JP2015118666A - Electronic apparatus and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To enhance security in displaying information.SOLUTION: An electronic apparatus comprises: authentication units 105 and 109 for authenticating a user; and a first display unit 102 for displaying information in the vicinity of eyes of the user, when the user is successfully authenticated by the authentication unit. The electronic apparatus may comprise output units 108 and 109 for outputting a part of information permitted to be disclosed to the user, to a second display unit 202 different from the first display unit. In this case, the output unit may output information to the second display unit according to whether the user uses the second display unit or a user different from the user uses the second display unit.

Description

  The present invention relates to an electronic device and a program.

  Conventionally, information is downloaded and displayed on a portable device such as a tablet terminal or a smartphone including a liquid crystal display device (for example, Patent Document 1).

JP 2011-250217 A

  Portable devices are highly convenient because they can easily browse information on the go. However, since the information displayed on the portable device can be viewed by anyone, if security measures are not taken, there is a possibility of leakage of confidential information.

  The present invention has been made in view of the above-described problems, and an object thereof is to provide an electronic device and a program capable of improving security related to information display.

  The electronic device (10A) of the present invention includes an authentication unit (105, 109) that authenticates a user, and a first display unit (102 that displays information in the vicinity of the user's eyes when authenticated by the authentication unit. And).

  In this case, the authentication unit may authenticate the user using the eyes of the user. The first display unit may display at least a part of information permitted to be disclosed to the user in the vicinity of the eyes of the user.

  The electronic device of the present invention further includes an output unit (108, 109) for outputting a part of information permitted to be disclosed to the user to a second display unit (202) different from the first display unit. You may have. In this case, the output unit displays the second display unit depending on whether the user uses the second display unit or a user different from the user uses the second display unit. Information may be output.

  The electronic device according to the present invention includes an input unit (106) for inputting the user's environmental information, and a control unit for controlling information displayed on the first display unit in accordance with the environmental information input by the input unit. (109). In this case, the input unit may include a position detection unit that detects a position where the user is present, and the control unit may control the amount of the information according to the position detected by the position detection unit. Good.

  The first display unit may be mounted on the user's face, and may include a detection unit (111) that detects whether the first display unit is mounted on the user. In this case, the authentication unit may perform the authentication when the detection unit detects wearing of the first display unit by the user. The first display unit may display the information received by human body communication or proximity communication via the user in the vicinity of the user's eyes. The second display unit may display the information received by human body communication or proximity communication via the user.

  In the electronic device (10A, 30, 20B) of the present invention, the user is authenticated by the input unit (109, 301, 302, 208, 209) for inputting the authentication result of the authentication unit for authenticating the user, and the authentication unit. The control unit (109, 302, 209) for limiting the display of the second display unit (202) different from the first display unit without limiting the display of the first display unit (102). I have.

  The program of this invention makes a computer perform the authentication step which authenticates a user, and the display step which displays information in the vicinity of the said user's eyes, when it authenticates at the said authentication step.

  In addition, in order to explain the present invention in an easy-to-understand manner, the above description has been made in association with the reference numerals of the drawings representing one embodiment. However, the present invention is not limited to this, and the configuration of an embodiment described later May be modified as appropriate, or at least a part thereof may be replaced with another component. Further, the configuration requirements that are not particularly limited with respect to the arrangement are not limited to the arrangement disclosed in the embodiment, and can be arranged at a position where the function can be achieved.

  The electronic device and the program according to the present invention have an effect that security related to information display can be improved.

It is a figure showing composition of an information processing system concerning a 1st embodiment. It is a perspective view of a mounting apparatus. It is a figure which shows an example of the user authority management table which the memory | storage part of information processing apparatus memorize | stores. 4A is a diagram showing an example of document data, FIG. 4B is a diagram showing an example of document data divided into parts, and FIG. 4C is a diagram of a disclosure information control table. It is a figure which shows an example. It is a figure which shows an example of the process which the mounting apparatus which concerns on 1st Embodiment performs. FIG. 6A is a diagram illustrating an example of processing executed by the information processing apparatus according to the first embodiment, and FIG. 6B is an example of processing of the portable apparatus according to the first embodiment. It is a flowchart which shows. Fig.7 (a)-FIG.7 (c) are the figures for demonstrating the process of FIGS. 5-6 (b). FIG. 8A is a flowchart showing an example of processing executed by the portable device according to the second embodiment, and FIG. 8B shows processing executed by the mounting device according to the second embodiment. It is a flowchart which shows an example. It is a flowchart which shows an example of the process which the information processing apparatus which concerns on 2nd Embodiment performs. It is a figure which shows the structure of the information processing system which concerns on 3rd Embodiment. FIG. 11A is a flowchart showing an example of processing executed by the portable device according to the third embodiment, and FIG. 11B shows processing executed by the mounting device according to the third embodiment. It is a flowchart which shows an example.

<< First Embodiment >>
Hereinafter, the information processing system 500A according to the first embodiment will be described in detail with reference to FIGS. FIG. 1 is a block diagram showing the configuration of the information processing system 500A.

  As illustrated in FIG. 1, the information processing system 500 </ b> A includes a mounting device 10 </ b> A, a portable device 20 </ b> A, and an information processing device 30. The mounting device 10 </ b> A, the portable device 20 </ b> A, and the information processing device 30 are connected to the network 50. The network 50 includes, for example, an in-house LAN (Local Area Network) of a company where the user works, a public wireless LAN, the Internet, a mobile phone network, and the like.

  The wearing device 10A is a glasses-type terminal worn by the user on the face. Further, the portable device 20A is assumed to be a terminal such as a notebook PC (Personal Computer) or a tablet terminal. The information processing apparatus 30 is assumed to be a server. In the present embodiment, a user who wears the mounting device 10A accesses the document data stored in the information processing device 30 by operating the mounting device 10A, and the document is stored in the mounting device 10A or the portable device 20A. Browse data. The data stored in the information processing apparatus 30 is not limited to document data, and may be various data such as image data and audio data. The present embodiment can be applied to any data.

