JP2010130240A - Recording medium, system for sharing communication connection setup information, method of managing communication connection setup information, and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a recording medium which performs data management of communication connection setup information, a system for sharing communication connection setup information, a method of managing communication connection setup information, and programs. <P>SOLUTION: The recording medium is used for the system for sharing communication connection setup information to perform secure communications between network-connected communication devices. The recording medium has a transmission and receiving means for transmitting and receiving the communication connection setup information, a storage means for storing the communication connection setup information received from the communication device through the transmission and receiving means, a removal condition determination means for determining whether the stored communication connection setup information satisfies predetermined removal conditions, and a removal control means for removing the communication connection setup information if determined to satisfy the removal conditions through the removal condition determination means. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to a recording medium, a communication connection setting information sharing system, a communication connection setting information management method, and a program, and in particular, a recording medium for managing data of communication connection setting information, a communication connection setting information sharing system, and a communication connection setting information management method. And the program.

  Unlike wired communication, wireless networks that have been rapidly spreading in recent years can communicate without being physically connected. Since it can be easily intercepted due to its characteristics, mutual authentication information for uniquely determining a connection and performing secure communication, sharing of an encryption key for encrypted communication, and the like are necessary before the first connection.

  Further, since security is important in wired communication, it may be necessary to store similar security settings in wireless communication.

  Such connection information (hereinafter also referred to as association information) is generally exchanged using a secure means and stored in a nonvolatile memory or the like. The stored association information is used as it is in the next connection. However, this has been conventionally interpreted as the complexity of security communication centered on wireless communication, and means for easily exchanging this association information have been devised.

  Association information sharing is broadly classified into an In Band method for exchanging using the intended main communication itself and an Out Of Band method for exchanging using another route. In addition, a composite technique has been proposed in which only the minimum authentication information used in the In Band method is shared in the Out Of Band method, and the association information sharing itself uses the In Band method using the authentication information.

  In recent years, as an Out Of Band method, exchange and sharing of association information has been performed by applying a technology that communicates at a lower speed and closer than a main communication (see Patent Documents 1 and 2) such as NFC (Near Field Communication). Promising and practical application has progressed. It is characterized by excellent usability by ensuring physical security in order to exchange connection information in the almost contacted state and easily exchanging association information with an intuitive operation without the need to connect lines.

  The NFC communication method includes a token method in which an NFC communication device that plays the role of a reader / writer writes data to an NFC token in the form of a contactless IC card, and passes data through the card. There are two types of Peer To Peer methods in which NFC-equipped devices exchange data directly.

  When pairing mobile devices such as mobile communication terminals or between mobile devices and stationary devices, NFC pairing using the Peer To Peer method enables extremely intuitive operation. On the other hand, for example, a combination of a stationary device such as an MFP (multifunction printer) and an information processing device such as a desktop PC (personal computer), a fixed wireless LAN (Local Area Network) access point, and a number of stationary devices When pairing a combination, it is difficult to bring the devices close to each other, and the Peer To Peer method is not a realistic pairing method, and token type pairing is used.

  For token pairing, for example, using security device media such as contactless IC (Integrated Circuit) cards, the setting data (association information) for secure communication of the main communication path between devices is shared. The technique to do is proposed (refer patent document 3). FIG. 9 shows an association information sharing system related to FIG. First, (1) the security device 81 reads information unique to the device 1 from the communication device 80-1, (2) stores the information unique to the device 1, and (3) the communication device 80-2 When information unique to the device 1 is notified from the device 81, (4) the communication device 80-1 and the communication device 80-2 share the information unique to the device 1 by storing the information unique to the device 1 sent. I can do it. Here, the information unique to the device 1 includes identification information unique to each device, setting values necessary for communication between devices, information necessary for generating an encryption key and an encryption key used for encryption of a communication path, security, and the like. -Association information such as device-specific information. (5) The communication device 80-2 makes a communication start request to the communication device 80-1 based on the information unique to the device 1 acquired from the security device 81, and performs secure (safe) data communication. I can do it.

  However, in the above token method, the association information for secure communication of the main communication means is temporarily stored in the IC card, so that in the case of theft or loss, the device equipped with the same NFC pairing application is used. There is a possibility that the connection may be inadvertently left, which may be a security problem.

