JP2016189527A - Information processing unit and information processing system and information processing method and information processing program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To achieve a configuration for eliminating the access of a person, other than a utilization right holding user holding the utilization right, to the document data, in a process of decrypting the document data encrypted by a first system and encrypting the decrypted document data by a second system.SOLUTION: A utilization right holding user holding the utilization right is set in a communication unit 101, where the document data encrypted by a first system is received. A folder generation unit 107 generates an access restriction folder, i.e., a folder to which access only of a utilization right holding user is allowed. A decryption unit 108 decrypts the document data in the access restriction folder according to the first system. An encryption management unit 109 notifies a utilization right holding user terminal, i.e., a terminal used by a utilization right holding user, of the access restriction folder, and makes the utilization right holding user terminal access the decrypted document data in the access restriction folder, and encrypt the decrypted document data by a second system different from the first system.SELECTED DRAWING: Figure 1

Description

  The present invention relates to document data management.

In companies and the like, there are cases where the document data management system is switched for reasons such as progress in data processing technology and changes in business forms.
For example, the document data management system may be switched by switching the system vendor or the like.
As a technique related to switching of a document data management system, for example, there is a technique disclosed in Patent Document 1.

JP2012-093911A

Document data is generally stored encrypted for security reasons.
If the encryption method is different before and after the system switch, it is necessary to decrypt the document data encrypted with the encryption method before the switch, and encrypt the decrypted document data with the encryption method after the switch. is there.
In such migration of document data, it is common for the system administrator to collectively migrate document data using the administrator authority.

However, although the system administrator does not have the right to use the document data, there is a problem that the system administrator can cancel the encryption and can view the document data in the course of the migration process.
In addition, there is a problem that when the document data is decrypted at the time of migration, if there is an unauthorized access from a third party, the document data is browsed by the third party.

  The main object of the present invention is to solve such problems, and a usage right holding user that holds usage rights in the process of decrypting encrypted document data and re-encrypting the decrypted document data. The main purpose is to realize a configuration that eliminates access to document data by persons other than the above.

An information processing apparatus according to the present invention includes:
A communication unit configured to receive a document data encrypted by the first method, wherein a usage right holding user having a usage right is set;
A folder generation unit that generates an access-restricted folder that is a folder in which only the access right holding user is allowed to access;
A decryption unit that decrypts the document data in the access restricted folder generated by the folder generation unit according to the first method;
The usage right holding user terminal device, which is a terminal device used by the usage right holding user, is notified of the access restricted folder, and the user holding user terminal device is accessed to the decrypted document data in the access restricted folder. And an encryption management unit that encrypts the decrypted document data by a second method different from the first method.

  According to the present invention, the document data is decrypted in the access restricted folder, the access right holding user terminal device is notified of the access restricted folder, and the document data is encrypted in the usage right holding user terminal device by the second method. Therefore, in the process of decrypting the encrypted document data and re-encrypting the decrypted document data, it is possible to eliminate access to the document data by a person other than the use right holding user.

1 is a diagram illustrating a system configuration example of an information processing system according to Embodiment 1. FIG. FIG. 3 is a diagram illustrating a functional configuration example of a conversion server device according to the first embodiment. FIG. 3 is a diagram illustrating a functional configuration example of a terminal device according to the first embodiment. FIG. 3 is a flowchart showing an operation example of the conversion server device according to the first embodiment. FIG. 3 is a flowchart showing an operation example of the conversion server device according to the first embodiment. FIG. 3 is a flowchart showing an operation example of the terminal device according to the first embodiment. The figure which shows the hardware structural example of the conversion server apparatus which concerns on Embodiment 1, and a terminal device.

Embodiment 1 FIG.
*** Explanation of configuration ***
FIG. 1 shows a system configuration example of an information processing system according to the present embodiment.
As shown in FIG. 1, the information processing system according to the present embodiment includes a conversion server device 100, a terminal device 200, a terminal device 300, a file server device 400, a usage right management server device 500, and a usage connected via an intranet 700. The right management server device 600 is configured.

