JP2010003001A - Use management method for external storage medium, information processor and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To enable a system, which uses an external storage medium, to prevent the unauthorized use or theft of the external storage medium and the leakage of confidential information, and to improve security by comprehending the use history of the external storage medium. <P>SOLUTION: This information processor includes: an RFID reader 2 for reading medium ID; an authentication device 12 for authenticating a user by comparing the user ID of an external storage medium user with user unique information; a medium management terminal 13 connected to the RFID reader 2 and the authentication device 12; and a management device 15 connected to the medium management terminal 13. The medium management terminal 13 transmits the read medium ID and the acquired user ID to the management device 15. The management device 15 retrieves a medium management database having records including the medium ID and the user ID associated with the medium ID based on the acquired medium ID, and when deciding that the user ID acquired from the medium management terminal 13 is included, transmits such a result that the user is permitted to remove the external storage medium to the medium management terminal 13. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to an external storage medium usage management method, a program, and an information processing apparatus, and more particularly to an external storage medium and an external storage medium usage management method for managing the use of information stored in the external storage medium, and an information processing apparatus. Regarding the program.

  In recent years, for example, administrative information such as local governments has promoted the digitization of business information, and there are many cases where electronic data is handled. At that time, electronic data containing various information, including information that should not be leaked, such as confidential information and personal information, is generally stored and carried in an external storage medium such as a USB memory. . Therefore, there is an increasing interest in security of external storage media, and how to manage external storage media to prevent unauthorized use of external storage media and unauthorized use of confidential information stored in external storage media Has become an issue.

Conventionally, various techniques for limiting the use of external storage media and files have been proposed to solve such problems. For example, Patent Document 1 discloses a technique for ensuring information security by performing authentication and use stop when an external storage medium is pulled out from a management apparatus. Japanese Patent Application Laid-Open No. 2003-228561 discloses a restriction method for file use.
JP 2006-268336 A JP 2006-251856 A

  However, in the method described in Patent Document 1, since only the insertion / removal from the management apparatus is managed, the external storage medium cannot be controlled until it is used by another device. In Patent Document 2, the use of files is restricted, but the use of the external storage medium itself is not restricted.

  Information leakage may occur due to external fraudulent use using an external storage medium, disclosure on a terminal that is not allowed to be used, or operational errors during night work. In addition, since management of information taken out of the external storage medium is not thorough, it takes time to recognize that the external storage medium is lost, and information leakage may occur. Furthermore, there is a possibility that theft may occur when a person who is not permitted to manage the external storage medium carries out illegally.

  The present invention has been made to solve such problems, and one object of the present invention is to prevent an external storage medium such as a USB memory from being illegally used through theft or the like and store it in the external storage medium. It is to prevent leakage of confidential information.

In order to solve the above and other problems, an external storage medium management method according to an aspect of the present invention is an external storage medium for managing an external storage medium to which a medium ID that is a unique identification code is assigned. A storage medium management method comprising: a medium ID reading device that reads the medium ID; a user ID that is an identification code assigned to each user who uses the external storage medium; and information unique to the user An authentication device for comparing the user-specific information with the user to authenticate the user, a first information processing device communicably connected to the medium ID reading device and the authentication device, and the first A second information processing apparatus communicably connected to the information processing apparatus,
The first information processing apparatus acquires the second information by acquiring the medium ID read from the external storage medium by the medium ID reading apparatus and the user ID acquired from the user by the authentication apparatus. Sent to the processing unit,
The second information processing apparatus includes a medium management database including a record including the medium ID and a user ID of a user associated with the user ID of an external storage medium having the medium ID. Searching the medium management database by the medium ID acquired from the first information processing apparatus;
When the second information processing apparatus determines that the user ID associated with the medium ID includes the user ID acquired from the first information processing apparatus, the first information processing apparatus Transmitting information indicating that the user is allowed to take out the external storage medium,
It is characterized by that.

  According to the present invention, it is possible to prevent an external storage medium such as a USB memory from being illegally used through theft or the like and to prevent leakage of confidential information stored in the external storage medium.

Hereinafter, an embodiment of the present invention will be described in detail with reference to the accompanying drawings.
FIG. 1 is a diagram showing the overall configuration of an external storage medium management system 1 including an information processing apparatus used in an external storage medium management method according to the present invention.

  As shown in the figure, this external storage medium management system 1 (hereinafter, abbreviated as “system 1”) uses each external storage medium 10 as an identification means in order to manage the usage status of the external storage medium 10 such as a USB memory. RFID tag R is attached. As the RFID tag R, for example, a passive tag having a communication frequency of 13.56 MHz, which is currently used in the distribution field or the like, can be preferably used, but the application of a tag using another frequency band or an active tag is excluded. Instead, a wide variety of RFID tags R can be employed.

  The RFID tag R is attached to, for example, an exterior surface of the external storage medium 10 such as a USB memory using an appropriate adhesive so as not to drop off. In each RFID tag R, unique code data is recorded in advance by a predetermined system. As a result, the external storage media 10 can also be distinguished from each other by the code data unique to the RFID tag R attached thereto.

