JP2010165014A - Electronic equipment device and electronic equipment device system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an electronic equipment device which prevents the unauthorized leakage of data occurring when data are written in a removable medium without undergoing predetermined authentication when not connected through a network, and to provide an electronic equipment system. <P>SOLUTION: This electronic equipment device includes: a network connection determination part 2a for determining whether or not the electronic equipment device is connected through a network; a write-in control part 2b for controlling the write-in of data in a memory card 30; and an invalidation part 2d for invalidating the write-in of the data in the memory card 30 performed by the write-in control part 2b, and for, carrying out control to invalidate the write-in of the data performed by the write-in control part 2b when the network connection determination part 2a determines that the electronic equipment device is not connected through the network. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to an electronic device apparatus and an electronic device system to which a removable medium can be attached.

  2. Description of the Related Art Conventionally, for example, some electronic apparatus devices such as an MFP (Multi Function Peripheral) device can be mounted with a removable medium such as a memory card. According to such an apparatus, it is possible to write data obtained by scanning a document or the like on a removable medium (see, for example, Patent Document 1).

JP 2007-148721 A

  However, when the electronic device is not connected to the network, the predetermined authentication cannot be performed on the removable medium. Therefore, anyone can freely write the scanned data on the removable medium, which is a security problem from the viewpoint of information leakage.

  Therefore, in view of the above technical problems, the present invention prevents electronic data from being illegally leaked when data is written to a removable medium without a predetermined authentication when not connected to a network. An object is to provide an apparatus and an electronic device system.

  In order to solve the above technical problem, the electronic device of the present invention can communicate with the outside through a network connection, and determines whether or not the network device is connected to an electronic device that can be mounted with a removable medium. A network connection determination unit; a write control unit that controls writing of data to the removable medium; and a network connection determination unit that invalidates writing of data to the removable medium by the write control unit. And the write control means based on the state of invalidation by the invalidation means and the invalidation means for controlling to invalidate the writing by the write control means when it is determined that the network is not connected to the network. And informing means for informing the state of whether or not writing is possible.

  In addition, the electronic device system of the present invention includes an electronic device device to which a removable medium can be attached, a management device that can communicate with the electronic device device through a network connection and manages information related to permission to use the removable medium, In the electronic device system, the management device includes an input unit that inputs individual identification information of a removable medium that permits use, and a list storage unit that stores a use permission list including the individual identification information, The electronic device includes a list acquisition unit that reads the use permission list from the list storage unit, an individual identification unit that reads individual identification information of the removable medium, and a write control that controls writing of data to the removable medium. And information that matches the individual identification information is the use permission list. And a permission means for judging whether or not the information that matches the individual identification information is found in the use permission list by the permission means. And invalidating means for controlling to invalidate writing.

  According to the electronic device device of the present invention, when data is not connected to the network, it is possible to prevent the data from being illegally leaked by writing the data to the removable medium without performing predetermined authentication. Furthermore, according to the electronic device system of the present invention, whether or not data can be written to the removable medium can be efficiently managed by an external device.

(A) is a block diagram of the electronic device apparatus which concerns on the 1st Embodiment of this invention, (b) is a figure which shows notionally the function of CPU. It is a figure which shows the structural example of the operation panel part. 6 is a flowchart illustrating an operation related to network connection determination by the MFP apparatus as the electronic apparatus apparatus according to the first embodiment of the invention. 6 is a flowchart illustrating an operation of a card reading unit of the MFP apparatus as the electronic apparatus apparatus according to the first embodiment of the present invention. 6 is a flowchart illustrating an operation related to user face recognition by the MFP apparatus as the electronic apparatus apparatus according to the first embodiment of the invention. 6 is a flowchart illustrating an operation related to storage of information related to a memory card by the MFP apparatus as the electronic apparatus apparatus according to the first embodiment of the invention. It is a figure which shows an example of the format of the data stored in a memory card. 6 is a flowchart for explaining an invalidation determination operation by an invalidation unit of the MFP apparatus as the electronic apparatus apparatus according to the first embodiment of the invention. It is a figure which shows the example of a display of the writability shown on the operation panel part. 6 is a flowchart illustrating an operation related to invalidation of write control by the MFP apparatus as the electronic apparatus apparatus according to the first embodiment of the invention. (A) is a block diagram of the electronic device system which concerns on the 2nd Embodiment of this invention, (b) is a figure which shows notionally the function of CPU. It is a figure which shows the example of a display of the operation screen which performs the data registration and data deletion to a use permission list. It is a figure which shows an example of the file format of a use permission list. 10 is a flowchart for explaining an operation related to setting of a use permitted flag of the CPU 2 of the MFP apparatus 1 as an electronic apparatus apparatus according to the second embodiment of the present invention. 10 is a flowchart illustrating an operation as an invalidation unit 2c of a CPU 2 of an MFP apparatus 1 as an electronic apparatus apparatus according to a second embodiment of the present invention.