In the present embodiment, it is assumed that the document data is not managed in a centralized manner but is distributed and managed by individual users.
Specifically, it is assumed that the document data is managed by the terminal device 200 or the file server device 400.
Further, in the present embodiment, document data encrypted by the first encryption method (hereinafter referred to as the first method) is converted into the second encryption method (hereinafter referred to as the second method) by system migration. It shall be replaced with encrypted document data.
Note that a usage right holding user having a usage right is set for each document data.

In FIG. 1, a conversion server device 100 is a server device that manages the decryption of document data and the re-encryption of the decrypted document data.
The conversion server device 100 corresponds to an example of an information processing device.

The terminal device 200 is a terminal device used by a document data usage right holding user.
The terminal device 200 is also referred to as a usage right holding user terminal device.
In FIG. 1, only one terminal device 200 is shown, but in actual operation, a plurality of terminal devices 200 are connected to the intranet 700.

The terminal device 300 is a terminal device used by a system administrator.
The terminal device 300 is also referred to as a system administrator terminal device.

  The file server device 400 is a server device that accumulates document data.

The usage right management server device 500 is a server device that manages usage rights before system migration.
The usage right management server device 500 includes a usage right information DB 501, an authentication unit 502, and a usage right management unit 503.
The usage right information DB 501 stores usage right information in which a usage right holding user is defined for each document data.
In the usage right information DB 501, an encryption key and a decryption key are managed for each document data.
When receiving the usage right information provision request message or the decryption key provision request message, the authentication unit 502 authenticates the transmission source of the provision request message.
When the authentication by the authentication unit 502 is successful, the usage right management unit 503 uses the usage right information requested by the usage right information provision request message or the decryption key requested by the decryption key provision request message. And the usage right information or the decryption key is transmitted to the transmission source of the provision request message.

The usage right management server device 600 is a server device that manages usage rights after system migration.
The usage right management server device 600 includes a usage right information DB 601, an authentication unit 602, and a usage right management unit 603.
The usage right information DB 601 is the same as the usage right information DB 501, the authentication unit 602 is the same as the authentication unit 502, and the usage right management unit 603 is the same as the usage right management unit 503.
In addition, when the usage right management unit 603 receives the encryption key provision request message and the authentication unit 602 succeeds in authentication, the usage right management unit 603 transmits the encryption key to the transmission source of the encryption key provision request message.

Communication between the conversion server device 100, the terminal device 200, the terminal device 300, the file server device 400, the usage right management server device 500, and the usage right management server device 600 is the first method and the second method. Assume that encryption is performed using a different encryption method.
For example, it is assumed that encryption is performed by SSL (Secure Sockets Layer).
In the following, when explaining the transmission / reception of the encryption key, the decryption key, the transmission / reception of the document data after decryption, it is not specified that the encryption key, the decryption key, and the decrypted document data are encrypted by SSL or the like However, these are assumed to be encrypted by SSL or the like.

  FIG. 2 shows a functional configuration example of the conversion server device 100 according to the present embodiment.

The communication unit 101 communicates with the terminal device 200, the terminal device 300, the file server device 400, the usage right management server device 500, and the usage right management server device 600.
For example, the communication unit 101 receives a request message from the terminal device 200 or the terminal device 300.
The request message is a message that includes a user ID (Identifier) and requests decryption of document data to be transferred (encryption method switching target).
Further, the communication unit 101 receives document data to be migrated from the terminal device 200, the terminal device 300, or the file server device 400.
In addition, the communication unit 101 transmits a usage right information provision request message for requesting provision of usage right information to the terminal device 300 or a decryption key provision request message for requesting provision of a decryption key to the usage right management server apparatus 500 for use. Usage right information or a decryption key is received from the right management server device 500.
In addition, the communication unit 101 transmits an encryption key provision request message for requesting the usage right management server apparatus 600 to provide an encryption key for encrypting document data to the usage right management server apparatus 600, and the usage right management server apparatus An encryption key is received from 600.
In addition, the communication unit 101 transmits a folder notification message for notifying an access restricted folder described later to the terminal device 200.

  The authentication unit 102 authenticates the transmission source (user, system administrator) of the request message.

