JP2011204246A - Electronic device and communication control method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an electronic device reducing the risk of data theft without damaging the convenience of near field communication.SOLUTION: A communication control program 12a displays, if a unique ID to be wirelessly transmitted from an external device A to a near field communication device 20 is not registered in a connection permission list 124, an image for urging the input of a password on an LCD 15. Only when the input password matches a registered password, the communication control program 12a registers the unique ID of the external device A to the connection permission list, and starts an operation to establish the connection between the near field communication device 20 and the external device A.

Description

  The present invention relates to an electronic device that performs close proximity wireless communication and a communication control method applied to the device.

  In recent years, wireless communication such as NFC has begun to be used in IC cards, mobile phones and the like. The user can easily perform communication for authentication processing, billing, etc., simply by holding the IC card or mobile phone over the reader / writer unit of the host device.

  Recently, new proximity wireless communication technology capable of high-speed communication has begun to be developed. This new proximity wireless communication technology enables exchange of data files such as document data, image data, and audio data as well as authentication and billing services.

  The communication range of close proximity wireless communication is limited to a narrow range of about several centimeters, for example. This narrow communication range makes it possible to reduce the risk of data theft during data communication between two devices. Therefore, in close proximity wireless communication, a certain level of security can be ensured without performing special communication for pairing or mutual authentication between devices.

  However, if data exchange between devices is unconditionally permitted only by a touch operation of bringing one device closer to another device, data in a device such as a computer is transferred by a malicious third party. There is a possibility of being stolen. For example, when a malicious third party performs an operation of bringing his / her device close to a user's computer, data in the computer may be stolen.

  In Patent Document 1, in an automatic transaction apparatus (ATM) equipped with a general-purpose I / F for maintenance personnel operation, a device connected to the general-purpose I / F is registered in the automatic transaction apparatus (ATM) in advance and registered. A technique for controlling to prevent use other than equipment is disclosed.

JP 2007-18398 A

  However, in the technique of Patent Document 1, the automatic transaction apparatus (ATM) cannot communicate with any device that is not registered as a connection target device.

  In close proximity wireless communication, various types of electronic devices such as a mobile phone, a digital camera, a PDA, and a myriad of other mobile devices may become communication targets. Therefore, as a security function applied to close proximity wireless communication, in order not to impair the convenience of close proximity wireless communication, connections with devices that are not registered in advance as connection target devices are permitted as necessary. A mechanism to make it possible is necessary.

  The present invention has been made in consideration of the above-described circumstances, and an object thereof is to provide an electronic device and a communication control method capable of reducing the risk of data theft without impairing the convenience of close proximity wireless communication. And

  In order to solve the above-described problems, an electronic device according to the present invention acquires a communication module for wireless communication and identification information of the device from the external device when a certain external device starts communication with the communication module. And connection control means for displaying a screen for confirming that the connection with the external device is established when the identification information is identification information of an external device that has never established a connection.

  In addition, the present invention is a communication control method for controlling wireless communication by a communication module provided in an electronic device, and when the electronic device starts communication with the communication module from an external device, the external device The identification information of the device is acquired, and it is determined whether or not the identification information is identification information of an external device that has never established a connection. Then, a screen for confirming that the connection with the external device is established is displayed.

  According to the present invention, the risk of data theft can be reduced without impairing the convenience of close proximity wireless communication.

1 is a block diagram showing a system configuration of an electronic device according to an embodiment of the present invention. 4 is an exemplary block diagram illustrating a configuration of a communication control program used in the electronic apparatus of the embodiment. FIG. The perspective view which shows the external appearance of the electronic device of the embodiment. 2 is an exemplary diagram illustrating an example of close proximity wireless communication performed between the electronic apparatus of the embodiment and an external device. FIG. The figure which shows the example of the software air architecture for controlling proximity | contact wireless communication applied to the electronic device of the embodiment. 6 is an exemplary flowchart illustrating a procedure of a connection control operation which is executed by the electronic apparatus of the embodiment. 4 is an exemplary view showing a password registration screen displayed on the display of the electronic apparatus of the embodiment. FIG. 6 is an exemplary view showing a password input screen displayed on the display of the electronic apparatus of the embodiment. FIG. 6 is an exemplary view showing an example of a setting screen for close proximity wireless communication displayed on the display of the electronic apparatus of the embodiment. FIG. 6 is a diagram for explaining each device registration mode applied to the electronic apparatus of the embodiment. FIG. 6 is an exemplary flowchart illustrating another procedure of the connection control operation executed by the electronic apparatus of the embodiment. FIG. 6 is an exemplary view for explaining an operation executed when the device registration mode is changed by the electronic apparatus of the embodiment. 6 is an exemplary view showing a password re-registration confirmation screen displayed on the display of the electronic apparatus of the embodiment. FIG. 6 is an exemplary flowchart illustrating a procedure of password re-registration processing which is executed by the electronic apparatus of the embodiment.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

  FIG. 1 shows a configuration of an electronic apparatus according to an embodiment of the present invention. The electronic device 10 is realized as, for example, a portable computer, a mobile phone, a PDA, an audio player, a TV, or the like. The electronic apparatus 10 includes a system control unit 11, a memory 12, a storage device 13, an input unit 14, a liquid crystal display (LCD) 15, a sound controller 16, a speaker 17, an indicator 18, a power supply control unit 19, and a proximity wireless communication device. 20.