  The system 1 includes a medium management terminal 13 that is a first information processing apparatus, a medium use terminal 19, a system management terminal 3, a management apparatus 15 that is a second information processing apparatus, and a personnel information management apparatus 5. These are connected by a communication network 4 so that they can communicate with each other. The communication network 4 may be any type of network, but is an intranet protected from an external network by an appropriate firewall, for example, because data including confidential information is transmitted.

  The medium management terminal 13 and the medium use terminal 19 are provided with an authentication device 12. As the authentication device 12, a biometric authentication device that performs personal identification by reading and analyzing biometric identification information such as a fingerprint and a vein pattern is preferably used.

  The medium management terminal 13, the medium use terminal 19, and the system management terminal 3 are further provided with an RFID reader 2 that communicates with the RFID tag R and reads the code data stored therein.

  Each terminal and device is a general computer having a communication function such as a LAN, and a detailed description of the hardware configuration is omitted. Generally, a CPU, a memory such as a RAM and a ROM, An input device such as a keyboard and a mouse, an output device such as a display device, an input / output interface that mediates data communication with the input / output device, and an external storage device such as a hard disk drive.

Next, the configuration and function of each terminal and apparatus will be described in more detail.
FIG. 2 is a functional block diagram showing the configuration of the medium management terminal 13. The medium management terminal 13 is a control unit 20 including a CPU, a memory and the like, an external storage device, a storage unit 21 storing a program 210 executed by the control unit 20, and RFID data read by the RFID reader 11. , The user interface interface unit 23 for receiving the authentication data read by the authentication device 12, the network interface unit 24 for transmitting / receiving data to / from the communication network 4, and information such as implementation contents to be described later. It has the input part 25 for inputting, and the output part 26 for outputting information.

The program 210 includes an application program 220 for performing business processing, a user authentication control function program 221, an RFID control function program 222, and a Web browser function program 223.
The application program 220 includes a word processor, spreadsheet software, e-mail software, etc. used for general business execution.

The user authentication control function program 221 performs a control operation of transmitting the medium user personal authentication information, which is authentication data from the authentication device 12 received by the user authentication interface unit 23, to the management device 15.
The RFID control function program 222 performs a control operation for transmitting the RFID data received by the RFID interface unit 22 from the RFID reader 11 to the management device 15.
The Web browser function program 223 has a function for acquiring and displaying data from the Web or transmitting data on the Web.

Next, the medium use terminal 19 will be described. FIG. 3 is a functional block diagram showing the configuration of the medium use terminal 19.
The medium use terminal 19 is a computer used by the user to read out and process data stored in the external storage medium 10 taken out by the user from the medium management terminal 13. Similarly to the medium management terminal 13, the medium use terminal 19 includes a control unit 30, a storage unit 31, an RFID interface unit 32, a user authentication interface unit 33, a network interface unit 34, an input unit 35, and an output unit 36. is doing. For each component, refer to the description related to the medium management terminal 13.

  The storage unit 31 stores a program 310 for realizing the function of the medium use terminal 19. The program 310 includes an application program 320, a user authentication control function program 321, an RFID control function program 322, a PC information notification function program 323, and a file use history notification function program 324. For the application program 320, the user authentication control function program 321 and the RFID control function program 322, refer to the description regarding the medium management terminal 13.

The PC information notification function program 323 is a MAC that is unique code data possessed by the computer that is the terminal 19 in order for the management device 15 to identify the computer as the medium use terminal 19 that is used by the user. It has a function of notifying the management device 15 of PC information including an address.
The file use history notifying function program 324 has a function of acquiring file information including a used file name that is read from the external storage medium 10 at the medium use terminal 19 and notifies the management apparatus 15 of the file information.

Next, the system management terminal 3 will be described. FIG. 4 is a functional block diagram showing the configuration of the system management terminal 3.
The system management terminal 3 includes a control unit 40, a storage unit 41, an RFID interface unit 42, a network interface unit 43, an input unit 44, and an output unit 45. For each component, refer to the description related to the medium management terminal 13.

  The storage unit 41 stores a program 410 for realizing the functions of the system management terminal 3. The program 410 includes an application program 420, an RFID control function program 421, a data registration function program 422, and a file usage history browsing function program 423. For the application program 420 and the RFID control function program 421, refer to the description regarding the medium management terminal 13.

The data registration function program 422 has a function of notifying the management apparatus 15 of medium management information to be described later and registering it.
The file usage history browsing function program 423 has a function of acquiring file usage information such as a used file name to be described later from the management device 15.

Next, the management device 15 will be described. FIG. 5 is a functional block diagram showing the configuration of the management device 15.
The management device 15 includes a control unit 50, a storage unit 51, and a network interface unit 52. The storage unit 51 stores a program 510 for realizing the function of the management device 15 and a database storing various data used for data processing in the system 1.

  The program 510 includes a data search function program 520, a data conversion function program 521, a data registration function program 522, a data notification function program 523, and a data capture function program 524.

The data search function program 520 has a function of searching each database, which will be described later, and acquiring data that matches the data given as a search key.
The data conversion function program 521 has a function of processing and converting data stored in each database described later.
The data registration function program 522 has a function of registering data in each database described later.
The data notification function program 523 has a function of notifying each terminal 3, 13, 19 of data via the communication network 4.
The data capturing function program 524 has a function of capturing data from each terminal 3, 13, 19 via the communication network 4.

