JP2008171487A - Data input unit, data output unit, and data processing system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a data input unit, data output unit, and data processing system for storing encrypted data into a removable storing medium and ensuring confidentiality of data when reading and decrypting the encrypted data from the removable storing medium for use. <P>SOLUTION: The data processing system 1 has a data input unit 100 which encrypts the data based on an encryption key corresponding to authentication information for user authentication inputted from a user interface, and stores the encrypted data in a portable storage medium; and a data output unit 200 which acquires a decryption key corresponding to the authentication information when the user authentication information is inputted and decodes the encrypted data stored in a portable storing medium by using the decryption key to carry out output processing such as printing and facsimile transmission. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to a data input device, a data output device, and a data processing device, and more particularly, encrypts and stores data in a detachable storage medium, and extracts the encrypted data from the detachable storage medium. The present invention relates to a data input device, a data output device, and a data processing device that are intended for data confidentiality when decrypted and used.

  Data input devices, data output devices and data processing devices such as printers, facsimile devices, composite devices, copiers, scanners, computers, etc. handle various data (image data, etc.). Establishing confidentiality (security) is an important issue.

  In particular, recently, in data processing devices and the like, the captured data is stored in a memory so that it can be retrieved when necessary, and the security of the data stored in such a memory can be ensured. It is an important issue.

  Conventionally, it is a capture information encryption device applied to a device having removable storage means having a capacity capable of capturing information such as images and sounds, and generates a common key for encrypting capture target information The capture target information is encrypted using the common key, and the common key itself used to encrypt the capture target information is encrypted using user-specific information such as a device manufacturing serial number and a user password as a common key. The encrypted capture information and the encrypted common key information are stored in the storage means, and the decryption means for decrypting the capture information stored in the storage means is input by the user when starting up the device. If the password is not entered, if the password is not entered, select the device's manufacturing serial number as the common key, Common key itself decrypts the used for encrypting the Yapucha object information, capture information encrypting apparatus for decoding the captured information using the common key No. 該復 has been proposed (see Patent Document 1).

  Conventionally, storage authentication information for recognizing the identity of the user is stored in the recording medium, and storage means having an area corresponding to the storage authentication information and authentication of the identity of the user are performed. Receiving means for receiving the received authentication information, authentication means having tamper resistance, and determining whether the received received authentication information matches the stored authentication information stored therein, and the received authentication information Is determined to match the storage authentication information, a recording medium including a processing unit that permits use of an area corresponding to the storage authentication information, and a recording medium unauthorized use prevention system that writes to the recording medium are proposed. (See Patent Document 2).

  According to this prior art, since the authentication means has tamper resistance, the authentication means can be prevented from being decrypted and falsified by a third party, and the usable area is associated with the stored authentication information. Depending on the situation, you are trying to limit the available space.

JP 2001-202278 A JP 2004-54951 A

  However, the above prior arts need to be improved in order to further improve the versatility and confidentiality of data.

  That is, in the prior art described in Patent Document 1, for the purpose of encrypting the capture information, it is applied only to the capture device, and the common key for encrypting the capture target information is used as the manufacturing serial number of the device. Therefore, when a third party obtains the capture device, the common key is decrypted and the captured capture information is decrypted. The versatility of application to information other than capture information and the information In order to improve confidentiality, it was necessary to improve.

  Further, in the prior art described in Patent Document 2, since each means is provided on the recording medium to ensure security, it can be applied only to special recording media lacking versatility. In order to improve the confidentiality of information, there was a need for improvement.

  Therefore, an object of the present invention is to provide a data input device, a data output device, and a data processing device that appropriately ensure the confidentiality of data written to a detachable storage medium while improving versatility.

  The data input device according to the first aspect of the present invention is a storage medium connection means to which a connectable / detachable storage medium is connected, an encryption means for encrypting data, and an information input means for inputting predetermined information. And the encryption means encrypts the data based on the encryption key corresponding to the authentication information for user authentication input from the information input means, and the encrypted data is connected to the storage medium connection means. And the control means for storing in the detachable storage medium. The above object is achieved.

  A data output device according to a second aspect of the present invention is a storage medium connection unit to which a connectable / detachable storage medium is connected; a decryption unit that decrypts encrypted data using a decryption key; A utilization means for utilizing the decrypted data of the decryption means, an information input means for inputting predetermined information, and a decryption key for obtaining a decryption key corresponding to the authentication information for user authentication input from the information input means Using the decryption key obtained by the decryption key obtaining means to decrypt the encrypted data stored in the detachable storage medium and using the decrypted data for the utilization means The above-mentioned object is achieved.

  According to a third aspect of the present invention, there is provided a data processing apparatus comprising: a storage medium connecting means to which a connectable / detachable storage medium is connected; an encryption means for encrypting data; and an information input means for inputting predetermined information. Decryption means for decrypting the encrypted data using a decryption key, utilization means for using the decrypted data of the decryption means, and authentication information for user authentication input from the information input means And a decryption key obtaining unit that obtains a decryption key corresponding to the data, and the encryption unit encrypts data based on an encryption key corresponding to the authentication information for user authentication input from the information input unit. Data is stored in the detachable storage medium connected to the storage medium connection means, and stored in the detachable storage medium using the decryption key acquired by the decryption key acquisition means in the decryption means. By the the decoded data to decrypt it has encrypted data and a, and a control means for use in said utilization means, have achieved the above objects.

  In each of the above cases, for example, as described in claim 4, the detachable storage medium is the data input device storing the encrypted data in the detachable storage medium or the encrypted data is decrypted Connection information for connecting via a predetermined communication line to a management device that manages a decryption key to be stored may be stored.

  For example, as described in claim 5, the detachable storage medium may store an IP address of the data input device or the management device as the connection information.

  Further, for example, as described in claim 6, the detachable storage medium may store setting information for performing encrypted communication with the data input device or the management device as the connection information. Good.

  For example, as described in claim 7, the detachable storage medium may store user specifying information for specifying a user who has encrypted the encrypted data in the detachable storage medium. .

  Furthermore, for example, as described in claim 8, the detachable storage medium may store the connection information in a state encrypted by the encryption unit.

  For example, as described in claim 9, the detachable storage medium may store the connection information in association with the encrypted data for each encrypted data.

  Further, for example, as described in claim 10, the control means includes, in the connection information, insufficient information that is insufficient to connect to the data input device or the management device and acquire the encryption key. If it is present, a request for inputting the shortage information is made. When the shortage information is input from the information input means in response to the input request, the data is sent to the decryption key acquisition means based on the shortage information and the connection information. The encryption key may be acquired from the input device or the management device.

  Further, for example, as described in claim 11, when the control unit makes an input request for authentication information for authenticating a user as the insufficient information, and authentication information is input in response to the input request, The decryption key acquisition means may acquire the encryption key from the data input device or the management device based on the authentication information.

  Furthermore, for example, as described in claim 12, the control unit makes an input request for encrypted communication information necessary for performing encrypted communication as the insufficient information, and performs encrypted communication in response to the input request. When information is input, the encryption key may be acquired by causing the decryption key acquisition means to perform encrypted communication with the data input device or the management device using the encrypted communication information.

  Further, for example, as described in claim 13, when the decryption key corresponding to the authentication information does not exist in the own device, the control unit includes the data input device or the management device in the decryption key acquisition unit. The decryption key corresponding to the authentication information may be obtained from

  Further, for example, as described in claim 14, the control unit includes a decryption key corresponding to the authentication information in its own device, and the decryption unit decrypts the encrypted data using the decryption key. If the decryption fails, the decryption key obtaining unit may obtain the decryption key corresponding to the authentication information from the data input device or the management device.