  The system control unit 11 controls the operation of each unit in the electronic device 10. The system control unit 11 is connected to the memory 12, storage device 13, input unit 14, LCD 15, sound controller 16, indicator 18, power supply control unit 19, and proximity wireless communication device 20. The system control unit 11 includes a CPU 101a.

  The CPU 101a is a processor that executes an operating system and various application programs / utility programs loaded from the storage device 13 to the memory 12. The application program / utility program includes a communication control program 12a for controlling the communication operation of the close proximity wireless transfer device 20.

  The communication control program 12a has a function of identifying an identifier (unique ID) of each device (external device), and the user selects an external device that can establish a connection with the close proximity wireless transfer device 20. Make it possible to do. The unique ID of the external device that is permitted to connect to the close proximity wireless transfer device 20 is registered in the connection permission list. If a unique ID that is wirelessly transmitted from a certain external device A to the close proximity wireless communication device 20 is registered in the connection permission list, the communication control program 12a can transmit data between the close proximity wireless communication device 20 and the external device A. In order to execute the transfer, an operation for establishing a connection between the close proximity wireless transfer device 20 and the external device A is immediately started. This connection permission list makes it possible to limit the external devices that can establish a connection with the external device A to a specific number of devices.

  However, for example, if a third party operates the electronic device 10 without permission and registers a unique ID of an unauthorized external device B in the connection permission list, the data in the electronic device 10 may be stolen. There is. This is because a connection between the external device B and the electronic device 10 may be established just by a third party touching the external device B on the electronic device 10, and data exchange between these devices may be started. Because.

  The communication control program 12a has a function of preventing a unique ID of an unauthorized external device from being registered in the connection permission list using password verification. More specifically, when the communication control program 12a receives the unique ID of the external device A wirelessly transmitted from a certain external device A that is close to the electronic device 10, the communication control program 12a It is determined whether or not the ID is registered in the connection permission list. If the received unique ID is not registered in the connection permission list, the communication control program 12a recognizes that the external device A is a device touched to the electronic device 20 for the first time. In this case, the communication control program 12a first displays on the LCD 15 a screen prompting the input of a password. Only when the input password is valid, that is, when the input password matches the password already registered in the electronic device 10 (registered password), the communication control program 12a receives the received unique The ID, that is, the unique ID of the external device A is registered in the connection permission list. Then, the communication control program 12a performs an operation for establishing a connection between the close proximity wireless communication device 20 and the external device A in order to execute data transfer between the close proximity wireless communication device 20 and the external device A. Start.

  On the other hand, when the input password is invalid, the communication control program 12a does not register the unique ID of the external device A in the connection permission list. A connection between the close proximity wireless communication device 20 and the external device A is not established, and therefore no data exchange is performed between the wireless communication device 20 and the external device A.

  Therefore, even if a third party touches the electronic device 10 with an external device B that is not registered in the connection permission list, a unique ID of the external device B is illegally registered in the connection permission list. Occurrence can be prevented.

  As described above, in the present embodiment, the contents of the connection permission list held in the electronic device 10 can be protected using password verification. Therefore, for example, the risk of data theft can be reduced without performing a special communication for ensuring security, such as exchanging a password or key code between the close proximity wireless transfer device 20 and the external device A. . When the user wishes to communicate with a device not registered in the connection permission list and the electronic device 10, the user only touches the device to the electronic device 10 and inputs a password. Just do it. Therefore, establishment of a connection between the device not registered in the connection permission list and the electronic device 10 can be easily permitted only by inputting a password by the user.

  The storage device 13 is composed of, for example, a hard disk drive or a nonvolatile semiconductor memory. The input unit 14 is an input device for inputting data and instructions to be given to the CPU 111. The input unit 14 is realized by, for example, a keyboard, a plurality of button switches, or a pointing device.

  The LCD 15 is a display device used as a display of the electronic device 10. The sound controller 16 is a sound source circuit for outputting sound corresponding to the audio data transmitted from the CPU 101a. The sound controller 16 converts the audio data transmitted from the CPU 101 a from a digital audio signal to an analog audio signal, and outputs the analog audio signal to the speaker 17. The speaker 17 outputs a sound corresponding to the analog audio signal.

  The indicator 18 presents the status of the close proximity wireless communication executed by the close proximity wireless communication device 20 (data transfer start, data transfer end, etc.). The indicator 18 includes a light emitting unit such as an LED.