The user ID / password storage unit 103 stores the user ID and password of each user.
The user ID and password stored in the user ID / password storage unit 103 include the user ID and password of the system administrator.
The authentication unit 102 performs authentication processing using the user ID and password stored in the user ID / password storage unit 103.

The file transmission / reception control unit 104 performs communication control regarding file transmission / reception.
More specifically, the file transmission / reception control unit 104 performs communication control during transmission / reception of document data.

The usage right confirmation unit 105 receives the usage right information from the usage right management server device 500 via the communication unit 101, and the transmission source (user, system administrator) of the request message uses the document data to be migrated. Check if you have the rights.
In addition, the usage right confirmation unit 105 monitors access to an access restriction folder described later, and rejects (blocks) access in the case of access to the access restriction folder by a person without access right.

The migration pattern determination unit 106 determines the migration pattern of the migration target document data.
As will be described later, the transition pattern includes a relay method and a proxy transition method.
The migration pattern determination unit 106 determines which one of the relay method and the proxy migration method has been selected by the transmission source (user, system administrator) of the request message.
In the relay system, when the user ID included in the request message is a user ID of a user (including a system administrator) other than the usage right holding user, the terminal apparatus encrypts the decrypted document data by the second system. 200 (use right holding user terminal device).
In the proxy transfer method, when the user ID included in the request message is a user ID of a user (including a system administrator) other than the usage right holding user, the encryption of the decrypted document data by the second method is converted. This is a method performed in the server apparatus 100.

The folder generation unit 107 generates a folder for performing the decryption process of the migration target document data.
More specifically, an access restriction folder in which only access by the usage right holding user is allowed is generated.
The access restriction folder is a folder in which access rights are set, and is a folder in which access rights are given only to users who have usage rights.
Even if a third party other than the usage right holder (including the system administrator) tries to access the access restricted folder, since there is no access right, the usage right confirmation unit 105 rejects (blocks) access to the access restricted folder. Is done.
The access restriction folder can be realized by an existing technology that restricts access to the folder.
In this specification, the right to use and the right to access are synonymous.
However, in order to distinguish concepts, the right to access document data is called a usage right, and the right to access a folder (access restricted folder) used for decrypting document data is called an access right.
Even if the user ID included in the request message is the user ID of the usage right holding user, the folder generation unit 107 is the user ID of a user other than the usage right holding user (either the relay method or the proxy transfer method). But) Create a restricted access folder.

The decrypting unit 108 decrypts the document data in the access restricted folder generated by the folder generating unit 107 according to the first method.
Prior to decrypting the document data, the decryption unit 108 transmits a decryption key provision request message to the usage right management server device 500 via the communication unit 101, and decrypts the document data from the usage right management server device 500. Receive the decryption key.

The encryption management unit 109 manages the encryption of the document data that has been decrypted by the decryption unit 108.
The encryption management unit 109 includes an encryption unit 1091 and a folder notification unit 1092.
The encryption unit 1091 encrypts the document data decrypted by the decryption unit 108 by the second method.
More specifically, when the user ID included in the request message is the user ID of the usage right holding user, or the migration pattern determination unit 106 determines the proxy transfer method, the encryption unit 1091 Data is encrypted by the second encryption method in the access restricted folder.
The folder notification unit 1092 notifies the terminal device 200 (usage right holding user terminal device) of the access restricted folder when the migration pattern determining unit 106 determines the relay method, and the terminal device 200 is decrypted in the access restricted folder. The subsequent document data is accessed, and the decrypted document data is encrypted by the second method.
Specifically, the folder notification unit 1092 transmits a folder notification message to the terminal device 200 via the communication unit 101.
The terminal device 200 that has received the folder notification message accesses the decrypted document data in the access restricted folder by transmitting a document data provision request message for requesting provision of document data to the conversion server device 100.
That is, in the conversion server device 100, when the document data provision request message is received, the file transmission / reception control unit 104 transmits the document data to the terminal device 200 via the communication unit 101.
Then, encryption by the second method is performed in the terminal device 200 that has received the document data.