  Further, for example, as described in claim 15, in the data output device or the data processing device, the utilization unit prints out the decoded data, a display function that displays the decoded data, At least one of a data storage function for storing the decoded data and a transmission function for transmitting the decoded data to a predetermined apparatus may be provided.

  According to the data input device of the present invention, the data is encrypted based on the encryption key corresponding to the authentication information for user authentication, and the encrypted data is stored in the removable storage medium, so that versatility is improved. The confidentiality of the data stored in the detachable storage medium can be appropriately ensured.

  According to the data output device of the present invention, when the authentication information for user authentication is input, the decryption key corresponding to the authentication information is acquired, and the encrypted data stored in the detachable storage medium is Since the decryption key is used for decryption, the confidentiality of the encrypted data in the detachable storage medium can be ensured, and the versatility can be improved to improve the usability of the data.

  According to the data processing device of the present invention, the data is encrypted based on the encryption key corresponding to the authentication information for user authentication, and the encrypted data is stored in the detachable storage medium, and the authentication information for user authentication Is input, the decryption key corresponding to the authentication information is acquired, and the encrypted data stored in the removable storage medium is decrypted using the decryption key. The confidentiality of the data stored on the medium can be appropriately ensured, and the versatility can be improved to improve the usability of the data.

  Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings. In addition, since the Example described below is a suitable Example of this invention, various technically preferable restrictions are attached | subjected, However, The scope of the present invention limits this invention especially in the following description. As long as there is no description of the effect, it is not restricted to these aspects.

  1 to 24 are diagrams showing an embodiment of a data input device, a data output device, and a data processing device according to the present invention. FIG. 1 shows a data input device, a data output device, and a data processing device according to the present invention. 1 is a system configuration diagram of a data processing system 1 to which an embodiment is applied.

  In FIG. 1, in a data processing system 1, a data input device 100 and a data output device 200 are connected by a predetermined communication line 300. The communication line 300 is a serial / parallel (bidirectional), USB, IEEE 1394, or the like. A network such as a dedicated or general-purpose interface cable, a LAN (Local Area Network), or the Internet is used.

  The data input device 100 is a device having a function of inputting image data (data) such as a scanner function and a facsimile reception function, and a contact glass 102 on which a document is set is disposed on the upper part of the main body housing unit 101. Has been. At the upper one side end of the main body casing 101, the upper surface of the contact glass 102 is opened and closed so that a document is set on the contact glass 102 and the set document is pressed onto the contact glass 102. A rotating pressure plate 103 is attached.

  As shown in FIG. 2, the data input device 100 includes a control unit 110, an image data generation unit 111, an encryption unit 112, a portable storage medium management unit 113, a user interface 114, an authentication information management unit 115, and the like. .

  The control unit (control unit) 110 includes a CPU (Central Processing Unit), a ROM (Read Only Memory), a RAM (Random Access Memory), and the like, and controls each unit of the data input device 100 based on software in the ROM. In addition to executing data input functions such as a scanner function and a facsimile transmission function, data security management processing described later is performed. In particular, the control unit 110 receives an image generation parameter designated by the user through the user interface 114. At this time, when there are a plurality of image generation function units of the image data generation unit 111, one of the image generation parameters is selected. In addition, when the image data generation unit 111 is a data storage unit and there are a plurality of data stored in the data storage unit, data selection information and the like are included. Further, when the user interface 114 is operated, the control unit 110 receives the authentication information from the user interface 114 if the authentication information (authentication information for authenticating the user) has already been acquired. The control unit 110 controls the image data generation unit 111 based on the received image generation parameters to acquire data (image data). Note that the control unit 110 passes the acquired data to the encryption unit 112 and encrypts the encrypted data (encrypted data) via the portable storage medium management unit 113. To the portable storage medium 400 (see FIG. 3). At this time, when the authentication information is not accepted as an image generation parameter, the control unit 110 performs an authentication request by performing a display for prompting input of the authentication information on the display unit of the user interface 114 or the like.

  The image data generation unit 111 is a functional unit that provides image data such as a scanner function unit using a CCD (Charge Coupled Device), a facsimile function unit, and a data storage unit that holds image data that has already been digitized. In the scanner function unit, when the pressure plate 103 is opened and an original is set on the contact glass 102 and the pressure plate 103 is closed, the original on the contact glass 102 is irradiated with light from a light source mounted on the traveling body. The traveling body is moved, and the reflected light reflected by the document is photoelectrically converted by the CCD to read an image of the document with a predetermined resolution. The image data generation unit 111 performs predetermined image processing on the data acquired by the scanner function or the facsimile communication function or the data acquired from the data storage unit under the control of the control unit 110, and outputs the data to the encryption unit 112.

  The encryption unit (encryption unit) 112 is a functional unit that encrypts data. The encryption unit (encryption unit) 112 encrypts data using a predetermined encryption method and encrypts the data with a strength according to the encryption strength specified by the control unit 110. And transferred to the portable storage medium management unit 113. In this encryption, the encryption unit 112 receives an encryption key corresponding to the authentication information for user authentication input from the user interface 114 from the authentication information management unit 115, and encrypts data using the encryption key.

  The portable storage medium management unit (storage medium connection means) 113 is configured as a block as shown in FIG. 3 and includes an input / output management unit 120, an interface 121, and a connection detection unit 122.

  A portable storage medium (detachable storage medium) 400 is detachably connected to the interface 121. The portable storage medium 400 is, for example, a hard disk (HDD), a CD (Compact Disc), or a CD (Compact Disc). Recording media such as DVD (Digital Video Disk), flexible disk, USB (Universal Serial Bus) memory, and various memory cards are used.

  The portable storage medium 400 stores encrypted data encrypted by the encryption unit 112, for example, encrypted image data.

  In this embodiment, the portable storage medium 400 is a medium that can be exchanged without turning off the power of the data input device 100. However, the portable storage medium 400 needs to be exchanged by turning off the power of the data input device 100. Is also applicable.

  The interface 121 includes a mechanism for reading and writing the portable storage medium 400 and a communication path necessary for connecting the mechanism to the input / output management unit 120. For example, the portable storage medium 400 is a hard disk, When connecting with IEEE 1394, it is an IEEE 1394 interface, and when the portable storage medium 400 is various memory cards and when connecting with USB, it is a USB interface for connecting the memory card adapter and the adapter.

  The input / output management unit 120 manages the storage format (file system) of data on the portable storage medium 400 attached to the interface 121, and processes data input / output requests for the portable storage medium 400.

  The connection detection unit 122 detects whether or not the portable storage medium 400 is connected to the interface 121 and notifies the control unit 110 of the detection result.

  As shown in FIG. 4, the authentication information management unit 115 shown in FIG. 2 includes an authentication information matching unit 130, an authentication information holding unit 131, a communication interface 132, and the like. Provide the corresponding encryption key.

  The authentication information holding unit 131 uses a non-volatile memory such as a hard disk or a battery-backed RAM (Random Access Memory), and stores authentication management information. This authentication management information is, for example, as shown in FIG. 5, in which authentication information including a user ID (UID) and a password (PWD) and key information (Key) for data encryption / decryption are uniquely associated. For example, as shown in FIG. 5, it is stored in the authentication information holding unit 131 in a table format or the like. The authentication management information can appropriately authenticate whether or not the user who intends to use the data input device 100 has the authority to use the data input device 100, and encrypts / decrypts data. As long as it is information that can provide key information used for conversion, any method may be used as the authentication method and key information holding method.

