JP2013162504A - Information processing apparatus and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To simplify management such as backup of a key, which imposes load on a user while maintaining high security strength in a key for decrypting encrypted data.SOLUTION: A plurality of setting items such as pass word are set to an object to be encrypted and each of the setting items is set to have a different key. When a value of each setting item is updated, a key for the setting item is newly generated so as to encrypt and decrypt the value. A key generation is performed on the basis of a predetermined key generation system.

Description

  The present invention relates to an information processing apparatus and program for encrypting and decrypting data.

  In recent years, with the spread of computers, various information processing systems and application software are widely used. In these systems and application software, highly confidential information such as a password for authenticating a user and personal information is required to be encrypted and stored as necessary. As an encryption method, there are a method that does not use a key for data conversion (substitution encryption or the like) and a method that uses a key (public key encryption or the like). However, since a method that does not use a key can decrypt a cipher in any environment once the algorithm is known, it is desirable to encrypt more important data by a method that uses a key.

  Conventionally, in an encryption method using a key, loss of the key can be a problem. For this reason, it is common to back up a key required for decryption. In addition, a system has been proposed in which a key corresponding to a keyword and password input from a user is generated, so that when the key is lost, the same key can be generated from the keyword and password (see, for example, Patent Document 1). ).

JP-A-2005-27202

  However, in preparation for the loss of a key, it has been troublesome for the user to back up the key and remember to manage the backup location. Furthermore, when there are a plurality of individual keys for a plurality of data to be encrypted, management of which data corresponds to which key has become very complicated. Further, in the method of Patent Document 1, since it is necessary to store a keyword and a password for each key, management is more complicated when the number of keys is large. For this reason, in order to simplify the management, it may be possible to use only a single key, but in that case, if the key leaks, all data can be decrypted, so the security strength is low. There was a problem.

In order to solve the above problems, an information processing apparatus according to the present invention provides:
An information processing apparatus (101) having a plurality of setting items to be encrypted,
Key generation means (331) for generating a key for encryption and decryption for the setting item to be encrypted;
Encryption means (332) for encrypting a value using the encryption key generated by the key generation means;
Decryption means (333) for decrypting the value using the decryption key generated by the key generation means;
User interface means (311) for setting the setting items to be encrypted;
With
The key generation means generates different encryption and decryption keys for each setting item to be encrypted, and each time a value is set, a different encryption and decryption key is generated. It is characterized by generating (S604).

  It is possible to provide an information processing apparatus and a program that can reduce the labor of management such as key backup while maintaining high security strength by having different keys for a plurality of data to be encrypted.

1 is a diagram illustrating a system configuration example according to a first embodiment. FIG. 3 is a block diagram illustrating an internal configuration example of a job log collection server according to the first embodiment. 3 is a diagram illustrating a software configuration example of a job log collection server in Embodiment 1. FIG. 6 is a description example of a setting file according to the first embodiment. 6 is an example of an environment setting change screen according to the first embodiment. 6 is a flowchart illustrating an operation of setting value writing processing according to the first exemplary embodiment. 3 is an example of an environment setting display screen according to the first embodiment. 6 is a flowchart illustrating an operation of setting value reading processing according to the first exemplary embodiment. 12 is a flowchart illustrating an operation of a setting display screen display process according to the second embodiment. 10 is a flowchart illustrating an operation of a setting value reading process in the second embodiment. 12 is an example of a screen that prompts resetting of setting items that have failed to be decrypted in the second embodiment. FIG. 10 is a diagram illustrating a software configuration example of a job log collection server according to a third embodiment. 12 is a flowchart illustrating an operation of job log reception processing according to the third exemplary embodiment. It is an example of the notification at the time of the decoding failure in Example 3. 10 is an example of an installation processing unit according to a fourth embodiment. 14 is a flowchart illustrating an operation of an installation processing unit according to the fourth embodiment.

  The best mode for carrying out the present invention will be described below with reference to the drawings.

Example 1
First, a first embodiment of the present invention will be described.

  FIG. 1 is a schematic diagram illustrating a configuration example of a system including an information processing apparatus according to the present invention. In this embodiment, a job log collection server that collects a job log that is an execution record of a job (copy, print, etc.) executed by a digital multifunction peripheral (Multi Function Peripheral, hereinafter referred to as MFP) will be described as an information processing apparatus. To do. In the system according to the present embodiment, a job log collection server 101 for collecting job logs, an MFP 102, and a personal computer (hereinafter referred to as PC) 103 are connected via a network 150. There may be a plurality of MFPs 102 and PCs 103.

