JP2013004005A - Electronic apparatus, authentication program, and authentication method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an electronic apparatus, an authentication program, and an authentication method that, even in logging-in using a fraudulently acquired password, allow effective prevention against the expansion of its damage.SOLUTION: An electronic apparatus includes: an authentication unit 12-1 for performing the authentication of a user on the basis of prescribed authentication information; an execution state calculation unit 12-2 for, after a login is executed on the basis of the result of authentication in the authentication unit 12-1, calculating the number of times in which one or two or more prescribed functions are executed and/or a time in which a prescribed function is executed; a determination unit 12-3 for determining whether or not the number of times and/or the time reaches a prescribed threshold; an authentication information issuing unit 12-4 for issuing new authentication information when it is determined that the number of times and/or the time has reached the prescribed threshold; and a logout management unit 12-5 for, when the new authentication information is issued, finishing an available state of the function and forcing a logout.

Description

  The present invention relates to an electronic device that performs user authentication, an authentication program that executes the user authentication, and a user authentication method, and in particular, an electronic device that secures security by restricting use under predetermined conditions during login. , An authentication program and an authentication method.

In a multi-function peripheral (MFP) equipped with multiple functions such as a copy function, a printer function, and a FAX function, authentication information such as a predetermined password and ID is entered when the multi-function peripheral is started. Some have an authentication function for authenticating a user.
For example, when the user uses the multifunction device, the multifunction device displays a screen for inputting authentication information on the touch panel. The user inputs authentication information by operating the touch panel. The multi-function peripheral determines whether the input authentication information belongs to a legitimate user. If it is determined that the user is a legitimate user, the user is permitted to use the multifunction device. As a result, the user can use the multifunction device as a regular user. On the other hand, if the authentication information is not legitimate, an error message is displayed or the like to restrict further use of the multifunction device. Thereby, unauthorized use by a third party can be prevented.

  By the way, the authentication information is information that should be in a state that only a predetermined user can know, and should be strictly managed so as not to be leaked to others. However, since the authentication information is managed in the multifunction peripheral, it is considered that the authentication information is illegally acquired and leaked by illegal intrusion such as a cracker. In this case, the unauthorized acquirer logs in using the authentication information acquired illegally, impersonates a legitimate user, and illegally uses the multifunction device.

One way to prevent this fraud is to update the password regularly. As a result, even if the password is illegally acquired, it cannot be used after the update, so that it is possible to prevent the spread of damage due to the illegal act.
However, the administrator of the multi-function peripheral has performed updating of the conventional password. For this reason, when the update is forgotten, the same password is used for a long time, and the security is lowered.
Therefore, a technique has been proposed in which the administrator does not update the password, but the system automatically issues and updates the password (see, for example, Patent Document 1). According to this technique, since the password is automatically and periodically updated, it is possible to avoid a situation in which the administrator forgets to update the password, the same password is used for a long time, and security is lowered.

JP 2003-256371 A

However, the technique described in Patent Document 1 described above has the following problems.
The method of renewing the password focuses on the fact that the illegally acquired password can no longer be used after the renewal, so that subsequent damage can be stopped.
However, the password can be used until it is updated. Then, when the update period is, for example, one month, the illegally acquired password can be used for a maximum of one month. In other words, during that time, there was a problem that the state was unprotected against the unauthorized acquirer, and the damage spread during this period.

Further, once the login is successfully performed using the illegally acquired password, the multifunction device is usable until the user logs out. In addition, the password update is not effective for operations during login. For this reason, as long as you log in using an illegally acquired password and continue this login state (unless you log out), there is a problem that the damage will spread no matter how much the password is updated.
There is no description in Patent Document 1 regarding how to deal with an unauthorized acquirer at the time of login.

  The present invention has been made to solve the above-described problem, and even when logged in using an illegally acquired password, an electronic device, an authentication program, and an The purpose is to provide an authentication method.

  In order to achieve this object, the electronic device of the present invention includes an authentication unit that authenticates a user based on predetermined authentication information, and after login is performed based on the result of authentication in the authentication unit. An execution state calculation unit that calculates the number of times two or more predetermined functions have been executed and / or the time at which one or more predetermined functions have been executed, and whether the number and / or time has reached a predetermined threshold A determination unit that determines whether the number of times and / or time has reached a predetermined threshold, and an authentication information issuance unit that issues new authentication information and new authentication information is issued And a logout management unit for logging out and exiting the function usable state.