  The database (hereinafter abbreviated as “DB”) includes a medium management DB 511, a secret use history DB 512, a use history DB 513, a use management DB 514, and a user management DB 515. Each DB is configured as a data table organized by including a plurality of data items as one record. Details of each DB will be described later.

Next, the personnel information management device 5 will be described. FIG. 6 is a functional block diagram showing the configuration of the personnel information management device 5.
The personnel information management device 5 includes a control unit 60, a storage unit 61, and a network interface unit 62. The storage unit 61 stores a program 610 for realizing the function of the personnel information management apparatus 5 and an affiliation management DB 611 that is a database used for data processing in the system 1. The affiliation management DB 611 will be described later.

  The program 610 includes a data search function program 620 and a data notification function program 621. The data search function program 620 has a function of searching the affiliation management DB 611 using a given search key, and acquiring any data that matches. The data notification function program 621 has a function of notifying the management device 15 of data via the communication network 4.

Next, the configuration of each DB stored in the storage unit 51 of the management apparatus 15 will be sequentially described.
First, the medium management DB 511 will be described. FIG. 7 is a diagram showing the configuration of the medium management DB 511. The medium management DB 511 stores one or more records configured to include each data of the medium ID 70, the medium classification 71, the usable user 72, the usable job title 73, the usable time zone 74, and the usable PC 75. .
The medium ID 70 is code data stored in the RFID tag R attached to each external storage medium 10 and is used to specify each external storage medium 10.
The medium classification 71 is code data representing the medium management classification of each external storage medium 10 such as whether it is privately held or can be taken outside.

The usable person 72 is staff number data given to a user who is permitted to use each external storage medium 10.
The usable post 73 is post code data defined for the post that is permitted to be used for each external storage medium 10.
In the usable time zone 74, the time zone in which the use of each external storage medium 10 is permitted is recorded as start time data 740 and end time data 741.

  In the usable PC 75, the MAC address of the computer (PC) that is the medium use terminal 19 permitted to use the external storage medium 10 is recorded. Note that data items other than the medium ID 70 are not necessarily required for the data processing operation of the system 1. For example, the external storage medium 10 having a certain medium ID 70 may be used as a general-purpose storage medium that does not need to be used at all, such as when only the user 72 is determined. Is the case where only the medium ID 70 is recorded.

  Next, the secret usage history DB 512 and the usage history DB 513 will be described. These two DBs have the same data configuration. FIG. 8 is a diagram showing the configuration of the secret usage history DB 512 and the usage history DB 513.

  The secret use history DB 512 and the use history DB 513 store one or more records each including the medium ID 80, the user ID 81, the use start time 82, the use end time 83, and the use file name 84. Become.

  The user ID 81 is identification information given in correspondence with a unique staff number assigned to each user. The use start time 82, the use end time 83, and the use file name 84 are the file name, the use start time, and the use of the file read and used from the external storage medium 10 of the medium ID 80 by the user having the corresponding user ID 81, respectively. The end time is stored.

  The secret use history DB 512 and the use history DB 513 are automatically set by the management device 15 based on a use management DB 514 described later when a user reads a file from the external storage medium 10 and uses it at any medium use terminal 13. To be created. When the user reads out from the external storage medium 10 and uses it, it is determined by the management device 15 based on the data recorded in the medium section 92 of the use management DB 514 described later. Stored in the usage history DB 512 and stored in the usage history DB 513 when the medium classification 92 is other than secret.

  Next, the usage management DB 514 will be described. FIG. 9 is a diagram showing the configuration of the usage management DB 514. The usage management DB 514 stores one or more records each including data of the medium ID 90, the user ID 91, the medium classification 92, the usable time zone 93, and the usable PC 94. Since each item has been described with respect to the medium management DB 511, the secret use history DB 512, and the use history DB 513, refer to the corresponding sections.

  Next, the user management DB 515 will be described. FIG. 10 is a diagram showing the configuration of the user management DB 515. The user management DB 515 stores one or more records configured to include each data of the user ID 100 and the staff number 101. Since each item has been described with respect to the medium management DB 511, the secret use history DB 512, and the use history DB 513, refer to the corresponding sections.

  The user ID 100 is assigned by assigning a unique identification code to the staff number 101 given as unique identification information for each user, and registered in advance from the system management terminal 3. A management DB 515 is generated.

  Next, the affiliation management DB 611 will be described. FIG. 11 is a diagram illustrating a configuration of the affiliation management DB 611. The affiliation management DB 611 stores one or more records configured to include each data of the staff number 110 and the post code 111. Since each item has been described with respect to the medium management DB 511, the secret use history DB 512, and the use history DB 513, refer to the corresponding sections. Each position code corresponding to the staff number 110 is registered in advance from the system management terminal 3 to generate the affiliation management DB 611.