The control unit 110 includes a communication unit 101, an authentication unit 102, a user ID / password storage unit 103, a file transmission / reception control unit 104, a usage right confirmation unit 105, a migration pattern determination unit 106, a folder generation unit 107, a decryption unit 108, and an encryption. The operation of the management unit 109 is controlled.
The control unit 110 also stores document data in an access restricted folder, obtains document data from the access restricted folder, and the like.

  FIG. 3 shows a functional configuration example of the terminal device 200 (use right holding user terminal device).

In FIG. 3, the communication unit 201 mainly communicates with the conversion server device 100 and the file server device 400.
For example, the communication unit 201 transmits a request message to the conversion server device 100.
In addition, the communication unit 201 transmits the document data to be transferred to the conversion server device 100.
Further, the communication unit 201 receives a folder notification message from the conversion server device 100.
Further, when the communication unit 201 receives the folder notification message, the communication unit 201 transmits a document data provision request message for requesting provision of document data.
Further, the communication unit 201 receives the document data transmitted from the conversion server device 100 as a response to the document data provision request message.
Further, the communication unit 201 may transmit the encrypted document data to the file server device 400 when the document data is encrypted by the second method in the terminal device 200.

The message generation unit 202 generates a request message to be transmitted to the conversion server device 100.
The message generator 202 also generates a document data provision request message to be transmitted to the conversion server device 100.

The file transmission / reception control unit 203 performs communication control related to file transmission / reception.
More specifically, the file transmission / reception control unit 203 performs communication control during transmission / reception of document data.

  The encryption unit 204 encrypts the document data decrypted by the conversion server device 100 using the second method.

  The control unit 205 controls operations of the communication unit 201, the message generation unit 202, the file transmission / reception control unit 203, and the encryption unit 204.

*** Explanation of operation ***
Next, operations in the information processing system according to the present embodiment will be described with reference to FIGS.
4 and 5 are flowcharts showing an operation example of the conversion server device 100. FIG.
FIG. 6 is a flowchart illustrating an operation example of the terminal device 200.
First, an operation example of the conversion server device 100 will be described with reference to FIGS. 4 and 5.

First, when the communication unit 101 receives a request message (YES in S101), the authentication unit 102 performs an authentication process (S102).
The request message includes a user ID and a password.
The authentication unit 102 determines whether the user ID and password included in the request message match one of the user ID and password pairs stored in the user ID / password storage unit 103.
If the user ID and password included in the request message match one of the user ID and password pairs stored in the user ID / password storage unit 103, authentication is successful.
The request message is transmitted from the terminal device 200 or the terminal device 300.
For this reason, the user ID and password included in the request message that has been successfully authenticated are the user ID and password of the usage right holding user or the user ID and password of the system administrator.

If the authentication is not successful (NO in S103), conversion server device 100 ends the process.
The conversion server device 100 may transmit a message notifying that the authentication error has occurred to the transmission source of the request message.

If the authentication is successful (YES in S103), the control unit 110 acquires the document data to be transferred (S104).
The document data to be transferred may be attached to the request message. When the document data is attached to the request message, the control unit 110 acquires the document data attached to the request message.
In addition, file path information describing the file path of the document data may be included in the request message. When the request message includes the file path information of the document data, the control unit 110 includes the file transmission / reception control unit. Instruct 104 to obtain the document data from the storage location of the document data according to the file path information.
For example, if the file path indicated in the file path information included in the request message is that of the file server device 400, the file transmission / reception control unit 104 transmits document data to the file server device 400 via the communication unit 101. Request and receive document data from the file server device 400.

Next, the usage right confirmation unit 105 confirms whether the user (including the system administrator) who has transmitted the request message has the right to use the text data to be transferred (S105).
Specifically, the usage right confirmation unit 105 generates a usage right information provision request message and transmits it from the communication unit 101 to the usage right management server device 500.
The usage right information provision request message includes the data ID of the document data to be migrated, the ID of the conversion server device 100, and authentication information for authentication.
In the usage right management server device 500, the authentication unit 502 performs an authentication process using the ID of the conversion server device 100 and authentication information.
When the authentication is successful, the usage right information corresponding to the data ID included in the usage right information provision request message is extracted from the usage right information DB 501, and the extracted usage right information is transmitted to the conversion server device 100.
Then, the usage right confirmation unit 105 receives the usage right information via the communication unit 101.
In the usage right information, the user ID of the user who holds the usage right of the document data is described.
When the user ID included in the request message matches the user ID described in the usage right information, the usage right confirmation unit 105 determines that the transmission source of the request message holds the usage right of the document data (S105). YES)
For example, if the transmission source of the request message is a usage right holding user, YES is determined in S105.
If the sender of the request message is a system administrator, it is usually considered that the use right for individual document data is not set in the system administrator, and therefore NO is determined in S105.