  The power supply control unit 19 supplies power to each unit in the electronic device 10 using power supplied from the outside via the AC adapter 30 or power supplied from the battery 19 b provided in the electronic device 10. . In other words, the electronic device 10 is driven by an external power source such as an AC commercial power source or a battery 19b. The AC adapter 30 can also be provided in the electronic device 10. The power control unit 19 powers on or powers off the electronic device 10 according to the operation of the power switch (P-SW) 19a by the user.

  The proximity wireless communication device 20 is a communication module that performs proximity wireless communication. The close proximity wireless transfer device 20 can communicate with another device (external device) having a close proximity wireless communication function that exists within a predetermined range from the close proximity wireless transfer device 20. The wireless communication between the close proximity wireless communication device 20 and the external device is performed when the close proximity wireless communication device 20 and the external device are in close proximity, that is, the distance between the close proximity wireless communication device 20 and the external device is a communicable distance. Only possible when approaching within (for example, 3 cm). When the close proximity wireless communication device 20 and the external device approach within a communicable distance, communication between the close proximity wireless communication device 20 and the external device becomes possible. Then, an operation for establishing a connection (wireless connection) between the close proximity wireless communication device 20 and the external device, in other words, establishing a communication path for communication between the application of the electronic device 10 and the application of the external device. The operation to start is started. After the connection (wireless connection) between the devices is established, for example, data transfer such as a data file explicitly designated by the user, a predetermined synchronization target data file, or the like is transferred between the close proximity wireless communication device 20 and the external device. Executed between.

  In close proximity wireless communication, an induced electric field is used. For example, TransferJet can be used as the close proximity wireless communication system. TransferJet is a close proximity wireless communication method using UWB, and can realize high-speed data transfer.

  The close proximity wireless transfer device 20 is connected to the antenna 20b. The antenna 20b is an electrode called a coupler, and transmits / receives data to / from an external device by a radio signal using an induction electric field. When the external device approaches within a communication distance (for example, 3 cm) from the antenna 20b, the close proximity wireless communication device 20 and the antenna (coupler) of each external device are coupled by an induced electric field, whereby the close proximity wireless communication device 20 is connected. Wireless communication between the external device and the external device becomes possible. The close proximity wireless transfer device 20 and the antenna 20b can be realized as one module.

  Next, the configuration of the communication control program 12a will be described with reference to FIG.

  The communication control program 12a includes a connection control program 121, a connection control driver 122, a password management module 123, and the like. The connection control driver 122 is a program that functions as a protocol stack for controlling the operation of the close proximity wireless transfer device 20. The connection control program 121 is a program that controls an operation for establishing a connection between the close proximity wireless transfer device 20 and an external device. The connection control program 121 has a function for managing the connection permission list 124, a function for managing passwords in cooperation with the password management module 123, and a function for permitting or prohibiting registration of devices in the connection permission list 124 using password verification. Execute.

  The connection permission list 124 is information indicating a unique ID of each device that is permitted to establish a connection with the close proximity wireless transfer device 20. The connection permission list 124 is stored in, for example, the storage device 13 provided in the electronic device 10. The password management module 123 is a program for managing passwords. For example, the password management module 123 can manage a password (registered password) used for the above-described password verification for each login user. For example, the password is encrypted, and the encrypted password is stored in a registry area or the like. In the present embodiment, the character codes that can be used as a password are limited to numbers (0-9) only, and a character code such as an alphabet cannot be used as a password. This is to allow the user to receive password verification by typing only some numbers without typing a character code such as an alphabet.

  Next, an example of the appearance of the electronic device 10 will be described with reference to FIG. 3 assuming that the electronic device 10 is realized as a portable personal computer.

  FIG. 3 is a perspective view showing the external appearance of the electronic device 10.

  The electronic device 10 includes a main body 41 and a display unit 42. The display unit 42 is attached to the main body 41 so as to be rotatable between an open position where the upper surface of the main body 41 is exposed and a closed position where the upper surface of the main body 41 is covered by the display unit 42. In the display unit 42, the LCD 15 described above is provided.

  The main body 41 has a thin box-shaped housing. On the upper surface of the housing of the main body 41, a keyboard 14a, a touch pad 14b, an indicator 18, a power switch 19a, and the like are arranged.

  An upper surface of the main body 41, specifically, a part of the palm rest rest area 41 a on the upper surface of the main body 41 functions as a communication surface. That is, the proximity wireless communication device 20 and the antenna (coupler) 20 b are provided in the main body 41 so as to face the palm rest rest area 41 a on the upper surface of the main body 41. The antenna (coupler) 20b is arranged to output a radio signal (inductive electric field) to the outside via the upper surface of the main body 41 (specifically, a part of the palm rest rest area 41a on the upper surface of the main body 41). ing. A small area on the upper surface of the main body 41 facing the antenna (coupler) 20b, that is, a small area located above the antenna (coupler) 20b on the upper surface of the main body 41 is used as a communication position.

  For example, the user performs an operation (touch operation) of holding an external device having a proximity wireless communication function over a communication position in the palm rest rest area 41 a of the main body 41, thereby data between the external device and the electronic apparatus 10. The transfer can be started. In a state where the electronic device 10 and the external device are close to each other, a part of the keyboard 14 of the electronic device 10, for example, a part of the key group in the keyboard located on the palm rest area 41a side is like a mobile phone. It may be covered by an external device and operation of some of these keys may be difficult.