(Mounting device 10A)
As shown in FIG. 1, the mounting device 10 </ b> A includes an imaging unit 101, a display unit 102, an operation unit 103, a microphone 104, a retina detection unit 105, a position detection unit 106, a storage unit 107, and a communication unit. 108, a control unit 109, and a detection unit 111. In FIG. 2, the mounting device 10A is shown in a perspective view. As illustrated in FIG. 2, the mounting device 10 </ b> A includes a spectacle-type frame 120. The configuration of the mounting device 10A that is illustrated in FIG. 1 and not illustrated in FIG. 2 is provided inside the frame 120 or a part of the frame 120.

  The imaging unit 101 includes a lens, an imaging element, an image processing unit, and the like, and captures still images and moving images. As shown in FIG. 2, the imaging unit 101 is provided near the end of the frame 120 (near the user's right eye). For this reason, in a state where the user wears the mounting device 10A, it is possible to capture an image in a direction in which the user is facing (viewing).

  The display unit 102 includes a projector provided in or near the frame 120 and a prism for guiding a projection image from the projector to the eyes of the user. The display unit 102 displays various information under the instruction of the control unit 109.

  The operation unit 103 is a touch pad provided on the frame 120, detects the movement of the user's finger, receives an operation from the user, and transmits the received operation information to the control unit 109. Details of the imaging unit 101, the display unit 102, the operation unit 103, and the like are also disclosed in, for example, US Published Patent No. 2013/0044042.

  The microphone 104 is provided on the frame 120 and collects voices uttered by the user. The voice collected by the microphone 104 is voice-recognized by a voice recognition unit (not shown), and the voice recognition result is transmitted to the control unit 109. The control unit 109 executes processing based on the voice recognition result (for example, command execution processing). Note that the control unit 109 may perform voice recognition.

  The retina detection unit 105 includes an infrared irradiation unit and an infrared light receiving unit. The retina detection unit 105 detects (scans) the path of blood vessels on the retina by irradiating the eyeball with infrared rays from the infrared irradiation unit and receiving the infrared rays reflected by the eyeballs with the infrared light reception unit. Then, the retina detection unit 105 outputs the detection result to the control unit 109. As an example, the retina detection unit 105 is provided on the back side (face side) of the imaging unit 101 in FIG. The control unit 109 uses the detection result of the retina detection unit 105 to execute user authentication (authentication of whether or not the user wearing the mounting device 10A is a regular user registered in the mounting device 10A). To do.

  The position detection unit 106 detects information regarding the environment in which the user wearing the mounting device 10A exists. In the first embodiment, the position detection unit 106 detects information of the network 50 (for example, an in-house LAN or a public wireless LAN) to which the communication unit 108 of the mounting apparatus 10A is connected. Then, the position detection unit 106 outputs the detected information to the control unit 109. Note that the control unit 109 determines whether the user is inside the company or outside the company based on information input from the position detection unit 106. Note that the control unit 109 uses a table (base station table) that determines which wireless LAN base station is a base station installed in the company, whether the user is in the company or outside the company. Is detected. The base station table is stored in the storage unit 107.

  The storage unit 107 is, for example, a nonvolatile semiconductor memory such as a flash memory, and stores image data captured by the imaging unit 101, display data displayed on the display unit 102, and the like. The storage unit 107 stores user authentication information used for user authentication and the base station table described above. The user authentication information is stored in association with user identification information (ID (Identification Data) or the like) and user biometric information (in this embodiment, a retina pattern).

  The communication unit 108 communicates with other devices (the portable device 20A and the information processing device 30) via the network 50.

  The control unit 109 comprehensively controls the entire mounting device 10A. The control unit 109 includes a CPU (Central Processing Unit), a RAM (Random Access Memory), a ROM (Read Only Memory), and the like. Details of processing executed by the control unit 109 will be described later.

  The detection unit 111 includes, for example, a pressure sensor and is provided on the user side (the side in contact with the user) of the frame 120. The detection unit 111 detects whether or not the mounting device 10 </ b> A is mounted on the user, and outputs the detection result to the control unit 109.

(Portable device 20A)
As shown in FIG. 1, the portable device 20A includes a display unit 202, an input unit 203, a position detection unit 206, a storage unit 207, a communication unit 208, and a control unit 209.

  The display unit 202 includes a liquid crystal display of about 5 inches, for example, and displays various types of information under the control of the control unit 209. The display unit 202 has a larger display screen area and better resolution than the display unit 102. For this reason, in this embodiment, the display unit 202 has better visibility and is easier to see than the display unit 102.

  The input unit 203 includes a keyboard, a mouse, a touch panel, and the like, and receives an input corresponding to a user operation of the portable device 20A.

  The position detection unit 206 includes, for example, a GPS (Global Positioning System) module, detects position information of the portable device 20A, and outputs the position information to the control unit 209. Note that the position detection unit 206 may detect the position information of the portable device 20A from the information of the network 50 to which the communication unit 206 is connected, like the position detection unit 106 of the mounting device 10A.

  The storage unit 207 is, for example, a nonvolatile semiconductor memory such as a flash memory or a hard disk drive, and stores document data transmitted from the mounting apparatus 10A.

  The communication unit 208 performs wireless communication or wired communication with other devices (the mounting device 10A and the information processing device 30) via the network 50.

  The control unit 209 comprehensively controls the entire portable device 20A. The control unit 209 includes a CPU, RAM, ROM, and the like. Details of processing executed by the control unit 209 will be described later.

(Information processing apparatus 30)
As illustrated in FIG. 1, the information processing apparatus 30 includes a communication unit 301, a control unit 302, and a storage unit 303.

  The communication unit 301 performs wireless communication or wired communication with other devices (the mounting device 10A and the portable device 20A) via the network 50. Note that in the first embodiment, communication between the information processing apparatus 30 and the portable apparatus 20A may not be possible.