  If the sender of the request message holds the right to use the document data (YES in S105), the folder generation unit 107 next generates an access restricted folder (S106).

  Next, the control unit 110 stores the document data acquired in S104 in an access restricted folder (S107).

Next, the decryption unit 108 decrypts the document data in the access restricted folder (S108).
Prior to the decryption of the document data, the decryption unit 108 generates a decryption key provision request message and transmits the decryption key provision request message to the usage right management server device 500 via the communication unit 101.
The decryption key provision request message includes the data ID of the document data to be transferred, the ID of the usage right holding user, the ID of the conversion server device 100, and the authentication information.
In the usage right management server device 500, the authentication unit 502 performs an authentication process using the ID of the conversion server device 100 and authentication information.
If the authentication is successful, the decryption key corresponding to the data ID included in the decryption key provision request message and the ID of the use right holding user is extracted from the use right information DB 501, and the extracted decryption key is stored in the conversion server device 100. Send.
The decryption unit 108 receives a decryption key from the usage right management server apparatus 500 via the communication unit 101, and decrypts the document data according to the first method using the received decryption key.

Next, the encryption unit 1091 of the encryption management unit 109 encrypts the decrypted document data by the second method in the access restricted folder (S109).
Prior to the encryption of the document data, the encryption unit 1091 generates an encryption key provision request message, and transmits the encryption key provision request message to the usage right management server apparatus 600 via the communication unit 101.
The encryption key provision request message includes the data ID of the document data to be transferred, the ID of the usage right holding user, and the ID of the conversion server device 100.
In the usage right management server device 600, when the authentication unit 602 performs authentication processing using the ID of the conversion server device 100 and the authentication is successful, the data ID included in the encryption key provision request message and the usage right holding user's The encryption key corresponding to the ID is extracted from the usage right information DB 601 and the extracted encryption key is transmitted to the conversion server device 100.
The encryption unit 1091 receives the encryption key from the usage right management server apparatus 600 via the communication unit 101, and encrypts the document data according to the second method using the received encryption key.

Next, the communication unit 101 transmits the document data re-encrypted by the encryption unit 1091 to the original storage destination (S110).
That is, if the document data is originally stored in the terminal device 200, the communication unit 101 transmits the re-encrypted document data to the terminal device 200.
On the other hand, if the document data is originally stored in the file server apparatus 400, the communication unit 101 transmits the re-encrypted document data to the file server apparatus 400.

If NO in S105, that is, if the user who sent the request message does not have the right to use the document data, the migration pattern determination unit 106 determines the migration pattern (S111).
As described above, the transition pattern is either the relay system or the proxy transition system.
In the request message, it is described which of the relay system and the proxy transition system is used for transition.
For this reason, the migration pattern determination unit 106 can determine the migration pattern by referring to the request message.

If the migration pattern is the proxy migration method, the folder generation unit 107 generates an access restricted folder (S112).
That is, the folder generation unit 107 sets an access right only to the ID of the usage right holding user described in the usage right information received in S105, and generates an access restricted folder.

  Next, the control unit 110 stores the document data acquired in S104 in an access restricted folder (S113).

Next, the control unit 110 changes the operation authority to a usage right holding user (S114).
Specifically, the control unit 110 transfers the usage right holding user ID described in the usage right information received in S105 to the decryption unit 108 and the encryption unit 1091.