  In an ordinary computer, alphabet keys are distributed at a plurality of key positions on the keyboard, but all numeric keys are concentrated at the upper position in the keyboard. In the present embodiment, as described above, the character codes that can be used as the password are limited to numbers (0-9) only. Therefore, the user can configure only the combination of numeric keys even when the external device is placed on the palm rest rest area 41a of the main body 41 or when the external device is held over the palm rest rest area 41a of the main body 41. Password can be entered normally.

  FIG. 4 shows a state of close proximity wireless communication performed between the mobile phone 50 and the electronic device 10. An antenna (coupler) for close proximity wireless communication is provided in the casing of the mobile phone 50 so as to face the back of the casing. In this case, close proximity wireless communication between the mobile phone 50 and the electronic device 10 can be started by holding the back surface of the casing of the mobile phone 50 over a communication position on the palm rest area of the main body 41 of the electronic device 20. It becomes.

  Next, with reference to FIG. 5, a software architecture for controlling close proximity wireless communication performed using the close proximity wireless communication device 104 will be described.

  The software architecture of FIG. 5 shows a hierarchical structure of a protocol stack for controlling close proximity wireless communication. The protocol stack includes a physical layer (PHY), a connection layer (CNL), a protocol conversion layer (PCL), and an application layer.

  The physical layer (PHY) is a layer that controls physical data transfer, and corresponds to the physical layer in the OSI reference model. Some or all of the functions of the physical layer (PHY) can also be realized using hardware in the close proximity wireless transfer device 20.

  The physical layer (PHY) converts data from the connection layer (CNL) into a radio signal. The connection layer (CNL) corresponds to the data link layer and transport layer in the OSI reference model, and controls the physical layer (PHY) to execute data communication.

  The connection layer (CNL) is a physical link between the proximity wireless communication device 20 set in the proximity state and the external device in response to a connection request from the protocol conversion layer (PCL) or a connection request from the external device. A process of establishing a link (CNL connection) is executed. Here, a procedure for establishing a CNL connection between two devices (devices 1 and 2) will be described. Of the devices 1 and 2, the device on the communication start side, for example, the device 1, executes processing for wirelessly transmitting a connection request (C_Req). This connection request (C_Req) can include the unique ID of the device 1. The device 2 periodically executes a process for receiving a connection request (C_Req). When the device 1 and the device 2 are in the proximity state, the device 2 can receive the connection request (C_Req) transmitted from the device 1. When the connection request (C_Req) is received, the device 2 wirelessly transmits a response (C_Acc) indicating acceptance of the received connection request (C_Req) to the device 1. This response (C_Acc) can include the unique ID of the device 2. The device 1 can receive a response (C_Acc) wirelessly transmitted from the device 2. In this way, a link (CNL connection) between the device 1 and the device 2 is established by transmitting and receiving the connection request signal (C_Req) and the response signal (C_Acc) between the device 1 and the device 2.

  The protocol conversion layer (PCL) corresponds to the session layer and the presentation layer in the OSI reference model, and includes an application layer and a connection layer (CNL) for controlling establishment and release of a link between two devices. Located between. The protocol conversion layer (PCL) controls each application (communication program) in the application layer and controls the connection layer (CNL) in order to establish a connection between the two devices.

  More specifically, the protocol conversion layer (PCL) uses data (user data) corresponding to an application protocol (for example, SCSI, OBEX, other general-purpose protocol) handled by each communication program in the application layer for specific transmission. Perform conversion processing to convert to data format. By this conversion processing, data transmitted and received by any communication program is converted into a packet (data in a specific transmission data format) that can be handled by the connection layer (CNL). This protocol conversion layer (PCL) makes it possible to use various application protocols in near field communication.

  In this embodiment, the protocol conversion layer (PCL) has three modes (proactive mode, reactive mode, and flexible mode), and can operate in one of these three modes.

  The proactive mode is a mode for functioning as a so-called master, and a device in the proactive mode can execute a service such as data transfer between the devices by controlling a communication partner device. The reactive mode is a mode for functioning as a so-called slave, and a device in the reactive mode can execute a service such as data transfer between the devices under the control of the communication partner device.

  The default mode of a mobile device such as a mobile phone that cannot be driven by an external power source has been determined to be a reactive mode in order to reduce its power consumption. When an application on the mobile device is operated by the user, the mobile device automatically transitions from the reactive mode to the proactive mode.

  The device set to the proactive mode transmits a connection request signal C_Req. On the other hand, since the device in the reactive mode does not transmit the connection request signal C_Req, the power consumption is relatively small.

