JP2007304775A - Electronic document processor, processing method and processing program, and electronic document management system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To enable setting of processing authority not only for the entirety of but also for part of an electronic document. <P>SOLUTION: When processing to the electronic document is instructed from a user, an authority confirmation processing part 26 inquires of an information management part 28 about the processing authority to the electronic document of the user who instructed to confirm the processing authority set to the electronic document itself and a processing authority set to each object constituting the electronic document. A priority determination processing part 40 specifies, when conflicting processing authorities are set to the electronic document and each object, that the processing authority for the object concerned is invalid according to priority information. Each processing unit 34, 36 executed in a processing execution part 30 determines the propriety as processing object for each object according to the presence/absence of processing authority for each object constituting the designated electronic document, and determines each part of the electronic document as a processing object or as out of the processing object. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to document processing for executing an electronic document designated by a user in accordance with a set processing authority.

  Conventionally, access authority for display, printing, editing, etc. is set for each user or user group without managing in a state where anyone can perform desired document processing on electronic documents without restriction. There are many cases to manage. By performing security management, a user who is not authorized to perform desired document processing on the designated electronic document cannot perform the designated document processing on the designated electronic document.

  2. Description of the Related Art Conventionally, as a technology related to access to an electronic document, there is a technology that has both content information and a program in order to protect the copyright of the content posted in the electronic document and can display it in any environment (for example, Patent Document 1). . In addition, there is a technique that allows a predetermined part to be browsed by adding a pay code to a predetermined part of an electronic document and confirming purchase (for example, Patent Document 2). As described above, regarding the security of electronic documents, there is a technique that enables access control to an electronic document regardless of the location on the network and in a form suitable for charging.

  By the way, an electronic document may include a part of the document that is protected by copyright such as an image, or a logo used only in a specific organization. Also, the electronic document itself may be bundled and separated.

JP 2005-92709 A JP 2001-344432 A

  Conventionally, however, since access authority is basically set for the entire electronic document, it is difficult to deal with the above-described bundling and separation of pages of the electronic document. In addition, it was impossible to permit or restrict access in fine units such as an image or description of a page included in an electronic document, or only a log portion. In Patent Document 2, it may be possible to set partial security, but doing so will cause problems such as inability to set access restrictions on the entire electronic document.

  The present invention has been made to solve the above-described problems, and it is an object of the present invention to be able to set processing authority not only for the entire electronic document but also partially.

  In order to achieve the above object, an electronic document processing apparatus according to the present invention includes user identification processing means for identifying a user and document management information for storing processing authority information of an electronic document including one or more objects. The processing authority information of the electronic document designated by the user as the processing target from the storage means and the object management information storage means for storing the processing authority information of the object included in the electronic document, and the processing authority of each object included in the electronic document And document processing means for performing document processing on the electronic document within the authority range permitted to the user in accordance with the acquired processing authority information.

  The document processing unit stores the processing authority information in the priority information storage unit when the processing authority information of the processing target electronic document and the processing authority information of each object included in the electronic document are set. According to the priority information of the processing authority information, the document processing is performed with priority given to any processing authority information.

  The document processing means, when the object is held in an encrypted state, performs the document processing after decrypting according to the decryption information included in the processing authority information of the object. To do.

  Further, the document processing means compares the time limit information included in the processing authority information of the object with the current time, and performs the document processing according to the processing authority information only when the current time is within the expiration date. And

  The document management information storage unit, the object management information storage unit, or the priority information storage unit is provided.

  An electronic document processing program according to the present invention includes a computer, a user identification processing means for identifying a user, a document management information storage means for storing processing authority information of an electronic document including one or more objects, and an object included in the electronic document The processing authority information of the electronic document designated by the user as the processing target and the processing authority information of each object included in the electronic document are respectively acquired from the object management information storage means for storing the processing authority information of In accordance with each processing authority information, it is made to function as a document processing means for executing document processing on the electronic document within the authority range permitted for the user.

  An electronic document management system according to the present invention includes a document management information storage unit that stores processing authority information of an electronic document including one or more objects, and an object management information storage that stores processing authority information of objects included in the electronic document. Means, an object storage means for storing the substance of the object, and a document processing device for performing the specified document processing on the electronic document specified by the user, wherein the document processing device identifies the user User identification processing means, processing authority information of the electronic document designated by the user as a processing target from the document management information storage means and the object management information storage means for the electronic document designated by the user, and the electronic document Acquire the processing authority information of each object included in the document, and according to the acquired processing authority information And a document processing means for performing document processing on the electronic document in the authorized authority range to the user, and performs management processing authority for the electronic document in units of objects.