  As described above, in order to avoid inadvertent connection using association information, the following techniques have been proposed.

  For example, Patent Document 4 proposes a secure system in which a key for use of content, usage conditions, and the like are written on a card medium and various processes are performed before and after the card is moved.

  Patent Document 5 is a technique related to a method for managing stored data, mainly assuming an NFC form such as a portable device, and performs processing to prevent access by a discard flag.

  Patent Document 6 proposes a security system in which a central management device connected remotely controls a reader / writer to prevent unauthorized reading / writing on a card, with billing as a target.

In this way, various information for protecting data on the card medium is written, the discard flag is managed to make it appear that there is no existing data, read / write control is consolidated in the central management system, etc. All methods deal with security issues through complex processing.
JP 2008-512891 A JP 2008-72533 A JP 2007-129320 A WO2005-096157 JP 2005-196410 A JP 2004-295502 A

  However, a technique for dealing with security problems by performing complicated processing on the card medium as described above cannot escape from the risk of cracks as long as there is data to be protected. In addition, complicated implementation / operation for management is forced, and when the main communication function is used simply by intuitive association information sharing using NFC, the original purpose is completely lost.

  In addition, it is desirable to keep the temporary information indefinitely when providing an NFC token service that exchanges and shares association information rather than information such as electronic money or billing that is absolutely retained in the first place. Most are not. It is not preferable that an external system or a user must manage the threat, and it is desirable that the lifetime of information be controlled without bothering the user.

  The present invention has been made in view of such a situation, and while maintaining the comfort of sharing communication connection setting information, the recording medium manages the data of communication connection setting information without bothering the user. The purpose is to do.

  A recording medium according to the present invention is a recording medium used in a system for sharing communication connection setting information for performing secure communication between network-connected communication devices, and the recording medium includes the communication connection setting information. Transmission / reception means for transmitting / receiving, storage means for storing the communication connection setting information received from the communication device by the transmission / reception means, and determining whether the stored communication connection setting information satisfies a predetermined deletion condition A deletion condition determining unit that deletes the communication connection setting information when the deletion condition determining unit determines that the deletion condition is met.

  A communication connection setting information sharing system according to the present invention is a communication connection setting information sharing system for sharing communication connection setting information among a plurality of communication devices, and the communication device performs first communication with another communication device. Main communication means for performing, generation means for generating the communication connection setting information, and second communication with the recording medium according to the present invention in order to share the generated communication connection setting information between the communication devices Sub-communication means.

  A communication connection setting information management method according to the present invention is a communication connection setting information management method in a recording medium used in a system for sharing communication connection setting information for performing secure communication between networked communication devices. The recording medium receives the communication connection setting information, stores the communication connection setting information received from the communication device in a storage unit, and the stored communication connection setting information is deleted in advance. A step of determining whether or not the condition is met, and a step of deleting the communication connection setting information when the determination step determines that the condition is satisfied.

  A communication connection setting information management program according to the present invention is a communication connection setting information management program in a recording medium used in a system for sharing communication connection setting information for performing secure communication between network-connected communication devices. The recording medium includes a process of receiving the communication connection setting information, a process of storing the communication connection setting information received from the communication device in a storage unit, and a deletion of the stored communication connection setting information determined in advance. A process for determining whether or not a condition is met, and a process for deleting the communication connection setting information when the determination step determines that the deletion condition is met, and causing the computer to execute the process. To do.

  According to the present invention, the recording medium can manage data of communication connection setting information without bothering the user while maintaining the comfort of sharing communication connection setting information.

  Embodiments of the present invention will be described below in detail with reference to the drawings. The embodiments described below are preferred embodiments of the present invention, and thus various technically preferable limitations are given. However, the scope of the present invention is particularly limited in the following description. As long as there is no description of the effect, it is not restricted to these aspects.

  In the present embodiment, as a main communication function that needs to perform secure communication, wireless (mainly near-to-medium distance) realized by WLAN (Wireless LAN), Bluetooth, UWB (Ultra Wide Band) or the like is mainly used. An association information sharing system between communication apparatuses (for example, an information processing apparatus or an image processing apparatus having a communication function) will be described as an example.