  The control unit 302 controls the information processing apparatus 30 as a whole. The control unit 302 includes a CPU, RAM, ROM, and the like. The control unit 302 performs processing such as transmitting document data in a range according to the authority of the user among the document data requested by the user of the mounting device 10A to the mounting device 10A via the communication unit 301 and the network 50. Do. Details of processing executed by the control unit 302 will be described later.

  The storage unit 303 is, for example, a nonvolatile semiconductor memory such as a flash memory or a hard disk drive. The storage unit 303 stores a user authority management table (see FIG. 3) for managing user authority, document data (see FIGS. 4A and 4B), and a disclosure information control table (see FIG. 4C). ) Is memorized.

  Here, the user authority management table will be described. As shown in FIG. 3, the user authority management table has items of device ID, user name, title, and authority. In the item of device ID, information for identifying each mounting device 10A (here, the device identification number) is stored. The user name item stores the name of a user who uses the mounting apparatus 10A, that is, a regular user set in each mounting apparatus 10A. The title of the user is stored in the title field. The authority item stores the authority that the user has. For example, in FIG. 3, information is stored that the authorized user K of the mounting apparatus 10 </ b> A with the device ID “ID0001” is an assistant and has no authority. In addition, information that the authorized user L of the mounting apparatus 10A with the device ID “ID0002” has a job title and has authority A is stored. Further, the user M who uses the mounting apparatus 10A with the device ID “ID0003” stores information that the job title is the personnel department manager and has the authority B. In this embodiment, for convenience of explanation, it is assumed that one user is registered as a regular user for one mounting apparatus 10A.

  Next, document data and a disclosure information restriction table will be described. Assume that the storage unit 303 stores, for example, document data D10 as shown in FIG. Here, it is assumed that the document data D10 includes a company outline, a product cost list, and personnel information. The document data D10 includes, for example, a first part P10 including a company outline, a second part P11 including a product cost list, and personnel information by a company security administrator or the like as shown in FIG. It is assumed that the third part P12 is included. Then, the security administrator determines what authority P10 to P12 should be disclosed to a user having authority, and stores it in the disclosure information control table (see FIG. 4C).

  Here, the disclosure information control table has a data structure as shown in FIG. Specifically, the disclosure information control table has items of file name, partial information, and authority. The file name item stores the name of the document data. The part information item stores information for identifying each part of the document data. As information for identifying each part of the document data, information such as the start page, start line, end page, and end line of the part is stored. In FIG. 4C, the illustration is simplified. Therefore, the codes “P10 to P12” representing each part are stored in the item field of the partial information. The authority item stores the authority range of the user who can disclose each part of the document data.

  In the disclosure information control table of FIG. 4C, for example, it is defined that the first part P10 (company outline) of the document data with the file name D10 can be disclosed to a user who does not have special authority. Further, it is defined that the second part P11 (product cost list) can be disclosed to a user having authority A or B. In addition, it is defined that the third part P12 (personnel information) can be disclosed to a user having authority B. In the following, information that can be disclosed to a user who does not have any authority, that is, information such as the first part P10 in FIG. Information that can be disclosed to the user having the information, that is, information such as the second part P11 and the third part P12 in FIG. 4C is described as “secret information”.

(Processing of information processing system 500A)
Next, the processing of the information processing system 500A will be described in detail based on FIG. 5 and FIG. 5 is a flowchart showing the process of the mounting device 10A, FIG. 6A is a flowchart showing the process of the information processing device 30, and FIG. 6B shows the process of the portable device 20A. It is a flowchart to show. Note that the processes of FIGS. 5, 6A, and 6B are executed in parallel. As a premise of the processing, the mounting device 10A and the portable device 20A are paired in advance by, for example, bringing the mounting device 10A and the portable device 20A into contact with each other, making them close to each other, or mounting them on the user. Assume that document data can be transferred between the paired mounting device 10A and portable device 20A. Further, the portable device 20A executes the process of FIG. 6B when it exists in the vicinity of the mounting device 10A paired with the portable device 20A. Here, whether or not the portable device 20A and the mounting device 10A paired with the portable device 20A exist in the vicinity can be determined from the detection results of the position detection units 106 and 206. . Alternatively, when the mounting device 10A and the portable device 20A have a communication unit capable of proximity communication or human body communication, the mounting device 10A and the portable device 20A are close to each other based on the communication state of the communication unit. It can also be determined whether or not it exists.

  The process of FIG. 5 is started at the timing when the user turns on the power of the mounting device 10A or when the pairing with the portable device 20A is established. In the process of FIG. 5, first, in step S11, the control unit 109 of the mounting apparatus 10A waits until the user mounts the mounting apparatus 10A. In this case, the control unit 109 proceeds to step S12 when it can be determined that the user has mounted the mounting device 10A based on the detection result input from the detection unit 111.

  If transfering it to step S12, the control part 109 will detect a user's biometric information, and will authenticate a user. In the first embodiment, the control unit 109 controls the retina detection unit 105 to detect the user's retina and authenticates the user by matching with the user's retina pattern stored in the storage unit 107. .

  Next, in step S13, the control unit 109 determines whether or not the user has removed the mounting device 10A, that is, whether or not the user continues to mount the mounting device 10A based on the detection result of the detection unit 111, for example. Judgment. If the determination here is affirmed, the process returns to step S11. If the determination is negative, the process proceeds to step S14.

  In step S14, the control unit 109 determines whether a display request for information (such as document data) has been received from the user. The user requests display of information by, for example, performing a predetermined operation (such as a tap) on the operation unit 103 or sounding information (for example, a file name) to be viewed toward the microphone 104. If the determination is negative, the process returns to step S13. If the determination is positive, the control unit 109 proceeds to step S15.

