JP2014164419A - Information communication system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To easily and speedily perform cancellation of access restriction for a user communication terminal.SOLUTION: An information communication system comprises a user communication terminal, a manager communication terminal and an access restriction server, and the user communication terminal and the manager communication terminal perform data communication through short-range radio communication. The user communication terminal comprises a management terminal transmission unit for requesting the manager communication terminal to temporarily cancel the access restriction, a management terminal reception unit for receiving data to temporarily cancel the access restriction from the manager communication terminal, a server transmission unit for transmitting data requesting access to a content server to which the access restriction is temporarily cancelled to the access restriction server, and a server reception unit for receiving information content acquired from the content server to which the access was requested. When an instruction to cancel the access restriction is inputted by a manager as a result of checking of the acquired information content by the manager, data requesting cancellation of the access restriction is transmitted to the access restriction server.

Description

  The present invention relates to an information communication system, and more particularly, to an information communication system capable of determining whether or not access to information to be acquired can be determined in a user communication terminal.

Today, information desired by a user can be obtained easily and quickly via a network such as the Internet.
However, since there is information that can be harmful to children, there is a system that can set the restriction or cancellation of harmful information acquisition.
For example, when a request for canceling the restriction on receiving desired information is transmitted from the user's communication terminal to the server, the server permits the guardian's management terminal to access the information requested for cancellation from the user's communication terminal. Send a message to inquire whether or not, the guard of the management terminal that received the message determines whether or not to allow the reception by checking the content of the information requested to release, The management terminal transmits a release permission / inhibition signal indicating whether the reception restriction of the information is canceled or the reception restriction is instructed to the server, and the server requests the information requested by the communication terminal based on the content of the release permission / inhibition signal. Has been proposed (patent document 1).

  In addition, when a protected person tries to send an e-mail to a third party, the e-mail is temporarily stored in the server, and an e-mail inquiring whether the e-mail can be sent from the server to the guardian's check portable terminal. After sending the message, the guardian accesses the server, browses the browsing mail information including the contents of the email and the destination mail address, and the guardian determines whether the email can be delivered, and checks the mobile phone. A communication management system has been proposed in which a delivery enable / disable signal is returned from the terminal to the server, and the server determines whether or not to deliver the stored electronic mail based on the content of the delivery enable / disable signal (Patent Document 2). ).

JP 2009-260483 A JP 2011-103622 A

However, both the above-mentioned information reception restriction and mail transmission restriction use a server different from the user's communication terminal, and determine whether restriction is possible between the server and the communication terminal owned by the guardian. For this reason, the server manages the determination result of the restriction permission / inhibition determined by the guardian.
For this reason, it is necessary for a user who wants permission to receive information to go through many communication steps between the guardian's terminal and the server in order to actually obtain permission. There was a case. In addition, the guardian needs to have sufficient knowledge regarding the setting of access control.

Even when the guardian is directly next to the user, it is necessary for the guardian to check whether or not the content can be permitted by using the guardian's own communication terminal. Was big and took time.
In addition, when the guardian is not aware of the inquiry message transmitted from the server, or when the guardian's communication terminal cannot communicate with the server, the user cannot receive permission or the like, or Sometimes it took a long time to get permission.

  Therefore, the present invention has been made in consideration of the above-described circumstances, and information communication that can easily and promptly release access restrictions (or permit access) to information desired by the user. The problem is to provide a system.

  The present invention comprises a user communication terminal that performs data communication with each other, an administrator communication terminal, and an access restriction server, and information communication in which the user communication terminal and the administrator communication terminal perform data communication by short-range wireless communication In the system, the user communication terminal transmits to the input unit and the administrator communication terminal, a management terminal that transmits temporary release request data for requesting temporary release of access restriction to a content server to which access is restricted A management terminal receiving unit that receives temporary release permission data for temporarily releasing access restriction to the content server that requested the temporary release from the administrator communication terminal, and the access restriction by the administrator communication terminal Access request data for requesting access to a content server for which temporary release of the access is permitted. A server transmission unit for transmitting to the server, and a server reception unit for receiving the information content acquired from the content server that requested the access from the access restriction server, and confirming the acquired information content, A restriction release request for requesting the access restriction server to release the access restriction to the content server when the input unit inputs an instruction to release the access restriction to the content server. An information communication system is provided in which data is transmitted and confirmation of the acquired information content is performed using the user communication terminal by an administrator who owns the administrator communication terminal. .

  According to this, when the administrator confirms the information content acquired from the content server by using the user communication terminal, and the confirmation is input, the access restriction is performed. Since the server is requested to release the access restriction to the content server, the access restriction of the user communication terminal can be released easily and quickly.