  The communication interface 132 is connected to a communication line that can be connected to an external authentication server, for example, the communication line 300 or the Internet. The communication interface 132 is controlled via the communication line under the control of the authentication information matching unit 130. To the data output device 200 and the authentication server. This authentication server stores authentication management information similar to that of the authentication information holding unit 131, performs authentication in response to a request from the authentication information collating unit 130, and obtains an authentication result and necessary encryption and decryption keys. Provide information. In addition, the communication interface 132 communicates with an external device used by the user, such as a personal computer, via a communication line in order to allow the user to use the data input device 100 from the outside, and issues an authentication request. Receives, passes authentication results and necessary key information, and sends and receives data. The communication interface 132 only needs to be able to exchange data by connecting at least the data input device 100 and the authentication server. The communication interface 132 is not limited to communication using an IP protocol such as Ethernet (registered trademark) or WiFi, but also Bluetooth, IrDa or the like may be used.

  The authentication information matching unit 130 is connected to the control unit 110 and is also connected to the authentication information holding unit 131 and the communication interface 132, and an authentication request from the user interface 114 (inside the data input device 100), or In response to an authentication request sent through the communication interface, the authentication information of the corresponding user is acquired from the authentication information holding unit 131 and collated, or the authentication information of the corresponding user is received from the authentication server via the communication interface 132. Is obtained and collation is performed. If the authentication information collating unit 130 refers to the authentication information holding unit 131 and succeeds in the authentication, the authentication information matching unit 130 acquires the corresponding key information from the authentication information holding unit 131 and passes it to the control unit 110. Further, when the authentication request is a request from the user interface 114 and explicitly requests authentication by an external authentication server, the authentication information matching unit 130 sends an authentication request to the external authentication server via the communication interface 132. On the other hand, the authentication request is transferred, the authentication result from the authentication server and the key information when the authentication is successful are received, and the authentication result and the key information when the authentication is successful are passed to the control unit 110.

  In FIG. 2 again, the user interface (information input means) 114 includes an operation key and a display unit such as an LCD (Liquid Crystal Display), etc. From the operation key, various commands and commands, in particular, a data input device. An operation for inputting authentication information for user authentication using 100 and an operation for inputting an authentication request command are performed, and the display unit outputs various types of information notified to the user from the data input device 100.

  On the other hand, the data output apparatus 200 is an apparatus that performs output processing such as print output, display output, transmission output, and storage of data such as a printer, a copying apparatus, and a composite apparatus, and the output method is not limited at all. For example, in the case of print output, the printing method is not limited at all, and for example, a printing method such as an electrophotographic method or an ink ejection method can be used.

  The main part of the data output apparatus 200 has a block configuration as shown in FIG. 6, and includes a control unit 201, an image data utilization unit 202, a decoding unit 203, a portable recording medium management unit 204, a user interface 205, and An authentication information management unit 206 is provided.

  The control unit (control unit) 201 includes a CPU, a ROM, a RAM, and the like, and controls each unit of the data output device 200 based on software in the ROM to execute a data output function such as a printer function or a facsimile communication function unit. At the same time, data security management processing described later is performed. When the user designates data on the portable storage medium 400 to be processed by the user interface 205, the control unit 201 acquires the designated data. At this time, the control unit 201 records the data on the portable storage medium 400. A list of data is acquired and presented on the display unit of the user interface 205 so that the user can select data to be processed from the list of presented data. In addition, when there are a plurality of functional units of the image data using unit 202, the control unit 201 also designates which functional unit uses the image data. The control unit 201 receives selection information of image data (data) designated by the user from the user interface 205. If the authentication information has already been acquired when the user interface 205 is operated, the authentication information is displayed. It is received from the user interface 205 together with image data selection information. The control unit 201 acquires the image data on the portable storage medium 400 based on the received image data selection information, passes the acquired image data to the decoding unit 203, and causes the decoding unit 203 to decode the acquired image data. . If the authentication information is not received as an image generation parameter at this time, the control unit 201 makes a display requesting the authentication information to be displayed on the display unit of the user interface 205 and requests acquisition of the authentication information. When the information is acquired, a decryption key corresponding to the authentication information and used for decryption is obtained from the authentication information management unit 206, and the decryption key is passed to the decryption unit 203 for decryption. The control unit 201 passes the decrypted data to the image data utilization unit 202 for use by the image data utilization unit 202.

  The image data use unit (use means) 202 is a part that uses the decoded image data, and various data output provided by the data output device 200 such as printing, display, data storage, and transmission (transfer) of the image data. It has a function to realize a service.

  The decryption unit (decryption unit) 203 decrypts the encrypted data (encrypted data) recorded in the portable storage medium 400 using the decryption key acquired by the authentication information management unit 206. The decryption unit 203 is not limited in the encryption method, and can select the strength of decryption as necessary.

  Similar to the portable storage medium management unit 113 of the data input device 100 shown in FIG. 3, the portable storage medium management unit 204 includes an input / output management unit, an interface, and a connection detection unit. The storage format of the data on the portable storage medium 400 detachably attached to the interface is managed, and the data input / output request to the portable storage medium 400 is processed.

  The authentication information management unit (decryption key acquisition means) 206 has the same configuration as that of the authentication information management unit 115 of the data input device 100 shown in FIG. Unit, an authentication information holding unit, a communication interface, and the like, and obtains a decryption key based on the authentication information and the connection information.

  As in the authentication information holding unit 131 of the authentication information management unit 115, the authentication information holding unit uses a non-volatile memory such as a hard disk or a battery-backed RAM, and stores authentication management information. For example, as shown in FIG. 5, this authentication management information is uniquely associated with authentication information consisting of a user ID (UID) and password (PWD) and key information (Key) for data encryption / decryption. For example, as shown in FIG. 5, it is stored in the authentication information holding unit 131 in a table format or the like. The authentication management information can appropriately authenticate whether or not the user who intends to use the data output apparatus 200 has the authority to use the data input apparatus 200 and encrypts / decrypts data. As long as it is information that can provide key information used for conversion, any method may be used as the authentication method and key information holding method.

  The communication interface is the same as the communication interface 132 of the authentication information management unit 115, and is connected to a communication line that can be connected to an external authentication server, such as the communication line 300 or the Internet, and is controlled by the authentication information verification unit. Thus, the data input device 100 and the authentication server are connected via the communication line. The communication interface receives an authentication request by communicating with an external device used by the user, such as a personal computer, via a communication line so that the user can use the data output device 200 from the outside. And pass authentication results and necessary key information, and send and receive data. Similar to the communication interface 132 of the data input device 100, the communication interface of the data output device 200 only needs to be capable of exchanging data by connecting at least the data output device 200 and the authentication server. An IP protocol such as Ethernet or WiFi can be used. In addition to communication using Bluetooth, Bluetooth, IrDA, or the like may be used.

  The authentication information verification unit is the same as the authentication information verification unit 130 of the authentication information management unit 115. In response to an authentication request from the user interface 205 or an authentication request sent through the communication interface, the authentication information verification unit The corresponding user authentication information is acquired and collated, or the corresponding user authentication information is acquired from the data input device 100 or the authentication server via the communication interface and collated. When the authentication information collating unit refers to the authentication information holding unit and succeeds in the authentication, the authentication information collating unit acquires the corresponding key information from the authentication information holding unit and passes it to the control unit 201. Further, the authentication information collation unit, when the authentication request is a request from the user interface 205 and explicitly requests authentication by an external authentication server, the external data input device 100 or the like via the communication interface. The authentication request is transferred to the authentication server, the authentication result from the data input device 100 or the authentication server and the key information when the authentication is successful are received, and the authentication result and the key information when the authentication is successful are passed to the control unit 201.

  In FIG. 6 again, the user interface (information input means) 205 includes an operation key and a display unit such as an LCD, etc. From the operation key, various commands and commands, in particular, a user who uses the data output device 200. The authentication information input operation for authentication and the input operation of the authentication request command are performed, and the display unit outputs various types of information notified to the user from the data output device 200.