  If transfering it to step S15, the control part 109 will judge whether the user who has mounted | worn mounting apparatus 10A is a regular user of mounting apparatus 10A based on the authentication result in step S12. If the user wearing the mounting apparatus 10A is not a regular user, the control unit 109 displays an error display such as “cannot display document data because it is not a regular user” via the display unit 102 in step S23. To display. Thereafter, the process returns to step S14. The error display when the user is not an authorized user is displayed when a user other than the authorized user wears the wearing device 10A (when borrowed from the authorized user or illegally acquired). This is because the confidentiality of the document data is improved by not displaying the document data on the unit 102. On the other hand, if the user wearing the mounting apparatus 10A is a regular user, the control unit 109 proceeds to step S16.

  In step S16, the control unit 109 requests the information processing apparatus 30 to transmit the information requested by the user. Note that the control unit 109 also transmits the device ID of the mounting apparatus 10 </ b> A to the information processing apparatus 30 at the time of the request. In the user authority management table of FIG. 3, when a plurality of user names (regular users) are registered for one device ID, the control unit 109 transmits the authenticated user name at the time of request. You may do it.

  After step S16, the control unit 109 stands by until information is received from the information processing apparatus 30 in step S17.

  On the other hand, the control unit 302 of the information processing apparatus 30 stands by until an information transmission request is received from the mounting apparatus 10A in step S31 of FIG. Therefore, the control unit 302 proceeds to step S33 when the information transmission request is received from the mounting apparatus 10A (step S16 in FIG. 5 is executed).

  If transfering it to step S33, the control part 302 will extract the information according to the authority of the regular user of 10 A of mounting apparatuses from the memory | storage part 303, and will transmit to 10 A of mounting apparatuses. For example, when the device ID received from the mounting apparatus 10A is “ID0002”, the control unit 302 acquires authority A as the authority of the authorized user L from the user authority management table of FIG. And the control part 302 extracts the information which can be disclosed with respect to the user who has the authority A from the memory | storage part 303 based on the disclosure information control table of FIG.4 (c). For example, when the authorized user L requests display of the document data with the file name “D01”, information that can be disclosed to the user having authority A is the first part P10 (public information) from the disclosure information control table. It turns out that it is the 2nd part P11 (secret information). Therefore, the control unit 302 transmits information on the first part P10 and the second part P11 in the document data to the mounting apparatus 10A. After the end of step S33, the control unit 302 ends all the processes in FIG. Note that the control unit 302 also repeats the process of FIG. 6A while the power is on even after the entire process of FIG.

  Returning to FIG. 5, the control unit 109 of the mounting apparatus 10 </ b> A waits until information is received from the information processing apparatus 30 in step S <b> 17 as described above, and therefore the process of step S <b> 33 in FIG. The process proceeds to step S18 at the timing.

  In step S18, the control unit 109 acquires user environment information. In the first embodiment, the control unit 109 acquires information about the network 50 (for example, an in-house LAN or a public wireless LAN) to which the mounting apparatus 10A is connected from the position detection unit 106.

  Next, in step S19, the control unit 109 determines whether or not the user is in a predetermined environment. In the first embodiment, the control unit 109 determines whether the network 50 to which the mounting apparatus 10A is connected is an in-house LAN of a company where the user works. That is, the control unit 109 determines whether or not the user wearing the mounting apparatus 10A is in a company where the user works.

  If the user is in a predetermined environment (for example, in a company), the determination in step S19 is affirmed, and the control unit 109 proceeds to step S20 and transmits public information and secret information to the portable device 20A. That is, when the user is in the company, the control unit 109 determines that the secret information may be displayed on the portable device 20A, and transmits the information to the portable device 20A without limiting the information. Note that when the user is in the company, the display unit 202 of the portable device 20A displays the document data on the portable device 20A without displaying the document data on the mounting device 10A. This is because it is easier to see than the display unit 102 of the mounting apparatus 10A.

  On the other hand, when the user is not in a predetermined environment (for example, in a company), the control unit 109 proceeds to step S21.

  In step S <b> 21, the control unit 109 displays confidential information on the display unit 102 among the document data received from the information processing apparatus 30. For example, in the case of the authorized user L of the mounting apparatus 10A, the first part P10 (public information) and the second part P11 (secret information) are transmitted from the information processing apparatus 30 as document data. 7A, the second part P11 (product cost list), which is secret information, is displayed on the display unit 102. As shown in FIG.

  Next, in step S22, the control unit 109 transmits public information among the document data received from the information processing apparatus 30 to the portable apparatus 20A. In the first embodiment, information of the first part P10 (company outline) is transmitted to the portable device 20A as public information. When the process of step S22 is completed, the control unit 109 returns to step S14.

  On the other hand, in the process of FIG. 6B, in step S41, the control unit 209 of the portable device 20A stands by until information is received from the mounting device 10A. Therefore, the control unit 209 moves to step S43 at the timing when the process of step S20 or S22 of FIG. 5 is executed, and displays the received information on the display unit 202. Here, for example, when the authorized user L of the mounting apparatus 10A is in a predetermined environment (for example, in a company), the first part P10 (public information) and the second part P11 (secret information) are mounted as document data. Since it is transmitted from the device 10A, the control unit 209 displays the first part P10 (public information) and the second part P11 (secret information) on the display unit 202. On the other hand, when the authorized user L of the mounting apparatus 10A is not in a predetermined environment (for example, in a company), the first part P10 (public information) is transmitted from the mounting apparatus 10A as document data, and the second part P11 (secret information). ) Is not transmitted, the control unit 209 displays the first part P10 (public information) on the display unit 202. After that, the control unit 209 ends all the processes in FIG. Note that the control unit 209 repeats the process of FIG. 6B while the power is on even after the entire process of FIG.