  DESCRIPTION OF EXEMPLARY EMBODIMENTS Hereinafter, preferred embodiments of an electronic device apparatus and an electronic device system according to the invention will be described with reference to the drawings. Note that the electronic device of the present invention is not limited to the following description, and can be appropriately changed without departing from the gist of the present invention.

[First Embodiment]
In the first embodiment of the present invention, when a user inserts a removable medium into an electronic device and tries to write data (for example, scan data) in the electronic device, a LAN connection state flag (NETWORK CONNECTION FLAG) And at least one of the face recognition flag (FACE RECOGNITION FLAG) is OFF, a message indicating that the removable medium cannot be used is notified to the operation panel unit. In other words, one feature is that use of the removable medium is restricted when the electronic device is not connected to the network and the user's face cannot be recognized. Details will be described below.

  FIG. 1A shows the configuration of an electronic apparatus apparatus according to the first embodiment of the present invention. As shown in the figure, an MFP apparatus 1 as an electronic apparatus apparatus includes a central processing unit (CPU) 2, a ROM (Read Only Memory) 3, a RAM (Random Access Memory) 4, and a flash. A memory 5, an operation panel unit 6, a LAN I / F (Local Area Network Interface) 7, a printer unit 8, a scanner unit 9, a camera unit 10, and a card reading unit 11 are provided. And it is connected to the network 12 via the LAN I / F 7 so as to be able to communicate. A detachable storage medium, that is, a memory card 30 as a removable medium is detachable from a card reading unit 11 for reading and writing data. The memory card 30 conceptually includes a removable storage medium such as a USB (Universal Serial Bus) memory, an SD (Secure Digital) card, a compact flash (registered trademark), or the like. In this example, the memory card 30 stores at least a vendor name 31 indicating a manufacturer and a serial number 32 as individual identification information. The MFP apparatus 1 realizes multiple functions such as printing, copying and scanning of a manuscript and the like, and capturing a user's face image.

  In such a configuration, the CPU 2 controls the entire MFP apparatus 1. Specifically, the CPU 2 implements various functions by executing the control program 100 stored in the ROM 3. That is, as shown in FIG. 1B, it functions as a network connection determination unit 2a, a writing control unit 2b, an invalidation unit 2c, and a face recognition unit 2d. The RAM 4 temporarily stores data such as data and variables necessary for the execution of the control program 100 by the CPU 2. Data such as data files and setting values that should be stored even after the power is turned off are stored in the flash memory 5 which is a nonvolatile memory. The network connection determination unit 2a determines whether or not the MFP apparatus 1 is connected to the network. The writing control unit 2b controls writing of data to the removable medium. The invalidation unit 2c invalidates writing by the write control unit 2b in a predetermined case based on conditions described later in detail. Then, the face recognition unit 2d recognizes whether or not a human face is included in the image.

  The operation panel unit 6 serving as a notification unit is configured by, for example, an LCD (Liquid Crystal Display) panel, and displays a plurality of operation keys and information for operating the MFP apparatus 1. More specifically, the operation panel unit 6 performs operation input such as selection of a function performed by the MFP apparatus 1 and input of a set value and various information displays based on a command from the CPU 2.

