JP2009140281A - Management system and management program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To secure and maintain a secure environment with respect to a system in a company or the like by improving consciousness to the security of an operator, a manager and a user. <P>SOLUTION: The management system is provided with: a plurality of user terminals; a management server mutually communicably connected to the plurality of user terminals for managing the plurality of user terminals; and an environment information gathering means for gathering environment information in each of the plurality of user terminals from the respective user terminals to the management server. The management server includes: a determination means for determining the management condition of the respective user terminals on the basis of the environment information gathered from the respective user terminals; and an electronic education control means for making the user terminals execute electronic education about security corresponding to the management condition. Each of the plurality of user terminals is provided with an IC tag for recording the management condition determined result and transmitting the management condition determined result corresponding to a read request from the outside. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to a technique for ensuring security in an internal system (in-house system) in a company or the like, and in particular, security of the internal system for users (employees, employees) who use the internal system. E-education to ensure security in accordance with the actual situation and personal information and confidential information held in information processing devices such as personal computers (user terminals, servers, etc.) TECHNICAL FIELD OF THE INVENTION

In general, in an information processing system (internal system) constructed in a company or the like, a user terminal (information processing apparatus; PC, etc.) operated and used by each employee
Hereinafter, the terminal may be simply referred to as “terminal”), and is connected to other user terminals via a local area network (LAN) so that each user terminal is connected to the LAN. It can be connected to an external communication network such as the Internet via a connected proxy server, and can receive services provided by various servers on the Internet (for example, see Patent Document 1 below).

  By the way, in recent years, security awareness of information processing systems (internal systems) built in the company has increased, and in large companies, information leakage countermeasures and security measures have been implemented in the company systems (each terminal). If you are getting more.

  In addition, even in the small and medium-sized enterprises that do not have a system administrator, the number of terminals has increased in recent years, and there are many cases where an internal system as described above is constructed by connecting terminals via a LAN. In many cases, security awareness is not as high as in large corporations, and there is a case in which connection to an external communication network such as the Internet is possible without taking any security measures.

Therefore, for example, the techniques disclosed in Patent Document 2 and Patent Document 3 below may be applied as security measures to internal systems of large companies and small and medium businesses.
Patent Document 2 below relates to a business management technology for safely performing business processing, and diagnoses the safety level against computer viruses in a plurality of business processing devices in a plurality of stages (three stages in Patent Document 2), and obtains the diagnosis result. It is disclosed that a given safety level is notified to a plurality of business processing devices.

  Patent Document 3 below relates to a technology that enables a person without advanced skills to efficiently and effectively perform security management by using a system that standardizes know-how of security management. It is disclosed that a question is presented, an answer to the question from the terminal is evaluated, an education plan is created based on the evaluation result, and the user receives education based on the plan.

  The technology disclosed in Patent Document 4 below relates to the configuration and usage of resources of each information device in a network, and a method / system for monitoring traffic with a centralized monitoring device arranged outside the network. The purpose is to solve the problem of unauthorized access to information resources in the network and countermeasures against unauthorized connection to the network. In this patent document 4, for example, in claim 4 or claim 6, information on resource configuration and usage status of information equipment collected by an agent is acquired via the Internet, and when unauthorized use or unauthorized connection is detected, It is disclosed to notify the administrator.

  The technique disclosed in Patent Document 5 relates to a security education method and a security education support computer that can be preferably used for information security education, management, and auditing. It is described that a security education attendance procedure is performed by sending and receiving security-related educational content in response to a request from a client computer.

  In addition, the technology disclosed in Patent Document 6 relates to a business management system for safely performing business processing, and aims to easily and effectively implement security measures without the user performing business processing being conscious. Yes. For example, claim 4 in Patent Document 6 describes that the safety level of each business processing device against a computer virus is diagnosed based on the security information received from each business processing device. No. 5 describes diagnosing the safety level of a plurality of business processing devices against computer viruses based on the safety level of each business processing device against computer viruses.

  Further, the technology disclosed in Non-Patent Document 1 below relates to the creation of a standard (standard document) related to security operation. In “Point 4” on the left column of page 107 of Non-Patent Document 1, a security violator For this, it is described that security re-education will be implemented. In this case, it is considered that the same education is performed again.

  In recent years, along with the heightened awareness of protection of personal information, it has been desired to reliably prevent inadvertent leakage / leakage of personal information and unauthorized use of personal information. In particular, with the enforcement of the Personal Information Protection Law, there is a need for businesses that handle personal information to more reliably prevent the leakage or leakage of personal information and unauthorized use. Here, personal information is information that can identify a specific individual by itself or in combination, and includes, for example, name, date of birth, contact information (address, address, telephone number, e-mail address, etc.). . Customer information, business partner information, etc. stored and handled in various companies often correspond to personal information.

  Naturally, such personal information corresponds to confidential information with high confidentiality for companies, but as confidential information for companies, in addition to personal information, new products before publication, technology before patent application, Information related to management strategies, etc. According to the Institute of Systems Audits, confidential information is defined as information that may impair the value of management resources when disclosed to anyone other than the authorized person or used for other purposes. Has been.

  In order to reliably prevent the outflow / leakage and unauthorized use of personal information and confidential information as described above, it is desirable to introduce a centralized management system and centrally manage such personal information and confidential information. However, in reality, personal information such as customer information and business partner information in a company includes a plurality of user terminals [personal computers (hereinafter sometimes abbreviated as PCs)] used by individual employees, In many cases, they are distributed and stored in department servers. More specifically, individual employees store their personal information (customer information, etc.) on their PCs for their own work, or a central database or a subset of personal information collected by each employee. It exists in various places on the PC.

  For this reason, when constructing the above centralized management system, the administrator first identifies personal information and confidential information that are scattered in the company, and what kind of personal information and confidential information is located in the company. It is necessary to grasp whether it exists, but personal information and confidential information are identified by the manager instructing each employee and with the cooperation of the entire company and all departments in person-to-person relations. .

For example, in Patent Document 7 below, in accordance with the enforcement of the Personal Information Protection Law, a technique for providing a personal information protection service that prevents personal information from being leaked or leaked or used illegally is described as “Personal Information Protection Service Business Processing Method”. And device "have been proposed and disclosed. In this patent document 7, it is possible to identify and warn a company that has improperly acquired personal information, and to prevent illegal leakage of personal information from a company that has acquired it appropriately. However, it does not disclose how to deal with the case where personal information is distributed in the company as described above.

  Further, for example, Patent Document 8 below discloses a file copy management technique for preventing unauthorized copying of a file in a computer system or other data processing device or system, and in particular, a special copy prohibition measure is taken for a file. Technology for preventing unauthorized copying of source code files written in a specific language or multimedia data files of a specific file format has been disclosed. There is no disclosure of what to do if they exist in a distributed manner.

Further, for example, in Patent Document 9 below, an integrated internal information leakage prevention system is disclosed, and in particular, offline information leakage through an output device and a movable storage device and online information leakage by a communication program are fundamentally prevented. And the technology to prevent important information from leaking out from the internal system by monitoring is disclosed. However, as mentioned above, it is necessary to deal with the case where personal information is distributed in the company. Is not disclosed.
Republished patent WO2003 / 038634 JP 2005-202620 A JP 2002-279057 A JP 2002-149435 A JP 2004-302585 A JP 2005-202620 A JP 2002-183367 A JP 2001-350671 A Special table 2003-535398 gazette CS-ND-2004-00109-011, Come with Don, who develops while looking at the sample! , Information security policy making “standards” of final security measures 7, N + I NETWORK, Japan, Softbank Publishing Co., Ltd., Yoshihiro Sato et al., January 1, 2003, Vol. 3, No. 1, p.104-p.109

  However, in Patent Document 2, only the safety level of a plurality of business processing devices is diagnosed and the result of the diagnosis is notified to the business processing device. Processing to ensure thoroughness (for example, electronic education) is not performed. Moreover, in the said patent document 3, the educational plan is created based on the answer with respect to the question regarding security, and only the reference by the user of each terminal is referred, and the actual situation (actual state) in each terminal is shown. Since it is not possible to refer to it, it is difficult to say that appropriate security education according to the actual situation can be executed unless the user gives an honest answer.

  For this reason, regardless of the size of the enterprise such as large enterprises and small and medium enterprises, in order to ensure security in the information processing system, the information processing system is provided to users (employees, employees) who use the information processing system. In addition to making it possible to conduct electronic education to ensure security in accordance with the actual conditions of each user terminal, it is also possible to grasp the security status of the information processing system extremely accurately and easily. Is desired.

  Further, in Patent Documents 1-6 and Non-Patent Document 1 described above, it is impossible to take measures against violations that are highly likely to have been intentionally performed by the user after electronic education about security in general. . Therefore, thorough user education (employee education) is not sufficient, and it cannot be said that it contributes to securing and maintaining a safe environment.

  In addition, in relation to security, it is desired that information such as personal information files distributed in a large number of terminals in a company is reliably searched and managed. Here, in order to reliably identify a personal information file newly created / added in each terminal, for example, it is necessary to periodically search the personal information file. Even if the personal information file of each PC is grasped and managed by a server or the like, a storage medium (FD, CD-R (RW), DVD-R (RW), semiconductor memory) written from each terminal, electronic Personal information may be leaked from email or file transfer software.

  Therefore, in addition to managing the personal information file of each PC, it is also necessary to manage the act of writing the electronic file to an external storage medium or transmitting it to another computer. However, there is currently no system that considers information diffusion by writing or transmitting personal information from each terminal.

  In addition, as described above in Patent Document 7, if personal information and confidential information are identified with human cooperation such as reporting from each employee as described above, not only is it time-consuming, but all personal information is also collected. It is difficult to ensure that confidential information is clearly identified without omission. In particular, when personal information and confidential information are being distributed, it is extremely difficult to identify personal information and confidential information. In addition, if there is a leak in identifying personal information or confidential information, the state of the personal information or confidential information cannot be managed, and there is a risk of inadvertent outflow / leakage or unauthorized use.

Further, Patent Document 8 discloses a technique for preventing unauthorized copying, but does not disclose how to deal with personal information distributed in a company as described above.
Furthermore, Patent Document 9 discloses a technique for preventing important information from leaking from the internal system of the organization. However, as described above, when personal information exists in a distributed manner in the company. No response has been disclosed.

In this case, it is difficult to indicate that the personal computer has personal information when the personal computer is not used.
The personal computer is small or thin and can be taken out very easily. Under such circumstances, a situation may occur in which the personal computer having the personal information is taken out from a management area such as an in-house without being aware of the situation or the personal information is stored.

  Also, even if a personal computer is taken out at a guardhouse in a management area, it is difficult to determine whether the personal computer contains personal information or whether it is approved for taking out. Problems also arise.

  Information stored in a personal computer and subject to management includes various types of information other than personal information and confidential information, such as corporate (organization) information, information on structures such as buildings, and various facilities and deployments. It is desirable to manage information, security information, plant information in nature parks, animal information in zoos, and other various information to be protected in the same way.

The present invention was devised in view of such a situation. Electronic education for ensuring the security of the internal system is provided to the user of the internal system in a company in accordance with the actual situation of each user terminal. In addition, it is intended to raise the user's awareness of security, ensure and maintain a safe environment in the internal system of a company, etc., and suppress the spread of information by making it possible to carry out thoroughly.

  In addition, the present invention makes it possible to make the security status of the internal system and each terminal extremely accurate and easy even when there is no system administrator, or even when the manager or administrator is indifferent to security measures. The purpose is to raise the level of security awareness of managers, managers and users so that they can be grasped, and to secure and maintain a safe environment in internal systems of companies and the like.

  In addition, the present invention was devised in view of such a situation, and even if personal information and confidential information are distributed and stored in a plurality of PCs and servers in a company, without human cooperation. In addition, it is possible to manage the state of personal information and confidential information without imposing a special burden on the person in charge, and to reliably prevent inadvertent leakage, leakage, or unauthorized use of personal information or confidential information. It is said.

In order to achieve the above object, the gist of the present invention is to use the following management system or management server.
[1] The invention according to claim 1 is a plurality of user terminals, a management server connected to the plurality of user terminals so as to communicate with each other, and managing the plurality of user terminals; Environmental information collecting means for collecting environmental information in each user terminal from each user terminal to the management server, and the management server uses each information based on the environmental information collected from each user terminal. Determination means for determining the management conditions of the user terminal, and electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions, and the plurality of user terminals Each of the management systems includes an IC tag that records the management condition determination result and transmits the management condition determination result in response to an external read request.

  [2] The invention according to claim 2 further includes position information acquisition means for each of the plurality of user terminals to receive position information by receiving power supply independently of the operation state of the user terminals. The IC tag is characterized in that the management condition determination result and the position information are recorded, and the management condition determination result and the position information are transmitted in response to a read request from the outside. The management system according to claim 1.

  [3] The invention according to claim 3 is a plurality of user terminals, a management server connected to the plurality of user terminals so as to communicate with each other and managing the plurality of user terminals, and the plurality of usages Environmental information collection means for collecting environmental information in each user terminal from each user terminal to the management server, and the management server uses each environment terminal based on the environmental information collected from each user terminal. Determination means for determining the management conditions of the user terminal, and electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions, the plurality of user terminals Each includes an IC tag in which the management condition determination result is recorded, and a status display unit that displays information recorded in the IC tag in response to an external read request. Features and That is a management system.

[4] The invention according to claim 4 is a plurality of user terminals, a management server connected to the plurality of user terminals so as to communicate with each other and managing the plurality of user terminals, and the plurality of usages Environmental information collecting means for collecting environmental information in each user terminal from each user terminal to the management server, and the management server uses each information based on the environmental information collected from each user terminal. Determination means for determining the management conditions of the user terminal, and electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions, and the plurality of user terminals Each of the management systems is configured to include a status display unit that continuously displays the management condition determination result by having display holding characteristics.

Further, the status display unit is arranged at any position on the housing surface side separately from the display unit of the user terminal.
Further, the status display unit is disposed between a liquid crystal display unit and a backlight of the display unit of the user terminal.

Further, the state display unit is arranged between a light guide plate and a reflection plate of a backlight of the display unit of the user terminal.
[5] The invention according to claim 5 is characterized in that the state display unit is configured to be able to display even if the user terminal is not in an operating state. Information management system.

  [6] In the invention according to claim 6, the management server executes electronic education on security in general as management means for recording the management condition judgment result in an IC tag of a user terminal and the electronic education control means. And a second electronic education control means for executing a detailed electronic education on a matter relating to the management condition, the electronic education control means comprising: an electronic instruction by the first electronic education control means. Based on the environmental information in each user terminal collected by the environmental information collecting means after education, it is determined by the determining means whether each user terminal satisfies the management conditions, and the management conditions are determined by the determining means. The second electronic education is executed for the user terminal that is determined to violate the management terminal, and the management means violates the management conditions by the determination means. The transmission or the display is performed on the disconnected user terminal, and the transmission or the display is stopped on the user terminal determined to have solved the management condition violation by the determination unit. An information management system according to any one of claims 1 to 5.

  [7] The invention according to claim 7 is a management program connected to a plurality of user terminals so that they can communicate with each other and causing a computer to function as a management server for managing the plurality of user terminals. Environment information collecting means for collecting environmental information from each user terminal to the management server, and determining management conditions for each user terminal based on the environment information collected from each user terminal Determining means, electronic education control means for causing the user terminal to execute electronic education about security according to the management condition, recording the management condition determination result on an IC tag of the user terminal, and recording the result on the IC tag A management program for causing the computer to function as management means for reading the management condition determination result.

  [8] The invention according to claim 8 is a management program connected to a plurality of user terminals so as to communicate with each other, and causing a computer to function as a management server for managing the plurality of user terminals. Environment information collecting means for collecting environmental information from each user terminal to the management server, and determining management conditions for each user terminal based on the environment information collected from each user terminal Determining means, electronic education control means for causing the user terminal to execute electronic education about security according to the management condition, recording the management condition determination result on an IC tag of the user terminal, and recording the result on the IC tag A management program for causing the computer to function as management means for displaying the management condition determination result on the status display unit of the user terminal.

[9] The invention according to claim 9 is a management program connected to a plurality of user terminals so as to communicate with each other, and causing a computer to function as a management server for managing the plurality of user terminals. Environment information collecting means for collecting environmental information from each user terminal to the management server, and determining management conditions for each user terminal based on the environment information collected from each user terminal Determining means for performing electronic education control on the user terminal in accordance with the management condition, and management for displaying the management condition determination result on the state display unit of the user terminal in a display holding state. A management program for causing the computer to function as means.

  [10] In the above case, the management condition determination result is recorded in the IC tag in the user terminal determined by the management server that each of the plurality of user terminals does not satisfy the management condition. Alternatively, it is desirable that the management condition determination result is displayed on the status display unit. Further, as a read request from the outside to the user terminal, a read request for the IC tag from the IC tag reader can be used.

  [A] In the above management system or management program, the plurality of user terminals are connected to a common local area communication network to constitute an internal system, and the management server is connected to the external area communication network. A plurality of user terminals that are communicably connected to each other via a communication network and the local communication network, and the evaluation means of the management server evaluates a security level of the plurality of user terminals; The evaluation level of the entire internal system may be evaluated.

  [B] In the management system or the management program, the evaluation unit in the management server, based on a ratio of user terminals satisfying the at least one management condition among the plurality of user terminals, You may evaluate by evaluating the evaluation level about several user terminals numerically.

  [C] In the above management system or management program, based on the ratio of user terminals satisfying the at least one management condition among the plurality of user terminals and the importance of the management condition, You may evaluate by evaluating the evaluation level about several user terminals numerically.

  [D] In the above management system or management program, a plurality of management conditions for evaluating the evaluation level are set in advance, and among the plurality of management conditions, importance is higher than other management conditions Is set in advance as an important management condition, and the evaluation means in the management server first determines whether each of the plurality of user terminals satisfies the important management condition, and among the plurality of user terminals If even one device does not satisfy the important management condition, the evaluation level for the plurality of user terminals is determined as the lowest level, while there is also one user terminal that does not satisfy the important management condition. If not, based on the percentage of user terminals that satisfy at least one of the management conditions other than the important management conditions, the plurality of user terminals Evaluation level for may be evaluated to quantify.

[E] In the above management system or management program, as the management condition, as a desirable use condition or use state of the user terminal determined by the administrator side,
(1) The security software is installed on the user terminal and turned on.
(2) The security patch update information of the security patch update software as security countermeasure software on the user terminal is the latest.
(3) The update information of the virus definition file of the antivirus software as the security software on the user terminal is the latest.
(4) Dangerous software is not installed on the user terminal,
(5) User terminal does not have unauthorized copy,
It is preferable that at least one of them is included.

In the above management system or management program, the management condition further includes:
(a) No software other than licensed software is installed on the user terminal,
(b) No prohibited software is installed on the user terminal,
(c) No data for software other than licensed software is stored on the user terminal,
(d) No data for prohibited software is stored in the user terminal.
(e) No sharing settings that are not permitted to be used on the user terminal,
(e) No unauthorized folder has been created on the user terminal,
(f) Peripheral devices other than authorized peripheral devices are not connected to the user terminal,
(g) Peripheral devices that are prohibited for use are not connected to the user terminal.
It is preferable that at least one of them is included.

  [F] In the above management system or management program, the environment information collection means includes an environment information collection agent file transmission means and an environment information reception means in the management server, and an environment information collection agent in each of the plurality of user terminals. The environment information collection agent file transmission means in the management server executes collection of the environment information and notification of the collection result to the management server in each of the plurality of user terminals. An environment information collection agent file to be transmitted to the plurality of user terminals, and the environment information collection agent file execution means in each user terminal executes the environment information collection agent file transmitted from the management server The environment information on the user terminal is Collect and transmit the collection result to the management server for notification, and the environment information receiving means in the management server receives the environment information transmitted from each user terminal, and the evaluation means or the judging means. You may comprise so that it may pass to.