Next, a method for managing an external storage medium realized by the system 1 having the above configuration will be described.
First, a processing flow when the user takes out the external storage medium 10 will be described with reference to FIG. FIG. 12 is a sequence diagram showing information processing when the external storage medium is taken out according to an embodiment of the present invention. In this figure, the flow of information among the constituent elements of the external storage medium 10, the authentication device 12, the medium management terminal 13, the management device 15, and the personnel information management device 5 is indicated by arrows, and processing executed in each element Is represented by each box.

  First, a user who wants to take out and use the external storage medium 10 to which the RFID tag R is attached inputs the implementation contents from the selection screen 170 displayed on the display device or the like which is the output unit 26 of the medium management terminal 13 (steps). 120). FIG. 17 shows a display example of the selection screen 170 displayed on the medium management terminal 3. The external storage medium 10 is stored near the medium management terminal 13, for example, in a cabinet or the like.

  When the user performs the take-out process of the external storage medium 10, the take-out process is started by operating the take-out button 171 on the selection screen 170. Note that when the return process of the external storage medium 10 is performed, the return button 172 is operated, which will be described later.

  The user holds the external storage medium 10 with the RFID tag R attached to the RFID reader 2 connected to the medium management terminal 13 and inputs the medium ID 70 recorded on the tag R (step 121). At this time, the output unit 26 of the medium management terminal 13 displays a “message prompting the user to hold the external storage medium 10 over the RFID reader 2”. FIG. 18 shows a screen example of the message screen 180.

If the medium ID 70 cannot be read for some reason (step 122), the medium management terminal 13 displays the error message screen 200 from the output unit 26 and the process is terminated forcibly (step 123). FIG. 20 shows a screen example of an error message screen 200 displayed when an error occurs. On the error message screen 200, the screen 200 can be created so that detailed information indicating the content of the error is displayed corresponding to the cause of the error.
If the medium management terminal 13 can read the medium ID 70, the medium management terminal 13 transmits the read medium ID 70 to the management apparatus 15 (step 122).

  When the control unit 50 of the management device 15 receives the medium ID 70 from the medium management terminal 13 through the communication network 4 and the network interface unit 52, the control unit 50 receives the received medium ID 70 and the medium ID 90 recorded in the usage management DB 514. And the use status of the medium is identified (step 124).

If the medium ID 70 and the medium ID 90 in the use management DB 514 match, information indicating that the medium 10 to be taken out is in use is transmitted to the medium management terminal 13 (step 125), and an error message is output from the output unit 26. The screen 200 is displayed and the process is forcibly terminated (step 126). This error is caused by an inconsistent state in which the external storage medium 10 that is actually being taken out by the user is already taken out and recorded as being used in the system 1. . In this case, a countermeasure is taken in which the user contacts the system administrator or the like to eliminate the error state.
If the received medium ID 70 does not match the medium ID 90 of the usage management DB 514, the control unit 50 transmits information indicating that the medium is not in use to the medium management terminal 13 (step 125).

  Next, the user who wants to take out the external storage medium 10 receives biometric authentication by the authentication device 12 connected to the medium management terminal 13 according to a predetermined procedure, and also uses his / her user from the input unit 25 of the medium management terminal 13. The ID 81 is input (step 127). At this time, the authentication device 12 displays a “message prompting to perform biometric authentication”. FIG. 19 shows a screen example of the message screen 190. The input user ID 81 is transmitted from the medium management terminal 13 to the management apparatus 15 by the user authentication control function program 211 (step 128).

  When the control unit 50 of the management apparatus 15 receives the user ID 81 from the medium management terminal 13 through the communication network 4 and the network interface unit 52, the control unit 50 is recorded in the received user ID 81 and the user management DB 515. The user ID 100 is collated, and the staff number 101 of the corresponding user is acquired (step 129).

  If the received user ID 81 does not match the user ID 100 recorded in the user management DB 515, information indicating that the user who is taking out the external storage medium 10 is not registered in the use management DB 514 Is transmitted to the medium management terminal 13 (step 1210), the error message screen 200 is displayed from the output unit 26 of the medium management terminal 13, and the process is forcibly terminated (step 1211).

  If there is a match between the received user ID 81 and the user ID 100 of the user management DB 515, the medium ID 71 of the medium management DB 511 is searched using the received medium ID 71 as a search key, and a record of the corresponding medium information is obtained. (Step 1212).

  As a result of searching the medium ID 70 in the medium management DB 511 using the received medium ID 70 as a search key, if the corresponding medium information record is not registered, information indicating that it is not registered in the medium management DB 511 is transmitted to the medium management terminal 13. Then, the error message screen 200 is displayed from the output unit 26 of the medium management terminal 13 and the process is forcibly terminated (step 1214). If the received medium ID 70 is registered as the medium ID 70 of the medium management DB 511, the acquired staff number 101 and the usable person 72 of the medium management DB 511 are collated (step 1215).

  If it is determined that the acquired staff number 101 does not match the usable person 72 of the medium management DB 511, the control unit 51 transmits information indicating that no matching information exists to the medium management terminal 13 (step 1216). The error message screen 200 is displayed from the output unit 26 of the medium management terminal 13 and the process is forcibly terminated (step 1217). If it is determined that there is a match between the acquired staff number 101 and the usable person 72 in the medium management DB 511, information that the matching information exists is similarly notified.