  Here, FIG. 2 shows a configuration example of the operation panel unit 6. The operation panel unit 6 is controlled based on a program executed by the CPU 2. For example, when the user operates a function selection key 41 on the operation panel 40 for selecting and executing a function of the MFP apparatus 1 such as copying or scanning and selects a target function, information and options regarding the function are selected. Is displayed on the LCD display section 42, and can be selected, executed and canceled by the operation key 44. It is also possible for the user to input numerical values and characters using the input keys 43 for inputting information.

  The LAN I / F 7 has a connector for connecting to the network 12, and communication can be performed by inserting a cable connected to a LAN facility such as a HUB into the connector. In a network called Ethernet (registered trademark), the connection state can be detected by detecting the presence or absence of amplitude on the signal line of the network. When the cable is connected to the connector, the CPU 2 functions as the network connection determination unit 2a and determines whether or not the network connection state is established. When it is determined that the connection state is established, data can be transmitted and received by communicating with other devices on the network 12.

  The printer unit 8 performs printing on a print medium such as paper based on an instruction from the CPU 2. In this example, the principle of an electrophotographic printer is used for printing by the printer unit 8. That is, printing is performed by adhering toner onto a drum on which an input print image is exposed by an LED (Light Emitting Diode) head, electrically transferring the toner onto a print medium, and fixing the toner by heat and pressure. When the MFP apparatus 1 is used as a printer, print data is received from an external apparatus (for example, a personal computer) via the LAN I / F 7 according to an instruction from the CPU 2 and is printed by the printer unit 8.

  The scanner unit 9 reads an image from a paper medium or the like based on an instruction from the CPU 2. An image is obtained by receiving reflected light from a medium with a CCD (Charge Coupled Device) line sensor and converting it into a digital image signal. When the copy function is selected by operating the function selection key 41 on the operation panel 40, the image data is sent to the printer unit 8 according to an instruction from the CPU 2, and printing processing is performed. When the scanner function is selected by the user's operation of the function selection key 41 on the operation panel unit 40 and the memory card 30 is selected as the storage destination, the image data is sent to the card reading unit 11 according to an instruction from the CPU 2. And it is memorize | stored as a file in the memory card 30 with which the card | curd reading part 11 was mounted | worn. In the MFP apparatus 1 as an electronic apparatus apparatus according to this embodiment, the details are described later, but invalidation is determined at the time of storage. Here, “invalidation” means prohibiting data writing to a removable medium such as the memory card 30.

  Although not shown, the camera unit 10 as an imaging unit includes an optical system, an imaging element, and an image processing unit. In response to an instruction from the CPU 2, the camera unit 10 captures a subject image that has passed through the optical system with an image sensor unit such as a CCD, converts the image into digital image data through predetermined image processing, and stores the digital image data in the memory card 30 or the like. In this example, although the details will be described later, it is also possible to recognize the image of the user's face at a predetermined timing.

  The card reading unit 11 detects that the memory card 30 has been installed in accordance with an instruction from the CPU 2 and transmits it to the CPU 2. That is, the card reading unit 11 functions as a media detection unit. When detecting the attachment of the memory card 30, the CPU 2 reads the individual identification information of the attached memory card 30 and determines the subject image (the user's (Face) is imaged. Note that the card reader 11 is provided with a plurality of slots shaped to match the type of memory card so that a plurality of types of memory cards can be read and written, and read / write of USB memory, SD card, XD card, memory stick, etc. It is good also as a form which can do.

  Hereinafter, with reference to the flowchart of FIG. 3, an operation related to network connection determination by the MFP apparatus 1 as the electronic apparatus apparatus according to the first embodiment will be described. The network connection determination unit 2a of the CPU 2 performs carrier detection of the LAN I / F 7 (S101). That is, for example, the connection state is detected by detecting the presence or absence of an amplitude on a network signal line. When a carrier is detected (S102 branches to Yes), the CPU 2 acquires an IP address from a DHCP (Dynamic Host Configuration Protocol) server (not shown) (S103). If the IP address can be acquired (S104 branches to Yes), the LAN connection status flag (NETWORK CONNECTION FLAG) is turned on (S105), and the process is terminated. If the carrier of the LAN I / F 7 cannot be detected (S102 branches to No) or the IP address cannot be acquired (S104 branches to No), the LAN status flag is turned off (S106).