  An electronic document processing method according to the present invention includes a document management information storage unit that stores processing authority information of an electronic document that includes one or more objects, and an object management information storage that stores processing authority information of objects included in the electronic document. The document management is carried out in an electronic document processing apparatus included in the electronic document management system together with the means and the object storage means for storing the substance of the object. The document management is performed for the electronic document specified by the identified user. From the information storage unit and the object management information storage unit, the processing authority information of the electronic document designated by the user as the processing target and the processing authority information of each object included in the electronic document are acquired, and each of the acquired For the electronic document within the authority range permitted for the user according to the processing authority information Which comprises carrying out the writing process.

  According to the present invention, since processing authority can be set for each object constituting an electronic document, for example, in the case of print processing, only confidential information is included when confidential information and other information are mixed on one page. The authority setting can be partially made without limiting to the entire electronic document.

  Hereinafter, preferred embodiments of the present invention will be described with reference to the drawings.

Embodiment 1 FIG.
FIG. 1 is a hardware configuration diagram of a computer corresponding to an electronic document processing apparatus according to the present invention. The electronic document processing apparatus 1 used in the present embodiment can be realized by a conventional general-purpose computer hardware configuration. That is, as shown in FIG. 1, the document processing apparatus 1 includes a CPU 2, a ROM 4, a RAM 6, an HDD controller 10 connected to a hard disk drive (HDD) 8, a mouse 12 and keyboard 14 provided as input means, and a display device. The input / output controller 18 for connecting the respective displays 16 is connected to the internal bus 20.

  FIG. 2 is a functional block configuration diagram of the electronic document processing apparatus 1 according to the present embodiment. The electronic document processing apparatus 1 includes a user identification processing unit 22, a user interface unit 24, an authority confirmation processing unit 26, an information management unit 28, a processing execution unit 30, a document processing control unit 32, an electronic document management information holding unit 42, and object management. An information holding unit 44 and an object database 46 are included. The user identification processing unit 22 identifies a user who is using the electronic document processing apparatus 1. The user interface unit 24 receives an input operation using the mouse 12 or the keyboard 14 and displays the input operation on the display 16. The authority confirmation processing unit 26 confirms the processing authority that the user has for the electronic document to be processed. The information management unit 28 registers information in the electronic document management information holding unit 42, the object management information holding unit 44, and the object database 46 realized by using the HDD 8, and reads, updates, and deletes various pieces of held information. Perform general management. The process execution unit 30 executes various document processes. In FIG. 1, the display processing unit 34 and the print processing unit 36 used for explaining the present embodiment are shown. The display processing unit 34 performs display processing on the display 16. The print processing unit 36 executes printing on a print medium by sending electronic document data to be printed to a printer (not shown) directly or indirectly connected to the electronic document processing apparatus 1. The processing execution unit 30 further includes a decryption processing unit 38 and a priority determination processing unit 40 that are used by the respective processing units 34 and 36 that execute various electronic document processes. When the object is held in an encrypted state, the decryption processing unit 38 performs decryption according to the decryption information included in the processing authority information of the object. The priority determination processing unit 40 processes the processing authority information according to the priority information when the processing authority information conflicts with the processing authority information of the electronic document to be processed and the processing authority information of each object included in the electronic document. The priority of is determined. The document processing control unit 32 controls the operation of the entire constituent elements 22 to 30 related to electronic document processing. Each of the components 22 to 32 in the electronic document processing apparatus 1 is realized by a cooperative operation of a computer constituting the electronic document processing apparatus 1 and a program operating on a CPU mounted on the computer. The storage units 42 to 46 are realized by the HDD 8 or the RAM 6 mounted on the electronic document processing apparatus 1.

  FIG. 3 is a diagram showing a data configuration example of the electronic document management information held in the electronic document management information holding unit 42 in the present embodiment. The electronic document management information is configured by associating corresponding object information and processing authority information with a document ID uniquely assigned to each electronic document. In the processing authority information, a processing authority for the electronic document is set, and in the present embodiment, prohibited items and user information are included. For example, prohibited items such as printing, copying, and confidential are set in the prohibited items. In the user information, processing authority for the electronic document is set for each user or user group. For example, the user A can display, cannot edit, and cannot print, and the accounting section can display, edit, and print.

