JP2008186066A - Document reading system, information processor and information processing program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a document reading system, information processor and information processing program for giving security information corresponding to security information of an electronic document that is a source of a paper document to the electronic document based on reading from the paper document. <P>SOLUTION: When a scanner 50 reads a paper document, document data read from the paper document is sent to a security processing server 60. Then, the security processing server 60 acquires a document ID from the document data and also acquires security information on the basis of the document ID. When the acquisition of the document ID and the security information is completed, the security processing server 60 gives the acquired security information to the document information sent from the scanner 50 and stores an electronic document including the document data and the security information into a prescribed area in a client terminal 10. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to a document reading system, an information processing apparatus, and an information processing program.

  In companies, government offices, schools, etc., a network composed of LAN (Local Area Network), WAN (Wide Area Network), etc. is built, and a communication environment is established in which documents are shared and used by an unspecified number of users. ing.

  Conventionally, in order to maintain the security of these shared documents, various techniques related to document access control have been proposed. For example, a document display editing software for a document stored in a server on a network can be used. A method of using and managing is known. In this technique, access right information, a document decryption key, and the like are stored in a server, and when the document is used, the authority is confirmed with the server, and the document decryption key is acquired. Since the access right information is confirmed to the server when the document is used, even if a copy of the document has been distributed to multiple users, all access has been completed by changing the access right information on the server later. The same access right information can be applied to duplicate documents.

  Such technology works effectively as long as the document is an electronic document, but once the document is printed on paper, it is no longer subject to management, and the security management information and traceability management information attached to the document are interrupted. Will be out of security.

  Therefore, for example, Patent Document 1 proposes a technique for printing by replacing a confidential part, which is restricted in accordance with the access right set in the electronic document, with an unreadable image that is unreadable to humans.

Also, for example, in Patent Document 2, when a print permission attribute is registered together with an electronic document, and the document data is captured from a paper document using a scanner or the like, the degree of coincidence with the registered electronic document is calculated. However, there is proposed a technique for controlling permission or non-permission of copying of document data taken in based on the print permission attribute of the matched electronic document when the two match.
JP 2004-260750 A JP 2003-046768 A

  The present invention relates to a document reading system, an information processing apparatus, and an information processing program capable of giving security information corresponding to security information of an electronic document that is the basis of the paper document to an electronic document based on reading from the paper document The purpose is to provide.

  In order to achieve the above object, the invention of the document reading system according to claim 1 includes management means for managing security information relating to an electronic document corresponding to the electronic document, and paper on which the electronic document to which the security information is attached is printed. Reading means for reading image information from a document, acquisition means for acquiring security information corresponding to the paper document from the management means based on image information read from the paper document by the reading means, and security acquired by the acquisition means Creating means for creating an electronic document based on the information and image information read from the paper document by the reading means.

  According to a second aspect of the present invention, in the first aspect of the invention, the creation unit discards the image information read from the paper document when the acquisition unit fails to acquire the security information.

  According to a third aspect of the present invention, in the first aspect of the invention, when the creation unit fails to acquire the security information by the acquisition unit, the predetermined unit adds predetermined security information to the image information read from the paper document. Create an electronic document.

  According to a fourth aspect of the present invention, there is provided an information processing apparatus comprising: a receiving unit that receives image information read from a paper document printed with an electronic document to which security information is attached; and the paper based on the image information received by the receiving unit. An acquisition unit that acquires security information corresponding to a document, a creation unit that creates an electronic document based on the security information acquired by the acquisition unit and the image information received by the reception unit, and the creation unit Output means for outputting an electronic document.

  Further, the invention of claim 5 further comprises a deletion means for deleting security information from the image information received by the receiving means in the invention of claim 4, wherein the creating means is acquired by the acquiring means. An electronic document is created based on the security information and the image information from which the security information has been deleted by the deleting means.

  According to a sixth aspect of the present invention, there is provided an information processing program based on the image information received by the accepting means for accepting image information read from a paper document on which an electronic document to which security information is attached is printed. An acquisition means for acquiring security information corresponding to the paper document, a creation means for creating an electronic document based on the security information acquired by the acquisition means and the image information received by the reception means, and created by the creation means It functions as an output means for outputting an electronic document.

  According to the first, fourth, and sixth aspects of the present invention, the security information corresponding to the security information of the electronic document that is the basis of the paper document can be given to the electronic document based on reading from the paper document. it can.