The administrator communication terminal includes a release request receiving unit that receives the temporary release request data, and a user of the administrator communication terminal when the temporary release request data is received, An authentication unit that performs an authentication process for confirming whether or not the user is an administrator, and when the user is authenticated by the authentication unit, the temporary release permission data is stored in the user And a release permission transmission unit that transmits the communication terminal.
According to this, in response to a temporary access restriction release request, the administrator communication terminal only performs administrator authentication processing, so the administrator is burdened with input operations on his own administrator communication terminal. Can be reduced.

Further, the access restriction server has received a storage unit storing an access restriction list in which access restriction information to the content server by the user communication terminal is registered for each user communication terminal, and the access request data from the user communication terminal The access request confirmation unit for confirming whether the requested content server is already registered in the access restriction list, and the access requested content server is registered in the access restriction list. In the case of a content server, an access rejection transmission unit that transmits rejection notification data for rejecting the access request to the user communication terminal is provided.
According to this, when it is confirmed that the content server requested for access is registered in the access restriction list, the access request can be surely rejected.

The access restriction server further includes a release request receiving unit that receives, from the user communication terminal, restriction release request data for requesting release of access restriction to a content server to which access is currently restricted, When the restriction release request data is received, the access restriction information to the content server by the user communication terminal that has transmitted the restriction release request data is deleted from the access restriction list stored in the storage unit. It is characterized by that.
According to this, since the access restriction to the content server is released by the restriction release request from the user communication terminal, it is not necessary to perform the release request operation in the administrator communication terminal, and the access restriction can be easily and quickly released. Can do.

  Further, according to the present invention, in an information communication system including a user communication terminal, an administrator communication terminal, and an access restriction server that perform data communication with each other, access to a content server in which desired information content is stored is restricted. A management terminal transmission unit for transmitting temporary release request data for requesting temporary release of access restriction to the content server to the input unit, the administrator communication terminal, and the administrator communication A management terminal receiving unit that receives temporary release permission data for releasing access restriction to the content server that requested the temporary release from the terminal, and content for which temporary release of the access restriction is permitted by the administrator communication terminal Send access request data requesting access to the server to the access restriction server A server transmission unit, and a server reception unit that receives the information content acquired from the content server that requested the access from the access restriction server. As a result of confirming the acquired information content, the input unit When an instruction to release access restriction to the content server is input, the server transmission unit transmits restriction release request data requesting the access restriction server to release access restriction to the content server. A user communication terminal is provided.

  The present invention is also an access restriction release method for an information communication system comprising a user communication terminal, an administrator communication terminal, and an access restriction server, wherein the user communication terminal is connected to the administrator by short-range wireless communication. A step of transmitting temporary release request data for requesting temporary release of access restriction to a content server to which access is restricted to the communication terminal; and the administrator communication terminal sends the user communication terminal to the user communication terminal by short-range wireless communication. A step of transmitting temporary release permission data for temporarily releasing access restriction to the content server requested to be temporarily released, and the user communication terminal is allowed to temporarily release the access restriction by the access restriction server. Transmitting access request data for requesting access to the content server; and The access restriction server connects to the content server requested to access, acquires the information content stored in the content server, and then transmits the acquired information content to the user communication terminal; A step in which the user communication terminal receives the acquired information content and displays the information content, and a content server storing the information content received by the administrator who owns the administrator communication terminal The user communication terminal transmits, to the access restriction server, restriction release request data for requesting to release the access restriction to the content server when an instruction to release the access restriction is received. , The access restriction server is released by the restriction release request data It is required, and there is provided an access restriction release method characterized by including the step of releasing the access restriction to the content server by the user communication terminal which the access restriction is set.

  According to the present invention, in the user communication terminal, when the temporary release permission data is received from the administrator communication terminal, the access restriction data for requesting access to the content server permitted to be temporarily released is sent to the access restriction server. After transmission, the administrator checks the acquired information content using the user communication terminal, and accesses the restriction release request data requesting that the access restriction to the content server be released from the user communication terminal. Since it transmits to a restriction | limiting server, the cancellation | release of access restrictions of a user communication terminal can be performed easily and rapidly. In addition, the operational burden on the administrator for releasing access restrictions can be reduced, and the time from when a user requests access restriction release until access to a desired content server is permitted can be reduced. .

It is explanatory drawing of schematic structure of the information communication system of this invention. It is a block diagram of a configuration of one embodiment of a managed person communication terminal, an administrator communication terminal and an access restriction server according to the present invention. It is a communication sequence diagram of one Example between the communication terminal of this invention and an access restriction server.