  FIG. 2 is a block diagram illustrating an internal configuration example of the job log collection server 101.

  A control unit 210 including a CPU 211 controls the operation of the job log collection server 101. The CPU 211 reads out a control program stored in the ROM 212 or the HDD 214, and executes various control processes such as input and output and arithmetic processes. The RAM 213 is used as a temporary storage area such as a main memory or work area of the CPU 211. The HDD 214 stores collected job log data, various programs, and the like.

  The operation input I / F 215 receives a signal input from an operation device such as a connected keyboard or mouse.

  The display output I / F 216 outputs a signal to a screen display or the like.

  A network I / F 217 connects the control unit 210 to a network and transmits / receives information to / from another device on the network.

  Reference numeral 216 denotes a bus that connects blocks in the control unit 210.

  FIG. 3 is a diagram showing a software configuration example of the job log collection server 101 in the present invention.

  The user interface unit 311 receives a screen display for setting the job log collection server 101 and input information from the user.

  The job log receiving unit 312 receives the job log sent from the MFP and passes it to the job log processing unit 313.

  The job log processing unit 313 performs processing such as image compression and OCR on the transferred job log based on the setting value described in the setting file, and then transfers the processed job log to the job log output unit 314. .

  The job log output unit 314 outputs the passed job log to the folder specified in the setting file using the user name and password specified in the setting file as necessary.

  The setting file input / output 321 inputs / outputs a setting file 322 in which setting values for each setting item are described. The setting file 322 is described in XML format, for example. FIG. 4 shows an example of the setting file. In FIG. 4, for example, “OutputFolder” 411 and “MailServerAddress” 412 are plain text (non-encryption target) setting items. In addition, “PasswordForReceivingJobLog” 421 and “MailAccountPassword” 422 are setting items to be encrypted, and their values are encrypted character strings.

  The key generation unit 331 generates an encryption key and a decryption key. The generated encryption key is temporarily stored in the memory by the key generation unit 331. Also, the generated decryption key data is stored by the key generation unit 331 in the key file 334 to which a predetermined file name is assigned for each setting item. The key generation unit 331 discards the encryption key that is no longer needed after the encryption is completed.

  The encryption processing unit 332 encrypts the given plaintext value using the encryption key generated by the key generation unit 331 and temporarily stored in the memory.

  The decryption processing unit 333 reads the key data from the key file 334 of the decryption key corresponding to the setting item to be decrypted, and decrypts the encrypted value.

  Note that when the decryption key is stored, the key generation unit 331 performs a reversible conversion process on the key data so as to obfuscate, and the decryption processing unit 333 converts the obfuscated data into the original key data. You may make it perform the process to convert.

  Next, FIG. 5 shows an example of an environment setting change screen which is a screen for inputting values for setting items in the setting file 322.

  In FIG. 5, reference numerals 511, 512, and 513 denote user interfaces for setting items classified as system settings. Reference numeral 511 denotes a radio button for setting a value of the setting item “job log format”. Reference numeral 512 denotes a drop-down list for setting the value of the setting item “image compression”. Reference numeral 513 denotes a spin control for setting a value of the setting item “system log storage days”.

  Reference numeral 521 denotes a user interface for setting items classified as job log reception settings, and is a text box for setting a value of the setting item “reception password”. The setting item “reception password” is a password used for authentication when the MFP 102 transmits a job log to the job log collection server 101, and is a setting item to be encrypted. The setting item “reception password” is described as “PasswordForReceivingJobLog” 421 in the setting file 322.

  Reference numerals 531, 532, and 533 denote user interfaces for setting items classified as job log output settings. Reference numeral 531 denotes a text box for setting the value of the setting item “output folder”. Reference numeral 532 denotes a text box for setting the value of the setting item “user name”. Reference numeral 533 denotes a text box for setting the value of the setting item “password”. This setting item “password” is information used as authentication information for accessing the setting item “output folder” in combination with the setting item “user name”, and is a setting item to be encrypted. The setting item “password” is described as “PasswordForOutputFolder” 423 in the setting file 322.