  The flexible mode is a mode in which the own mode can be automatically changed to the proactive mode or the reactive mode according to the mode (proactive mode or reactive mode) of the communication partner device. The flexible mode device transitions to the reactive mode if the communication partner device is in the proactive mode, and transitions to the proactive mode if the communication partner device is in the reactive mode. The transition to the proactive mode or the reactive mode is performed, for example, after a CNL connection between devices is established.

  The default mode of a device such as a personal computer that can be driven by an external power source such as an AC adapter power source is the flexible mode. The device in the flexible mode can transmit the connection request signal C_Req. Thereby, for example, even when the user brings the mobile phone close to the personal computer (flexible mode device) without operating the mobile phone application, the CNL connection between the devices can be established.

  Next, a procedure of connection control processing executed by the electronic device 10 will be described with reference to the flowchart of FIG.

  Here, it is assumed that a mobile device such as a mobile phone or a digital camera is touched on the palm rest area of the electronic device 10. When the mobile device touches the palm rest area of the electronic device 10, communication between the close proximity wireless transfer device 20 of the electronic device 10 and the mobile device is started. First, the communication control program 12a determines whether the mobile device is a device that is first touched by the electronic device 10 (step S11). In step S11, the communication control program 12a receives the unique ID included in the signal (connection request signal C_Req or response signal C_Acc) wirelessly transmitted from the mobile device via the close proximity wireless communication device 20, and the received unique ID Is included in the connection permission list 124. If the received unique ID is not included in the connection permission list 124, that is, if the received unique ID is not registered in the connection permission list 124, the communication control program 12 a adds the mobile device to the electronic device 10. Recognize that the device is touched for the first time. On the other hand, if the received unique ID is included in the connection permission list 124, the communication control program 12a recognizes that the mobile device is a device that is permitted to establish a connection with the electronic device 10.

  If it is determined in step S11 that the mobile device touched by the electronic device 10 is already permitted to establish connection with the electronic device 10 (NO in step S11), the communication control program 12a. Proceeds to step S16, and starts an operation for establishing a connection between the mobile device and the close proximity wireless transfer device 20 (step S16). In this step S16, the communication control program 12a, for example, the type of data transferred between the mobile device, the electronic device 10, and the mobile device, and the protocol to be used (such as SCSI, OBEX, or other general-purpose protocol). Negotiation process is executed to establish a communication path (connection) for communication between the application layer on the electronic device 10 side and the application layer on the mobile device side.

  On the other hand, if it is determined in step S11 that the mobile device is a device touched for the first time on the electronic device 10 (YES in step S11), the communication control program 12a requests the user to input a password. A password input screen is displayed on the LCD 15 (step S12). Then, the communication control program 12a compares the password input on the password input screen with the registered password. If the entered password is valid, that is, if the entered password is a correct password that matches the registered password (YES in step S13), the communication control program 12a connects the mobile device to the electronic device 10. In order to register as a device capable of establishing a connection, a unique ID of the mobile device is added to the connection permission list 124 (step S15). Then, the communication control program 12a proceeds to step S16, and starts an operation for establishing a connection between the mobile device and the close proximity wireless transfer device 20 (step S16). In addition, although step S16 was performed after the process of step S15 here, step S15 may be performed after step S16.

  If the input password is invalid, that is, if a password that matches the registered password has not been input (YES in step S13), the communication control program 12a is set between the mobile device and the close proximity wireless transfer device 20. Connection is rejected (step S14). In this case, the unique ID of the mobile device is not added to the connection permission list 124.

  FIG. 7 shows an example of a password registration screen used for password registration. In response to the occurrence of the password registration request event from the user, the communication control program 12a displays the password registration screen shown in FIG. As described above, the characters that can be used for the password are limited to, for example, four digits or less.

  FIG. 8 shows an example of a password input screen for password verification. Here, the password input screen will be described assuming that the electronic device 10 is realized by a computer.

  As shown in FIG. 8, the password input screen confirms with the user whether or not to register the detected device (the device touched by the electronic device 10) as a device connectable to the electronic device 10. Message, and the device name and device ID of the device. The device name and device ID are displayed based on the unique ID received from the detected device. A password input field is further displayed on the password input screen.

  If the “OK” button is clicked with the correct password entered in the password input field, the unique ID of the detected device is added to the connection permission list 124, so that the device is connected to the electronic device 10. Registered as a connectable device. If the correct password is not entered, or if the “Cancel” button is clicked, the unique ID of the detected device is not added to the connection permission list 124.

  Next, an example of a setting screen for setting the operating environment for close proximity wireless communication will be described with reference to FIG. This setting screen is displayed on the LCD 15 by the communication control program 12a.

  The “connected device list” tab of the setting screen is used to manage a list of devices that can be connected to the electronic device 10. In the “connected device list” tab, a device list window 201, a registration cancellation button 202, mode selection check boxes 203 and 204, a password registration button 205, and the like are displayed.

  The device list window 201 displays a list of devices that can be connected to the electronic device 10 based on the unique ID group in the connection permission list 124. When the deregistration button 202 is clicked while a certain device in the device list window 201 is selected, the unique ID corresponding to the selected device is deleted from the connection permission list 124.

