JP2010003206A - Information processor, information processing method, and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To solve the problem that the conventional information processor can not properly notify login and logout failures. <P>SOLUTION: This information processor includes: a login receiving part 101 for receiving login information being information to be used for login; an authentication part 102 for performing authentication by using the login information received by the login receiving part 101; a login determination part 104 for using an authentication result by the authenticating part 102 to determine whether the login fails; a login failure information storage part 105 for storing login failure information which is information showing that the login fails and includes at least a portion of the information input during the login when the login determination part 104 determines that the login fails; and a login failure information transmitting part 106 for transmitting the login failure information stored by the login failure information storage part 105 at predetermined timing that is designated in advance. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to an information processing apparatus that records and reports information related to login and logout.

As an authentication system for reducing the risk of leakage of authentication information and ensuring higher security, an authentication table for storing the first terminal and the user ID in association with each other and an authentication matrix are generated and stored in the authentication table. And a matrix generation means for transmitting to the first terminal and a login request including the user ID transmitted by the second terminal, and generating an input pattern in which a predetermined input method based on the authentication matrix is designated. Accepts pattern generation means for storing in the authentication table and transmitting to the second terminal, authentication data and user ID input to the second terminal, and the received authentication data corresponds to the user ID in the authentication table To determine whether it matches the authentication data generated based on the authentication matrix and input pattern There has been known a system including an authentication unit that transmits an authentication success message to a business server when they match. (For example, refer to Patent Document 1).
Japanese Patent Laid-Open No. 2008-27222 (first page, FIG. 1 etc.)

  However, the conventional information processing apparatus has a problem that information indicating failure cannot be properly transmitted when login or logout for obtaining authentication of operation of software or the like fails. It was.

  For example, it was impossible to notify the software administrator that the user failed to log in or log out.

  For this reason, it has been impossible to appropriately report the risk indicated by unauthorized login or logout failure due to inappropriate operation.

  The information processing apparatus according to the present invention uses a login reception unit that receives login information that is information used for login, which is an operation for authenticating authority for an operation on software, and the login information received by the login reception unit. The authentication unit that performs authentication, the login determination unit that determines whether or not the login has failed using the authentication result by the authentication unit, and the login determination unit determines that the login has failed. Login failure information storage unit for storing login failure information that is information indicating that the login failure information is information including at least a part of information input at the time of login, and login failure information stored by the login failure information storage unit. The information processing apparatus includes a login failure information transmission unit that transmits at a predetermined timing specified in advance.

  With this configuration, it is possible to appropriately transmit information indicating a login failure. For example, a login failure can be notified to a user other than the user who failed to log in, such as an administrator. In addition, by temporarily storing information indicating that the login has failed and transmitting the information, it is possible to notify the login failure at a desired timing other than when the login failure is determined.

  In the information processing apparatus according to the present invention, in the information processing apparatus, the login determination unit may log in when the authentication unit outputs an authentication result indicating that a predetermined number of consecutive authentications have failed. Is an information processing apparatus that determines that the system has failed.

  With this configuration, it is possible to prevent an input error or the like from being determined as a login failure.

  The information processing apparatus according to the present invention includes a login reception unit that receives login information that is information used for login, which is an operation for authenticating the authority for software operation in the information processing apparatus, and the login reception An authentication unit that performs authentication using the login information received by the unit, a logout reception unit that receives logout information that is information used for logout, and logout processing according to the logout information received by the logout reception unit. A logout unit to perform, a logout determination unit that determines whether or not a normal logout has been performed after login by the logout unit, and a logout unit when the logout determination unit determines a logout failure. Is information indicating that the The logout failure information storage unit that stores logout failure information that is information including at least a part of the received information, and the logout failure information stored by the logout failure information storage unit is transmitted at a predetermined timing specified in advance. An information processing apparatus including a logout failure information transmission unit.

  With this configuration, logout failure can be notified appropriately. In particular, by sending logout failure information including at least a part of the information entered at the time of login, for example, it is easy to grasp the login status before logout failure, such as what kind of user failed to logout. Can do. Further, for example, a user who has not directly operated the information processing apparatus 1 other than the user who failed to log out can be notified of the logout failure. In addition, by temporarily storing and transmitting information indicating that logout has failed, it is possible to notify logout failure at a desired timing other than when logout failure is determined.

  Further, in the information processing apparatus according to the present invention, in the information processing apparatus, the logout determination unit determines whether or not logout after the previous login has been performed by the logout unit at the time of activation, and logout is not performed. In this case, the information processing apparatus determines a logout failure.

  With this configuration, it is possible to determine a logout failure and appropriately notify it.

  According to the information processing apparatus of the present invention, it is possible to appropriately transmit information indicating login or logout failure.

Hereinafter, embodiments of an information processing apparatus and the like will be described with reference to the drawings. In addition, since the component which attached | subjected the same code | symbol in embodiment performs the same operation | movement, description may be abbreviate | omitted again.
(Embodiment)

  FIG. 1 is a block diagram of an information processing apparatus according to this embodiment.

  The information processing apparatus 1 includes a login reception unit 101, an authentication unit 102, a login success information storage unit 102a, an authentication information storage unit 103, a login determination unit 104, a login failure information storage unit 105, a login failure information storage unit 105a, and a login failure. An information transmission unit 106, a process execution unit 107, a logout reception unit 108, a logout unit 109, a logout determination unit 110, a logout failure information storage unit 111, a logout failure information storage unit 111a, and a logout failure information transmission unit 112 are provided.

  The login reception unit 101 receives login information that is information used for login. Login is an operation for authenticating the authority for software operation. For example, the login is an operation for identifying the user's identity at the start of using the software and the authority such as the access right when using the software and receiving authentication necessary for using the software. In other words, it is an operation of receiving proof that the user is eligible. Alternatively, it may be considered as a process of acquiring information indicating that authentication has been received. Login is a concept including what is also called sign-in or logon. The software described here may be any software, for example, application software or operating system software. As a specific example, the software is software constituting a business system that is a system used for business such as accounting processing or business management. The login information may be information that can identify the user. The user may be an individual or an organization such as a department or a group. The login information is, for example, identification information for identifying a logged-in user, a password, a combination thereof, or the like. The login information can also be considered as authentication information that is information used for authentication. The login information usually includes user identification information (hereinafter referred to as user identification information). The user identification information is, for example, a user employee number, a user name, an email address, or the like. The user identification information, password, and the like are usually character string information. The reception described here is, for example, reception from an input unit, reception of an input signal transmitted from another device, reading of information from a recording medium, or the like. The login information input means may be anything such as a numeric keypad, keyboard, mouse or menu screen. The login reception unit 101 can be realized by a device driver for input means such as a numeric keypad and a keyboard, control software for a menu screen, and the like.

