JP2011065264A - Asset management system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an asset storage apparatus which enables secure management and provision of information about presence of stored assets and users of the apparatus. <P>SOLUTION: The asset management system 10 includes the storage apparatus 100 including a display processing unit 110 and a state management unit 111. The display processing unit 110 is configured: to identify an article 1 whose right to use is owned by an authenticated user by using a state management table 125; to extract information on the article 1 and its storage partition 150 from the state management table 125; and to display the information to an output unit 106. The state management unit 111 is configured: to receive at an input unit 105 an unlocking command of the storage partition 150 storing the article 1, from the user who has a right of use of the article 1; to transmit the unlocking command to a door opening/closing mechanism 151 of the storage partition 150; and to issue a read command to a reader 153 of the storage partition 150. The state management unit 111 is further configured to store the user information as the last access person to the article 1 and to store an bringing out information as a current usage status of the article 1 in the state management table 125 of the memory unit 101, if the identification information on the article 1 can not be obtained by the reader 153. <P>COPYRIGHT: (C)2011,JPO&INPIT

Description

  The present invention relates to an asset management system, and more specifically, to a technology that enables reliable management and information provision about the presence / absence of assets and their users in an asset storage device.

  In recent years, with the diversification of electronic information, information leakage incidents by various means and routes have occurred. Therefore, even in an organization that manages electronic information = information assets, measures are being taken in various aspects from information storage to take-out in order to prevent such information leakage. On the other hand, the loss of information or theft of physical assets such as portable media that stores electronic information is a frequent cause of information leakage. To prevent information leakage for organizations, both information assets and physical assets are Management is required.

  In order to prevent unauthorized use of cabinets that store physical assets and counterfeiting of cabinet keys, IC cards and cabinets with enhanced identification functions using biometric authentication have been proposed. As a technique related to such a cabinet, for example, a technique shown in Patent Document 1 has been proposed. This technology displays the asset name stored in the cabinet on the display unit provided in the cabinet, and the correspondence data between the cabinet door, the asset to be stored, and the user ID is provided in the cabinet, and authentication is performed at the time of user authentication. This is a technology for displaying a locker accessible by the user and the assets contained in the locker.

JP 2005-126986 A

  However, the following problems remain when asset management is performed using the conventional technology. That is, since the usage status of the asset is not managed on the cabinet side, a user who wants to use the asset cannot grasp whether or not the asset is currently in the cabinet. In other words, a user who wants to use an asset cannot recognize whether or not the asset he wants to use is accommodated until the user performs an authentication operation in the cabinet and opens the door.

  Further, by searching an asset management system that manages asset numbers, storage locations, etc., it is possible to specify the asset management location and manager. However, the administrator and the user do not necessarily match. For example, an administrator may be assigned an asset purchaser, a person decided in the purchasing process, an approver having a settlement responsibility, and the administrator is not necessarily a user. In a situation where the administrator and the user do not match, the actual asset management may be left to the user.For example, when taking inventory of the asset, the administrator knows the location of the asset to be inventoried. It may not be. Even when one asset is shared by a plurality of people, the user and the usage situation change every moment, so it is difficult for an administrator or the like to always know which asset is currently located.

  SUMMARY OF THE INVENTION The present invention has been made in view of the above problems, and a main object of the present invention is to provide a technology that enables reliable management and information provision about the presence / absence of assets and their users in an asset storage device.

  The asset management system of the present invention that solves the above problems includes a communication unit that communicates with other devices, an input unit that receives input from a user, an output unit that outputs information, and the use of articles and corresponding articles stored in each storage compartment A storage unit for storing a state management table in which information of authorized users is stored in association with each other, a plurality of storage compartments for storing articles, a door opening / closing device of each storage compartment, and a storage compartment provided in each storage compartment, and Acquire a user authentication result from a reader that reads identification information from a medium attached to the article and a user authentication device capable of communication, identify an article for which the corresponding user who has succeeded in user authentication has use authority in the state management table, and A display processing unit for extracting information from the state management table and displaying the information of the article and a storage section storing the article on the output unit; and an article having the use authority. For the storage compartment, the user's unlocking instruction is received by the input unit, the unlocking command is notified to the door opening and closing device of the relevant storage compartment, the reading command is sent to the reader of the housing compartment, and the reader When the identification information of the corresponding article cannot be acquired, the user's information is stored as the last accessor of the corresponding article in the status management table of the storage unit, and information indicating that the current usage status of the corresponding article is being taken out A storage device including a state management unit for storing is included.

  According to this, among the articles accommodated in the storage device, information is presented on the articles for which the user who has been successfully authenticated has the authority to use, and the articles designated by the user in the presented information are taken out from the accommodation section. It can be detected and the state can be stored and managed. Therefore, in the asset storage device, it is possible to reliably manage and provide information about whether or not the asset is stored and its users.

In the storage device, the display processing unit obtains a user authentication result from a communicable user authentication device, and the user who has succeeded in user authentication has an authority to use, and the current usage status is being taken out. Is identified in the storage unit, information on the corresponding item and the storage compartment in which it is stored is extracted from the state management table and displayed on the output unit, and the state management unit has the use authority. The storage section is to receive the unlocking instruction of the user at the input unit, notifies the unlocking command to the door opening and closing device of the corresponding storage section, notifies the reader of the storage section of the reading command, and the reader If the identification information of the corresponding article can be acquired from the storage unit, information indicating that it is being stored as the current usage status of the corresponding article is stored in the state management table of the storage unit. There.
According to this, regarding the items taken out from the storage device, the information on the storage compartment is presented for those for which the user who has been successfully authenticated has the authority to use, and the article or the storage compartment designated by the user in the presented information is applicable. It is possible to detect that the article has been carried into the storage compartment, and to store and manage the state.

In addition, the state management unit of the storage device transmits log data including information on a user who is the last accessor of a predetermined article and information on the current usage status of the article to a communicable server. Also good. In this case, the asset management system includes a communication unit that communicates with another device, identification information of an article to be managed, identification information of a storage section of a storage device that is a storage destination of the article, and use authority of the article. A storage unit for storing an asset management table for storing information on the user having the current usage status and information on the current usage status of the article, and information on a user who is a final accessor of the predetermined article transmitted from the storage device Data update processing unit that receives log data including information on the current use status of the corresponding article and updates the record of the corresponding article in the asset management table with the last accessor and the current use status information included in the log data It is preferable to include a server provided with
According to this, with respect to a plurality of storage devices existing on the network, it is possible to collectively manage information such as the usage status of articles stored and managed there by the server.

Further, in the storage device, the state management table stores articles stored in the respective storage sections, information of users having authority to use the corresponding articles, and information on whether the corresponding articles can be taken out from a predetermined area. The state management unit reads information on whether or not to take out from a predetermined area in the state management table for the article in which information indicating that it is being taken out as the current use state is stored in the state management table. If the information indicating whether or not the item can be taken out indicates that the item cannot be taken out, the identification information of the article and the alert flag may be transmitted to the entrance / exit management device connected to be communicable. In this case, the asset management system includes a communication unit that communicates with another device, a storage unit that stores an entry / exit management table storing a user having entry / exit authority and authentication information thereof, an output unit, a user authentication device, and door opening / closing Receiving a control device and a reader installed around the door to read identification information from a medium attached to the article, the alert flag transmitted from the storage device, and the identification information of the corresponding article; A flag setting unit that sets the alert flag for the corresponding article in the management table, obtains user authentication information from the user authentication device, and performs user authentication by comparing with the authentication information in the entry / exit management table The reader is notified of a reading command, and the article identification information is acquired from the reader, and the identification information is referred to the entry / exit management table. If the alert flag is set for the article, the door opening / closing control device is notified of an unlocking stop command or locking command, or an alert notification is output to the output unit. And an article entry / exit management unit for notifying the door opening / closing control device of an unlocking command when an alert flag is not set for the article and the user authentication is successful, and the article identified by the user authentication. It is preferable to include an entrance / exit management device including an entry / exit log transmission unit that transmits log data including information of a user who is a carry-on person, identification information of the corresponding article, and exit information from the door to the server. It is. Further, in this case, the data update processing unit of the server includes information on a user who carries the article, identification information on the article, and exit information from the door, which are transmitted from the entry / exit management device. It is preferable that the log data is received, and the information of the user who carries the article and the exit information from the door included in the log data are added to the record of the article in the asset management table.
According to this, for articles taken out from the storage device, an article take-out event outside the area is detected at the boundary of a predetermined area where the entrance / exit management device is installed, and inadvertent take-out is suppressed or prohibited. Is possible. In addition, it is possible to collectively manage the take-out history of articles across such a predetermined area by the server.

The asset management system detects a communication unit communicating with another device, an interface for reading electronic data recorded in the article, and an event of reading electronic data of the article at the interface, and the article A use log transmission unit that reads the identification information of the article included in the electronic data recorded by the server and transmits log data including the identification information and information indicating that the article is in use to the server. It is good also as. In this case, the data update processing unit of the server receives the log data that is transmitted from the client and includes the identification information of the article and information that the article is in use, and the log data includes It is preferable that information indicating that the article is in use is added to the record of the article in the asset management table.
According to this, when an article taken out from a storage device is, for example, a PC or a portable storage medium, an event connected to a predetermined server device or PC is detected as an article use event, and is collectively managed by the server. It becomes possible to do.