  When information indicating that there is a match between the acquired staff number 101 and the usable person 72 of the medium management DB 511 is notified, the management device 15 uses the data notification function program 523 to manage the received user ID 81 for personnel information management. The data is transmitted to the device 5 (step 1218). In the personnel information management apparatus 5, the data retrieval function program 620 retrieves the staff number 110 in the affiliation management DB 611 of the personnel information management apparatus 5 using the acquired staff number 101 as a retrieval key, and retrieves the corresponding post code 111 ( Step 1219). The personnel information management device 5 transmits the post code 111 corresponding to the acquired staff number 101 to the management device 15 by the data notification function program 621 (step 1220).

  In the management device 15, the data retrieval function program 520 collates the acquired job title code 111 with the available job title 73 in the medium management DB 511 (step 1221). If it is determined that there is no match between the acquired user's post code 111 and the usable post 73 in the media management DB 511, the data notification function program 523 sends information indicating that no matching information exists to the media management terminal 13. The message is transmitted (step 1222), the error message screen 200 is displayed from the output unit 26 of the medium management terminal 1313, and the process is forcibly terminated (step 1223). If it is determined that there is a match between the acquired user's post code 111 and the usable post 73 in the medium management DB 511, information indicating that the matching information exists is similarly notified. Also, if the available job title 73 in the medium management DB 511 is null (null value), the job title is not used as a criterion for determining whether or not the job title can be used. Therefore, information indicating that matching information exists is similarly notified. .

  After notifying the information indicating that the matched information exists, the management apparatus 15 registers the received user ID 81 and the acquired medium ID 90 in the use management DB 514 by the data registration function program 522 (step 1224).

  When the registration of the external storage medium 10 taken out by the user to the use management DB 514 is completed, the management device 15 transmits information indicating that the take-out processing is completed to the medium management terminal 13 by the data notification function program 523 ( In step 1225), the processing completion screen 210 is displayed from the output unit 26 of the medium management terminal 13, and the processing ends (step 1226). FIG. 21 shows a screen example of a screen 210-1 displayed on the terminal when the processing is completed.

  Next, a processing flow executed when the user takes out and uses the external storage medium 10 and returns it will be described. FIG. 13 is a sequence diagram showing information processing when returning an external storage medium according to an embodiment of the present invention.

  First, the user of the external storage medium 10 to which the RFID tag R is attached inputs “return” which is an implementation content from the selection screen 170 (FIG. 17) displayed on the output unit 26 of the medium management terminal 13 (step 130). . The external storage medium 10 with the RFID tag R attached is held over the RFID reader 2 and the medium ID 70 is read through the RFID interface unit 22 of the medium management terminal 13 (step 131). If the medium ID 70 cannot be read for some reason (step 132), the error message screen 200 of FIG. 20 is displayed from the output unit 26 and the process is forcibly terminated (step 133). If the medium ID 70 can be read, the medium management terminal 13 transmits the medium ID 70 to the management apparatus 15 by the RFID control function program 222 (step 132).

  When the management device 15 receives the medium ID 70 from the medium management terminal 13 by the communication network 4 and the network interface unit 52, the control unit 50 collates the received medium ID with the medium ID 90 of the use management DB 514, and uses the medium. It is determined whether or not there is a record for (step 134).

  If it is determined that there is no match between the medium ID 70 and the medium ID 90 of the use management DB 514, information indicating that the medium is not in use is transmitted to the medium management terminal 13 (step 135), and the output unit of the medium management terminal 13 26, the error message screen 200 is displayed and the process is forcibly terminated (step 136). If there is a match between the medium ID 70 and the medium ID 90 in the use management DB 514, information indicating that the medium is in use is transmitted to the medium management terminal 13 (step 135).

  Next, the user performs biometric authentication by the authentication device 12 according to a predetermined procedure, and inputs the user ID 81 from the input unit 25 of the medium management terminal 13 (step 137). The user authentication interface unit 23 of the medium management terminal 13 transmits the input user ID 81 to the management apparatus 15 (step 138).

  When the control unit 50 of the management apparatus 15 receives the user ID 81 from the medium management terminal 13 by the communication network 4 and the network interface unit 52, the control unit 50 collates the user ID 81 with the user ID 91 of the use management DB 514 (step 139). If it is determined that there is no match between the received user ID 81 and the user ID 91 of the user management DB 514, the data notification function program 523 transmits information indicating that no matching information exists to the medium management terminal 13. Then, the error message screen 200 is displayed from the output unit 26 of the medium management terminal 13 and the process is forcibly terminated (step 1311). If it is determined that there is a match between the user ID 81 and the user ID 91 in the use management DB 514, the fact that the matching information exists is similarly notified.

  If there is matching information, the control unit 50 of the management device 15 searches the user ID 91 of the use management DB 514 corresponding to the received medium ID 81 by the data search function program 520, and deletes the record including the user ID 91 ( Step 1312).

  When the return process is completed, the control unit 50 of the management apparatus 15 transmits information indicating that the return process is completed to the medium management terminal 13 by the data notification function program 523 (step 1313), and the output unit 26 completes the process. The screen 210-1 is displayed and the process ends (step 1314).