  The authentication unit 102 performs authentication using the login information received by the login receiving unit 101. Authentication by the authentication unit 102 is authentication for login. Specifically, it is determined whether or not the login information matches authentication information that is information used for authentication prepared in advance. If they match, it is authenticated that the logged-in user is a user who has a proper authority to operate the software. That is, authentication is successful. Here, the successful authentication is the successful login. If they do not match, the logged-in user is not recognized as a user who has a right to operate the software. That is, authentication has failed. As described above, for example, a process for performing authentication by determining whether or not the login information and the authentication information match is referred to herein as an authentication process. The authentication unit 102 transmits information indicating the authentication result to, for example, a login determination unit 104 described later. The authentication unit 102 may give the user an opportunity to perform the authentication process again as many times as specified in advance when the authentication fails. For example, if the authentication fails, the login reception unit 101 may receive input of login information again and repeat the authentication process until the number of times specified in advance is reached. Then, when the number of times the login information does not match the authentication information reaches a predetermined number of times in succession, the login information may be rejected so that the user cannot log on. That is, so-called lockout may be performed. In addition, the information specifying the number of authentication failures for determining the lockout described above may be stored in advance in a lockout condition storage unit (not shown), for example.

  The coincidence described here is not necessarily a complete coincidence, and may be a partial coincidence. The authentication information may be considered as login information registered in advance. The authentication information is information including login information of a user who can log in, for example. For example, when the login information is a combination of user identification information and a password, a combination of login information and a password for a user who may be authenticated may be used as the authentication information. In this case, it is determined that the authentication is successful when the combination of the login information and the password of the login information matches one of the combination of the login information and the password that is the authentication information. In addition to these pieces of information, the authentication information includes the authority of the user who is permitted to authenticate, for example, information indicating the function of the software that can be used by the user and the authority such as the access right to the resource. You may do it. In the present embodiment, a case where authentication is performed using authentication information stored in an authentication information storage unit 103 described later will be described as an example.

  If the authentication is successful, the authentication unit 102 may output the authentication result as long as the software operation by the authenticated user is possible as a result. For example, the authentication unit 102 instructs a reception unit (not shown) or a process execution unit 107 (to be described later) that executes software to receive a logged-in user's operation and perform processing according to the operation when the authentication is successful. May be output. Further, the authentication unit 102 simply outputs an output indicating that the authentication has been successful to a reception unit (not shown), the process execution unit 107, and the like, and the reception unit, the process execution unit 107, etc. It is also possible to accept the operation and execute processing according to the operation.

  When the authentication unit 102 determines that the authentication is successful, that is, the login is successful, the authentication unit 102 may transmit information indicating that the login is successful (hereinafter, login success information) to the process execution unit 107 or the like, or a memory (not illustrated). Or may be stored in a storage medium such as a hard disk. The login success information may be any information as long as it can indicate the login success. For example, at least a part of the login information input upon successful login as described above, Information including information on the time of success. When the login information includes, for example, user identification information and a password, the login success information may be information such as user identification information and a password input to the login reception unit 101 when it is determined that the login is successful. . Here, as an example, a case where login success information is stored in the login success information storage unit 102a will be described.

  The authentication unit 102 can usually be realized by an MPU, a memory, or the like. The processing procedure of the authentication unit 102 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

  The login success information storage unit 102a can store the login success information described above. The login success information storage unit 102a is realized by a nonvolatile storage medium such as a hard disk that can be written and erased.

  The authentication information storage unit 103 can store one or more pieces of authentication information described above. There is no limitation on the route, timing, or the like in which the authentication information is stored in the authentication information storage unit 103. The authentication information is, for example, information configured by a combination of user identification information as described above and a password associated with the identification information. The authentication information storage unit 103 is preferably a non-volatile storage medium such as a hard disk, ROM, or optical disk, but can also be realized by a volatile recording medium.

  The login determination unit 104 determines whether login has failed using the authentication result of the authentication unit 102. Specifically, the login determination unit 104 determines whether authentication has failed using information indicating the authentication result output from the authentication unit 102. For example, when the authentication unit 102 outputs information indicating that the authentication has failed, the authentication unit 102 determines that the login has failed. However, the login determination unit 104 does not necessarily have to determine that the login has failed once it has received information indicating the authentication failure from the authentication unit 102 once. Specifically, the login determination unit 104 may determine a login failure when a result indicating authentication failure of m times (m is an integer of 1 or more) designated in advance is acquired from the authentication unit 102. That is, the login failure may be determined from the number of pieces of information indicating the authentication failure continuously transmitted from the authentication unit 102. The login determination unit 104 can usually be realized by an MPU, a memory, or the like. The processing procedure of the login determination unit 104 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

  The login failure information accumulating unit 105 is information indicating that login failed when the login determining unit 104 determines login failure, and is information including at least a part of information input at the time of login. Failure information is stored in a recording medium (not shown) or the like, specifically added. The login failure information is, for example, information that only indicates login failure, information about the time when login failure is determined, or information about the time when the login reception unit 101 received login identification information that was input at the time of login failure. There may be. Time information can be obtained from a clock or the like (not shown). The time information may be information including date and day information. The same applies to the following. The login failure information is information such as user identification information and password input to the login reception unit 101 when it is determined that login has failed, for example, when the login information includes user identification information and a password. Also good. Further, when it is determined that the login has failed due to a plurality of authentication failures, all pieces of user identification information, passwords, and other information input during the plurality of authentications may be accumulated as login failure information. Moreover, the information which combined these information may be sufficient. Here, information obtained by converting at least a part of information input at the time of login is also considered as at least a part of the information input at the time of login. For example, the login failure information may be information including at least information obtained by converting user identification information into a user name or the like. The recording medium for storing the login failure information can be realized by a volatile recording medium or the like, but is preferably a nonvolatile recording medium such as a hard disk or an optical disk. This is because the record of login failure can be stored for a long time. Here, as an example, a case where login failure information is accumulated in a login failure information storage unit 105a described later will be described as an example. The login failure information storage unit 105 can usually be realized by an MPU, a memory, or the like. The processing procedure of the login failure information storage unit 105 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

  The login failure information storage unit 105a can store the login failure information described above. The login failure information storage unit 105a is realized by a writable nonvolatile storage medium such as a hard disk.