In addition, the display processing unit of the storage device acquires a user authentication result from a communicable user authentication device, and from the corresponding user who has succeeded in user authentication, an information presentation request regarding an article that is a management target in the storage device Is received by the input unit, the storage unit identifies an article for which the corresponding user has the right to use, extracts information stored about the corresponding item from the state management table, and displays it on the output unit. When the input unit receives an information presentation request regarding an article that is a management target in a storage device other than the storage device from the corresponding user who has succeeded in authentication, The server receives the information stored in the asset management table by the server with respect to the corresponding article returned from the server. Show the parts may be. In this case, the server receives the information request from the storage device, identifies an article for which use authority is set for the corresponding user indicated by the information request in the asset management table, and stores the article regarding the article. It is preferable to provide an information provision processing unit that extracts information from the asset management table and sends it back to the storage device.
According to this, information on articles managed by the storage apparatus and information on articles managed by a storage apparatus other than the storage apparatus can be presented to the user side in the storage apparatus.

The server further includes a user information table in which authentication information of each user is stored in the storage unit, and receives authentication information of the user from a terminal connected so as to be able to communicate, and the authentication in the user information table The user authentication is executed by collating with the information, the article that the user who succeeded in the user authentication has the authority to use is specified in the asset management table, and the information stored regarding the article is extracted from the asset management table. It is good also as providing the information provision process part returned to the said terminal.
According to this, it is possible to present from the server to the user the information on the article managed by the storage device and the information on the article managed by another storage device other than the storage device.

  As described above, according to the present invention, the user can easily and surely grasp where the article = assets to be used under the organization to which the user belongs, and can reduce labor for searching for assets. On the other hand, grasping the location of an article can also prevent the article from being taken out of the organization inappropriately. Further, in addition to the administrator registered at the time of article registration, it is possible to grasp who is using the article in real time.

  Also, if the article taken out of the storage device by the user = assets is, for example, an article that is allowed to be taken out of the organization, the user is permitted to leave the room while carrying the article, but is not allowed to take out the organization. Even if the user forgets to return the permitted article and tries to leave the room, the user can be prompted to return the article by stopping unlocking the door or issuing an alert. This is also effective when an article is illegally taken outside the company.

  According to the present invention, in an asset storage device, it is possible to reliably manage and provide information about whether or not an asset is stored and its user.

It is a figure which shows the structural example of the asset management system of this embodiment. It is a figure which shows the example of a data structure of the state management table of this embodiment. It is a figure which shows the example of a data structure of the asset management table of this embodiment. It is a figure which shows the example of a data structure of the user information table of this embodiment. It is a figure which shows the example of a data structure of the cabinet management table of this embodiment. It is a figure which shows the example of a data structure of the entrance / exit management table of this embodiment. It is a figure which shows the example of a relationship between the log data in this embodiment, and an asset management table. It is a figure which shows the process flow example 1 of the asset management method of this embodiment. It is a figure which shows the example 2 of a processing flow of the asset management method of this embodiment. It is a figure which shows the example 3 of a processing flow of the asset management method of this embodiment. It is a figure which shows the example 4 of a processing flow of the asset management method of this embodiment. It is a figure which shows the example 5 of a processing flow of the asset management method of this embodiment. It is a figure which shows the process flow example 6 of the asset management method of this embodiment. It is a figure which shows the example of a display screen of this embodiment. It is a figure which shows the structural example of the asset management system which concerns on another Example.

--- System configuration ---
Embodiments of the present invention will be described below in detail with reference to the drawings. FIG. 1 is a network configuration diagram including the asset management system 10 of the present embodiment. An asset management system 10 (hereinafter, system 10) shown in FIG. 1 is a computer system that enables reliable management and information provision about the presence / absence of the asset 1 and its users in the storage device 100 for goods = assets 1. Yes, it is operated by various organizations such as companies that manage assets. An article 1 to be managed by the asset management system 10 is an article accommodated in various storage devices such as a cabinet and a key storage, for example, and a physical asset 78 that holds electronic data as an information asset 75 in a computer-readable manner. (Example: PC, USB memory, external hard disk drive, various recording media such as DVD and CD, etc. = portable medium 77) and physical assets 78 (= books, documents, certificates) that do not hold electronic data as information assets 75 , Keys, office equipment, etc.). Each physical asset 78 is accompanied by a medium 782 such as an IC tag in which the identification information is recorded. Each information asset 75 includes data of the identification information so that it can be read by a computer. Hereinafter, for convenience of explanation, it is assumed that article = assets 1. In this way, the storage device 100 can assume not only a PC and a cabinet for storing documents, but also a storage that can individually identify and store a plurality of keys and USB memories, for example. The storage device 100 may include a plurality of terminals to which a portable storage device such as a USB memory can be connected and a control device that can individually lock the main body of the USB memory or the like.

  In the present embodiment, as an example, the system 10 includes a plurality of storage devices 100 arranged in a company, a server 200 that supervises the storage devices 100, and an entrance / exit management device 300 provided at a boundary of a predetermined area in the company. , A client 400 used by a user such as a company employee, and a user authentication device 500. The storage device 100 is an article storage cabinet, key storage, or the like, and is an information processing device that is connected to the server 200, the entrance / exit management device 300, and the like via the network 2 such as the Internet or a LAN. Can be assumed. The storage device 100 is connected to the user authentication device 500 through wireless communication or a predetermined cable.

  On the other hand, in the system 10, the server 200 is a server device operated by a management company of the storage device 100, and communicates with the storage device 100, the entrance / exit management device 300, and the client 400 via the network 2. It is tied to possible. The entrance / exit management device 300 is a device that controls the door 5 and the gate 6 that are boundaries of an area where the entry / exit of the article 1 is desired to be managed. The client 400 is a computer terminal used by a user who uses the information asset.

  Next, the configuration of each device included in the network 2 will be described. The storage device 100 includes a storage unit 101, a RAM 103, a control unit 104 such as a CPU, and a communication unit 107 connected to each other by a BUS. The storage unit 101 stores at least a state management table 125 and a usage log 35 (a table storing log data including information on the storage compartment 150 where the door is opened / closed, opening / closing time, user, article, operation, etc.). Has been.

  The storage device 100 is executed by the control unit 104 by reading the program 102 stored in the storage unit 101 such as a hard disk drive into a volatile memory such as the RAM 103. The storage device 100 includes an input unit 105 such as various keyboards and buttons, and an output unit 106 such as a display. The storage device 100 includes a communication unit 107 such as a NIC (Network Interface Card) that exchanges data with other devices, and can communicate with the server 200, the entrance / exit management device 300, the user authentication device 500, and the like. It has become.

  Of course, the storage device 100 is a device for storing articles, and includes a plurality of storage compartments 150 for storing the articles 1, door opening / closing devices 151 of the storage compartments 150, and the respective storage compartments 150. 1 is provided with a reader 153 that reads identification information from a medium 782 attached to 1. If the medium 782 is an IC tag, the reader 153 is an IC tag reader. That is, any technique may be adopted as long as it is a reader corresponding to the medium 782. The door opening / closing device 151 is a control device for opening / closing or locking / unlocking the door of the receiving compartment 150. For example, an interface for receiving a door opening / closing instruction signal and a door opening / closing device according to the signal. It includes various driving devices such as motors and actuators that perform rotation / movement or locking / unlocking operations with a door locking mechanism.

  Next, functional units that the storage device 100 configures and holds in the storage unit 101 based on the program 102 will be described. The storage device 100 obtains a user authentication result from the communicable user authentication device 500, identifies the article 1 for which the corresponding user who has succeeded in the user authentication has the use authority in the state management table 125, and A display processing unit 110 that extracts information about the storage compartment 150 that stores the information from the state management table 125 and displays the information on the output unit 106 is provided.

  Further, the storage device 100 receives the user's unlocking instruction with the input unit 105 for the storage compartment 150 in which the article 1 having the authority to use is stored, and unlocks the door opening / closing device 151 of the storage compartment 150. When the command is notified, the reader 153 of the storage section 150 is notified of the reading command, and the identification information of the corresponding article 1 cannot be obtained from the reader 153, the status management table 125 of the storage unit 101 stores the corresponding article 1 A state management unit 111 is provided that stores information on the user as the last accessor and stores information indicating that the article 1 is being taken out as the current usage status of the article 1.

  The display processing unit 110 obtains a user authentication result from the user authentication device 500, and the article 1 that is the user who has the right to use the user who has succeeded in the user authentication and the current usage status is being taken out. It is preferable that the information of the corresponding article 1 and the storage section 150 in which it is stored is extracted from the state management table 125 and displayed on the output unit 106 by specifying the state management table 125 of the storage unit 101.

  The state management unit 111 accepts the user's unlocking instruction with the input unit 105 for the storage compartment 150 in which the article 1 having the right to use is stored, and instructs the door opening / closing device 151 of the corresponding storage compartment 150 to unlock. When the reader 153 of the storage section 150 is notified of the reading command and the identification information of the corresponding article can be acquired from the reader 153, the current use of the corresponding article 1 is stored in the state management table 125 of the storage unit 101. It is preferable to store information indicating that the situation is being stored.

  In addition, it is preferable that the state management unit 111 transmits log data including information on a user who is a final accessor of a predetermined article and information on the current usage status of the article 1 to the server 200 connected to be communicable. It is.