  Next, a processing flow executed when the external storage medium 10 taken out by the user is used will be described. FIG. 14 is a sequence diagram showing information processing when an external medium is used according to an embodiment of the present invention.

  First, the user of the external storage medium 10 to which the RFID tag R is attached holds the external storage medium 10 over the RFID reader 2 connected to the medium use terminal 19 and reads the medium ID 70 through the RFID interface unit 32 (step 140). ). If it is determined that the medium ID 70 cannot be read for some reason (step 141), the error message screen 200 is displayed from the output unit 36 of the medium use terminal 19 and the process is forcibly terminated (step 142). If the medium ID 70 can be read, the medium use terminal 19 transmits the medium ID 70 to the management apparatus 15 through the network interface unit 34 (step 141).

  When the control unit 50 of the management apparatus 15 receives the medium ID 70 from the medium use terminal 19 by the communication network 4 and the network interface unit 52 by the data capture function program 524, the medium ID 70 is checked against the medium ID 90 of the use management DB 514. If there is a match, the record is acquired (step 143).

  If there is no match between the medium ID 70 and the medium ID 90 of the usage management DB 514, information indicating that a record related to the medium ID 70 is not registered in the user management DB 514 is transmitted (step 144). The error message screen 200 is displayed from the output unit 36, and the process is forcibly terminated (step 145). If the medium ID 70 and the medium ID 90 in the usage management DB 514 match, information indicating that a record related to the corresponding medium ID 70 is registered in the user management DB 514 is notified (step 144).

  The user performs biometric authentication in accordance with a predetermined procedure using the authentication device 12 connected to the medium use terminal 19, and inputs the user ID 81 from the input unit 35 (step 146). The control unit 30 of the medium use terminal 19 transmits the input user ID 81 to the management device 15 through the user authentication interface unit 33 (step 147).

  When the control unit 50 of the management apparatus 15 receives the user ID 81 from the medium use terminal 19 by the communication network 4 and the network interface unit 52 by the data capture function program 524, the control unit 50 records the user ID 81 and the acquired medium ID 70 in a record. The recorded user ID 91 is collated (step 148).

  If it is determined that the received user ID 81 and the user ID 90 related to the acquired medium ID 70 do not match, the control unit 50 of the management device 15 has not registered the user in the use management DB 514 by the data notification function program 523. Information indicating this is transmitted to the medium use terminal 19 (step 149), the error message screen 200 is displayed from the output unit 36 of the medium use terminal 19 and the process is forcibly terminated (step 1410).

  If it is determined that the received user ID 81 matches the user ID 90 related to the acquired medium ID 70, information indicating that it is registered in the use management DB 514 is similarly notified (step 149).

  The control unit 50 of the management device 15 receives the MAC address data as the terminal information from the medium use terminal 19 by the data capture function program 524 by the communication network 4 and the network interface unit 34 (Step 1411). The obtained MAC address data is collated with the usable PC data related to the acquired medium ID 70 (step 1412).

  If it is determined that the received MAC address data and the usable PC data related to the acquired medium ID 70 do not match, the control unit 50 of the management device 15 uses the data notification function program 523 to display information indicating that no matching information exists. The message is transmitted to the medium use terminal 19 (step 1413), the error message screen 200 is displayed from the output unit 36 of the medium use terminal 19, and the process is forcibly terminated (step 1414). If the received MAC address data matches the usable PC data related to the acquired medium ID 70, information indicating that the matched information exists is similarly notified (step 1414).

  The control unit 50 of the management apparatus 15 may acquire the use time (from the control unit 30 of the medium use terminal 19 as the time data of the system clock) from the medium use terminal 19 by the data capture function program 524. 4 and the network interface unit 34 (step 1410), the received use time data is compared with the available time zone data 74 related to the acquired medium ID 70 (step 1415).

  If it is determined that the received use time data is not within the time zone of the usable time zone data 74 related to the acquired medium ID 70, information indicating that the usage time data is inappropriate outside the usable time zone is transmitted to the medium use terminal 19. Then (step 1416), the error message screen 200 is displayed from the output unit 36 of the medium use terminal 19, and the process is forcibly terminated (step 1417). If it is determined that the received use time data is within the time zone of the usable time zone data related to the acquired medium ID 70, information indicating appropriate use within the usable time zone is similarly notified (step 1416). ).

  When the information indicating that all the determination processes described above are received, the control unit 50 of the management apparatus 15 transmits information indicating that the use is permitted to the medium use terminal 19 by the data notification function program 523 (step 1418). ) The medium use terminal 19 displays the process completion screen 210-1 shown in FIG. 21 from the output unit 36, and the process ends (step 1419).

  Further, each time the file is used in the medium use terminal 19, the file name of the used file is transmitted to the management device 15 by the file use history notification function program 324 (step 1420). The control unit 50 of the management apparatus 15 acquires the file name data acquired from the medium use terminal 19 in accordance with the medium classification 71 of the medium management DB 511 recorded on the medium ID 70 related to the external storage medium 10 being used previously acquired. Then, it is registered in the use file name 84 of the secret use history DB 512 or the use history DB 513 (step 1421).