  [G] In the above management system or management program, the first electronic education control means in the management server conducts electronic education about security including matters relating to the at least one management condition for each of the plurality of user terminals. First electronic education agent file creation / holding means for creating or holding a first electronic education agent file to be executed by the first electronic education agent file, and the first electronic education agent created / held by the first electronic education agent file creation / holding means A first electronic education agent file transmission means for transmitting a file to the plurality of user terminals, and each of the plurality of user terminals receives the first electronic education agent file transmitted from the management server. By executing, at the user terminal, the at least One of the electronic education about security, including the matters relating to the control conditions may include a first electronic educational agent files execution means for executing to the user of the user terminal.

  [H] In the above management system or management program, the second electronic education control means in the management server performs electronic education on matters relating to management conditions determined not to be satisfied by the determination means. A second electronic education agent file creating / holding means for creating or holding a second electronic education agent file to be executed by the user terminal determined to violate the management condition by the means; and the second electronic education agent file A second electronic education agent file transmission means for transmitting the second electronic education agent file created / held by the creation / holding means to the user terminal, and the user terminal is sent from the management server; By using the transmitted second electronic education agent file, the use Even if the terminal has second electronic education agent file execution means for executing electronic education on matters relating to management conditions determined not to be satisfied by the determination means to the user of the user terminal Good.

  [I] In the management system or management program of the items [1] to [9] and [A] to [H], the evaluation unit in the management server is periodically collected by the environmental information collection unit. Based on the environmental information, periodically evaluates the evaluation level for the plurality of user terminals, and the notification means in the management server sends the periodic evaluation results to the users of the plurality of user terminals and Alternatively, the administrator may be notified.

  [J] The management server of the present invention is connected to a plurality of user terminals so as to communicate with each other, and manages the plurality of user terminals. Environment information is stored in each of the plurality of user terminals. Environment information collection agent file transmission means for transmitting an environment information collection agent file for executing collection and notification of the collection result to the management server to the plurality of user terminals, the environment transmitted from each user terminal Environment information receiving means for receiving information, first electronic education control means for causing the plurality of user terminals to perform electronic education on security including matters relating to at least one management condition, electronic by the first electronic education control means It is received by the environment information receiving means according to the environment information collecting agent file sent by the environment information collecting agent file sending means after education. Based on the environmental information in each user terminal, a determination unit that determines whether each user terminal satisfies the at least one management condition, and the determination unit determines that the management condition is violated The warning means for issuing a warning to the user and / or the administrator of the user terminal, and the user terminal determined to violate the management condition by the determination means, Second electronic education control means for executing electronic education, even if an electronic file writing or transmission command is issued to a user terminal determined to violate management conditions by the judging means May be configured to include operation restriction control means for canceling writing or transmission.

According to the management system or management program of the present invention described above, at least one of the following effects or advantages can be obtained.
[1] In the management system of the present invention, at each user terminal, at least one management condition (for example, at least one of the items (1) to (5) or the items (1) to (5)) With regard to security including matters relating to (at least one of (a) to (g)), environmental information in each user terminal is collected from each user terminal to the management server, and the collected environment in this management server Based on the information, it is determined whether or not each user terminal satisfies the management condition, and the management condition that is not satisfied or violated for the user terminal that is determined to violate the management condition Electronic education on matters related to management conditions is executed. In other words, when there is a violation of management conditions, the violation is likely due to the intention of the user, and electronic education regarding the violation is executed for the user who is the violator.

  Therefore, electronic education to ensure security for users can be conducted thoroughly and thoroughly in accordance with the actual situation of each user terminal, raising the user's awareness of security, and ensuring a safe environment in the internal system of companies, etc. Can further contribute to securing and maintaining In other words, since it is possible to conduct electronic education for violations that are likely to have been intentionally performed by users after electronic education on security in general, thorough user education (employee education) It will be possible to do this, and it will contribute to securing and maintaining a safe environment for the internal system.

In addition, a management condition determination result for the management condition is recorded in each of the plurality of user terminals, and the management condition determination result is transmitted from the IC tag in response to an external read request via an IC tag reader or the like. Therefore, it is possible to check whether the user terminal satisfies the management condition when the user terminal moves or passes through the gate. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  [2] Furthermore, even during a period when the user terminal is not in an operable state, the IC tag can be obtained by receiving position information from the secondary battery or the like and acquiring the position information by the position information acquiring means. Even when the user terminal is not in an operable state, it becomes possible to transmit position information in response to a read request from the IC tag reader, and the management of the position of the user terminal is further facilitated.

  Here, in the above information management system, when the user terminal determined not to satisfy the management condition tries to go out of the installation space through the IC tag reader, the alarm device issues an alarm, Inadvertent take-out and illegal take-out are prevented. Here, in the above information management system, if a user terminal that has been determined to satisfy the management condition and has been approved for take-out passes through the IC tag reader and goes out of the installation space, an alarm is issued. However, by collecting and tracking location information from the user terminal, unauthorized use of personal information can be prevented more reliably. In addition, the information management server can easily manage the location of the user terminal periodically by acquiring the location information from the IC tag when the user terminal passes through the vicinity of the IC tag reader even in the installation space. become.

  [3] In the management system of the present invention, at each user terminal, at least one management condition (for example, at least one of the above items (1) to (5) or the above items (1) to (5)) With regard to security including matters relating to (at least one of (a) to (g)), environmental information in each user terminal is collected from each user terminal to the management server, and the collected environment in this management server Based on the information, it is determined whether or not each user terminal satisfies the management conditions. For the user terminals that are determined to violate the management conditions, the management conditions that are not satisfied or the violation is violated. Electronic education on matters related to management conditions is executed. In other words, if there is a violation of management conditions, it is highly likely that the violation is due to the intention of the user, and electronic education regarding the violation will be executed for the violating user.

  Therefore, electronic education to ensure security for users can be conducted thoroughly and thoroughly in accordance with the actual situation of each user terminal, raising the user's awareness of security, and ensuring a safe environment in the internal system of companies, etc. Can further contribute to securing and maintaining In other words, since it is possible to conduct electronic education for violations that are likely to have been intentionally performed by users after electronic education on security in general, thorough user education (employee education) It will be possible to do this, and it will contribute to securing and maintaining a safe environment for the internal system.

  In addition, a management condition determination result for the management condition is recorded in each of the plurality of user terminals, and this management condition determination result is displayed from the IC tag in response to an external read request via an IC tag reader or the like. Therefore, when the user terminal moves or passes through the gate, it is possible to check whether the user terminal satisfies the management conditions by displaying the status display unit. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

[4] In the management system of the present invention, at each user terminal, at least one management condition (for example, at least one of the above items (1) to (5) or the above items (1) to (5)) With regard to security including matters relating to (at least one of (a) to (g)), environmental information in each user terminal is collected from each user terminal to the management server, and the collected environment in this management server Based on the information, it is determined whether or not each user terminal satisfies the management conditions. For the user terminals that are determined to violate the management conditions, the management conditions that are not satisfied or the violation is violated. Electronic education on matters related to management conditions is executed. In other words, when there is a violation of management conditions, the violation is likely due to the intention of the user, and electronic education regarding the violation is executed for the user who is the violator.

  Therefore, electronic education to ensure security for users can be conducted thoroughly and thoroughly in accordance with the actual situation of each user terminal, raising the user's awareness of security, and ensuring a safe environment in the internal system of companies, etc. Can further contribute to securing and maintaining In other words, since it is possible to conduct electronic education for violations that are likely to have been intentionally performed by users after electronic education on security in general, thorough user education (employee education) It will be possible to do this, and it will contribute to securing and maintaining a safe environment for the internal system.

  In addition, in each of the plurality of user terminals, since the determination result about the management condition is continuously displayed on the state display unit having the display holding characteristic, when using the user terminal, when moving, when passing the gate, etc. Whether the user terminal satisfies the management condition can be confirmed by displaying the status display unit. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  Note that the status display unit is arranged at any position on the housing surface side separately from the display unit of the client, and information regarding management conditions is displayed on the status display unit. It is possible to check whether the user terminal satisfies the management conditions by using the display on the status display unit when using, using, moving, or passing through the gate. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  The status display unit is disposed between the liquid crystal display means of the display unit of the main display of the client and the backlight, and information regarding management conditions is displayed on the status display unit via the display unit of the main display. Therefore, when the user terminal is used, it is possible to check whether the user terminal satisfies the management condition by displaying the status display unit. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  The status display unit is disposed between the light guide plate and the reflection plate of the backlight of the display unit of the main display of the client, and information regarding management conditions is transmitted to the status display unit via the display unit of the main display. Accordingly, when the user terminal is used, it can be confirmed by displaying the status display section whether the user terminal satisfies the management condition. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  [5] Since the state display unit is configured to be able to display even when the user terminal is not in an operating state, when the user terminal is not used, used, moved, passed through the gate, etc. Whether the user terminal satisfies the management condition can be confirmed by displaying the status display unit. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

[6] At least one management condition (for example, at least one of the above items (1) to (5) or the above items (1) to (5) and (a) to (g)) in each user terminal After executing the first electronic education on security in general including at least one of the matters relating to the environment, environmental information on each user terminal is collected from each user terminal to the management server, and in this management server, Based on the collected environmental information, it is determined whether or not each user terminal satisfies the management conditions. For the user terminals that are determined to violate the management conditions, Second electronic education on matters relating to violating management conditions is implemented. In other words, if there is a violation of management conditions after e-education for security in general, the violation is likely due to the intention of the user, and e-learning about violations is executed for the violating user. Will be.

  Therefore, electronic education (first electronic education and second electronic education) to ensure security for users can be performed in accordance with the actual situation of each user terminal, and the security awareness of users can be increased. And can make a further contribution to ensuring and maintaining a safe environment in the internal systems of companies and the like. In other words, since it is possible to conduct second electronic education for violations that are likely to have been intentionally performed by the user after the first electronic education on security in general, user education (employee education) This will contribute to ensuring and maintaining a safe environment for the internal system.

  In addition, a determination result about the management condition is recorded in each of the plurality of user terminals, and the management condition determination result is transmitted from the IC tag in response to an external read request via an IC tag reader or the like. When the user terminal moves or passes through the gate, it can be confirmed whether the user terminal satisfies the management conditions. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  In addition, when the management condition is satisfied by the electronic education, by transmitting the above management condition determination result and position information, or by stopping the display of the management condition determination result, when the user terminal moves, Whether the user terminal satisfies the management conditions when passing through the gate can be confirmed more reliably. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  [7] In the management program of the present invention, at each user terminal, at least one management condition (for example, at least one of the above items (1) to (5) or the above items (1) to (5)) With regard to security including matters relating to (at least one of (a) to (g)), environmental information in each user terminal is collected from each user terminal to the management server, and the collected environment in this management server Based on the information, it is determined whether or not each user terminal satisfies the management conditions. For the user terminals that are determined to violate the management conditions, the management conditions that are not satisfied or the violation is violated. Electronic education on matters related to management conditions is executed. In other words, if there is a violation of management conditions, it is highly likely that the violation is due to the intention of the user, and electronic education regarding the violation will be executed for the violating user.

  Therefore, electronic education to ensure security for users can be conducted thoroughly and thoroughly in accordance with the actual situation of each user terminal, raising the user's awareness of security, and ensuring a safe environment in the internal system of companies, etc. Can further contribute to securing and maintaining In other words, since it is possible to conduct electronic education for violations that are likely to have been intentionally performed by users after electronic education on security in general, thorough user education (employee education) It will be possible to do this, and it will contribute to securing and maintaining a safe environment for the internal system.

In addition, a determination result about the management condition is recorded in each of the plurality of user terminals, and the management condition determination result is transmitted from the IC tag in response to an external read request via an IC tag reader or the like. When the user terminal moves or passes through the gate, it can be confirmed whether the user terminal satisfies the management conditions. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  [8] In the management program of the present invention, at each user terminal, at least one management condition (for example, at least one of the above items (1) to (5) or the above items (1) to (5)) With regard to security including matters relating to (at least one of (a) to (g)), environmental information in each user terminal is collected from each user terminal to the management server, and the collected environment in this management server Based on the information, it is determined whether or not each user terminal satisfies the management conditions. For the user terminals that are determined to violate the management conditions, the management conditions that are not satisfied or the violation is violated. Electronic education on matters related to management conditions is executed. In other words, if there is a violation of management conditions, it is highly likely that the violation is due to the intention of the user, and electronic education regarding the violation will be executed for the violating user.

  Therefore, electronic education to ensure security for users can be conducted thoroughly and thoroughly in accordance with the actual situation of each user terminal, raising the user's awareness of security, and ensuring a safe environment in the internal system of companies, etc. Can further contribute to securing and maintaining In other words, since it is possible to conduct electronic education for violations that are likely to have been intentionally performed by users after electronic education on security in general, thorough user education (employee education) It will be possible to do this, and it will contribute to securing and maintaining a safe environment for the internal system.

  In addition, a determination result about the management condition is recorded in each of the plurality of user terminals, and the management condition determination result is transferred from the IC tag to the status display unit in response to an external read request via an IC tag reader or the like. Therefore, when the user terminal moves or passes through the gate, it is possible to confirm whether the user terminal satisfies the management condition by displaying the status display unit. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  [9] In the management program of the present invention, at each user terminal, at least one management condition (for example, at least one of the above items (1) to (5) or the above items (1) to (5)) With regard to security including matters relating to (at least one of (a) to (g)), environmental information in each user terminal is collected from each user terminal to the management server, and the collected environment in this management server Based on the information, it is determined whether or not each user terminal satisfies the management conditions. For the user terminals that are determined to violate the management conditions, the management conditions that are not satisfied or the violation is violated. Electronic education on matters related to management conditions is executed. In other words, if there is a violation of management conditions, it is highly likely that the violation is due to the intention of the user, and electronic education regarding the violation will be executed for the violating user.

  Therefore, electronic education to ensure security for users can be conducted thoroughly and thoroughly in accordance with the actual situation of each user terminal, raising the user's awareness of security, and ensuring a safe environment in the internal system of companies, etc. Can further contribute to securing and maintaining In other words, since it is possible to conduct electronic education for violations that are likely to have been intentionally performed by users after electronic education on security in general, thorough user education (employee education) It will be possible to do this, and it will contribute to securing and maintaining a safe environment for the internal system.

In addition, in each of the plurality of user terminals, since the determination result about the management condition is continuously displayed on the state display unit having the display holding characteristic, when using the user terminal, when moving, when passing the gate, etc. Whether the user terminal satisfies the management condition can be confirmed by displaying the status display unit. As a result, each user terminal can be placed in a manageable state, and personal information and confidential information can be prevented from being inadvertently leaked or leaked or illegally used.

  [10] In the above case, the management condition determination result is recorded in the IC tag in the user terminal determined by the management server that each of the plurality of user terminals does not satisfy the management condition. Alternatively, it is desirable that the management condition determination result is displayed on the status display unit. In this case, as a management server, it is only necessary to manage not all user terminals but only user terminals that violate the management conditions and user terminals that have not finished the predetermined electronic education (second electronic education). Therefore, efficient and leak-free management can be performed.

  In addition, as a read request from the outside to the user terminal, a read request for the IC tag from the IC tag reader can be used, thereby enabling efficient management such as when passing through the gate or leaving the building. Become.

  [11] In addition, environment information in each of the plurality of user terminals is collected from each user terminal to the management server, and in this management server, a plurality of usages are based on the collected environment information in each user terminal. The evaluation level of the user terminal, that is, the security status of the internal system in the company or the like is evaluated, and the evaluation result is notified to the user and the administrator. As a result, a service that evaluates the security status of internal systems in a company, etc., can be provided to the company, etc., even if there is no system administrator in place, and the manager and administrator are indifferent to security measures. Even so, the security status of internal systems and terminals can be grasped extremely accurately and easily, raising the security awareness of managers, administrators and users, and ensuring a safe environment in internal systems of companies, etc. Can be maintained. In particular, services such as those mentioned above are effective for small and medium-sized enterprises that are not as conscious of security as large enterprises. By using this service, managers and managers of such small and medium-sized enterprises can use their services. The system security status and electronic education can be done very easily and thoroughly.

  Further, in the management server, at least one management condition (for example, at least one of the items (1) to (5) or the items (1) to (5) and ( Based on the percentage of user terminals that satisfy at least one of a) to (g)), or based on the percentage and importance of each management condition, multiple user terminals (internal systems) It is possible to quantify and evaluate the evaluation level for. When performing quantification / evaluation based only on the above ratio, for example, management of at least one of the above items (1) to (5) or the above items (1) to (5) and (a) to (g) If the percentage of user terminals satisfying at least one of the conditions is 100%, the highest evaluation is given. Hereinafter, a graded evaluation level corresponding to the ratio may be given to the internal system to be evaluated. it can. That is, a higher evaluation level can be given to a system with more user terminals that satisfy the management conditions, and an evaluation according to the level of safety can be given to the internal system to be evaluated. In addition, by performing quantification / evaluation based on the importance of management conditions, a low evaluation level can be assigned to a system in which user terminals that do not satisfy the management conditions with high importance exist, and the safety is high. Can be given to the internal system to be evaluated.

  Further, at least one of a plurality of management conditions (for example, the above items (1) to (5) or at least one of the above items (1) to (5) and (a) to (g)), for example. If the importance of ensuring the safety of the internal system is extremely high, by setting the management condition as an important management condition, if there is even one user terminal that does not satisfy the important management condition, Regardless of the ratio of other items, by assigning a low evaluation level to the internal system to be evaluated, the evaluation level (security status) of the internal system to be evaluated can be easily and reliably evaluated.

  In addition, the environment information collection agent file can be transmitted from the management server to a plurality of user terminals and the environment information collection agent file can be executed on each user terminal to collect environment information on the user terminal on the management server. Is possible. Therefore, the management server creates an environment information collection agent file, and transmits the environment information collection agent file to a plurality of user terminals belonging to the internal system to be evaluated at the same time. Environmental information can be collected very easily.

  In addition, the first or second electronic education agent file is sent from the management server to the user terminal, and the first or second electronic education agent file is executed on each user terminal, so that electronic education and violations related to security in general. It is possible to allow the user of the user terminal to execute electronic education about the above. Therefore, the management server can send electronic education about security in general to multiple user terminals by simply sending the first electronic education agent file to multiple user terminals belonging to the internal network to be evaluated. In addition, the second electronic education agent file can be transmitted to the violator's user terminal, and electronic education about violations for the violator can be executed very easily.

  In addition, based on the environmental information collected periodically, the evaluation level for multiple user terminals (internal systems to be evaluated) is periodically evaluated, and the periodic evaluation results of the multiple user terminals are By notifying the user and the administrator, the user and the administrator can periodically grasp the security status of the internal system and contribute to ensuring and maintaining a safe environment for the internal system. .

  In addition, a management target file (a file containing personal information, confidential information, etc.) is searched for at a user terminal determined by the management server that the management conditions are not satisfied, and the result of the search and the management server (management means) The user terminal is managed based on the access log for the management target file. More specifically, the security level of the user terminal is changed / set based on the search result or the access log, and the operation restriction of the user terminal is changed according to the security level, or the notification of location information or The status is displayed, and the management target file itself and information contained in the management target file are prevented from leaking from the user terminal. As a result, even if personal information and confidential information are distributed and stored in multiple user terminals, each user terminal can be managed without human cooperation and without placing a special burden on the person in charge. Thus, the state of the management target file can be managed, and the inadvertent leakage / leakage or unauthorized use of personal information or confidential information can be surely prevented.

