to be registered in the authentication apparatus according to the present invention when the prohibited operation is registered.

  Further, at a predetermined timing, for the feature information registered in the feature information storage unit, based on the update time 215, it is determined whether or not a predetermined period has elapsed from the current time. It is good also as a structure which invalidates the feature information which has passed for a predetermined period.

  With the above configuration, it is possible to exclude the use other than the authorized user even for theft of the device after the authentication by the conventional user ID and password. In particular, by detecting an operation that is not used by a legitimate user, unauthorized use can be immediately eliminated.

  In the above description of the embodiment, the input monitoring unit of the authentication apparatus according to the present invention has been described to be configured to monitor a direct input operation on the information processing apparatus provided with the authentication apparatus. However, the present invention is not limited to this. It is not something. For example, a configuration in which an input operation on the information processing apparatus from another terminal connected via the network with the information processing apparatus provided with the authentication apparatus of the present invention may be monitored. In this case, it is possible to ensure a certain level of security in a multi-user environment by adopting a configuration in which the setting contents of prohibition information are shared by all users. In addition, in the configuration, by configuring the feature information individually for each user, it is possible to maintain convenience for each user while ensuring a certain level of security in a multi-user environment.

  In addition, among the configurations of the authentication device of the present invention, the feature information storage unit and the prohibition information storage unit may be shared among a plurality of authentication devices. In particular, by configuring the functional unit to be shared via a network, it is possible to share the setting contents of feature information and prohibition information in a multi-user environment of personal computers deployed on the domain. Any PC can be used as long as it is deployed, and authentication processing that reflects the user's characteristics is possible. For each user, while maintaining a certain level of security in a multi-user environment of multiple information processing devices Can be maintained.

  Next, as a second embodiment of the present invention, a learning mode process flow in the authentication apparatus of the present invention will be described with reference to FIG. First, the information processing apparatus 400 provided with the authentication apparatus 100 of the present invention is activated, and the authentication apparatus 100 of the present invention receives an instruction to start the learning mode and starts processing in the learning mode. Note that the instruction to start the learning mode may be configured by an instruction operation by the user of the information processing apparatus 400, or the learning mode is automatically started when the authentication apparatus in the information processing apparatus 400 is activated for the first time. Also good.

  First, when the learning mode is started, the authentication device 100 of the present invention monitors an input operation on the information processing device (S200 in FIG. 6). When an input operation on the information processing apparatus is detected, input information related to the input operation is acquired (S201 in FIG. 6), and the acquired input information is stored in the input information temporary storage unit (S202 in FIG. 6). Here, the input information related to the input operation includes the target of the input operation, the content of the input operation, and the time of the input operation. Here, the target of the input operation corresponds to, for example, an application program activated on the information processing apparatus or an operating system that provides a basic function of the information processing apparatus. Here, the content of the input operation corresponds to, for example, the activation of the application and the input operation for the activated application program.

  It should be noted that the content of the input operation is information that can identify information that is instructed by a different operation method, even if the content produces the same result. More specifically, the content of the input operation includes operation types classified according to the purpose of the input operation and operation characteristics corresponding to a specific operation instruction method. Note that the authentication apparatus 100 of the present invention can acquire the above-described input information by detecting event information for an input operation provided by the operating system of the attached information processing apparatus.

  Next, the authentication device 100 of the present invention determines whether or not the end of the learning mode is instructed (S203 in FIG. 6). If it is determined in the determination that the instruction is not an instruction to end the learning mode (NO in S203 in FIG. 6), the input monitoring in the process S200 is continued.

  On the other hand, if it is determined in the determination that the instruction is to end the learning mode (YES in S203 in FIG. 6), the input information accumulated from the input information temporary storage unit is acquired (S204 in FIG. 6). The input information is classified by operation target and operation type, and the frequency of the input information is acquired by the same method as in the first embodiment (S205 in FIG. 6).

  Next, the authentication device 100 of the present invention updates the feature information in the feature information storage unit using the acquired input information and the frequency thereof (S206 in FIG. 6). Before executing the update process in step S206, a configuration may be added in which a list of feature information update contents is displayed on the display unit of the information processing apparatus and an instruction to select content to be updated is received from the displayed list. Good. In addition, in accepting an instruction to select the contents to be updated, not only whether to update or not, but also displays the contents of the input operation and its appearance frequency, and instructs to increase or decrease the allowable range of the appearance frequency of the input operation. It is good also as a structure to accept. In the update of the feature information using the acquired input information and its frequency, the latest time among the operation target, operation type, operation feature, and operation time of the input information is the operation target, operation type, Corresponding to the operation feature and update time, the frequency of the input information acquired in step S205 corresponds to the lock level of the feature information. That is, when the frequency of the input information acquired in step S205 is “50%”, the lock level of the feature information is “available within 50%”. In addition, it is good also as a structure which makes the lock level of feature information the value which rounded off the 1st digit of the frequency of input information.