  Note that when the public information is displayed on the display unit 202 and the secret information is not displayed on the display unit 202, the control unit 209 displays a predetermined mark (for example, as illustrated in FIG. 7B) in an area where the secret information is to be arranged. Such as a two-dimensional code C1). As a result, on the mounting device 10A side, a user wearing the mounting device 10A uses the AR (Augmented Reality) technology using an image obtained by capturing a predetermined mark by the imaging unit 101, and the user wearing the mounting device 10A is shown in FIG. It is possible to display a display as shown in FIG. In this way, the public user L and the secret information can be seen by the authorized user L wearing the wearing device 10A, and only the public information can be seen by others in the vicinity. For this reason, for example, even when the authorized user L browses the document data on the train, it is possible to prevent secret information from being seen by the passengers in the vicinity. Further, for example, when the authorized user L makes a presentation or a business negotiation in front of another person using the portable device 20A, the secret user does not disclose the secret information to the other person, and the authorized user L sees the secret information. Proceed with presentations and business negotiations. Thereby, the confidentiality of information can be improved. However, the display using the AR technology is not necessarily performed.

  As described above, by performing the processes of FIGS. 5 to 6, it is possible to perform appropriate display in consideration of the confidentiality of information based on the user's authority and the user's position (whether or not it is in the company). it can.

  As described above in detail, according to the first embodiment, the mounting device 10A authenticates the user and, when authenticated by the control unit 109, information in the vicinity of the user's eyes. And a display unit 102 for displaying. As a result, when the user is authenticated, information can be displayed to the user so that it cannot be seen by others, so that the confidentiality of information display can be improved.

  Further, according to the first embodiment, the control unit 109 performs a retina scan using the retina detection unit 105 and authenticates the user, so that impersonation is impossible, thereby improving confidentiality regarding information display. Is possible.

  Further, according to the first embodiment, the display unit 102 displays secret information in the vicinity of the user's eyes among the information permitted to be disclosed to the user. As a result, it is possible to prevent a situation in which confidential information is exposed to a third party without viewing authority and leaks.

  Further, according to the first embodiment, the control unit 109 displays public information, which is a part of information permitted to be disclosed to the user, on the display unit 202 of the portable device 20A different from the display unit 102. Output. Thereby, since the user can confirm public information using the display unit 202 of the portable device 20A, the convenience of the user is improved in the case where the display unit 202 is easier to see than the display unit 102. can do. In particular, when the portable device 20A is a private device and this private device is used (BYOD: Bring your own device), it is effective as a countermeasure against leakage of secret information. In addition, the user can browse public information together with others among various data.

  In the first embodiment, the mounting apparatus 10A includes a detection unit 111 that detects whether or not the mounting apparatus 10A is mounted on the user, and the control unit 109 includes the detection unit 111 that is mounted by the user. Authentication is to be performed when it is detected that the device is attached. Thereby, for example, the user can be authenticated at a timing when the user who wears the mounting apparatus 10 </ b> A is likely to have changed. Therefore, since authentication can be performed at an appropriate timing that requires user authentication, it is possible to simplify authentication processing and reduce power consumption.

  In the first embodiment, the control unit 109 inputs user environment information from the position detection unit 106, and controls information displayed on the display unit 102 according to the input environment information. That is, the control unit 109 displays the secret information on the display unit 102 when the user is outside the office and also displays the public information on the portable device 20A, and the portable device when the user is inside the company. The public information and the secret information are displayed on 20A, and the information is not displayed on the display unit 102. As a result, when the user is in the company where the possibility of information leakage is low, the user can confirm the public information and the secret information on the display unit 202 of the portable device 20A. Further, since the secret information can be confirmed on the display unit 102 when the user is outside the company where the possibility of information leakage is high, leakage of the secret information can be prevented.

  In the first embodiment, a GPS sensor may be used as the position detection unit 106 that detects the position of the mounting device 10A. In this case, the control unit 109 may determine an environment where the user is present (for example, whether the user is in the company or outside the company) based on the position information of the mounting apparatus 10A. Further, the control unit 109 may determine an environment where the user is present (for example, whether the user is in the office or outside the company) based on the image captured by the imaging unit 101.

  Further, in the first embodiment, the control unit 109 determines whether the portable device is in the vicinity of the portable device 20A, even if the user is in the office, if a user other than the regular user exists. The secret information may not be displayed on 20A. Thereby, the confidentiality regarding information display can be improved more. The control unit 109 includes an imaging unit in the portable device 20A, and determines whether there is a user other than a regular user in the vicinity of the portable device 20A based on the imaging result of the imaging unit. It is good. Alternatively, a biometric authentication device capable of acquiring information of a user holding the portable device 20A is provided in the portable device 20A, and the portable device 20A is set to be a device other than an authorized user based on the information acquired by the biometric authentication device. It may be determined whether the user does not hold it.

  In the first embodiment, the control unit 109 performs user authentication using information on the user's retina. However, the present invention is not limited to this, and user authentication is performed using information on the user's iris. It is good as well. Note that iris authentication is disclosed in, for example, Japanese Patent No. 5360931 (Japanese Patent Laid-Open No. 2013-148961). Further, user authentication may be performed using other biometric information such as a user's fingerprint.

  In the first embodiment, the case where the security administrator or the like sets the first part P10 to the third part P12 of the document data has been described. However, the present invention is not limited to this. It is good. In this case, the document creator may select a portion of the document data that is to be kept secret and register it as secret information. Further, for example, a user who is browsing a document may select a portion of the document data to be kept secret during browsing. In this case, the part to be kept secret may be displayed on the display unit 102 of the mounting apparatus 10A almost simultaneously with the selection.

  Note that the wearing device 10 may not be a glasses-type terminal. For example, it may be a wearable terminal that can be worn at any position on the body, and some of its functions may be separated. As an example, a wristwatch type terminal may have other functions as a contact lens type terminal provided with a display unit. In this case, other authentication methods such as fingerprint authentication and vein authentication may be employed instead of retina authentication.