  Next, the operation of this embodiment will be described. The data processing system 1 of the present embodiment confirms the user who uses the data input device 100 when storing the data acquired by the data input device 100 in the portable storage medium 400, and then When the authentication information is stored in an encrypted state with an encryption key, and the encrypted data in the portable storage medium 400 is used in the data output device 200, the user who uses the data output device 200 is confirmed. Then, a data security management process is performed in which the encrypted data is decrypted using the decryption key acquired based on the user authentication information and the use is permitted.

  First, a data security management process when data is stored in the portable storage medium 400 in the data input device 100 will be described.

  The data input device 100 monitors the connection state of the portable storage medium 400 as shown in FIG. 7 at predetermined time intervals while the power is on. That is, in the data input device 100, the control unit 110 changes in the mounting state (connection state) of the portable storage medium 400 to the interface 121 detected by the connection detection unit 122 of the portable storage medium management unit 113. It is checked at predetermined time intervals (step S101), and if there is no change in the connection state, it waits until the next detection timing and similarly checks the change in the connection state (step S101). .

  When a change occurs in the connection state of the portable storage medium 400 in step S101, the control unit 110 executes a state change process corresponding to the change in the connection state (step S102).

  The controller 110 executes this state change process as shown in FIG. FIG. 8 shows a case where data input is acquired by the scanner function, and the acquired data is encrypted and stored in the portable storage medium 400. However, the data input is limited to scan input. Instead, it may be facsimile reception, input from an information terminal such as a personal computer via a network, or the like.

  As shown in FIG. 7, when a change occurs in the connection state of the portable storage medium 400, the control unit 110 changes the connection state from the non-connection state of the portable storage medium 400 as shown in FIG. 8. It is checked whether it is a change to a connected state (step S201), and if it is a change from a non-connected state to a connected state, scan-to-memory (SCAN to memory) that scans and stores it in the portable storage medium 400 (memory) The fact that Memory is valid is notified by a method such as displaying a message to that effect on the display unit of the user interface 114 (step S202).

  In step S201, if the change in the connection state is a change from the connection state of the portable storage medium 400 to the non-connection state, the control unit 110 indicates that the number of connected portable storage media 400 is “0”. (Step S203), and when the number of connected portable storage media 400 is not "0", scan-to-memory can be performed using the connected portable storage media 400. The state in which scan-to-memory is possible is maintained as it is, and the process ends.

  In step S203, if the number of connected portable storage media 400 is “0”, the control unit 110 determines that the scan-to-memory cannot be performed, and indicates that the scan-to-memory is invalid. Then, notification is made by displaying a message to that effect on the display unit of the user interface 114 (step S204).

  Thus, the portable storage medium 400 is detected by detecting the connection state of the portable storage medium 400 and notifying that the scan-to-memory is valid when the portable storage medium 400 is connected. Only when is connected, data can be recorded in the portable storage medium 400.

  That is, when the user tries to generate image data, it is confirmed whether or not the portable storage medium 400 is connected, and if it is not connected, it can be notified in advance that recording cannot be performed. it can.

  Note that the data processing procedure in the data input device 100 of the data processing system 1 of the present embodiment is not limited to the above processing procedure. For example, the recording function to the portable storage medium 400 is always enabled, You may make it test | inspect whether the portable storage medium 400 is connected after encryption.

  Next, document reading operation processing by the scanner function accompanied by authentication processing in the data input device 100 will be described with reference to FIG.

  When receiving from the user interface 114 the reading parameters of the reading conditions at the time of reading the original that the user has set and operated on the user interface 114, the control unit 110 analyzes the received reading parameters (step S301). By this reading parameter analysis, reading condition data such as selection of a device to be used for reading a document, reading mode, resolution, reading range, etc. is determined. In this analysis, user authentication information is included as a part of the reading parameter. Check whether the authentication information has been passed. If authentication information has not been passed, the display of the user interface 114 prompts the user to input the authentication information by prompting the user to input the authentication information. Get authentication information.

  That is, the control unit 110 checks whether the authentication information has been acquired (step S302), and if it has been acquired, acquires the encryption key from the authentication information management unit 115 based on the acquired authentication information (step S302). S303).

  When authentication information is not acquired in step S302, the control unit 110 performs authentication information acquisition processing to acquire authentication information (step S304), and based on the authentication information acquired in the authentication information acquisition processing, An encryption key is acquired from the authentication information management unit 115 (step S303).

  When acquiring the encryption key, the control unit 110 sets the encryption key information in the encryption unit 112, and then starts a data acquisition control process by the image data generation unit 111 (step S306).

  In this data acquisition control process, a parameter for recording data acquired in the portable storage medium management unit 113 is set, and an image data generation parameter in the image data generation unit 111 is set. The image data generation unit 111 controls a data generation function unit such as a scanner function, a facsimile communication function, or a data storage unit, and transfers the acquired data to the encryption unit 112. The encryption unit 112 encrypts the transferred data using the acquired encryption key by a predetermined encryption method, and transfers the encrypted data to the portable storage medium management unit 113. The portable storage medium management unit 113 has a portability in which the input / output management unit 120 is connected to the interface 121 with the encrypted data transferred from the encryption unit 112 according to the parameters set by the control unit 110. It is recorded / stored on the storage medium 400.

  As described above, the data input device 100 of the data processing system 1 according to the present exemplary embodiment encrypts data using the encryption unit 112 based on the encryption key corresponding to the authentication information for user authentication input from the user interface 114. The encrypted data is stored in a portable storage medium (detachable storage medium) 400 connected to the interface 121 of the portable storage medium management unit 113.

  Therefore, even if a third party who does not know the authentication information acquires the encrypted data from the portable storage medium 400 itself or the portable storage medium 400, the encrypted data cannot be decrypted, and versatility is improved. While improving, the confidentiality of encrypted data can be improved.

  Next, a data security management process at the time of data acquisition use from the portable storage medium 400 in the data output device 200 will be described.

  Although not shown, the data output device 200 monitors the connection state of the portable storage medium 400 at predetermined time intervals while the power is on, as in the case of the data input device 100 shown in FIG. I do. That is, in the data output device 200, has the control unit 201 changed in the mounting state (connection state) of the portable storage medium 400 to the interface detected by the connection detection unit of the portable storage medium management unit 204? Is checked at predetermined time intervals, and when a change occurs in the connection state of the portable storage medium 400, the control unit 201 executes a state change process corresponding to the change in the connection state.

  The controller 110 executes this state change process as shown in FIG. That is, when a change occurs in the connection state of the portable storage medium 400, the control unit 201 changes the connection state from the non-connection state to the connection state of the portable storage medium 400 as shown in FIG. If there is a change from the unconnected state to the connected state, the memory to indicates that the execution of output processing such as print output is effective by reading data from the portable storage medium 400 The fact that XXX (printing output, etc.) (Memory to XXX) is valid is notified by a method such as displaying a message to that effect on the display unit of the user interface 114 (step S402).

  In step S401, if the change in the connection state is a change from the connection state of the portable storage medium 400 to the non-connection state, the control unit 110 indicates that the number of connected portable storage media 400 is “0”. Whether or not the number of connected portable storage media 400 is not “0”, the memory to output is a memory to output using the connected portable storage media 400. Since x (print output or the like) can be performed, the state in which the memory to xxx (memory to print output) is possible is maintained as it is, and the processing ends.

  In step S403, if the number of connected portable storage media 400 is “0”, the control unit 110 determines that the memory to xxx cannot be performed, and the memory to xxx is not available. Is notified by a method such as displaying a message to that effect on the display unit of the user interface 114 (step S404).

  In this way, the connection state of the portable storage medium 400 is detected, and notification is made that the memory to xxx (data output) is valid when the portable storage medium 400 is connected. Thus, data can be recorded on the portable storage medium 400 only when the portable storage medium 400 is connected.