  (Ix) If the first electronic education and the second electronic education are given in stages, the files to be managed (including personal information and confidential information) are sent to the user terminal that executes the second electronic education. A file) is searched, and the user terminal is managed by the management server (management means) based on the search result and / or the access log for the management target file. More specifically, the security level of the user terminal is changed / set based on the search result or the access log, and the operation restriction of the user terminal is changed according to the security level, or the position of the user terminal Information transmission and status display are performed, and the management target file itself and information contained in the management target file are prevented from leaking from the user terminal.

  In this case, as a management server, management based on the access log for the management target file or location information of not only all user terminals but also user terminals violating the management conditions for which the second electronic education has not been completed. Since management and forced status display on the user terminal only need to be performed, efficient and leak-free management can be performed.

In addition, user terminals that are likely to cause inadvertent leaks / leakage or unauthorized use of managed files (for example, terminals that have executed processes / operations related to managed files, and have managed files in storage For terminals that do not have an encryption function set, terminals that access browsing-prohibited sites, etc., set a high security level to restrict operation on user terminals (for example, users) Restricting / prohibiting Internet connection of terminals, masking and printing of personal information elements / confidential information elements) and transmission of position information and status display will be tightened. The above possibility is low by setting the level low and canceling or mitigating the operation restriction, location information transmission and status display on the user terminal. In this case, an environment in which the terminal can be used efficiently will be provided, so that the user will voluntarily move his / her terminal to a state with a low possibility of personal information and confidential information. Inadvertent outflow / leakage and unauthorized use can be prevented more reliably.

  Furthermore, when restricting the operation of the user terminal, the user terminal is searched for the storage unit, and the result of the search is transmitted to the management server. On a user terminal that is highly likely to be leaked or illegally used, the management target file (file containing personal information, confidential information, etc.) is searched again. As a result, the management target file in the user terminal with the high possibility can be surely put under the management of the management server, personal information or confidential information is inadvertently leaked or leaked, or personal information or confidential information is illegal. Use and the like can be prevented more reliably.

Embodiments of the present invention will be described below with reference to the drawings.
[1] Configuration of this embodiment:
In the following embodiment, leakage or unauthorized use of personal information or confidential information (collectively, personal / confidential information) is prevented. In the following, specific explanation will be given by taking personal information as a specific example for the sake of explanation, but it is also applied to confidential information in the same manner as in the case of personal information.

[1-1] Schematic configuration of management system:
FIG. 1 is a block diagram showing a configuration of a management system 1 such as a security management service providing system and a user terminal management system as an embodiment of the present invention.

  As shown in FIG. 1, the management system 1 of the present embodiment is configured to include a management server 20 in addition to a plurality of user terminals 10, and these user terminals 10 and server 20 serve as external communication as a network. The network 30 is connected to be communicable with each other.

  Each user terminal 10 is constituted by a terminal device such as a personal computer (PC) used by each employee (user) in an in-house system such as a company, and has a functional configuration as described later. . Note that each user terminal 10 in the present embodiment is installed with a program (described later) for realizing various functions (described later) including searching for a personal information file and a confidential information file from the management server 20 as described later. Is.

[1-2] General operation of management system:
The management system of this embodiment performs operations as a security management service providing system and an information management system. As shown in FIG. 2A, security management (1) (step S1001 in FIG. 2). As a result, management conditions are determined as environmental information collection and security evaluation by the user terminal 10, and user terminal management (step S1002 in FIG. 2) is performed based on the evaluation results and the management condition determination results. The management of the location information of the user terminal and the display of the management condition judgment result in the user terminal are performed, and further, as the security management (2) (step S1003 in FIG. 2), electronic education is given based on the evaluation result. The result notification is performed.

  Further, the management system of the present embodiment operates as a security management service providing system or an information management system, and as shown in FIG. 2B, security management (step S1001 ′ in FIG. 2). Management conditions are determined as environmental information collection and security evaluation by the user terminal 10, electronic education is performed based on the evaluation results and the management condition determination results, and results are notified. Based on the evaluation result, as user terminal management (step S1002 in FIG. 2), management of the location information of the user terminal and display of the management condition judgment result in the user terminal are performed.

  The flowchart in FIG. 2 shows the overall schematic operation of the management system 1, and includes security management (steps S1001, 1003, 1001 ′ in FIG. 2) and user terminal management (in FIG. 2). Details of each operation such as step S1002) will be described later in detail.

[1-3] Detailed configuration of management system (security management service providing system):
FIG. 3 is a block diagram showing a configuration of a management system (management server and user terminal) 1 as a security management service providing system as an embodiment of the present invention.

  As shown in FIG. 3, the management system (security management service providing system) 1 according to this embodiment receives a request from an administrator (system administrator, manager of the company, etc.) of the in-company system 5 and will be described later. The management server 20 performs security management and electronic education of the in-company system 5 that is an evaluation object (management object) and provides a service (security management service) for preventing information leakage to the in-company system 5.

  Therefore, in the system 1 of the present embodiment, as shown in FIG. 3, a plurality of in-company systems 5 that can be evaluated and a plurality of user terminals 10 belonging to each in-company system 5 to provide the service are provided. A management server (security management service providing server) 20 that can be managed is connected to be communicable with each other via an external communication network 30. Here, the external communication network 30 includes various networks such as the Internet and a public line network.

  In an in-house system (internal system) 10, a plurality of user terminals 10 are connected to each other via a common local area communication network LAN 6, and a proxy server 7 and a printer 8 are connected to the LAN 6. It is connected.

  Each user terminal 10 is connected to the external communication network 30 via the LAN 6 and the proxy server 7 so as to be communicably connected to various external servers (including the management server 20). That is, each user terminal 10 and the management server 20 are configured to be communicable with each other via the LAN 6, the proxy server 7, and the external communication network 30.

  Each user terminal 10 belonging to the in-company system 5 is a personal computer or the like used / carried by a user who is an employee of the company, and includes a storage unit (not shown) such as a hard disk and an agent file described later. A processing unit (CPU) 110 that can function as execution means 111, 112, 113, and 119 described later by executing various programs is provided.

Further, the management server 20 is connected to each user terminal 10 belonging to a plurality of in-company systems 5 that can be evaluated as described above so as to be able to communicate with each other. Provides management service and user terminal management service, and includes environment information collection agent file transmission means 21, environment information reception means 22, and evaluation means 2.
3. Functions as the evaluation result notification means 24, the first electronic education control means 25, the judgment means 26, the warning means 27, the second electronic education control means 28, and the user terminal management control means 29.

  The functions of these means 21 to 29 are realized by executing a management program (security management service providing program) installed in advance by a processing unit (CPU; not shown) constituting the management server 20. .

  The environment information collection agent file transmission means 21 transmits the environment information collection agent file to each of the plurality of user terminals 10 in the system 5 to be evaluated, for example, by attaching it to an e-mail. At this time, information (e-mail address, etc.) regarding each user terminal 10 of the transmission destination is received together with a security management request from the administrator of the in-company system 5 or the like. The environment information collection agent file to be transmitted to each user terminal 10 is once transmitted to the management terminal or the like (not shown) of the in-company system 5 by the environment information collection agent file transmission means 21. Or the like may be transmitted to each user terminal 10 through the LAN 6.

  In the management server 20, a process (task) desired to be executed by each user terminal 10 is created in advance as an agent file, and the agent file is stored in the storage unit or the like. Here, the environment information collection agent file causes each user terminal 10 to execute a process of collecting environment information in each user terminal 10 and a process of notifying the collection result to the management server 20.

  The management server 20 is connected to a plurality of user terminals 10 so as to be able to communicate with each other via the network 30, and manages the personal information file in each user terminal 10 as a management target file. It also has a functional configuration as a server (a server that manages access to a management target file).

  Here, in the present embodiment, the management target file means an electronic file having a predetermined number or more of personal information elements or confidential information elements. In other words, the personal information file as the management target file in the present embodiment has a predetermined condition that it has a predetermined number or more of personal information elements that can identify a specific individual. 1100), and as described above, personal information is information (a variety of personal information elements) that can identify a specific individual by itself or in combination, such as name, date of birth, and contact information. (Address, address, phone number, email address). In addition to these, personal information includes titles, basic resident register numbers, account numbers, credit card numbers, license numbers, passport numbers, and the like.

  The environment information collection agent file transmitted to each user terminal 10 is automatically or when the user performs a predetermined operation (for example, a double click operation with a mouse) on the file. It is executed by the processing unit 110. That is, the processing unit 110 functions as the environment information collection agent file execution unit 111, and the environment information in the user terminal 10 is collected along with the execution operation, and the collected result is the LAN 6, the proxy server 7, and the external communication. The information is transmitted / notified to the management server 20 through the network 30.

Here, the environmental information collected at each user terminal 10 is information (asset information / inventory information / execution environment information) related to the operating environment at each user terminal 10, and an evaluation process by the evaluation means 23 as described later. And information necessary for determination processing by the determination means 26 (information related to the contents of management conditions described later; for example, information regarding all software installed in each user terminal 10) and information regarding a management target file However, if necessary, it is possible to collect the following information regarding hardware resources and software resources in the user terminal 10 as environmental information.

  As information about hardware resources, for example, computer name / OS / CPU / CPU speed / keyboard type / physical memory / available memory / video card / resolution / printer / swap size / domain name / logon user name / model name / Network card / MAC address / IP address / Net mask / Default gateway / DNS server / Socket version / Total capacity and free space for each local drive / BIOS version / BIOS manufacturer / machine manufacturer / machine name / machine serial machine UUID / motherboard manufacturer Information on name / motherboard name / CPU ID and the like.

  Information related to software resources includes information (for example, product name, detailed version, file size, file update date) related to software (various application programs) held in the user terminal 10. If the user terminal 10 has security patch update software (for example, “Windows (registered trademark) Update”) for repairing an OS security hole, the security patch update information (is it the latest? Whether or not) is also collected. In addition, when the user terminal 10 has anti-virus software (for example, “Norton AntiVilus (registered trademark)” or the like), the update information of the virus definition file in the anti-virus software (whether it is the latest or not) Is also collected. In addition, when the user terminal 10 has security software such as security patch update software, anti-virus software, anti-spyware software, etc., the setting status (security setting; on / off status, etc.) is also included. Collected.

The environment information receiving unit 22 receives the environment information transmitted from each user terminal 10 and passes it to the evaluation unit 23 and the determination unit 26.
In the management system 1 of the present embodiment, the environment information collection agent file transmission unit 21 and the environment information reception unit 22 in the management server 20 and the environment information collection agent file execution unit 111 in each user terminal 10 are used for a plurality of users. Environmental information collecting means for collecting environmental information in each terminal 10 from each user terminal 10 to the management server 20 is configured.

  The evaluation means 23 is based on the environment information in each user terminal 10 collected by the environment information collection means, that is, the environment information in each user terminal 10 of the in-company system 5 received by the environment information receiving means 22. By determining whether each user terminal 10 satisfies at least one management condition (described later) and quantifying the degree of safety and satisfaction of the management condition for the plurality of user terminals 10, an in-company system 5 Evaluation and determination of the overall evaluation level (security level evaluation level).

  At that time, as will be described later with reference to FIG. 5, the evaluation means 23 is a ratio of the user terminals 10 that satisfy at least one management condition (described later) among the plurality of user terminals 10 in the in-company system 5. The degree of safety and the satisfaction degree of the management condition may be quantified based on the above, or the degree of safety based on the ratio and the importance of the management condition (described later) as described later with reference to FIGS. Or the degree of satisfaction of management conditions may be quantified.

Then, the evaluation means 23 of this embodiment evaluates the security status of the in-company system 5 step by step according to the result of quantifying the degree of safety and the degree of satisfaction of the management condition (a ratio P and an evaluation value V described later). The level is to be determined. For example, when the evaluation level is 5 levels of 1 to 5 and the safety level and management condition satisfaction degree of the in-company system 5 is the highest, the evaluation level is “5”. In the lowest case, the evaluation level is “1”.

  In addition, the management conditions mentioned above mean desirable usage conditions or usage status of the user terminal determined by the administrator, which means that it is highly secure and meets the policy set by the administrator. Specific examples include the following items (1) to (5). Any of the management conditions is such that when each user terminal 10 satisfies the management condition, the degree of safety and the satisfaction degree of the management condition are higher than when the user terminal 10 does not satisfy the management condition.

(1) The security software is installed on the user terminal 10 and is turned on.
(2) The security patch update information of the security patch update software as the security countermeasure software in the user terminal 10 is the latest.

(3) The update information of the virus definition file of the antivirus software as the security countermeasure software in the user terminal 10 is the latest.
(4) The dangerous software is not installed in the user terminal 10. Examples of dangerous software include virtual VPN software, P2P software, spyware, and file exchange software (for example, Winny).

(5) The user terminal 10 does not have an unauthorized copy of software or the like.
Alternatively, the management conditions include the following items (a) to (g) in addition to the above (1) to (5) as desirable usage conditions or usage states of the user terminal determined by the administrator. Any of the management conditions is such that when each user terminal 10 satisfies the management condition, the degree of safety and the satisfaction degree of the management condition are higher than when the user terminal 10 does not satisfy the management condition.

(a) No software other than licensed software is installed on the user terminal,
(b) No prohibited software is installed on the user terminal,
(c) No data for software other than licensed software is stored on the user terminal,
(d) No data for prohibited software is stored in the user terminal.
(e) No sharing settings that are not permitted to be used on the user terminal,
(e) No unauthorized folder has been created on the user terminal,
(f) Peripheral devices other than authorized peripheral devices are not connected to the user terminal,
(g) Peripheral devices that are prohibited for use are not connected to the user terminal.
In addition, this management condition satisfies which item among the above items (1) to (g), or how many items, as the desired use condition or use state of the user terminal determined by the administrator You may decide.

  In addition, the management condition may be set uniformly for a plurality of user terminals, may be set for each user terminal, or may be changed according to the situation. Also good.

  Here, “change according to the situation” means that more strict management conditions are set for user terminals that violate the management conditions, or more strict management conditions are set for user terminals that hold personal information. And, conversely, loosely setting management conditions for user terminals that do not have violations or possess personal information.

When the evaluation means 23 performs the evaluation process by the method shown in FIG. 5 or FIG. 6, all the management conditions of these items (1) to (5) or (1) to (5) and (a) to (g) are set. The evaluation level may be determined by calculating the proportion of the user terminals 10 that satisfy, or the management conditions of these items (1) to (5) or (1) to (5) and (a) to (g) An evaluation level may be determined by calculating a ratio of user terminals 10 that satisfy at least one of the above. When performing the evaluation process by the method shown in FIG. 6, as described later, item (1)
~ (5) or (1) ~ (5) and at least one of the management conditions of (a) ~ (g) shall be extremely important to ensure the safety of the corporate system 5 The important management conditions are set in advance.

  When performing the evaluation process by the method shown in FIG. 7, the safety of the system 5 is ensured for each management condition (1) to (5) or (1) to (5) and (a) to (g). The importance for securing is set. In this case, the importance Mi (i = 1 to 5) as a weight used for calculating an evaluation value V to be described later with reference to FIG. 7 is the management condition (1) to (5) or (1). It is preset for each of (5) and (a) to (g). The importance Mi is set so as to increase as the necessity of satisfying the management condition in order to ensure the safety of the system 5 increases.

  The evaluation result notifying means (notifying means) 24 sends the evaluation results (including the calculated ratio, table value, and evaluation level) obtained by the evaluating means 23 to each user terminal 10 or a terminal such as an administrator (not shown). ) To be displayed and notified to the users and managers of the plurality of user terminals 10 (such as the manager of the in-company system 5).

  When a periodic evaluation is requested in the evaluation request (security management request) of the in-company system 5, in the management system 1 of the present embodiment, the environment information of each user terminal 10 of the in-company system 5 is the above. It is periodically collected by the environmental information collecting means, and the evaluating means 23 is based on the result of the periodic collection, and the degree of safety and the degree of satisfaction of management conditions (security status of the plurality of user terminals 10 (in-house system 5)). Evaluation level) is periodically evaluated, and the evaluation result notification means 24 notifies the periodic evaluation results to the managers and users of the plurality of user terminals 10 and the terminals and users of the managers. It is displayed on the terminal 10.

  The first electronic education control means 25 is an electronic education (e-learning) on security including at least the matters relating to the management conditions (1) to (5) or (1) to (5) and (a) to (g). In other words, the electronic education about security in general when using the in-company system 5 is executed by a plurality of user terminals 10 belonging to the in-company system 5, and the first electronic education agent file creating / holding means 251 and The first electronic education agent file transmission means 252 has a function.

  The first electronic education agent file creation / holding means 251 generates a first electronic education agent file that causes each of a plurality of user terminals 10 belonging to the in-company system 5 to execute electronic education about security in the in-company system 5 in general. Create or hold. As described above, in the management server 20, a process (task) desired to be executed by each user terminal 10 is created as an agent file.

  Here, the first electronic education agent file is for causing each user terminal 10 to execute electronic education about the overall security in the in-company system 5, and by the first electronic education agent file creation / holding means 251 as necessary. The first electronic education agent file for security in general in the company system 5 may be created in advance and held in the first electronic education agent file creation / holding means 251.

The first electronic education agent file transmission means 252 attaches the first electronic education agent file created or held by the first electronic education agent file creation / holding means 251 to an e-mail after creation or reading. Are transmitted to a plurality of user terminals 10 in the system 5 to be evaluated. At this time, information (email address and the like) related to each user terminal 10 as the transmission destination is received together with a security management request from the administrator of the in-company system 5 as described above. The first electronic education agent file to be transmitted to each user terminal 10 is once transmitted to the management terminal or the like (not shown) of the in-company system 5 by the first electronic education agent file transmission means 252. You may transmit to each user terminal 10 via LAN6 from a management terminal.

  Note that the first electronic education control means 25 in this embodiment is obtained by the evaluation means 23 in addition to the functions described above (functions used in steps S107 and S108 in FIG. 4 as described later with reference to FIG. 4). It also has a function of causing a plurality of user terminals 10 belonging to the in-company system 5 to execute electronic education (e-learning) corresponding to the obtained evaluation result (evaluation level or the like). As will be described later with reference to FIG. 4, this function is used in the processing in steps S118 and S119 in FIG. 4, but can also be used in the processing in steps S107 and S108 in FIG.

  In this case, the first electronic education agent file creation / holding means 251 is an electronic that causes each of the plurality of user terminals 10 belonging to the in-company system 5 to execute electronic education according to the evaluation result obtained by the evaluation means 23. Create or maintain educational agent files. This electronic education agent file causes each user terminal 10 to execute electronic education according to the evaluation result by the evaluation means 23. When the evaluation result is obtained, the first electronic education agent file creation / holding means 251 Alternatively, an electronic education agent file corresponding to the evaluation result may be created in advance for each evaluation result and held in the first electronic education agent file creation / holding means 251. The first electronic education agent file transmission means 252 then sends the electronic education agent file according to the evaluation result created or held by the first electronic education agent file creation / holding means 251 to the first electronic education agent described above. Similar to the transmission of a file, it is transmitted to a plurality of user terminals 10 in the system 5 to be evaluated by attaching it to an e-mail after creation or reading.

  The first electronic education agent file transmitted to each user terminal 10 or the electronic education agent file according to the evaluation result is automatically or a user performs a predetermined operation on the file (for example, double-clicking with a mouse). When the operation is performed, it is executed by the processing unit 110 on the user terminal 10. That is, the processing unit 110 functions as the first electronic education agent file execution unit 112, and in accordance with the execution operation, the electronic corresponding to the electronic education or the evaluation result of the overall security in the in-company system 5 at the user terminal 10 is performed. Education is executed for the user of the user terminal 10.

  At this time, the first electronic education agent file execution means 112 in each user terminal 10 manages information regarding whether or not the electronic education has been completed in each user terminal 10 through the LAN 6, the proxy server 7 and the external communication network 30. It may be configured to transmit / notify to the server 20 or notify the administrator of the in-company system 5 or the like. As a result, the management server 20, the administrator, and the like can grasp the user (employee) who has performed electronic education / the user (employee) who has not performed electronic education, and can perform more thorough electronic education. .