  Further, the state management unit 111 reads information on whether or not to take out from a predetermined area in the state management table 125 for the article 1 in which information indicating that the current use state is being taken out is stored in the state management table 125. If the read-out information indicating whether or not the item is taken out indicates that the item cannot be taken out, it is preferable that the identification information of the corresponding article 1 and the alert flag are transmitted to the entry / exit management device 300 connected to be communicable.

  The display processing unit 110 obtains a user authentication result from the communicable user authentication device 500, and information on the article 1 that is a management target in the storage device 100 from a corresponding user who has succeeded in user authentication. When the presentation request is received by the input unit 105, the article 1 for which the user is authorized to use is specified by the state management table 125 of the storage unit 101, and information stored for the article 1 is stored in the state management table 125. More information is extracted and displayed on the output unit 106, and an information presentation request regarding the article 1 that is managed by a storage device other than the storage device is received by the input unit 105 from the user who has succeeded in the user authentication. In this case, an information request related to the article 1 for which the user is authorized to use is transmitted to the server 200 and returned from the server 200. The server 200 with respect to the relevant article 1 is displayed on the output unit 106 receives the information stored in the asset management table 225 comes, as it is preferred to.

  On the other hand, the server 200 is a server device operated by a company or the like that manages a large number of storage devices 100 scattered in the company as described above, and the storage device 100 and the entrance / exit management device 300 via the network 2. The client 400 and the IC tag issuer 260 are connected to be communicable. Note that the server 200 receives an instruction from the administrator at the input unit 205 regarding the article 1 for which a manager of a company or the like has started data registration work in the asset management table 225 to be stored in the storage device 100. Then, the IC tag issuer 260 is notified of an issue instruction of an IC tag to be pasted on a newly registered article = asset. In response to this issuance instruction, the IC tag issuer 260 extracts the IC tag from a predetermined storage mechanism and conveys it to a predetermined placement device, and attaches the IC tag to the corresponding article placed on the placement device. Processing is executed (existing technology may be applied to the IC tag attaching processing mechanism). Further, the IC tag issuer 260 obtains the tag ID of the IC tag pasted on the article with a tag reader or the like, and transmits it to the server 200 as the ID of the article = asset ID. The server 200 receives the asset ID information from the IC tag issuer 260 and sets it in the asset management table 225 as the asset ID of the corresponding article.

  The server 200 is configured by connecting a control unit 204 such as a CPU, a storage unit 201, a RAM 203, a communication unit 207, and the like to each other through a BUS. In the storage unit 201, at least an asset management table 225, a user information table 226, and a collection log 15 (a table storing log data collected from the storage device 100, the client 400, and the like) are stored. Such a server 200 is executed by the control unit 204 by reading the program 202 stored in the storage unit 201, which is a nonvolatile storage device, into a volatile memory such as the RAM 203. The server 200 may include an input unit 205 such as various keyboards and buttons generally provided in a computer device, and an output unit 206 such as a display as necessary. The communication unit 207 is a network interface card (NIC) that handles data exchange with the storage device 100, the entrance / exit management device 300, and the client 400.

  Next, functional units that the server 200 configures and holds in the storage unit 201 based on, for example, the program 202 will be described. The server 200 receives log data that is transmitted from the storage device 100 and includes information on a user who is the last accessor of the predetermined article 1 and information on the current usage status of the article 1, and the log data includes the log data. A data update processing unit 210 is provided for updating the record of the corresponding article 1 in the asset management table 225 with the information of the last accessor and the current usage status.

  Note that the data update processing unit 210 receives the log data transmitted from the client 400 and including the identification information of the article 1 and information that the article 1 is in use, and the log data is It is preferable that the information that the article 1 is in use is added to the record of the article 1 in the asset management table 225.

  In addition, the data update processing unit 210 transmits information from the entry / exit management device 300 about the user who carries the article 1, identification information of the article 1, and the door 5 (= entrance / exit management device). The log data including the exit information from the door 300 is controlled to open and close, and the asset management includes the information of the user who carries the article 1 and the exit information from the door 5 included in the log data. It is preferable to add to the record of the corresponding article 1 in the table 225.

  The server 200 receives the information request from the storage device 100, identifies the article 1 for which use authority is set for the corresponding user indicated by the information request in the asset management table 225, and relates to the corresponding article 1. It is preferable to provide an information provision processing unit 211 that extracts stored information from the asset management table 225 and sends it back to the storage device 100. The information provision processing unit 211 receives user authentication information from the terminal 400 connected to be communicable, and executes user authentication by collating with the authentication information in the user information table 226. It is preferable that the article 1 for which the corresponding user who has succeeded is authorized is specified in the asset management table 225, the information stored regarding the article 1 is extracted from the asset management table 225 and returned to the client 400. is there.

  On the other hand, the entrance / exit management device 300 is a device that manages the access of the user = the article 1 through the door 5 or the gate 6 in the building of the company, and the storage device 100 and the server 200 via the network 2. Are connected to communicate with each other. When the user holds the IC card 76 for personal authentication over the user authentication device 510 around the entrance / exit management device 300, the entrance / exit management device 300 uses the user authentication device 510 from the IC card 76. Only when the read user information is acquired and the user information is registered in the entrance / exit management table 325, the user can enter and exit the room. The IC card 76 stores the user ID of the user in its tamper resistant area. Here, the authentication operation in the user authentication device 510 is not limited to that using the IC card 76. For example, information using various types of biological information such as finger veins, irises, and fingerprints may be used.

  Further, the entrance / exit management device 300 is connected to a user authentication device 510 so as to be communicable by wireless communication or a predetermined cable. The entrance / exit management apparatus 300 is configured by connecting a control unit 304 such as a CPU, a storage unit 301, a RAM 303, a communication unit 307, and the like to each other through a BUS. The storage unit 301 stores at least an entry / exit management table 325 and an entry / exit log 55 (a table storing data such as an authentication result by the user authentication device 510 and a door opening / closing result by the door opening / closing control device 315). ing. Such an entry / exit management device 300 is executed by the control unit 304 by reading the program 302 stored in the storage unit 301, which is a nonvolatile storage device, into a volatile memory such as the RAM 303. The entry / exit management device 300 may include an input unit 305 such as various keyboards and buttons generally provided in a computer device, and an output unit 306 such as a display as necessary. The communication unit 307 is a NIC (Network Interface Card) that performs data exchange with the storage device 100 or the server 200.

  The entrance / exit management device 300 includes an open / close control device 315 of the door 5 and a reader 320 installed around the door 5 to read identification information from a medium 782 attached to the article 1 (or via a network). (In this case, the entrance / exit management device 300 is not provided with the opening / closing control device 315 and the reader 320, and is controlled over the network). If the medium 782 is an IC tag, the reader 320 is an IC tag reader. That is, any technique may be adopted as long as it is a reader corresponding to the medium 782. The open / close control device 315 is a control device that opens / closes or locks / unlocks the door 5, for example, an interface for receiving an open / close instruction signal, and rotation or movement of the door 5 according to the signal. In addition, various drive devices such as a motor and an actuator that perform a locking / unlocking operation by a lock mechanism of the door 5 are included.

  Subsequently, functional units that are configured and held in the storage unit 301 by the entrance / exit management apparatus 300 based on the program 302 will be described. The entrance / exit management device 300 receives the alert flag and the identification information of the corresponding article 1 transmitted from the storage device 100, and sets the alert flag for the corresponding article 1 in the entrance / exit management table 325. A flag setting unit 310 is provided.

  Further, the entrance / exit management device 300 acquires user authentication information from the user authentication device 510, compares the authentication information with the authentication information in the entrance / exit management table 325, executes user authentication, and reads it into the reader 320. The command is notified, the identification information of the article 1 is acquired from the reader 320, this identification information is collated with the entrance / exit management table 325, it is determined whether an alert flag is set, and the alert flag is set for the article 1. In the case where the door 5 is opened, an unlocking stop command or a locking command is notified to the opening / closing control device 315 of the door 5, or an alert notification is output to the output unit 306, and no alert flag is set for the article 1, and the user When the authentication is successful, an article entry / exit management unit 311 for notifying the door opening / closing control device 315 of an unlocking command is provided. Of course, there may be a plurality of doors 5 managed by the entrance / exit management device 300. When the doors 5 are managed by one entrance / exit management device 300, the entrance / exit management device 300 The entrance / exit management table 325 is provided for each door. Further, in the entrance / exit management table 325 for each door, the security level for each door is set, and the entrance / exit management device 300 determines whether the door 5 is opened or closed according to the security level of the door. Good (for example, if the security level is equal to or higher than a certain value), when the user enters or exits, the unlocking is temporarily stopped even if the alert flag is not set, and a warning notice is transmitted to the terminal or the like of a predetermined administrator.

  Further, the entry / exit management device 300 stores log data including information on a user who carries the article 1 identified by the user authentication, identification information of the article 1 and exit information from the door 5. An entry / exit log transmission unit 312 that transmits to 200 is provided.

  On the other hand, the client 400 is a computer terminal used by a company employee or the like, and is connected to the storage device 100 and the server 200 via the network 2 so as to communicate with each other. It is assumed that the client 400 is assigned to each user. However, when the client 400 is commonly assigned to two or more users, the client 400 identifies and authenticates the user so that which user can identify the client 400. It is only necessary to be able to distinguish whether it has been used (the client 400 holds data for user authentication in the storage unit 401 in advance and verifies the authentication data input from the input unit 405).