  The electronic document in the present embodiment is formed by combining one or more objects that form image data such as a logo, a graphic, and a document. In the corresponding object information, information related to each object forming the electronic document is set, and in this embodiment, the object ID, display information, and decryption information are included. The object ID is information for identifying each object forming the electronic document. The display information includes information necessary for expanding the object on the document, such as the display position and size of each object on the electronic document. In the present embodiment, when the allocation area of an object developed on an electronic document is represented by a rectangle, the display information is represented by the coordinate data of the upper left and lower right of the rectangle from the origin at the upper left corner of the electronic document. Indicates. Of course, the display position and size of the object are not limited to this specific method. The decryption information includes information necessary for decrypting the object when the object is encrypted, such as a decryption key, encryption or decryption method.

  Note that since an electronic document can be formed by combining objects, it is not necessary to have the electronic document data itself to implement this embodiment, but the electronic document data itself from the viewpoint of document management or processing speed May be held.

  FIG. 4 is a diagram showing a data configuration example of the electronic document management information held in the object management information holding unit 44 in the present embodiment. The object management information is configured by associating the storage destination information, the type, and the processing authority information with the object ID uniquely assigned to each object. The storage location information is information that can specify the storage location of the entity file of the object. In the present embodiment, since the object entity file is stored in the object database 46, it is set by a URI (Uniform Resource Identifier) indicating the storage location in the object database 46. The type is a type of data represented by each object. This information can be used for setting priority information. In the processing authority information, a processing authority for the object is set, and in the present embodiment, user information and time limit information are included. In the user information, processing authority for the object is set for each user or user group. For example, the user A can display, cannot edit, and cannot print, and the accounting section can display, edit, and print. The expiration date of the processing authority information set for the object is set in the expiration date information.

  Next, before describing the specific operation of the electronic document processing apparatus 1 in the present embodiment, an outline of the operation of the electronic document processing apparatus 1 will be described with reference to an output result that varies depending on the setting contents of the processing authority information. To do.

  FIG. 5 is a conceptual diagram showing an output result when each of the users A to C displays the electronic document 50 on the display 16 and prints it from the printer. The electronic document 50 is formed of logo and image objects 52 and 54. It is assumed that the processing authority is not set for the image object 54, while the following authority is set for each user for the logo object 52. That is, display and printing are permitted for user A, and display and printing are not permitted for user C. The user B is set to allow display but not print. In this example, it is assumed that the processing authority is not set for the users A to C in the electronic document 50 itself.

  Each user attempts to display the electronic document 50 under the processing authority setting status. Then, as shown in FIG. 5A, since the users A and B have the display authority, both the logo and the image on the electronic document 50 are displayed on the screen. Since the display authority is not set for the image object 54, basically, any user can display it or depends on other authority settings. On the other hand, when the user C tries to display the electronic document 50, the user C does not have the authority to display the logo object 52, so the logo is not displayed. However, with respect to the object 54 of the image, neither the object 54 nor the document has authority set, that is, the display authority is not rejected. As a result, when the user C tries to display, only the image is displayed on the screen without displaying the logo. Each user tries to print the electronic document 50. Then, as shown in FIG. 5B, since the user A has the printing authority, the logo and the image on the electronic document 50 are printed together. Since the image object 54 is not set with respect to printing authority, basically, any user can print or depends on other authority settings. On the other hand, when the users B and C try to print the electronic document 50, the users B and C do not have the authority to print the logo object 52. Accordingly, only the image is printed without printing the logo.

  According to the present embodiment, it is possible to set an access restriction for each object as in this display / print authority setting example.

  FIG. 6 is a conceptual diagram showing an output result when each of the users A to C prints the electronic document 50. The electronic document 50 is formed of logos and image objects 52 and 54 as in FIG. It is assumed that the processing authority is not set for the image object 54, while the following authority is set for each user in the logo object 52. That is, printing is permitted for the user A, and printing is not permitted for the users B and C. In this example, it is assumed that the electronic document 50 is set with a processing authority that allows users A and B to print and does not allow user C to print.

  Each user attempts to print the electronic document 50 under the processing authority setting status. Then, as shown in FIG. 6, since the user A has the authority to print the objects 52 and 54 and also has the authority to print the electronic document 50 itself, the logo on the electronic document 50 is Printed. Further, since the print authority is not set in the object 54, the print authority setting of the electronic document 50 itself is followed, and the image on the electronic document 50 is printed. As a result, when the user A tries to print, the logo and the image on the electronic document 50 are printed together.