  The mode selection check boxes 203 and 204 are used for determining an operation mode for controlling close proximity wireless communication, that is, for determining an operation mode of a connection control operation executed by the communication control program 12a. In this embodiment, roughly divided, two modes are used for connection control. The first mode is an operation mode in which a password input is requested when an unregistered device (a device touched for the first time on the electronic device 10) is detected. The second mode is an operation mode in which a password input is not requested when an unregistered device (a device touched for the first time on the electronic device 10) is detected.

  When the mode selection check box 203 is checked, the operation mode of the connection control operation is set to the first mode (authentication & password input mode). During the period when the operation mode is the first mode, the communication control program 12a displays the password input screen of FIG. 8 when an unregistered device (a device touched for the first time on the electronic device 10) is detected.

  When the mode selection check box 204 is checked, the operation mode of the connection control operation is set to the automatic registration mode. The automatic registration mode is a form of the second mode described above. During the period when the operation mode is the automatic registration mode, the communication control program 12a displays a screen such as a password input screen when an unregistered device (a device touched for the first time on the electronic device 10) is detected. Instead, the unique ID of the unregistered device is automatically added to the connection permission list 124.

  If neither of the mode selection check boxes 203 and 204 is checked, the operation mode of the connection control operation is set to the authentication mode. The authentication mode is also a form of the second mode. During the period when the operation mode is the authentication mode, the communication control program 12a is detected without displaying the password input screen when an unregistered device (a device touched for the first time on the electronic device 10) is detected. Only a confirmation screen for confirming to the user whether or not to add the device to the connection permission list 124 is displayed. Only when the addition is permitted by the user, the communication control program 12 a adds the unique ID of the detected device to the connection permission list 124. Note that the mode selection check boxes 203 and 204 cannot be checked simultaneously.

  Thus, in the present embodiment, the user can appropriately select the first mode (authentication & password input mode) or the second mode (authentication mode or automatic registration mode) using the setting screen of FIG. it can. Therefore, for example, the user first registers several mobile devices (mobile phone, digital camera, audio player, etc.) owned by the user as devices connectable to the electronic apparatus 10 using the second mode. Thereafter, in order to improve security, an operation of switching the operation mode to the first mode can be performed. Even after switching to the first mode, for a device whose unique ID is registered in the connection permission list 124, the user simply touches the device with the electronic device 10, and data between the device and the electronic device 10 is displayed. Exchange can be performed easily. That is, during the first mode, when a device whose unique ID is already registered in the connection permission list 124 is touched on the electronic device 10, neither the password input screen nor the confirmation screen is displayed. Immediately, an operation for establishing a connection between the device and the electronic apparatus 10 is started. Only when a device whose unique ID is not registered in the connection permission list 124 is touched to the electronic apparatus 10, the password input is requested. Thus, since a password input is not required unless a new device is touched on the electronic device 10, the user may forget the registered password.

  Therefore, in this embodiment, in order to be able to easily cope with the case where the user forgets the registered password, the registered password is changed to a new password without asking for a password that matches the registered password. A password re-registration function (also referred to as a registered password change function) is provided. A password registration button 205 is a button for generating a password registration request event. When the password registration button 205 is clicked, a password registration screen for performing password registration or password re-registration is displayed. This password registration button 205 can be used for both the initial password registration and the password re-registration described above.

  However, using such a password re-registration function involves a risk that a registered password is rewritten to another password by a malicious third party. Therefore, the communication control program 102a is provided with a password registration date / time display function for displaying on the LCD 15 the previous password registration date / time, that is, the date / time when the password was last registered. The previous password registration date and time is displayed on the “connected device list” tab screen as shown in FIG. 9, for example. By viewing the previous password registration date and time, the user can know whether or not the registered password has been illegally changed by a third party.

  Next, referring to FIG. 10, the relationship between the password input screen displayed in the authentication & password input mode (mode 1) and the confirmation screen (also referred to as the authentication screen) displayed in the authentication mode (mode 2) is described. explain.

  On the password input screen, as described above, the device name and device ID of the device touched for the first time on the electronic device 10 and whether to register this device as a device connectable to the electronic device 10 are confirmed with the user. Message and a password input field are displayed. When the “OK” button on the password input screen is clicked while the correct password is input on the password input screen, the unique ID of this device is added to the connection permission list 124.

  On the confirmation screen, the device name and device ID of the device touched for the first time on the electronic device 10 and a message for confirming to the user whether or not to register this device as a device connectable to the electronic device 10 are displayed. The password input field is not displayed. When the “OK” button on the confirmation screen is clicked, the unique ID of this device is added to the connection permission list 124.

  In the automatic registration mode (mode 3), neither the password input screen nor the confirmation screen is displayed even if a device touched for the first time on the electronic device 10 is detected.

  Next, with reference to the flowchart of FIG. 11, the procedure of connection control processing corresponding to each of the authentication & password input mode (mode 1), the authentication mode (mode 2), and the automatic registration mode (mode 3) will be described.