  Here, the association information is communication connection setting information (parameter set) such as authentication / encryption information setting for communication connection. The communication devices use the communication connection setting information in order to identify each other and perform data communication safely. The communication connection setting information is generated by, for example, a generation unit included in the communication device. The communication device shares the generated communication connection setting information with another communication device via the recording medium according to the present embodiment (sub communication unit), and performs secure communication (main communication unit).

  Further, NFC (Near Field Communication) or the like is given as an example of sub-communication means, and a card-type device incorporating a non-contact IC card-like IC chip is used as an example as a recording medium having a communication function.

(Constitution)
An association information sharing system using a recording medium according to an embodiment of the present invention will be described. FIG. 1 is an overall configuration diagram of an association information sharing system in which a recording medium according to the present embodiment is used. As shown in FIG. 1, the recording medium 1 includes an information processing apparatus 2 having a communication function, an image processing apparatus 3 such as an MFP having a communication function, and a portable communication terminal 4. The information processing device 2 and the image processing device 3 are examples of a stationary device having a communication function. The mobile communication terminal 4 has a configuration described for explaining an example in which association information is shared without using the recording medium according to the present embodiment, and is not essential in the present embodiment.

  Here, the configuration of the image processing apparatus 3 which is an example of a stationary apparatus having a communication function will be described with reference to FIG. FIG. 2 is a block diagram showing the configuration of the image processing apparatus 3 used in the association information sharing system according to this embodiment. The image processing apparatus 3 includes a main communication function and a sub communication function. The internal configuration is a general hardware / software configuration, and in addition to the RAM 37, the ROM 36, and the communication device, a non-volatile memory 35 for storing connection information elements is mounted. The software includes an association application / protocol stack for exchanging connection information centered on the OS 27 for abstracting hardware, and a security control unit 21 for storing and processing security information 28 such as association information. In the case where the nonvolatile memory 35 is not required, the mounting of the nonvolatile memory 35 is not essential, and this configuration is merely an embodiment.

  In general, when pairing is performed by sharing association information, for example, in the case of portable communication terminals or a stationary apparatus having a communication function with a portable communication terminal, it is conceivable that the devices are brought close to each other by the sub-communication means. For example, Peer To Peer communication is used as the sub-communication means.

  However, when it is difficult to bring each other close to each other, such as stationary devices, association information can be shared through a recording medium having a communication function. For example, an NFC (Near Field Communication) token may be used as the recording medium.

  As an example of the NFC token, an IC card type device in which a CPU, a ROM, and a nonvolatile memory are integrated therein and an IC (Integrated Circuit) chip that is driven by an induced current by an electric field of a reader / writer is built in can be considered. FIG. 3 is a diagram for explaining the IC card type device according to the present embodiment.

  Note that the IC card type device shown in FIG. 3 is merely an example of a token, and data for association information sharing such as a handset equipped with an NFC communication chip equipped with another power source, HDD, real-time clock, etc. is stored and portable. Any form is possible if possible.

  FIG. 4 is a block diagram of the IC card type device according to the present embodiment. FIG. 4 shows the minimum configuration in this embodiment. The IC card type device includes a non-volatile memory 40 for storing association information, a delete condition determining unit 41 for determining whether or not the delete condition is met, and a predetermined memory stored in the non-volatile memory 40 when the delete condition is met. It includes a deletion control unit 42 that deletes data, and a transmission / reception unit 43 that transmits and receives data via a network.

(Operation)
FIG. 5 is a diagram for explaining the association between data holding and state parameters for sharing association information to the IC card type device according to the present embodiment. The status parameter includes the time when the data is stored and the subsequent reading status.

  FIG. 6 is a flowchart showing operation processing of the IC card type device according to the present embodiment. In particular, operation processing in the device after the IC card type device is activated by the induced current is shown. In the example of FIG. 1, the operation processing of the IC card type device when the information processing apparatus 2 accesses the IC card type device (recording medium 1).