Hereinafter, embodiments of the present invention will be described with reference to the drawings. In addition, this invention is not limited by description of the following examples.
<Configuration of Information Communication System of the Invention>
FIG. 1 shows an explanatory diagram of a schematic configuration of the information communication system of the present invention.
In FIG. 1, the information communication system of the present invention mainly includes a communication terminal (UTE) 1 of a managed person (hereinafter also referred to as a user) and a communication terminal (KTE) 2 of an administrator (hereinafter also referred to as a guardian). And an access restriction server (SV) 3 and a content server (CS) 4, which are connected via a predetermined network and perform data communication with each other.
Hereinafter, the managed communication terminal 1 is also called a managed communication terminal, user communication terminal, user terminal, or simply UTE, and the administrator communication terminal 2 is called an administrator communication terminal, administrator terminal, or simply , Also referred to as KTE.
The access restriction server 3 is simply referred to as a server or SV.

The user communication terminal UTE1 is a terminal that is subject to access restrictions, for example, a terminal that is owned by a user such as a child who is restricted from accessing (connecting or browsing) harmful information.
The administrator terminal KTE2 is a terminal owned by an administrator (for example, a guardian of a child) having the authority to manage the access restriction of the managed person.
These communication terminals (UTE, KTE) are information communication apparatuses equivalent to portable terminals, such as a mobile phone, a smart phone, a tablet terminal other than a personal computer, for example.

The access restriction server SV3 is a server that stores information for restricting user access (access restriction information).
The access restriction information is information registered in advance for restricting access to the content server by the user communication terminal UTE. As will be described later, an access restriction list 71 in which access restriction information for each user communication terminal is registered is stored. Stored in the unit 52.
When accessing the desired information content 84 stored in the content server 4 from the user's UTE1, it is assumed to go through the access restriction server SV3, and from the UTE1 to the information content 84 in the access restriction list 71. It is assumed that the content of the information content 84 cannot be browsed in the UTE1.

The installation place of the access restriction server SV3 is not particularly limited. For example, the access restriction server SV3 may be installed in a data management center or the like operated by a communication carrier.
The content server CS4 is a computer that stores information contents such as documents and images, and corresponds to a server owned by a company that creates and manages the information contents.

The user terminal UTE1 and the administrator terminal KTE2 are connected to the access control server SV via a predetermined wireless network 5, and data communication is performed by wireless communication.
As this wireless network 5, for example, a network of a mobile communication carrier can be used.
However, instead of the wireless network 5, a wired network via a wired cable may be used.

The access restriction server SV and the content server CS are connected to the WAN 6 such as the Internet, and the access restriction server SV acquires the desired information content 84 from a number of content servers CS connected to the WAN 6.
In addition, the user terminal UTE and the administrator terminal KTE may also have a function of directly connecting to the WAN 6 such as the Internet. However, since a system that restricts reception of information content will be described here, in particular, the user terminal UTE It is assumed that the information content of the content server CS can be accessed via the wireless network 5 via the access restriction server.

In addition, the user terminal UTE1 and the administrator terminal KTE2 have a function of performing data communication with each other by near field communication (NFC).
Near field communication (hereinafter also referred to as near field communication or NFC) is a communication standard capable of wireless communication within about 10 cm. For example, Felica (registered trademark) and MIFARE (registered trademark) already used Such communication means are used.
As will be described later, this short-range wireless communication NFC is used to perform data communication regarding a request for temporary release of access restriction and permission for the release between the UTE1 and the KTE2.

In the present invention, in order to permit access restriction, data communication is performed between the administrator terminals KTE2 and UTE1 owned by the administrator, and access restriction is released between KTE2 and the server SV3. Data communication is not performed.
Further, according to the present invention, when a request for canceling the access restriction of UTE1 is made to KTE2, the user-owned UTE1 and the administrator-owned KTE2 exist within a distance that allows near field communication NFC to be established. You need to do.

Further, as shown in FIG. 1, the number of UTEs 1 that perform near field communication with KTE 2 is not limited to one, and may be a plurality.
In this case, in KTE2, it is preferable to set and store in advance information related to a plurality of UTE1 that can temporarily cancel access restriction.
FIG. 2 shows a configuration block diagram of an embodiment of the to-be-managed communication terminal UTE1, the administrator communication terminal KTE2, and the access restriction server SV3 according to the present invention.