  In addition, the electronic education is used so that the operation of the electronic education (electronic education about security in general or electronic education according to the evaluation result) is not terminated until the user completes and completes the electronic education at each user terminal 10. It may be configured to force the person to execute. Thereby, electronic education can be executed reliably and thoroughly regardless of the user's will and consciousness.

  Further, the user terminal 10 that has completed the electronic education displays a completed desktop stamp indicating that the electronic education has been completed on the desktop, while the user terminal 10 that has not completed the electronic education displays the desktop. In addition, an incomplete desktop stamp indicating that the electronic education has not been completed may be displayed in a stamped manner. This desktop stamp (bitmap image) cannot be deleted / moved on the user terminal 10 side, and is pasted on the desktop wallpaper. Therefore, the user can delete the desktop stamp by operating himself / herself. It cannot be moved, is always displayed on the desktop, and is exposed not only to the user but also to others. Therefore, by displaying the completed desktop stamp and the incomplete desktop stamp on the desktop, it is possible to encourage the user's will and awareness to voluntarily execute the electronic education, and the electronic education (security E-education in general or e-education according to evaluation results) can be executed reliably and thoroughly.

  When all of the plurality of user terminals 10 belonging to the in-company system 5 satisfy the above management conditions, electronic education for each user terminal 10 (depending on electronic education and overall evaluation results for security) However, even in such a case, it is preferable to conduct electronic education to confirm and re-recognize security.

  The determination means 26 is based on the environmental information in each user terminal 10 periodically collected by the environmental information collecting means described above after the first electronic education control means 25 performs electronic education on the plurality of user terminals 10. Whether each user terminal 10 satisfies at least the management conditions (1) to (5) or (1) to (5) and (a) to (g) (whether or not a management condition is violated) ).

  The warning unit 27 issues a warning to the user or administrator of the user terminal 10 that is determined to have violated the management condition by the determination unit 26, indicating that the management condition has been violated. A warning is transmitted to and displayed on the terminal of the violator's user terminal 10 or its manager, etc., and a warning is given to the violator or manager (such as the manager of the in-company system 5).

  The second electronic education control means 28 causes the user terminal 10 that has been determined to violate the management conditions by the determination means 26 to execute electronic education on matters relating to the management conditions (violation management conditions). The second electronic education agent file creation / holding means 281 and the second electronic education agent file transmission means 282 have functions.

  The second electronic education agent file creation / holding means 281 performs detailed electronic education on matters relating to management conditions (violation management conditions) determined not to be satisfied by the determination means 26 by the determination means 26. The second electronic education agent file to be executed by the user terminal 10 determined to violate the above is created or held. As described above, in the management server 20, a process (task) desired to be executed by each user terminal 10 is created as an agent file.

  Here, the second electronic education agent file is used to cause the user terminal 10 that has made the violation to execute detailed electronic education on the matter relating to the violation management condition, and the determination means 26 determines that there is a violation. The second electronic education agent file creation / retention means 281 may be created at the time, or a second electronic education agent file creation / retention means is created in advance for the violator for each management condition. You may hold | maintain to 281.

The second electronic education agent file transmission means 282 attaches the second electronic education agent file created or held by the second electronic education agent file creation / holding means 281 to an e-mail after creation or reading. , It is transmitted to the user terminal 10 that has made the violation. At this time, information (e-mail address, etc.) regarding the user terminal 10 that has violated the transmission destination is already received together with a security management request from the administrator of the in-company system 5 and managed by the management server 20 as described above. It shall be. The second electronic education agent file to be transmitted to the user terminal 10 is once transmitted to the management terminal or the like (not shown) of the in-company system 5 by the second electronic education agent file transmission means 282, and the management is performed. You may transmit to the corresponding user terminal 10 via LAN6 from a terminal.

  The second electronic education agent file transmitted to the user terminal 10 is automatically or on the user terminal 10 when the user performs a predetermined operation (for example, a double-click operation with a mouse) on the file. It is executed by the processing unit 110. That is, the processing unit 110 functions as the second electronic education agent file execution unit 113, and in accordance with the execution operation, detailed electronic education on matters relating to the violation management condition in the user terminal 10 is performed on the user terminal. It is executed for 10 users (management condition dissatisfied person and management condition violation person).

  At this time, the second electronic education agent file execution means 113 in the user terminal 10 of the management condition dissatisfied person or the management condition violated person obtains information regarding whether or not the electronic education has been completed in the user terminal 10 by using the LAN 6, proxy server. 7 and the external communication network 30 may be used for transmission / notification to the management server 20 or notification to the administrator of the in-company system 5 or the like. As a result, the management server 20, the administrator, and the like can grasp whether or not the management condition dissatisfied person or the management condition violator has performed the electronic education, and can perform the electronic education more thoroughly.

  In addition, in the user terminal 10 for those who are unsatisfied with management conditions or those who violate management conditions, electronic education (about matters related to violation management conditions) The electronic education may be forcibly executed by the user without terminating the detailed electronic education). Thereby, regardless of the user's will and consciousness, detailed electronic education on matters related to violation management conditions can be executed reliably and thoroughly.

  Further, as in the case of completing the electronic education using the first electronic education agent file, the user terminal 10 that has completed the detailed electronic education on the matters related to the violation management conditions has completed the electronic education on the desktop. The user terminal 10 that has not completed the electronic education is displayed on the desktop with an incomplete desktop stamp indicating that the electronic education has not been completed. May be. As a result, completed desktop stamps and incomplete desktop stamps are stamped on the desktop, allowing users to work on their will and awareness to voluntarily execute electronic education. It is possible to ensure that detailed electronic education on matters related to is executed thoroughly and thoroughly.

  The user terminal management control means 29 transmits at least one of the position information or the management condition judgment result to the user terminal 10 determined by the judging means 26 to violate the management conditions, or displays the management status judgment result. (Hereinafter referred to as “location information / judgment result transmission / display control”), user terminal management means 290, user terminal control agent file creation / holding means 291, and user terminal control agent file It has a function as the transmission means 292.

Here, when the user terminal 10 does not satisfy the management conditions, the user terminal management unit 290 collects and records an access log for the management target file from the user terminal, and the search result and / or Alternatively, the security level in the user terminal 10 is changed / set based on the access log for the management target file, and the location information / judgment result transmission / display control of the user terminal 10 is controlled according to the security level. Management means to change.

  Further, the user terminal management means 290 sets the security level high for the user terminal 10 that has executed the processing / operation related to the management target file, and transmits the location information / determination result of the user terminal / While restricting display control, for user terminals 10 that have not executed processing / operations related to the management target file for a predetermined period, the security level is set low, and the location information / determination results of the user terminals are transmitted. / Release or relax display control.

  Further, the user terminal management means 290 transmits the location information / determination result of the user terminal 10 by setting the security level high for the user terminal 10 having the management target file in the storage unit. / While tightening display control, for the user terminal 10 that does not have the management target file in the storage unit, the security level is set low, and the location information / determination result of the user terminal 10 is transmitted / displayed. Release or relax control.

  In addition, the user terminal management means 290 sets the security level to a high level for the user terminal 10 that is not set with an encryption function for automatically encrypting a file sent to the outside. While restricting terminal position information / judgment result transmission / display control, for the user terminal 10 to which the encryption function is set, the security level is set low, and the position information / judgment result of the user terminal is set. Release or relax transmission / display control.

  Further, the user terminal management means 290 sets the security level to a high level for the user terminal 10 that is accessing the browsing-prohibited site, and transmits / displays the location information / determination result of the user terminal 10. While tightening the control, for the user terminal 10 that has not accessed the browsing-prohibited site, the security level is set low, and the position information / determination result transmission / display control of the user terminal 10 is canceled or relaxed. To do.

  Further, the user terminal management means 290, when performing the location information / judgment result transmission / display control of the user terminal 10, causes the user terminal 10 to search the storage unit by the searching means, The search result is transmitted to the management server 20 by the transmission means.

  Here, the user terminal control agent file creation / holding means 291 collects the access log for the management target file from the user terminal 10 when the judging means 26 judges that the management condition is not satisfied. A user terminal control agent file that changes the position information / determination result transmission / display control of the user terminal 10 according to the set security level is created or held. As described above, in the management server 20, a process (task) desired to be executed by each user terminal 10 is created as an agent file.

  Here, the user terminal control agent file collects the access log for the management target file from the user terminal 10 and transmits / displays the location information / determination result of the user terminal 10 according to the set security level. The control is executed, and may be created by the user terminal control agent file creation / holding means 291 at the time when the judgment means 26 judges that there is a violation, or user terminal control for the violator for each management condition An agent file may be created in advance and held in the user terminal control agent file creation / holding unit 291.

  The user terminal control agent file transmission unit 292 attaches the user terminal control agent file created or held by the user terminal control agent file creation / holding unit 291 to an e-mail after creation or reading. , It is transmitted to the user terminal 10 that has made the violation.

  At this time, information (e-mail address, etc.) regarding the user terminal 10 that has violated the transmission destination has already been received from the administrator of the in-house system 5 together with the security management request and managed by the management server 20 as described above. It shall be. The user terminal control agent file to be transmitted to the user terminal 10 is once transmitted to the management terminal or the like (not shown) of the in-company system 5 by the user terminal control agent file transmission means 292, and the management is performed. You may transmit to the corresponding user terminal 10 via LAN6 from a terminal.

  The user terminal control agent file transmitted to the user terminal 10 is automatically or when the user performs a predetermined operation (for example, a double click operation with a mouse) on the file. Execution is started in the processing unit 110. Then, the processing unit 110 functions as the user terminal control agent file execution unit 119, and the restriction is executed in the user terminal 10 when a command for various operations set is generated.

  That is, the user terminal control agent file execution means 119 in the user terminal 10 executes position information / judgment result transmission / display control in the user terminal 10, and user terminal management control means in the user terminal 10. Will work as.

  Also, do not end the operation of electronic education (detailed electronic education on matters related to violation management conditions) until the offender (user) completes the second electronic education at the user terminal 10 of the infringer The second electronic education is forcibly executed by the user, and the position information / determination result transmission / display control of the electronic file is canceled when the second electronic education is completed. It may be. Thereby, regardless of the user's will and consciousness, detailed electronic education on matters related to violation management conditions can be executed reliably and thoroughly.

  Furthermore, in the user terminal 10 that has not completed the electronic education, at the time of executing the various operations that have been set, an explanatory text that indicates that the electronic education has not been completed in accordance with the operation to be used and executed. It is configured to be attached to an electronic file, or to send an explanatory text file indicating that e-education has not been completed, instead of an attached file of an e-mail, to be displayed on a display screen, or to be printed from a printer. May be. As a result, the electronic education incompletion is informed to the surroundings, and as a result, the user can work on the will and awareness of the user to voluntarily execute the electronic education. Detailed electronic education about can be executed reliably and thoroughly.

[2] Operation of embodiment (security management operation):
Next, the operation of the management system 1 of the present embodiment configured as described above will be described with reference to FIG. As described with reference to FIG. 2, the management system 1 of the present embodiment is characterized by performing security management and user terminal management. Hereinafter, it demonstrates in order.

[2-1] Security management operation:
[2-1-1] Security evaluation operation:
Here, as security management, first, security evaluation and electronic education for the user terminal 10 will be described.

First, the security management operation of the management server 20 of this embodiment will be described with reference to the flowchart shown in FIG. 4 (steps S101 to S124 in FIG. 4).
As shown in FIG. 4, the management server (security management service providing server) 20 determines whether there is a new security management request for the in-company system 5 connected via the external communication network 30, and periodically Whether or not the evaluation timing has come is monitored periodically (every predetermined control cycle) (steps S101 and S111 in FIG. 4), and when a new security management request is received from the administrator of the in-house system 5 or the like ( The YES route of step S101 in FIG. 4), based on the information (email address, etc.) regarding each user terminal 10 of the transmission destination sent together with the security management request, the environment information collection agent file transmission means 21 The collection agent file is attached to the e-mail, etc. It is transmitted to each user terminal 10 having (step S102 in FIG. 4).

  Here, according to the flowchart (steps S51 to S54) shown in FIG. 8, the environment information collecting operation of each user terminal 10 in the in-company system 5 of the present embodiment will be described. As shown in FIG. 8, each user terminal 10 monitors whether or not an environment information collection agent file has been received from the management server 20 (step S51), and upon receiving the environment information collection agent file (step S51). YES route of S51), or automatically or when the user performs a predetermined operation (for example, a double click operation with a mouse) on the file, the environment information collection agent file is processed by the processing unit 110 on the user terminal 10. (Step S52). Thereby, the environment information in the user terminal 10 (asset information / inventory information / execution environment information; information related to the contents of the management conditions; for example, information about all software installed in each user terminal 10; Information on peripheral devices such as external storage media connected to the user terminal 10) is collected (step S53), and the collection result is transmitted / notified to the management server 20 through the LAN 6, the proxy server 7 and the external communication network 30. (Step S54).

  The management server 20 receives environment information from each user terminal 10 belonging to the in-company system 5 (step S103 in FIG. 4), and receives environment information from all user terminals 10 belonging to the company system 5. (YES route in step S104 in FIG. 4), the security evaluation by the evaluation means 23 is executed (step S105 in FIG. 4).

  In step S104 in FIG. 4, security evaluation is performed when environment information is received from all the user terminals 10 belonging to the in-company system 5, but all user terminals are received even after a predetermined time has elapsed. When the environmental information from 10 cannot be received, security evaluation by the evaluation means 23 may be performed based on the environmental information received at the time when the predetermined time has elapsed.

  Further, in step S104 in FIG. 4, it is not determined whether or not the environment information has been received from all the user terminals 10 as described above, but a predetermined number or more of the user terminals 10 belonging to the in-company system 5 is determined. Alternatively, it is determined whether or not the environment information has been received from a predetermined percentage or more of the user terminals 10, and when the environment information is received from the predetermined number or more of the user terminals 10 or more, based on the received environment information Thus, security evaluation by the evaluation unit 23 may be performed.

Next, first to third examples of security evaluation methods by the evaluation unit 23 that can be executed in step S105 of FIG. 4 will be described with reference to FIGS.
FIG. 5 is a flowchart (steps S21 to S23) for explaining the operation of the evaluation unit 23 (first example of the security evaluation method) in the management server 20 of the present embodiment. As shown in FIG. In the first example of the method, for example, at least one of the management conditions (1) to (5) or (1) to (5) and (a) to (g) described above is set as the management condition in advance. deep.

  Then, the evaluation unit 23 refers to the environment information in each user terminal 10 of the in-company system 5 received by the environment information receiving unit 22, and sets one user terminal 10 belonging to the in-company system 5. It is determined whether or not all set management conditions are satisfied (step S21). When the management condition determination is completed for all the user terminals 10 that have received the environment information, the ratio P of the user terminals 10 that satisfy the management condition (ratio to the total number of user terminals 10 in the in-company system 5) P is calculated. (Step S22).

  The higher the ratio P of the user terminals 10 that satisfy the management conditions, the higher the percentage P of the user terminals 10 that may have some adverse effects on the in-company system 5 (such as causing a security problem, being infected with a virus, The ratio (number) of user terminals 10 that are likely to cause information leakage due to wear or the like and user terminals 10 that have performed illegal copying is low, and the safety level and management conditions of the in-company system 5 are satisfied. The degree is high, that is, the security situation is considered good.

  Therefore, when the degree of safety of the in-company system 5 and the degree of satisfaction with the management conditions (security status) are evaluated, for example, in five stages (evaluation levels 1 to 5), the evaluation is performed when the ratio P is 90 to 100%. Level "5" is assigned, evaluation level "4" is assigned when the ratio P is 80-90%, evaluation level "3" is assigned when the ratio P is 70-80%, and ratio P is 50-70% In this case, the evaluation level “2” is assigned, and the evaluation level “1” is assigned when the ratio P is less than 50%. Based on such evaluation level setting, the evaluation means 23 determines an evaluation level corresponding to the ratio P calculated in step S22 for the in-company system 5 (step S23).

  In the first example of the security evaluation method shown in FIG. 5, the management condition is at least one of items (1) to (5) or (1) to (5) and (a) to (g). Although the case has been described, the present invention is not limited to this, and under these management conditions other than these items (1) to (5) or (1) to (5) and (a) to (g) The management conditions other than the items (1) to (5) or (1) to (5) and (a) to (g) may be included.

FIG. 6 is a flowchart (steps S31 to S36) for explaining the operation of the evaluation unit 23 (second example of the security evaluation method) in the management server 20 of this embodiment. As shown in FIG. In the second example of the technique, for example, at least one of the management conditions (1) to (3) and (5) described above is set as the management condition in advance. “Dangerous software is not installed in the user terminal” is assumed to have an extremely high importance for ensuring the safety of the in-company system 5 and is set as an important management condition.

And the evaluation means 23 refers to the environmental information in each user terminal 10 of the in-company system 5 received by the environment information receiving means 22, and first, for a plurality of user terminals 10 belonging to the in-company system 5, It is determined one by one whether the management condition (4) set as the important management condition is satisfied (step S31). At this time, if there is at least one user terminal 10 that does not satisfy the management condition (4) (YES route in step S32), that is, if there is at least one user terminal 10 installed with dangerous software, Without determining other management conditions, a predetermined low evaluation level (for example, “1”) is determined as the evaluation level of the in-company system 5 to which the user terminal 10 belongs, and the inside of the company This is given to the system 5 (step S33).

On the other hand, when there is no user terminal 10 that does not satisfy the management condition (4) (step S
32 NO route), that is, if there is no user terminal 10 installed with dangerous software, the same evaluation process as in the first example described with reference to FIG. 5 is performed.

That is, it is determined whether each of the plurality of user terminals 10 belonging to the in-company system 5 satisfies all the management conditions set except for the management condition (4) (step S3).
4). The ratio of the user terminals 10 that satisfy the management condition at the time when the determination of the management conditions for all the user terminals 10 that received the environment information is completed (ratio to the total number of user terminals 10 in the in-company system 5) P Is calculated (step S35). Then, based on the same evaluation level setting as in the first example, the evaluation unit 23 determines an evaluation level corresponding to the ratio P calculated in step S35 for the in-company system 5 (step S36).

In the second example of the security evaluation method shown in FIG. 6, the case where the important management condition is the management condition of the item (4) has been described, but the present invention is not limited to this, and other items The management conditions (1) to (3) and (5) may be set as important management conditions, or these items (1) to (5) or (1) to (5) and (a) to (a) Management conditions other than g) may be set as important management conditions, or a plurality of management conditions may be set as important management conditions.

  FIG. 7 is a flowchart (steps S41 to S48) for explaining the operation of the evaluation unit 23 (third example of the security evaluation method) in the management server 20 of the present embodiment. As shown in FIG. In the third example of the technique, for example, the management conditions (1) to (5) or (1) to (5) and (a) to (g) described above are set as management conditions in advance. In the third example, the importance levels M1 to M5 as described above are set in advance.

  Then, the evaluation unit 23 refers to the environment information in each user terminal 10 of the in-company system 5 received by the environment information receiving unit 22, and sets one user terminal 10 belonging to the in-company system 5. It is determined whether each of the management conditions (1) to (5) or (1) to (5) and (a) to (g) is satisfied (step S41). When all the management conditions (1) to (5) or (1) to (5) and (a) to (g) have been determined for all the user terminals 10 that have received the environmental information, Ratio of user terminals 10 satisfying the conditions (1) to (5) or (1) to (5) and (a) to (g) (ratio to the total number of user terminals 10 in the in-company system 5) P1 to P5 Are respectively calculated (steps S42 to S46).