  Next, as a third embodiment of the present invention, the system configuration in the third embodiment of the present invention will be described with reference to FIG. The system configuration shown in FIG. 7 is different from the system configuration shown in FIG. 1 in that the prohibition information storage unit 200 is not provided, and is the same in other points. That is, the present embodiment is equivalent to a configuration in which the authentication processing performed based on the prohibition information stored in the prohibition information storage unit 200 is omitted from the authentication processing described in the first embodiment.

  Next, based on the above, the flow of authentication processing according to the present embodiment will be described with reference to FIG. The flow of the authentication process shown in FIG. 8 is a process corresponding to the authentication process performed based on the prohibition information stored in the prohibition information storage unit 200 described above, that is, the flow of the authentication process shown in FIG. Are different in that the processes S103 to S105 shown in FIG. Therefore, in the flow of the authentication process according to the third embodiment of the present invention shown in FIG. 8, input monitoring is started (process S100), input information is acquired (process S101), and the input information is stored in a temporary area. (Process S102), and then the process flow shifts to Process S106 for acquiring the input information accumulated from the temporary area, and the subsequent process is the same as that of the first embodiment shown in FIG. Description is omitted. In FIG. 8, the same reference numerals are assigned to the same processes as an aid for understanding the same points / differences as in FIG. 5.

  Next, as a fourth embodiment of the present invention, a system configuration in the fourth embodiment of the present invention will be described with reference to FIG. The system configuration illustrated in FIG. 9 is different from the system configuration illustrated in FIG. 1 in that the prohibition information storage unit 200 and the feature update unit 160 are not provided, and is the same in other points. That is, the present embodiment omits the authentication process performed based on the prohibition information stored in the prohibition information storage unit 200 among the authentication processes described in the first embodiment, and is further stored in the feature information storage unit 210. This is equivalent to a configuration in which the process of updating the feature information by the feature update processing unit 160 is omitted.

  Next, based on the above, the flow of authentication processing according to the present embodiment will be described with reference to FIG. Compared with the flow of the authentication process shown in FIG. 5, the flow of the authentication process shown in FIG. 10 is a process corresponding to the authentication process performed based on the prohibition information stored in the prohibition information storage unit 200, that is, FIG. The processing S103 to S105 shown in FIG. 5 is omitted, and the processing corresponding to the update processing performed on the feature information stored in the feature information storage unit 210 described above, that is, the processing S114 to S115 shown in FIG. It is different in the points that are omitted, and is the same in other points. Therefore, in the flow of the authentication process according to the third embodiment of the present invention shown in FIG. 8, input monitoring is started (process S100), input information is acquired (process S101), and the input information is stored in a temporary area. (Process S102), and then the process flow shifts to Process S106 for acquiring input information accumulated from the temporary area. Further, after transitioning to the locked state in step S111, authentication information is accepted (step S112), and if the result of the authentication determination is acceptable (YES in step S113), the state transitions to an available state (step S116). Note that, in FIG. 10, the same reference numerals are assigned to the same processes as an aid for understanding the coincident points / differences with FIG. 5.

  Next, as Embodiment 5 of the present invention, the flow of authentication processing in the fifth embodiment of the present invention will be described with reference to FIG. In this embodiment, the system configuration is the same as the system configuration in the fourth embodiment shown in FIG.

  The flow of the authentication process shown in FIG. 12 is a process corresponding to the authentication process performed based on the prohibition information stored in the prohibition information storage unit 200 described above, that is, the flow of the authentication process shown in FIG. The processing S103 to S105 shown in FIG. 5 is omitted, and the processing corresponding to the update processing performed on the feature information stored in the feature information storage unit 210 described above, that is, the processing S114 to S115 shown in FIG. It is different in that it is omitted, and further, it is different in that the processing corresponding to the authentication processing after the transition to the locked state, that is, the processing S112 to S116 shown in FIG. To do. In FIG. 12, the same reference numerals are assigned to the same processes as an aid for understanding the coincident points / differences with FIG. 5.