  The client 400 is configured such that a control unit 404 such as a CPU, a storage unit 401, a RAM 403, a communication unit 407, and the like are connected to each other by a BUS. Such a client 400 is executed by the control unit 404 by reading the program 402 stored in the storage unit 401, which is a nonvolatile storage device, into a volatile memory such as the RAM 403. The client 400 includes an input unit 405 such as various keyboards and buttons generally provided in a computer apparatus, and an output unit 406 such as a display. The communication unit 407 is a NIC (Network Interface Card) that exchanges data with the storage device 100 or the server 200.

  Further, the client 400 includes an interface 408 for reading electronic data recorded by the article 1. For example, if the article 1 is a USB memory, the interface 408 is a USB interface. Of course, the interface 408 may be an interface that can read the electronic data recorded by the article 1. When the article 1 is a PC, it can be assumed that the article itself becomes the client 400. When the article 1 is a recording medium such as a CD-R or a DVD-R, the interface 408 is a drive device for the recording medium in the client 400.

  Next, functional units that the client 400 configures and holds in the storage unit 401 based on the program 402 will be described. The client 400 detects the connection of the information processing apparatus of the article 1 to the interface 408, reads the identification information of the article 1 stored in the information processing apparatus, and the identification information and the corresponding article 1 are in use. A use log transmission unit 410 that transmits log data including information indicating that there is information to the server 200 is provided.

  The units 110 to 111 in the storage device 100 constituting the system 10 shown so far, the units 210 to 211 in the server 200, the units 310 to 312 in the entrance / exit management device 300, the usage log transmission unit 410 in the client 400, and the like It may be realized as hardware, or may be realized as a program stored in an appropriate storage unit such as a memory or an HDD (Hard Disk Drive) in each device. In this case, a control unit such as a CPU of each device reads the corresponding program from the storage unit in accordance with the program execution and executes it.

--- Data structure example ---
Next, an example of a data structure such as a table used by each device constituting the system 10 of the present embodiment will be described. FIG. 2 is a diagram showing an example of the data structure of the state management table 125 of this embodiment. The state management table 125 is a table in which the articles 1 stored in the respective storage compartments 150 and information of users who have authority to use the corresponding articles 1 are stored in association with each other, and the storage device 100 is provided in the storage unit 101. The state management table 125 includes, for example, a door ID 2002 that uniquely identifies the storage compartment 150 using the asset ID 2001 that is the tag ID of the IC tag 782 attached to the article 1 as a key, and the tag of the IC tag 782 attached to the article 1. Storage asset ID 2003 as an ID, item name 2004 of the corresponding article 1, take-out availability information 2005 of the corresponding article 1, last access date and time 2006 when the user last accessed the corresponding storage area 150, last access person 2007, management of the corresponding article 1 The user 2008, the user who has the authority to use the corresponding article 1 = the user ID 2009 of the user, and the status 2010 which is the current usage status of the corresponding article 1 are a collection of records.

  FIG. 3 is a diagram showing an example of the data structure of the asset management table 225 of this embodiment. The asset management table 225 includes identification information of the article 1 to be managed, identification information of the storage compartment 150 of the storage device 100 that is the storage destination of the article 1, information of a user having authority to use the article 1, and It is a table in which information on the current usage status of the article 1 is associated and stored, and the server 200 is provided in the storage unit 201. The asset management table 225 uses, for example, the asset ID 1011 which is the tag ID of the IC tag 782 attached to the article 1 as a key, the article name 1012 of the article 1 and the storage location 1013 of the article 1 (the storage device 100 and the accommodation thereof) Door ID that uniquely identifies the section 150), the registration date 1014 of the corresponding article 1, the administrator 1015 of the corresponding article 1, the user who has the authority to use the corresponding article 1 = the user ID 1016 of the user, and the current usage status of the corresponding article 1 Status information 1017, last access person 1018 who is the last user to access the corresponding storage area 150, take-out availability information 1019 of the relevant article 1, and presence / absence of information indicating whether the relevant article 1 holds information assets = electronic data It is an aggregate of records in which data such as 1020 is associated.

  It should be noted that a security level corresponding to the door 5 managed by the entry / exit management device 300 is set in the take-out permission / inhibition information 1019 which is a take-out policy of the item 1 outside the organization. It may be possible to limit the range that can be taken out in the building. For example, when “impossible (only in the building)” is set as the carry-out permission / inhibition information 1019, the door 1 other than the door that goes out of the building is allowed to take the article 1 out of the door, When only “inside door A)” is set, it is requested to always return the article 1 to the storage device 100 when the user leaves the designated “door A”. By performing this process, for example, when strictly managing the people and objects that enter and exit the server room, or when taking a notebook PC to a conference room with a different floor, the usage and importance of the asset. It is possible to finely set the range of take-out according to the situation. The storage location of the article 1 = asset may be set in the asset management table 225 by an administrator or the like at the time of new registration, or the location stored arbitrarily by the user without being set at that timing is detected and managed. Also good. In the IC tag 782, the asset ID 1011 and the door ID of the storage compartment 150, which is the storage location ID, are written.

  FIG. 4 is a diagram showing an example of the data structure of the user information table 226 of this embodiment. The user information table 226 is a table in which the server 200 acquires and reflects user data from, for example, an existing personnel system, and stores authentication information of each user. The user information table 226 is, for example, a collection of records in which data such as a user name 1032, affiliation 1033, title 1034, and authentication data 1035 are associated with each other using a user ID 1031 that uniquely identifies the user as a key. . The asset ID 1031 is the same as the ID registered in the administrator 1015 and user 1016 of the asset management table 225 and the registered user ID 1023 of the cabinet management table 227.

  FIG. 5 shows an example of the data structure of the cabinet management table 227 of this embodiment. The cabinet management table 227 is for managing users of the storage device 100 installed under the organization, and is stored in the storage unit 201 of the server 200. The cabinet management table 227 uses, for example, an asset ID 1021 that can uniquely specify an article 1 = asset as a key, a door ID 1022 that can uniquely specify each door of the storage section 150 of the storage device 100, and a door of the storage section 150. Access right = registered user ID 1023 indicating a user who has the right to use the corresponding article 1 and attribute 1024 indicating whether the door of the storage compartment 150 is shared use or personal use by a plurality of users. ing. As the asset ID 1021, an asset ID 1011 of the asset management table 225 that corresponds to the accommodation section 150 of the storage device 100 is registered. By providing the attribute 1024, the administrator gives permission to use a shared asset to a new user of the storage device 100, or assigns a door of the storage compartment 150 without a registered user to store personal assets. Judgment can be made. Further, by detecting whether or not the user ID 1016 registered in the asset management table 225 and the registered user ID 1023 registered in the cabinet management table 227 are inconsistent, it is possible for an article 1 = a person who does not have the authority to use the asset. The storage section 150 of the storage device 100 storing the asset can be prevented from being assigned.

  FIG. 6 is a diagram showing an example of the data structure of the entry / exit management table 325 of this embodiment. This entry / exit management table 325 is provided in the storage unit 301 for each door, for example, in the entry / exit management device 300, and is a table that stores users who have entry / exit authority at the door 5 and their authentication information. . The entry / exit management table 325 includes, for example, the entry / exit state 3002 of the corresponding user from the door 5 managed by the entry / exit management apparatus 300 using the user ID 3001 of the user who can enter / exit, and the item being used by the user. 1 is an aggregate of records in which data such as an asset ID 3003 indicating 1 and an alert flag 3004 are associated with each other.

  Subsequently, FIG. 7 shows a usage log 35 acquired by the server 200 from the storage device 100, a usage log 45 acquired from the client 400, an entrance / exit log 55 acquired from the entrance / exit management device 300, and the asset management table. The relationship with H.225 is shown. The asset management table 225 is updated by the log analysis program 13 of the server 200 based on the usage log 35, the usage log 45, and the entry / exit log 55. By the operation of the log analysis program 13, it is possible to manage the users who enter and leave the organization and the assets used by the users together.

  First, an example of the data structure of the usage log 35 of the storage device 100 will be described. The usage log 35 of the storage device 100 is the door ID 401 of the storage compartment 150, the operation date and time 402 of the door of the storage compartment 150, the user ID 403 indicating the user, the asset ID 404 indicating the article 1 that has been put in and out, and the user performed The operation 405 indicates whether the operation is a take-out operation or a storage operation. The usage log 35 is acquired every time the storage device 100 authenticates with the user authentication device 500, and the asset ID column is blank when no asset is taken in or out of the storage compartment 150. Therefore, the log analysis program 13 of the server 200 collates the data of the door ID 401 and the asset ID 404 in the usage log 35 with the existing records of the asset management table 225, and the data of the usage log 35 that is matched by this verification. The existing record in the asset management table 225 is updated.

  Next, an example of the data structure of the usage log 45 of the client 400 will be described. The usage log 45 of the client 400 includes an asset ID 411, a user ID 412, a date / time 413, and an operation 416. The usage log 45 is acquired by the client 400 when an operation such as writing or erasing information is performed by connecting the portable medium 77 or the like to the client 400. The log analysis program 13 compares the asset ID 411 and the user ID 412 of the usage log 45 with the asset management table 225, and when they match, updates the asset management table 225 with the corresponding log data.