<Managed person communication terminal UTE>
The managed person communication terminal UTE1 is, for example, a portable terminal having a wireless communication function, and mainly includes a control unit 11, a display unit 12, an input unit 13, a storage unit 14, a wireless communication unit 15, and a proximity communication unit 16.
The control unit 11 is a part that executes various functions of the UTE 1 and is realized by a microcomputer including a CPU, a ROM, a RAM, an I / O controller, a timer, and the like. In addition, the CPU causes the hardware of the present invention to execute the functions of the present invention by organically operating each hardware based on a program stored in a ROM or the like.
The display unit 12 is a part that displays necessary information when executing the functions of the UTE 1, and an LCD, an organic EL display, or the like is used.

The input unit 13 is a part where the user inputs instructions such as information such as characters, function selection, data transmission request, and the like, and a keyboard, mouse, touch panel, or the like is used.
The storage unit 14 is a part for storing data used when executing various functions, acquired information contents, user setting information, programs, and the like, and includes semiconductor storage elements such as ROM, RAM, and flash memory, HDD, SSD. For example, a recording device such as the above and other storage media are used.

The wireless communication unit 15 is a part that performs wireless communication by connecting to the access restriction server SV3, and mainly includes a server transmission unit 21 and a server reception unit 22.
The server transmission unit 21 is a part that transmits data to the server SV. For example, the server transmission unit 21 transmits access request data 81 and restriction release request data 82.
The access request data 81 is data for requesting access (connection, browsing, etc.) to the content server CS having desired information content.
The data indicating the access request 81 includes, for example, UTE identification information (such as UTE01), content server identification information (such as CS01), information content identification information, and temporary release flag KJ.

It is assumed that there are two types of requests in the access request data 81 as will be described later.
The first access request data is data for making a request for access to the content server so that the user can browse the information content, and the other second access request data is an access restriction by the administrator. This is data for making an access request to a content server for which access is temporarily permitted when temporary release is permitted.
In a state where the administrator temporarily does not permit (referred to as a restriction mode), if the first access request is made, the access may be denied depending on the access restriction status of the requested information content. .

On the other hand, when the administrator makes a second access request in a state where access is temporarily permitted (referred to as a release mode), the access request is accepted by the server SV without being rejected, and the requested information content is obtained. Access is temporarily allowed.
In order to distinguish between these two access requests, the second access request data includes a temporary release flag (release KJ) for requesting temporary release.
Alternatively, the temporary release flag KJ area is secured in the access request data, and when the first access request data is transmitted, it is set to a value (for example, zero) meaning a restriction, and the second access request When transmitting data, you may set to the value (for example, 1) meaning temporary cancellation | release.

The restriction release request data 82 is data requesting the access restriction server SV3 to release the access restriction to the content server.
In the restriction release request data 82, as described later, the administrator confirms the information content acquired from the content server using the UTE 1 owned by the user, and determines whether or not to permit access to the content server. As a result of this determination, when an instruction input that means access restriction cancellation is made, this is transmitted to the server SV.
Therefore, it is necessary for an administrator to input an instruction for transmitting the restriction release request data 82. In addition, it is preferable that only an administrator can input instructions, and it is preferable that a user who is the owner of the user terminal UTE cannot input this instruction. For example, when this instruction is input, a password that only the administrator knows It is preferable to execute a procedure for confirming that the administrator has input by requesting input of the user or performing biometric identification.

The server receiving unit 22 is a part that receives data from the server SV, and receives, for example, rejection notification data 83 and information content 84.
The rejection notification data 83 is data transmitted from the server SV3 to the UTE1 when the first access request data 81 is transmitted from the UTE1 to the server SV3 and the access is denied.
When this refusal notification data 83 is received, it means that access to the information content to be accessed by the UTE1 is being denied.
The information content 84 is information acquired from the content server CS4 that requested access. This information content is preferably received from the access restriction server 3, but may be obtained by directly accessing the content server CS4.

The near field communication unit 16 is a part that performs near field communication (NFC) with the administrator terminal KTE2, and mainly includes a management terminal transmission unit 23 and a management terminal reception unit 24.
The management terminal transmission unit 23 is a part that transmits data to the administrator terminal KTE2, and transmits, for example, temporary release request data 85.
The temporary release request data 85 is data for requesting the KTE 2 to temporarily release the access restriction to the content server whose access is restricted in order for the administrator to confirm the contents of the information content in the UTE 1. It is.
The request data 85 includes, for example, an identification number (such as UTE01) of the user terminal.

The management terminal receiving unit 24 is a part that receives data from the administrator terminal KTE2, and receives temporary release permission data 86, for example.
The temporary release permission data 86 is data for temporarily releasing the access restriction to the content server that requested the temporary release in the UTE1.
The temporary release permission data 86 includes, for example, an identification number (such as UTE01) of the user terminal and information for releasing permission (release KJ).
When this permission data 86 is received, access request data including release permission information (release KJ) is transmitted to the server SV, and access from the UTE1 to the content server is temporarily permitted.