  When the user C tries to print the electronic document 50, the user C does not have the authority to print the logo and does not have the authority to print the electronic document 50 itself. Does not print. Further, since the print authority is not set in the object 54, the print authority setting of the electronic document 50 itself is followed, and the image on the electronic document 50 is not printed. As a result, when the user C tries to print, neither the logo nor the image on the electronic document 50 is printed. In this case, in this embodiment, “printing impossible” is printed in order to prevent a blank sheet from being output.

  In contrast, when the user B tries to print the electronic document 50, the user B does not have the authority to print the logo object 52 but also has the authority to print the electronic document 50 itself. That is, since there is no print authority for the logo object 54 and there is a print authority for the electronic document 50 itself, the print authority is in conflict. In such a case, priority information indicating which authority setting has priority is set in advance, and one of the printing authority settings is used according to the setting. In this example, the processing authority for the logo is given priority. As a result, the logo on the electronic document 50 is not printed. Further, since the print authority is not set in the object 54, the print authority setting of the electronic document 50 itself is followed, and the image on the electronic document 50 is printed. As a result, when the user B tries to print, only the image is printed without printing the logo on the electronic document 50.

  According to the present embodiment, access restrictions can be set for each object as in the case of this printing authority, and priority is given to the case where the printing authority set for the electronic document 50 and each object 52, 54 conflicts. According to the setting of the degree information, it is possible to prioritize the setting of any printing authority and execute the printing process.

  FIG. 7 is a conceptual diagram showing an output result when a certain user displays and prints the electronic document 50 in which three types of processing authority are set. The electronic document 50 is formed with an image object 54. No processing authority is set for the image object 54 in any case. On the other hand, in the electronic document 50, it is assumed that processing authority is set such that display is allowed for cases 1 and 2 and only employee is allowed to display for case 3. Further, although printing is not permitted for cases 1 and 3, printing is permitted for case 2, but since copying is prohibited, processing authority is set to insert a trust marking at the time of printing. And

  First, when the processing authority of case 1 is set, a certain user tries to display the electronic document 50. Then, as shown in FIG. 7A, since the user has the authority to display the electronic document 50, the image on the electronic document 50 is displayed. In this case, since the user does not have the authority to print the electronic document 50, an unprintable mark 56 is displayed in addition to the image object 54 in order to notify the user to that effect. Further, when the user tries to print, the image is not printed because the user does not have the print authority as described above. In this case, “printing impossible” is printed as described above in order to prevent output in a blank state.

  Next, when the processing authority of case 2 is set, a certain user tries to display the electronic document 50. Then, as shown in FIG. 7A, since the user has the authority to display the electronic document 50, the image on the electronic document 50 is displayed. Here, since the user is authorized to print the electronic document 50, copying is prohibited, and a copy prohibition mark 58 is displayed in addition to the image object 54 in order to notify the user to that effect. Further, when the user tries to print, the image is printed because the user has the print authority as described above. Here, since the user is prohibited from copying the electronic document 50, the copy prohibition mark 58 is printed as in the case of display. Note that attribute information indicating that prohibited copying is set is formed in the print document as a latent image. If this print document is copied by the image forming apparatus corresponding to the latent image, FIG. As shown in (), the copied user and date / time are printed as characters.

  Next, when the processing authority of case 3 is set, a certain user tries to display the electronic document 50. Then, as shown in FIG. 7A, when the user is an employee, since the user has the authority to display the electronic document 50, the image on the electronic document 50 is displayed. Here, since the user is an image that can be displayed because he is an employee, that is, a confidential image, the confidential mark 60 is displayed in addition to the image object 54 in order to notify the user to that effect. On the other hand, when the user is not an employee, since the user does not have the authority to display the electronic document 50, the image on the electronic document 50 is not displayed. In this case, since nothing is displayed on the screen, a message or the like indicating that fact may be displayed on the screen to notify the user. Further, when the user tries to print, the image is not printed because the user does not have the print authority as described above. In this case, “printing impossible” is printed as described above in order to prevent output in a blank state.

  According to the present embodiment, when an additional authority such as an employee or forbidden copying is set for the electronic document 50 like the display / printing authority, the fact is displayed on the display 16 or printing. By outputting to the medium, the user can be notified of the authority setting status.