  Reference numeral 591 denotes an OK button for reflecting the setting to the job log collection server 101. When this OK button is pressed, the job log collection server 101 writes the value input for each setting item on the environment setting change screen to the setting file 322 and reflects the new setting value.

  Reference numeral 592 denotes a cancel button for canceling the setting change for each setting item.

  Next, an operation when the job log collection server 101 writes a setting value to the setting file 322 when the OK button 591 on the environment setting change screen is pressed will be described with reference to the flowchart of FIG. Each step shown in the flowchart of FIG. 6 is realized by the CPU 211 of the job log collection server 101 executing a program for realizing each functional unit shown in FIG. 3 stored in the ROM 212 or the HDD 214. Further, the CPU 211 uses the RAM 213 and the HDD 214 as a storage area as necessary.

  In step S <b> 601, the setting file input / output unit 321 determines a repetitive processing end condition for each setting item to be written to the setting file 322. If the processing within the iterative process has not been completed for all setting items to be written to the setting file 322, the setting file input / output unit 321 sets one of the processing target setting items as the processing target, and the process proceeds to step S602. Proceed with the process. If all the setting items to be written to the setting file 322 have been processed in the repeated process, the setting file input / output unit 321 ends the setting value writing process.

  In step S602, the setting file input / output unit 321 determines whether the setting item to be processed is a setting item to be encrypted. Specifically, this determination is performed by checking whether the setting item name to be processed matches a predetermined setting item name to be encrypted. When the setting item to be processed is the setting item to be encrypted, the setting file input / output unit 321 advances the processing to step S603. Otherwise, the setting file input / output unit 321 advances the process to step S608. For example, if the setting item to be processed is the “reception password” indicated by 521 in FIG. 5, it is determined as the setting item to be encrypted, and the process moves to step S603. For example, when the setting item to be processed is “output folder” indicated by 531 in FIG. 5 (corresponding to 411 in FIG. 4), it is determined that it is not the setting item to be encrypted, and the process proceeds to step S608. Processing transitions.

  In step S603, the setting file input / output unit 321 acquires the file name of a file that stores a key for decrypting the value of the setting item to be processed. This file name is defined in advance one-to-one for each setting item to be encrypted, and is obtained using the setting item name to be encrypted as a key. It should be noted that an identifier may be determined for each setting item and obtained using the key as a key.

  In step S604, the setting file input / output unit 321 instructs the key generation unit 331 to generate a key using the value to be encrypted and the file name acquired in step S603 as arguments. The key generation unit 331 generates an encryption key and a decryption key based on a predetermined key generation method. Depending on the key generation method used, the encryption key and the decryption key may be the same.

  In step S605, the key generation unit 331 stores the generated decryption key in a file specified by the argument. At this time, if a decryption key is already stored in the file, the old decryption key is discarded and a new decryption key is stored.

  In step S606, the key generation unit 331 instructs the encryption processing unit 332 to encrypt the value using the value to be encrypted and the encryption key as arguments. The encryption processing unit 332 encrypts the value given by the argument using the encryption key given by the argument, and returns the encrypted value to the key generation unit 331.

  In step S607, the key generation unit 331 discards the encryption key and returns the encrypted value to the setting file input / output unit 321.

  In step S608, the setting file input / output unit 321 writes the setting items and their values in the setting file. The value written at this time is an encrypted value in the case of the value of the item to be encrypted, and is an unencrypted value otherwise. After the end of this step, the setting file input / output unit 321 returns the process to step S601.

  Next, the operation for reading the setting value of the setting file 322 will be described. Reading of setting values from the setting file 322 is performed when the user interface unit 311 displays the setting values on the screen, or when the job log receiving unit 312, job log processing unit 313, and job log output unit 314 require operation. To be done.

  FIG. 7 shows an example of an environment setting display screen that is one of the setting value display screens displayed by the user interface unit 311.

  Here, 701 is a display of the value “image and text” of the setting item “job log format”. Similarly, reference numerals 702 to 707 denote display of each setting item and its value. Reference numeral 708 denotes a button for making a transition to the environment setting change screen (FIG. 5).