  That is, when the user tries to use the image data, it is confirmed whether or not the portable storage medium 400 is connected. If the user is not connected, the data cannot be used and the portability is not provided. It is possible to notify that the storage medium 400 is to be connected.

  Note that the data processing procedure in the data output device 200 of the data processing system 1 of the present embodiment is not limited to the above processing procedure. For example, the function of reading from the portable storage medium 400 is always enabled, When the portable storage medium 400 is accessed for data use, it may be checked whether or not the portable storage medium 400 is connected.

  Next, data output processing accompanied with authentication processing in the data output device 200 will be described with reference to FIG.

  When the control unit 201 receives from the user interface 205 the data operation parameter for outputting the data set and input by the user via the user interface 205, the control unit 201 analyzes the received data operation parameter (step S501). By analyzing this data operation parameter, the output condition data such as the selection of the device used for data output and the output mode are determined, and in this analysis, user authentication information is passed as a part of the data operation parameter. If the authentication information is not passed, the display of the user interface 114 is urged to input the authentication information by prompting the input of the authentication information. get.

  That is, the control unit 201 checks whether the authentication information has been acquired (step S502). If the authentication information has been acquired, the control unit 201 acquires a decryption key from the authentication information management unit 206 based on the acquired authentication information (step S502). S503).

  When authentication information is not acquired in step S502, the control unit 201 performs authentication information acquisition processing to acquire authentication information (step S504). Based on the authentication information acquired in the authentication information acquisition processing, A decryption key is acquired from the authentication information management unit 206 (step S503).

  When acquiring the decryption key, the control unit 201 sets the decryption key information in the decryption unit 203 (step S505), and then starts a data transfer control process by the portable storage medium management unit 204 (step S506).

  In this data transfer control process, parameters for data to be read out to the portable storage medium management unit 204 are set, and parameters relating to the use of image data are set in the image data use unit 202. In the data transfer control process, when the data output device 200 includes a plurality of image data use units 202, selection information of the plurality of image data use units 202 is decoded as transfer destination information of the decoded data. Data transfer parameters are set for the image data utilization unit 202 as the reception destination of the output data of the conversion unit 203 or the decoding unit 203.

  The portable storage medium management unit 204 controls the portable storage medium 400, reads data from the portable storage medium 400, and passes it to the decryption unit 203.

  The decryption unit 203 decrypts the data passed from the portable storage medium management unit 204 based on the decryption key information passed from the control unit 201, and transfers the decrypted data to the image data utilization unit 202. The decryption unit 203 confirms the head portion of the decrypted data. The head portion of this data usually includes a header portion indicating the content of the data, and the decoding unit 203 checks whether or not the content of this header is broken. That is, the decryption unit 203 confirms whether the decryption has been performed normally with the correct decryption key by confirming the header portion.

  The decryption unit 203 confirms the validity of the decryption key at the start of transfer of the decrypted data to the image data utilization unit 202. If the decryption key cannot be confirmed, the subsequent data transfer control process And try to acquire another decryption key.

  As described above, when the user authentication information is input, the data output device 200 of the data processing system 1 according to the present embodiment acquires a decryption key corresponding to the authentication information and can be a detachable storage medium. The encrypted data stored in the portable storage medium 400 is decrypted using the decryption key.

  Therefore, the confidentiality of the encrypted data in the portable storage medium 400 can be ensured, the versatility of the data can be improved, and the usability of the data can be improved.

  As the data transfer control process of FIG. 11, the data output device 200 performs the process as shown in FIG. 12 when printing is performed by the printer function unit of the image data utilization unit 202.

  That is, when the decryption unit 203 receives the encrypted data (encrypted data) from the portable storage medium management unit 204, the data output device 200 uses the decryption key passed from the control unit 201. The decrypted data is tried to be decrypted (step S601), and it is checked whether the decryption is successful (step S602).

  When the decryption unit 203 succeeds in decryption in step S602, the decryption unit 203 performs data transfer for transferring the decrypted data to the printer function unit of the image data utilization unit 202, and the printer function unit performs printing based on the decrypted data. Processing is performed (step S603), and it is checked that all data has been processed (step S604).

  If it is determined in step S604 that all the data has not been processed, the decrypting unit 203 returns to step S601 and performs the same processing as described above from the attempt to decrypt the encrypted data (steps S601 to S604), and step S604. When the processing of all data is completed, the control unit 201 displays the print result on the display unit of the user interface 205 and notifies the user of the print result, and ends the data transfer control process (step S605). ).

  If the decryption fails in step S602, the decryption unit 203 notifies the control unit 201 that the decryption has failed, and the control unit 201 notifies the display unit of the user interface 205 that the decryption has failed. The display is performed to notify the user of the decryption failure, and the data transfer control process is terminated (step S606).

  As described above, when the user authentication information is input, the data output device 200 of the data processing system 1 according to the present embodiment acquires a decryption key corresponding to the authentication information and can be a detachable storage medium. The encrypted data stored in the portable storage medium 400 is decrypted using the decryption key and printed out.

  Therefore, the confidentiality of the encrypted data in the portable storage medium 400 can be ensured, the versatility of the data can be improved, and the usability in printing the data can be improved.

  Further, as the data transfer control process of FIG. 11, the data output device 200 performs the process as shown in FIG. 13 when performing display output on the display unit of the user interface 205.

  That is, when the decryption unit 203 receives the encrypted data (encrypted data) from the portable storage medium management unit 204, the data output device 200 uses the decryption key passed from the control unit 201. The decrypted data is tried to be decrypted (step S701), and it is checked whether the decryption is successful (step S702).

  If the decryption unit 203 succeeds in the decryption in step S702, the decryption unit 203 performs data transfer for transferring the decrypted data to the display unit of the user interface 205, and performs a display process for displaying the data on the display unit (step S702). In step S703, it is checked that all data has been processed (step S704).

  If it is determined in step S704 that all the data has not been processed, the decryption unit 203 returns to step S701, performs the same processing as described above from the attempt to decrypt the encrypted data (steps S701 to S704), and step S704. When the processing of all data is completed, the control unit 201 displays the display end on the display unit or the like of the user interface 205, notifies the user of the display end, and ends the data transfer control process (step S705). ).

  If decryption fails in step S702, the decryption unit 203 notifies the control unit 201 that the decryption has failed, and the control unit 201 notifies the display unit of the user interface 205 that decryption has failed. The display is performed to notify the user of the decryption failure, and the data transfer control process is terminated (step S706).

  As described above, when the user authentication information is input, the data output device 200 of the data processing system 1 according to the present embodiment acquires a decryption key corresponding to the authentication information and can be a detachable storage medium. The encrypted data stored in the portable storage medium 400 is decrypted using the decryption key and displayed.

  Therefore, the confidentiality of the encrypted data in the portable storage medium 400 can be ensured, the versatility of the data can be improved, and the usability in displaying the data can be improved.

  Furthermore, the data output device 200 performs processing as shown in FIG. 14 when data is stored in an arbitrary storage device as the data transfer control processing of FIG.

  That is, when the decryption unit 203 receives the encrypted data (encrypted data) from the portable storage medium management unit 204, the data output device 200 uses the decryption key passed from the control unit 201. The decrypted data is tried to be decrypted (step S801), and it is checked whether the decryption is successful (step S802).

  When the decryption unit 203 succeeds in decryption in step S802, the decryption unit 203 transfers the decrypted data to an arbitrary storage device, for example, a hard disk in the data output device 200, and accumulates the data in the storage device (step S803). ) When the transfer and storage of all data to the storage device are completed, the control unit 201 displays the storage completion on the display unit or the like of the user interface 205 and notifies the user of the storage result to control the data transfer. The process ends (step S804). In this case, all the encrypted data is transferred to the storage device of the storage destination, the encrypted data in the storage device is decrypted using the decryption key, and as a result, the decryption stored in the storage device Data may be stored as a stored document.