  FIG. 8 is a conceptual diagram showing an output result when a certain user prints the electronic document 50 at different dates and times. It is assumed that an expiration date T of the set print authority is set in the electronic document 50.

  A user tries to print the electronic document 50 within the time limit. Then, the electronic document is printed as shown in FIG. On the other hand, printing of the electronic document 50 is attempted after the time limit T has elapsed. Then, as shown in FIG. 8B, the electronic document is not printed. In this case, “printing impossible” is printed in order to prevent output in a blank state.

  According to the present embodiment, the authority setting for the same electronic document and object can be made different depending on the time like the printing authority. Therefore, for example, it can be effectively used when the use of the log is permitted only during a certain event holding period such as the Olympics or the World Cup.

  The operation of the electronic document processing apparatus 1 according to the present embodiment has been described above with reference to the output result obtained by the difference in processing authority setting contents. Next, the operation of the electronic document processing apparatus 1 in the present embodiment will be described using the flowchart shown in FIG. 9 from the viewpoint of internal processing that handles processing authority information.

  In order to start using the document processing apparatus 1, the user inputs a user ID and a password and receives user authentication. The user identification processing unit 22 receives the user ID that has been authenticated, and identifies the user (step 101). Thereafter, the user inputs and designates an electronic document to be subjected to document processing such as display, editing, and printing using document creation software, a printer driver, or the like. For example, it is assumed that the user performs selection operation of an electronic document in order to display the existing electronic document on the screen using the document creation software. Then, the user interface unit 24 accepts the designated electronic document (step 102). More specifically, identification information (document ID) of the electronic document is extracted from the attribute information of the input electronic document. The authority confirmation processing unit 26 sends the identification information of the user who is using the document processing apparatus 1 and the electronic document to be processed to the information management unit 28 to inquire, thereby processing the electronic document that the user has. The authority is confirmed (step 103). When the “display” process and the process type can be specified as in this example, the process type to be executed is sent together with the identification information, so that only the process authority for the electronic document possessed by the user is confirmed. May be. When the identification information and the processing type of the designated user and document are designated from the authority confirmation processing unit 26, the information management unit 28 uses the identification information and the processing type as a key to store the electronic document and The management information holding units 42 and 44 of the object are searched and the search result or the presence / absence of the authority obtained from the search result is sent back to the authority confirmation processing unit 26. More specifically, the information management unit 28 searches the electronic document management information holding unit 42 using the document ID as a key to acquire the processing authority information of the electronic document itself, and the ID of the object forming the electronic document Is identified. Then, the object management information holding unit 44 is searched using the object ID as a key, and the processing authority information of the corresponding object is acquired.

  As a result of confirming the processing authority, when the user does not have any processing authority for the electronic document to be processed (N in Step 104), the document processing control unit 32 executes the process for when no authority is given. 30 (step 105), and the process is terminated. The process for when there is no authority is a process that should be exceptionally performed because it does not have the authority but the display and printing processes instructed by the user. According to the operation outline described with reference to FIG. 6, a print output of “printing impossible” in response to the print processing instruction of the electronic document 50 from the user C corresponds to the processing for when there is no authority.

  On the other hand, as a result of confirming the processing authority, when the user has some authority for the electronic document to be processed (Y in step 104), the processing execution unit 30 sets the processing set for the electronic document itself to be processed. The authority is compared with the processing authority of each object included in the electronic document (step 106). For example, the user B in FIG. 6 has conflicting processing authority such as the logo object 52 in which the printing authority (permitted) for the electronic document 50 itself and the printing authority (unpermitted) for the object 52 conflict. When there is a set object (Y in Step 107), the priority determination processing unit 40 determines whether the user has authority for the object in accordance with preset priority information (Step 108). In the priority information, if a selection criterion for selecting which to use when the processing authority is contradictory is set, the setting content to the information does not need to be particularly limited. For example, it is determined by always giving priority to an object, giving priority to an electronic document if it is an image among objects, or by the job title of the user. The priority information may be stored in the priority determination processing unit 40 or may be stored separately in the storage unit so as to be easily updated.

  As described with reference to FIG. 8, the presence / absence of processing authority varies depending on the document processing execution time. That is, in step 104, when the time limit is set in the time limit information included in the processing authority information of the corresponding object, the display processing unit 34 compares the time that can be specified from the time limit information with the current time, and the current is valid. Only when it is within the time limit, the document processing is performed in accordance with the other set processing authority information.