  The login failure information transmission unit 106 reads the login failure information accumulated by the login failure information accumulation unit 105 and transmits it at a predetermined timing specified in advance. There is no limitation on the timing at which the login failure information transmitting unit 106 transmits the login failure information. For example, the login failure information transmission unit 106 may transmit the accumulated login failure information at a predetermined or indefinite time, or one or more predetermined number of login failure information has been accumulated. The login failure information may be transmitted in response to a trigger designated in advance, such as triggering an event. The information specifying the transmission timing is stored in advance in a timing information storage unit (not shown), for example. Moreover, the transmission destination of login failure information is not ask | required. For example, the login failure information transmission unit 106 transmits the login failure information to a transmission destination designated in advance. Specifically, the transmission destination designated in advance is a third party (for example, an administrator of the system or the information processing apparatus 1) other than the user who failed to log in. Further, for example, a transmission destination management table (not shown) in which information indicating a transmission destination corresponding to the user identification information included in the login failure information is associated with user identification information registered in advance and information specifying the transmission destination. Or the like, and the login failure information may be transmitted to the acquired transmission destination. The transmission destination designation information, which is information for designating the transmission destination, is stored in advance in a transmission destination designation information storage unit (not shown), for example. The login failure information transmission unit 106 may transmit the login failure information by electronic mail. Sending by e-mail may be sending the login failure information in the body of the e-mail or attaching the login failure information to the e-mail. The information specifying the transmission destination of the login failure information is, for example, an e-mail address or address information such as an IP address. The login failure information transmission unit 106 may transmit the entire login failure information or only a part thereof. Specifically, when the login information includes user identification information and a password, the user identification information and the password that are input at the time of authentication failure may be transmitted, or only the user identification information may be transmitted. . Alternatively, the login failure information may be converted using a conversion table or the like prepared in advance, and the login failure information obtained by the conversion may be transmitted. For example, the user identification information of the login failure information may be converted into the user's employee number or name using a conversion table in which the user identification information is associated with the employee's employee number or name. Further, the part of the login failure information that is transmitted may be changed according to the transmission destination. For example, the software administrator is sent all of the login failure information, for example, the user identification information at the time of authentication failure, the password, and the time information at which the login failed, to the user corresponding to the user identification information used at the time of the authentication failure. May transmit only user identification information or only time information when login failed. The login failure information transmission unit 106 is usually realized by a wireless or wired communication unit, but may be realized by a broadcasting unit. Moreover, you may provide MPU, memory, etc. for performing a conversion process.

  The process execution unit 107 executes various processes. Specifically, the process execution unit 107 performs various processes in accordance with, for example, an operation from the user during a period from when the authentication unit 102 determines that authentication is successful, that is, when login is successful until logout is performed. Execute. The processing content performed by the processing execution unit 107 is not limited. Various processes are realized by software or the like, for example. This software may be considered to be stored in advance in a storage medium such as a hard disk (not shown). In addition, the process execution unit 107 may not accept user operations except for some operations such as login and termination after login or after logout is performed, or in response to an operation from the user. The execution of the process is restricted so that the process is not performed. Depending on whether or not the user is logged in, the process execution unit 107 may control the process performed by the process execution unit 107, or the authentication unit 102, another control unit (not shown), or the like. May be performed. The process execution unit 107 can usually be realized by an MPU, a memory, or the like. The processing procedure of the processing execution unit 107 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

  In the information processing apparatus 1 according to the present embodiment, the description is omitted, but an accepting unit that accepts an operation on the processing execution unit 107 and an output such as transmission and display of a processing result by the processing execution unit 107 as appropriate. An output unit for performing the above may be provided.

  The logout receiving unit 108 receives logout information that is information used for logout. Logout is, for example, processing for ending use of a system (apparatus) or software. Logout may be considered as processing for canceling authentication of a user who has already logged in. The logout information may be any information as long as it can instruct logout, and may be a command for instructing logout. Moreover, the same information as the above-described login information may be used. The logout information may also be used as information for instructing the end of the process being executed by the process execution unit 107. The reception described here is, for example, reception from an input unit, reception of an input signal transmitted from another device, reading of information from a recording medium, or the like. The logout information input means may be anything such as a numeric keypad, keyboard, mouse or menu screen. The logout accepting unit 108 can be realized by a device driver of an input unit such as a numeric keypad or a keyboard, menu screen control software, or the like.

  The logout unit 109 performs logout processing according to the logout information received by the logout reception unit 108. The logout process is, for example, a process of outputting information indicating that logout has been performed, information for instructing software execution to stop, and information for instructing termination of operation reception to the process execution unit 107. . The logout process may be a process of deleting information such as records remaining in the management table of the logged-in user, for example. Specifically, it may include a process of deleting information processed by the processing execution unit 107 after login, information received by a receiving unit (not shown), etc. stored in a storage medium such as a memory (not shown). Further, for example, when the login unit succeeds, the authentication unit 102 accumulates information indicating that the user has logged in, for example, a so-called flag in the login success information storage unit 102a and the like. However, information such as these flags may be deleted. When the authentication unit 102a accumulates the login success information as described above in a storage medium (not shown), the process of deleting the login success information may be a logout process. The login success information may be considered as information indicating that the user has logged in. The logout unit 109 can usually be realized by an MPU, a memory, or the like. The processing procedure of the logout unit 109 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

  The logout determination unit 110 determines whether or not the logout unit 109 has performed normal logout after login at a timing specified in advance. The timing designated in advance may be any timing. For example, the logout determination unit 110 determines whether or not normal logout has been performed when a reception unit (not shown) receives an instruction to end execution of software. Further, it may be determined whether or not a normal logout has been performed when a predetermined time has elapsed since the last operation received after login, or when a so-called timeout has occurred. Further, it may be determined whether or not a normal logout has been performed at the end of the previous time when the information processing apparatus 1 which is the own apparatus is started or when the software to be logged in is started. By making a determination at the time of startup, it is possible to detect unsuccessful logout such as when the software is forcibly terminated or the system is down. The timing designated in advance here is designated by, for example, judgment timing information stored in a judgment timing information storage unit (not shown). The normal logout is, for example, logout performed in response to a logout instruction received by the logout receiving unit 108. Alternatively, it may be considered as logout in which logout processing by the logout unit 109 as described above, for example, processing for deleting login success information or data obtained by execution of processing by the processing execution unit 107 is performed.