  Next, an example of the data structure of the usage log 55 of the entrance / exit management device 300 will be described. The use log 55 of the entrance / exit management device 300 includes a user ID 421 authenticated (acquired) by the user authentication device 510, an authentication date / time 421, and an operation 423 indicating whether the user enters or leaves the room. The entrance / exit management device 300 can determine whether the user authentication device 510 is installed inside or outside the organization of the door 5 to determine whether the user has entered or exited. For example, the entry / exit management device 300 has an information list of the user authentication device 510 in the storage unit 301, and information indicating whether the installation location of each user authentication device 510 is inside or outside the door 5 is also recorded in the list. Suppose that At this time, the user authentication device 510 notifies the entry / exit management device 300 of the identification information of the user authentication device 510 together with the user ID. Then, the entrance / exit management device 300 can determine whether the user authentication device 510 that has notified the user ID is inside or outside the door 5. If authentication is performed from outside the door 5, “outside → inside”, that is, the user It can be recognized that this indicates the room entry operation. On the other hand, in the case of authentication from the inside of the door 5, the entrance / exit management device 300 can recognize that “inside → outside”, that is, a user exit operation, is indicated. As a so-called co-payment measure, the entrance / exit management device 300 allows the exit user to leave the room on the condition that the exit user is authenticated as well as the presence of the entrance record (can be confirmed in the entrance / exit management table 325). May be determined.

  As for the usage log 55, the server 200 or the entrance / exit management device 300 compares the user ID 421 with the data of the last user in the asset management table 225, and if they match, 423 and the status of the asset management table 225 may be collated, and it may be determined whether the asset is used with the entry record, that is, whether impersonation is not performed.

--- Example of processing procedure 1 ---
Hereinafter, the actual procedure of the asset management method according to the present embodiment will be described with reference to the drawings. Various operations corresponding to the asset management method described below are realized by a program that is read into the RAM of each device constituting the system 10 and executed. And this program is comprised from the code | cord | chord for performing the various operation | movement demonstrated below.

  FIG. 8 is a diagram showing a processing flow example 1 of the asset management method of the present embodiment. Here, first, processing in the server 200 and the storage device 100 associated with asset registration will be described. For example, when an asset (article 1) is purchased by an organization, the asset manager accesses the server 200 through an appropriate terminal and performs asset registration work.

  On the other hand, the server 200 stands by in a state of waiting for authentication related to the administrator. Therefore, for example, the data update processing unit 210 of the server 200 receives the input of the administrator user ID and authentication data at the input unit 205 and executes user authentication processing by collating this with the user information table 226. (S501). When authentication of the administrator is successful in this authentication process, the data update processing unit 210 of the server transmits predetermined screen data (stored in the storage unit 201) that receives update information of the asset management table 225 to the terminal, An input from the administrator via the screen is accepted (S502). The screen may include not only a new asset registration but also an interface for accepting an update of information on managed assets, such as a change of an administrator or a change of an asset storage location due to a change of a person.

  The administrator selects, for example, a “new registration” button on the screen displayed by the terminal, and inputs a predetermined item (= item shown in the asset management table 225) to be set as asset registration information. I will do it. At this time, with regard to devices that can be taken out of the organization, such as notebook PCs or portable media 77, settings are also made regarding whether or not items can be taken out, such as whether they can always be taken out or whether an application is required each time they are taken out through approval from the superior. .

  On the other hand, the data update processing unit 210 of the server 200 receives and acquires the input data by the administrator from the terminal, generates a new record with the acquired data, and registers it. Update is performed (S503). As described above, in the case of processing accompanying new asset registration (S504: Y), the data update processing unit 210 of the server 200 notifies the IC tag issuer 260 of an IC tag issue instruction, for example, A tag 782 is issued (S505). If it is not a new asset registration process (S504: N), the process proceeds to step S506.

  An example of the issuing process of the IC tag 782 has already been described above. The IC tag issuer 260 issues an IC tag 782 in which the registered asset ID is written. When the IC tag issuer 260 does not apply the IC tag 782 to the article to be attached to the IC tag 782 = asset, the administrator issues a label in which the IC tag 782 is integrated with the corresponding asset. It is acquired from the machine 260 and a pasting operation is performed. Thereafter, the data update processing unit 210 of the server 200 transmits update information regarding the asset management table 225 input by the administrator to the storage device 100 (S506), and ends the process.

  On the other hand, when the storage device 100 receives the update information from the server 200 (S507: Y), the storage device 100 updates the state management table 125 by generating a new record with the update information. (S508). With the above operation, the processing at the time of newly registering an asset is completed. The processing flow is executed each time a new asset is registered and the asset management table 225 is updated. Note that while the update information is not received from the server 200 (S507: N), the storage device 100 is in a standby state in this flow.

--- Processing procedure example 2 ---
FIG. 9 is a diagram showing a processing flow example 2 of the asset management method of the present embodiment. Next, a situation where an article = assets stored in the storage section 150 of the storage device 100 is used by a user will be described. The general operation flow of the user is as follows: (1) entering from outside the organization (= outside the predetermined area) into the organization (= inside the predetermined area) or exiting from inside the organization to the outside of the organization, (2) to the storage device 100 It is conceivable to take out the stored assets, (3) connect to the client 400 such as the portable medium 77, and (4) return (store) the assets to the storage device 100. First, the processing contents corresponding to entering or leaving a predetermined area are shown.

  In this case, the entrance / exit management device 300 is in a state of waiting for user authentication or alert flag reception (S601). Here, it is assumed that the flag setting unit 310 of the entry / exit management device 300 receives the alert flag and the asset ID as identification information of the article 1 from the storage device 100 (S601: flag). At this time, the flag setting unit 310 identifies the corresponding record of the article 1 in the entry / exit management table 325 using the received asset ID as a key, sets the alert flag in this record (S601a), and performs processing. The process returns to step S601.

  On the other hand, when the user authentication processing (reading of the user ID) is started in the user authentication device 510 installed in a certain door 5 (for example, “door 001”), the article of the entry / exit management device 300 that has received the user authentication processing The entrance / exit management unit 311 (S601: user authentication) acquires, for example, a user ID (for example, “ID001”) read from the user's IC card 76 as user authentication information from the user authentication device 510, and User authentication is executed by collating with the data of the entrance / exitable user in the entrance / exit management table 325 regarding the door 5 (S602).

  The article entry / exit management unit 311 determines that the authentication has failed when the user ID cannot be specified in the entry / exit management table 325 of the door 5 in the user authentication process (S602: NG), and the door 5 An unlocking stop command or a locking command is notified to the opening / closing control device 315, or an alert notification is output to the output unit 306 (S603), and the process returns to step S601.

  On the other hand, the article entry / exit management unit 311 determines that the authentication is successful when the user ID is identified in the entry / exit management table 325 of the door 5 in the user authentication process (S602: OK), and the user authentication is performed. By determining whether the identification information of the user authentication device 510 transmitted by the device 510 together with the user ID of the user includes, for example, information “outside” or “inside”, the user leaves the door 5. It is determined whether the user is going to enter the room through the door 5 (S604). If “outside” is included in the identification information of the user authentication device 510 in this process, the article entry / exit management unit 311 determines that the user has been authenticated by the user authentication device 510 outside the door. It is determined that an attempt is made to enter a predetermined internal area (S604: Enter), and an unlocking command is notified to the opening / closing control device 315 of the door 5 (S608).

  On the other hand, if “inside” is included in the identification information of the user authentication device 510 in the process of step S604, the article entry / exit management unit 311 receives the authentication by the user authentication device 510 inside the door. Therefore, it is determined that the user is about to leave the predetermined area inside the door (S604: Retreat), and a reading command is notified to the reader 320 installed around the user authentication device 510 (S605). The user who tries to leave the room checks whether he / she holds assets that cannot be taken out of the organization.

  Upon receiving this command, the reader 320 executes a process for establishing wireless communication with the IC tag 782 that may exist in the vicinity. Even if the reader 320 executes this operation, communication with the IC tag 782 cannot be established, that is, the article 1 with the IC tag 782 around the user authentication device 510 does not exist = “Tried to leave the room” The user has no assets that cannot be taken out of the organization. Conversely, when the article 1 with the IC tag 782 is present around the user authentication device 510, the reader 320 establishes wireless communication with the IC tag 782 and reads at least the asset ID from the corresponding IC tag 782. It will be.

  In this case, the article entry / exit management unit 311 obtains the asset ID that is the identification information of the article 1 from the reader 320 and collates the asset ID with the entry / exit management table 325 to determine whether an alert flag is set. (S606). If an alert flag is set for the article 1 (S606: Y), the article entry / exit management unit 311 notifies the door 5 opening / closing control device 315 of an unlocking stop command or a locking command, or an output unit. An alert notification is output to 306 (S607), and the process returns to the standby state in step S601. Of course, if it is determined in step S606 that an alert flag is not set for the article 1 (S606: N), the article entry / exit management unit 311 instructs the door 5 opening / closing control device 315 to unlock. Is notified (s608).

  Further, the entry / exit log transmission unit 312 of the entry / exit management device 300 is the user ID of the user found by the user authentication and the identification information of the article 1 (when the user carries the article 1). The entry / exit log data including the asset ID and the exit information from the door 5 is transmitted to the server 200 (S609).

  By such processing, it is possible to prevent the user from forgetting to return the asset and trying to leave the room or illegally taking out the asset.

