JP2017157132A - Electronic apparatus, method, and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an electronic apparatus capable of improving convenience in a thin client system, and a method and a program.SOLUTION: An electronic apparatus related to one embodiment comprises activation means and display processing means. The activation means activates a browser after first authentication processing with a first server device connected to the electronic apparatus via a network. The display processing means displays a virtual desktop screen provided by a second server device different from the first server device when the browser is activated. In the case where second authentication processing for utilizing the network by using the browser is necessary when the first authentication processing with the first server device is executed, the browser is activated before the first authentication processing and the second authentication processing is executed.SELECTED DRAWING: Figure 8

Description

  Embodiments described herein relate generally to an electronic device, a method, and a program.

  In recent years, information leakage due to theft or loss of electronic devices such as personal computers has become a problem.

  For this reason, companies operating businesses that require strict information management are considering the introduction of a thin client (zero client) system that operates electronic devices (client terminals) used by employees in a virtual desktop environment. Yes.

  In a thin client system, a server device that provides a virtual desktop environment centrally manages resources such as various software and data, so that an electronic device having only a minimum necessary function is used as a client terminal. Such an electronic device can reduce the risk of information leakage even if it is stolen or lost.

JP 2006-148661 A

  By the way, when the electronic device described above is operated in a virtual desktop environment, it is necessary to start client software (and a minimum necessary operating system) in the electronic device for communicating with a server device that provides the virtual desktop environment. .

  Here, since only a legitimate electronic device is allowed to communicate with the server device that provides the virtual desktop environment, the client software can be activated only by an electronic device authenticated by a predetermined activation authentication process. . The activation authentication process is executed by communicating with a management server device that manages an electronic device (client terminal) used in the thin client system.

  In recent years, services that enable access to, for example, the Internet via a network called a public wireless LAN have been provided.

  For this reason, it is conceivable to use an electronic device using such a public wireless LAN even in a thin client system.

  However, Web authentication is often required when using a public wireless LAN. Usually, since public wireless LAN cannot be used unless Web authentication is executed, the above-described activation authentication process that requires communication with the management server device is executed before the Web authentication is executed. Can not. On the other hand, in order to execute the web authentication, it is necessary to start the client software (browser included), but in order to start the client software, it is necessary to execute a start authentication process. In other words, in the relationship between such activation authentication processing and Web authentication, it may be difficult to use the public wireless LAN in the thin client system.

  In order to improve the convenience in the thin client system, there is a mechanism that allows an electronic device to be used using a network (public wireless LAN) that requires an authentication process such as Web authentication. It is desired.

  Therefore, the problem to be solved by the present invention is to provide an electronic device, a method, and a program capable of improving convenience in a thin client system.

  The electronic device according to the embodiment includes an activation unit and a display processing unit. The activation means activates the browser after the first authentication process with the first server device connected via the network. The display processing means displays a virtual desktop screen provided by a second server device different from the first server device when the browser is activated. When the second authentication process using the browser for using the network is necessary when trying to execute the first authentication process with the first server device, the first authentication process The browser is activated before and the second authentication process is executed.

FIG. 6 is a perspective view illustrating an example of an external appearance of the electronic apparatus according to the embodiment. 1 is a diagram illustrating an example of a system configuration of an electronic device. The figure for demonstrating an example of the thin client system containing an electronic device. The figure for demonstrating the outline | summary of the process for connecting an electronic device and a VDI server apparatus. The figure for demonstrating the outline | summary of the process performed when an electronic device is disconnected from a network. 6 is a flowchart illustrating an example of a processing procedure of processing executed by an electronic device when receiving provision of a virtual desktop environment. The figure for demonstrating an example of the process sequence of SW acquisition process for VDI connection. The figure for demonstrating the outline | summary of a process of the electronic device at the time of operate | moving in Web authentication mode. 6 is a flowchart illustrating an example of a processing procedure of processing executed by an electronic device operating in a Web authentication mode. 6 is a flowchart illustrating an example of a processing procedure of processing executed by an electronic device operating in a Web authentication mode.