  The logout determination unit 110 may determine whether or not a normal logout has been performed. For example, it may be determined whether or not a logout instruction is accepted after the last login performed before that at a timing designated in advance. In this case, if a logout instruction has already been received, it is determined that the user has been logged out normally, and otherwise, it has been determined that the user has not been logged out normally. Whether login success information accumulated in the login success information storage unit 102a after login, data obtained by software execution, and the like have been deleted from the login success information storage unit 102a, a storage medium (not shown), and the like. Thus, it may be determined whether or not the user is logged out normally. In this case, when the login success information, the data obtained by executing the software, and the like have been deleted, it is determined that the user has been logged out normally. The logout determination unit 110 can usually be realized by an MPU, a memory, or the like. The processing procedure of the logout determination unit 110 is usually realized by software, and the software is recorded in a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

  In addition, as an example of when normal logout was not performed, for example, for software that does not automatically log out at the time of termination, after logging in, the software is terminated without logging out, Examples include a case where the software is forcibly terminated after login, a case where the information processing apparatus 1 itself is down, or a case where a time during which no operation is performed after login exceeds a predetermined time.

  The logout failure information accumulating unit 111 is information indicating that logout has failed when the logout determination unit 110 determines that logout has failed, and is a logout that is information including at least a part of information input at the time of login. Failure information is stored in a recording medium (not shown). The information input at the time of login described here is, for example, the above-described login information. The logout failure information further includes information indicating logout failure, information such as a user name acquired by a search using user identification information input at the time of login, time when logout failure is determined, logout Information indicating the time estimated to have failed may be included. The time when logout is estimated to be unsuccessful is, for example, information on the time acquired by the process execution unit 107 or the like immediately before the software is forcibly terminated or when the system is down. Here, information obtained by converting at least a part of information input at the time of login is also considered as at least a part of the information input at the time of login. For example, the logout failure information may be information including at least information obtained by converting user identification information into a user name or the like.

  It does not matter how the logout failure information storage unit 111 acquires logout failure information. For example, the logout failure information storage unit 111 may acquire logout failure information that is at least a part of the login information received by the login reception unit 101 when the authentication unit 102 determines that the login is successful. . In this case, the login receiving unit 101 needs to store the login information received when the login is successful in a storage medium (not shown). Further, the logout failure information storage unit 111 may acquire logout failure information from the login success information when the login success information as described above includes at least a part of the login information. The recording medium for storing the logout failure information can be realized by a volatile recording medium or the like, but is preferably a non-volatile recording medium such as a hard disk or an optical disk. This is because the logout failure record can be stored for a long time. Here, as an example, a case where logout failure information is accumulated in a logout failure information storage unit 111a described later will be described as an example. The logout failure information storage unit 111 can usually be realized by an MPU, a memory, or the like. The processing procedure of the logout failure information storage unit 111 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

  The logout failure information storage unit 111a can store the logout failure information described above. The logout failure information storage unit 111a is realized by a writable nonvolatile storage medium such as a hard disk.

  The logout failure information transmission unit 112 outputs the logout failure information accumulated by the logout failure information accumulation unit 111 at a predetermined timing specified in advance. Specifically, the logout failure information transmission unit 112 configures and transmits a logout failure report from the logout failure information. There is no limitation on the timing at which the logout failure information transmission unit 112 transmits logout failure information. For example, the login failure information transmission unit 106 may transmit the accumulated logout failure information at a predetermined or indefinite time, or one or more logout failure information specified in advance is accumulated. For example, logout failure information may be transmitted in response to a trigger specified in advance. Further, the transmission destination of the logout failure information is not limited. For example, the logout failure information transmission unit 112 transmits logout failure information to a transmission destination designated in advance. Further, for example, a destination management table (not shown) in which information indicating a destination corresponding to the user identification information included in the logout failure information is associated with user identification information registered in advance and information specifying the destination. Or the like, and logout failure information may be transmitted to the acquired transmission destination. The logout failure information transmission unit 112 may transmit logout failure information by e-mail. Sending by e-mail may be sending the logout failure information in the body of the e-mail or attaching the logout failure information to the e-mail. Information specifying the transmission destination of the logout failure information is, for example, an e-mail address, address information such as an IP address, or the like. The transmission destination designation information, which is information for designating the transmission destination, is stored in advance in a transmission destination designation information storage unit (not shown), for example. The logout failure information transmission unit 112 may transmit the entire logout failure information or only a part thereof. Specifically, when the logout information includes user identification information and a password, the user identification information and the password that are login information input at the time of login immediately before the logout failure is determined may be transmitted. Only user identification information may be transmitted. Alternatively, logout failure information may be converted using a conversion table prepared in advance and the logout failure information obtained by the conversion may be transmitted. For example, the user identification information of the logout failure information may be converted into the employee number or name of the user and transmitted using a conversion table in which the user identification information is associated with the employee number or name of the user. Further, the part of logout failure information to be transmitted may be changed according to the transmission destination. For example, all logout failure information, for example, user identification information at the time of authentication failure, password and time information at which login failed, is sent to the software administrator, and the user corresponding to the user identification information used at the time of authentication failure is sent to the software administrator. May transmit only user identification information or only time information when logout fails. The logout failure information transmitting unit 112 is usually realized by a wireless or wired communication unit, but may be realized by a broadcasting unit. Moreover, you may provide MPU, memory, etc. for performing a conversion process.

  Next, an example of the operation of the information processing apparatus will be described using the flowchart of FIG. Note that here, when the information processing apparatus 1 determines whether or not a normal logout has been performed at the end of the previous time, and because of m (m is an integer of 1 or more) authentication failures due to incorrect login information. The case where login failure is determined will be described as an example.