  On the other hand, the data update processing unit 210 of the server 200 receives the entry / exit log data including data such as the user ID of the user who carries the article 1 transmitted from the entry / exit management device 300. (S610), a record is specified in the asset management table 225 using the asset ID of the article 1 included in the entry / exit log data as a key (S611), and the user ID of the user in the corresponding record is entered in the last accessor column. It sets (S612). The entrance / exit log transmission unit 312 of the entrance / exit management device 300 identifies the corresponding record in the entrance / exit management table 325 based on the user ID of the user and the exit information from the door 5, and Set "leave" in the entry / exit status field in the record and update.

--- Processing procedure example 3 ---
FIG. 10 is a diagram showing a processing flow example 3 of the asset management method of the present embodiment. Next, processing when taking out the assets stored in the storage device 100 will be described. In this case, the storage device 100 is in a state of waiting for user authentication, and when the user authentication processing is executed in the user authentication device 500 (S631: Y), the display processing of the storage device 100 that has received the user authentication processing The unit 110 obtains the user authentication result from the user authentication device 500, and identifies the article 1 that the user ID included in the user authentication result = the corresponding user who has succeeded in the user authentication and has the use authority in the state management table 125. (S632). And the information (example: “A1001”) of the corresponding article 1 specified here (example: “1001”) and the storage section 150 storing it is extracted from the state management table 125 and displayed on the output unit 106 ( S633).

  In addition, the state management unit 111 of the storage device 100 accepts the user's unlocking instruction with the input unit 105 for the storage compartment 150 in which the article 1 having the authority to use is stored, and opens and closes the door of the storage compartment 150. An unlock command is notified to the device 151 (S634). The door opening / closing device 151 of the corresponding accommodation section 150 receives this unlocking command by an interface for receiving a door opening / closing instruction signal, and drives a motor or an actuator in accordance with the received signal = the unlocking command. The rotation or movement of the door of the storage compartment 150 or the unlocking operation by the door locking mechanism is executed.

  After the door of the storage compartment 150 is unlocked in this way, the state management unit 111 receives, for example, the user's locking instruction at the input unit 105 and notifies the door opening / closing device 151 of the corresponding storage compartment 150 of the locking command. (S635). At that time, the state management unit 111 notifies the reader 153 of the corresponding storage section 150 of a reading command (S636). When the identification information of the corresponding article 1 cannot be acquired from the reader 153, the state management unit 111 determines that the corresponding article 1 is being taken out from the storage compartment 150, and the state management table 125 indicates that the corresponding article 1 is in the state. The user ID of the user is stored as the last accessor (S637). In addition, information indicating that the item 1 is being taken out as the current usage status is also stored.

  In addition, the state management unit 111 has information on whether or not to take out from a predetermined area in the state management table 125 for the article 1 in which information indicating that the current use state is “in-taken” is stored in the state management table 125. If the information indicating whether or not the item can be taken out indicates “cannot be taken out”, the asset ID and alert flag of the corresponding article 1 are transmitted to the entrance / exit management device 300 (S638). The subsequent processing in the entrance / exit management device 300 is step S601: flag → S601a.

  Then, the state management unit 111 transmits usage log data including the user ID of the user who is the last accessor of the article 1 and information on the current usage status of the article 1 to the server 200 (S639). The process returns to step S631 waiting for user authentication.

  On the other hand, the data update processing unit 210 of the server 200 includes a usage log that is transmitted from the storage device 100 and includes the user ID of the user who is the last accessor of the predetermined article 1 and the current usage status information of the article 1. And the record of the article 1 in the asset management table 225 is updated with the information on the last accessor and the current usage status included in the usage log data (S640).

--- Processing procedure example 4 ---
FIG. 11 is a diagram showing a processing flow example 4 of the asset management method of the present embodiment. Next, processing when connecting the article 1 such as a portable medium to the client will be described. In this case, for example, a situation is assumed in which a user who has taken out the article 1 from the storage section 150 of the storage device 100 has connected the article 1 to the client 400. A USB memory is illustrated here as the article 1 connected to the client 400. That is, the user has inserted the USB memory into the USB interface 408 of the client 400.

  At this time, the client 400 automatically executes electronic data reading processing from the USB memory in accordance with the insertion of the USB memory into the USB interface 408. The usage log transmission unit 410 of the client 400 detects an event of reading the electronic data of the USB memory at the USB interface 408 (S621), and the assets included in the electronic data that the USB memory records in the internal nonvolatile memory The ID is read, and usage log data including information indicating that the asset ID and the USB memory are being used is transmitted to the server 200 (S622). The electronic data reading event detected by the usage log transmission unit 410 includes concepts such as information writing and deletion, or medium connection and disconnection.

  On the other hand, the data update processing unit 210 of the server 200 receives the usage log data including the asset ID of the USB memory and information indicating that the USB memory is being used, which is transmitted from the client 400. (S623) The information that the USB memory included in the usage log data is in use is added to the record of the corresponding article in the asset management table 225 (S624), and the process ends.

--- Processing procedure example 5 ---
FIG. 12 is a diagram showing a processing flow example 5 of the asset management method of the present embodiment. Next, processing for returning assets to the storage compartment 150 of the storage device 100 will be described. In this case, the storage device 100 is in a state of waiting for user authentication, and when the user authentication processing is executed in the user authentication device 500 (S651: Y), the display processing of the storage device 100 that has received the user authentication processing. The unit 110 obtains the user authentication result from the user authentication device 500, and the user ID included in the user authentication result = the corresponding user who has succeeded in the user authentication is the article 1 having the use authority, and the current use status is “take-out” Articles that are “medium” are identified in the state management table 125 (S652).

  And the information (example: “A1001”) of the corresponding article 1 identified here (example: “1001”) and the storage section 150 in which it is stored is extracted from the state management table 125 and displayed on the output unit 106. (S653). In addition, the state management unit 111 of the storage device 100 accepts the user's unlocking instruction with the input unit 105 for the storage compartment 150 in which the article 1 having the authority to use is stored, and opens the door of the corresponding storage compartment 150. An unlocking command is notified to the opening / closing device 151 (S654).

  The door opening / closing device 151 of the corresponding accommodation section 150 receives this unlocking command by an interface for receiving a door opening / closing instruction signal, and drives a motor or an actuator in accordance with the received signal = the unlocking command. The rotation or movement of the door of the storage compartment 150 or the unlocking operation by the door locking mechanism is executed.

  After the door of the storage compartment 150 is unlocked in this way, the state management unit 111 receives, for example, the user's locking instruction at the input unit 105 and notifies the door opening / closing device 151 of the corresponding storage compartment 150 of the locking command. (S655). At that time, the state management unit 111 notifies the reader 153 of the corresponding storage section 150 of a reading command (S656). When the identification information of the corresponding article 1 can be acquired from the reader 153, the state management unit 111 determines that the corresponding article 1 has been returned to the storage section 150 and is being stored, and in the state management table 125, The user ID of the user is stored as the last accessor of the corresponding article 1 (S657), and information indicating that the current usage status of the corresponding article 1 is “in storage” is stored.

  In addition, the state management unit 111 transmits usage log data including the user ID of the user who is the final accessor of the article 1 and information on the current usage status of the article 1 to the server 200 (S658), The process returns to step S651 that waits for user authentication.

  On the other hand, the data update processing unit 210 of the server 200 includes a usage log that is transmitted from the storage device 100 and includes the user ID of the user who is the last accessor of the predetermined article 1 and the current usage status information of the article 1. And the record of the article 1 in the asset management table 225 is updated with the information on the last accessor and the current usage status included in the usage log data (S659).

--- Example of processing procedure 6 ---
FIG. 13 is a diagram illustrating a processing flow example 6 of the asset management method according to the present embodiment. Next, an operation flow associated with a user asset search operation will be described. The administrator or user can search for information on assets managed in the organization using the server 200 and the storage device 100. Hereinafter, the processing contents will be described separately for the case where the information search for assets is executed using the server 200 and the case where the information search is executed for assets using the storage device 100.

  First, when a user accesses the server 200 from his / her client 400, the information provision processing unit 211 of the server 200 receives the user authentication information from the client 400, and the authentication information in the user information table 226 is received. And user authentication is executed (S701). In addition, the information provision processing unit 211 identifies, in the asset management table 225, the article 1 for which the corresponding user who has succeeded in the user authentication has usage authority, and stores information related to the corresponding article 1 in the asset management table 225. The data is extracted and returned to the client 400 (S702). Alternatively, when the user authentication is successful, the information provision processing unit 211 communicates with the storage device 100 and the entry / exit management device 300 to check whether there is update information in the state management table 125 and the entry / exit management table 325. If there is update information, the asset management table 225 may be updated based on the update information.

  In step S702, the information provision processing unit 211 receives a search condition desired by the user (eg, asset name, storage device 100, status, etc.) from the client 400, and based on the search condition, A search in the asset management table 225 may be executed. The search condition and the method for specifying the search condition will be described in detail with reference to FIG.

  Next, a process in which the user performs asset information retrieval from the storage device 100 will be described. The user proceeds on the display unit 106 provided in the storage device 100. In addition, as a method of receiving an input of search conditions, an asset list list may be displayed on the output unit 106 to receive selection from the user, or a software keyboard may be displayed on the output unit 106 to receive input. Alternatively, the user's search conditions may be recorded in the storage unit 101 and selected from the search condition history.