  Hereinafter, embodiments will be described with reference to the drawings.

  The electronic device according to the present embodiment is a client terminal (thin client terminal) used in a thin client system, and operates in a virtual desktop environment provided by a server device that is communicably connected to the electronic device.

  The virtual desktop environment is a mechanism for operating the desktop environment of the electronic device on the server device. In this case, the electronic device receives the virtual desktop image from the server device and displays it on the display, for example. Only need to have.

  Note that the electronic device according to the present embodiment may be a clamshell type device similar to a notebook personal computer (PC) or a slate type terminal similar to a tablet computer. In the following description, it is assumed that the electronic device is realized as a node book type PC.

  FIG. 1 is a perspective view illustrating an appearance of an electronic apparatus according to the present embodiment. As shown in FIG. 1, the electronic device 10 includes an electronic device main body (computer main body) 10a and a display unit 10b. A display such as a liquid crystal display (LCD) 10c is incorporated in the display unit 10b.

  The display unit 10b is attached to the electronic device body 10a so as to be rotatable between an open position where the upper surface of the electronic device body 10a is exposed and a closed position where the upper surface of the electronic device body 10a is covered with the display unit 10b. ing.

  The electronic device main body 10a has a thin box-shaped housing, and a keyboard 10d, a touch pad 10e, a power switch 10f, a speaker 10g, and the like are arranged on the upper surface thereof.

  The electronic device 10 is configured to receive power from, for example, a battery (not shown) built in the electronic device main body 10a.

  Further, the electronic device main body 10a is provided with a power connector (DC power input terminal) 10h. The power connector 10h is provided on the side surface of the electronic device main body 10a, for example, the left side surface. An external power supply device is detachably connected to the power connector 10h. An AC adapter can be used as the external power supply device. The AC adapter is a power supply device that converts commercial power (AC power) into DC power.

  The electronic device 10 is driven by electric power supplied from a battery or electric power supplied from an external power supply device. When the external power supply device is not connected to the power connector 10h of the electronic device 10, the electronic device 10 is driven by power supplied from the battery. On the other hand, when an external power supply device is connected to the power connector 10h of the electronic device 10, the electronic device 10 is driven by electric power supplied from the external power supply device. The power supplied from the external power supply device is also used for charging the battery.

  A card slot 10i is provided on the right side of the electronic device main body 10a, for example. A non-volatile memory such as an SD card (memory card) 10j can be inserted into the card slot 10i. Thus, the SD card 10j inserted into the card slot 10i is used as an external storage of the electronic device 10.

  Further, for example, an HDMI (High-definition multimedia interface) output terminal 10k is provided on the left side of the electronic device main body 10a, for example. Although omitted in FIG. 1, the electronic device main body 10a may be provided with a USB port, an RGB port, and the like.

  FIG. 2 shows a system configuration of the electronic apparatus 10 shown in FIG. As shown in FIG. 2, the electronic device 10 includes a CPU 11, a system controller 12, a RAM (main memory) 13, a graphics processing unit (GPU) 14, a sound controller 15, a BIOS-ROM 16, a wireless LAN module 17, a card controller 18, An embedded controller / keyboard controller IC (EC / KBC) 19 and the like are provided.

  The CPU 11 is a processor configured to control the operation of each component of the electronic device 10. The CPU 11 executes various programs developed in the RAM 13 which is a volatile memory. The program executed by the CPU 11 includes, for example, firmware (Small Core) including a BIOS (Basic Input Output System) stored in the BIOS-ROM 16 which is a nonvolatile memory.

  The system controller 12 is a bridge device configured to connect between the CPU 11 and each component. The system controller 12 executes communication with each device on an LPC (Low PIN Count) bus.

  The GPU 14 is a display controller configured to control the LCD 10 c used as a display (monitor) of the electronic device 10.