  (Step S201) The logout determination unit 110 determines whether normal logout has been performed at the end of the previous time. For example, it is determined whether login success information is stored in the login success information storage unit 102a. If it is not stored, it is determined that normal logout has been performed. If it is stored, it is determined that normal logout has not been performed. If normal logout has been performed, the process proceeds to step S203. If not, the process proceeds to step S202.

  (Step S202) The logout failure information storage unit 111 stores logout failure information in a logout failure information storage unit 111a (not shown). Here, for example, the login success information detected in step S201 is read, and the whole or a part thereof is accumulated as logout failure information. Then, the process proceeds to step S203.

  (Step S203) The login determination unit 104 substitutes 1 for a counter k.

  (Step S204) The login receiving unit 101 determines whether login information has been received. If accepted, the process proceeds to step S205. If not accepted, the process proceeds to step S214.

  (Step S205) The authentication unit 102 performs an authentication process using the login information received in step S204. Then, it is determined whether or not the authentication is successful. Here, as an example, the authentication process is performed by determining whether or not the authentication information includes a record that matches the login information. If a matching record is detected, it is determined that the authentication has been performed. If the authentication is successful, the process proceeds to step S206. If the authentication is not successful, the process proceeds to step S210. If the authentication is not successful, the login information is temporarily stored in a storage medium (not shown) or the like here.

  (Step S206) The authentication unit 102 configures login success information including all or part of the login information received in step S204, and accumulates it in the login success information storage unit 102a.

  (Step S207) The process execution unit 107 starts executing various processes. For example, the process execution unit 107 executes a process according to a user operation or the like.

  (Step S208) The logout receiving unit 108 determines whether or not an input of logout information has been received. If accepted, the process proceeds to step S209. If not accepted, the process returns to step S208.

  (Step S209) The logout unit 109 performs logout processing. Here, the logout process is a process including at least a process of deleting the login success information accumulated in step S206, for example. Then, the process returns to step S203.

  (Step S210) The login determination unit 104 determines whether or not the value of the counter k is greater than or equal to m. If it is greater than or equal to m, the process proceeds to step S211, and if not greater than m, the process proceeds to step S213.

  (Step S211) The login determination unit 104 obtains a determination result indicating that the login has failed.

  (Step S212) The login failure information storage unit 105 stores the login failure information in the login failure information storage unit 105a. Here, it is assumed that the login failure information is information including login information received by the login receiving unit 101 in the past m times. The past m times of login information can be acquired by reading from a storage medium (not shown) as described above, for example. Then, the process returns to step S203.

  (Step S213) The login determination unit 104 increments the value of the counter k by 1.

  (Step S214) The login failure information transmission unit 106 determines whether it is time to transmit login failure information. Here, it is assumed that the transmission timing is a time specified in advance. When it is time to transmit, that is, when a predesignated time has elapsed, the process proceeds to step S215, and when it is not time to transmit, the process proceeds to step S216.

  (Step S215) The login failure information transmission unit 106 reads the login failure information from a storage unit or the like in which the login failure information is stored, and transmits the login failure information to a transmission destination designated in advance. Note that the login failure information once transmitted may be added with information such as so-called flag information indicating that transmission is unnecessary so that the login failure information is not transmitted again. Then, the process returns to step S204.

  (Step S216) The logout failure information transmission unit 112 determines whether it is time to transmit logout failure information. Here, it is assumed that the transmission timing is a time specified in advance. When it is time to transmit, that is, when a predesignated time has elapsed, the process proceeds to step S217, and when it is not time to transmit, the process returns to step S204.

  (Step S217) The logout failure information transmission unit 112 reads out the logout failure information from a storage unit or the like in which the logout failure information is stored, and transmits it to a transmission destination designated in advance. Note that information such as so-called flag information indicating that transmission is unnecessary may be added to logout failure information once transmitted so that transmission is not performed again. Then, the process returns to step S204.

  In the flowchart of FIG. 2, the process ends when the power is turned off, the process is interrupted, the system is down, or the like during login or logout.

  Hereinafter, a specific operation of the information processing apparatus according to the present embodiment will be described. Here, a case where the information processing apparatus 1 itself executes software to be logged in or logged out will be described as an example. However, in the present invention, the information processing apparatus 1 itself does not necessarily have to execute software. For example, the information processing apparatus 1 may be an information processing apparatus that manages login and logout with respect to software operations of other information processing apparatuses (not shown).

  First, it is assumed that a user whose user identification information is “YAMAMOTO” gives an instruction to display a login screen to the information processing apparatus 1 in order to operate software, for example. Note that the display timing of the login screen is not limited as long as it is not logged in. The login screen may always be displayed when no one is logged in. Further, it may be displayed when the software is started. The display timing is not limited as long as the user is not logged in.

  FIG. 3 is a diagram illustrating a display example of a login screen. The login screen has an input field 30 for user identification information, a password input field 31, and an OK button 32 for instructing reception of the input information. For example, the login screen is displayed on the monitor 120 which is a display device connected to the information processing apparatus 1.

  Next, the user operates the mouse or keyboard to input “YAMAMOTO” in the user identification information input field 30 and “PQ01AA” in the password input field 31 and press the OK button 32. Suppose.

  In response to the operation of the OK button 32, the login receiving unit 101 receives the user identification information “YAMAMOTO” input in the input field 30 and the password “PQ01AA” input in the input field 31 as login information.

  Next, the authentication unit 102 performs an authentication process using the user identification information and the password that are login information received by the login reception unit 101.

  FIG. 4 is a diagram illustrating an example of authentication information stored in advance in the authentication information storage unit 103. The authentication information may be considered as authentication information registered in advance, that is, registration authentication information. The authentication information has attributes of “user identification information” and “password”. “User identification information” is user identification information, and “password” is a password associated with user identification information of the same record. Here, a record corresponds to a line.

  Specifically, the authentication unit 102 searches the authentication information shown in FIG. 4 for a record in which the combination of the user identification information received by the login receiving unit 101 and the password matches, and authenticates if there is a matching record. If it is determined that there is no matching record, it is determined that the authentication has failed. Here, it is assumed that a record that matches the combination of the user identification information “YAMAMOTO” received by the login receiving unit 101 and the password “PQ01AA” cannot be detected. Therefore, it is determined that the authentication has failed. Then, the user identification information “YAMAMOTO” and the password “PQ01AA”, which are login information received by the login receiving unit 101, are temporarily stored in a storage medium such as a memory (not shown). At this time, information on the time when the authentication failure is determined is also stored in association with the login information.