  The authentication program of the present invention executes an authentication process for authenticating a user based on predetermined authentication information, and one or more predetermined functions are executed after login is performed based on the authentication result. Execution state calculation processing for calculating the number of times and / or time when one or more predetermined functions are executed, determination processing for determining whether the number of times and / or time has reached a predetermined threshold, and the number of times And / or authentication information issuance processing for issuing new authentication information when it is determined that the predetermined threshold has been reached, and when the new authentication information is issued, the function can be used. The logout management process for logging out is executed by the electronic device.

  Further, the authentication method of the present invention is such that the authentication unit of the electronic device authenticates the user based on the predetermined authentication information, and after the login is performed based on the authentication result, the execution state calculation unit of the electronic device Calculates the number of times that one or two or more predetermined functions have been executed and / or the time that one or more predetermined functions have been executed, and the determination unit of the electronic device It is determined whether or not the threshold has been reached, and when it is determined that the number and / or time has reached a predetermined threshold, the authentication information issuing unit of the electronic device issues new authentication information and When the authentication information is issued, the logout management unit of the electronic device ends the function usable state and logs out.

  According to the electronic device, the authentication program, and the authentication method of the present invention, when the number of executions of the application function reaches a predetermined threshold value, or when the execution time of the application function reaches a predetermined time or more, Is newly issued and the user is forced to log out, so even if logged in using an illegally acquired password, the number of executions or the execution time of the application functions is limited, thereby increasing the damage. Can be prevented.

It is a block diagram which shows the structure of the information processing system in embodiment of this invention. It is a chart which shows the structure of a user management database. It is a block diagram which shows the structure of an application program execution part. It is a flowchart which shows the operation | movement procedure of a server.

  Hereinafter, preferred embodiments of an electronic device, an authentication program, and an authentication method according to the present invention will be described with reference to the drawings.

[Electronic equipment and information processing system]
First, an embodiment of an electronic apparatus of the present invention and an information processing system including the electronic apparatus will be described with reference to FIGS.
FIG. 1 is a block diagram illustrating a configuration of an information processing system including an electronic apparatus according to the present embodiment. FIG. 2 is a chart showing a configuration of a user management database stored in the storage unit of the electronic device. FIG. 3 is a block diagram illustrating a configuration of an application program execution unit of the electronic device.

As illustrated in FIG. 1, the information processing system 1 includes a server 10 that is an electronic device and one or more host computers 20 (20-1 to 20-n).
The server 10 is a computer that operates under program control. As shown in the figure, the server 10 includes a storage unit 11, an application program execution unit 12, an input / output unit 13, a timing unit 14, and an input display unit 15. Have.

The storage unit 11 is a storage unit having a predetermined storage area, and stores predetermined data and programs.
The storage unit 11 stores a user management database. As shown in FIG. 2, the user management database includes “user name”, “ID”, “password”, “restricted use”, “restricted use”, “actual use”, and “destination” as items. Database.

The “user name” is a character string used to uniquely identify a regular user registered in advance.
“ID” is one piece of authentication information used for user authentication. This “ID” is normally assigned to the user by the server 10 or the administrator of the server 10 when registering the “user name”.
The “password” is one of authentication information used for user authentication. This “password” is issued by an authentication information issuing unit 12-4 (described later) of the application program execution unit 12. The update of the “password” will be described in detail later in “Authentication Method”.

“Usage limit count” is the upper limit number of times that a function of an application can be used in one login.
Here, the number of times the application function is used may be the number of times the same application function is used repeatedly, or the total number of times the different application functions are used. Also good.
In the present embodiment, the upper limit of the number of times the application function is used in “single login” is set as “usage limit number”, but is not limited to “single login”. The upper limit of the number of times the application function can be used over “login” can be set as the “usage limit number”.

“Usage time limit” is an upper limit value of a time during which a function of an application can be used in one login.
Here, the usage time of the function of the application may be the usage time for the function of one application, or may be the accumulated usage time when the functions of a plurality of applications are used.
In the present embodiment, the upper limit value of the use time of the application function in “single login” is set as “usage limit time”, but is not limited to “single login”. The upper limit value of the usage time of the application functions over “login” may be set as the “usage time limit”.
The “restricted use times” and “restricted use times” are data determined by the determination unit 12-3 (described later) of the application program execution unit 12 in comparison with the “actual use times” or the use time of the function of the application. Therefore, it corresponds to a “predetermined threshold”.

The “actual use count” is the actual number of times the function of the application is actually used.
“Destination” is an address (destination data) owned by the user. This “destination” is preferably an address where a newly issued password can be notified only to the target user. For example, an address that can be received by a mailer installed in the host computer 20 used uniquely by the user can be set as the “destination”.