  Thereafter, the evaluation unit 23 calculates an evaluation value V, which increases as the number (ratio) of the user terminals 10 that do not satisfy the management condition having a high importance Mi (i = 1 to 5) increases. Calculate (step S47).

Evaluation value V = Σ (100−Pi) × Mi,
Here, Σ means the sum of (100−Pi) × Mi calculated when i is 1, 2, 3, 4, 5 respectively.

This evaluation value V satisfies all the management conditions (1) to (5) or (1) to (5) and (a) to (g) for all user terminals 10 belonging to the in-company system 5. In this case, since the ratios P1 to P5 are all 100%, the evaluation value V is 0. And management conditions (1) to (5) or (1) to (5) and (a)
As the number (ratio) of user terminals 10 not satisfying (g) increases, the evaluation increases as the number (ratio) of user terminals 10 not satisfying the management condition having a large importance Mi value increases. The value V increases.

That is, as the evaluation value V is smaller (closer to 0), the user terminal 10 that may have some adverse effect on the in-company system 5 (causes a security problem, is infected with a virus, or is a file exchange software) The ratio (number) of user terminals 10 that are highly likely to cause information leakage due to, etc. or user terminals 10 that have performed illegal copying is low, and the safety level and satisfaction of management conditions of the in-company system 5 Is high, that is, the security situation is good.

  Alternatively, as the evaluation value V is smaller (closer to 0), a user terminal 10 (a user who is more likely to cause information leakage due to transmission of an electronic file or the like) that may have some adverse effects in the in-company system 5. It is considered that the ratio (number) of the terminal 10) is low and the reliability of the in-company system 5 is high, that is, the security status is good.

  Therefore, in the third example of the security evaluation method, when the degree of safety of the in-company system 5 and the degree of satisfaction of the management condition (security status) are evaluated, for example, in five stages (evaluation levels 1 to 5), the evaluation value Evaluation level “5” is assigned when V is 0 to K1, evaluation level “4” is assigned when evaluation value V is K1 to K2 (> K1), and evaluation value V is K2 to K3 (> K2). Evaluation level “3” is assigned, evaluation level “2” is assigned when evaluation value V is K3 to K4 (> K3), and evaluation level “1” is assigned when evaluation value V is K4 to K5 (> K4). "Is assigned in advance. Based on such evaluation level setting, the evaluation means 23 determines an evaluation level corresponding to the evaluation value V calculated in step S47 for the in-company system 5 (step S48). Note that K5 which is the maximum value of the evaluation value V is the value of the evaluation value V when the ratios P1 to P5 are all 0%, that is, 100 × (M1 + M2 + M3 + M4 + M5).

  In the third example of the security evaluation method shown in FIG. 7, the case where the management conditions are items (1) to (5) or (1) to (5) and (a) to (g) has been described. The present invention is not limited thereto, and may be management conditions other than these items (1) to (5) or (1) to (5) and (a) to (g), Management conditions other than items (1) to (5) or (1) to (5) and (a) to (g) may be included.

  As described above, when the security evaluation result of the in-company system 5 is obtained in step S105 of FIG. 4 (the security evaluation method of FIGS. 5 to 7), the evaluation result notification unit 24 The determination result is displayed on terminals (not shown) of a plurality of user terminals 10 and managers (such as managers of the in-company system 5) and notified to each user and manager (step of FIG. 4). S106).

  In parallel with this notification, the evaluation result and the determination result are written to the IC tag in the user terminal 10 by the evaluation result notification unit 24 and the user terminal management control unit 29 via the IC tag writer described later. It is. The configuration and operation related to this IC tag will be described later.

  At this time, the notified evaluation result includes at least the five evaluation levels obtained in step S105 of FIG. 4. In addition to this evaluation level, more detailed information, for example, calculated ratios P, P1 ~ P5 and evaluation value V may be included, or more detailed information, for example, information indicating which user terminal 10 does not satisfy which management condition (management condition determination result) may be included. Good. Note that what kind of information is notified as the evaluation result may be determined in advance in the management server 20, or may be determined in accordance with an instruction from the administrator who has requested the security management.

And in the management server 20 of this embodiment, the electronic education about security (e) including the matter which concerns on the said management conditions (1)-(5) or (1)-(5) and (a)-(g) at least. Learning), that is, an electronic education agent file (first) in order to execute a plurality of user terminals 10 belonging to the in-company system 5 for an electronic education on security in general when using the in-company system 5. One electronic education agent file) is created by the first electronic education agent file creation / holding means 251 or read from the first electronic education agent file creation / holding means 251 (step S107 in FIG. 4).

  Note that the first electronic education agent file may correspond to each of the above-described five evaluation levels, or performs electronic education related to environmental information that is particularly problematic based on the detailed information of the evaluation results. It may be a thing. If an agent file for executing the corresponding electronic education is held in the first electronic education agent file creation / holding means 251, the agent file is read out and held as the first electronic education agent file. If not, it is created by the first electronic education agent file creation / holding means 251.

  In this way, the agent file read from the first electronic education agent file creation / retention means 251 or the agent file created by the first electronic education agent file creation / retention means 251 is sent together with the security management request. A plurality of users in the in-company system 5 are attached to an e-mail by the first electronic education agent file transmission means 252 based on the received information (e-mail address, etc.) about each user terminal 10 at the destination. It is transmitted to each of the terminals 10 (step S108 in FIG. 4).

[2-1-2] Electronic educational operation based on security evaluation:
Here, according to the flowchart (steps S61 to S64) shown in FIG. 9, the electronic education operation of each user terminal 10 in the in-company system 5 of the present embodiment will be described. As shown in FIG. 9, each user terminal 10 monitors whether or not the first electronic education agent file has been received from the management server 20 (step S61). (YES route of step S61) When the user performs a predetermined operation (for example, a double click operation with a mouse) on the file, the first electronic education agent file is stored on the user terminal 10. It is executed by the processing unit 110 (step S62). Thereby, electronic education about security in general is executed for the user of the user terminal 10 for the user of the user terminal 10 (step S63). In the present embodiment, the electronic education result (for example, each user) Information regarding whether or not the electronic education has been completed at the terminal 10 is transmitted / notified to the management server 20 through the LAN 6, the proxy server 7 and the external communication network 30 (step S64).

  The management server 20 receives the electronic education result from each user terminal 10 belonging to the in-company system 5 (step S109 in FIG. 4), and the electronic education result is sent to the in-company system 5 via the management server 20. The administrator or the user of each user terminal 10 is notified (step S110 in FIG. 4). The electronic education result may be notified directly from each user terminal 10 to the administrator of the in-company system 5 or the like.

  On the other hand, when the periodic evaluation timing for the in-company system 5 that has completed the processing of steps S102 to S110 of FIG. 4 (system evaluation / notification processing and electronic security processing for security in general) as described above (step S101 of FIG. 4). From the NO route of step S111), the environment information collection agent file transmission means 21 collects the environment information based on the information (email address etc.) regarding each user terminal 10 of the transmission destination sent at the time of the new security management request. The agent file is transmitted to each of the plurality of user terminals 10 in the in-company system 5 by attaching it to an electronic mail (step S112 in FIG. 4). At this time, the environment information collection operation executed by each user terminal 10 that has received the environment information collection agent file is the same as the procedure described above with reference to FIG.

  If the evaluation level is low in the security evaluation (step S105 in FIG. 4), the time interval set as the regular evaluation timing (step S111 in FIG. 4) is set short, and the electronic education is executed again (FIG. 4). Step S118) or the second electronic education is preferably executed (Step S123 in FIG. 4). In this case, it is desirable to set the periodic evaluation timing to be shorter according to the level as the evaluation level is worse.

  The management server 20 receives environment information from each user terminal 10 belonging to the in-company system 5 (step S113 in FIG. 4), and receives environment information from all user terminals 10 belonging to the in-company system 5. (YES route in step S114 in FIG. 4), the security evaluation by the evaluation means 23 is executed (step S115 in FIG. 4).

  In step S114 of FIG. 4, security evaluation is performed when environment information is received from all user terminals 10 belonging to the in-company system 5. However, all user terminals are maintained even after a predetermined time has elapsed. When the environmental information from 10 cannot be received, security evaluation by the evaluation means 23 may be performed based on the environmental information received at the time when the predetermined time has elapsed.

  Further, in step S114 of FIG. 4, it is not determined whether the environment information has been received from all the user terminals 10 as described above, but a predetermined number or more of the user terminals 10 belonging to the in-company system 5 Alternatively, it is determined whether or not the environment information has been received from a predetermined percentage or more of the user terminals 10, and when the environment information is received from the predetermined number or more of the user terminals 10 or more, based on the received environment information Thus, the security evaluation process by the evaluation unit 23 (step S115 in FIG. 4) and the determination process by the determination unit 26 (step S120 in FIG. 4) may be performed.

  In step S115 of FIG. 4, when the security evaluation result of the in-company system 5 is obtained by the security evaluation method described above with reference to FIGS. It is displayed on a terminal (not shown) of the user terminal 10 or an administrator (such as an administrator of the in-company system 5) and is notified to each user or administrator (step S116 in FIG. 4).

  In parallel with this notification, the evaluation result and the determination result are written to the IC tag in the user terminal 10 by the evaluation result notification unit 24 and the user terminal management control unit 29 via the IC tag writer described later. It is. The configuration and operation related to this IC tag will be described later.

  Whether or not the management server 20 needs to perform common electronic education for all of the plurality of user terminals 10 belonging to the in-company system 5 based on the security evaluation result in step S115 of FIG. Is determined (step S117 in FIG. 4). For example, when all of the plurality of user terminals 10 belonging to the in-company system 5 satisfy the above management conditions, or when the current security evaluation result for the in-company system 5 is not different from the previous time, or better than the previous time. If it is, it is determined that electronic education is not necessary (NO route of step S117 in FIG. 4), and the process is terminated (return to step S101 in FIG. 4).

On the other hand, if this is not the case, that is, if the current security evaluation result for the in-company system 5 is worse than the previous time, it is determined that electronic education is necessary (YES route of step S117 in FIG. 4). ), An electronic education about security in general as described above, or an electronic education (e-learning) according to the security evaluation result obtained in step S115. In the present embodiment, it is assumed that the latter electronic education, that is, the electronic education corresponding to the security evaluation result obtained in step S115 is performed.

  At this time, in the management server 20 of the present embodiment, in accordance with the security evaluation result obtained in step S115, electronic education (e-learning) corresponding to the security evaluation result is given to a plurality of user terminals 10 belonging to the in-company system 5. The electronic education agent file is created by the first electronic education agent file creation / holding means 251 or read from the first electronic education agent file creation / holding means 251 (see FIG. Step S118 in FIG.

  Here, the electronic education agent file corresponding to the security evaluation result may correspond to each of the above-described five evaluation levels, or may be particularly problematic environmental information based on the detailed information of the evaluation result. Such electronic education may be performed. If the agent file for executing the corresponding electronic education is held in the first electronic education agent file creation / holding means 251, the agent file must be held while being read as the electronic education agent file. For example, the first electronic education agent file creation / holding means 251 creates the file.

  In this way, the agent file read from the first electronic education agent file creation / retention means 251 or the agent file created by the first electronic education agent file creation / retention means 251 is stored at the time of a new security management request. Based on the information (email address etc.) relating to each user terminal 10 that has already been sent, the first electronic education agent file transmission means 252 attaches it to an e-mail, etc. Is transmitted to each of the user terminals 10 (step S119 in FIG. 4).

  At this time, the electronic education operation executed by each user terminal 10 that has received the electronic education agent file is the same as the procedure described above with reference to FIG. Thereafter, the management server 20 receives the electronic education result from each user terminal 10 belonging to the in-company system 5 (step S109 in FIG. 4), and the electronic education result is received in the company via the management server 20. The administrator of the system 5 and the user of each user terminal 10 are notified (step S110 in FIG. 4).

  In this embodiment, in step S117, it is determined that electronic education is necessary when the current security evaluation result for the in-company system 5 is worse than the previous time. This is the case where all of the plurality of user terminals 10 belonging to the above-mentioned management conditions are satisfied, the case where the current security evaluation result for the in-company system 5 is not different from the previous time, or the case where it is better than the previous time. However, in order to confirm and re-recognize security, electronic education for each user terminal 10 (electronic education for security in general and electronic education according to evaluation results) may be performed.

  When the management server 20 receives environment information from all the user terminals 10 belonging to the in-company system 5 (YES route in step S114 in FIG. 4), the management server 20 performs the following in parallel with steps S115 to S119 described above. Steps S120 to S124 are executed.

  That is, first, based on the environmental information in each user terminal 10 received in step S113 by the judging means 26, each user terminal 10 has at least the management conditions (1) to (5) or (1) to (5). ) And (a) to (g) are determined (whether or not a management condition is violated) (step S120 in FIG. 4).

  Then, the management server 20 writes the determination result of the determination means 26 (whether or not there is a management condition determination violation) to the IC tag 10e of the user terminal 10 via the IC tag writer 40 (step S120 in FIG. 4).

  The management server 20 may write the determination result to the IC tag 10 e from the CPU 10 a of the user terminal 10 via the network 30 in addition to the IC tag writer 40.

  It should be noted that at this stage, whether or not there is a management condition violation is written to the IC tag 10e not only when there is a management condition violation but also when there is no management condition violation. As a result, when the user terminal 10 that has already violated the management condition is resolved by the subsequent periodic determination, the fact that the violation has been resolved is written in the IC tag 10e.

  Further, when writing to the IC tag 10e is performed via the IC tag writer 40, there is an advantage that it can be performed even if the user terminal 10 is not in an operating state. Further, when writing to the IC tag 10e via the CPU 10a, there is an advantage that if the user terminal 10 is in an operating state, it can be performed even if the IC tag writer 40 does not exist nearby.

  If there is no management condition violation in the user terminal 10 (NO route in step S121 in FIG. 4), the process is terminated (return to step S101 in FIG. 4). On the other hand, if there is a violation of the management condition (YES route in step S121 in FIG. 4), the warning means 27 gives a warning indicating that the management condition has been violated, such as the user terminal 10 of the violator or its administrator. The message is transmitted to the terminal and displayed, and a warning is given to the violator and the manager (such as the manager of the in-company system 5). The warning is given by a pop-up display or a warning sound on the terminal display unit.

  Then, in the management server 20 of the present embodiment, in order to cause the violator's user terminal 10 to execute electronic education (e-learning) on matters relating to violation management conditions, the electronic education agent file (first 2nd electronic education agent file) is created by the second electronic education agent file creation / holding means 281 or read from the second electronic education agent file creation / holding means 281 (step S123 in FIG. 4).

  If the agent file for executing the corresponding electronic education is held in the second electronic education agent file creation / holding means 281, the agent file is read out as the second electronic education agent file and held. If not, it is created by the second electronic education agent file creation / holding means 281.

  In this way, the agent file read from the second electronic education agent file creation / retention means 281 or the agent file created by the second electronic education agent file creation / retention means 281 is already at the time of the security management request. From the sent information (e-mail address, etc.) relating to each of the plurality of user terminals 10 belonging to the in-company system 5, the e-mail address of the violator's user terminal 10 is searched and based on the e-mail address. Then, the second electronic education agent file transmission means 282 transmits it to the user terminal 10 of the management condition unsatisfied person or the management condition violation person by attaching it to an e-mail (step S124 in FIG. 4).

  At this time, the electronic education operation (detailed electronic education regarding the matter related to the violation management condition) executed on the user terminal 10 of the violator who has received the second electronic education agent file has been described above with reference to FIG. Since it is the same as the procedure, its description is omitted.

[2-2] User terminal management:
Next, the user terminal management operation (step S1002 in FIG. 2) will be described below with reference to the drawings.

  In this embodiment, in security management (step S1001 in FIG. 2), electronic education is given when the security evaluation result is not good. However, it is not good because a violation of the management condition is found as the security evaluation result. In some cases, it is desirable to perform user terminal management operations in parallel with electronic education. That is, when the security evaluation result is not desirable, there is a possibility that personal information or confidential information may be leaked from the user terminal 10, so it is necessary to prevent information leak by promptly managing user terminals along with electronic education. There is.

  That is, the management server 20 of the present embodiment causes the violator's user terminal 10 to execute electronic education (e-learning) on matters related to the violation management condition, and the user terminal control agent file is used It is created by the user terminal control agent file creation / holding means 291 or read from the user terminal control agent file creation / holding means 291.

  If the agent file for executing the position information / determination result transmission / display control in the user terminal 10 is held in the user terminal control agent file creation / holding means 291, the agent file is stored in the user terminal. If it is read as a control agent file but not held, it is created by the user terminal control agent file creation / holding means 291.

  In this way, the agent file read from the user terminal control agent file creation / retention means 291 or the agent file created by the user terminal control agent file creation / retention means 291 has already been received at the time of security management request. From the sent information (e-mail address, etc.) relating to each of the plurality of user terminals 10 belonging to the in-company system 5, the e-mail address of the violator's user terminal 10 is searched and based on the e-mail address. Then, the user terminal control agent file transmission means 292 sends it to the user terminal 10 of the unsatisfied management condition violator or the management condition violator by attaching it to an e-mail. The second electronic education agent file and the user terminal control agent file described above are sent to the same user terminal 10, but may be at the same timing or at different timings.

  In this embodiment, when it is found that the management condition is not satisfied in the security management operation, the location information / determination for the user terminal management described below together with the first electronic education or the second electronic education is described. It is desirable to execute the result transmission / display control.

[2-2-1] Detailed configuration of user terminal:
FIG. 10A is a block diagram showing the overall functional configuration of the management system as the first embodiment of the present invention. The management system 1 shown in FIG. 10A includes a plurality of user terminals (personal information management). Information processing device with function; terminal device such as a personal computer) 10 and these user terminals 10 are connected to each other via a network (for example, a LAN (Local Area Network)) 30 so that they can communicate with each other. And a management server 20 for managing personal information files.

Further, an IC tag writer 40 that is connected to the network 30 and writes to the IC tag is provided in the vicinity of the user terminal 10. Further, an IC tag reader 50 connected to the network 30 and an alarm device 60 connected to the network 30 are provided in the vicinity of the gate 100 provided at the entrance / exit of the installation space 2 where the user terminal 10 is installed. Yes. The alarm device 60 may be built in the IC tag reader 50.

  In addition, the IC tag reader 50 has a plurality of positions inside and outside the installation space 2 where the user terminal 10 is installed, for example, a passageway, other rooms (not only in the same building, but also the start points and sales offices of various places. Including), stairs, elevator / escalator doorways, building doorways, site doorways, and the like.

  Further, in the present embodiment, the installation space 2 of the user terminal 10 is a place where the user terminal 10 having the personal information file should be present, and is a specific room, a specific floor, a specific building. It means either the entire site or the site of a specific factory or laboratory.

  FIG. 10B is a block diagram showing a functional configuration of each user terminal 10 of the present embodiment. The user terminal 10 shown in FIG. 10B is a CPU (arithmetic processing unit) that executes various processes. 10a and a storage unit 10b capable of holding a data aggregate (file) such as personal information, a quarantine table 10c provided from the management server 20, and a data aggregate (data file) retained in the storage unit 10b ) P mark table 10d holding a P mark (privacy level mark; a level indicating the high possibility of being a personal information file, and a level determined by a determination value described later), and individual user terminals 10 IC tag 10e for managing or identifying information, position information acquisition means 10f for acquiring position information of each user terminal via GPS or a network, and built-in power generation A solar power generation unit 10h that is a kind of device, a secondary battery 10g that can be charged via at least one of a power supply unit and a solar power generation unit 10h, an operation unit 17 such as a key input unit and a pointing device, and characters And a display unit 18 for displaying images and a power supply unit 19 for supplying power to each unit of the user terminal 10.