  The login determination unit 104 performs processing for determining login failure based on the processing result of the authentication unit 102. Here, it is determined from the processing result indicating that the authentication output from the authentication unit 102 has failed, whether or not the login has failed. Specifically, it is determined whether or not the number of consecutive failed authentications is a predetermined number m or more. Assuming that the number of times m designated in advance is 3, the number of times of receiving the processing result indicating that the authentication has failed is the first time, so it is not determined that the login has failed.

  For this reason, the information processing apparatus 1 displays on the monitor 120 or the like that the authentication has failed, displays a message prompting the user to input login information again, and displays the same login input screen as in FIG.

  Thereafter, for example, in the same manner, it is assumed that the user repeatedly inputs an incorrect password and continuously performs three consecutive authentication failures.

  The login determination unit 104 obtains a determination result indicating that the login has failed because the processing results indicating that the authentication has failed has been received three times in total. Then, each time the authentication unit 102 determines the authentication failure, the login failure information accumulation unit 105 determines the login information for three authentication processes stored in the storage medium such as a memory and the authentication failure associated with them. The read time information is read out and stored in the login failure information storage unit 105a as login failure information.

  FIG. 5 is a diagram illustrating login failure information stored in the login failure information storage unit 105a. The login failure information has attributes of “input identification information”, “password”, and “time”. “Input identification information” and “password” are user identification information and password included in login information input by the user. “Time” is information of the time when the authentication unit 102 determines that the authentication has failed. Here, it is assumed that the time information includes date information.

  After that, when it is time to specify login failure information in advance, the login failure information transmission unit 106 reads the login failure information stored in the login failure information storage unit 105a, and stores it in the body of the email. Place the read login failure information. In addition, the login failure information transmission unit 106 reads the mail address of the software administrator registered in advance in a storage medium (not shown), for example, “systemadmin@xxx.com”. Then, an e-mail in which login failure information is arranged in the text is transmitted with this mail address as a destination.

  FIG. 6 is a diagram showing a display example of an email of login failure information received by the software administrator who is the destination of the email. In other words, this e-mail is a report in which all user identification information input at the time of login failure, a password, and information on the time when authentication failed are described. Therefore, the software administrator can determine that a login failure has occurred from this e-mail and what the login information entered at that time is.

  Next, it is assumed that a user whose user identification information is “KINOSHITA” inputs user identification information “KINOSHITA” as login information and a password “P6457SA” using the same input screen as FIG. Then, the login reception unit 101 receives the input login information.

  The authentication unit 102 performs the authentication process using the login information received by the login reception unit 101 as described above. Specifically, the authentication information shown in FIG. 4 is searched for a record that matches the combination of the user identification information “KINOSHITA” and the password “P6457SA”. Here, since a matching record is detected, it is determined that the authentication is successful.

  The authentication unit 102 includes login success information storage unit 102a that stores login success information including user identification information “KINOSHITA”, which is login information received by the login reception unit 101, password “P6457SA”, and current time information. To accumulate.

  FIG. 7 is a diagram showing login success information stored in the login success information storage unit 102a. The login success information has attributes of “input identification information”, “password”, and “time”. “Input identification information” and “password” are user identification information and password included in login information input by the user. “Time” is information of the time when the login is determined to be successful.

  As a result of the authentication process by the authentication unit 102, the user's authority to operate the software is authenticated, and the process execution unit 107 and the like accept the operation by the user and execute the process according to the user's operation.

  Next, consider a case where the user gives a logout instruction by operating a mouse or the like while logged in. For example, when the user selects a menu for executing logout from a menu screen or the like, the logout receiving unit 108 receives a logout instruction.

  The logout unit 109 performs logout processing according to the logout instruction received by the logout reception unit 108. The logout process is a process including a predetermined process for software such as a process of closing an open file or record, or a process of deleting information temporarily stored in a storage medium such as a memory. However, here, logout processing includes processing for deleting login success information stored in the login success information storage unit 102a.

  When such logout processing is completed, the user is logged out and can log in again.

  Here, instead of performing the logout process in response to the logout instruction as described above, for example, consider a case where the information processing apparatus 1 is in an operation stop state, that is, the system is down due to some trouble or an operation error.

  When the information processing apparatus 1 starts up immediately after that, the information processing apparatus 1 determines whether or not the logout has been normally performed at the end of the previous operation or the like. Specifically, the logout determination unit 110 determines whether the login success information is stored in the login success information storage unit 102a.

  If the login success information is not stored, the logout determination unit 110 determines that the logout has been performed normally. And it will be in the state which can accept login as mentioned above, and processings, such as login similar to the above, will be executable.

  On the other hand, when the login success information is not deleted and stored, the logout determination unit 110 determines that the logout is not normally performed. Then, the logout failure information storage unit 111 reads the login success information stored in the login success information storage unit 104, and configures logout failure information including user identification information and password information included in the login success information. The logout failure information storage unit 111a accumulates.

  FIG. 8 is a diagram illustrating an example of logout failure information accumulated in the logout failure information storage unit 111a. The logout failure information has attributes of “input identification information” and “password”. “Input identification information” and “password” are user identification information and password included in login information input by the user.

  Then, as described above, the information processing apparatus 1 is in a state in which login can be accepted, and processing such as login similar to the above can be executed.

  After that, when it is time to specify logout failure information in advance, the logout failure information transmission unit 112 reads out the logout failure information stored in the logout failure information storage unit 111a and adds it to the body of the e-mail. Place the read login failure information. In addition, the logout failure information transmission unit 112 reads the email address of the software administrator registered in advance in a storage medium (not shown). Then, an e-mail in which login failure information is arranged in the text is transmitted with this mail address as a destination.

  FIG. 9 is a diagram illustrating an example of an e-mail display of logout failure information received by the software administrator who is the e-mail destination. In other words, this electronic mail is a report in which user identification information and a password of a user who has logged in are recorded immediately before a logout failure is detected. Therefore, the software administrator can determine that a logout failure has occurred from this e-mail or a user who did not log out normally.