  According to the second aspect of the present invention, an electronic document to which no security information is assigned is not created.

  Further, according to the invention described in claim 3, it is possible to ensure a predetermined safety regarding the electronic document.

  According to the fifth aspect of the present invention, security information is not displayed or the like when browsing an electronic document.

  Embodiments of a document reading system, an information processing apparatus, and an information processing program according to the present invention will be described below in detail with reference to the accompanying drawings.

  FIG. 1 is a diagram showing an example of the overall configuration of a document reading system according to the present invention.

  This document reading system includes a client terminal 10, a document attribute management server 20, a document management server 30, a printer 40, a scanner 50, and a security processing server 60 via a network configured by a LAN, a WAN, or the like. It is connected. Note that the configuration shown here is merely an example, and the present invention is not limited to this configuration. For example, as shown in FIG. 2, the scanner 50 may be directly connected to the security processing server 60 without being connected to the network.

  Here, the client terminal 10 is a general-purpose computer handled by the user. The user accesses the document management apparatus 20 by performing a predetermined operation from this terminal, and performs processing such as downloading and printing of an electronic document (hereinafter also simply referred to as a document).

  The document attribute management server 20 functions to manage document attributes. The document attribute management server 20 in this embodiment manages security information given to a document, particularly as a document attribute.

  The document management server 30 functions to manage documents. The document management server 30 manages documents registered from the client terminal 10 or the like. The document managed here is shared by a plurality of users, for example. Each document managed by the document management server 30 is assigned a document ID (document identification information) for identifying the document.

  The printer 40 has a function of performing printing on a recording medium such as paper. When a document managed by the document management server 20 is printed by the printer 40, as shown in FIG. 3, security information such as a document ID corresponding to the document is given to the printed matter. Security information can be given using various techniques such as barcodes and digital watermarks. Since the technology for printing with security information can be realized by using a conventionally known technology, the description thereof will be omitted.

  The scanner 50 has a function of reading document data from a paper document placed on the platen glass or a paper document conveyed on the platen glass by an automatic paper feeder. The read document data is transmitted to the security processing server 60. The document data read from the paper document by the scanner 50 is composed of image information such as a bitmap format.

  The security processing server 60 functions to perform security processing on document data read from a paper document. Although details will be described later, security information corresponding to the security information given to the original document of the document data (which indicates an electronic document before printing) is given to the document data read from the paper document. Become. At this time, it is desirable to encrypt document data and security information.

  Here, in order to make the explanation of the document reading system in this embodiment easy to understand, the flow of operations when reading a paper document will be briefly described.

  When the paper document is read by the scanner 50, the document data read from the paper document is sent to the security processing server 60. Then, the security processing server 60 acquires a document ID from the document data, and acquires security information from the document attribute server 20 based on the document ID.

  When the security information is acquired, the security processing server 60 adds a part or all of the acquired security information to the document data sent from the scanner 50, and a document including the document data and the security information is added to the client. The data is stored in a predetermined area in the terminal 10. Thereby, the conversion of the paper document read from the scanner 50 into the electronic document is completed, and a series of paper document reading processing ends. The storage destination of the document subjected to the security processing is not limited to the client terminal 10 but may be the document management server 20, the security processing server 60, or the like. This can be changed as appropriate according to the setting information.

  The above is the description of the overall configuration of the document reading system according to the present invention. The above-described apparatuses such as the client terminal 10, the document attribute management server 20, the document management server 30, the printer 40, the scanner 50, and the security processing server 60 incorporate the computer shown in FIG. A keyboard as an input / output unit 83, such as a CPU (Central Processing Unit) as a main control unit 81, a ROM (Read Only Memory) as a storage unit 82, a RAM (Random Access Memory), an HDD (Hard Disk Drive), etc. A network card or the like as the communication unit 84, such as a mouse and a display, is connected by a bus 85. Each of these components is controlled by the main controller 81 executing a program stored in the storage unit 82.

  Here, a part of the functional configuration of the document attribute management server 20, the scanner 50, and the security processing server 60 shown in FIG. 1 will be described with reference to FIG.

  First, the document attribute management server 20 will be described. The document attribute management server 20 includes a security information management unit 21 and a security information response unit 22 as various processing function units.

  The security information management unit 21 functions to manage security information given to each document managed by the document management server 30. The security information management unit 21 manages security information corresponding to the document ID assigned to each document. Details of the security information will be described later.