  The secondary battery 10g is not limited to various rechargeable batteries such as a lithium battery, a nickel cadmium battery, and a nickel metal hydride battery, but may be a large capacity capacitor. In addition to the solar power generation unit 10h, various power generation devices that generate power using vibration, rotational force, magnetic field, temperature difference, fuel, and the like as sources can be used as the built-in power generation device.

  In charging the secondary battery 10g, various known charge control circuits (not shown) can be used. The charge control circuit can be reduced in size and incorporated in the secondary battery 10g.

  In addition, when the user terminal 10 is in an operating state, power is supplied from the power supply unit 19 to each unit. At this time, the secondary battery 10g is also charged from the power supply unit 19. Further, when the user terminal 10 is not in an operating state, the power generated by the solar power generation unit 10h is charged by being supplied to the secondary battery 10g. Then, using the charged secondary battery 10g as a power source, when the user terminal 10 is not in an operating state, the position information acquisition unit 10f is operated to acquire the position information of the user terminal 10.

  Here, the storage unit 10b is a hard disk built in the user terminal 10 or a storage device connected to or externally attached to the user terminal 10, such as a flexible disk, CD-ROM, CD-R, CD-RW, DVD. In addition to a magnetic disk, an optical disk, and a magneto-optical disk, the storage device uses a recording medium such as an IC card, a ROM cartridge, and a magnetic tape.

Further, the quarantine table 10c and the P mark table 10d are held in a RAM (Random Access Memory), a hard disk or the like constituting the user terminal 10.
The CPU 10a functions as a personal information search means 11, a CPU usage rate monitoring means 12, an input / output monitoring means 13, an activation control means 14, an access monitoring means 15 and a transmission / reception means 16, and these functions are performed by the CPU 10a. As will be described later, this is realized by executing a personal information retrieval program installed from the management server 20.

  The personal information search means 11 operates by executing a personal information search program installed from the management server 20, and is a text extraction engine that converts a data file (target file) stored in the storage unit 10b to a text file. And a search engine that specifies and searches a personal information file from data in the storage unit 10b using the quarantine table 10c. That is, the personal information search unit 11 searches for various files (data aggregates) existing in the storage unit 10b of the user terminal 10 in accordance with the condition (quarantine table 10c) instructed from the management server 20, and the target file ( A file determined to be a personal information file) is written to a log (local cache database). The P mark determined based on the search result (determination value) obtained by the personal information search means 11 is registered in the P mark table 10d. Details of the function of the personal information search means 11 will be described later.

  The CPU usage rate monitoring unit 12 monitors the usage rate of the CPU 10a that executes various processes in the user terminal 10, and the input / output monitoring unit 13 is a data input / output operation (I / O) in the storage unit 10b. Operation).

  The activation control unit 14 operates by executing a personal information search program installed from the management server 20, and when the usage rate of the CPU 10a monitored by the CPU usage rate monitoring unit 12 is equal to or less than a predetermined threshold value. While the personal information search unit 11 is activated, when the usage rate exceeds a predetermined threshold, the operation of the personal information search unit 11 is stopped, and when the input / output monitoring unit 13 detects the occurrence of the input / output operation. The personal information search means 11 is started. In other words, the activation control unit 14 basically activates the personal information search unit 11 with the lowest threshold and puts the personal information search unit 11 in an idle state (search hold) with the highest usage rate. 11 is operated like a screen saver.

  The access monitoring unit 15 monitors the data file (data file to which the P mark is assigned) determined to be a personal information file by the personal information search unit 11 and accesses (eg, rename, copy, delete) the data file. , Data change due to movement or the like) is written as log information and transmitted to the management server 20 by the transmission / reception means 16.

  The transmission / reception means 16 transmits / receives various information to / from the management server 20 via the network 30, and transmits the result of self-search by the personal information search means 11 and the acquired position information to the personal information search means. It functions as a means. When the transmission / reception unit 16 functions as the transmission unit, a difference between the search result (link destination information of personal information file, determination value, etc.) and the search result transmitted last time is obtained, and the difference is transmitted to the management server 20. In addition, information to be transmitted is encrypted.

  An example of the external configuration of the user terminal 10 is shown in FIG. Here, the user terminal 10 has a general personal computer configuration as shown in FIG.

In a non-use state, as shown in FIG. 11B, a solar power generation unit 10h is arranged in a part of the housing, and is configured to be able to generate power with room light or the like. Further, a GPS receiver is arranged as a part of the casing as the position information acquisition means 10f. It is assumed that the IC tag 10e is arranged at a position that cannot be seen in this figure.

  Here, the solar power generation unit 10h may be arranged at another position. Also, other types of different built-in power generation devices may be used. The GPS receiver as the position information acquisition unit 10f may be either an integral type with the housing of the user terminal 10 or a pluggable type.

[2-2-2] User terminal management operation:
The user terminal management operation will be described below with reference to FIG.
As already described, the management server 20 determines the evaluation of the user terminal 10 and the management conditions (steps S105 and S115 in FIG. 4 and step S2001 in FIG. 12). Then, the management server 20 writes the evaluation result and the management condition judgment result to the IC tag 10e of the user terminal 10 via the IC tag writer 40 (steps S106, S116, S120 in FIG. 4 and steps in FIG. 12). S2002).

  The management server 20 may write the determination result to the IC tag 10 e from the CPU 10 a of the user terminal 10 via the network 30 in addition to the IC tag writer 40.

  The management server 20 may write not only the evaluation result and the management condition determination result, but also whether the electronic education is completed and whether the management condition violation is resolved or not in the IC tag 10e.

  In addition, the management server 20 reads the result of reading the IC tag 10e by the IC tag reader 50 or when each user terminal 10 accesses the management server 20 so that each user terminal 10 stays in the installation space 2. The global IP address is monitored.

  That is, the management server 20 monitors the reading result of the IC tag reader 50 as to whether any of the user terminals 10 passes the IC tag reader 50 near the gate 100 or other IC tag readers (not shown). (Step S2003 in FIG. 12).

  Then, the management server 20 monitors the reading result of the IC tag reader 50, and when there is a user terminal 10 that has passed through any of the IC tag readers 50 (YES in step S2003 in FIG. 12), the IC A flag indicating whether a position transmission request or a status display request is to be sent to the user terminal 10 that has passed the tag reader 50 is read to check whether the value is “1” (step S2004 in FIG. 12).

In this case, all the user terminals 10 may be set to be requested, or the evaluation or management condition determination result may be set to be requested for the user terminals 10 in a bad state with a predetermined value or less. .
Alternatively, the management server 20 that receives the notification from the IC tag reader 50 via the network 30 may check the evaluation result and the management condition determination result of the user terminal 10 by referring to the database 20b. .

  If none of the user terminals 10 passes the vicinity of the IC tag reader 50 (NO in step S2003 in FIG. 12), the management server 20 continues to monitor the reading result of the IC tag reader 50.

When any user terminal 10 passes the IC tag reader 50 (YES in step S2003 in FIG. 12), the management server 20 transmits a position or displays the position to the user terminal 10 that has passed the IC tag reader 50. If there is a request for (YES in step S2004 in FIG. 12), a predetermined operation is ordered according to the set request content (step S2005 in FIG. 12).

  When transmission of the management condition determination result is requested, the user terminal 10 transmits the written management condition determination result information from the IC tag 10e to the IC tag reader 50 (step S2006 in FIG. 12). ).

  When the management condition determination result transmission and the position information transmission are requested, the user terminal 10 has acquired the management condition determination result and the position information acquisition unit 10f written in the IC tag 10e. The position information is transmitted from the IC tag 10e to the IC tag reader 50 (step S2007 in FIG. 12).

  When the management condition determination result display is requested, the user terminal 10 displays the management condition determination result written in the IC tag 10e on the status display unit 10k under the control of the control unit 10j (FIG. 12 in step S2008). In this case, as shown in FIG. 13, a control unit 10j and a state display unit 10k that operate independently of the operation of the user terminal 10 are provided in the vicinity of the IC tag 10e.

  And as shown in FIG. 14, the state display part 10k is arrange | positioned on the housing | casing surface etc. independently of the display part 18 (refer FIG. 14 (a)) of the user terminal 10 (FIG.14 (b)). (C)). Thereby, even when the user terminal 10 is not in the operating state and is taken out, it can be easily confirmed whether the user terminal 10 does not satisfy the management condition. FIG. 14B shows a state where the management condition is not satisfied, and the level may be displayed as necessary. FIG. 14C shows a display when there is a violation of management conditions, and it is desirable to make the display stand out by blinking or the like.

  In the present embodiment, the use of the state display unit 10k having the property of holding display contents and continuing display (display holding characteristics or memory properties) is advantageous in terms of low power consumption, This is desirable for applications that display prohibition.

  In order to have such display holding characteristics, the state display portion 10k is configured by an element using a liquid crystal composition (cholesteric liquid crystal or chiral nematic liquid crystal) in which a cholesteric phase is formed.

  This cholesteric liquid crystal has bistability, and is either a planar state that reflects light of a characteristic wavelength by adjusting the electric field strength applied to the liquid crystal, a focal conic state that transmits light, or an intermediate between them. The state can be taken. In this intermediate state, the ratio of reflected light and transmitted light can be adjusted.

FIG. 15 is a characteristic diagram showing voltage-reflectance characteristics of the state display unit 10k using cholesteric liquid crystal. When no voltage is applied and when the voltage is applied up to voltage V1, the cholesteric liquid crystal exists in a planar state or a focal conic state, and the characteristics do not change. When the voltages V1 to V2 are applied, it is in an intermediate state, and the liquid crystal display to be displayed is adjusted. Then, after applying a voltage higher than the voltage V4, the voltage is suddenly reduced to less than V1, thereby fixing the planar state. By laminating an R layer that reflects R, a G layer that reflects G, and a B layer that reflects B as such a cholesteric liquid crystal, a full-color image display having display holding characteristics can be realized.

That is, a voltage is required when the display screen is rewritten, and a color display state can be maintained without requiring any voltage during a period other than the rewriting. In this case, when the display screen is rewritten, the above-described function as a drive circuit included in the control unit 10j is activated. Note that as such electronic paper, a driving circuit equivalent to a driving IC for a conventional liquid crystal display can be used, and it is only necessary to output a voltage only when determining or rewriting display contents. Electric power can be realized.

Here, a specific example in which the above state display unit 10k is formed integrally with the display unit 18 of the user terminal 10 will be described with reference to the drawings.
That is, when the status display unit 10k is disposed between the liquid crystal display unit of the display unit 18 of the user terminal 10 and the backlight, the light guide plate and the reflector of the backlight of the display unit of the user terminal 10 The example arrange | positioned between is shown.

FIG. 16 shows a cross-sectional configuration when the display unit 18 of the user terminal 10 is a liquid crystal display panel.
Here, the display unit 18 includes, as components included in a general liquid crystal display panel, a polarizing plate 18a, a glass substrate 18b, a color filter layer 18c, an electrode layer 18d, a liquid crystal layer 18e, an electrode layer 18f, a glass substrate 18g, A polarizing plate 18h, a light guide plate 18i, a reflecting plate 18j, and a back plate 18k are provided. It should be noted that the components and the arrangement order can be changed as appropriate.

  Further, illumination means such as a fluorescent tube and an LED (not shown) are provided on the side surface of the light guide plate 18i. In addition, it is also possible to replace the light guide plate 18i and the illumination means with a light emitting panel of an EL panel. That is, the light guide plate 18i and the light emitting panel act on the display unit 18 as a so-called backlight.

  And in this embodiment, it has the state display part 10k between the light-guide plate 18i and the polarizing plate 18h as a backlight as shown to Fig.16 (a). In this case, any position of the light guide plate 18i and the liquid crystal layer 18e may be used.

Or in this embodiment, it has the state display part 10k between the light-guide plate 18i and the reflecting plate 18j like FIG.16 (b).
And the specific example which performed the display on the status display part 10k on the user terminal 10 is shown in FIG. FIG. 17A is a specific example in which the state display unit 10 k is arranged in a stacked state on the main display of the user terminal 10. FIG. 17B is a specific example in which the state display unit 10k is arranged in a stacked state on the sub-display of the user terminal 10.

  As shown in FIG. 17A, instead of arranging the status display unit 10k on the entire main display of the user terminal 10, the status display unit 10k may be arranged on a part of the main display.

  In addition to the evaluation result and management condition determination result, the status display unit 10k displays a message regarding the security level, take-out, access authority, presence / absence of a predetermined information file, and the like. It may be displayed in different colors or flashing depending on the access authority and security level, blue if it is allowed to take out, red if it is prohibited to take out, etc. Or a blinking display.

Furthermore, a simple and clear graphic display such as “◯” is displayed when taking out is permitted and “X” is displayed when taking out is prohibited.
Further, the status display unit 10k has been developed recently as a color electronic paper or the like configured on a film-like substrate, and is a film-like display means. Are being developed with low power consumption. Therefore, each part including the status display part 10k has a low power consumption circuit configuration, thereby rectifying the high frequency power received by the antenna part of the IC tag 10e, thereby covering the power supply power of each part. Is also possible. Also in this case, the state display unit 10k can be operated regardless of the power-on state of the user terminal 10.

  In the present embodiment, as the state display unit 10k, it is possible to use a display that retains display contents and has a property of continuing to display (display retention characteristic or memory property). It is desirable for the purpose of displaying access authority, personal information file ownership, take-out permission (prohibition), etc.

  Then, even if the user terminal 10 is not in the operating state, the status display unit 10k is controlled by the control unit 10j in response to a read request from the IC tag reader or as information recorded in the IC tag 10e at all times. To display the management condition judgment result.

  Then, as shown in FIG. 16 above, the state display unit 10k is arranged in a stacked state in front of or behind the light guide plate as a backlight for performing backlighting of the liquid crystal display panel, so that it is dedicated for the state display unit 10k. Is not necessary, and the state of the user terminal 10 (the management condition determination result) in the user terminal 10 can be managed by observing the display unit 18 of the client. And inadvertent leakage or leakage of confidential information or unauthorized use can be reliably prevented.

  Further, since the status display unit 10k is arranged in a stacked state on the display unit 18 of the user terminal 10, when the management condition is not satisfied, the display (computer of the computer) of the user terminal 10 in the use state is performed. The display of the state display unit 10k overlaps the display), and the normal user terminal 10 is prevented from being used. For this reason, the use of the client in a state where personal information or confidential information from the client is likely to be inadvertently leaked or leaked or illegally used is suppressed.

  Further, in this case, not only the display of the state display unit 10k overlaps the display unit 18, but if the state display unit 10k is in a reflective state, the backlight of the display unit 18 is blocked and the screen becomes dark.

  That is, in the state where the display is performed on the state display unit 10k, the user terminal 10 is continuously used by the dual action of the message part of the state display unit 10k and the backlight blocking effect by the state display unit 10k. Becomes difficult. Therefore, the use of the client in a state in which personal information or confidential information from the client is likely to be inadvertently leaked or leaked or illegally used is effectively suppressed.

  In addition, when the state display unit 10k is arranged on the back side of the liquid crystal layer 18e, when the state display unit 10k does not display anything, the original display of the user terminal 10 is not affected and the transparency is not affected. And the brightness does not decrease, and the user does not feel uncomfortable.

  Moreover, since the state display part 10k is arrange | positioned on the display part 18 of the user terminal 10 in the lamination | stacking state instead of sticking a simple tag, acts, such as an unauthorized re-payment, can be prevented.

Further, when displaying on the external display, the display processing unit 18G performs display in which display data from the control unit 10j of the status display unit 10k and display data from the CPU 10a are superimposed. Therefore, even when the user uses an external display, if the user is illegally taken out, the above-described various displays are overlaid, and the personal information and confidential information from the user terminal 10 are lost. The use of the user terminal 10 in a state in which a ready outflow / leakage or unauthorized use is likely to occur is suppressed.

  Further, in the above case, it is also possible to issue alarms having different stepwise levels according to the rank of the P mark. Further, a plurality of gates 100, IC tag readers 50, and alarm devices 60 in the installation space 2 may be provided such as the entrance / exit of the installation floor 3 and the entrance / exit of the installation building 4, so that different levels of alarms can be issued. .

  In addition, by providing a plurality of stages of IC tag readers 50 in this way, the IC tag 10e transmits the position information of the user terminal 10 in response to a read request from the IC tag reader 50, so that user terminals at a plurality of points are obtained. It is also possible to perform 10 location tracking management.

  Further, in tracking of the user terminal 10 based on the position information described above, tracking may be performed at different levels depending on the rank of the P mark. For example, for the user terminal 10 with a high rank, it is also desirable to obtain more detailed position information or obtain position information at a finer timing. In this case, it is desirable to provide a plurality of IC tag readers 50 at each position in the installation space, not only near the gate.

  The contents of the position information / determination result transmission / display control may be the same for each of the plurality of user terminals, or may be different for each user terminal. Moreover, when it differs for every user terminal, you may change a restriction | limiting state according to the content, level, etc. of violation.

  In the above description, when there is a violation of management conditions, when electronic education is not completed, or when the judgment result of the management conditions is lower than a certain level, transmission / display of location information / judgment results Although the control is executed, the present invention is not limited to this.

  For example, it is determined whether or not there is a management condition violation after the execution of the first electronic education (first determination). If there is a violation of the management condition, the second electronic education is executed. If a management condition violation is found by this second determination, the position information / determination result transmission / display control is executed even after the second electronic education execution is completed. May be.

  In this case, it is desirable to execute both the position information / determination result transmission / display control based on the first determination and the position information / determination result transmission / display control based on the second determination with different restriction levels. That is, light position information / determination result transmission / display control is executed by the first determination, and then strict position information / determination result transmission / display control is executed by the second determination.

  In addition, after the execution of the first electronic education, it is judged whether or not there is a management condition violation (first judgment). If there is a violation of the management condition, the second electronic education is executed. Judgment (second judgment), low position information / judgment result transmission / display control by first judgment, medium position information / judgment result transmission / display control by second electronic education incomplete, after second electronic education Three-stage position information / judgment result transmission / display control such as strict position information / judgment result transmission / display control by the second judgment may be used.

  In addition, after the execution of the first electronic education, it is judged whether or not there is a management condition violation (first judgment). If there is a violation of the management condition, the second electronic education is executed. If the management condition violation is found by this determination (second determination), the position information / determination result transmission / display control may be executed after the second electronic education execution is completed. In this case, the position information / determination result transmission / display control is not executed depending on the first determination, and the position information / determination result transmission / display control is executed based on the second determination.

  In addition, after the execution of the first electronic education, it is judged whether or not there is a management condition violation (first judgment). If there is a violation of the management condition, the second electronic education is executed. The determination (second determination) may be performed and the position information / determination result transmission / display control may be executed only by the first determination regardless of the second determination. In this case, it is desirable to cancel the position information / determination result transmission / display control if cancellation of the violation is permitted in the second determination.

  In addition, after execution of the first electronic education, it is judged whether or not there is a management condition violation (first decision). If there is a violation of the management condition, the second electronic education is executed. Transmission / display control may be executed. After that, the first judgment is periodically repeated. If there is a violation of the management condition, the second electronic education is executed, and the position information / determination result transmission / display control is executed in parallel with the second electronic education. That's fine. In this case, the second determination does not actually exist, but it is possible to perform processing and control equivalent to the second determination described above by periodically repeating the first determination.

  Further, it is possible to determine whether or not there is a management condition violation, execute electronic education if there is a management condition violation, and execute position information / determination result transmission / display control in parallel with this electronic education. After that, this determination is periodically repeated. If there is a violation of the management condition, the electronic education is executed, and the position information / determination result transmission / display control is executed in parallel with the electronic education. In this case, both judgment and electronic education are in one stage, but it can be an effective measure by repeating the hospital regularly.