  When there is a service access (Read request) from the outside (Step S1 / Yes), the IC card type device performs deletion condition determination by the deletion condition determination unit 41 (FIG. 4) (Step S2). With regard to the deletion condition, not only the data exists in the memory 40, but also, for example, the time, the read count limit remaining number, and the write information content are checked to determine whether or not the deletion condition is met. Also, for example, when the number of readings is set in the association information, if the remaining number is not 0 at the time of reading this time, it does not correspond to the deletion condition, but reading is performed at this time access. A process of subtracting 1 from the remaining number of reading limit is also performed.

  If the deletion condition is met (step S3 / Yes), the deletion control unit 42 deletes the data (step S5) and passes the data to the outside. That is, the deleted empty data is returned in response to the Read request.

  On the other hand, when the deletion condition is not met (step S3 / No), the actual data is transferred to the outside. That is, a normal Read request response is performed.

  Note that the parameters shown in FIG. 5 and the deletion conditions are examples in the present embodiment, and the configuration can be flexibly changed in accordance with the purpose of the device and the mounting cost.

  Further, the deletion condition may be set when association information is set, and may be data attached to the association information, and the deletion condition determination unit 41 may determine based on the data.

  FIG. 7 shows an example of the parameter manager setting screen. Accordingly, a condition parameter for deleting data for sharing association information can be set. The above-described determination conditions and the like are also set on the setting screen as shown in FIG. In addition, the apparatus in which this setting is performed is not specifically limited. For example, the image processing apparatus which is an example of the communication apparatus illustrated in FIG. 1 may be configured to include a setting unit. In addition, since devices with setting means that can set deletion conditions are involved in the behavior of data exchange for association information sharing, implementations such as requesting login etc. to allow only the administrator to change the settings are sufficient. Conceivable.

  As described above, the NFC token such as the IC card type device according to the present embodiment is equipped with the service for sharing the association information of the main communication, and the application in the token that manages the service area stores the data temporarily. The token itself is characterized in that it deletes data for sharing association information. This prevents inadvertent connection of devices with other main communication means, avoids security deterioration due to inadvertent storage of information, and above all, secures the user of the device with the main communication function that was originally intended. It is possible to achieve use of the device by intuitively and easily performing pairing / connection of the main communication. This simply leads to cost reduction and simple implementation / operability.

  In addition, data deletion every time is not possible because, for example, it is not possible to perform operations such as pairing together a plurality of devices. As an opportunity to delete data for sharing association information, it can be considered that deletion is performed by the number of times of association information sharing (that is, the number of times data for association sharing is read from the token).

  Further, when the number of times added to the data is exceeded, the data is deleted without permitting reading at the time of read access. However, the number of times limit may be arbitrarily set.

  In the case where the NFC token is a device capable of managing an accurate time, it is possible to add time information to the data and delete it at the elapsed time. The time may be arbitrarily set.

  As mentioned earlier, only the minimum temporary authentication information for sharing association information by the In Band method may be written in the NFC token itself. In this case, the token itself may be stolen. Not accompanied. Therefore, it may be determined whether or not to delete data according to the contents of the written data. That is, the minimum temporary authentication information is not deleted, but is deleted only when the association information itself is written in the token.

  In addition, it can be set to be surely deleted without selecting whether to delete according to the contents of the data to be written. The process of always deleting is an example of a case where it is realized for strict security. It is desirable that various conditions to be deleted can be used in combination.

  The above various settings are often operated by an administrator or a service person rather than a user who actually uses the device.

  As described above, when performing pairing using tokens using sub-communication means such as NFC, the token can be used without bothering the user while maintaining the comfort of sharing association information and ensuring secure security. Data life management for sharing association information can be performed.

  Also, by changing the conditions for deleting the data in the token for sharing the association information for the main communication of the device, such as for device managers, the deletion timing is adjusted according to the number and status of the deferred devices It becomes possible. By combining the means for setting these conditions, it becomes possible to flexibly change their operation methods.

  The program for the CPU to execute the processing shown in the flowchart of FIG. 6 constitutes a program according to the present invention. As a recording medium for recording the program, a semiconductor storage unit, an optical and / or magnetic storage unit, or the like can be used. By using such a program and recording medium in a system having a configuration different from that of each of the above-described embodiments and causing the CPU to execute the program, substantially the same effects as those of the present invention can be obtained.