  When the environment setting display screen shown in FIG. 7 is displayed, the user interface unit 311 requests the setting file input / output unit 321 to read the setting value for each setting item to be displayed. A process when the setting file input / output unit 321 reads the value of the requested setting item from the setting file 322 will be described with reference to the flowchart of FIG. Each step shown in the flowchart of FIG. 8 is realized by the CPU 211 of the job log collection server 101 executing a program for realizing each functional unit shown in FIG. 3 stored in the ROM 212 or the HDD 214. Further, the CPU 211 uses the RAM 213 and the HDD 214 as a storage area as necessary.

  In step S <b> 801, the setting file input / output unit 321 reads the setting value for the setting item requested to be read from the user interface unit 311 from the setting file 322.

  In step S802, the setting file input / output unit 321 determines whether the requested setting item is an encryption target. This determination is performed in the same manner as in step S602. If the requested setting item is the setting item to be encrypted, the setting file input / output unit 321 advances the process to step S803. Otherwise, the setting file input / output unit 321 advances the process to step S806. For example, if the requested setting item is the “reception password” indicated by 521 in FIG. 5, it is determined as the setting item to be encrypted, and the process moves to step S803. For example, if the requested setting item is “output folder” indicated by reference numeral 531 in FIG. 5, it is determined that the setting item is not an encryption target setting item, and the process proceeds to step S806.

  In step S803, the setting file input / output unit 321 obtains the file name of the file storing the key for decrypting the value of the requested setting item. The file name is acquired in the same manner as in step S603.

  In step S804, the setting file input / output unit 321 instructs the decryption processing unit 333 to decrypt the value using the value to be decrypted and the file name acquired in step S803 as arguments. Then, the decryption processing unit 333 reads the decryption key from the file having the file name given as the argument.

  In step S805, the decryption processing unit 333 decrypts the value given as the argument using the read decryption key, and returns the value to the setting file input / output unit 321.

  In step S806, the setting file input / output unit 321 returns the value of the requested setting item to the request source, and ends the setting value reading process.

  The processing when the job log receiving unit 312 and the like read out setting values necessary for operation is the same as that in the flowchart of FIG.

  As described above, in the first embodiment, a key is generated every time a value is set for a setting item to be encrypted, so that it is not necessary to back up the key. Although each setting item has a different key, the user need not be aware of the correspondence between the setting item and the key. For these reasons, it is possible to reduce the labor of managing the encryption key while maintaining high security strength for the encrypted data.

(Example 2)
Next, a second embodiment of the present invention will be described.

  In the second embodiment, when a screen (setting display screen) for displaying setting values such as the environment setting display screen in FIG. 7 in the first embodiment is displayed, the encrypted setting values are decrypted. This is related to processing when the key for use is broken and cannot be decrypted.

  The operation when the job log collection server 101 displays the setting display screen will be described with reference to the flowcharts of FIGS. Each step shown in the flowcharts of FIGS. 9 and 10 is realized by the CPU 211 of the job log collection server 101 executing a program for realizing each functional unit shown in FIG. 3 stored in the ROM 212 or the HDD 214. Further, the CPU 211 uses the RAM 213 and the HDD 214 as a storage area as necessary.

  In step S901 in FIG. 9, the user interface unit 311 prepares the setting items to be displayed on the screen to be displayed in an array.

  In step S <b> 902, the user interface unit 311 determines an end condition for the iterative process for each setting item in the array prepared in step S <b> 901. If the process in the iterative process has not been completed for all setting items in the array, the user interface unit 311 advances the process to step S903 with one of the unprocessed setting items as a processing target. If the process in the iterative process has been completed for all setting items in the array, the user interface unit 311 advances the process to step S907.

  In step S903, the user interface unit 311 requests the setting file input / output unit 321 to read the setting value of the setting item to be processed. Details of this processing are shown in the flowchart of FIG.

  The process in FIG. 10 is obtained by adding steps S1001 to S1003 to the flowchart shown in FIG. 8. The same steps as those in FIG. 8 are denoted by the same reference numerals as those in FIG.

  In step S1001, the decryption processing unit 333 determines whether the decryption key has been successfully read in step S804. If successful, the decryption processing unit 333 advances the processing to step S805. If it has failed, the decryption processing unit 333 advances the processing to step S1103.

  In step S1002, the setting file input / output unit 321 determines whether the decoding is successful in step S806. If it has been successful, the setting file input / output unit 321 advances the process to step S806. If it has failed, the setting file input / output unit 321 advances the process to step S1103.