  The sound controller 15 is a sound source device and outputs audio data to be reproduced to, for example, the speaker 10g.

  The wireless LAN module 17 is configured to execute, for example, wireless communication of the IEEE 802.11 standard.

  The card controller 18 writes and reads data to and from the SD card 10j inserted into the card slot 10i.

  The EC / KBC 19 is connected to the LPC bus. The EC / KBC 19 is a power management controller configured to execute power management of the electronic device 10, and is realized as, for example, a one-chip microcomputer incorporating a keyboard controller that controls the keyboard 10d, the touch pad 10e, and the like. . The EC / KBC 19 has a function of turning on and off the power of the electronic device 10 according to the operation of the power switch 10f by the user.

  Although omitted in FIG. 2, the electronic device 10 includes, for example, an HDMI control circuit that is an interface configured to output an HDMI video signal and a digital audio signal to an external monitor via the HDMI output terminal 10k. Is provided.

  In the present embodiment, in order to prevent information leakage due to theft or loss of the electronic device 10, the electronic device 10 has a configuration that does not include a built-in storage such as a hard disk drive (HDD) and a solid state drive (SSD). It shall be.

  Furthermore, in the electronic device 10 according to the present embodiment, the use of external storage is also restricted from the viewpoint of preventing information leakage as described above. In the present embodiment, the electronic device 10 uses the SD card 10j inserted into the card slot 10i as an external storage, but the external storage is accessed by a user using the electronic device 10 (that is, according to a user operation). The data cannot be read from or written to the external storage).

  As described above, the electronic device main body 10a may be provided with a USB port. However, in the present embodiment, for example, devices that can be connected to the USB port are limited to input devices such as a mouse. And That is, in the electronic device 10 according to the present embodiment, for example, a USB memory or the like cannot be used as an external storage.

  With reference to FIG. 3, a system (thin client system) including the electronic apparatus 10 according to the present embodiment will be described.

  In the present embodiment, the electronic device 10 is used in an environment in which communication with the management server device (first server device) 20 is possible, for example.

  As shown in FIG. 3, a management server device 20 is installed in the server area. On the other hand, a user in the user area (for example, an employee of a company) performs business using the electronic device 10. Here, it is assumed that the electronic device 10 can communicate with the management server device 20 via a network such as a corporate wireless LAN. Note that this corporate wireless LAN is a network that does not need to execute authentication processing such as Web authentication, unlike a public wireless LAN described later. The electronic device 10 may be connected to the management server device 20 via the wireless LAN router 30. The electronic device 10 can also communicate via a wireless network with a server device (second server device) 40 configured to provide a virtual desktop environment to a plurality of client terminals including the electronic device 10.

  Here, there are a plurality of types of technologies for realizing desktop virtualization for providing a virtual desktop environment. As one of these technologies, a virtual desktop board (VDI) is known.

  In this embodiment, a description will be given on the assumption that VDI is used as a technique for realizing desktop virtualization. In this case, the server device 40 functions as a VDI server device configured to provide a virtual desktop environment using the VDI. The electronic device 10 functions as a VDI client terminal. In the following description, the server device 40 that provides a virtual desktop environment is referred to as a VDI server device 40 for convenience.

  Models that can be used to implement the VDI server device 40 include a blade PC type, a virtual machine type, and a terminal type. For example, when the VDI server device 40 is realized by a virtual machine type, a plurality of virtual machines 41 are executed in the VDI server device 40. One of the plurality of virtual machines 41 is assigned to the electronic device 10. Each of the virtual machines 41 includes a virtual OS (client desktop OS) 42 and an application program 43 that is executed on the virtual OS 42. The electronic device 10 may be connected to one virtual machine 41 on the VDI server device 40 via the wireless LAN router 30.

  The electronic device 10 according to the present embodiment does not include a built-in storage as described above, and operates using the above-described BIOS-based virtual desktop board (VDI).