<Administrator communication terminal KTE>
The administrator communication terminal KTE2 is, for example, a portable terminal having a wireless communication function, and mainly includes a control unit 31, a display unit 32, an input unit 33, a storage unit 34, a proximity communication unit 35, a wireless communication unit 36, and an authentication unit 37. Is provided.
The control part 31, the display part 32, the input part 33, and the memory | storage part 34 have the structure and function similar to each module of above-mentioned UTE1.
Similarly to the wireless communication unit 15 of the UTE 1, the wireless communication unit 36 also includes a server transmission unit 44 and a server reception unit 45 for communicating with the server SV3.
The near field communication unit 35 is a part that performs near field communication (NFC) with the UTE 1, and includes, for example, a cancellation request reception unit 41 and a cancellation permission transmission unit 42.

The cancellation request receiving unit 41 is a part that receives temporary cancellation request data 85 transmitted from the UTE1.
The release permission transmission unit 42 is a part that transmits temporary release permission data 86 to the UTE1.
The temporary release permission data 86 is transmitted after the authentication unit 37 authenticates that the user of KTE2 is an administrator.
Since transmission / reception of these data (85, 86) is performed by NFC, it succeeds when UTE1 and KTE2 exist within a distance defined by a predetermined standard.
That is, when the user who owns UTE1 and the administrator who owns KTE2 are close to each other, it is possible to make a request for releasing the access restriction of UTE1.
Therefore, when the administrator is the user's guardian (parent), the access restriction can be released when the administrator is near the user (child), so it is safe for the guardian.

The authentication unit 37 is a part that authenticates an administrator.
That is, when the temporary release request data 85 is received, this is a part for confirming whether the user of KTE2 is an administrator who owns KTE2.
The administrator may be authenticated, for example, by inputting the administrator's identification number (ID) and password (password). However, other authentication processes such as fingerprint authentication and voice authentication may be used.
In addition, for authentication, an ID and password of an administrator and an identification number of a managed UTE are stored in the storage unit 34 in advance. Then, the input ID and password are compared with the stored ID and password, respectively, and it is checked whether or not they match. Further, it is checked whether or not the terminal (UTE) requested to be temporarily released is included in the stored UTE identification number.

When the KTE 2 receives the temporary release request data 85 described above, the authentication unit 37 displays, for example, an authentication screen on the display unit 32 and requests that the administrator's ID and password be input. When the administrator inputs the ID and password, it is checked whether the input ID and password match the stored ID and password.
If they match, it is further determined whether or not the UTE1 that has requested temporary release is a terminal UTE managed by the UTE1, and if it is a terminal UTE managed by the KTE2, the temporary release permission data 86 is determined. Is transmitted to the UTE1 that has requested release.

<Access restriction server>
The access restriction server SV3 stores information for managing the access restriction and permission of the UTE1, and mainly includes a control unit 51, a storage unit 52, a terminal communication unit 53, a content acquisition unit 54, and an access request confirmation unit 55. Is provided.
The control unit 51 is a part that executes various functions such as the terminal communication unit 53 that performs information communication with the communication terminals (1, 2) and the content server 4, and is mainly composed of a microcomputer including a CPU.
The storage unit 52 is a part that mainly stores the access restriction list 71 of the communication terminal, and a semiconductor storage element, a recording device, or the like is used.
As described above, the access restriction list 71 is obtained by registering access restriction information to the content server by the user communication terminal UTE for each user communication terminal UTE.

In the access restriction list 71, information on sites (content servers) for which connection is prohibited is stored for each managed terminal UTE. For example, information (for example, UTE01) for identifying the UTE and the content server 4 are stored. Information for identification (for example, CS01) is stored in association with each other.
The access restriction list 71 is preferably registered in advance by an administrator who manages the managed person using the administrator terminal KTE owned by the administrator. However, when an administrator requests access permission from an administrator, the content server may be registered in the access restriction list when it is determined that the administrator cannot permit the access.

  Alternatively, when the user terminal UTE1 starts using the system of the present invention, it is initially registered as a state in which connection to all content servers is prohibited, and a request for permitting access to the UTE1 from the management terminal KTE2 Each time, there may be stored information related to the content server that permits connection of the UTE1. That is, an access permission list may be stored separately from the access restriction list.