  The security information response unit 22 has a function of responding to security information in response to an inquiry from the security processing server 60. The inquiry from the security processing server 60 includes the document ID of the document to be inquired.

  Next, the scanner 50 will be described. The scanner 50 includes a document data reading unit 51 and a document data transmission unit 52 as various processing function units.

  The document data reading unit 51 functions to read document data. That is, the user reads document data from a paper document placed on the platen glass (or automatic paper feeder).

  The document data transmission unit 52 functions to transmit the document data read from the document data reading unit 51. Here, as described above, the document data is transmitted to the security processing server 60.

  Finally, the security processing server 60 will be described. The security processing server 60 includes a document data receiving unit 61, a document ID acquisition unit 62, a security information acquisition unit 63, a security processing unit 64, and a document storage processing unit 65 as various processing function units. Is done.

  The document data receiving unit 61 functions to receive document data. For example, the document data transmitted from the scanner 50 (document data transmission unit 52) is received. In addition, the document data read by the scanner 50 is stored in an external recording medium such as a USB (Universal Serial Bus) memory, and the document data is input from the external recording medium to the security processing server 60 via the document data receiving unit 61. You may comprise as follows.

  The document ID acquisition unit 62 functions to acquire a document ID from the document data received by the document data reception unit 61. The document ID is embedded in the document data by a barcode, digital watermark, or the like, and the document ID acquisition unit 62 acquires the embedded document ID.

  The security information acquisition unit 63 functions to acquire security information corresponding to the document ID acquired by the document ID acquisition unit 62. This security information is acquired by sending an inquiry request to the document attribute server 20. This inquiry request includes the document ID.

  The security processing unit 64 performs a function of performing security processing on the document data received by the document data receiving unit 61, and performs encryption processing for performing encryption processing on the document data and security information corresponding to the document data. A processing unit 64a and a security providing unit 64b that provides security information to document data are provided. When the document data is processed in the security processing unit 64, as shown in FIG. 1 (lower right), a document including the encrypted document data and the encrypted security information is created. . In the present embodiment, document data sent from the scanner 50 and security information acquired from the document attribute management server 20 are encrypted by the encryption processing unit 64a provided in the security processing unit 64. However, the scanner 50 and the document attribute management server 20 may encrypt the document data and security information and send them to the security processing server 60.

  The document storage processing unit 65 has a function of storing the document subjected to the security processing by the security processing unit 64 in a predetermined storage location. This storage destination can be freely set. For example, the client terminal 10 handled by the user who has instructed reading of a paper document can be set as this storage destination. This completes the description of the various processing functions that make up the document attribute management server 20, the scanner 50, and the security processing server 60, respectively.

  Here, FIG. 6 shows three methods for assigning security information to document data. FIG. 6 shows the name of the security information and the description of the information corresponding to the name.

  In the method shown in (a), server information, document ID, server access information, and document decryption related information are included as security information to be added to document data. Here, the server address is information indicating the location of a server (document attribute management server 20 in this embodiment) that manages at least a part of security information, and the document ID is information for identifying a document. The server access information is auxiliary information (for example, a password) necessary for accessing the server, and the document decryption related information is auxiliary information necessary for decrypting the document.

  In the method shown in (b), the security information added to the document data includes a context ID and offline operation permission information in addition to the method shown in (a). Here, the context ID is identification information assigned to the plurality of documents when managing the plurality of documents, and the offline operation permission information is information indicating operation contents permitted when offline.

  When security information according to the method shown in (a) or the method shown in (b) is added to the document data, the operation permission information and information necessary for document decryption in the document attribute management server 20 are the security information. It will be less susceptible to tampering, etc.

  In the method shown in (c), operation permission information and document decryption related information are included as security information to be added to document data. Here, the operation permission information is information indicating whether or not operations such as browsing and printing are permitted, and the document decryption related information is auxiliary information necessary for decrypting a document. In this case, all the security information necessary for using the document is held in the document itself, so that it is not necessary to go to the server when using the document.

  As described above, various methods for giving security information to document data are conceivable. Which method should be adopted may be determined based on the system policy. Note that the method described here is merely an example, and the present invention is not limited to this, and information of various contents can be given.

  Next, the flow of operations when reading document data from a paper document in the document reading system shown in FIG. 1 will be described with reference to FIG.