  In order to realize the BIOS-based VDI, the firmware including the BIOS has a network communication function for connecting to a wired or wireless network. The firmware including the BIOS is stored in the BIOS-ROM (firmware ROM) 16 in the electronic device 10 as described above. This firmware is composed of, for example, a BIOS and an embedded OS having a network communication function. The BIOS can boot the embedded OS in the BIOS-ROM 16. This BIOS may be a UEFI BIOS. The BIOS-ROM 16 may be constituted by a flash EEPROM in order to enable the firmware updater.

  The electronic device 10 can communicate with the management server device 20 via a wireless network by using only the firmware in the BIOS-ROM 16.

  For example, in order to prevent an unauthorized terminal from accessing the VDI server apparatus 40, the management server apparatus 20 is a terminal in which client terminals that can access the VDI server apparatus 40 are registered in advance. It has the function of limiting to groups only. The management server device 20 has a function of providing a program and information necessary for communication with the VDI server device 40 to each client terminal authenticated as a legitimate client terminal.

  The management server device 20 includes a storage 20a. The storage 20a stores VDI connection software (Big Core), VDI connection destination information, and the like. The VDI connection software is a client program for connecting to a server device that provides a virtual desktop environment (that is, the VDI server device 40) and receiving a virtual desktop image from the VDI server device 40.

  Here, the electronic device 10 can download VDI connection software (client program) from the management server device 20. In this case, the electronic device 10 is connected to the VDI server device 40 by receiving the downloaded VDI connection software on the RAM 13 and starting up, and is provided with a virtual desktop environment by the VDI server device 40 (that is, Can operate in a virtual desktop environment).

  Instead of downloading the VDI connection software from the management server device 20 as described above, it is conceivable to store the VDI connection software in the BIOS-ROM 16 in advance. However, in this case, it is necessary to prepare a large capacity ROM as the BIOS-ROM 16. In the case where the client program is stored in the BIOS-ROM 16 in advance, the types of client programs that can be used are limited.

  On the other hand, if the VDI connection software is downloaded from the management server device 20 to the electronic device 10 as described above, the type of the client program to be stored in the storage 20a of the management server device 20 is changed. Any type of client program can be executed on the electronic device 10 simply by doing so.

  The VDI connection destination information is information necessary for connecting to the VDI server device 40. The VDI connection destination information may include a network address (IP address) of the VDI server device 40 and qualification information (user ID and password) for logging in to the VDI server device 40.

  The embedded OS in the firmware activates the VDI connection software in order to connect the electronic device 10 to the VDI server device 40 via the network. In this case, the user inputs qualification information (user ID and password) on the VDI login screen displayed on the display of the electronic device 10. As a result, the VDI connection software (client program) can log in to the VDI server device 40.

  After the VDI connection software logs in to the VDI server device 40, the VDI connection software can receive a virtual desktop screen from the VDI server device 40 via a network (here, a wireless network). The virtual desktop screen is displayed on the display (LCD 10c) of the electronic device 10. Furthermore, the VDI connection software can transmit operation information of the input device by the user to the VDI server device 40 via a network (here, a wireless network). The operation information of the input device includes operation information on the keyboard 10d, operation information on the touch pad 10e, and the like.

  As described above, the VDI connection software is downloaded from the management server device 20 to the electronic device 10 only by the firmware. Therefore, the electronic device 10 does not require a built-in storage, and the risk of unauthorized use of data and unique programs can be reduced.

  In addition, although the connection information (network address of the management server device 20) for connecting to the management server device 20 is held in the firmware, since the data amount of this connection information is small, the connection information is, for example, confidentiality. It is good also as a structure preserve | saved at a high trusted platform module (TPM) or other special chips. According to such a configuration, safety can be improved. Further, this connection information may include a service set ID (SSID) of the wireless LAN router 30.