  Although the present invention has been specifically described based on the preferred embodiments, it is needless to say that the present invention is not limited to the above-described ones and can be variously modified without departing from the gist thereof.

1 is an overall configuration diagram of an association information sharing system in which a recording medium according to an embodiment of the present invention is used. It is a block diagram of the configuration of the image processing apparatus 3 used in the association information sharing system according to the embodiment of the present invention. It is a figure for demonstrating the IC card type device which concerns on embodiment of this invention. It is a block block diagram of the IC card type device which concerns on embodiment of this invention. It is a figure for demonstrating the correlation with the data holding | maintenance for association information sharing to the IC card type device which concerns on embodiment of this invention, and a state parameter. It is a flowchart which shows the operation | movement process of the IC card type device which concerns on embodiment of this invention. An example of the setting screen for parameter managers when setting parameters such as deletion conditions according to the embodiment of the present invention is shown. The related association information sharing system is shown.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Recording medium 2 Information processing apparatus 3 Image processing apparatus 4 Portable communication terminal 20 Application 21 Security control part 22 Communication control part 23 Operation port control part 24 File control part 25 Memory control part 26 System control part 27 OS (Operating System)
28 Security Information 29 Protocol 30 Network Protocol 31 Sub Communication Device Device Driver 32 Main Communication Device Device Driver 33 Sub Communication Device 34 Main Communication Device 35 Nonvolatile Memory 36 ROM
37 RAM
40 Nonvolatile Memory 41 Deletion Condition Determination Unit 42 Deletion Control Unit 43 Transmission / Reception Unit

Claims (11)

A recording medium used in a system for sharing communication connection setting information for performing secure communication between communication devices connected to a network,
The recording medium is
Transmitting / receiving means for transmitting / receiving the communication connection setting information;
Storage means for storing the communication connection setting information received from the communication device by the transmission / reception means;
Deletion condition determination means for determining whether or not the stored communication connection setting information matches a predetermined deletion condition;
A deletion control unit that deletes the communication connection setting information when the deletion condition determination unit determines that the deletion condition is satisfied;
A recording medium comprising:   The recording medium according to claim 1, wherein the deletion condition is given in advance to the communication connection setting information.   The recording medium according to claim 1, wherein the deletion condition determination unit determines the deletion condition triggered by a case where the communication device setting information acquisition request is accessed from the communication device.   The recording medium according to claim 1, wherein the deletion condition is that the number of times the communication connection setting information is shared reaches a certain number.   5. The deletion condition according to claim 1, wherein a time that has elapsed since the communication connection setting information was received and stored by the storage means has reached a certain elapsed time. The recording medium according to 1.   The recording medium according to claim 1, wherein the deletion condition is that the content of the communication connection setting information is a constant content. A communication connection setting information sharing system for sharing communication connection setting information between a plurality of communication devices,
The communication device
Main communication means for performing first communication with another communication device;
Generating means for generating the communication connection setting information;
Sub-communication means for performing second communication with the recording medium according to any one of claims 1 to 6, in order to share the generated communication connection setting information between the communication devices,
A communication connection setting information sharing system comprising:   The communication connection setting information sharing system according to claim 7, wherein the generation unit included in the communication device adds a deletion condition to the generated communication connection setting information.   9. The communication connection setting information sharing system according to claim 8, wherein the communication device includes setting means for arbitrarily setting the deletion condition. A communication connection setting information management method in a recording medium used in a system for sharing communication connection setting information for performing secure communication between communication devices connected to a network,
The recording medium is
Receiving the communication connection setting information;
Storing the communication connection setting information received from the communication device in a storage unit;
Determining whether the stored communication connection setting information matches a predetermined deletion condition;
Deleting the communication connection setting information when the determination step determines that the deletion condition is met;
A communication connection setting information management method comprising: A communication connection setting information management program in a recording medium used in a system for sharing communication connection setting information for performing secure communication between networked communication devices,
The recording medium is
Processing for receiving the communication connection setting information;
Processing for storing the communication connection setting information received from the communication device in a storage unit;
A process of determining whether the stored communication connection setting information matches a predetermined deletion condition;
A process of deleting the communication connection setting information when the determination step determines that the deletion condition is met;
A communication connection setting information management program characterized by causing a computer to execute.

Images