  First, the user authentication device 500 connected to the storage device 100 performs user authentication for a user who wishes to search (S711). When the user authentication is successful, the storage device 100 that has received the request displays a menu available to the user and accepts the selection (S712). As an example of the menu to be displayed, “unlock door” for selecting the door of the storage compartment 150 that can be unlocked, and “store in cabinet” for searching for assets stored in the storage device 100 that has performed the authentication operation. Some options include “Asset Search” or “Asset Search in the Office” in which an authenticated user searches for an asset having an administrator and usage authority. The display processing unit 110 identifies the article 1 for which the corresponding user who has been successfully authenticated by the user is authorized to use the status management table 125 of the storage unit 101, and stores information regarding the corresponding article 1 = the door of the accommodation section 150. And the like are extracted from the state management table 125 and displayed as a list of “doors of the storage compartment 150 that can be unlocked” in the “door unlocking” menu.

  For example, the display processing unit 110 of the storage device 100 receives selection of “unlock door” in the menu (S712: door unlocking), and at least one selected by the user from the door list in the menu One door is unlocked (S713). The door unlocking process is as described above.

  When “search for assets in cabinet” is selected in the menu (S714: search for assets in cabinet), the display processing unit 110 displays the asset ID and name of the article stored in the storage device 100 in the state. The information is specified in the management table 125 and displayed on the output unit 106 (S714). Further, when “search for assets in the office” is selected in the menu (S714: search for assets in the office), the display processing unit 110 transmits a search request to the server 200 to acquire a search result. (S715) The search result acquired from the server 200 is displayed on the output unit 106 (S716). In this case, the display processing unit 110 transmits, to the server 200, an information request regarding an article for which the corresponding user who has succeeded in the user authentication is authorized to use, and the server 200 regarding the corresponding article returned from the server 200. The information stored in the asset management table 225 is received and displayed on the output unit 106. At this time, the information provision processing unit 211 of the server 200 receives the information request from the storage device 100, and uses the asset management table 225 to select an article for which use authority is set for the corresponding user indicated by the information request. The information specified and stored with respect to the corresponding article is extracted from the asset management table 225 and returned to the storage device 100.

  By such processing, the asset manager or user can specify where the asset to be used is stored in the storage device 100 even from the storage device 100. Alternatively, when a plurality of storage devices 100 are installed in the organization, a utilization method is also conceivable in which a search is performed from the storage device 100 near the user's seat and the storage device 100 in which the desired article is stored is specified. Further, when searching for an asset whose storage location has been forgotten from the client 400 used by the user, instead of sequentially searching for the storage device 100 that may be stored in memory, the above-described storage device 100 may be used. It is also possible to specify the location from the server 200. This is also effective during inventory. The administrator needs to check the actual property of the asset at the time of inventory or audit, but it is easy to check the actual property of the asset by referring to the server 200 in advance and knowing the asset location list and the last accessor. To reduce the time required for inventory work.

---- Screen example ---
FIG. 14 shows a display screen example. This screen 91 is displayed on the output unit 406 of the client 400 or the output unit 106 of the storage device 100 when an administrator or user accesses the server 200 or the storage device 100, and displays assets under the organization. You can refer to the list. Hereinafter, a configuration example of this screen will be described.

  On the screen 91, a list of assets 911 under the organization is displayed. The asset list 911 includes an asset ID 9001, an item name 9002, a location 9003, a manager 9004, a final user 9005, a status 9006, information presence / absence 9007, take-out availability 9008, return availability 9009, and details 9010 (the server 200 or This is data extracted from the asset management table 225 and the state management table 125 by the storage device 100). By viewing the asset list 91 by an asset manager or user, it is possible to grasp at a glance which asset is currently stored in what state and where it is used. Note that the data of the location 9003 is updated according to the usage status by the user as described above. As for the data of the administrator 9004 and the final user 9005, the names of users whose user IDs match are specified from the user information table 226 and displayed. Further, when the details button of each asset displayed in the details 9010 is pressed, the storage device 100 or the server 200 displays registration information that is not listed in the asset list 911 or the latest usage log for the selected asset. Etc. are extracted from the corresponding table and the detailed screen set as the predetermined screen data is displayed. By viewing the detailed screen, the asset manager can grasp the usage status of the asset for each user who has been granted usage authority.

  The screen 91 also includes buttons such as an asset information update button 912, a cabinet-specific display 913, an asset search 914, and an empty cabinet search 915. When the asset information update button 912 is pressed, the server 200 or the storage device 100 reads out and displays screen data for registering or updating information stored in the asset management table 225 from the storage unit. The asset manager executes a new asset registration operation or a user change operation associated with a change from this menu. In addition, about the update of asset information, users click the corresponding cell each displayed on the said asset list 91, On the other hand, the said server 200 and the storage apparatus 100 which received it change a corresponding cell to an input mode. For example, it is possible to receive user input and process the change of the information content of the asset in the corresponding cell.

  Further, when the cabinet-specific display button 913 is pressed, the server 200 and the storage device 100 generate and display screen data of the usage status list 92 for each storage device. Since there may be a plurality of storage devices 100 under the organization, the server 200 and the storage device 100 may store information on the storage devices 100 according to the affiliation of the administrator, for example, “General Affairs 915 Cabinet A001 (9151)”. Are extracted from the state management table 125, the asset management table 225, the user information table 226, the cabinet management table 227, etc., and displayed as a tree on the screen. Further, when the user selects the storage device 100 from the displayed list by clicking on the notation of the storage device 100, the storage device 100 or the server 200 stores the usage status 916 for each door of the storage compartment 150 of the storage device 100, storage For the user list 917 registered in the device 100 and the asset list 918 stored in the storage device 100, corresponding data is extracted from the corresponding table and displayed. Each will be described below.

  As the usage status 916, an array in which the door ID in the storage device 100, the personal or shared attribute, and the user ID of the user having usage authority are associated with the arrangement structure between the storage compartments in the storage device 100, for example. Is displayed. Accordingly, it is possible to grasp at a glance which storage compartment 150 of the storage device 100 is currently used or who is a user in connection with the arrangement of the storage compartment 150 in the storage device 100.

  The user list 917 displays the user IDs and names of all users who have been registered for use (= use authority is set) in the selected storage device “A001”, for example. At this time, when the user clicks and selects the door display of a certain storage compartment 150 on the interface of the usage status 916 (9161), the user of the selected storage compartment 150 is highlighted in the user list 917 (storage device). 100 to the server 200 receive the click and display the corresponding user). In this list, the user name displayed between the asset manager and the user may be changed. For example, the asset manager displays the user IDs for all registrants as shown in the user list 917, while the user displays only the users of the shared assets of the storage device 100 that can be used by the user. You can also

  Next, in the storage asset list 918, the assets registered in the storage device 100 displaying this screen in the asset management table 225 of the server 200, or currently stored in the storage device 100. A list of assets is displayed. The stored asset list 918 includes an asset ID 9181, an item name 9182, an administrator 9183, an end user 9184, a status 9185, presence / absence of information 9186, and availability 9187.

  Also in the storage asset list 918, when the asset manager selects the storage section 150 of “# 007” of the storage apparatus “A001”, for example, the display color of the selected storage section 150 is displayed in the storage apparatus 100 or the server 200. And the asset 9180 related to the selected storage compartment 150 is highlighted in accordance with the operation. As a result, the asset manager and the user can grasp the use authority in each storage device 100 and the storage status of the asset at a time. When the user accesses this screen, the door number of the storage compartment 150 of the storage device 100 in which the user is registered can be selected from the asset management table 225, and only available assets are displayed. Is done. Therefore, the user can efficiently refer only to the location of the asset related to the user. In addition, when currently used by someone, it is possible to see who is currently using the status 9186 of the stored asset list 918. Therefore, before visiting the storage device 100 and searching for an asset, it is possible to check the usage status and confirm that it is not used, and then go to the storage device 100 to use the asset.

  Further, when the user presses the asset search 914 button, the server 200 and the storage device 100 read out and display appropriate asset search screen data from the storage unit. In this asset search screen, as shown in the usage status list 92, an interface for accepting selection of a storage device to be searched, and a list of assets that can be used by a user who has issued a search instruction (the server 200 and the storage device 100 have The asset management table 225 and the status management table 125 searched for the asset for which usage authority is set are displayed using the user ID of the corresponding user as a key.

  Further, when the user presses the button “search for empty cabinet” 915, the server 200 and the storage device 100 indicate the storage section 150 of “# 003” in the usage status 916 in the usage status list 92 for each storage device. The “vacant” storage devices 100 that are not currently used and the door numbers of the storage compartments 150 are listed and displayed. Thereby, registration work of a new article etc. can be made easy. Note that all of the above-described screen display processes are executed by the server 200 and the storage device 100, and necessary data is extracted from tables included in each storage unit.

---- Other ---
Another embodiment of the present invention will be described. FIG. 15 is a diagram illustrating a configuration example of an asset management system according to another embodiment. The asset management system 1001 according to this embodiment has a configuration in which a workflow server 60 is added to the configuration already described in the above-described embodiment. The workflow server 60 is a server device that includes an application management program 61 and an application management table 62 in a storage unit. The application management program 61 displays an asset take-out application form (held in advance in the storage unit by the workflow server 60) on the terminal handled by the user, and the asset take-out application data input by the user to the application form via the terminal. Accepting from the terminal, the asset take-out application data is output to the approver's terminal (which determines whether the application is acceptable) (or the output unit of the workflow server 60).