  Here, in order to determine whether or not the logout has been normally performed, it is determined whether or not the login success information is stored. However, in the present invention, it is deleted at the time of logout. Whether or not the logout has been normally performed may be determined based on whether or not the stored information, for example, information stored in a memory or a hard disk during software processing is deleted.

  Further, the logout failure information described above may simply be information indicating that a logout failure has been detected.

  As described above, according to the present embodiment, a login failure can be appropriately notified. For example, a user who has not directly operated the information processing apparatus 1 other than the user who failed to log in, such as an administrator, can be notified of the login failure. In addition, by temporarily storing information indicating that the login has failed in the login failure information storage unit 105a and transmitting the information, it is possible to notify the login failure at a desired timing other than when the login failure is determined. it can.

  Further, according to the present embodiment, a logout failure can be notified appropriately. For example, the logout failure can be notified to a user who has not directly operated the information processing apparatus 1 other than the user who has failed to log out or the user who has next attempted to log in, such as an administrator. Further, by temporarily storing information indicating that logout has failed in the logout failure information storage unit 111a and transmitting the information, it is possible to notify the logout failure at a desired timing other than when the logout failure is determined. it can.

  In addition, by notifying the failure of login or logout as described above, it is possible to reduce the risk of unauthorized operations performed on the software.

  In addition, according to the present embodiment, it is possible to notify an auditor or the like of a history of inappropriate login or logout as a report as a part of audit records.

  In the above embodiment, each process (each function) may be realized by centralized processing by a single device (system), or by distributed processing by a plurality of devices. May be.

  Further, in the above embodiment, two or more communication means existing in one device, for example, a login failure information transmission unit and a logout failure information transmission unit may be physically realized by one medium. Needless to say.

  In the above embodiment, information related to processing executed by each component, for example, information received, acquired, selected, generated, transmitted, and received by each component. In addition, information such as threshold values, mathematical formulas, addresses, etc. used by each component in processing is retained temporarily or over a long period of time on a recording medium (not shown) even when not explicitly stated in the above description. It may be. Further, the storage of information in the recording medium (not shown) may be performed by each component or a storage unit (not shown). Further, reading of information from the recording medium (not shown) may be performed by each component or a reading unit (not shown).

  Further, although cases have been described with the above embodiments where the information processing apparatus is a stand-alone, the information processing apparatus may be a stand-alone apparatus or a server apparatus in a server / client system. In the latter case, the output unit or the reception unit receives an input or outputs a screen via a communication line.

  In each of the above embodiments, each component may be configured by dedicated hardware, or a component that can be realized by software may be realized by executing a program. For example, each component can be realized by a program execution unit such as a CPU reading and executing a software program recorded on a recording medium such as a hard disk or a semiconductor memory.

  The software that realizes the information processing apparatus in each of the above embodiments is a program as described below. That is, the program includes a login reception unit that receives login information, which is information used for login, which is an operation for authenticating the authority to operate the software, and the login information received by the login reception unit. An authentication unit that performs authentication, a login determination unit that determines whether or not login has failed using an authentication result by the authentication unit, and the login determination unit determines that login has failed. Login failure information storage unit that stores login failure information that is information indicating failure and includes at least a part of information input at the time of login, and login failure information stored by the login failure information storage unit. , Function as a login failure information transmission unit that transmits at a predetermined timing specified in advance It is because of the program.

  The program also includes a login reception unit that receives login information that is information used for login, which is an operation for authenticating the authority for software operation, and the login information received by the login reception unit. An authentication unit that performs authentication, a logout reception unit that receives logout information that is information used for logout, a logout unit that performs logout processing according to the logout information received by the logout reception unit, and the logout A logout determination unit that determines whether or not a normal logout has been performed after logging in by the unit, and information indicating that logout has failed when the logout determination unit determines that logout has failed Of the information entered at login Logout failure information storage unit that stores logout failure information that is at least partly included, and logout failure information transmission that outputs logout failure information stored by the logout failure information storage unit at a predetermined timing specified in advance This is a program for functioning as a part.

  In the program, the functions realized by the program do not include functions that can be realized only by hardware. For example, a function that can be realized only by hardware such as a modem or an interface card in an acquisition unit that acquires information or an output unit that outputs information is not included in the function realized by the program.

  Further, the computer that executes this program may be singular or plural. That is, centralized processing may be performed, or distributed processing may be performed.

  FIG. 10 is a schematic diagram showing an example of the appearance of a computer that executes the program and realizes the information processing apparatus according to the embodiment. The above-described embodiment can be realized by computer hardware and a computer program executed on the computer hardware.

  10, a computer system 900 includes a computer 901 including a CD-ROM (Compact Disk Read Only Memory) drive 905 and an FD (Floppy (registered trademark) Disk) drive 906, a keyboard 902, a mouse 903, a monitor 904, and the like. Is provided.

  FIG. 11 is a diagram showing an internal configuration of the computer system 900. In FIG. 11, in addition to the CD-ROM drive 905 and the FD drive 906, a computer 901 is connected to an MPU (Micro Processing Unit) 911, a ROM 912 for storing a program such as a bootup program, and the MPU 911. A RAM (Random Access Memory) 913 that temporarily stores program instructions and provides a temporary storage space, a hard disk 914 that stores application programs, system programs, and data, and an MPU 911 and a ROM 912 are interconnected. And a bus 915. The computer 901 may include a network card (not shown) that provides connection to the LAN.

  A program that causes the computer system 900 to execute the functions of the information processing apparatus according to the above-described embodiment is stored in the CD-ROM 921 or FD 922, inserted into the CD-ROM drive 905 or FD drive 906, and transferred to the hard disk 914. May be. Instead, the program may be transmitted to the computer 901 via a network (not shown) and stored in the hard disk 914. The program is loaded into the RAM 913 when executed. The program may be loaded directly from the CD-ROM 921, the FD 922, or the network.

  The program does not necessarily include an operating system (OS) or a third-party program that causes the computer 901 to execute the functions of the information processing apparatus according to the above-described embodiment. The program may include only a part of an instruction that calls an appropriate function (module) in a controlled manner and obtains a desired result. How the computer system 900 operates is well known and will not be described in detail.

  The present invention is not limited to the above-described embodiment, and various modifications are possible, and it goes without saying that these are also included in the scope of the present invention.