The terminal communication unit 53 is a part that performs data transmission / reception with the user terminal UTE1 and the management terminal KTE2. For example, in data communication with the user terminal UTE, an access request reception unit 61, a release request reception unit 62, an access rejection transmission A unit 63 and a content transmission unit 64 are provided.
The access request receiving unit 61 is a part that receives access request data 81 transmitted from the UTE 1 to the access restriction server SV 3 when the user accesses the desired content server 4 in the UTE 1.
The release request receiving unit 62 is a part that receives restriction release request data 82 for requesting release of access restriction to the content server 4 to which access is currently restricted.
When this restriction release request data 82 is received, access restriction information to the content server 4 by the UTE that has made the release request is deleted from the access restriction list 71.

The access denial transmission unit 63 receives the access request data 81 from the UTE1, and when access to the requested content server 4 is restricted, that is, the requested access to the content server 4 is included in the access restriction list. In the case of the content server registered in 71, this is a part for transmitting data (rejection notification data 83) for rejecting the access request to the UTE1 that has transmitted the access request data 81.
The content transmission unit 64 is a part that transmits the information content acquired from the content server 4 to the UTE1 that is not restricted in access or to the UTE1 that is temporarily released from access restriction.
The content acquisition unit 54 is a part that acquires the information content 84 requested to be accessed from the content server 4.

When the access request confirmation unit 55 receives the access request data 81 from the UTE1, whether or not the desired content server 4 requested to be accessed is already registered in the access restriction list 71, that is, the UTE1 This is a part to confirm whether or not access by is restricted.
For example, it is checked whether the identification information (UTE01) of the UTE1 and the content server (CS01) included in the received access request data 81 are stored in the access restriction list 71 in association with each other.
When UTE01 and CS01 are stored in association with each other in the access restriction list 71, the access request is rejected, and refusal notification data for rejecting the access request to UTE1 that has transmitted the access request. 83 is transmitted.
When the content server CS01 is not stored in the access restriction list 71, the access request is permitted, and the information content stored in the requested content server CS01 is connected to the requested content server. Obtain and send to UTE1.

<Communication sequence between communication terminal and server>
FIG. 3 shows a flowchart of an embodiment of a communication sequence relating to access restriction and release according to the present invention.
As described above, data transmission / reception is performed between the user terminal UTE1 and the server SV3 by wireless communication using a predetermined wireless communication method. Therefore, the user terminal UTE1 needs to be located in an area where wireless communication is possible.
However, when the user terminal UTE1 can communicate using a wired network, the user terminal UTE1 and the wired network may be connected using a wired cable.

In addition, data communication is performed between the user terminal UTE1 and the management terminal KTE2 by near field communication (NFC).
Therefore, it is assumed that the user of the user terminal UTE1 and the administrator of the management terminal KTE2 are present at positions close enough to allow conversation, for example, and the UTE1 and KTE2 are in a state where data communication can be performed by NFC.
In the following description, it is assumed that the identification number of the user terminal is UTE01 and the identification number of the content server 4 that owns the information content to be accessed is CS01.

In FIG. 3, it is assumed that the user of UTE01 performs an input operation for starting browsing using the input unit 13 in order to browse desired information content.
At this time, in step SB1 of UTE01, the access request data 81 is transmitted to the server SV3.
The access request data 81 includes UTE01 and information of the content server CS01 that owns the information content.
The server SV receives the access request data 81 in step SA1.
In step SA2, the contents of the access request data 81 are confirmed.

Here, it is checked whether or not the contents (UTE01, CS01) of the access request data are already stored in the access restriction list 71. If not stored, although not shown, the access request data is accepted as it is, the access is requested to the content server CS01, the requested information content 84 is acquired, and transmitted to the UTE01.
In this case, since the access request from the UTE01 is permitted, the user of the UTE01 can browse the desired information content.

On the other hand, if the contents of the access request data (UTE01, CS01) have already been stored in the access restriction list 71, the rejection notification data 83 is transmitted to the UTE01 in step SA3, and the access request is not permitted. To be notified.
In step SB2, the UTE01 receives the rejection notification data 83.
When the rejection notification data 83 is received, a message indicating that access to the CS01 is denied may be displayed on the display unit 12 of the UTE01 to notify the user that access is not possible.

  In step SB3, the user of UTE01 goes to the place where the administrator is present and informs that he / she wants to release access to CS01. Using the input unit 13 of UTE01, the user of UTE01 is sent to KTE2 of the administrator. An input operation for transmitting temporary release request data 85 for requesting to temporarily release the access restriction is performed.