  On the other hand, the terminal handled by the approver displays the asset take-out application data on the output unit, and accepts whether or not the asset take-out determined by the approver is accepted by the input unit. Further, the approver's terminal notifies the user's terminal of the approver's determination result regarding whether or not to carry out. In addition, when the application is approved, the approver's terminal transmits the application-permitted asset ID and the permitted content to the server 200. On the other hand, the application management table 62 is a table for managing the contents of the application and the status of taking out assets. The application management table 62 is updated by the application management program 61 when assets are returned and the asset management table 225 is updated.

  Also, assuming a storage device 100 having a terminal that can point to a plurality of uniquely identifiable USB memories, electronic data (which the user wants to use and is usually the server 200) according to the usage permission as a result of the application process. The server 200 may transmit and store electronic data to a predetermined USB memory connected to the terminal. Thereby, a person who takes out the USB memory can take out the USB memory storing electronic data to be taken out only by performing user authentication of the box storing the USB memory. In other words, by storing necessary electronic data only in the USB memory that is permitted to use and allowing the user to use it, it is possible to efficiently manage asset management (other USB memories are information assets). It is an empty memory that does not contain important electronic data and has no utility value).

  As described above, according to the present embodiment, the user can easily and surely grasp where the article = assets to be used under the organization to which the user belongs, and can reduce the labor for searching for assets. On the other hand, grasping the location of an article can also prevent the article from being taken out of the organization inappropriately. Further, in addition to the administrator registered at the time of article registration, it is possible to grasp who is using the article in real time.

  Also, if the article taken out of the storage device by the user = assets is, for example, an article that is allowed to be taken out of the organization, the user is permitted to leave the room while carrying the article, but is not allowed to take out the organization. Even if the user forgets to return the permitted article and tries to leave the room, the user can be prompted to return the article by stopping unlocking the door or issuing an alert. This is also effective when an article is illegally taken outside the company.

  Therefore, in the asset storage device, it is possible to reliably manage and provide information about whether or not the asset is stored and its user.

  As mentioned above, although embodiment of this invention was described concretely based on the embodiment, it is not limited to this and can be variously changed in the range which does not deviate from the summary.

DESCRIPTION OF SYMBOLS 1 Asset, article 2 Network 5 Door 6 Gate 10 Asset management system 75 Information asset 78 Physical asset 100 Cabinet (storage device)
101, 201, 301, 401 Storage unit 102, 202, 302, 402 Program 103, 203, 303, 403 RAM
104, 204, 304, 404 Control unit (CPU)
105, 205, 305, 405 Input unit (keyboard, mouse, etc.)
106, 206, 306, 406 Output unit (display, speaker, etc.)
107, 207, 307, 407 Communication unit 110 Display processing unit 111 State management unit 125 State management table 150 Storage compartment 151 Storage door opening / closing device 153 Reader 200 Asset management server (server)
210 Data update processing unit 211 Information provision processing unit 225 Asset management table 226 User information table 227 Cabinet management table 300 Entrance / exit management device 310 Flag setting unit 311 Article entry / exit management unit 312 Entrance / exit log transmission unit 315 Open / close control device 320 Reader 325 Entrance / exit management table 400 Client 408 Interface 410 Usage log transmission unit 500, 510 User authentication device 782 IC tag (medium)

Claims (7)

A communication unit that communicates with other devices, an input unit that receives input from a user, an output unit that outputs information, and an article stored in each storage compartment and information of a user who has authority to use the corresponding article are stored in association with each other A storage unit for storing a state management table;
A plurality of storage compartments for storing articles, a door opening / closing device of each storage compartment, and a reader for reading identification information from a storage compartment and a medium attached to the article provided in each storage compartment;
Acquire a user authentication result from a communicable user authentication device, identify an article for which the corresponding user who has succeeded in user authentication has authority to use in the state management table, and store the information on the corresponding article and the storage section storing the article. A display processing unit that extracts from the management table and displays it on the output unit;
For the storage compartment in which the article having the authority to use is stored, the user's unlocking instruction is received at the input unit, the unlocking instruction is notified to the door opening / closing device of the corresponding storage compartment, and the reading instruction is sent to the reader of the storage compartment When the identification information of the corresponding article cannot be obtained from the reader, the user information is stored as the last accessor of the corresponding article in the status management table of the storage unit, and is taken out as the current usage status of the corresponding article. A state management unit for storing information indicating that the
An asset management system comprising a storage device comprising: In the storage device,
The display processing unit obtains a user authentication result from a communicable user authentication device, and the user who has succeeded in user authentication has an authority to use, and an article whose current usage status is being taken out is stored in the storage unit. Identify, extract information from the state management table and display on the output unit information of the corresponding article and the storage compartment where it should be stored,
The state management unit receives an unlocking instruction of the user by an input unit for a storage section in which the article having the authority to use is stored, notifies the door opening / closing device of the storage section of the unlocking instruction, and stores the storage When a read command is notified to the leader of the section and the identification information of the article can be obtained from the leader, information indicating that the article is being stored as the current usage status of the article is stored in the status management table of the storage unit ,
The asset management system according to claim 1. The state management unit of the storage device
Log data including information on the user who is the final accessor of the predetermined article and information on the current usage status of the article is transmitted to a server connected to be communicable;
The asset management system
A communication unit that communicates with another device; identification information of an article to be managed; identification information of a storage section of a storage device that is a storage destination of the article; information of a user having authority to use the article; and A storage unit for storing an asset management table for storing information on the current usage situation in association with each other;
The log data including the information on the user who is the last accessor of the predetermined article and the information on the current use situation of the corresponding article is received from the storage device, and the last accessor and the current use situation included in the log data are received. Including a server comprising a data update processing unit for updating a record of the corresponding article in the asset management table with information,
The asset management system according to claim 2. In the storage device,
The state management table stores the articles stored in the respective storage sections, information on users who have authority to use the corresponding articles, and information on whether or not the corresponding articles can be taken out from the predetermined area, and stores them in association with each other.
The state management unit
As for the article in which information indicating that it is being taken out as the current usage status is stored in the state management table, the information on whether or not to take out from a predetermined area is read in the state management table. If indicated, the identification information of the corresponding article and the alert flag are transmitted to the entrance / exit management device connected to be communicable,
The asset management system
A communication unit that communicates with other devices, a storage unit that stores an entry / exit management table storing a user having entry / exit authority and authentication information thereof, an output unit, a user authentication device, a door opening / closing control device, and a medium attached to an article A reader installed around the door to read more identification information;
A flag setting unit that receives the alert flag and the identification information of the corresponding article transmitted from the storage device, and sets the alert flag for the corresponding article in the entry / exit management table;
User authentication information is acquired from the user authentication device, user authentication is performed by comparing with authentication information in the entrance / exit management table, a reading command is notified to the reader, and identification information of the article is obtained from the reader. Obtaining and comparing this identification information with the entry / exit management table to determine whether an alert flag is set, and when an alert flag is set for the article, the door opening / closing control device may An article entry for notifying the door opening / closing control device of the door opening / closing control device when the lock instruction is notified or the alert notification is output to the output unit and the alert flag is not set for the article and the user authentication is successful. The exit management department,
An entry / exit log transmitter for transmitting to the server log information including information on a user who carries the article identified by the user authentication, identification information of the article, and exit information from the door;
Including an entrance / exit management device comprising:
The data update processing unit of the server
The log data that is transmitted from the entry / exit management device and includes the information of the user who carries the article, the identification information of the article, and the exit information from the door is received, and the log data includes the log data Adding the information of the user who is the person carrying the article and the exit information from the door to the record of the article in the asset management table;
The asset management system according to claim 3. A communication unit that communicates with other devices;
An interface for reading electronic data recorded on the article;
A log that detects an electronic data reading event of the article at the interface, reads the identification information of the article included in the electronic data recorded by the article, and includes information indicating that the identification information and the article are in use A usage log transmitter for transmitting data to the server;
Including clients with
The data update processing unit of the server
The log data including the identification information of the article and the information that the corresponding article is in use, transmitted from the client, is received, and the information that the article included in the log data is in use is received as the asset. Add to the record of the item in the management table,
The asset management system according to any one of claims 2 to 5. The display processing unit of the storage device is
When a user authentication result is acquired from a communicable user authentication device, and an information presentation request regarding an article to be managed by the storage device is received from the corresponding user who has succeeded in user authentication, the corresponding user The storage device identifies the article that the user has the authority to use in the storage unit, extracts information stored in the corresponding article from the state management table and displays it on the output unit, and from the corresponding user who has succeeded in the user authentication, the storage device When an information presentation request regarding an article that is a management target in a storage device other than the above is received at the input unit, an information request regarding an article for which the user has authority to use is transmitted to the server, and is returned from the server. Receiving the information stored in the asset management table by the server regarding the corresponding product to be displayed and displaying it on the output unit,
The server
The information request is received from the storage device, the article for which the use authority is set for the corresponding user indicated by the information request is specified in the asset management table, and the information stored for the corresponding article is stored in the asset management table. An information provision processing unit that extracts and sends back to the storage device;
The asset management system according to any one of claims 3 to 5, wherein The server
The storage unit further includes a user information table storing authentication information of each user,
The user authentication information is received from the terminal connected to be communicable, and the user authentication is executed by collating with the authentication information in the user information table. An information providing processing unit that identifies the asset management table and extracts information stored about the corresponding article from the asset management table and returns the information to the terminal;
The asset management system according to any one of claims 3 to 5, wherein

Images