  As described above, when the presence / absence of processing authority is specified for each object, according to the processing units 34 and 36 executed by the processing execution unit 30 and the example described here, the display processing unit 34 By instructing the management unit 28, the entity of the authorized object is acquired from the object management information holding unit 44 using the object ID as a key (step 109). Then, the process instructed by the user is executed (step 110). When display of an existing electronic document is instructed as in this example, the electronic document to be displayed is displayed on the display 16. In the case of the present embodiment, the displayed electronic document includes only objects with authority. Of course, the display processing unit 34 is not limited to displaying the electronic document to be displayed as it is, and may display additional information as necessary, such as the marks 56, 58, and 60 illustrated in FIG. is there. Further, when the object is held in an encrypted state, the decryption processing unit 38 is made to perform decryption according to the decryption information included in the processing authority information of the object.

  According to the present embodiment, since the processing authority can be set for each object constituting the electronic document as described above, the processing authority can be partially set without being limited to the entire electronic document. Therefore, for example, in the case of print processing, when the confidential information and the information that is not mixed are mixed in one page, fine authority setting such as not printing only the confidential information can be performed. In addition, it is possible to easily realize a printing process in which the same electronic document is printed with a logo if it is an employee and without a logo if it is not an employee. Furthermore, even if the electronic document composed of a plurality of pages is separated or bundled or the pages constituting the electronic document are changed, the processing authority setting of the object set separately from the electronic document is not affected. That is, since the processing authority setting of the electronic document can be maintained in units of objects, it is possible to flexibly cope with the change of the pages constituting the electronic document.

Embodiment 2. FIG.
In the first embodiment, the case where the electronic document management system according to the present invention is realized by one computer called the document processing apparatus 1 has been described. The present embodiment shows a case where an electronic document management system is realized by connecting a plurality of computers to a network. In addition, the same code | symbol is attached | subjected to the same component as Embodiment 1, and description is abbreviate | omitted suitably.

  FIG. 10 is a network configuration diagram of the electronic document management system in the present embodiment. FIG. 10 shows a configuration in which two electronic document processing apparatuses 1, a policy management server 70, and a user authentication server 72 are connected via a network 74. The policy management server 70 in the present embodiment is also a database server, and collectively manages electronic documents handled by the system and information related to the electronic documents. The policy management server 70 includes the information management unit 28, the electronic document management information holding unit 42, the object management information holding unit 44, and the object database 46 that the electronic document processing apparatus 1 has in the first embodiment. The user authentication server 72 authenticates a user who uses this system.

  Since all the electronic document processing apparatuses 1 in the present embodiment have the same configuration, the electronic document processing apparatus A is illustrated in detail. In FIG. 10, for convenience of explanation, only two units, that is, the electronic document processing apparatus A used by the user A and the electronic document processing apparatus B used by the user B are shown, but one unit or three or more units may be used. The electronic document processing apparatus 1 includes a user authentication processing unit 23, a user interface unit 24, an authority confirmation processing unit 26, a process execution unit 30, and a document processing control unit 32. Although the processing function is slightly different with the transfer of the electronic document related information to the policy management server 70, the electronic document processing apparatus 1 in the present embodiment basically has the same processing function as in the first embodiment. ing. However, in the first embodiment, the login user is merely identified. However, in the present embodiment, since the user authentication server 72 needs to receive user authentication, user authentication processing is performed for the user authentication. Part 23 was provided.

  In FIG. 10, the document processing itself performed in each of the electronic document processing apparatuses A and B is almost the same as that in the first embodiment. In FIG. 10, when the users A and B try to display the electronic document 50 on the displays 16A and 16B of the electronic document processing apparatuses A and B, the same electronic document 50 is displayed with different contents. Explicit.

  In the present embodiment, since the policy management server 70 is configured to collectively manage the electronic document and the processing authority of each object included in the electronic document, each electronic document processing apparatus 1 holds and manages various types of information. In comparison, it is possible to easily deal with each user, change processing authority settings, and the like.