Thereafter, the processing of S108 to S110 described above is performed.
The ID of the usage right holding user included in the decryption key provision request message transmitted to the usage right management server apparatus 500 in S108 is the ID of the usage right holding user transferred from the control unit 110 to the decoding unit 108 in S114. is there.
Further, the ID of the usage right holding user included in the encryption key provision request message transmitted to the usage right management server apparatus 600 in S109 is the ID of the usage right holding user transferred from the control unit 110 to the encryption unit 1091 in S114. It is.

If the migration pattern is the relay method in S111, the folder generation unit 107 generates an access restricted folder (S115).
That is, the folder generation unit 107 sets an access right only to the ID of the usage right holding user described in the usage right information received in S105, and generates an access restricted folder.

  Next, the control unit 110 stores the document data acquired in S104 in the access restricted folder (S116).

Next, the control unit 110 changes the operation authority to a usage right holding user (S117).
Specifically, the control unit 110 transfers the usage right holding user ID described in the usage right information received in S <b> 105 to the decryption unit 108.

Next, the decryption unit 108 decrypts the document data in the access restricted folder (S118).
Prior to decryption of the document data, the decryption unit 108 generates a decryption key provision request message, and transmits the decryption key provision request message to the usage right management server device 500 via the communication unit 101.
The decryption key provision request message includes the data ID of the document data to be transferred, the ID of the usage right holding user, the ID of the conversion server device 100, and the authentication information.
The ID of the usage right holding user included in the decryption key provision request message is the ID of the usage right holding user transferred from the control unit 110 in S117.
In the usage right management server device 500, the authentication unit 502 performs an authentication process using the ID of the conversion server device 100 and authentication information.
If the authentication is successful, the decryption key corresponding to the data ID included in the decryption key provision request message and the ID of the use right holding user is extracted from the use right information DB 501, and the extracted decryption key is stored in the conversion server device 100. Send.
The decryption unit 108 receives a decryption key from the usage right management server apparatus 500 via the communication unit 101, and decrypts the document data according to the first method using the received decryption key.

Next, the folder notification unit 1092 of the encryption management unit 109 notifies the use right holding user of the access restricted folder (S119).
Specifically, the folder notification unit 1092 generates a folder notification message, and transmits the generated folder notification message to the terminal device 200 via the communication unit 101.
The folder notification message includes path information of the access restricted folder.

When there is an access from the terminal device 200 (YES in S120), that is, when a document data provision request message is received from the terminal device 200, the communication unit 101 transmits the document data to the terminal device 200 (S121).
The document data provision request message includes the user ID of the usage right holding user and the path information of the access restricted folder.
When the document data provision request message is received, the usage right confirmation unit 105 determines that the user ID included in the document data provision request message is the user ID set in the access restricted folder (the user of the user to whom the access right is granted). ID) is confirmed.
When the user ID included in the document data provision request message matches the user ID set in the access restricted folder, the control unit 110 decrypts the document data from the access restricted folder based on the path information of the access restricted folder. Is transferred to the file transmission / reception control unit 104.
Then, the file transmission / reception control unit 104 transmits the document data from the communication unit 101 to the terminal device 200.

Note that the procedures shown in FIGS. 4 and 5 correspond to examples of an information processing method and an information processing program.
S101 or S104 in FIG. 4 corresponds to an example of the document data receiving step.
5 corresponds to an example of a folder generation step.
Further, S118 in FIG. 5 corresponds to an example of a decoding step.
Further, S119 to S121 in FIG. 5 correspond to an example of the encryption management step.

Next, an operation example of the terminal device 200 will be described with reference to FIG.
Here, an operation example of the terminal device 200 when receiving the folder notification message transmitted from the folder notification unit 1092 in S119 of FIG. 5 will be described.

When an access restricted folder is notified from the conversion server device 100 (YES in S201), that is, when the communication unit 201 receives a folder notification message from the conversion server device 100, a document data provision request message is sent to the conversion server device 100. Transmit (S202).
That is, the message generation unit 202 generates a document data provision request message, and the communication unit 201 transmits the document data provision request message to the conversion server device 100.

  Next, the communication unit 201 receives the decrypted document data transmitted from the conversion server device 100 as a response to the document data provision request message (S203).