  The series of processes related to the network connection determination described above may be performed, for example, at the timing when the memory card 30 as a removable memory is inserted into the card reading unit 11. The state of the set (updated) LAN connection state flag is managed by the CPU 2. That is, for example, if the memory card 30 is inserted into a slot (not shown) of the card reading unit 11 and connected to the network, NETWORK CONNECTION FLAG = ON, and if not connected, NETWORK CONNECTION FLAG = OFF. State is managed.

  Next, the operation of the card reading unit 11 by the MFP apparatus 1 as the electronic apparatus apparatus according to the first embodiment will be described with reference to the flowchart of FIG. Under the control of the CPU 2, the card reading unit 11 returns and repeats the memory card insertion detection until the insertion of the memory card 30 is detected (S201, S202). When the insertion of the memory card 30 is detected (S202 branches to Yes), the card reading unit 11 reads the serial number from the memory card 30 (S203), reads the vendor name from the memory card 30 (S204), and ends the process. To do. This read information is sent to the CPU 2.

  Next, with reference to the flowchart of FIG. 5, an operation related to user face recognition by the MFP apparatus 1 as the electronic apparatus apparatus according to the first embodiment will be described. Whether the face recognition unit 2d of the CPU 2 attempts to extract feature points such as human eyes, nose, and rho from the image based on the image taken by the camera unit 10 as the imaging means, and includes a face image. Determine whether or not.

  The CPU 2 turns off a face recognition flag (FACE RECOGNITION FLAG) indicating whether or not a face has been recognized in advance (S301), acquires a photographic image from the camera unit 10 (S302), and executes face recognition processing by the face recognition unit 2d. (S303). As a result, it is determined whether or not the face has been recognized (S304). If the face has been recognized (S304 branches to Yes), the face recognized flag is turned on (S305). On the other hand, if the face could not be recognized (S304 branches to No), the face recognized flag is turned off (S306). Thus, a series of processes related to face recognition is completed.

  The above processing may be performed at the timing when the memory card 30 is inserted into the card reading unit 11. That is, for example, at the timing when the memory card 30 is inserted into a not-shown card of the card reading unit 11, the image-taking unit (not shown) of the camera unit 10 captures a user's face photo to perform face recognition, and face recognition can be verified. If FACE RECOGNITION FLAG = ON and face recognition is not possible, FACE RECOGNITION FLAG = OFF.

  Next, with reference to a flowchart of FIG. 6, an operation related to storage of information related to the memory card 30 by the MFP apparatus 1 as the electronic apparatus apparatus according to the first embodiment will be described. When the process is started, the CPU 2 checks the state of the face recognized flag (S401). When the face recognition flag is on (S401 branches to Yes), the vendor name, serial number, and photo image of the memory card 30 are stored in the flash memory 5 (S402). On the other hand, when the flag is off (S401 branches to No), it is not saved. Thus, the process ends.

  Through such a series of processes, the CPU 2 can save the read vendor name and serial number of the memory card 30 and the photographed photograph image in the flash memory 5 as a storage means. An example of the data format is as shown in FIG. In this example, three fixed-length data areas are prepared, and the vendor name 50, serial number 51, and photographic image 52 are written and stored in the respective areas. However, the present invention is not limited to this.

  Next, with reference to the flowchart of FIG. 8, an operation related to the setting of the invalidation instruction flag by the invalidation unit 2c of the MFP apparatus 1 as the electronic apparatus apparatus according to the first embodiment will be described. The invalidation unit 2c of the CPU 2 determines whether or not the face recognized flag is turned on (S501), and if it is determined that the flag is turned on (branch S501 to Yes), the invalidation instruction flag Is turned off (S505). On the other hand, if the face recognized flag is off (S501 branches to No), it is determined whether the LAN connection status flag is on (S502). If it is on (S502 branches to Yes), it is invalid. The turn-on instruction flag is turned off (S505). On the other hand, if the LAN connection status flag is off (S502 is branched to No), the invalidation instruction flag is turned on (S503), and the write-impossibility to the medium is displayed on the operation panel 6 (S504). Thus, a series of processes related to the setting of the invalidation instruction flag is completed.