  In step S1003, the setting file input / output unit 321 returns to the request source that an error has occurred in decoding the requested setting item, and ends the setting value reading process.

  In step S904, the user interface unit 311 determines whether a decoding error has occurred in the process of step S903. If no decoding error has occurred, the process proceeds to step S905. If a decoding error has occurred, the process proceeds to step S906.

  In step S905, the user interface unit 311 stores the value read in step S903 in association with the setting item to be processed.

  In step S906, the user interface unit 311 stores the setting item to be processed as a setting item in which a decoding error has occurred.

  After the process of step S905 or step S906 ends, the user interface unit 311 returns the process to step S902.

  In step S907, the user interface unit 311 determines whether there is a setting item that has resulted in a decoding error. This determination is made based on whether there is a setting item stored in step S906. If there is no setting item resulting in a decoding error, that is, if there is no setting item stored in step S906, the user interface unit 311 advances the process to step S908. If there is a setting item for which a decoding error has occurred, that is, if there is a setting item stored in step S906, the user interface unit 311 advances the process to step S909.

  In step S908, the user interface unit 311 displays a setting display screen using the setting value stored in step S905.

  In step S909, the user interface unit 311 generates a message that prompts the user to reset the setting item that has been decoded in step S906.

  In step S910, the user interface unit 311 uses the message generated in step S909 and the setting value stored in step S905 to display a setting change screen for prompting resetting of the setting item in which the decoding error has occurred. To do. This is because the value of the setting item in which the decoding error has occurred cannot be decoded and the setting display screen cannot be displayed normally, and the setting item in which the decoding error has occurred is quickly reset. It is to make it.

  An example of this screen is shown in FIG. Specifically, FIG. 11 is displayed when the user interface unit 311 tries to display the environment setting display screen of FIG. 7 and an error occurs in decrypting the value of the setting item “reception password”. It is a screen. The screen shown in FIG. 11 is a screen displaying the message 1101 generated in step S909 on the upper part of the environment setting change screen shown in FIG. 5, thereby resetting the value of the setting item “reception password”. Encourage users.

  As described above, in the second embodiment, when a setting item to be encrypted is displayed, if the decryption key is broken and cannot be decrypted, a screen prompting resetting is automatically displayed to the user. It can be reset. By doing so, even if the decryption key is broken, it is possible to reduce the trouble of returning the decryption key and the set value from the backup.

(Example 3)
Next, a third embodiment of the present invention will be described.

  Unlike the second embodiment, the third embodiment mainly relates to a process in a case where an encrypted set value cannot be decrypted by a process that does not display a screen. In the third embodiment, a job log reception process of the job log reception unit 312 will be described as an example of a process that does not display a screen.

  FIG. 12 shows a software configuration example of the job log collection server 101 according to the third embodiment. 12 is obtained by adding a notification unit 1201 to the software configuration described in FIG. Here, only the notification unit 1201 will be described, and the description of the other processing units is the same as in FIG.

  The notification unit 1201 receives a notification request from the user interface unit 311 or the job log reception unit 312 and notifies the administrator of the job log collection server 101 by e-mail. The main purpose of the notification is to prompt the user to reset the setting items to be encrypted. However, an error not related to the notification may be notified. The content similar to the notification may be output to a server log or the like.

  FIG. 13 is a flowchart showing an operation when the job log receiving unit 312 receives a job log from the MFP. Each step shown in the flowchart of FIG. 13 is realized by the CPU 211 of the job log collection server 101 executing a program that realizes the job log receiving unit 312 shown in FIG. 12 stored in the ROM 212 or the HDD 214. Further, the CPU 211 uses the RAM 213 and the HDD 214 as a storage area as necessary.

  In step S1301, the job log reception unit 312 determines whether a job password transmission request from the MFP includes a reception password. If it is included, the job log receiving unit 312 advances the processing to step S1302. If not included, the job log receiving unit 312 advances the process to step S1307.

  In step S <b> 1302, the job log receiving unit 312 requests the setting file input / output unit 321 to read the value of the receiving password that is the setting item to be encrypted. Upon receiving the request, the setting file input / output unit 321 performs the setting value reading process shown in the flowchart of FIG.