[3] Effects of this embodiment:
Thus, according to the management system 1 as an embodiment of the present invention, each user terminal 10 has at least one management condition (for example, the above items (1) to (5) or (1) to (5)). After executing electronic education about security including matters relating to (at least one of (a) to (g)) (for example, electronic education about overall security when using the system 5 of a company, etc.) The environmental information in the user terminal 10 is collected from each user terminal to the management server 20, and each user terminal 10 satisfies the management conditions based on the collected environmental information in the management server 20 (determination means 26). To the user of the user terminal 10 (management condition dissatisfied person or management condition violator) or the administrator who is judged by the warning means 27 that the management condition is not satisfied or is violated. WARNING together is issued, to the user terminal 10, detailed electronic education about matters relating to violations management condition is executed. In other words, if there is a violation of management conditions after e-education for security in general, the violation is likely to be intentional by the user, and a warning about the violation is given to the user and administrator, Electronic education about violations will be implemented for users who are violators.

  Accordingly, the warning raises the security awareness of the administrator, and the administrator can reliably grasp the system status and secure and maintain a safe environment in the system 5 such as a company. In addition, a warning is given to the user (violator), and electronic education for ensuring security for the user (violator) can be performed in accordance with the actual situation of each user terminal 10, and It is possible to raise the security awareness of the user (violator) and further contribute to securing and maintaining a safe environment in the system 5 of the company. In other words, since it is possible to conduct electronic education for violations that are likely to have been intentionally performed by users after electronic education on security in general, thorough user education (employee education) As a result, the system 5 contributes to securing and maintaining a safe environment.

In addition, environmental information in each of the plurality of user terminals 11 (for example, a system 5 such as a company)
Environment information in each of the plurality of user terminals 10 belonging to the user terminal 10 is collected from each user terminal 10 to the management server 20, and in the management server 20, based on the collected environment information in each user terminal 10, The evaluation level of the plurality of user terminals 10, that is, the security status of the system 5 in a company or the like is evaluated, and the evaluation result is notified to the user and the administrator.

  As a result, a service that evaluates the security status of the system 5 in a company, etc. can be provided to the company, etc., and even if no system administrator is present, the manager or administrator is indifferent to security measures. Even so, the security status of the system 5 and each terminal 10 can be grasped extremely accurately and easily, and the security awareness of the managers, managers, and users is increased, and a safe environment in the system 5 of the company is secured.・ Can be maintained. In particular, the service provided by the management server 20 in this way is effective for small and medium-sized businesses that are not as conscious of security as large companies. By using this service, The manager can grasp the security status of his / her system 5 and conduct electronic education very easily and thoroughly.

  At this time, in the management server 20, as shown in FIG. 5, at least one management condition (for example, the above items (1) to (5) or (1) to (5) and (a ) To (g) based on the ratio P of the user terminals 10 satisfying, or based on the important management conditions set as in the second example shown in FIG. 7, the ratios P1 to P5 of the user terminals 10 that satisfy the management conditions (1) to (5) or (1) to (5) and (a) to (g) and the management conditions (1 ) To (5) or (1) to (5) and (a) to (g) based on the importance levels M1 to M5, the degree of safety and management conditions for the plurality of user terminals 10 (in-house system 5). It is possible to evaluate the degree of satisfaction numerically.

  According to the first method shown in FIG. 5, for example, at least one of the management conditions of the items (1) to (5) or (1) to (5) and (a) to (g) is satisfied. If the ratio of user terminals is 100%, the highest evaluation is given, and a stepwise evaluation level corresponding to the ratio can be given to the system 5 to be evaluated. In other words, the higher the number of user terminals 10 that satisfy the management conditions (1) to (5) or (1) to (5) and (a) to (g), the higher the numerical value obtained and the higher the evaluation level. It is possible to give an evaluation to the in-company system 5 according to the level of safety.

In addition, as in the second method shown in FIG. 6, the management condition of item (4) “having no dangerous software installed on the user terminal” is important for ensuring the safety of the system. Therefore, if it is set as an important management condition, there is at least one user terminal 10 that does not satisfy the above item (4), that is, even one user terminal 10 that installs dangerous software. If so, regardless of the ratio of other items, a low evaluation level is given to the in-company system 5, so that the degree of safety of the in-company system 5 and the degree of satisfaction of the management conditions (security status, evaluation level) can be simplified. Can be reliably evaluated.

  Further, as in the third method shown in FIG. 7, the evaluation value V that increases as the number (ratio) of the user terminals 10 that do not satisfy the management condition having the high importance Mi (i = 1 to 5) increases. By determining the evaluation level, a low evaluation level can be given to the system 5 in which the user terminal 10 that does not satisfy the management condition with high importance exists, and the evaluation according to the high safety is performed in the company system 5 can be defeated.

In this case, it is possible to change the request for the user terminal 10 when passing through the gate according to the evaluation level.
For example,
Evaluation level 5: Allow passage through the gate without any restrictions
Evaluation level 4: Request for management condition judgment result,
Evaluation level 3: Management condition determination result and position information request Evaluation level 2: Management condition determination result and position information request, management condition determination result display request,
Evaluation level 1: Management condition determination result and position information request, detailed display request for management condition determination result, or display request accompanied by display holding characteristics,
Step-by-step control is possible.

  At this time, the environment information collection agent file is transmitted from the management server 20 to the plurality of user terminals 10, and the environment information collection agent file is executed in each user terminal 10, whereby the environment information in the user terminal 10 is managed by the management server. 20 can be collected. Therefore, the management server 20 creates an environment information collection agent file and transmits the environment information collection agent file to the plurality of user terminals 10 belonging to the in-company system 5 all at once. The environmental information in 10 can be collected very easily.

  Further, the first and second electronic education agent files and the electronic education agent file corresponding to the evaluation result are transmitted from the management server 20 to each user terminal 10, and these electronic education agent files are executed in each user terminal 10. Thus, in addition to electronic education about security in general and electronic education about violations, it is possible to cause the user of the user terminal 10 to execute electronic education according to the evaluation result. Therefore, the management server 20 simply transmits the first electronic education agent file and the electronic education agent file corresponding to the evaluation result to the plurality of user terminals 10 belonging to the evaluation target system 5 all at once via the network. In addition to being able to execute electronic education on security in general for a plurality of user terminals 10 and electronic education according to evaluation results, the second electronic education agent file is transmitted to the user terminal 10 of the violator. By simply doing, detailed electronic education on violations for violators can be carried out very easily. This makes it possible to thoroughly perform security user education (employee education) in the in-company system 5.

  In addition, based on the environmental information collected regularly, the evaluation level (degree of safety and satisfaction of management conditions) for a plurality of user terminals 10 (in-house system 5) is periodically evaluated, and the periodic By notifying the evaluation results to the users and managers of the plurality of user terminals 10, the users and managers can regularly grasp the security status of the in-company system 5. The system 5 will contribute to securing and maintaining a safe environment.

  Further, in the user terminal that is determined by the management server that the management condition is not satisfied, when the user terminal 10 passes through the gate, the management condition determination result, the request for position information, and the display request for the management condition determination result This effectively prevents the spread of information from the violator's terminal. In this case, there is no restriction on the user terminal that satisfies the management condition, so there is no problem with the use of the user terminal.

[4] Other:
[4-1] Others (1):
The present invention is not limited to the above-described embodiment, and various modifications can be made without departing from the spirit of the present invention.

  In the above example, the management condition judgment result is displayed on the status display unit when passing through the gate. However, when the management condition judgment result is low (bad), immediately after writing from the management server 20 to the IC tag 10e. The management condition judgment result may be displayed.

  For example, in the above-described embodiment, the case where the management target file is a personal information file has been described. However, the present invention is not limited to this, and a confidential information file including confidential information other than personal information is stored. It may be a managed file.

  In this case, the predetermined condition for determining the confidential information file is that a predetermined number or more of records (sensitive information elements) including the confidential information are held, and the confidential information element includes, for example, a new product before the announcement, It is a character string used in technology and management strategy before patent application. Such a confidential information file can also be searched by the personal information searching means 1100 in the same manner as the personal information file, and the same operational effects as those of the above-described embodiment can be obtained.

  In the above-described embodiment, the case where the function as the personal information exploration means 1100 is provided in the user terminal 10 has been described. However, this function is replaced with the user terminal 10 instead of the user terminal 10. You may provide in the user terminal management server (management server) 20 connected so that communication was possible.

  However, in this case, a file in the storage unit 1110b of the user terminal 10 is temporarily downloaded to the management server 20, and a search process is performed on the file by a function as the personal information search unit 1100 on the management server 20 side. It will be. Thereby, when a user requests non-resident of a program for realizing personal information exploration means 1100 for reasons such as memory capacity in user terminal 10 and compatibility with other programs, It is possible to cope with it, and convenience is enhanced.

  Furthermore, in the above-described embodiment, it is assumed that the management target file (personal information file) is stored in the storage unit 1110b of each user terminal 10, but the present invention is not limited to this. The management target file (personal information file, confidential information file, etc.) may be stored in a server other than the user terminal 10, the management server 20, another server, or a PC belonging to the management system 1.

  In such a case, the collection means (log collection means) 23 of the management server 20 collects and records the access log of each user terminal 10 for the management target file in the management system 1. The two personal information management means 208 manages the user terminal 10 based on the access log collected and recorded by the collection means 203.

  At this time, the second personal information management means 208 determines whether or not the user terminal 10 performs the search by the personal information search means 1100 based on the access log collected and recorded by the collection means 203. It may be determined every time, and the user terminal 10 determined to execute the search may execute the search by the personal information search means 1100. The condition for determining that the personal information search unit 1100 performs a search in the user terminal 10 is, for example, that the user terminal 10 accesses the management target file more than a predetermined number of times (for example, 10 times) based on the access log. Suppose that

Then, the second personal information management means 208 performs the search transmitted from the user terminal 10 in the same manner as in the above-described embodiments (see items (11) to (15) and (21) to (23)). And / or
Alternatively, the security level in the user terminal 10 is changed / set based on the access log for the management target file, and the position information / determination result transmission / display control of the user terminal 10 is changed according to the security level. Also good.

In each of the above embodiments, the necessary program may be resident in advance in each user terminal 10, may be sent from the server, may be resident, or is sent from the server and executed when necessary. The format is acceptable.

  Since the user terminal 10 that frequently accesses the management target file in the management system 1 can be regarded as a user terminal that is likely to cause an inadvertent outflow / leakage or unauthorized use of the management target file. As described above, when the second personal information management unit 208 finds the user terminal 10 that has accessed the management target file more than a predetermined number of times based on the access log, in the user terminal 10, The management target file (file containing personal information, confidential information, etc.) is searched immediately. As a result, the management target file in the user terminal with the high possibility can be surely put under the management of the management server, personal information or confidential information is inadvertently leaked or leaked, or personal information or confidential information is illegal. Use and the like can be prevented more reliably.

[4-2] Others (2):
The present invention is not limited to the above-described embodiment, and various modifications can be made without departing from the spirit of the present invention.

  For example, in the above-described embodiment, the management server 20 is provided outside the company, and the external management server 20 provides the company system 5 with a service (security management service) for performing security evaluation and electronic education of the company system 5. However, the present invention is not limited to this, and the function as the management server 20 described above is provided in the in-house management server or the like. In order to manage the in-company system 5 instead of as a service for the above, the above-described security evaluation and electronic education of the in-company system 5 may be performed.

  The above-described environment information collection agent file transmission means 21, environment information reception means 22, evaluation means 23, evaluation result notification means 24, first electronic education control means 25, determination means 26, warning means 27, and second electronic education control means 28 Functions (all or part of the functions of each means) are realized by a computer (including a CPU, an information processing device, and various terminals) executing a predetermined application program (management program / security management service providing program) Is done.

  The program is, for example, a computer such as a flexible disk, CD (CD-ROM, CD-R, CD-RW, etc.), DVD (DVD-ROM, DVD-RAM, DVD-R, DVD-RW, DVD + R, DVD + RW, etc.). It is provided in a form recorded on a readable recording medium. In this case, the computer reads the management program / security management service providing program from the recording medium, transfers it to the internal storage device or the external storage device, and uses it. Further, the program may be recorded in a storage device (recording medium) such as a magnetic disk, an optical disk, or a magneto-optical disk, and provided from the storage device to a computer via a communication line.

Here, the computer is a concept including hardware and an OS (operating system), and means hardware operating under the control of the OS. Further, when the OS is unnecessary and the hardware is operated by the application program alone, the hardware itself corresponds to the computer. The hardware includes at least a microprocessor such as a CPU and means for reading a program recorded on a recording medium. The application program as the management program / security management service providing program is stored in the computer as described above in the environment information collection agent file transmission means 21, environment information reception means 22, evaluation means 23, evaluation result notification means 24, first electronic Program codes for realizing the functions of the education control means 25, the determination means 26, the warning means 27, and the second electronic education control means 28 are included. Also, some of the functions may be realized by the OS instead of the application program.

  Furthermore, as a recording medium in the present embodiment, in addition to the flexible disk, CD, DVD, magnetic disk, optical disk, and magneto-optical disk described above, an IC card, ROM cartridge, magnetic tape, punch card, computer internal storage device (RAM) In addition, various computer-readable media such as an external storage device, a transmission such as a transmission in which a code such as a barcode is transmitted, and the like can also be used.

[5] Appendix A:
(Appendix A1)
Multiple user terminals,
A management server that is communicably connected to the plurality of user terminals and manages the plurality of user terminals;
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
The management server
A judging means for judging the management condition of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education on security in accordance with the management conditions,
Each of the plurality of user terminals
The management condition determination result is recorded, and configured to include an IC tag that transmits the management condition determination result in response to an external read request.
Management system characterized by that.

(Appendix A2)
Further, each of the plurality of user terminals is
It comprises a position information acquisition means that receives power supply and acquires position information independently of the operating state of the user terminal,
The IC tag records the management condition determination result and the position information, and transmits the management condition determination result and the position information in response to an external read request.
The management system according to appendix A1, characterized by

(Appendix A3)
Multiple user terminals,
A management server that is communicably connected to the plurality of user terminals and manages the plurality of user terminals;
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
The management server
A judging means for judging the management condition of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education on security in accordance with the management conditions,
Each of the plurality of user terminals
An IC tag on which the management condition judgment result is recorded;
A status display unit that displays information recorded on the IC tag in response to a read request from the outside.
Management system characterized by that.

(Appendix A4)
Multiple user terminals,
A management server that is communicably connected to the plurality of user terminals and manages the plurality of user terminals;
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
The management server
A judging means for judging the management condition of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education on security in accordance with the management conditions,
Each of the plurality of user terminals
It is configured with a state display unit that continues to display the management condition determination result by having a display holding characteristic.
Management system characterized by that.

(Appendix A5)
The status display unit is arranged at any position on the housing surface side separately from the display unit of the user terminal.
The information management system according to supplementary note A3 or supplementary note A4,

(Appendix A6)
The status display unit is disposed between a liquid crystal display unit and a backlight of the display unit of the user terminal.
The information management system according to supplementary note A3 or supplementary note A4,

(Appendix A7)
The state display unit is disposed between a light guide plate and a reflection plate of a backlight of the display unit of the user terminal.
The information management system according to supplementary note A3 or supplementary note A4,

(Appendix A8)
The information management system according to any one of Supplementary Notes A3 to A7, wherein the status display unit is configured to be able to display even when the user terminal is not in an operating state.

(Appendix A9)
The management server
Management means for recording the management condition determination result in an IC tag of a user terminal;
The electronic education control means includes first electronic education control means for executing electronic education for security in general, and second electronic education control means for executing detailed electronic education for matters relating to the management conditions,
The electronic education control means is:
Based on the environmental information in each user terminal collected by the environmental information collecting means after the electronic education by the first electronic education control means, whether or not each user terminal satisfies the management condition is determined by the determining means The second electronic education is executed for the user terminal that is determined and determined to violate the management conditions by the determination means,
The management means includes
For the user terminal that has been determined to have violated the management conditions by the determination means, the user terminal that has been determined that the violation of the management conditions has been resolved by the determination means. Stop the transmission or the display,
The information management system according to any one of supplementary notes A1 to A8, characterized in that:

(Appendix B1)
A management program connected to a plurality of user terminals so as to communicate with each other, and causing a computer to function as a management server for managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for recording the management condition determination result on an IC tag of a user terminal and reading the management condition determination result recorded on the IC tag;
A management program for causing the computer to function as

(Appendix B2)
Further, each of the plurality of user terminals is
It comprises a position information acquisition means that receives power supply and acquires position information independently of the operating state of the user terminal,
The IC tag records the management condition determination result and the position information, and transmits the management condition determination result and the position information in response to an external read request.
A management program as set forth in Appendix B1, characterized in that:

(Appendix B3)
A management program connected to a plurality of user terminals so as to communicate with each other, and causing a computer to function as a management server for managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for recording the management condition determination result on an IC tag of a user terminal, and displaying the management condition determination result recorded on the IC tag on a status display unit of the user terminal;
A management program for causing the computer to function as

(Appendix B4)
A management program connected to a plurality of user terminals so as to communicate with each other, and causing a computer to function as a management server for managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for displaying the management condition determination result in a display holding state on the state display unit of the user terminal;
A management program for causing the computer to function as

(Appendix B5)
The management program according to any one of Supplementary Note B3 to Supplementary Note B7, wherein the state display unit is configured to be able to display even when the user terminal is not in an operating state.

(Appendix B6)
The management server
Management means for recording the management condition determination result in an IC tag of a user terminal;
The electronic education control means includes first electronic education control means for executing electronic education for security in general, and second electronic education control means for executing detailed electronic education for matters relating to the management conditions,
The electronic education control means is:
Based on the environmental information in each user terminal collected by the environmental information collecting means after the electronic education by the first electronic education control means, whether or not each user terminal satisfies the management condition is determined by the determining means The second electronic education is executed for the user terminal that is determined and determined to violate the management conditions by the determination means,
The management means includes
For the user terminal that has been determined to have violated the management conditions by the determination means, the user terminal that has been determined that the violation of the management conditions has been resolved by the determination means. Stop the transmission or the display,
The management program according to any one of Supplementary Notes B1 to B5, which is characterized by the above.

(Appendix C1)
A management server connected to a plurality of user terminals so as to be able to communicate with each other and managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for recording the management condition determination result on an IC tag of a user terminal and reading the management condition determination result recorded on the IC tag;
Management server characterized by causing a computer to function as

(Appendix C2)
Each of the plurality of user terminals is configured to include position information acquisition means for acquiring position information by receiving power supply independently of the operation state of the user terminal,
The management condition determination result and the position information are recorded in the IC tag, and the management condition determination result and the position information are transmitted in response to a read request from the outside.
The management server according to supplementary note C1, characterized by the above.

(Appendix C3)
A management server connected to a plurality of user terminals so as to be able to communicate with each other and managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for recording the management condition determination result on an IC tag of a user terminal, and displaying the management condition determination result recorded on the IC tag on a status display unit of the user terminal;
Management server characterized by causing a computer to function as

(Appendix C4)
A management server connected to a plurality of user terminals so as to be able to communicate with each other and managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for displaying the management condition determination result in a display holding state on the state display unit of the user terminal;
Management server characterized by causing a computer to function as

(Appendix C5)
Causing the state display unit to execute display even if the user terminal is not in an operating state;
The management program according to any one of supplementary notes C3 to C4, characterized in that:

(Appendix C6)
The management server
Management means for recording the management condition determination result in an IC tag of a user terminal;
The electronic education control means includes first electronic education control means for executing electronic education for security in general, and second electronic education control means for executing detailed electronic education for matters relating to the management conditions,
The electronic education control means is:
Based on the environmental information in each user terminal collected by the environmental information collecting means after the electronic education by the first electronic education control means, whether or not each user terminal satisfies the management condition is determined by the determining means The second electronic education is executed for the user terminal that is determined and determined to violate the management conditions by the determination means,
The management means includes
For the user terminal that has been determined to have violated the management conditions by the determination means, the user terminal that has been determined that the violation of the management conditions has been resolved by the determination means. Stop the transmission or the display,
The management program according to any one of supplementary notes C1 to C5, characterized in that:

(Appendix D1)
The user terminal is
An IC tag for identifying individual user terminals;
A secondary battery that can be charged by a built-in power generation device;
Position information acquisition means for receiving position information by receiving power supply from the secondary battery,
The management system, management server, or management program according to any one of Supplementary notes A1 to A9, B1 to B6, and C1 to C6.