  When the user instructs reading of a paper document from the scanner 50, this process is started. When this process is started, the scanner 50 reads the document data from the paper document in the document data reading unit 51 (step S101), and the document data transmission unit 52 converts the read document data into the security processing server. 60 (step S102).

  At this time, the security processing server 60 is waiting to receive document data. Here, when document data is sent from the scanner 50 to the security processing server 60, the security processing server 60 receives this at the document data receiving unit 61. Then, the security processing server 60 acquires the document ID from the document data in the document ID acquisition unit 62 (step S104).

  Here, when acquisition of the document ID fails due to a reason that the document ID is not included in the document data (YES in step S105), a predetermined process (see FIG. 8 described later) is executed. (Step S106) This process is terminated. If the document ID is successfully acquired (NO in Step S105), the security information acquisition unit 63 acquires the security information corresponding to the document ID. This is performed (step S107). This security information is acquired by transmitting an inquiry request including the document ID to the document attribute management server 20 and receiving a response to the inquiry from the security information response unit 22 of the document attribute management server 20.

  After the security information is acquired in this way, the security processing server 60 next converts the document data sent from the scanner 50 and the security information acquired from the document attribute management server 20 in the encryption processing unit 64a. Encryption is performed (step S108). Then, the security assigning unit 64b assigns the same encrypted security information to the encrypted document data, and performs security processing on the document data read from the scanner 50 (step S109). That is, a document including document data and security information is created. Thereafter, the document storage processing unit 65 stores the created document in a predetermined area in the terminal by transmitting it to the client terminal 10 (step S110), and ends this process.

  Here, with reference to FIG. 8, a description will be given of an operation flow when the document ID acquisition in step S106 fails. Note that the processing in FIG. 8 may be performed even when acquisition of security information from the document attribute management server 20 fails in step S107 in FIG.

  If acquisition of the document ID fails, the security processing unit 64 checks the setting information (step S201). This is because the processing after the document ID acquisition failure is determined based on the setting information. If acquisition of the document ID fails, 1) discard the document data, 2) add predetermined security information to the document data, and 3) process the document data until it is approved by the authorized person. One of the processes is suspended.

  As a result of checking the setting information, when the above 1) is satisfied, the document data is discarded by the security processing unit 64 (step S202), and this processing is terminated. The security information acquisition unit 63 acquires predetermined security information (step S203). The predetermined security information is, for example, preset by an administrator or the like.

  When the security information is acquired, the security processing server 60 then encrypts the document data sent from the scanner 50 and the security information acquired from the document attribute management server 20 in the encryption processing unit 64a. (Step S204). Then, the security assigning unit 64b assigns the same encrypted security information to the encrypted document data, and performs security processing on the document data read from the scanner 50 (step S205). Then, the document storage processing unit 65 stores this document in a predetermined area in the terminal by transmitting it to the client terminal 10 (step S206), and ends this processing.

  Further, as a result of checking the setting information, when the above 3) is satisfied, the security processing unit 64 stores the document data in the save area (step S207). Then, after saving the document data, the security processing server 60 suspends the processing for the document data until approval is obtained from an authorized person or the like (NO in step S208). If approval is obtained from an authorized person or the like during this suspension (YES in step S208), the document storage processing unit 65 stores the document in a predetermined area in the client terminal 10 (step S209). Will end. When obtaining approval from an authorized person or the like, security information may be input at the same time, and security may be given to the document data based on the received security information.

  Although the above is an example of typical embodiment of this invention, this invention is not limited to the Example shown to the said and drawing, It can implement suitably deform | transforming within the range which does not change the summary. .

  For example, in the above embodiment, the document ID is printed on a paper document. However, the document ID may be recorded on an RFID tag (hereinafter referred to as a wireless tag) embedded in the paper document. . In this case, when the paper document is read by the scanner 50, the information can also be read from the wireless tag. If the scanner 50 does not support reading of the wireless tag, the subsequent processing may be performed in the same manner as when the document ID acquisition fails.

  Further, the function performed by the security processing server 60 described in the above embodiment may be performed by the client terminal 10. In addition, as shown in FIG. 9, the processing may be performed by a multi-function device 70 having functions performed by the security processing server 60, the scanner 50, and the printer 40. The multifunction device 70 may not have the function of the security processing server 60, and both the multifunction device 70 and the security processing server 60 may be arranged. Further, a copying machine may be used instead of the multifunction device 70.