Thereby, temporary release request data 85 including UTE01 is transmitted from NTE01 to KTE2 by NFC.
In step SC1 of KTE2, this temporary release request data 85 is received.
In step SC2, when the temporary release request data 85 is received, an authentication screen is displayed on the display unit 32, and the administrator performs authentication processing for the administrator himself / herself in order to permit temporary release.
Here, for example, the administrator inputs his / her ID and password (password) using the input unit 33.
However, in the authentication process, authentication by fingerprint or voice may be performed instead of performing an input operation such as a password.

The authentication unit 37 compares the input information (ID, password) with the administrator information (ID, password) stored in advance in the storage unit 34 and checks whether they match. If they do not match, the authentication process is executed again.
On the other hand, if they match, in step SC3, the administrator performs a predetermined input operation and transmits data indicating temporary release permission 86 to UTE1 using NFC.
Alternatively, if they match, the temporary release permission data 86 may be automatically transmitted without performing an input operation.

The temporary release permission data 86 includes, for example, identification information of the user terminal UTE01 and information (release KJ) indicating temporary release permission.
In step SB4 of UTE1, temporary release permission data 86 is received.
In step SB5, in order to temporarily release the access restriction of UTE01, a setting for starting the release mode is performed.
Here, in order to transmit the access request data 81 for the purpose of temporary release, the temporary release permission information (release KJ) transmitted from the KTE 2 is included in the access request data 81. That is, the access request data 81 includes UTE01, CS01, and release KJ.

  In step SB6, the access request data 81 to which the release KJ is added is transmitted from the UTE01 to the server SV. Here, although the transmission of the access request data 81 may be performed automatically, a message indicating that the access request data 81 is to be transmitted is displayed on the display unit 13 of the UTE 1 and whether or not transmission is possible to the administrator who is with the user The access request data 81 may be transmitted after an input indicating that transmission is possible.

In step SA4 of the server SV, the access request data 81 including the release KJ is received.
In step SA5, since the received access request data 81 includes the release KJ, a setting for temporarily permitting access to the content server CS01 by the UTE01 is made.
In step SA6, connection is made to the content server CS01, and the information content 84 requested from the UTE01 is acquired.
In step SA7, the acquired information content 84 is transmitted to UTE01.
In step SB7 of UTE01, the information content 84 is received and displayed on the display unit 12.

In step SB8, the administrator who is with the user looks at the display screen of UTE1, confirms the content of the information content 84, and determines whether or not the user may be allowed to view the information content. .
When the administrator permits the browsing of the information content, the administrator performs an input operation that means permission through the input unit 13 of the UTE01. That is, an instruction is input to cancel access restriction to a desired content server. At this time, the process proceeds to step SB9.
On the other hand, when the browsing of the information content is not permitted, the administrator performs an input operation meaning that the browsing is not permitted by the input unit 13 of the UTE01. At this time, the process proceeds to step SB10, the setting for ending the release mode set in step SB5 is performed, and the process returns to step SB1.

In step SB9, the restriction release request data 82 is transmitted from the UTE01 to the server SV in order to permit the access to the content server CS01 by the UTE01. The restriction release request data 82 includes, for example, UTE01 and CS01.
Thereafter, in step SB10, a setting for terminating the release mode is performed, and the process returns to step SB1.

In step SA8 of the server SV, the restriction release request data 82 is received.
In step SA9, a setting for canceling the access restriction stored in the access restriction list 71 is made.
That is, the access restriction information stored as a pair of UTE01 and CS01 is deleted from the access restriction list 71. Alternatively, information consisting of UTE01 and CS01 may be registered in the access permission list.

As described above, after the access restriction is released in step SA9, if an access request similar to that in step SB1 is made in UTE01, the server SV does not reject the desired information content in UTE01. It becomes possible to browse.
As described above, since the administrator only needs to confirm that the temporary release request has been received at the administrator terminal KTE2 and to perform an input operation for self-authentication, the burden on the input operation is reduced. it can.

In addition, the administrator needs to determine permission of access as in the conventional case. However, since the administrator determines the permission of access using the user terminal UTE01 owned by the user, the user also Whether or not it is permitted can be known on the spot, and the access restriction can be easily and quickly released.
That is, it is possible to shorten the time until the user is permitted to view the information content with restricted access, simplify the process of performing the permission, and reduce the burden of the administrator's input operation.