  Next, a processing flow executed when the user confirms the usage history of the external storage medium 10 will be described. FIG. 15 is a sequence diagram showing information processing at the time of usage history confirmation according to an embodiment of the present invention.

  First, the user inputs a file category and a file search condition to be viewed from the input unit 44 of the system management terminal 3 (step 150). The control unit 40 of the system management terminal 3 transmits the input file classification and file search condition to the management device 15 via the communication network 4 by the file usage history browsing function program 423 (step 151). As the file classification and file search condition input at this time, conditions generally used as a search key for file search, such as a file name and the latest file update time, may be appropriately set.

  The control unit 50 of the management apparatus 15 searches the secret use history DB 512 or the use history DB 513 by the data search function program 520 using the file classification and file search conditions received by the data capture function program 524, and matches the information. If there is, it is acquired (step 152).

  If there is no information that matches the search condition, information indicating that there is no matching information is transmitted to the system management terminal 3 (step 153), and an error message screen 200 is displayed from the output unit 45 of the system management terminal 3 for processing. Is forcibly terminated (step 154). If there is information that matches the search condition, information indicating that the matching information exists is similarly notified (step 153). Further, the acquired file information is transmitted to the system management terminal 3 (step 155), and the file can be viewed from the output unit 45 (step 156).

  Next, a processing flow when registering a new external storage medium 10 in the system 1 will be described. FIG. 16 is a sequence diagram showing information processing during external person registration according to an embodiment of the present invention.

  First, the user of the external storage medium 10 to which the RFID tag R is attached holds the external storage medium 10 over the RFID reader 2 connected to the system management terminal 3, and inputs the medium ID 70 through the RFID interface unit 42 (step 170). ). If the medium ID 70 cannot be read for some reason (step 171), the error message screen 200 is displayed from the output unit 45 of the system management terminal 3 and the process is forcibly terminated (step 172). If the medium ID 70 can be read, the control unit 40 of the system management terminal 3 transmits the medium ID 70 input through the network interface unit 44 to the management apparatus 15 (step 171).

  When the control unit 50 of the management apparatus 15 receives the medium ID 70 from the system management terminal 3 by the communication network 4 and the network interface unit 52 by the data capturing function program 524, the control unit 50 determines the received medium ID 70 and the medium ID 70 of the medium management DB 511. If there is a matching medium ID 70, a record relating to the medium ID 70 is obtained (step 173). If there is no matching medium ID 70, it is determined that the external storage medium 10 is newly registered, and a new record is generated and registered in the medium management DB 511 for the received medium ID 70.

  The user inputs an available user and an available job title from the input unit 44 of the system management terminal 3. The control unit 40 of the system management terminal 3 transmits the input usable user and usable job title to the management device 15 through the network interface unit 44 (step 175).

  The control unit 50 of the management device 15 registers the usable user and usable post data received by the data fetch function program 524 in the medium management DB 511 by the data registration function program 522 (step 176).

  Thereafter, the control unit 50 of the management apparatus 15 transmits information indicating that the registration is completed to the system management terminal 3 by the data notification function program 523 (step 177), and the system management terminal 3 completes the processing from the output unit 45. The screen 210-1 is displayed and the process ends (step 178).

  As described above in detail, according to an embodiment of the present invention, an external storage medium such as a USB memory is prevented from being illegally used through theft or the like, and confidential information stored in the external storage medium is stored. Leakage can be prevented.

  If the medium ID is identification code data stored in an RFID tag provided in the external storage medium, the medium ID attached to the external storage medium can be easily read by the RFID reader, The medium ID cannot be visually recognized from the outer surface of the external storage medium.

  The second information processing apparatus includes a usage history database having a record in which a medium ID of the external storage medium is associated with a file name for identifying a file read from the external storage medium and used. And when the user reads a file from the external storage medium by the third information processing apparatus that is communicably connected to the second information processing apparatus, the third information processing apparatus Data including the medium ID of the external storage medium being read and the file name of the file read and used from the medium ID is transmitted to the second information processing apparatus, and the second information processing apparatus acquires the data If the medium ID and the file name are recorded in the usage history database in association with each other, which user takes out each external storage medium The one of the use history of using which files can be recorded.