  Here, FIG. 9 shows a display example of whether or not writing is possible, which is displayed on the operation panel unit 6 as a notification means. With such a display screen 45, it is possible to notify the user of the write enabled / disabled state. In the example of FIG. 9, “Writing is not possible” is displayed, but it is needless to say that a writable state may be notified.

  Next, an operation relating to invalidation of write control by the MFP apparatus 1 as the electronic apparatus apparatus according to the first embodiment will be described with reference to a flowchart of FIG. The invalidation unit 2c of the CPU 2 receives the image data from the scanner unit 9 (S601), and determines whether or not the invalidation instruction flag is turned on (S602). If the invalidation instruction flag is off (S602 branches to No), the image data obtained by scanning is written to the memory card 30 (S603), but if the invalidation instruction flag is on (S602 branches to Yes). Does not write.

  As described above, in the first embodiment, when the network connection is not determined based on the network connection determination, the writing to the memory card is not performed by the scanner function that is not directly related to the network function. . According to this, since information cannot be written to the memory card in a device installed separately from the network, it is possible to prevent the risk of information leaking when the memory card is taken out. In addition, the memory card can be used even if the network connection is disconnected on condition that the face photo of the memory card user is stored. As a result, since evidence of use remains in the event of unauthorized use, it is possible to expect an effect of suppressing information leakage without impairing convenience.

  In addition, since a facial image is used instead of biometric authentication such as a fingerprint, an unauthorized user can be confirmed by human eyes. Further, as a description of the invalidation operation, the method of checking the face recognition flag and the LAN connection status flag has been shown, but it goes without saying that only one of the flags may be checked.

[Second Embodiment]
FIG. 11A shows the configuration of an electronic device system according to the second embodiment of the present invention. As shown in the figure, an MFP apparatus 1 that is an electronic device apparatus and a personal computer (PC) 20 that is a management apparatus are communicably connected via a LAN 15 to form a communication system. Also in this example, a memory card 30 (for example, a removable storage medium such as a USB memory, an SD card, and a compact flash (registered trademark)) that is a removable medium is included in the card reading unit 11 of the MFP apparatus 1. It is removable. Since the configuration of the MFP apparatus 1 is the same as that of the first embodiment described above, the same components are denoted by the same reference numerals, and redundant description is omitted.

  In such a configuration, in the MFP apparatus 1, the CPU 2 controls the entire MFP apparatus 1. Specifically, the CPU 2 implements various functions by executing the control program 200 stored in the ROM 3. That is, as shown in FIG. 11B, it functions as a network connection determination unit 2a, a writing control unit 2b, an invalidation unit 2c, a face recognition unit 2d, a list acquisition unit 2e, an individual identification unit 2f, and a permission unit 2g. To do. The RAM 4 temporarily stores data necessary for execution of the control program by the CPU 2 and data such as variables. Further, data such as data files and setting values that should be stored even after the power is turned off are stored in the flash memory 5 which is a nonvolatile memory. The network connection determination unit 2a determines whether or not there is a network connection. The writing control unit 2b controls writing of data to the removable medium. The invalidation unit 2c invalidates writing by the write control unit 2b in a predetermined case under conditions described later in detail. The face recognition unit 2d recognizes whether or not a human face is included in the image. The list acquisition unit 2e reads a use permission list described later from the PC 20. The individual identification unit 2f reads the individual identification information of the removable media. Then, the permission unit 2g determines whether information that matches the individual identification information is in the use permission list.

  On the other hand, in the PC 20, the CPU 25 is a central processing unit that executes a control program stored in the ROM 22, and controls the entire PC 20. Temporary data such as data and variables necessary for executing the control program is stored in the RAM 23. In the HDD (Hard Disc Drive) 24, a control program 200 such as a basic program called OS (Operating System), an application program selectively executed from the basic program according to the usage, a data file, and a power supply are turned off. However, the setting value to be stored is stored. The input operation is performed by the operation input unit 27 such as a keyboard, and information is displayed on the display unit 26. The operation input unit 27 functions as input means. The LAN I / F 21 connects to the LAN 15 to exchange data. In the PC 20, by inputting the vendor name and serial number from the operation input unit 27, a “use permission list” in which the memory card 30 to be used is recorded is created and stored as a file in the HDD 24 serving as a list storage unit. This use permission list corresponds to information regarding the use permission of the removable medium.