  As described above, the information processing apparatus or the like according to the present invention is suitable as an information processing apparatus or the like that records and reports information related to login and logout, and particularly performs reports and the like regarding login and logout failures. It is useful as an information processing device.

The block diagram of the information processing apparatus concerning embodiment of this invention Flow chart for explaining the operation of the information processing apparatus The figure which shows the example of a display of the login screen for demonstrating operation | movement of the information processing apparatus. The figure which shows an example of the information for authentication for demonstrating operation | movement of the information processing apparatus The figure which shows the login failure information for demonstrating operation | movement of the information processing apparatus The figure which shows the example of a display of the email of login failure information for demonstrating operation | movement of the information processing apparatus The figure which shows the login success information for demonstrating operation | movement of the information processing apparatus The figure which shows an example of the logout failure information for demonstrating operation | movement of the information processing apparatus The figure which shows the example of a display of the email of logout failure information for demonstrating operation | movement of the information processing apparatus Schematic diagram showing an example of the appearance of a computer that implements the information processing apparatus The figure which shows an example of the internal structure of the computer which implement | achieves the information processing apparatus

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Information processing apparatus 101 Login reception part 102 Authentication part 102a Login success information storage part 103 Authentication information storage part 104 Login judgment part 105 Login failure information storage part 105a Login failure information storage part 106 Login failure information transmission part 107 Process execution part 108 Logout acceptance unit 109 Logout unit 110 Logout determination unit 111 Logout failure information storage unit 111a Logout failure information storage unit 112 Logout failure information transmission unit

Claims (8)

A login reception unit that receives login information, which is information used for login, which is an operation for authenticating the authority for the operation on the software;
An authentication unit that performs authentication using the login information received by the login reception unit;
Using the authentication result by the authentication unit, a login determination unit that determines whether login has failed,
Login failure information that accumulates login failure information that is information indicating that login has failed and includes at least a part of information input at the time of login when the login determination unit determines that login has failed. A storage unit;
An information processing apparatus comprising: a login failure information transmission unit that transmits login failure information accumulated by the login failure information accumulation unit at a predetermined timing specified in advance. The information processing apparatus according to claim 1, wherein the login determination unit determines that login has failed when the authentication unit outputs an authentication result indicating that a predetermined number of consecutive authentications have failed. A login reception unit that receives login information, which is information used for login, which is an operation for authenticating the authority for software operation;
An authentication unit that performs authentication using the login information received by the login reception unit;
A logout acceptance unit that accepts logout information, which is information used for logout,
A logout unit that performs logout processing according to logout information received by the logout reception unit;
A logout determination unit configured to determine whether or not a normal logout has been performed after login by the logout unit;
Logout failure information for storing logout failure information, which is information indicating that logout has failed when the logout determination unit determines that logout has failed, and is information including at least a part of information input at the time of login. A storage unit;
An information processing apparatus comprising: a logout failure information transmission unit that outputs logout failure information accumulated by the logout failure information accumulation unit at a predetermined timing specified in advance. 4. The information according to claim 3, wherein the logout determination unit determines whether or not logout after the previous login has been performed by the logout unit at the time of startup, and determines logout failure if the logout has not been performed. Processing equipment. An information processing method performed using a login reception unit, an authentication unit, a login determination unit, a login failure information storage unit, and a login failure information transmission unit,
A login reception step for receiving login information, which is information used for login, wherein the login reception unit is an operation for authenticating authority for an operation on software;
An authentication step in which the authentication unit performs authentication using the login information received in the login reception step;
The login determination unit uses the authentication result of the authentication step to determine whether login has failed,
When the login failure information storage unit determines login failure in the login determination step, the login failure information is information indicating that login has failed, and is information including at least a part of information input at the time of login Login failure information storage step for storing failure information;
An information processing method comprising: a login failure information transmission step in which the login failure information transmission unit transmits the login failure information accumulated in the login failure information accumulation step at a predetermined timing specified in advance. An information processing method performed using a login reception unit, an authentication unit, a logout reception unit, a logout unit, a logout determination unit, a logout failure information storage unit, and a logout failure information transmission unit,
A login reception step for receiving login information, which is information used for login, wherein the login reception unit is an operation for authenticating the authority for software operation;
An authentication step in which the authentication unit performs authentication using the login information received in the login reception step;
A logout accepting step in which the logout accepting unit accepts logout information which is information used for logout;
A logout step in which the logout unit performs logout processing in accordance with the logout information received in the logout reception step;
A logout determination step in which the logout determination unit determines whether or not a normal logout has been performed after login in the logout step, at a predetermined timing;
When the logout failure information storage unit determines that logout has failed in the logout determination step, the logout is information indicating that logout has failed and includes at least a part of the information input at the time of login Logout failure information accumulation step for accumulating failure information;
An information processing method comprising: a logout failure information transmission step in which the logout failure information transmission unit transmits the logout failure information accumulated in the logout failure information accumulation step at a predetermined timing specified in advance. Computer
A login reception unit that receives login information, which is information used for login, which is an operation for authenticating the authority for the operation on the software;
An authentication unit that performs authentication using the login information received by the login reception unit;
Using the authentication result by the authentication unit, a login determination unit that determines whether login has failed,
Login failure information for storing login failure information, which is information indicating that login has failed and includes at least part of the information input at the time of login when the login determination unit determines that login has failed. A storage unit;
A program for causing a login failure information transmission unit to function as a login failure information transmission unit that transmits login failure information accumulated by a login failure information accumulation unit at a predetermined timing specified in advance. Computer
A login reception unit that receives login information, which is information used for login, which is an operation for authenticating the authority for software operation;
An authentication unit that performs authentication using the login information received by the login reception unit;
A logout acceptance unit that accepts logout information, which is information used for logout,
A logout unit that performs logout processing according to logout information received by the logout reception unit;
A logout determination unit that determines whether or not a normal logout has been performed after login by the logout unit at a predetermined timing;
Logout failure information for storing logout failure information, which is information indicating that logout has failed when the logout determination unit determines that logout has failed, and is information including at least a part of information input at the time of login. A storage unit;
A program for functioning as a logout failure information transmission unit that outputs logout failure information accumulated by a logout failure information accumulation unit at a predetermined timing specified in advance.

Images