  If the decryption fails in step S802, the decryption unit 203 notifies the control unit 201 that the decryption has failed, and the control unit 201 notifies the display unit of the user interface 205 that the decryption has failed. The display is performed to notify the user of the decryption failure, and the data transfer control process is terminated (step S805).

  As described above, when the user authentication information is input, the data output device 200 of the data processing system 1 according to the present embodiment acquires a decryption key corresponding to the authentication information and can be a detachable storage medium. The encrypted data stored in the portable storage medium 400 is decrypted and stored using the decryption key.

  Therefore, the confidentiality of the encrypted data in the portable storage medium 400 can be ensured, the versatility of the data can be improved, and the usability in data storage can be improved.

  In addition, the data output device 200 performs the data transfer control processing of FIG. 11 when transferring to an external device, for example, when transmitting to a facsimile machine or transferring data to another computer or the like. Processing is performed as shown in FIG.

  That is, when the decryption unit 203 receives the encrypted data (encrypted data) from the portable storage medium management unit 204, the data output device 200 uses the decryption key passed from the control unit 201. The decrypted data is tried to be decrypted (step S901), and it is checked whether the decryption is successful (step S902).

  When decoding is successful in step S902, the decoding unit 203 connects to the transmission destination (step S903), checks whether the communication path is established (step S904), and transmits as appropriate until the communication path is established. Connection to the destination is performed (steps S903 and S904).

  When the communication path is established in step S904, the decryption unit 203 transmits the decrypted data to the transmission destination (step S905), and when the transmission is completed, the control unit 201 displays the user interface 205. The transmission result is displayed on the unit and the transmission result is notified to the user, and the data transfer control process is terminated (step S906).

  If the decryption fails in step S902, the decryption unit 203 notifies the control unit 201 that the decryption has failed, and the control unit 201 notifies the display unit of the user interface 205 that the decryption has failed. The display is performed to notify the user of the decryption failure, and the data transfer control process is terminated (step S907).

  As described above, when the user authentication information is input, the data output device 200 of the data processing system 1 according to the present embodiment acquires a decryption key corresponding to the authentication information and can be a detachable storage medium. The encrypted data stored in the portable storage medium 400 is decrypted using the decryption key and transmitted to a facsimile or a computer.

  Therefore, the confidentiality of the encrypted data in the portable storage medium 400 can be ensured, the versatility of the data can be improved, and the usability in data transfer can be improved. While ensuring the confidentiality of the encrypted data in the detachable storage medium, it is possible to improve the usability of the data by transmitting the data by facsimile transmission or transmission to a computer or the like.

  In the above description, the case where the decryption key is acquired from the authentication information storage unit inside the apparatus, that is, the authentication information storage unit of the authentication information management unit 206 has been described. 100 or an authentication server.

  For example, when decryption fails in the data output processing of FIG. 11 and the data transfer control processing of FIG. 12 to FIG. 15, it is acquired from the data input device 100 or the authentication server, which is an external device, as shown in FIG. May be. In FIG. 16, processing steps similar to those in FIG. 11 are given the same step numbers as in FIG. 11 to simplify the description.

  That is, when the control unit 201 receives from the user interface 205 a data operation parameter for outputting data set and input by the user via the user interface 205, the control unit 201 analyzes the received data operation parameter (step S501), and authentication information Is acquired (step S502), and if acquired, a decryption key is acquired from the authentication information management unit 206 based on the acquired authentication information (step S503).

  When authentication information is not acquired in step S502, the control unit 201 performs authentication information acquisition processing to acquire authentication information (step S504). Based on the authentication information acquired in the authentication information acquisition processing, A decryption key is acquired from the authentication information management unit 206 (step S503).

  When acquiring the decryption key, the control unit 201 sets the decryption key information in the decryption unit 203 (step S505), and then starts a data transfer control process by the portable storage medium management unit 204 (step S506).

  In this data transfer control process, parameters for data to be read out to the portable storage medium management unit 204 are set, and parameters relating to the use of image data are set in the image data use unit 202. In the data transfer control process, when the data output device 200 includes a plurality of image data use units 202, selection information of the plurality of image data use units 202 is decoded as transfer destination information of the decoded data. Data transfer parameters are set for the image data utilization unit 202 as the reception destination of the data output of the conversion unit 203 or the decoding unit 203.

  The portable storage medium management unit 204 controls the portable storage medium 400, reads data from the portable storage medium 400, and passes it to the decryption unit 203.

  Further, as described above, the decryption unit 203 decrypts the data passed from the portable storage medium management unit 204 based on the decryption key information passed from the control unit 201, and converts the decrypted data into image data. Transfer to the use unit 202. The decryption unit 203 confirms the head portion of the decrypted data. The head portion of this data usually includes a header portion indicating the content of the data, and the decoding unit 203 checks whether or not the content of this header is broken. That is, the decryption unit 203 confirms whether the decryption has been performed normally with the correct decryption key by confirming the header portion.

  The decryption unit 203 confirms the validity of the decryption key at the start of transfer of the decrypted data to the image data utilization unit 202. If the decryption key cannot be confirmed, internal decryption is further performed. Is checked (step S511).

  When the decryption is successfully performed, the decryption unit 203 terminates the process as it is, or when the decryption fails but the internal authentication is performed, the control unit 201 performs the subsequent data transfer control. Stop processing and try to acquire another decryption key.

  If the decryption fails and the internal authentication is not performed in step S511, the control unit 201 performs a decryption key acquisition process for acquiring a decryption key from an external authentication server via the authentication information management unit 206 (step S511). S512) It is checked whether the decryption key has been successfully acquired (step S513).

  When acquisition of the decryption key is successful in step S513, the control unit 201 returns to step S505, sets the decryption key in the decryption unit 203 (step S505), and then transfers the data by the portable storage medium management unit 204. The process is performed in the same manner as described above from the process of starting the control process (steps S506 to S511). If the decoding is normally performed in step S511, the process is terminated as it is.

  If acquisition of the decryption key fails in step S513, the control unit 201 ends the process as it is.

  The control unit 201 performs the decryption key acquisition process as shown in FIGS.

  That is, as shown in FIG. 17, the control unit 201 causes the portable storage medium management unit 204 to acquire connection information from the portable storage medium 400 (step S1001).

  That is, in the portable storage medium 400 connected to the interface of the portable storage medium management unit 204, for example, as shown in FIG. 19, each encrypted data 401 is specified independently of the encrypted data 401. The connection information 402 is stored in the state, or the connection information 402 is stored in association with each encrypted data 401 as shown in FIG. This connection information 402 is information for communicating with an external device that provides a decryption key, for example, the data input device 100 that is an encrypted device or an authentication server, in order to acquire the decryption key from the external device. (For example, authentication information such as a user ID and a password). For example, the portable storage medium 400 stores information for connecting to an external device, for example, communication information such as the IP address of the external device, as connection information 402 including minimum information. In this case, although it is possible to connect to the external device using the connection information 402 that is the communication information, authentication information (for example, a user ID and a password) is required in order to obtain a decryption key from the external device. Therefore, for example, a display for prompting input of authentication information such as a password as shown in FIG. 21 is displayed on the display unit of the user interface 205 so that the authentication information is input from the user interface 205. In this case, the data output device 200 transmits the input user ID and password to the external device, and the external device collates with authentication information stored internally in the authentication information management unit or the like, and A decryption key corresponding to the authentication information is provided to the data output device 200. Therefore, only when the encrypted user performs decryption with the data output device 200, the authentication information can be input, the necessary decryption key can be obtained from the external device, and the encrypted data can be decrypted. .