  Of the items constituting the user management database, “ID”, “password”, “use limit count”, “use limit time”, “actual use count”, and “destination” are associated with “user name”. It is registered. Therefore, by specifying the “user name”, the “ID”, “password”, “restricted use count”, “restricted use time”, “actual use count”, and “destination” associated therewith are specified. .

The application program execution unit 12 is a part that executes processing for a request from the host computer 20, and performs authentication such as login and logout, automatic issuance of a password, registration and reference of user management data, and the like.
As shown in FIG. 3, the application program execution unit 12 includes an authentication unit 12-1, an execution state calculation unit 12-2, a determination unit 12-3, an authentication information issue unit 12-4, and a logout management unit. 12-5, an application execution unit 12-6, and a data management unit 12-7.

The authentication unit 12-1 authenticates the user using authentication information such as an ID and a password. When it is determined by authentication that the user is an authorized user, the use of the server 10 by the user is permitted (login is permitted).
The execution state calculation unit 12-2 calculates the number of times that the function of the application has been executed, and registers this calculated number in the user management database as “actual use count”. In addition, the execution state calculation unit 12-2 calculates the time when the function of the application is executed as the measured usage time. This calculation is performed using the time count in the time measuring unit 14.
The determination unit 12-3 determines whether the “actual use count” has reached the “use limit count” (or whether the “actual use count” exceeds the “use limit count”). Further, the determination unit 12-3 determines whether or not the measured use time has reached the “use limit time” (or whether or not the measurement use time exceeds the “use limit time”).

  The authentication information issuing unit 12-4 determines that the “actual use count” has reached the “use limit count” (or the “actual use count” exceeds the “use limit count”). Or when it is determined that the measured use time has reached the “use limit time” (or the measured use time has exceeded the “use limit time”). Issue a new password. Also, the authentication information issuing unit 12-4 updates the “password” by registering the newly issued password in the “password” of the user management database. Further, the authentication information issuing unit 12-4 transmits the newly issued password to the “destination” of the user.

When a new password is issued by the authentication information issuing unit 12-4, the logout management unit 12-5 stops using the application function and ends the login state (a state where the application function can be used). Force logout.
The application execution unit 12-6 executes the function of one or more predetermined applications installed in the server 10. When the server 10 is a multifunction machine, the application functions include, for example, a copy function, a printer function, and a FAX function.

  The data management unit 12-7 registers and updates user management data. For example, when the administrator of the server 10 operates the input display unit 15 to perform new registration or data update for each item (for example, “user name”) constituting the user management database, the operation is performed. The user management database is edited or updated based on the contents.

The input / output unit 13 is a communication interface that transmits and receives predetermined data to and from the host computer 20. For example, the input / output unit 13 can receive a request from the host computer 20, send a response to the host computer 20, and send a password to the host computer 20.
The timer unit 14 measures time. In particular, the timer unit 14 can measure the usage time of the function of the application.

The input display unit 15 is composed of a touch panel or the like, and functions as a display unit for displaying predetermined data and as an input unit for inputting predetermined data and instructions by selecting a displayed software key. It has a function.
In this embodiment, the server 10 is assumed to be a multifunction peripheral. However, the server 10 is not limited to a multifunction peripheral, and may be an information processing apparatus such as a personal computer, a copier, a printer, a FAX, or the like. There may be.

The host computer 20 is a computer that operates under program control, and has a function of transmitting a request for using an application to the server 10, receiving a response from the server 10, and receiving a password issued by the server 10. have.
The host computer 20 is assumed to be an information processing apparatus such as a personal computer in this embodiment.

[Authentication method]
Next, the operation (authentication method) of the electronic device of this embodiment will be described with reference to FIG.
This figure is a flowchart showing the operation procedure of the server which is an electronic device.

When the power is turned on (or when the user starts using the server 10), the server 10 displays a login screen on the input display unit 15.
The user operates the input display unit 15 to input an authentication information ID and password, and attempts to log in (step 10, login process).

The authentication unit 12-1 of the application program execution unit 12 performs user authentication using the input ID and password (authentication process). At this time, the authentication unit 12-1 refers to the user management database stored in the storage unit 11, and checks whether the same ID and password as those input ID and password are registered in the user management database. to decide. And if it is registered as a result of the judgment, the authentication unit 12-1 extracts “user name” associated with the ID and password, and identifies this as the user name of the user ( The user name is specified based on the ID or password, step 11), and it is determined that the user is a legitimate user.
When it is determined that the ID and password are not registered in the user management database, the authentication unit 12-1 displays a message indicating that login is not permitted on the input display unit 15 to perform login processing. finish. However, since the user may mistakenly input the authentication information due to a simple input mistake or the like, it is possible to allow the authentication information to be input a plurality of times.