  In step S1303, the job log receiving unit 312 determines whether a decoding error has occurred in the process of step S1302. If no decryption error has occurred, the job log receiving unit 312 advances the processing to step S1304. If a decryption error has occurred, the job log receiving unit 312 advances the process to step S1308.

  In step S1304, the job log receiving unit 312 determines whether or not the reception password included in the job log transmission request is correct by comparing it with the value of the reception password read out in step S1302. If the reception password included in the job log transmission request is correct, the job log reception unit 312 advances the process to step S1305. If the reception password included in the job log transmission request is not correct, the job log reception unit 312 advances the process to step S1307.

  In step S <b> 1305, the job log receiving unit 312 interprets and captures job log data transmitted so as to be passed to the job log processing unit 313.

  In step S1306, the job log receiving unit 312 returns a normal end status code to the transmission source MFP, and ends the job log receiving process.

  In step S1307, the job log reception unit 312 returns a status code indicating that the reception password is invalid to the transmission source MFP, and ends the job log reception process.

  In step S1308, the job log receiving unit 312 makes a notification request to the notification unit 1201 with the setting item name (in this case, the reception password) whose value could not be decrypted as an argument. Upon receiving the request, the notification unit 1201 sends a notification to the administrator of the job log collection server 101 set in advance to urge the user to reset the reception password. An example of the text of the notification mail is shown in FIG. Here, 1401 is a URL (Uniform Resource Locator) for accessing a screen for setting a reception password. As described above, the job log receiving unit 312 includes the URL for accessing the setting screen in the notification, so that the user who has received the notification can quickly access the setting screen and perform setting.

  In step S1309, the job log reception unit 312 returns a status code indicating that the server side reception password is set to the transmission source MFP, and ends the job log reception process.

  As described above, in the third embodiment, when a setting item to be encrypted is read, if the decryption key is broken and cannot be decrypted, the user can be reset by performing a notification that prompts resetting. it can. Also, by including address information for accessing the screen for resetting in the notification, the user can quickly reset.

  Note that the authentication using the reception password in the present embodiment does not need to be performed at the same time as job log transmission, and is a communication method in which authentication is performed prior to job log transmission to establish a session. Also good.

  Further, the notification described in the present embodiment may be performed even when the screen display as in the second embodiment is performed.

Example 4
Next, a fourth embodiment of the present invention will be described. The fourth embodiment relates to an operation when each processing unit of the job log collection server 101 is arranged on a server computer having an internal configuration shown in FIG.

  FIG. 15 shows a software configuration example of the job log collection server 101 according to the fourth embodiment. FIG. 15 is obtained by adding an installation processing unit 1501 to the software configuration described in FIG. Here, only the installation processing unit 1501 will be described, and the description of the other processing units is the same as in FIG.

  An installation processing unit 1501 arranges each processing unit and setting file of the job log collection server 101. The installation processing unit 1501 includes a processing unit other than the installation processing unit illustrated in FIG. 15 and an arrangement function for arranging setting files, and a UI function for interacting with a user.

  FIG. 16 is a flowchart showing the installation processing operation of the installation processing unit 1501. Each step shown in the flowchart of FIG. 16 is realized by the CPU 211 of the job log collection server 101 executing a program for realizing the installation processing unit 1501 shown in FIG. 15 stored in the ROM 212 or the HDD 214. Further, the CPU 211 uses the RAM 213 and the HDD 214 as a storage area as necessary.

  In step S1601, the installation processing unit 1501 arranges each processing unit other than the installation processing unit illustrated in FIG.

  In step S1602, the installation processing unit 1501 confirms whether the setting file 322 is arranged in advance for the purpose of diverting the previous environment settings. If it is arranged, the installation processing unit 1501 advances the process to step S1603. If not, the installation processing unit 1501 advances the process to step S1610.

  In step S1603, the installation processing unit 1501 determines an end condition of the iterative process for each setting item to be encrypted. If there is an encryption target setting item that has not been completed in the repeated processing, the installation processing unit 1501 selects one of the incomplete encryption target setting items as the processing target. Then, the process proceeds to step S1604. If the process within the iterative process has been completed for all the setting items to be encrypted, the installation processing unit 1501 advances the process to step S1607.