  FIG. 12 shows an example of an operation screen 55 for registering data in the use permission list and deleting data. After the vendor name and the serial number are input to the area 56 and the area 57 by the operation input section 27, the information input by moving the cursor to the area 58 and pressing the Y key is displayed on the display section 26. When the D key is pressed, data that matches the input information is deleted from the use permission list.

  FIG. 13 shows the file format of the use permission list. The area 60 stores the start address information of the next block (area 63), the area 61 stores the vendor name, and the area 62 stores the serial number. In the area 64 in which the next block information of the last block is stored, “0” is stored as the end meaning. The use permission list can be read by the MFP 1 via the network 15 using a Common Internet File System (CIFS) function. Of course, other file transfer methods such as FTP (File Transfer Protocol) may be used.

  Thus, when the memory card 30 is inserted into the MFP apparatus 1 with the use permission list file prepared in advance on the PC 20 as the management apparatus, the CPU 2 of the MFP apparatus 1 functions as the individual identification unit 2 f to function as a memory card. 30 vendor names and serial numbers are read and then function as the permission unit 2g.

  Hereinafter, with reference to the flowchart of FIG. 14, an operation related to setting of a use permitted flag by the permission unit 2 g of the CPU 2 of the MFP apparatus 1 as the electronic apparatus apparatus according to the second embodiment will be described. The permission unit 2g turns off the use permitted flag (S701), and reads the use permission list of the PC 20 via the LAN I / F 7 (S702). Subsequently, the permission unit 2g compares whether or not there is data in which the vendor name received from the individual identification unit 2f matches the serial number in the read use permission list (S703, S704). In this way, when the permission unit 2g finds that the end of the use permission list has been reached in a state where there is no data whose vendor name and serial number match (branch S703 to Yes), the use permission flag is turned off ( S706). On the other hand, if there is data in which the vendor name and serial number match (S704 branches to Yes), the use permitted flag is turned on (S705). In this way, a series of processing is completed.

  The state of the use permitted flag is managed by the CPU 2. The invalidation unit 2c determines whether the face recognition unit 2d shown in the first embodiment determines the face recognition completed flag and the use permitted flag set by the above processing. To invalidate.

  Hereinafter, the operation of the CPU 2 of the MFP apparatus 1 as the electronic apparatus apparatus according to the second embodiment as the invalidation unit 2c will be described with reference to the flowchart of FIG. The invalidation unit 2c of the CPU 2 determines whether or not the use permitted flag is turned on (S801). If the flag is on (S801 branches to Yes), the invalidation instruction flag is turned off (S805). On the other hand, if the use permitted flag is off (S801 branches to No), it is determined whether or not the face recognized flag is on (S802). If the face recognized flag is turned on (branch S802 to Yes), the invalidation instruction flag is turned off (S805). On the other hand, if the face recognized flag is turned off (branch S802 to No), the invalidation instruction flag is turned on (S803), and the write-impossibility to the medium is displayed on the operation panel unit 6 (S804). Thus, a series of processing related to invalidation is completed.

  With the above operation, the state of the invalidation instruction flag is detected by the invalidation unit 2c. When the invalidation instruction flag is off, the image data obtained by scanning is written in the memory card 30, but the invalidation instruction flag When is turned on, a process of not performing writing is performed in the same manner.

  As described above, according to the second embodiment, connection is made through a network by registering individual identification information of a memory card to be used in a use permission list stored in a PC as a management apparatus on the network. It is possible to enable the writing of information to the memory card with the electronic device that has been configured, and to disable the writing when it is not registered. Therefore, it is possible to expect not only the worry that data is taken out by the removable media, but also an effect that management becomes easy. Also, a device installed separately from the network cannot read the use permission list and cannot write information to the memory card. Therefore, it is possible to prevent the risk of information leakage due to the memory card being taken out. Further, on the condition that the face photo of the memory card user is saved, the memory card can be used even if the network connection is cut off or the use permission list is not registered. As a result, since evidence of use remains in the event of unauthorized use, it is possible to expect an effect of suppressing information leakage without impairing convenience.