<< Second Embodiment >>
Next, a second embodiment will be described in detail based on FIGS. In the first embodiment, the case where the mounting apparatus 10A controls which of the display unit 102 and the display unit 202 displays public information and secret information received from the information processing apparatus 30 has been described. In the second embodiment, the information processing apparatus 30 controls which of the display unit 102 and the display unit 202 displays public information and secret information.

  The configuration of the information processing system according to the second embodiment is the same as or equivalent to the configuration illustrated in FIG. 1 of the first embodiment, and thus illustration and description thereof are omitted.

(Processing of information processing system 500A)
Hereinafter, processing executed by the information processing system 500A according to the second embodiment will be described. FIG. 8A shows processing executed by the portable device 20A, and FIG. 8B shows processing executed by the mounting device 10A. FIG. 9 shows processing executed by the information processing apparatus 30. Also in the second embodiment, the mounting device 10A and the portable device 20A are paired in advance, and the pairing information is shared by the portable device 20A, the mounting device 10A, and the information processing device 30. It shall be.

  In the process of FIG. 8A, in step S301, the control unit 209 of the portable device 20A waits until receiving a display request for information (for example, document data) from the user via the input unit 203. Therefore, the control unit 209 proceeds to step S303 at the timing when the information display request from the user is received.

  In step S303, the control unit 209 requests the user to input a password. For example, the control unit 209 displays a message such as “Please enter your password” on the display unit 202 together with the password input screen.

  Next, in step S305, the control unit 209 waits until the password is input by the user, and proceeds to step S307 at the timing when the password is input by the user. In step S307, the control unit 209 transmits the input password information to the mounting apparatus 10A.

  Next, in step S309, the control unit 209 requests the information processing apparatus 30 to transmit information specified by the user. After that, in step S311, the process waits until information requested from the information processing apparatus 30 is received.

  On the other hand, the control unit 109 of the mounting apparatus 10A stands by until password information is received from the portable apparatus 20A in step S321 in FIG. 8B. For this reason, the control part 109 transfers to step S323 at the timing when step S309 of Fig.8 (a) mentioned above was performed.

  In step S323, the control unit 109 transmits the password information received from the portable device 20A to the information processing device 30. That is, the password information input to the portable device 20A is notified to the information processing device 30 via the mounting device 10A. At this time, the control unit 109 also transmits the device ID of the mounting apparatus 10A. Note that the control unit 109 stands by until information is received from the information processing apparatus 30 in the next step S329.

  By the way, the control unit 302 of the information processing device 30 stands by until password information is received from the mounting device 10A in step S351 of FIG. For this reason, the control part 302 transfers to step S353 at the timing when step S323 of FIG.8 (b) was performed.

  In step S353, the control unit 302 determines whether or not the password input by the user is correct. For example, the control unit 302 determines whether or not the received combination of the device ID and the password matches the combination of the device ID and the password registered in advance by the user of the mounting apparatus 10A. In the second embodiment, the device ID and password may be associated with each other in the user authority management table shown in FIG.

  If the password is incorrect, that is, if the user cannot be authenticated, the determination in step S353 is denied, and the control unit 302 ends all the processes in FIG. At this time, the control unit 302 notifies the portable device 20A and the mounting device 10A that the password is incorrect and information cannot be transmitted. In this case, the control unit 209 ends all the processes in FIG. 8A, and the control unit 109 ends all the processes in FIG. On the other hand, if the password is correct, the control unit 302 proceeds to step S355.

  In step S355, the control unit 302 waits until an information transmission request is received from the portable device 20A paired with the mounting device 10A that has transmitted the password information in step S351. Then, at the stage where the transmission request is accepted (the stage where step S309 in FIG. 8A is executed), the control unit 302 proceeds to step S357 and has transmitted the transmission request for public information in the document data. It transmits with respect to portable apparatus 20A.

  Next, in step S361, the control unit 302 transmits secret information corresponding to the user's authority to the mounting apparatus 10A that has transmitted the password information in step S351. Note that the processing order of step S357 and step S361 may be reversed. The control unit 302 ends all the processes in FIG. 9 after the process in step S361.

  On the other hand, since the control unit 209 of the portable device 20A waits until information is received from the information processing device 30 in step S311 of FIG. 8A, at the timing when step S357 of FIG. 9 is executed. The process proceeds to step S313. If transfering it to step S313, the control part 209 will display the received information (here public information) on the display part 202, and will complete | finish all the processes of Fig.8 (a).

  In addition, since the control unit 109 of the mounting apparatus 10A waits until information is received from the information processing apparatus 30 in step S329 in FIG. 8B, the step S357 in FIG. 9 is executed at the timing. The process proceeds to S331. If transfering it to step S331, the control part 109 will display the received information (here secret information) on the display part 102, and will complete | finish all the processes of FIG.8 (b).

  Also in the second embodiment, as in the first embodiment, when the control unit 209 displays public information on the display unit 202, a predetermined mark ( It is good also as displaying (refer FIG.7 (b)). Further, on the mounting apparatus 10A side, the control unit 109 provides the user with the mounting apparatus 10A to the user wearing the mounting apparatus 10A by the AR technique using the image obtained by capturing the predetermined mark by the imaging unit 101 as shown in FIG. You may make it show the display which shows.

  As described above in detail, according to the second embodiment, the control unit 302 of the information processing device 30 authenticates the user based on the device ID and password received from the mounting device 10A, and the user authenticates. If it is possible, information (for example, confidential information of the document data) is displayed on the display unit 202, so that it is possible to prevent the confidential information from being seen by an unauthorized third party, and the confidentiality regarding the information display. Can be improved.

  Also in the second embodiment, as in the control unit 109 of the first embodiment, the control unit 302 inputs user environment information from the mounting device 10A, and the mounting device according to the user environment information. Information transmitted to 10A and portable device 20A may be controlled. For example, the control unit 302 transmits confidential information to the mounting apparatus 10A and public information to the portable apparatus 20A when the user is outside the company, and information to the mounting apparatus 10A when the user is in the office. The public information and the secret information may be transmitted to the portable device 20A without transmitting. Note that the control unit 302 may input user environment information (for example, position information detected by the position detection unit 206) from the portable device 20A.