  In this embodiment, as a result of the authentication process based on the feature information (process S110), after the transition to the locked state (process S111), the transition to the usable state is not made under normal usage. This embodiment is greatly different from the other embodiments according to the invention. For example, it is advantageous when applied to an object that requires a higher security strength than the application object of other embodiments, or when applied to use authentication of a disposable device.

The figure which shows the system configuration | structure in one Embodiment of this invention. The figure which shows the contents example of the prohibition information storage section The figure which shows the contents example of the feature information storage section The figure which shows the contents example of the input information temporary storage section Flowchart diagram showing the flow of authentication processing Flowchart diagram showing the flow of authentication processing The figure which shows the system configuration | structure in 3rd Example of this invention. The flowchart figure which shows the flow of the authentication process in 3rd Example of this invention. The figure which shows the system configuration | structure in 4th Example of this invention. The figure which shows the flow of the authentication process in 4th Example of this invention. The figure which shows the flow of the authentication process in 5th Example of this invention.

Claims (14)

Computer
Prohibition information storage means for storing prohibition information indicating prohibited operation contents;
When the operating state of the computer transitions to an available state, input monitoring means for monitoring input operations on the computer;
When the input monitoring means detects an input operation, input information acquisition means for acquiring input information indicating the content of the input operation;
Comparison means for comparing the acquired input information with the prohibition information stored in the prohibition information storage means;
Authentication means for authenticating the user based on the result of the comparison means;
An authentication program for causing the personal computer to function as a usage control unit that shifts the operation state of the personal computer to a state where usage is restricted when the authentication unit determines that the user authentication is not permitted. The authentication program according to claim 1,
The authentication means includes
As a result of comparison by the comparison means, if there is prohibited information corresponding to the operation content indicated by the input information, the computer is caused to function as means for determining that the user authentication is not permitted. Authentication program. The authentication program according to claim 1 or 2,
Computer
Feature information indicating operation content, feature information storage means for storing feature information including the frequency of allowing the operation, and
Input information temporary storage means for storing the input information acquired by the input information acquisition means;
Second input information acquisition means for acquiring input information stored in the input information temporary storage means;
Classifying the input information acquired by the second input information acquiring unit according to the operation content, a frequency acquiring unit for acquiring the appearance frequency for each classified input information,
Comparison means for acquiring feature information corresponding to the operation content indicated in the classified input information from the feature information storage means, and comparing the frequency indicated by the acquired feature information with the appearance frequency acquired by the frequency acquisition means When,
Authentication means for determining whether the appearance frequency of the operation content indicated in the acquired input information is included in a permitted frequency range based on the result of the comparison means;
When the authentication means determines that the appearance frequency of the operation content of the acquired input information is not included in the allowable frequency range, the operation state of the personal computer is set to a state where use is restricted,
When the authentication unit determines that the appearance frequency of the operation content of the acquired input information is included in the allowable frequency range, it functions as a usage control unit that makes the operating state of the personal computer usable. An authentication program characterized by letting The authentication program according to claim 3, wherein
Computer
Each time input information is acquired by the input information acquisition means, the presence or absence of feature information corresponding to the operation content indicated by the input information is determined, and the operation indicated by the input information is detected when the presence of the corresponding feature information is detected. An authentication program that acquires an appearance frequency of contents by the frequency acquisition unit and functions as an authentication unit that performs authentication based on the acquired frequency. The authentication program according to any one of claims 1 to 4,
Computer
After the usage control means makes a transition to a state where usage of the personal computer is restricted, it accepts input of authentication information for identifying the user, and authenticates the user based on the input authentication information. A second authentication means,
When the second authentication means determines that the user authentication is permitted, a usage control means for transitioning the operating state of the personal computer to a usable state;
When the second authentication unit determines that the user authentication is permitted, the authentication program causes the function to function as an update unit that updates information about the operation content that triggered the use restriction. . The authentication program according to claim 5,
Computer
Whether the update means displays the operation content that triggered the use restriction before the information about the operation content that triggered the use restriction is displayed, and registers the operation content as the permitted operation content Registration availability selection means for accepting selection of whether or not,
When the registration selection instruction as the permitted operation content is received by the registration availability selection unit, the update unit functions as an update unit that updates information regarding the operation content that triggered the use restriction. An authentication program characterized by that. Computer
Prohibition information storage means for storing prohibition information indicating prohibited operation contents;
Feature information storage means for storing feature information indicating permitted operation content;
When the operating state of the computer transitions to an available state, input monitoring means for monitoring input operations on the computer;
When the input monitoring means detects an input operation, input information acquisition means for acquiring input information indicating the content of the input operation;