  When the connection information 402 includes authentication information such as the IP address of the external device such as the data input device 100 that provides the decryption key or the authentication server and the user ID of the encrypted user, the data input device Although it is possible to connect to an external device such as 100 or an authentication server, information necessary for obtaining a decryption key from the external device such as the data input device 100 or the authentication server, for example, authentication of a user ID and password Information is input from the user interface 205. In this case, the control unit 201 is configured to present the encrypted user ID as a default value of the user ID value on the display unit of the user interface 205, and the user can see and input the user ID, The user ID can be changed. The data output device 200 transmits the input user ID and password to an external device such as the data input device 100 or an authentication server, and the external device collates with the authentication information management unit or the like and succeeds in collating the authentication information. Then, a decryption key corresponding to the authentication information (user ID) is transmitted to the data output device 200 and provided. Therefore, in this case, a user different from the user who performed the encryption can perform the decryption without knowing the authentication information of the user who performed the encryption.

  FIG. 19 shows an example of a holding method when the connection information 402 is one medium unit (portable storage medium 400 unit). In this case, the encrypted data 401 is transferred from the portable storage medium 400. When only the data is taken out, information for decryption is lost from the encrypted data 401, so that it becomes difficult to decrypt the encrypted data 401, and the security of the encrypted data 401 can be improved. Further, the storage method of FIG. 19 can effectively use the storage capacity of the portable storage medium 400 when the writing to the portable storage medium 400 is limited to a specific device.

  FIG. 20 shows an example of a holding method when each encrypted data 401 on the portable storage medium 400 holds the connection information 402. In this case, the connection is made to the header portion of each encrypted data 401. Although the information 402 is held, the holding method is not limited to the above as long as the encrypted data 401 and the connection information 402 are held in a one-to-one correspondence. For example, the connection information 402 may be held as a file having the same file name as the encrypted data 401 and having a different extension. In the case of this holding form, even when the encrypted data 401 is moved to another portable storage medium 400, the connection information 402 corresponding to the encrypted data 401 is specified and the encrypted data 401 is decrypted. can do.

  Further, even when the connection information 402 is held together as shown in FIG. 19, the connection information 402 of each encrypted data 401 may be stored in a table format corresponding to the corresponding encrypted data 401. In this case, even if only the encrypted data 401 is extracted, the connection information 402 for obtaining the decryption key is lost, so that not only the data security is high but also the connection information 402 associated with each encrypted data 401. Therefore, the encrypted data 401 can be recorded on one portable storage medium 400 using a plurality of data input devices 100, and versatility can be further improved.

  As the connection information 402, when an external device such as the data input device 100 or the authentication server has an encrypted communication function, setting information necessary for the encrypted communication can also be held. However, in this case, if the connection information includes important information that is an encryption key such as PSK (Phase Shift Keying), the information leaks and the safety of the communication path to the external device is threatened. Become. Therefore, information to be recorded in the connection information 402 is limited to information such as an encryption algorithm and an address, and information such as PSK is not recorded. In this case, when trying to acquire the decryption key information for an external device having the function of encrypted communication, the encrypted communication is set based on the recorded connection information 402 and recorded. The encryption communication key or the like that has not been set is stored on the portable storage medium 400 by setting it from the user interface 205 or by encrypting the connection information 402 itself using an encryption system common to the system. The connection information 402 necessary for the encrypted communication is concealed, and the decryption key acquisition communication is also concealed. In this way, the confidentiality of data can be further improved.

  In the above case, even if setting information for performing encrypted communication is acquired from the user interface 205, connection of encrypted communication cannot be performed, or sufficient setting information for performing encrypted communication is obtained. If not, a message indicating that the connection has failed may be presented, and the user may be inquired about whether or not to attempt to acquire a decryption key through unencrypted communication. In this case, even if there is an instruction to try to obtain a decryption key by unencrypted communication, the data input device 100 on the encryption side is set not to transmit decryption key information other than encrypted communication. By doing so, confidentiality can be maintained.

  When the acquisition process of the connection information 402 is started as described above, the control unit 201 determines whether the encryption device is its own device, that is, whether the location of the encryption key is its own device or an external device. (Step S1002), if it is the own device, the authentication information management unit 206 is made to acquire a decryption key based on the authentication information (step S1003).

  The control unit 201 checks whether the decryption key has been successfully acquired (step S1004). If the decryption key is successfully acquired, the control unit 201 ends the decryption key acquisition process.

  If acquisition of the decryption key fails in step S1004, the control unit 201 executes processing for acquiring the decryption key from the external device based on the acquired connection information 402, and ends the processing (step S1005).

  In step S1002, when the location of the encryption key is not its own device, the control unit 201 executes a process of acquiring a decryption key from the external device based on the acquired connection information 402, and ends the process (step S1002). S1005).

  Then, the control unit 201 executes the decryption key acquisition process from the external device in step S1005 as shown in FIG.

  That is, when acquiring the connection information (step S1101), the control unit 201 checks whether the encryption device is its own device based on the connection information (step S1102), and if the encryption device is its own device, It is determined that it is not necessary to acquire a decryption key from the device, and the decryption key acquisition process from the external device is terminated.

  In step S1102, when the encryption device is not its own device, the control unit 201 displays a display prompting the user interface 205 to input information (insufficient information) that is insufficient for obtaining the decryption key, such as a user ID or a password. A shortage information input request is made on the display unit or the like, and when the shortage information is inputted in response to the shortage information input request, an authentication request is made to the external device based on the connection information and the shortage information inputted (step S1104). ).

  When the control unit 201 makes an authentication request to the external device, the control unit 201 checks whether the authentication by the external device is successful (step S1105). If the authentication fails, the control unit 201 ends the decryption key acquisition process from the external device.

  If authentication is successful in step S1105, a decryption key is acquired from the external device, and the decryption key acquisition process from the external device is terminated (step S1106).

  As described above, the data output device 200 according to the present embodiment acquires the encryption key from the data input device 100 or the authentication server, which is an external device.

  Accordingly, even when the own device does not have a decryption key, the decryption key can be appropriately obtained and the encrypted data can be decrypted, and the usability can be improved.

  In addition, the data output device 200 according to the present embodiment acquires the decryption key from the data input device 100 or the authentication server only when the decryption key does not exist in the own device.

  Therefore, even if the device has a decryption key, it prevents the external device from performing the decryption key acquisition process, speeds up the process, and reliably acquires the decryption key, The encrypted data can be decrypted, and the usability can be further improved.

  In the above embodiment, the case where the data input device 100 and the data output device 200 are applied to the data processing system 1 connected by the predetermined communication line 300 has been described. For example, as shown in FIG. 22, a computer 500 including a hard disk 501 serving as a data storage unit and the data input device 100 may be connected via a communication line 300. In this case, similarly to the data output device 200, the computer 500 performs an accumulation process of decrypting the encrypted data stored in the portable storage medium 400 with the decryption key and accumulating the decrypted decrypted data in the hard disk 501. .

  In the data processing system 1, as shown in FIG. 23, the data input device 100 may be connected to a communication device 510 having a facsimile function as a data output device. In this case, similarly to the data output device 200, the communication device 510 decrypts the encrypted data stored in the portable storage medium 400 with the decryption key, and the decrypted decrypted data has another facsimile function. Facsimile transmission is performed to the communication device 511, and data received by the communication device 511 is recorded and output.

  Furthermore, in the data processing system 1, as shown in FIG. 24, the data input device 100 is connected to a display device 521 or a projection device 522 such as a liquid crystal or a CRT (Cathode Ray Tube) as a data output device. May be. In this case, similarly to the data output device 200, the display device 521 and the projection device 522 decrypt the encrypted data stored in the portable storage medium 400 with the decryption key, and display and output the decrypted decrypted data. .

  Although not shown, the data processing system 1 is integrated as a composite device in which a data input device and a data output device are housed in a single housing, such as a scanner unit, a printing unit, a display unit, and a communication unit. It may be.