  In step S309 in FIG. 8A, an information transmission request may be transmitted to the mounting apparatus 10A. In this case, the mounting apparatus 10A may transmit an information transmission request to the information processing apparatus 30 together with the password information in step S323.

  For example, when the user can input a password in the mounting apparatus 10A, the control unit 109 may transmit the password information input in the mounting apparatus 10A to the information processing apparatus 30. In addition, when the mounting apparatus 10A receives an information transmission request, the control unit 109 may transmit the transmission request input in the mounting apparatus 10A to the information processing apparatus 30.

  In the above embodiment, the case where the control unit 302 performs user authentication using the password input by the user has been described. However, the present invention is not limited to this. For example, when the portable device 20A has a biometric authentication device such as a fingerprint authentication device, the control unit 302 may perform user authentication using information acquired by the biometric authentication device.

<< Third Embodiment >>
Next, an information processing system 500B according to the third embodiment will be described in detail based on FIG. 10 and FIG. FIG. 10 is a block diagram showing the configuration of the information processing system 500B.

  As illustrated in FIG. 10, the information processing system 500B includes a mounting device 10B and a portable device 20B. The wearing apparatus 10B is a glasses-type terminal worn by the user on the face, like the wearing apparatus 10A of the first and second embodiments. Moreover, the portable apparatus 20B shall be terminals, such as a smart phone and a tablet terminal, similarly to portable apparatus 20A of 1st, 2nd embodiment.

(Mounting device 10B)
The mounting device 10B is different from the mounting device 10A of the first and second embodiments in that the mounting unit 10B does not include the detection unit 111 but includes the communication unit 110. However, the mounting device 10 </ b> B may include the detection unit 111 together with the communication unit 110.

  The communication unit 110 communicates with other devices, and uses, for example, proximity communication such as Bluetooth (registered trademark), RFID (Radio Frequency Identification), TransferJet (registered trademark), or human body communication via a human body. be able to. In the present embodiment, for example, the communication unit 110 performs human body communication using the electrode unit 110B provided on a part of the frame 120 that contacts the user (for example, the user side of the frame 120) and the electrode unit 110B. A human body communication unit 110A.

(Portable device 20B)
The portable device 20B includes a communication unit 210 in addition to the configuration of the portable device 20A of the first and second embodiments.

  The communication unit 210 communicates with other devices. For example, proximity communication such as Bluetooth (registered trademark), RFID, TransferJet (registered trademark), or human body communication via a human body can be used. In the present embodiment, the communication unit 210 includes, for example, an electrode unit 210B provided in a portion that comes into contact with the user on the outside of the casing of the portable device 20B, and human body communication that performs human body communication using the electrode unit 210B. 210A. In the present embodiment, the human body communication units 110A and 210A establish human body communication in a state where the user wears the wearing device 10B and the user holds the portable device 20B. Human body communication includes a current system in which a weak current is passed through the human body and the current is modulated to transmit information, and an electric field system in which information is transmitted by modulating an electric field induced on the surface of the human body. . In this embodiment, it is possible to use either the current method or the electric field method. Note that human body communication is possible not only when the user's skin is in contact with the electrode, but also when there is a cloth or the like between the user's skin and the electrode (that is, when the electrode is facing the hand). Is possible.

(Processing of information processing system 500B)
Next, the processing of the information processing system 500B will be described in detail based on FIGS. 11 (a) and 11 (b). FIG. 11A is a flowchart showing the process of the portable device 20B, and FIG. 11B is a flowchart showing the process of the mounting device 10B. Also in the third embodiment, the mounting device 10B and the portable device 20B that exchange information are previously paired, and the pairing information is held by the mounting device 10B and the portable device 20B. It shall be.

  In the process of FIG. 11A, in step S201, the control unit 209 of the portable device 20B determines whether or not the user has activated predetermined application software. The predetermined application software is, for example, mail software, word processing software, presentation software, or spreadsheet software. In the present embodiment, as an example, it is assumed that the user has activated mail software. The control unit 209 proceeds to step S203 at the timing when the mail software is activated.

  In step S203, the control unit 209 requests the mounting apparatus 10B to authenticate the user of the mounting apparatus 10B through human body communication.

  On the other hand, the control unit 109 of the mounting device 10B waits until a user authentication request is received from the portable device 20B in step S221 of FIG. 11B, so step S203 of FIG. 11A is executed. At this timing, the process proceeds to step S223.

  If transfering it to step S223, the control part 109 will detect a user's biometric information (retinal information) similarly to step S12 of FIG. 5, and will authenticate a user. Next, in step S225, the control unit 109 transmits the authentication result to the portable device 20B by human body communication.

  On the other hand, when the control unit 209 of the portable device 20B receives the authentication result in step S205 of FIG. 11A, the authenticated user is an authorized user who can use the mounting device 10B as a pair with the portable device 20B. Judge whether there is. For example, the control unit 209 determines whether the authenticated user is a user registered as a regular user in the storage unit 207.

  If the authenticated user is not a regular user, the determination in step S207 is denied, and the control unit 209 does not perform the processes in steps S209 and S211 and ends all the processes in FIG. On the other hand, when the authenticated user is a regular user, the control unit 209 proceeds to step S209.

  If transfering it to step S209, the control part 209 will transmit the confidential information in the application software which the user started to the mounting apparatus 10B by human body communication. For example, if the application started by the user is mail software, the control unit 209 transmits information on the mail text to the mounting apparatus 10B. Here, it is assumed that which information is confidential information among the information displayed in each application software is defined in advance. The definition may be performed by the user himself or may be set in advance in application software. When the user himself / herself defines, it may be defined that confidential information is selected by selecting a part of the mail text. Further, when setting in advance in the application software, for example, the mail text may be set as secret information, and other information may be set as public information.