Comparison means for comparing the acquired input information with the prohibition information stored in the prohibition information storage means;
As a result of the comparison by the comparison means, when there is prohibition information corresponding to the operation content indicated by the input information, as registration means for registering the feature information permitting the operation content for the user in the feature information storage means An authentication program characterized by functioning. The authentication program according to claim 7,
Computer
The feature information storage means, wherein the feature information indicating the operation content to be permitted is stored in the feature information including the frequency at which the operation is permitted.
Input information temporary storage means for storing the input information acquired by the input information acquisition means;
Second input information acquisition means for acquiring input information stored in the input information temporary storage means at a predetermined timing;
Classifying the input information acquired by the second input information acquiring unit according to the operation content, a frequency acquiring unit for acquiring the appearance frequency for each classified input information,
An authentication program that functions as update means for updating the feature information based on the frequency acquired by the frequency acquisition means. Prohibition information storage means for storing prohibition information indicating prohibited operation contents;
When the operating state of the computer transitions to an available state, input monitoring means for monitoring input operations on the computer;
When the input monitoring means detects an input operation, input information acquisition means for acquiring input information indicating the content of the input operation;
Comparison means for comparing the acquired input information with the prohibition information stored in the prohibition information storage means;
Authentication means for authenticating the user based on the result of the comparison means;
An authentication system comprising: usage control means for transitioning the operating state of the personal computer to a state where usage is restricted when the authentication means determines that the user authentication is not permitted. Prohibition information storage means for storing prohibition information indicating prohibited operation contents;
Feature information storage means for storing feature information indicating permitted operation content;
When the operating state of the computer transitions to an available state, input monitoring means for monitoring input operations on the computer;
When the input monitoring means detects an input operation, input information acquisition means for acquiring input information indicating the content of the input operation;
Comparison means for comparing the acquired input information with the prohibition information stored in the prohibition information storage means;
A registration unit for registering, in the feature information storage unit, feature information permitting the operation content for the user when there is prohibition information corresponding to the operation content indicated by the input information as a result of the comparison by the comparison unit; An authentication system comprising: Computer
When the operating state of the computer transitions to an available state, input monitoring means for monitoring input operations on the computer;
When the input monitoring means detects an input operation, input information acquisition means for acquiring input information indicating the content of the input operation;
Feature information indicating operation content, feature information storage means for storing feature information including the frequency of allowing the operation, and
Input information temporary storage means for storing the input information acquired by the input information acquisition means;
Second input information acquisition means for acquiring input information stored in the input information temporary storage means;
Classifying the input information acquired by the second input information acquisition unit according to the operation content, a frequency acquisition unit for acquiring the appearance frequency for each classified input information,
Comparison means for acquiring feature information corresponding to the operation content indicated in the classified input information from the feature information storage means, and comparing the frequency indicated by the acquired feature information with the appearance frequency acquired by the frequency acquisition means When,
Authentication means for determining whether the appearance frequency of the operation content indicated in the acquired input information is included in a permitted frequency range based on the result of the comparison means;
Usage control for transitioning the operating state of the personal computer to a state where usage is restricted when the authentication means determines that the appearance frequency of the operation content of the acquired input information is not included in the allowable frequency range An authentication program that functions as a means. The authentication program according to claim 11,
Computer
Each time input information is acquired by the input information acquisition means, the presence or absence of feature information corresponding to the operation content indicated by the input information is determined, and the operation indicated by the input information is detected when the presence of the corresponding feature information is detected. An authentication program that acquires an appearance frequency of contents by the frequency acquisition unit and functions as an authentication unit that performs authentication based on the acquired frequency. The authentication program according to claim 11 or 12,
Computer
After the usage control means makes a transition to a state where usage of the personal computer is restricted, it accepts input of authentication information for identifying the user, and authenticates the user based on the input authentication information. A second authentication means,
When the second authentication means determines that the user authentication is permitted, a usage control means for transitioning the operating state of the personal computer to a usable state;
When the second authentication unit determines that the user authentication is permitted, the authentication program causes the function to function as an update unit that updates information about the operation content that triggered the use restriction. . The authentication program according to claim 13, wherein
Computer
Whether the update means displays the operation content that triggered the use restriction before the information about the operation content that triggered the use restriction is displayed, and registers the operation content as the permitted operation content Registration availability selection means for accepting selection of whether or not,
When the registration selection instruction as the permitted operation content is received by the registration propriety selection unit, the update unit functions as an update unit that updates information related to the operation content that triggered the use restriction. An authentication program characterized by that.

Images