When the user name is identified in step 11 and the user is authenticated as a properly registered user, the authentication unit 12-1 permits login and uses the application function. To do.
When a user who is permitted to log in operates the input display unit 15 and selects a function of any application, the application execution unit 12-6 attempts to start using the function of the application (step 12). .

The execution state calculation unit 12-2 refers to the user management database, extracts the “actual use count” associated with the “user name” of the user authenticated by the authentication unit 12-1, and executes the “actual use count”. "1" is added to "," and the "actual use count" after this addition is registered in the user management database (update of "actual use count"). Further, the execution state calculation unit 12-2 refers to the time measurement unit 14 and measures an elapsed time (measurement use time) from the time when the use of the application function is started.
The process of calculating the actual usage count and usage time of these application functions is referred to as an execution state calculation process.

Next, the determination unit 12-3 refers to the user management database, extracts the “restricted use count” associated with the “user name” and the updated “actual use count”, and these “restricted use count”. Is compared with the “actual use count” (determination process, step 13).
As a result of comparison, when the “actual use count” has reached the “restricted use count” (or when the “actual use count” exceeds the “restricted use count”), the application program execution unit 12 is authenticated. The information issuing unit 12-4 issues a new password (authentication information issuance process), refers to the user management database, extracts the “destination” associated with the “user name”, and newly issued the password. Is transmitted to the extracted “destination” (step 14).

Then, the determination unit 12-3 resets the “actual use count” and the measurement use time (sets to 0, step 15).
Furthermore, the logout management unit 12-5 interrupts the use of the application function, ends the state in which the application function can be used, and executes the logout process (logout management process, step 16).

On the other hand, when the “actual use count” does not reach the “use limit count” (or when the “actual use count” does not exceed the “use limit count”), the application execution unit 12-6 executes the application. The function is executed (step 17). Then, the determination unit 12-3 refers to the user management database, extracts the “usage limit time” associated with the “user name”, and determines the application function timed by the execution state calculation unit 12-2. It is determined whether or not the usage time (measured usage time) has reached the “use time limit” (determination process, step 18).
If it has not been reached as a result of the determination, the use of the function of the application is permitted until the use of the function of the application is completed (No in step 19), and the processing of step 17 and step 18 is executed. .
On the other hand, when it reaches (Yes in Step 18), the processing of Step 14 to Step 16 is executed.

  When the use of the application function is completed (Yes in Step 19), the processes after Step 12 are repeatedly executed until the logout process is executed by the user (No in Step 20). That is, each time the use of the function of any application is started (step 12), the processing from step 13 is executed. On the other hand, when the user operates the input display unit 15 to input a logout execution command (Yes in Step 20), the processes in Step 15 and Step 16 are executed.

  As described above, while logging in, when the “actual use count” reaches the “use limit count”, or when the measured use time reaches the “use limit time”, a new password is issued, Since the logout is forcibly performed, even when logged in using an illegally acquired password, the number of executions or the execution time of the function of the application can be limited to effectively prevent the spread of damage.

In the above authentication method, even when a legitimate user uses the server 10, the user is forcibly logged out under a predetermined condition. A new password is issued to this user. Therefore, by logging in again using this password, it is possible to continue using the application function in the server 10.
On the other hand, a person who illegally obtains a password and impersonates a legitimate user and uses the server 10 cannot log in because the new password is not known after the user is forcibly logged out. Thereby, the expansion of the damage by the unauthorized user can be prevented.

[Authentication Program]
Next, the authentication program will be described.
The authentication function (function for executing the authentication method) of the computer (server and host computer constituting the information processing system) in the above embodiment is stored in storage means (for example, ROM (Read only memory), hard disk, etc.). This is realized by the authenticated program.

The authentication program is read by a computer control means (CPU (Central Processing Unit) or the like) to send instructions to each component of the computer to perform predetermined processing, for example, user authentication processing and application in the application program execution unit of the server Use number comparison processing, application usage time comparison processing, password issuance processing, password transmission processing, etc.
As a result, the authentication function is realized by the cooperation of an authentication program that is software and each component of a computer (a host computer and a server that constitutes an information processing system) that is a hardware resource.

An authentication program for realizing the authentication function can be stored in a computer-readable recording medium such as an external storage device and a portable recording medium in addition to being stored in a ROM or hard disk of a computer.
The external storage device refers to a memory expansion device that incorporates a storage medium such as a CD-ROM (Compact disk-Read only memory) and is externally connected to the authentication device. On the other hand, the portable recording medium is a recording medium that can be mounted on a recording medium driving device (drive device) and is portable, and refers to, for example, a flexible disk, a memory card, a magneto-optical disk, and the like.