  Next, in step S211, the control unit 209 displays public information on application software activated by the user on the display unit 202. For example, the control unit 209 displays information other than the mail text (for example, mail reception time) on the display unit 202 as public information. After the process of step S211, the control unit 209 ends all the processes in FIG. Note that the order of the processing in step S209 and step S211 may be reversed.

  On the other hand, the control unit 109 of the mounting apparatus 10B determines whether information is received from the portable apparatus 20B in step S227 of FIG. When the determination here is affirmed, the control unit 109 displays information (for example, information on the mail text) received from the portable device 20B on the display unit 102, and ends the entire process of FIG. . On the other hand, if the information is not received from the portable device 20B even after the predetermined time has elapsed, the control unit 209 ends the entire process of FIG. 11B without performing the process of step S231.

  Also in the third embodiment, similarly to the first and second embodiments, when the control unit 209 displays public information on the display unit 202, a predetermined area is set in the area where the secret information is to be arranged. The mark (see FIG. 7B) may be displayed. Further, on the mounting device 10B side, the control unit 109 provides the user with the mounting device 10B to the user wearing the mounting device 10B with the AR technique using an image obtained by capturing a predetermined mark with the image capturing unit 101 as shown in FIG. You may make it show the display which shows.

  As described above in detail, according to the third embodiment, the control unit 209 of the portable device 20B inputs the user authentication result by the control unit 109 of the mounting device 10B, and the user is authenticated. In this case, the secret information is transmitted to the mounting apparatus 10B so that the secret information is displayed on the display unit 102 of the mounting apparatus 10B. Thereby, since the secret information is displayed on the display unit 102 of the mounting apparatus 10B, it is possible to prevent others from seeing personal information (such as the contents of an email) that the other person does not want to see. . Therefore, security regarding information display can be improved.

  In the third embodiment, since the portable device 20B transmits the secret information to the mounting device 10B by human body communication, the secret information is stored in a third party as compared with the case where the information is transmitted via a network or the like. It is possible to reduce the possibility of leakage.

  In the third embodiment, an example in which the entire mail text is displayed on the display unit 102 of the mounting apparatus 10B has been described. However, a part of the mail text (for example, an individual name or a company name) is displayed on the mounting apparatus 10B. You may make it display on the part 102 and you may make it display on the display part 202 of the portable apparatus 20B about another part. In this case, a table storing words to be concealed is prepared in the storage unit 207 of the portable device 20B, and the words to be displayed on the display unit 102 are displayed on the display unit 202 based on the table. You may make it divide from the word etc. which should be.

  Note that the configuration of the third embodiment may be applied to the first embodiment, and communication between the mounting device 10A and the portable device 20A may be performed by human body communication.

  The above processing functions can be realized by a computer. In that case, a program describing the processing contents of the functions that the processing device (CPU) should have is provided. By executing the program on a computer, the above processing functions are realized on the computer. The program describing the processing contents can be recorded on a computer-readable recording medium (except for a carrier wave).

  When the program is distributed, for example, it is sold in the form of a portable recording medium such as a DVD (Digital Versatile Disc) or a CD-ROM (Compact Disc Read Only Memory) on which the program is recorded. It is also possible to store the program in a storage device of a server computer and transfer the program from the server computer to another computer via a network.

  The computer that executes the program stores, for example, the program recorded on the portable recording medium or the program transferred from the server computer in its own storage device. Then, the computer reads the program from its own storage device and executes processing according to the program. The computer can also read the program directly from the portable recording medium and execute processing according to the program. Further, each time the program is transferred from the server computer, the computer can sequentially execute processing according to the received program.

  Each embodiment mentioned above is an example of suitable implementation of the present invention, and can be combined suitably. However, the present invention is not limited to this, and various modifications can be made without departing from the scope of the present invention.

10A, 10B mounting device 20A, 20B portable device 30 information processing device 102 display unit 105 retina detection unit 106 position detection unit 108 communication unit 109 control unit 202 display unit 209 control unit 302 control unit

Claims (13)

An authentication unit for authenticating the user;
An electronic device comprising: a first display unit that displays information in the vicinity of the user's eyes when authenticated by the authentication unit.   The electronic device according to claim 1, wherein the authentication unit authenticates the user using eyes of the user.   The electronic device according to claim 1, wherein the first display unit displays at least a part of information permitted to be disclosed to the user in the vicinity of the eyes of the user.   The electronic device according to claim 3, further comprising: an output unit that outputs a part of information permitted to be disclosed to the user to a second display unit different from the first display unit.   The output unit outputs information to the second display unit according to a case where the user uses the second display unit and a case where a user different from the user uses the second display unit. The electronic device according to claim 4. An input unit for inputting environmental information of the user;
The electronic device according to claim 1, further comprising: a control unit that controls information displayed on the first display unit according to the environment information input by the input unit. The input unit includes a position detection unit that detects a position of the user;
The electronic device according to claim 6, wherein the control unit controls the amount of the information according to the position detected by the position detection unit. The first display unit can be mounted on the user's face,
The electronic device according to claim 1, further comprising a detection unit that detects whether or not the first display unit is worn by the user.   The electronic device according to claim 8, wherein the authentication unit performs the authentication when the detection unit detects wearing of the first display unit by the user.   The electronic device according to claim 1, wherein the first display unit displays the information received by human body communication or proximity communication via the user in the vicinity of the user's eyes.   The electronic device according to claim 4, wherein the second display unit displays the information received by human body communication or proximity communication via the user. An input unit for inputting an authentication result of an authentication unit for authenticating a user;
An electronic apparatus comprising: a control unit that restricts display of a second display unit different from the first display unit without limiting display of the first display unit when the user is authenticated by the authentication unit. An authentication step for authenticating the user;
A display step of displaying information in the vicinity of the user's eyes when authenticated in the authentication step;
A program that causes a computer to execute.

Images