  The invention made by the present inventor has been specifically described based on the preferred embodiments. However, the present invention is not limited to the above, and various modifications can be made without departing from the scope of the invention. Needless to say.

  The present invention relates to a scanner or the like for data confidentiality when data is encrypted and stored in a detachable storage medium, and the encrypted data is extracted from the detachable storage medium and decrypted for use. The present invention can be applied to a data output device such as a data input device, a printer, and a display device, and a data processing device in which the data input device and the data output device are connected or integrated.

1 is a system configuration diagram of a data processing system to which one embodiment of a data input device, a data output device, and a data processing device of the present invention is applied. The principal part block block diagram of the data input device of FIG. FIG. 3 is a main block diagram of the portable storage medium management unit in FIG. 2. The principal part block block diagram of the authentication information management part of FIG. The figure which shows an example of the authentication management information stored in the authentication information holding part of FIG. The principal part block block diagram of the data output device of FIG. The flowchart which shows the connection state monitoring process of the portable storage medium by the data input device of FIG. The flowchart which shows the state change process of FIG. 3 is a flowchart showing document reading operation processing by a scanner function accompanied by authentication processing by the data input device of FIG. 2. The flowchart which shows the state change process by the data output device of FIG. 7 is a flowchart showing data output processing accompanied by authentication processing by the data output device of FIG. 6. 12 is a flowchart showing print output processing as the data transfer control processing of FIG. 11. 12 is a flowchart showing display output processing as the data transfer control processing of FIG. 11. 12 is a flowchart showing a data storage process as the data transfer control process of FIG. 12 is a flowchart showing a data transmission process as the data transfer control process of FIG. The flowchart which shows the data transfer control processing of FIG. 11 in the case of performing the decoding key acquisition process from an external device at the time of a decoding failure. 7 is a flowchart showing decryption key acquisition processing by the data output device of FIG. 18 is a flowchart showing decryption key acquisition processing from the external device of FIG. The figure which shows an example of the storage state of the connection information of the state in which the encryption data of the portable storage medium of FIG. 3 and this encryption data became independent. The figure which shows the other example of the storage state of the connection information of the encryption data of the portable storage medium of FIG. 3, and the state which made the encryption data a pair.

The figure which shows an example of the display which prompts the input of the authentication information to the display part of the user interface of FIG. The system block diagram of the data processing system of the state with which the computer provided with the hard disk and the data input device are connected by the communication line. The system block diagram of the data processing system of the state with which the communication apparatus provided with the facsimile function and the data input device are connected by the communication line. 1 is a system configuration diagram of a data processing system in a state where a display device and a data input device are connected by a communication line.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Data processing system 100 Data input device 101 Main body housing part 102 Contact glass 103 Pressure plate 110 Control part 111 Image data generation part 112 Encryption part 113 Portable storage medium management part 114 User interface 115 Authentication information management part 120 Input / output management part REFERENCE SIGNS LIST 121 Interface 122 Connection detection unit 130 Authentication information matching unit 131 Authentication information holding unit 132 Communication interface 200 Data output device 201 Control unit 202 Image data use unit 203 Decoding unit 204 Portable recording medium management unit 205 User interface 206 Authentication information management unit 300 Communication Line 400 Portable Storage Medium 401 Encrypted Data 402 Connection Information 500 Computer 501 Hard Disk 510 511 Communication Device 521 Display Device 522 Projection Location

Claims (15)

  Storage medium connection means to which a connectable / detachable storage medium is connected, encryption means for encrypting data, information input means for inputting predetermined information, and user authentication input from the information input means Control means for causing the encryption means to encrypt the data based on an encryption key corresponding to the authentication information for use and storing the encrypted data in the detachable storage medium connected to the storage medium connection means And a data input device.   Storage medium connecting means to which a connectable / detachable storage medium is connected, decryption means for decrypting encrypted data using a decryption key, and utilization using decrypted data of the decryption means Means, information input means for inputting predetermined information, decryption key acquisition means for acquiring a decryption key corresponding to authentication information for user authentication input from the information input means, and the decryption key to the decryption key Control means for decrypting the encrypted data stored in the detachable storage medium using the decryption key obtained by the obtaining means, and causing the utilization means to use the decrypted data. Data output device.   A storage medium connection means to which a connectable / detachable storage medium is connected, an encryption means for encrypting data, an information input means for inputting predetermined information, and a decryption key for encrypted data Decryption means for decryption, utilization means for using the decrypted data of the decryption means, and decryption key acquisition means for obtaining a decryption key corresponding to authentication information for user authentication input from the information input means And the encryption means encrypts the data based on the encryption key corresponding to the authentication information for user authentication input from the information input means, and the encrypted data is connected to the storage medium connection means. The encrypted data stored in the detachable storage medium is decrypted by using the decryption key acquired by the decryption key acquiring means and decrypting the encrypted data stored in the detachable storage medium. The data processing apparatus characterized by a data and a, and a control means for use in said utilization means.   The detachable storage medium connects a predetermined communication line to the data input device that stores encrypted data in the detachable storage medium or a management device that manages a decryption key for decrypting the encrypted data. The data input device according to claim 1, the data output device according to claim 2, or the data processing device according to claim 3, wherein connection information for connection via the connection is stored.   5. The data input device, data output device, or data processing device according to claim 4, wherein the detachable storage medium stores an IP address of the data input device or the management device as the connection information. .   6. The connection / detachable storage medium according to claim 4, wherein setting information for performing encrypted communication with the data input device or the management device is stored as the connection information. Data input device, data output device or data processing device.   7. The detachable storage medium stores user specifying information for specifying a user who has encrypted the encrypted data in the detachable storage medium. A data input device, a data output device or a data processing device according to claim 1.   8. The data input device according to claim 4, wherein the detachable storage medium stores the connection information in a state encrypted by the encryption unit. 9. Output device or data processing device.   9. The data input according to claim 4, wherein the detachable storage medium stores the connection information in correspondence with the encrypted data for each encrypted data. Device, data output device or data processing device.   When there is insufficient information in the connection information that is insufficient to connect to the data input device or the management device and acquire the encryption key, the control means requests the input of the insufficient information, and When the shortage information is input from the information input means in response to the input request, the decryption key acquisition means is caused to acquire the encryption key from the data input device or the management device based on the shortage information and the connection information. The data input device, data output device, or data processing device according to any one of claims 4 to 9,   The control means makes an input request for authentication information for authenticating a user as the shortage information, and when authentication information is input in response to the input request, the control means sends the decryption key acquisition means based on the authentication information. The data input device, data output device, or data processing device according to claim 10, wherein the encryption key is acquired from the data input device or the management device.   The control means makes an input request for encrypted communication information necessary for performing encrypted communication as the insufficient information, and when the encrypted communication information is input in response to the input request, the control means The data according to any one of claims 4 to 11, wherein the encryption key is acquired by performing encrypted communication with the data input device or the management device using the encrypted communication information. Input device, data output device or data processing device.   The control unit causes the decryption key acquisition unit to acquire a decryption key corresponding to the authentication information from the data input device or the management device when there is no decryption key corresponding to the authentication information in the own device. The data output device or data processing device according to claim 2, wherein the data output device is a data processing device.   When the decryption key corresponding to the authentication information exists in the own device and the decryption unit fails to decrypt the encrypted data using the decryption key, the control unit sends the data to the decryption key acquisition unit. 13. The data output device or data processing device according to claim 2, wherein a decryption key corresponding to the authentication information is acquired from the input device or the management device.   In the data output device or the data processing device, the utilization means prints out the decoded data, a display function for displaying the decoded data, a data storage function for storing the decoded data, and the decoding 15. The data output device or data processing device according to claim 2, further comprising at least one of transmission functions for transmitting the digitized data to a predetermined device.

Images