The program recorded on the recording medium is loaded into a RAM (Random Access Memory) of a computer and executed by the CPU (control means). By this execution, the function of the authentication device of the above-described embodiment is realized.
Further, when the authentication program is loaded by the computer, the authentication program held by another computer can be downloaded to its own RAM or external storage device using a communication line. This downloaded authentication program is also executed by the CPU, and realizes the authentication function of the authentication device of the above embodiment.

  As described above, according to the electronic device, the authentication program, and the authentication method of the present embodiment, even if the user is logged in, if the predetermined condition is satisfied, the password is updated and the Since logout is executed, it is possible to maintain security by avoiding a situation where the login state continues for a long time. For this reason, even when logged in using an illegally acquired password, it is possible to effectively prevent the damage from spreading.

The preferred embodiments of the electronic device, the authentication program, and the authentication method of the present invention have been described above. However, the electronic device, the authentication program, and the authentication method according to the present invention are not limited to the above-described embodiments, and the present invention. It goes without saying that various modifications can be made within the range described above.
For example, in step 15 of FIG. 4, the actual usage count and the measured usage time are reset, but this processing can be omitted. In this case, the actual usage count and the measured usage time are accumulated over a plurality of logins, and these are compared with the usage limit count or the usage limit time.

  In the above-described embodiment, the logout is forcibly performed when a predetermined condition is satisfied. Therefore, the logout may occur during the execution of the function of the application. For example, while the user is selecting a document on the server (multifunction machine), it is conceivable that the usage time of the application function reaches the usage limit time and the user is forcibly logged out. In order to cope with this situation, for example, immediately before reaching the use time limit (for example, 3 minutes before the use time limit is reached), a notification screen is displayed on the input display unit of the server, and the use time limit is set after 3 minutes. The user may be notified that it will be reached.

  Since the present invention relates to user authentication, the present invention can be used for an apparatus or device that performs user authentication.

DESCRIPTION OF SYMBOLS 1 Information processing system 10 Server 11 Storage part 12 Application program execution part 12-1 Authentication part 12-2 Execution state calculation part 12-3 Judgment part 12-4 Authentication information issuing part 12-5 Logout management part 12-6 Application execution part 12-7 Data Management Unit 13 Input / Output Unit 14 Timekeeping Unit 15 Input Display Unit 20 Host Computer

Claims (5)

An authentication unit for authenticating a user based on predetermined authentication information;
After login is performed based on the result of authentication in the authentication unit, the number of times one or more predetermined functions are executed and / or the time when the one or more predetermined functions are executed is calculated. An execution state calculation unit;
A determination unit for determining whether the number of times and / or the time has reached a predetermined threshold;
An authentication information issuing unit for issuing new authentication information when it is determined that the number and / or the time has reached a predetermined threshold;
An electronic apparatus, comprising: a logout management unit that, when the new authentication information is issued, exits the function usable state and logs out. A storage unit for storing destination data owned by the user in association with the user;
The electronic apparatus according to claim 1, further comprising: an input / output unit configured to transmit authentication information newly issued by the authentication information issuing unit to the destination data. The electronic device according to claim 2, wherein the destination data is an address receivable by a mailer installed in a host computer used by the user. An authentication process for authenticating a user based on predetermined authentication information;
Execution state calculation for calculating the number of times one or more predetermined functions are executed and / or the time when the one or more predetermined functions are executed after login is performed based on the authentication result. Processing,
A determination process for determining whether the number of times and / or the time has reached a predetermined threshold;
An authentication information issuance process for issuing new authentication information when it is determined that the number and / or the time has reached a predetermined threshold;
When the new authentication information is issued, an authentication program that causes the electronic device to execute logout management processing for terminating the function usable state and logging out. The authentication unit of the electronic device authenticates the user based on the predetermined authentication information,
After the login is performed based on the result of the authentication, the execution state calculation unit of the electronic device performs the number of times one or two or more predetermined functions are executed and / or the one or two or more predetermined functions. Calculate the time of execution,
The determination unit of the electronic device determines whether the number of times and / or the time has reached a predetermined threshold;
When it is determined that the number and / or the time has reached a predetermined threshold, the authentication information issuing unit of the electronic device issues new authentication information,
When the new authentication information is issued, the logout management unit of the electronic device terminates the state in which the function can be used and logs out.

Images