  In addition, since a facial photograph is used instead of biometric authentication such as a fingerprint, an unauthorized user can be confirmed by human eyes. In this embodiment, as an explanation of the invalidation operation, an example in which the face recognized flag and the use permitted flag are checked is shown. However, only one of the flags may be checked.

  In addition to the MFP apparatus described above, the electronic apparatus apparatus described in each of the embodiments described above can be used for general electronic apparatus apparatuses having a removable memory writing function.

1 MFP device 2 CPU
2a Network connection determination unit 2b Write control unit 2c Invalidation unit 2d Face recognition unit 2e List acquisition unit 2f Individual identification unit 2g Permission unit 3 ROM
4 RAM
5 Flash memory 6 Operation panel 7 LAN I / F
8 Printer unit 9 Scanner unit 10 Camera unit 11 Card reading unit 20 PC
21 LAN I / F
22 ROM
23 RAM
24 HDD
25 CPU
26 Display unit 27 Operation input unit 30 Memory card

Claims (7)

In an electronic device that can communicate with the outside through a network connection and can be mounted with removable media.
Network connection determining means for determining whether or not the network is connected;
Write control means for controlling the writing of data to the removable medium;
The writing control unit invalidates the writing of data to the removable medium, and when the network connection determining unit determines that the network connection is not established, the writing by the writing control unit is invalidated. Invalidating means to control,
An electronic apparatus device comprising:   The electronic device apparatus according to claim 1, further comprising an informing unit that informs of a write permission / inhibition state by the write control unit based on a state of invalidation by the invalidation unit. Imaging means for capturing an image of a subject and obtaining an image;
Media detection means for detecting the removal of the removable media;
Face recognition means for recognizing whether a human face is included in the image;
Storage means for storing the image;
Further comprising
The invalidation means recognizes whether or not a human face is included in the image obtained by the imaging means by the face recognition means when the media detection means detects the attachment of the removable media, Is stored in the storage means, and even if the network connection determination means determines that the network connection is not established, the write control means The electronic device apparatus according to claim 1, wherein the electronic device apparatus is controlled so as not to invalidate the writing by. The invalidation state is a state of an invalidation instruction flag, and the invalidation instruction flag is turned on when invalidating data writing to the removable medium. The electronic device apparatus as described. In an electronic device system comprising: an electronic device device to which a removable medium can be attached; and a management device that can communicate with the electronic device device through a network connection and manages information related to the use permission of the removable medium.
The management device
An input means for inputting the individual identification information of the removable media permitted to be used;
A list storage means for storing a use permission list including the individual identification information,
The electronic device is
List acquisition means for reading out the use permission list from the list storage means;
Individual identification means for reading the individual identification information of the removable media;
Write control means for controlling the writing of data to the removable medium;
Permission means for determining whether information matching the individual identification information is in the use permission list;
Invalidating means for controlling to invalidate writing of data to the removable medium by the writing control means when the permission means determines that the information matching the individual identification information is not in the use permission list When,
An electronic apparatus apparatus system comprising: Imaging means for capturing an image of a subject and obtaining an image;
Media detection means for detecting the removal of the removable media;
Face recognition means for recognizing whether a human face is included in the image;
Storage means for storing the image,
The invalidation means recognizes whether or not a human face is included in the image obtained by the imaging means by the face recognition means when the media detection means detects the attachment of the removable media, Is stored in the storage means, and even if the network connection determination means determines that the network connection is not established, the write control means 6. The electronic apparatus apparatus system according to claim 5, wherein control is performed so as not to invalidate writing by the electronic device. 6. The invalidation state is a state of an invalidation instruction flag, and the invalidation instruction flag is turned on when invalidating data writing to the removable medium. The electronic device apparatus as described.