  In addition, the firmware automatically turns on the power of the electronic device 10 when the connection between the electronic device 10 and the VDI server device 40 is established and the electronic device 10 is disconnected from the network (here, the wireless network). Has a function (hereinafter referred to as an automatic power-off function). Here, as described above, when the electronic device 10 is provided with the virtual desktop environment, it is necessary to develop and start the VDI connection software in the RAM 13. In this case, the RAM 13 may hold information that may be used illegally if leaked. However, when the electronic device 10 is turned off by the above-described automatic power-off function, all information on the RAM (that is, the volatile memory) 13 is automatically erased. According to this, it is possible to prevent information on the RAM 13 from leaking.

  The process for determining whether or not the electronic device 10 is disconnected from the network may be executed by firmware (for example, an embedded OS). As a method for determining whether or not the electronic device 10 is disconnected from the network, for example, it is determined whether or not the connection (VDI connection) between the electronic device 10 and the VDI server device 40 is released (disconnected). You may use the method of doing. Factors for releasing (disconnecting) the VDI connection include, for example, taking the electronic device 10 out of the communication range with the VDI server device 40, logging off from the VDI server device 40, and the like.

  When the electronic device 10 is taken out of the communicable range with the VDI server device 40, not only the connection between the electronic device 10 and the VDI server device 40 is released, but also the electronic device 10 and the management server device. The connection with 20 is also released. Therefore, the firmware periodically communicates with the management server device 20, and determines that the VDI connection has been released on the condition that a state in which communication with the management server device 20 cannot be performed continues for a certain period of time. Also good. When the electronic device 10 is configured to include a GPS sensor, the GPS sensor may be used to determine whether the electronic device 10 has moved out of a predetermined range (communication range).

  Here, as described above, after the VDI connection software downloaded from the management server device 20 is expanded and started in the RAM 13 and the electronic device 10 becomes operable in the virtual desktop environment, the user can connect the electronic device. Assume that the power supply of the electronic device 10 is turned off and the use of the electronic device 10 is stopped. In this case, since all the information existing on the RAM 13 is deleted as described above, the VDI connection software is downloaded again from the management server device 20 in order for the user to use the electronic device 10 again in the virtual desktop environment. There is a need. In such a configuration, depending on the size of the VDI connection software and the line speed, it may take time to download, which may reduce convenience.

  Therefore, in the present embodiment, a function for caching VDI connection software (client program) once downloaded from the management server device 20 using the external storage (SD card 10j) described above (hereinafter referred to as a cache function). Notation). Details of the cache function will be described later.

  Next, an overview of processing for connecting the electronic device 10 and the VDI server device 40 will be described with reference to FIG.

  (1) The electronic device 10 (machine) is turned on by the user operating the power switch 10f.

  (2) The firmware of the electronic device 10 is executed. Communication between the firmware and the management server device 20 is started, and it is determined whether or not the electronic device 10 is permitted to connect to the management server device 20 via a network (for example, a corporate wireless LAN). Network authentication processing is executed. If the firmware of the electronic device 10 holds the correct connection information (network address of the management server device 20) for connecting to the management server device 20, the firmware of the electronic device 10 is sent to the management server device 20 via the network. Can be connected (successful network authentication process).

  (3) Thereafter, device authentication processing for preventing the use of an unauthorized terminal is executed. In this case, the firmware (for example, the embedded OS) stores device information that can identify the electronic device 10, for example, a device ID (such as a serial number) for identifying the electronic device 10, or a certificate that the electronic device 10 has. Transmit to device 20. Device information corresponding to each client terminal that can be used in the thin client system is registered in the management server device 20 in advance. The management server device 20 determines whether the device information from the electronic device 10 matches the device information registered in advance (device authentication processing). The management server device 20 stores log information indicating whether the device authentication process has been successful in the storage 20a of the management server device 20. Also, the firmware may store log information indicating whether or not the device authentication process has been successful in the RAM 13 of the electronic device 10.