  When the mobile device touches the palm rest area of the electronic device 10, communication between the close proximity wireless transfer device 20 of the electronic device 10 and the mobile device is started. First, the communication control program 12a determines whether or not the mobile device is a device that is first touched by the electronic device 10 (step S21). In step S21, the communication control program 12a receives the unique ID included in the signal wirelessly transmitted from the mobile device (connection request signal C_Req or response signal C_Acc) via the close proximity wireless communication device 20, and receives the received unique ID. Is included in the connection permission list 124. If the received unique ID is not included in the connection permission list 124, that is, if the received unique ID is not registered in the connection permission list 124, the communication control program 12 a adds the mobile device to the electronic device 10. Recognize that the device is touched for the first time. On the other hand, if the received unique ID is included in the connection permission list 124, the communication control program 12a recognizes that the mobile device is a device that is permitted to establish a connection with the electronic device 10.

  If it is determined in step S21 that the mobile device touched by the electronic device 10 is already permitted to establish a connection with the electronic device 10 (NO in step S21), the communication control program 12a. Proceeds to step S27, and starts an operation for establishing a connection between the mobile device and the close proximity wireless transfer device 20.

  On the other hand, if it is determined in step S21 that the mobile device is the first touched device 10 (YES in step S21), the communication control program 12a determines that the current operation mode is authentication & password input. It is determined whether the mode (mode 1), authentication mode (mode 2), or automatic registration mode (mode 3) is selected (step S22).

  If the current operation mode is the authentication & password input mode (mode 1), the communication control program 12a executes the same processing as the processing in steps S12 to S16 in the flowchart of FIG. 6 (steps S23 to S27).

  If the current operation mode is the authentication mode (mode 2), the communication control program 12a confirms whether or not to register the first touched mobile device as a device that can establish a connection with the electronic device 10. A screen is displayed on the LCD 15, and the user is inquired whether to register the mobile device as a device that can be connected to the electronic device 10 (step S28). When the “OK” button on the confirmation screen is clicked (YES in step S29), the communication control program 12a registers the mobile device as a device that can establish a connection with the electronic device 10, and is specific to the mobile device. The ID is added to the connection permission list 124 (step S26). Then, the communication control program 12a proceeds to step S27, and starts an operation for establishing a connection between the mobile device and the close proximity wireless transfer device 20. When the “cancel” button on the confirmation screen is clicked (NO in step S29), the communication control program 12a rejects the connection between the mobile device and the close proximity wireless transfer device 20 (step S25). In this case, the unique ID of the mobile device is not added to the connection permission list 124.

  If the current operation mode is the automatic registration mode (mode 3), the communication control program 12a permits connection of the unique ID of the mobile device in order to register the mobile device as a device that can establish a connection with the electronic device 10. It adds to the list | wrist 124 (step S26). Then, the communication control program 12a proceeds to step S27, and starts an operation for establishing a connection between the mobile device and the close proximity wireless transfer device 20.

  Next, processing executed by the communication control program 12a when the mode selection check box 203 is unchecked will be described with reference to FIG.

  If the mode selection check box 203 is allowed to be unrestricted, there is a risk that a malicious third party illegally changes the current operation mode from the authentication & password input mode to the authentication mode or the automatic registration mode. . Therefore, when the mode selection check box 203 is unchecked, that is, when a mode change request event from the authentication & password input mode to the authentication mode or the automatic registration mode occurs, the communication control program 12a is shown in FIG. As described above, the password input screen 300 is displayed on the LCD 15. Only when the correct password that matches the registered password is input to the password input screen 300, the communication control program 12a permits the mode change and changes the current mode from the authentication & password input mode to the authentication mode or the automatic registration mode. change.

  Next, the password re-registration function will be described.

  When the password registration button 205 in FIG. 9 is clicked with the password registered, the communication control program 12a displays a confirmation screen 400 as shown in FIG. On this confirmation screen 400, a message is displayed to the effect that registration of all devices is canceled when the password is re-registered.

  When the “Yes” button on the confirmation screen 400 is clicked, the password registration screen in FIG. 7 is displayed. When the “OK” button on the password registration screen in which the password is entered on the password registration screen is clicked, the password is registered as a new registration password in the electronic device 10 and included in the connection permission list 124. All existing IDs are deleted. As described above, in this embodiment, although the change of the registration password is permitted without performing password verification that requires the password matching the registration password, the contents of the connection permission list 124 are cleared when the registration password is changed. Is done. In this way, once the contents of the connection permission list 124 are cleared, the connection control process based on the new registered password after the change is restarted from the initial state (the state where no ID is registered in the connection permission list 124). It becomes possible to do. When the “No” button on the confirmation screen 400 is clicked, the screen returns to the “connected device list” tab screen of FIG.

  Next, a procedure for password registration / re-registration processing will be described with reference to the flowchart of FIG.

  When the password registration button 205 on the “connected device list” tab screen in FIG. 9 is clicked (YES in step S31), the communication control program 12a determines whether the registered password has already been saved, that is, the password is registered. It is determined whether or not (step S32).