  Further, when all the security information is added to the document itself (see FIG. 6C), the document attribute management server 20 may be omitted as shown in FIG. In this case, when the paper document is read by the scanner 50 and the document data is sent to the security processing server 60, the security processing server 60 uses the security information included in the document data as in the above-described embodiment. Thus, an electronic document subjected to security processing is created. Of course, this configuration can also be applied to the multi-function device 70 shown in FIG.

  In addition, since the document data described in the above embodiment is given a barcode or the like in which security information such as a document ID is embedded, as shown in FIG. A bar code or the like is displayed together with the contents, but the visible security information visible to the user on the document data may be deleted. When the security information on the document data is deleted, as shown in FIG. This process can be handled by deleting a barcode or the like from the document data when the security processing server 60 creates a security-processed document.

  If the original document can be acquired, the original document may be acquired based on the document ID and replaced with the original document with security. In this case, if the paper document is written, the difference may be reflected in the original document.

  Further, the processing in the security management server 60 described in the above embodiment may be configured to be executed by a program installed in the computer. This program can be provided not only by a communication means such as a network but also by storing it in a recording medium such as a CD-ROM.

  The present invention can be applied to a document reading system, an information processing apparatus, and an information processing program in which a reading device that reads a paper document is arranged.

It is a figure which shows an example of the whole structure of the document reading system concerning this invention. It is a figure which shows the modification of the whole structure of the document reading system shown in FIG. It is a figure which shows an example of the printed matter provided with document ID. It is a figure which shows an example of a structure of the computer integrated in each apparatus. It is a figure which shows a part of functional structure of the document attribute management server 20, the scanner 50, and the security processing server 60 which are shown in FIG. It is a figure which shows an example of security information. 4 is a first flowchart showing a flow of operations of the document reading system shown in FIG. 1. FIG. 4 is a second flowchart showing an operation flow of the document reading system shown in FIG. 1. It is a 1st figure which shows an example of a modification. It is a 2nd figure which shows an example of a modification. It is a 3rd figure which shows an example of a modification.

Explanation of symbols

DESCRIPTION OF SYMBOLS 10 Client terminal 20 Document attribute management server 21 Security information management part 22 Security information response part 30 Document management server 40 Printer 50 Scanner 51 Document data reading part 52 Document data transmission part 60 Security processing server 61 Document data receiving part 62 Document ID acquisition part 63 Security Information Acquisition Unit 64 Security Processing Unit 64a Encryption Processing Unit 64b Security Granting Unit 65 Document Storage Processing Unit 70 Multifunction Machine 81 Main Control Unit 82 Storage Unit 83 Input / Output Unit 84 Communication Unit 85 Bus

Claims (6)

Management means for managing security information related to the electronic document corresponding to the electronic document;
Reading means for reading image information from a paper document printed with the electronic document to which the security information is attached;
Obtaining means for obtaining security information corresponding to the paper document from the management means based on image information read from the paper document by the reading means;
A document reading system comprising: creation means for creating an electronic document based on security information acquired by the acquisition means and image information read from the paper document by the reading means. The creating means includes
The document reading system according to claim 1, wherein when the acquisition unit fails to acquire the security information, the image information read from the paper document is discarded. The creating means includes
The document reading system according to claim 1, wherein when acquisition of the security information by the acquisition unit fails, an electronic document in which predetermined security information is added to image information read from the paper document is created. Receiving means for receiving image information read from a paper document printed with an electronic document to which security information is attached;
Acquiring means for acquiring security information corresponding to the paper document based on the image information received by the receiving means;
Creating means for creating an electronic document based on the security information acquired by the acquiring means and the image information received by the receiving means;
An information processing apparatus comprising: output means for outputting the electronic document created by the creating means. A deletion unit that deletes the security information from the image information received by the reception unit;
The creating means includes
The information processing apparatus according to claim 4, wherein the electronic document is created based on the security information acquired by the acquisition unit and the image information from which the security information is deleted by the deletion unit. Computer
Accepting means for receiving image information read from a paper document printed with an electronic document to which security information is attached;
Obtaining means for obtaining security information corresponding to the paper document based on the image information received by the receiving means;
Creating means for creating an electronic document based on the security information acquired by the acquiring means and the image information received by the receiving means;
An information processing program for causing an electronic document created by the creating means to function as an output means for outputting.

Images