  Next, the encryption unit 204 encrypts the document data received from the conversion server device 100 using the second method (S204).

Next, the control unit 205 returns the encrypted document data to the original storage location (S205).
If the original storage location of the document data is in the terminal device 200, the control unit 205 stores it in the original storage area in the terminal device 200.
If the original storage location of the document data is the file server device 400, the control unit 205 instructs the file transmission / reception control unit 203 to transmit the document data to the file server device 400, and the file transmission / reception control unit 203 The document data is transmitted from 201 to the file server apparatus 400.

*** Explanation of the effect of the embodiment ***
Thus, in the present embodiment, when the relay method is selected, the document data is decrypted in the access restricted folder, the access restricted folder is notified to the terminal device 200, and the document data is transmitted to the terminal device 200. Is encrypted by the second method.
Even in a case other than the relay method, the document data is decrypted in the access restricted folder, and encryption is performed in the access restricted folder by the second method.
For this reason, according to the present embodiment, in any of the migration methods, in the process of decrypting the encrypted document data and re-encrypting the decrypted document data, the document of a person other than the user who holds the usage right is used. Access to data can be eliminated.

*** Explanation of hardware configuration ***
Finally, a hardware configuration example of the conversion server device 100 and the terminal device 200 will be described with reference to FIG.
The conversion server device 100 and the terminal device 200 are computers.
The conversion server device 100 and the terminal device 200 include hardware such as a processor 901, an auxiliary storage device 902, a memory 903, a communication device 904, an input interface 905, and a display interface 906.
The processor 901 is connected to other hardware via the signal line 910, and controls these other hardware.
The input interface 905 is connected to the input device 907.
The display interface 906 is connected to the display 908.

The processor 901 is an IC (Integrated Circuit) that performs processing.
The processor 901 is, for example, a CPU (Central Processing Unit), a DSP (Digital Signal Processor), or a GPU (Graphics Processing Unit).
The auxiliary storage device 902 is, for example, a ROM (Read Only Memory), a flash memory, or an HDD (Hard Disk Drive).
The memory 903 is, for example, a RAM (Random Access Memory).
The communication device 904 includes a receiver 9041 that receives data and a transmitter 9042 that transmits data.
The communication device 904 is, for example, a communication chip or a NIC (Network Interface Card).
The input interface 905 is a port to which the cable 911 of the input device 907 is connected.
The input interface 905 is, for example, a USB (Universal Serial Bus) terminal.
The display interface 906 is a port to which the cable 912 of the display 908 is connected.
The display interface 906 is, for example, a USB terminal or an HDMI (registered trademark) (High Definition Multimedia Interface) terminal.
The input device 907 is, for example, a mouse, a keyboard, or a touch panel.
The display 908 is, for example, an LCD (Liquid Crystal Display).

The auxiliary storage device 902 stores a program that realizes the function of “˜unit” (excluding the user ID / password storage unit 103, the same applies hereinafter) shown in FIGS.
This program is loaded into the memory 903, read into the processor 901, and executed by the processor 901.
Further, the auxiliary storage device 902 also stores an OS (Operating System).
Then, at least a part of the OS is loaded into the memory 903, and the processor 901 executes a program that realizes the function of “˜unit” while executing the OS.
In FIG. 7, one processor 901 is illustrated, but the conversion server device 100 and the terminal device 200 may include a plurality of processors 901.
A plurality of processors 901 may execute a program that realizes the function of “unit” in cooperation with each other.
In addition, information, data, signal values, and variable values indicating the processing results of “˜unit” are stored in the memory 903, the auxiliary storage device 902, or a register or cache memory in the processor 901.

Further, “˜part” may be read as “circuit”, “process”, “procedure”, or “processing”.
The “circuit” is a concept that includes not only the processor 901 but also other types of processing circuits such as a logic IC, GA (Gate Array), ASIC (Application Specific Integrated Circuit), or FPGA (Field-Programmable Gate Array). .