(Appendix E1)
The status display section
The display means for executing the predetermined display is an electronic paper display unit arranged in a stacked state on the display means of the client.
The management system, management server, or management program according to any one of Supplementary notes A1 to A9, B1 to B6, and C1 to C6.

(Appendix E2)
The status display unit is an electronic paper display unit in which display means for executing a predetermined display is arranged in a stacked state on the display means of the client,
The display unit of the electronic paper display unit is disposed between a liquid crystal display unit and a backlight of the display unit of the client.
The management system, management server, or management program according to any one of Supplementary notes A1 to A9, B1 to B6, and C1 to C6.

(Appendix E3)
The status display unit is an electronic paper display unit in which display means for executing a predetermined display is arranged in a stacked state on the display means of the client,
The display unit of the electronic paper display unit is disposed between a light guide plate and a reflection plate of a backlight of the display unit of the client.
The management system, management server, or management program according to any one of Supplementary notes A1 to A9, B1 to B6, and C1 to C6.

(Appendix E4)
The status display unit is an electronic paper display unit in which display means for executing a predetermined display is arranged in a stacked state on the display means of the client,
The electronic paper display unit displays information recorded on the IC tag on the display unit in response to a read request from the IC tag reader even when the client is not in an operating state.
The management system, management server, or management program according to any one of Supplementary notes A1 to A9, B1 to B6, and C1 to C6.

It is a block diagram which shows schematic structure of the management system (a management server and a user terminal) as one Embodiment of this invention. It is a flowchart for demonstrating the whole operation | movement of this embodiment. It is a block diagram which shows the structure of the management system (a management server and a user terminal) as one Embodiment of this invention. It is a flowchart for demonstrating operation | movement of the management server of this embodiment. It is a flowchart for demonstrating operation | movement (the 1st example of a security evaluation method) of the evaluation means in the management server of this embodiment. It is a flowchart for demonstrating operation | movement (2nd example of a security evaluation method) of the evaluation means in the management server of this embodiment. It is a flowchart for demonstrating operation | movement (the 3rd example of a security evaluation method) of the evaluation means in the management server of this embodiment. It is a flowchart for demonstrating the environmental information collection operation | movement of each user terminal in the in-company system of this embodiment. It is a flowchart for demonstrating the electronic education operation | movement of each user terminal in the in-company system of this embodiment. It is a block diagram which shows the function structure of the management system as one Embodiment of this invention. It is a block diagram which shows the external appearance structure of the user terminal used by one Embodiment of this invention. It is a flowchart for demonstrating restriction | limiting operations, such as transmission of each user terminal in the in-company system of this embodiment. It is explanatory drawing which shows the user terminal used by one Embodiment of this invention. It is explanatory drawing which shows the user terminal used by one Embodiment of this invention. It is explanatory drawing which shows the user terminal used by one Embodiment of this invention. It is explanatory drawing which shows the user terminal used by one Embodiment of this invention. It is explanatory drawing which shows the user terminal used by one Embodiment of this invention.

Explanation of symbols

1 management system (security management service provision system)
5 In-house system (system, in-house system)
6 Local network (LAN)
7 Proxy server 8 Printer 10 User terminal 110 Processing unit 111 Environment information collection agent file execution means (environment information collection means)
112 First electronic education agent file execution means 113 Second electronic education agent file execution means 119 User terminal control agent file execution means 20 Management server (security management service providing server)
21 Environment information collection agent file transmission means (environment information collection means)
22 Environmental information receiving means (environmental information collecting means)
23 Evaluation means 24 Evaluation result notification means (notification means)
25 First Electronic Education Control Unit 251 First Electronic Education Agent File Creation / Holding Unit 252 First Electronic Education Agent File Transmission Unit 26 Judgment Unit 27 Warning Unit 28 Second Electronic Education Control Unit 29 User Terminal Management Control Unit 281 Second Electronic education agent file creation / retention means 282 Second electronic education agent file transmission means 291 User terminal control agent file creation / retention means 292 User terminal control agent file transmission means 30 External communication network (network)

In order to achieve the above object, the gist of the present invention is to use the following management system or management server.
[1] According to the first aspect of the present invention, a plurality of user terminals are connected to the plurality of user terminals so as to be able to communicate with each other, and in accordance with a management condition as a predetermined use condition of the user terminal. A management server that manages the plurality of user terminals, and environmental information collection means that collects environmental information related to management conditions in each of the plurality of user terminals from each user terminal to the management server, the management server includes a determination means for processing unit executes a predetermined control program, based on the environment information collected from each user terminal, determines whether the user terminal meets the control conditions, processing unit executes a predetermined control program, and electronic education control means for executing on the user terminal an electronic education in response to the control conditions, is configured to include a respective plurality of user terminals, wherein Management server The management condition determination result by the write unit on the basis of the shown is recorded, and is configured to include an IC tag for transmitting the management condition judgment result in response to a read request from the outside, it the management system, wherein is there.

[3] The invention according to claim 3 is connected to a plurality of user terminals and the plurality of user terminals so that they can communicate with each other, and according to a management condition as a predetermined use condition of the user terminal. A management server that manages the plurality of user terminals, and environmental information collection means that collects environmental information related to management conditions in each of the plurality of user terminals from each user terminal to the management server, the management server includes a determination means for processing unit executes a predetermined control program, based on the environment information collected from each user terminal, determines whether the user terminal meets the control conditions, processing unit executes a predetermined control program, and electronic education control means for executing on the user terminal an electronic education in response to the control conditions, is configured to include a respective plurality of user terminals, wherein Management server An IC tag in which the management condition judgment result is recorded by the write means on the basis of the view, is configured to include a status display unit for displaying the information recorded in the IC tag in response to a read request from the outside It is a management system characterized by that.

[4] The invention as set forth in claim 4 is connected to a plurality of user terminals and the plurality of user terminals so that they can communicate with each other, and according to a management condition as a predetermined use condition of the user terminal. A management server for managing the plurality of user terminals, and environmental information collecting means for collecting environmental information related to management conditions in each of the plurality of user terminals from each user terminal to the management server, the management server includes a determination means for processing unit executes a predetermined control program, based on the environment information collected from each user terminal, determines whether the user terminal meets the control conditions, A processing unit that executes a predetermined management program, and electronic education control means that causes the user terminal to execute electronic education according to the management condition , and each of the plurality of user terminals is configured to display Has retention characteristics Is configured to include a status display unit continues to display the management condition determination result Rukoto a management system, characterized in that.

[7] The invention according to claim 7 is connected to a plurality of user terminals so as to communicate with each other, and manages the plurality of user terminals in accordance with a management condition as a predetermined use condition of the user terminal. as the management server for, managing program causing a computer to function environment information collecting means for collecting environmental information relating to the management conditions in each of the plurality of user terminals, from each user terminal to the management server, the processing unit There executes a predetermined control program, based on the collected environmental information from each user terminal, determining means for each user terminal to determine whether to satisfy the control conditions, the processing unit is a predetermined management program run, to record the electronic education electronic education control means for executing on the user terminal, the IC tag of the user terminal by means writes the management condition judgment result in response to the control conditions Is a management program for causing to function the computer as a management unit, which makes the determination again the management condition after the electronic education.

[8] The invention according to claim 8 is connected to a plurality of user terminals so as to communicate with each other, and manages the plurality of user terminals in accordance with a management condition as a predetermined use condition of the user terminal. as the management server for, managing program causing a computer to function environment information collecting means for collecting environmental information relating to the management conditions in each of the plurality of user terminals, from each user terminal to the management server, the processing unit There executes a predetermined control program, based on the collected environmental information from each user terminal, determining means for each user terminal to determine whether to satisfy the control conditions, the processing unit is a predetermined management program run, to record the electronic education electronic education control means for executing on the user terminal, the IC tag of the user terminal by means writes the management condition judgment result in response to the control conditions And characterized in that the management condition judgment results recorded in the IC tag is displayed on the status display unit of the user terminal, managing means makes a decision of the management condition again the following electronic education, as to function the computer Management program.

[9] The invention according to claim 9 is connected to a plurality of user terminals so as to communicate with each other, and manages the plurality of user terminals in accordance with a management condition as a predetermined use condition of the user terminal. A management program for causing a computer to function as a management server that performs environmental information collection means and processing unit for collecting environmental information related to management conditions in each of the plurality of user terminals from each user terminal to the management server There executes a predetermined control program, based on the collected environmental information from each user terminal, determining means for each user terminal to determine whether to satisfy the control conditions, the processing unit is a predetermined management program run, to display the electronic education according to the control conditions electronic education control means for executing on the user terminal, the management condition determination result in the display holding state in the status display unit of the user terminal Is a management program for causing to function the computer as a management unit, which makes the determination again the management condition after the electronic education.

In order to achieve the above object, the gist of the present invention is to use the following management system or management server.
[1] The invention according to claim 1 is characterized in that a management condition determination result is recorded by a writing means , and a plurality of user terminals having IC tags for transmitting the management condition determination result in response to an external read request ; communicatively coupled to a plurality of user terminals and each other, and a management server for managing the user terminal of the plurality of in accordance with the management condition of the use conditions of the user terminal predetermined plurality of users environmental information relating to the management conditions in each terminal, collecting and equipped with, and environment information collecting means for transferring to the management server from the user terminal, the management server processing unit executes a predetermined control program and, based on the environment information collected from each user terminal, the management each user terminal determination means for determining whether to satisfy the control conditions, it is determined by said determining means Managing means for recording the matter determination result to the IC tag of the user terminal, the processing unit executes a predetermined control program, a first electronic education control means for executing the electronic education about security in general to the user terminal And a second electronic education control means for executing a predetermined management program and causing the user terminal to execute detailed electronic education on matters relating to the management conditions, and the first electronic education Based on the environmental information in each user terminal collected by the environmental information collecting means after the electronic education by the control means, the judgment means determines whether each user terminal satisfies the management condition, The determination result is written to the IC tag of the user terminal by the writing means, and the determination means determines that the management condition is violated. Causing the user terminal to execute the second electronic education, wherein the management unit causes the transmission to be performed on the user terminal determined to violate the management condition by the determination unit; The management system is characterized in that the transmission is stopped for the user terminal that has been determined that the violation of the management condition has been resolved by the determination means .

[3] The invention according to claim 3 is an IC tag in which a management condition determination result is recorded by a writing means and the management condition determination result is transmitted in response to an external read request, and the IC in response to an external read request. A plurality of user terminals having a status display unit for displaying information recorded in the tag, and the management as a predetermined use condition of the user terminals connected to the plurality of user terminals so as to communicate with each other A management server for managing the plurality of user terminals according to the conditions, and an environment for collecting environment information relating to the management conditions in each of the plurality of user terminals from each user terminal and delivering it to the management server includes an information collecting unit, and the management server, the processing unit executes a predetermined control program, based on the environment information collected from each user terminal, each user terminal is the tube Execution determining means for determining whether the condition is satisfied, the managing means for recording the management condition determination result of the determination by the determination unit to the IC tag of the user terminal, the processing unit is a predetermined management program The first electronic education control means for causing the user terminal to execute electronic education about security in general, and the processing unit executes a predetermined management program, and the user performs detailed electronic education on matters relating to the management conditions. Second electronic education control means to be executed by the terminal, based on the environmental information in each user terminal collected by the environmental information collection means after the electronic education by the first electronic education control means, The determination unit determines whether each user terminal satisfies the management condition, and the determination result is stored in the user terminal by the writing unit. Writing to the C tag, causing the user terminal that is determined to violate the management condition by the determination means to execute the second electronic education, and the management means satisfies the management condition by the determination means Causing the user terminal that is determined to be in violation to perform the display, and stopping the display to the user terminal that has been determined that the violation of the management condition has been resolved by the determination unit; This is a management system characterized by that.

[4] The invention according to claim 4 is the IC tag in which the management condition determination result is recorded by the writing means and the management condition determination result is transmitted in response to an external read request, and the IC in response to the external read request. Use of a predetermined user terminal connected to a plurality of user terminals having a state display unit that continuously displays information recorded in the tag by display holding characteristics, and the plurality of user terminals to communicate with each other. a management server for managing the user terminal of the plurality of in accordance with the management condition of the condition, the environment information relating to the management conditions in each of the plurality of user terminals, and collected from the user terminal the management and an environment information collecting means passing to the server, the management server, the processing unit executes a predetermined control program, based on the environment information collected from each user terminal A determination unit for each user terminal to determine whether to satisfy the control conditions, and managing means for recording the management condition determination result of the determination by the determination unit to the IC tag of the user terminal, the process The first electronic education control means for executing the predetermined management program and causing the user terminal to execute electronic education about security in general, and the processing unit executing the predetermined management program, consists of a detailed electronic education equipped with a second electronic education control means for executing on the user terminal, each user terminal that is collected by the environment report collection means after the electronic education by the first electronic education control means Based on the environmental information in the above, the determination means determines whether or not each user terminal satisfies the management condition, and the determination result is determined as the write operation. To the IC tag of the user terminal, the second electronic education is executed for the user terminal determined to violate the management condition by the determination means, and the management means For the user terminal determined to violate the management condition by the means, and for the user terminal determined to have solved the violation of the management condition by the determination means The management system is characterized in that the display is stopped .

[6] In the above invention, the management server executes the electronic education about security in general as the management means for recording the management condition judgment result in the IC tag of the user terminal and the electronic education control means. Electronic education control means, and second electronic education control means for executing detailed electronic education on matters relating to the management condition, the electronic education control means after the electronic education by the first electronic education control means Based on the environmental information collected at each user terminal by the environmental information collecting means, it is judged by the judging means whether each user terminal satisfies the management conditions, and the management means violates the management conditions. The second electronic education is executed for the user terminal that is determined to be, and the management means is determined to violate the management conditions by the determination means. To perform the transmission or the display to the user terminal stops the transmission or the display to the user terminal is determined to the management condition violation by the determining means is eliminated, characterized in that.

[7] This invention, the management server connected to communicate with each other and a plurality of user terminals, manages the user terminal of the plurality of in accordance with the control conditions as conditions of use of the predetermined user terminal A management program for causing a computer to function, and environmental information collection means for collecting environmental information related to management conditions in each of the plurality of user terminals from the user terminals to the management server, and a processing unit A management unit is executed, and based on the environment information collected from each user terminal, determination means for determining whether each user terminal satisfies the management conditions, the processing unit executes a predetermined management program, Electronic education control means for causing the user terminal to execute electronic education according to the management conditions, the management condition determination result is recorded on an IC tag of the user terminal by a writing means, and the electronic terminal Management means for re is the determination of the management condition Ikugo, characterized in that to function the computer as.

[8] This invention, the management server connected to communicate with each other and a plurality of user terminals, manages the user terminal of the plurality of in accordance with the control conditions as conditions of use of the predetermined user terminal A management program for causing a computer to function, the environmental information collecting means for collecting environmental information related to the management conditions in each of the plurality of user terminals from each user terminal to the management server, and a processing unit A management program is executed, based on the environmental information collected from each user terminal, a determination means for determining whether each user terminal satisfies the management conditions, the processing unit executes a predetermined management program, Electronic education control means for causing the user terminal to execute electronic education in accordance with the management conditions, the management condition determination result is recorded on an IC tag of the user terminal by the writing means, and the IC tag The management condition judgment results recorded is displayed on the status display unit of the user terminal, the management unit for the determination of the management condition again the following electronic education, characterized in that to function the computer as.

[9] This invention, the management server connected to communicate with each other and a plurality of user terminals, manages the user terminal of the plurality of in accordance with the control conditions as conditions of use of the predetermined user terminal A management program for causing a computer to function, and environmental information collection means for collecting environmental information related to management conditions in each of the plurality of user terminals from the user terminals to the management server, and a processing unit A management unit is executed, and based on the environment information collected from each user terminal, determination means for determining whether each user terminal satisfies the management conditions, the processing unit executes a predetermined management program, Electronic education control means for causing the user terminal to execute electronic education in accordance with the management conditions, causing the management condition determination result to be displayed in a display holding state on the state display unit of the user terminal, and Management means for re is the determination of the management condition Ikugo, characterized in that to function the computer as.

Claims (9)

Multiple user terminals,
A management server that is communicably connected to the plurality of user terminals and manages the plurality of user terminals;
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
The management server
A judging means for judging the management condition of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education on security in accordance with the management conditions,
Each of the plurality of user terminals
The management condition determination result is recorded, and configured to include an IC tag that transmits the management condition determination result in response to an external read request.
Management system characterized by that. Further, each of the plurality of user terminals is
It comprises a position information acquisition means that receives power supply and acquires position information independently of the operating state of the user terminal,
The IC tag records the management condition determination result and the position information, and transmits the management condition determination result and the position information in response to an external read request.
The management system according to claim 1. Multiple user terminals,
A management server that is communicably connected to the plurality of user terminals and manages the plurality of user terminals;
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
The management server
A judging means for judging the management condition of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education on security in accordance with the management conditions,
Each of the plurality of user terminals
An IC tag on which the management condition judgment result is recorded;
A status display unit that displays information recorded on the IC tag in response to a read request from the outside.
Management system characterized by that. Multiple user terminals,
A management server that is communicably connected to the plurality of user terminals and manages the plurality of user terminals;
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
The management server
A judging means for judging the management condition of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education on security in accordance with the management conditions,
Each of the plurality of user terminals
It is configured with a state display unit that continues to display the management condition determination result by having a display holding characteristic.
Management system characterized by that.   The information management system according to claim 3 or 4, wherein the status display unit is configured to be able to display the user terminal even when the user terminal is not in an operating state. The management server
Management means for recording the management condition determination result in an IC tag of a user terminal;
The electronic education control means includes first electronic education control means for executing electronic education for security in general, and second electronic education control means for executing detailed electronic education for matters relating to the management conditions,
The electronic education control means is:
Based on the environmental information in each user terminal collected by the environmental information collecting means after the electronic education by the first electronic education control means, whether or not each user terminal satisfies the management condition is determined by the determining means The second electronic education is executed for the user terminal that is determined and determined to violate the management conditions by the determination means,
The management means causes the user terminal that is determined to violate the management condition by the determination means to perform the transmission or the display, and the use that is determined that the management condition violation has been resolved by the determination means Stop the transmission or the display to the user terminal,
The information management system according to claim 1, wherein the information management system is an information management system. A management program connected to a plurality of user terminals so as to communicate with each other, and causing a computer to function as a management server for managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for recording the management condition determination result on an IC tag of a user terminal and reading the management condition determination result recorded on the IC tag;
A management program for causing the computer to function as A management program connected to a plurality of user terminals so as to communicate with each other, and causing a computer to function as a management server for managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for recording the management condition determination result on an IC tag of a user terminal, and displaying the management condition determination result recorded on the IC tag on a status display unit of the user terminal;
A management program for causing the computer to function as A management program connected to a plurality of user terminals so as to communicate with each other, and causing a computer to function as a management server for managing the plurality of user terminals,
Environmental information collection means for collecting environmental information in each of the plurality of user terminals from each user terminal to the management server;
Judging means for judging the management conditions of each user terminal based on the environmental information collected from each user terminal;
Electronic education control means for causing the user terminal to execute electronic education about security in accordance with the management conditions;
Management means for displaying the management condition determination result in a display holding state on the state display unit of the user terminal;
A management program for causing the computer to function as

Images