  In step S1604, the installation processing unit 1501 determines whether the key corresponding to the setting item to be processed can be read from the key file 334. If the key corresponding to the setting item to be processed cannot be read because the key file 334 is not arranged in advance, the installation processing unit 1501 advances the process to step S1606. If the key corresponding to the setting item to be processed can be read, the installation processing unit 1501 advances the process to step S1605.

  In step S1605, the installation processing unit 1501 determines whether or not the encrypted value of the setting item to be processed can be decrypted using the read key. If decryption is possible, the installation processing unit 1501 determines that the setting item to be processed has been processed, and returns the process to the condition determination for the repeated processing in step S1603. If decryption is not possible, the installation processing unit 1501 advances the process to step S1606.

  In step S1606, the installation processing unit 1501 stores the processing target setting item as one of the reset target items. Then, the installation processing unit 1501 determines that the setting item to be processed has been processed, and returns the processing to the condition determination for the repeated processing in step S1603.

  In step S1607, the installation processing unit 1501 determines whether there are one or more items to be reset that are stored. If there is one or more items to be reset, the installation processing unit 1501 advances the process to step S1608. If there is no resetting target item, the installation process is terminated.

  In step S1608, a screen for setting the value of the reset target item is displayed, and a setting input from the user is accepted.

  In step S1609, the installation processing unit 1501 requests the setting file input / output unit 321 to perform setting value writing processing of the setting value received in step S1608. The details of this processing are as shown in FIG. 6. In accordance with the procedure shown in FIG. 6, generation of the key and encryption of the value are performed, and generation of the key file 334 and the setting of the encrypted value to the setting file 322 are performed. Writing is performed.

  As a result, when the encrypted value of the setting file 322 arranged in advance cannot be decrypted because there is no key or the like, a new key can be generated and the setting value can be encrypted.

  As described above, in the fourth embodiment, when installing each processing unit of the job log collection server in an environment in which the setting file 322 is arranged in advance, if the encrypted value cannot be decrypted, the value is set. Prompt for resetting, and can generate and encrypt keys. Thereby, it is possible to prevent a trouble that the setting item to be encrypted cannot be decrypted after the operation is started.

101 Job log collection server 311 User interface unit 312 Job log reception unit 321 Setting file input / output unit 322 Setting file 331 Key generation unit 332 Encryption processing unit 333 Decryption processing unit 334 Key file 1501 Installation processing unit

Claims (6)

An information processing apparatus (101) having a plurality of setting items to be encrypted,
Key generation means (331) for generating a key for encryption and decryption for the setting item to be encrypted;
Encryption means (332) for encrypting a value using the encryption key generated by the key generation means;
Decryption means (333) for decrypting the value using the decryption key generated by the key generation means;
User interface means (311) for setting the setting items to be encrypted;
With
The key generation means generates different encryption and decryption keys for each setting item to be encrypted, and each time a value is set, a different encryption and decryption key is generated. An information processing apparatus characterized by generating (S604). When the user interface means (311) decrypts the encrypted value of the setting item to be encrypted and displays it on the screen, the decryption means (333) cannot decrypt the encrypted value. In this case, together with a message (1101) for prompting resetting of the value of the item to be encrypted, a screen display for setting the value of the item to be encrypted is performed (S910). The information processing apparatus described. When decrypting the encrypted value of the item to be encrypted, if the decryption means (333) cannot decrypt the encrypted value, the value of the item to be encrypted is reset. The information processing apparatus according to claim 1, further comprising notification means (1201) for performing a notification prompting the user. The notification means (1201) includes information (1401) for causing the user interface means to reset the item to be encrypted in the notification prompting to reset the value of the item to be encrypted. The information processing apparatus according to claim 3, further comprising: The program for functioning a computer as each means of the information processing apparatus of any one of Claims 1 thru | or 4. The program includes a software module that causes a computer to implement each unit of the information processing apparatus according to any one of claims 1 to 4, and further includes setting information related to the operation of the software module and the program. A module (1501) that realizes installation means for causing the computer to perform an operation for installing the setting file (322) to be stored in the computer; and the module that realizes the installation means includes the setting file on the computer. When it already exists, a screen for setting the value of the setting item to be encrypted of the setting file that has existed is displayed and the input of the value is accepted (S1608), and the key generation means (331) is realized Encryption and decryption by A key for encryption is generated, and a value input using the generated encryption key is encrypted by a module that realizes the encryption means (332). The listed program.