It is a hardware block diagram of the computer corresponded to the electronic document processing apparatus concerning this invention. 2 is a functional block configuration diagram of an electronic document processing apparatus according to Embodiment 1. FIG. 6 is a diagram illustrating a data configuration example of electronic document management information held in an electronic document management information holding unit according to Embodiment 1. FIG. 6 is a diagram illustrating a data configuration example of electronic document management information held in an object management information holding unit according to Embodiment 1. FIG. In Embodiment 1, it is the conceptual diagram which showed the output result when each user displayed an electronic document on a display, and printed from the printer. FIG. 3 is a conceptual diagram illustrating an output result when each user prints an electronic document from a printer in the first embodiment. FIG. 5 is a conceptual diagram illustrating an output result when a certain user displays and prints electronic documents with three types of processing authority set in the first embodiment. 6 is a conceptual diagram illustrating an output result when a certain user prints an electronic document at different dates and times in Embodiment 1. FIG. 3 is a flowchart illustrating document processing performed by the electronic document processing apparatus according to Embodiment 1. 6 is a network configuration diagram of an electronic document management system in Embodiment 2. FIG.

Explanation of symbols

  1 electronic document processing device, 2 CPU, 4 ROM, 6 RAM, 8 hard disk drive (HDD), 10 HDD controller, 12 mouse, 14 keyboard, 16, 16A, 16B display, 18 input / output controller, 20 internal bus, 22 user Identification processing unit, 23 User authentication processing unit, 24 User interface unit, 26 Authority confirmation processing unit, 28 Information management unit, 30 Process execution unit, 32 Document processing control unit, 34 Display processing unit, 36 Print processing unit, 38 Decoding process 40, priority determination processing unit, 42 electronic document management information holding unit, 44 object management information holding unit, 46 object database, 70 policy management server, 72 user authentication server, 74 network.

Claims (8)

User identification processing means for identifying a user;
Designated by the user as a processing target from a document management information storage unit that stores processing authority information of an electronic document including one or more objects and an object management information storage unit that stores processing authority information of an object included in the electronic document The processing authority information of the electronic document and the processing authority information of each object included in the electronic document are acquired, and the electronic document is within the authority range permitted to the user according to the acquired processing authority information. Document processing means for performing document processing;
An electronic document processing apparatus comprising: The electronic document processing apparatus according to claim 1.
The document processing means is stored in the priority information storage means if the processing authority information of the electronic document to be processed and the processing authority contradicting each of the processing authority information of each object included in the electronic document are set. An electronic document processing apparatus that performs document processing with priority given to any processing authority information according to priority information of the processing authority information. The electronic document processing apparatus according to claim 1.
When the object is held in an encrypted state, the document processing means performs document processing after decrypting according to the decryption information included in the processing authority information of the object. Document processing device. The electronic document processing apparatus according to claim 1.
The document processing means compares the time limit information included in the processing authority information of the object with the current time, and performs document processing according to the processing authority information only when the current time is within the expiration date. Electronic document processing device. The electronic document processing apparatus according to claim 2.
An electronic document processing apparatus comprising at least one of the document management information storage unit, the object management information storage unit, and the priority information storage unit. Computer
User identification processing means for identifying a user;
Designated by the user as a processing target from a document management information storage unit that stores processing authority information of an electronic document including one or more objects and an object management information storage unit that stores processing authority information of an object included in the electronic document The processing authority information of the electronic document and the processing authority information of each object included in the electronic document are acquired, and the electronic document is processed within the authority range permitted for the user according to the acquired processing authority information. Document processing means for performing document processing;
Electronic document processing program to function as. Document management information storage means for storing processing authority information of an electronic document including one or more objects;
Object management information storage means for storing processing authority information of objects included in the electronic document;
Object storage means for storing the substance of the object;
A document processing apparatus that performs the specified document processing on the electronic document specified by the user;
Have
The document processing apparatus includes:
User identification processing means for identifying a user;
For the electronic document designated by the user, from the document management information storage means and the object management information storage means, processing authority information of the electronic document designated by the user as a processing target, and each object included in the electronic document Each of the processing authority information, and in accordance with the acquired processing authority information, the document processing means for performing the document processing on the electronic document within the authority range permitted to the user,
Have
An electronic document management system for managing processing authority for an electronic document in units of objects. Document management information storage means for storing processing authority information of an electronic document including one or more objects, object management information storage means for storing processing authority information of an object included in the electronic document, and an object for storing an object entity Implemented in the electronic document processing apparatus included in the electronic document management system together with the storage means,
Identify users,
With respect to the electronic document designated by the identified user, the processing authority information of the electronic document designated by the user as the processing target from the document management information storage means and the object management information storage means, and included in the electronic document Processing authority information for each object
Document processing is performed on the electronic document within the authority range permitted to the user according to the acquired processing authority information.
An electronic document processing method.

Images