1 is a diagram showing the overall configuration of an external storage medium management system 1 according to an embodiment of the present invention. It is a functional block diagram which shows the structure of the medium management terminal 13 used for the external storage medium management system 1 by one Embodiment of this invention. It is a functional block diagram which shows the structure of the medium use terminal 19 used for the external storage medium management system 1 by one Embodiment of this invention. It is a functional block diagram which shows the structure of the system management terminal 3 used for the external storage medium management system 1 by one Embodiment of this invention. It is a functional block diagram which shows the structure of the management apparatus 15 used for the external storage medium management system 1 by one Embodiment of this invention. It is a functional block diagram which shows the structure of the personnel information management apparatus 5 used for the external storage medium management system 1 by one Embodiment of this invention. 3 is a diagram illustrating a configuration of a medium management DB 511 stored in a management device 15. FIG. It is a figure which shows the structure of secret use log | history DB512 stored in the management apparatus 15, and use log | history DB513. It is a figure which shows the structure of use management DB514 stored in the management apparatus 15. FIG. It is a figure which shows the structure of user management DB515 stored in the management apparatus 15. It is a figure which shows the structure of the affiliation management DB611 stored in the management apparatus 15. It is a sequence diagram which shows the information processing at the time of carrying out the external storage medium by one Embodiment of this invention. It is a sequence diagram which shows the information processing at the time of the external storage medium return by one Embodiment of this invention. It is a sequence diagram which shows the information processing at the time of external storage medium use by one Embodiment of this invention. It is a sequence diagram which shows the information processing at the time of the external storage medium use log | history confirmation by one Embodiment of this invention. It is a sequence diagram which shows the information processing at the time of external storage medium information registration by one Embodiment of this invention. It is a figure which shows the example of a menu screen displayed on the medium management terminal 13 by one Embodiment of this invention. It is a figure which shows the example of a screen of the screen which prompts RFID input by one Embodiment of this invention. It is a figure which shows the example of a screen which prompts execution of biometrics authentication by one Embodiment of this invention. It is a figure which shows the example of a screen of the error message screen by one Embodiment of this invention. It is a figure which shows the example of a screen of the process completion display screen by one Embodiment of this invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 External storage medium management system 2 RFID reader 3 System management terminal 4 Communication network 5 Personnel information management apparatus 10 External storage medium 12 Authentication apparatus 13 Medium management terminal (1st information processing apparatus)
15 management device (second information processing device)
19 Medium use terminal 20, 30, 40, 50, 60 Control unit 70, 80, 90 Medium ID
72 User 81, 91, 100 User ID
511 Medium management database R RFID tag

Claims (5)

An external storage medium management method for managing an external storage medium to which a medium ID, which is a unique identification code, is assigned, and uses a medium ID reader for reading the medium ID and the external storage medium An authentication device for authenticating the user by comparing a user ID, which is an identification code assigned to each user, with user-specific information, which is information unique to the user, the medium ID reader, and A first information processing apparatus that is communicably connected to the authentication apparatus, and a second information processing apparatus that is communicably connected to the first information processing apparatus;
The first information processing apparatus acquires the second information by acquiring the medium ID read from the external storage medium by the medium ID reading apparatus and the user ID acquired from the user by the authentication apparatus. Sent to the processing unit,
The second information processing apparatus includes a medium management database including a record including the medium ID and a user ID of a user associated with the user ID of an external storage medium having the medium ID. Searching the medium management database by the medium ID acquired from the first information processing apparatus;
When the second information processing apparatus determines that the user ID associated with the medium ID includes the user ID acquired from the first information processing apparatus, the first information processing apparatus Transmitting information indicating that the user is allowed to take out the external storage medium,
A method for managing an external storage medium.   2. The method of managing an external storage medium according to claim 1, wherein the medium ID is identification code data stored in an RFID tag provided in the external storage medium. The second information processing apparatus includes a usage history database having a record in which a medium ID of the external storage medium is associated with a file name that identifies a file read from the external storage medium and used. And when the user reads a file from the external storage medium by a third information processing apparatus that is communicably connected to the second information processing apparatus, the third information processing apparatus Transmitting the medium ID of the external storage medium being used and the data including the file name of the file read from and used to the second information processing apparatus;
The second information processing apparatus records the acquired medium ID in association with the file name in the usage history database.
The method of managing an external storage medium according to claim 1, wherein: A second information processing apparatus used in an external storage medium management method for managing an external storage medium to which a medium ID that is a unique identification code is assigned,
Comparing a user ID, which is an identification code assigned to each user who uses the medium ID reader and the external storage medium, which reads the medium ID with user-specific information which is information unique to the user The first information processing apparatus is connected to be communicable with an authentication apparatus that performs authentication of the user, and is communicably connected.
A medium management database having a record including the medium ID and a user ID of a user associated with the user ID of an external storage medium having the medium ID, and transmitted from the first information processing apparatus; The medium ID reading device reads the medium ID read from the external storage medium and the user ID acquired from the user by the authentication device, and searches the medium management database by the acquired medium ID. And
When it is determined that the user ID associated with the medium ID includes the user ID acquired from the first information processing apparatus, the external storage medium by the user is stored in the first information processing apparatus. A control unit that transmits information that permits the taking-out of
A second information processing apparatus. A second information processing apparatus used in an external storage medium management method for managing an external storage medium to which a medium ID that is a unique identification code is assigned, and for reading the medium ID Authentication for authenticating the user by comparing a user ID, which is an identification code assigned to each user who uses the apparatus and the external storage medium, with user-specific information, which is information unique to the user Use of a user who is communicably connected to a first information processing apparatus which is communicably connected to the apparatus, and which is associated with the medium ID and a user who can use the external storage medium having the medium ID. A second information processing apparatus having a medium management database having a record including a person ID,
Acquiring the medium ID transmitted from the first information processing apparatus and read from the external storage medium by the medium ID reading apparatus and the user ID acquired from the user by the authentication apparatus;
Searching the medium management database by the acquired medium ID;
When it is determined that the user ID associated with the medium ID includes the user ID acquired from the first information processing apparatus, the external storage medium by the user is stored in the first information processing apparatus. Sending information to allow the user to take out,
A program characterized by having executed.

Images