  If the registration password is not stored (NO in step S32), the communication control program 12a displays the password registration screen of FIG. 7 on the LCD 15 (step S33). Then, the communication control program 12a saves the password input on the password registration screen as a registration password in the registry (step S34). Further, the communication control program 12a saves the current date and time as the registration password save date and time, that is, the password registration date and time, and displays the password registration date and time on the “connected device list” tab screen of FIG. 9 (step S35). .

  If the registered password is already stored (YES in step S32), the communication control program 12a displays the confirmation screen of FIG. 13 on the LCD 15 (step S36). When the “Yes” button on the confirmation screen in FIG. 13 is clicked, the communication control program 12a displays the password registration screen in FIG. 7 on the LCD 15 (step S37). Then, the communication control program 12a stores the password input on the password registration screen as a new registration password in the registry, that is, the already stored registration password is changed to the new password input on the password registration screen. Update processing is executed (step S38). Next, the communication control program 12a deletes each ID in the connection permission list 124 and clears the connection permission list 124 (step S39). Further, the communication control program 12a saves the current date and time as the registration password save date and time, that is, the password registration date and time, and displays the password registration date and time on the “connected device list” tab screen of FIG. 9 (step S35). . Therefore, the password registration date and time displayed on the “connected device list” tab screen in FIG. 9 is updated every time the password is re-registered.

  As described above, according to the present embodiment, the password is exchanged between the close proximity wireless transfer device 20 and the external device by protecting the connection permission list itself held in the electronic device 10 using password verification. Thus, the risk of data theft can be reduced without performing special communication. If the user wishes to communicate with a device not registered in the connection permission list and the electronic device 10, the user simply touches the electronic device 10 with the device he wants to use and inputs a password. Data transfer between the device to be used and the electronic apparatus 10 can be performed.

  In the present embodiment, the case where the electronic device 10 is realized by a personal computer has been described as an example, but the electronic device 10 can also be realized as a portable device such as a mobile phone or a PDA.

  Moreover, the function of the communication control program of this embodiment can also be realized by a hardware module.

  Further, the present invention is not limited to the above-described embodiment as it is, and can be embodied by modifying the constituent elements without departing from the scope of the invention in the implementation stage. In addition, various inventions can be formed by appropriately combining a plurality of components disclosed in the embodiment. For example, some components may be deleted from all the components shown in the embodiment. Furthermore, constituent elements over different embodiments may be appropriately combined.

  DESCRIPTION OF SYMBOLS 10 ... Electronic device, 11 ... System control part, 12a ... Communication control program, 101a ... CPU, 20 ... Proximity wireless communication device, 121 ... Connection control program, 124 ... Connection permission list.

Claims (10)

A communication module for wireless communication;
When an external device starts communication with the communication module, the device acquires identification information of the device from the external device, and the identification information is identification information of an external device that has never established a connection. An electronic device comprising connection control means for displaying a screen for confirming that a connection between the two is established. The connection control means includes
When it is confirmed that the connection with the external device is established on the screen, when the external device starts communicating with the communication module, the external device displays the screen as an external device that has established a connection. The electronic device according to claim 1, wherein an operation for establishing a connection with the communication module is started without performing the operation. The connection control means includes
A password input screen is displayed as the screen, and when a password is input to the password input screen and the password matches a pre-registered password, it is determined that the connection with the external device has been confirmed. Item 2. The electronic device according to Item 1. The connection control means includes
The electronic apparatus according to claim 3, wherein when the connection to the external device is not confirmed on the screen, the connection is not established. A storage means for storing the identification information;
The connection control means stores identification information of an external device confirmed to establish the connection in the storage means, and when the external device starts communication, the identification information acquired from the external device is stored in the storage means. The electronic device according to claim 1, wherein the external device recognizes that the external device is an external device that has established a connection. The connection control means includes
The electronic apparatus according to claim 5, wherein when the identification information acquired from the external device is not stored in the storage unit, storing the identification information in the storage unit is displayed on the screen. A communication control method for controlling wireless communication by a communication module provided in an electronic device,
When the electronic device starts communication with the communication module, an external device acquires identification information of the device from the external device,
Determine whether the identification information is the identification information of an external device that has never established a connection,
A communication control method for displaying a screen for confirming that the electronic device establishes a connection with the external device when the identification information is information on an external device that has not been established.   When it is confirmed that the connection with the external device is established on the screen, when the external device starts communicating with the communication module, the external device displays the screen as an external device that has established a connection. The communication control method according to claim 7, wherein an operation for establishing a connection with the communication module is started without performing the operation. A password input screen is displayed as the screen, and a password is input to the password input screen.
Determine whether the password matches the pre-registered password,
The communication control method according to claim 7, wherein when it is determined that they match, it is determined that establishment of a connection with the external device has been confirmed.   The communication control method according to claim 9, wherein the connection is not established when it is not confirmed on the screen that the connection with the external device is to be established.

Images