  (4) If the device authentication process is successful, the firmware downloads the VDI connection software (client program) from the management server device 20.

  (5) Here, the firmware executes a process of caching the VDI connection software downloaded from the management server device 20 by the cache function described above. In this case, the VDI connection software is stored (cached) in the SD card 10j (external storage) which is a non-volatile memory that cannot be accessed by the user.

  (6) The firmware expands the VDI connection software on the RAM 13.

  (7) The firmware acquires VDI connection destination information from the management server device 20. In this case, VDI connection destination information associated with registered device information that matches the device information of the electronic device 10 is transmitted from the management server device 20 to the electronic device 10. As described above, the VDI connection destination information includes the network address (IP address) of the VDI server device 40. Further, the VDI connection destination information may include qualification information (user ID and password) for logging in to the VDI server device 40. The VDI connection destination information is acquired from the management server device 20 when the electronic device 10 is activated for the first time. Thereafter, the presence / absence of the VDI connection destination information is checked (determined) during the device authentication process described above, and is acquired again when the VDI connection destination information is updated.

  (8) The firmware activates (executes) VDI connection software on the RAM 13 in order to connect the electronic device 10 and the VDI server device 40. The VDI connection software transmits a connection request (login request) to the VDI server device 40 using the network address (IP address) included in the VDI connection destination information. In this case, the user inputs the user ID and password included in the VDI connection destination information in the user ID input field and password input field on the VDI login screen provided from the VDI server device 40. As a result, the VDI connection software can log in to the VDI server device 40. When the VDI connection software logs into the VDI server device 40, a connection (VDI connection) is established between the electronic device 10 and the VDI server device 40, and the electronic device 10 is in a virtual desktop environment provided by the VDI server device 40. It becomes possible to operate.

  Next, an overview of processing executed when the electronic device 10 is disconnected from the network will be described with reference to FIG.

  (1) For example, when the electronic device 10 is taken outside, the connection between the electronic device 10 and the VDI server device 40 is released (VDI disconnection). In this case, the electronic device 10 enters a logoff state in which reception of screen information (virtual desktop image) from the VDI server device 40 is interrupted.

  (2) Firmware (for example, embedded OS) detects that the electronic device 10 has been disconnected from the network.

  (3) When the embedded OS detects that the electronic device 10 is disconnected from the network, the firmware (for example, BIOS) sends an OFF signal (power) to the power controller in the electronic device 10 by the above-described automatic power-off function. Off command) to turn off the power of the electronic device 10. Thereby, the information on the RAM 13 is automatically deleted.

  Note that the power supply of the electronic device 10 may also be automatically turned off when the electronic device 10 is in a logoff state by a logoff operation by the user of the electronic device 10.

  Hereinafter, a processing procedure of processing executed by the electronic device 10 when receiving provision of the virtual desktop environment (that is, connecting to the VDI server device 40) will be described with reference to the flowchart of FIG. The process shown in FIG. 6 is executed each time the electronic device 10 is turned on.

  First, for example, when the power switch 10f disposed on the upper surface of the electronic device main body 10a is pressed by the user, an ON signal (power-on command) is transmitted to the power controller in the electronic device 10, and the power of the electronic device 10 is turned on. Turned on (block B1).

  When the power source of the electronic device 10 is turned on, the firmware (embedded OS included) in the BIOS-ROM 16 is activated on the electronic device 10 (block B2).

  Authentication processing (hereinafter referred to as activation authentication processing) is executed between the embedded OS and the management server device 20 (block B3). The activation authentication process executed in block B3 includes, for example, the above-described network authentication process and device authentication process.

  The embedded OS confirms the result of the activation authentication process and determines whether activation authentication of the electronic device 10 has succeeded (that is, the electronic device 10 has been authenticated by the management server device 20) (block B4).

  If it is determined that the activation authentication of the electronic device 10 has not succeeded (that is, has failed), the embedded OS transmits a request to turn off the electronic device 10 to the BIOS. As a result, the BIOS transmits an OFF signal to the power supply controller in the electronic device 10. In this case, the power of the electronic device 10 is turned off and the process is terminated.