  100 conversion server device 101 communication unit 102 authentication unit 103 user ID / password storage unit 104 file transmission / reception control unit 105 usage right confirmation unit 106 migration pattern determination unit 107 folder generation unit 108 decryption unit 109 encryption Management unit, 1091 encryption unit, 1092 folder notification unit, 110 control unit, 200 terminal device, 201 communication unit, 202 message generation unit, 203 file transmission / reception control unit, 204 encryption unit, 205 control unit, 300 terminal device, 400 file server device, 500 usage right management server device, 501 usage right information DB, 502 authentication unit, 503 usage right management unit, 600 usage right management server device, 601 usage right information DB, 602 authentication unit, 603 usage right management unit 700 Intranet.

Claims (7)

A communication unit configured to receive a document data encrypted by the first method, wherein a usage right holding user having a usage right is set;
A folder generation unit that generates an access-restricted folder that is a folder in which only the access right holding user is allowed to access;
A decryption unit that decrypts the document data in the access restricted folder generated by the folder generation unit according to the first method;
The usage right holding user terminal device, which is a terminal device used by the usage right holding user, is notified of the access restricted folder, and the user holding user terminal device is accessed to the decrypted document data in the access restricted folder. And an encryption management unit that encrypts the decrypted document data using a second method different from the first method. The communication unit is
A user ID (Identifier) is included, and a request message for requesting decryption of the document data is received;
The folder generation unit
When the user ID included in the request message is the user ID of the usage right holding user, the access restriction folder is generated regardless of whether the user ID is a user ID of a user other than the usage right holding user,
The encryption manager is
A relay method in which the user ID included in the request message is a user ID of a user other than the usage right holding user, and the usage right holding user terminal device performs encryption of the decrypted document data in the second mode. Is selected,
The access right holding user terminal device is notified of the access restricted folder, the user holding user terminal device is made to access the decrypted document data in the access restricted folder, and the decrypted document data is The information processing apparatus according to claim 1, wherein encryption is performed by the second method. The encryption manager is
When the user ID included in the request message is a user ID of the usage right holding user, and the user ID included in the request message is a user ID of a user other than the usage right holding user, and the relay method is selected If not
The information processing apparatus according to claim 2, wherein the decrypted document data is encrypted in the access restricted folder by the second method. A usage right holding user terminal device that is a terminal device used by a usage right holding user who has the right to use document data encrypted in the first scheme;
An access restriction folder that is a folder that is only allowed to be accessed by the use right holding user is generated, the document data is decrypted in the access restriction folder according to the first method, and the use right holding user terminal device is An information processing device that notifies an access restricted folder,
The usage right holding user terminal device is:
An information processing system for accessing decrypted document data in the access restricted folder notified from the information processing apparatus, and encrypting the decrypted document data by a second method different from the first method. The information processing apparatus includes:
When there is access to the decrypted document data in the access restricted folder by the usage right holding user terminal device, the decrypted document data is transmitted to the usage right holding user terminal device,
The usage right holding user terminal device is:
5. The information processing system according to claim 4, wherein the decrypted document data is received from the information processing apparatus, and the received decrypted document data is encrypted by the second method. A document data receiving step in which a computer that receives a document data encrypted by the first method, in which a usage right holding user having a usage right is set;
A folder generation step in which the computer generates an access-restricted folder that is a folder in which only the access rights holding user is allowed to access;
A decrypting step in which the computer decrypts the document data in the access restricted folder generated by the folder generating step according to the first method;
The computer notifies the usage right holding user terminal device, which is a terminal device used by the usage right holding user, of the access restricted folder, and the decrypted document data in the access restricted folder is sent to the user holding user terminal device. And an encryption management step for encrypting the decrypted document data by a second method different from the first method. A document data receiving step in which a usage right holding user having a usage right is set and receives document data encrypted by the first method;
A folder generation step of generating an access restricted folder that is a folder in which only the access right holding user is allowed to access;
A decrypting step of decrypting the document data in the access restricted folder generated by the folder generating step according to the first method;
The usage right holding user terminal device, which is a terminal device used by the usage right holding user, is notified of the access restricted folder, and the user holding user terminal device is accessed to the decrypted document data in the access restricted folder. An information processing program for causing a computer to execute an encryption management step for encrypting the decrypted document data by a second method different from the first method.

Images