  DESCRIPTION OF SYMBOLS 1 Administrator communication terminal UTE, 2 Administrator communication terminal KTE, 3 Access restriction server SV, 4 Content server CS, 5 Wireless network, 6 Internet WAN, 11 Control part, 12 Display part, 13 Input part, 14 Storage part, 15 wireless communication unit, 16 proximity communication unit, 21 server transmission unit, 22 server reception unit, 23 management terminal transmission unit, 24 management terminal reception unit, 31 control unit, 32 display unit, 33 input unit, 34 storage unit, 35 proximity Communication unit 36 Wireless communication unit 37 Authentication unit 51 Control unit 52 Storage unit 53 Terminal communication unit 54 Content acquisition unit 55 Access request confirmation unit 61 Access request reception unit 62 Release request reception unit 63 Access Refusal transmission unit, 64 content transmission unit, 81 access request, 82 restriction release request, 83 refusal notification, 8 4 Information content, 85 Temporary release request, 86 Temporary release permission

Claims (5)

An information communication system comprising a user communication terminal that performs data communication with each other, an administrator communication terminal, and an access restriction server, wherein the user communication terminal and the administrator communication terminal perform data communication by short-range wireless communication. ,
The user communication terminal includes an input unit,
A management terminal transmission unit for transmitting temporary release request data for requesting temporary release of access restriction to a content server whose access is restricted to the administrator communication terminal;
A management terminal receiving unit for receiving temporary release permission data for temporarily releasing access restriction to the content server that requested the temporary release from the administrator communication terminal;
A server transmission unit that transmits access request data for requesting access to a content server that is allowed to temporarily release the access restriction by the administrator communication terminal, to the access restriction server;
A server receiver that receives information content acquired from the content server that requested the access from the access restriction server;
As a result of confirming the acquired information content, when an instruction input for canceling access restriction to the content server is made by the input unit, the server transmission unit sends the access restriction server to the content server. Send restriction release request data requesting to release access restriction,
The information communication system according to claim 1, wherein the confirmation of the acquired information content is performed using the user communication terminal by an administrator who owns the administrator communication terminal. The administrator communication terminal is
A release request receiving unit for receiving the temporary release request data;
When the temporary release request data is received, an authentication unit that performs an authentication process for confirming whether a user of the administrator communication terminal is an administrator who owns the administrator communication terminal;
2. A release permission transmission unit that transmits the temporary release permission data to the user communication terminal when the authentication unit authenticates the user as the administrator. The information communication system described in 1. The access restriction server is:
A storage unit storing an access restriction list in which access restriction information to the content server by the user communication terminal is registered for each user communication terminal;
When receiving the access request data from the user communication terminal, an access request confirmation unit for confirming whether or not the content server requested to access is already registered in the access restriction list;
When the access-requested content server is a content server registered in the access restriction list, the access server includes an access rejection transmitting unit that transmits rejection notification data for rejecting the access request to the user communication terminal. The information communication system according to claim 1 or 2. In an information communication system including a user communication terminal, an administrator communication terminal, and an access restriction server that perform data communication with each other, a user communication terminal that restricts access to a content server in which desired information content is stored. There,
An input section;
A management terminal transmission unit for transmitting temporary release request data for requesting temporary release of access restriction to the content server to the administrator communication terminal;
A management terminal receiving unit for receiving temporary release permission data for releasing access restriction to the content server that requested the temporary release from the administrator communication terminal;
A server transmission unit that transmits access request data for requesting access to a content server that is allowed to temporarily release the access restriction by the administrator communication terminal, to the access restriction server;
A server receiver that receives information content acquired from the content server that requested the access from the access restriction server;
As a result of confirming the acquired information content, when an instruction input for canceling access restriction to the content server is made by the input unit, the server transmission unit sends the access restriction server to the content server. A user communication terminal that transmits restriction release request data for requesting release of access restriction. An access restriction release method for an information communication system comprising a user communication terminal, an administrator communication terminal, and an access restriction server,
The user communication terminal transmits temporary release request data for requesting temporary release of access restriction to a content server whose access is restricted to the administrator communication terminal by short-range wireless communication;
The administrator communication terminal transmits temporary release permission data for temporarily releasing access restriction to the content server requested to be temporarily released to the user communication terminal by short-range wireless communication;
The user communication terminal transmitting to the access restriction server access request data for requesting access to a content server permitted to temporarily release the access restriction;
The access restriction server connects to the content server requested to access, acquires the information content stored in the content server, and then transmits the acquired information content to the user communication terminal;
The user communication terminal receiving the acquired information content and displaying the information content;
When the administrator who owns the administrator communication terminal inputs an instruction to release the access restriction to the content server storing the received information content,
The user communication terminal transmitting restriction release request data requesting the access restriction server to release access restriction to the content server;
The access restriction server includes a step of releasing access restriction to the content server by the user communication terminal for which release is requested by the restriction release request data and access restriction is set. Restriction release method.

Images