  On the other hand, when it is determined that the activation authentication of the electronic device 10 is successful (YES in block B4), the embedded OS executes a process for acquiring VDI connection software (hereinafter referred to as a VDI connection SW acquisition process). (Block B5).

  When the VDI connection software is cached in the SD card 10j by the cache function described above, the VDI connection software is acquired from the SD card 10j in the VDI connection SW acquisition process. On the other hand, when the VDI connection software is not cached in the SD card 10j, the VDI connection software is acquired by being downloaded from the management server device 20 in the VDI connection SW acquisition process. Details of the VDI connection SW acquisition process will be described later.

  When the activation authentication of the electronic device 10 is successful as described above, the embedded OS sends a policy (setting file) in which various rules created by the administrator of the management server device 20 are defined from the management server device 20. It shall be acquired (received). The policy includes, for example, the setting information related to the cache function (valid or invalid of the cache function) and the file name of the VDI connection software (for example, the latest VDI connection software) downloaded from the management server device 20. include. The policy acquired from the management server device 20 is held in the electronic device 10 (for example, firmware). Thereby, it is not necessary to acquire the policy every time the processing shown in FIG. 6 is executed, but when the policy is updated on the management server device 20 side, the policy is acquired again by the electronic device 10. (That is, the policy in the electronic device 10 is updated).

  The VDI connection software acquired in the VDI connection SW acquisition process in block B5 is expanded in the RAM 13 (block B6).

  Further, the embedded OS executes communication with the management server device 20 and acquires VDI connection destination information including qualification information for connecting to the VDI server device 40 from the management server device 20 (block B7).

  The embedded OS activates the VDI connection software on the RAM 13 in order to connect the electronic device 10 and the VDI server device 40 (the virtual machine 41 on the VDI server device 40) (block B8).

  Here, the VDI connection software includes, for example, a browser. When the VDI connection software (browser) is activated in block B8, a VDI login screen is displayed on the display of the electronic device 10. In this case, the VDI connection software inputs the qualification information included in the VDI connection destination information on the VDI login screen and automatically logs in to the VDI server device 40.

  The authentication process executed in block B3 has been described as including a network authentication process and a device authentication process. However, as other processes, for example, a user who uses the electronic device 10 is registered in the electronic device 10 in advance. Authentication processing for determining whether or not the user is correct (hereinafter referred to as personal authentication processing) may be further executed. The personal authentication process may be, for example, a process for determining whether or not the inputted fingerprint matches a fingerprint registered in advance in the electronic device 10, or the personal information read from the NFC card is the electronic device. 10 may be a process for determining whether or not it matches personal information registered in advance in FIG.

  Next, the processing procedure of the above-described VDI connection SW acquisition processing will be described with reference to the flowchart of FIG.

  When the VDI connection SW acquisition process is executed, the policy acquired from the management server device 20 when the activation authentication of the electronic device 10 described above is successful is held in the electronic device 10. And

  In the VDI connection SW acquisition process, first, it is determined whether or not the cache function is valid (block B11). The determination process of block B11 is executed based on the setting information of the cache function included in the policy held in the electronic device 10 described above.

  When it is determined that the cache function is valid (YES in block B11), the mounting process of the SD card 10j is executed. The mount process is a process for bringing the electronic device 10 into a state (mount state) in which the SD card 10j can be recognized. As a result of this mounting process, it is determined whether or not the SD card 10j has been successfully mounted (that is, the SD card 10j is in the mounted state) (block B12).

  If it is determined that the SD card 10j has been successfully mounted (YES in block B12), the VDI connection software is stored (cached) in the SD card 10j (that is, the VDI connection software is stored in the SD card 10j). Is determined (block B13).

  When it is determined that there is no VDI connection software in the SD card 10j (NO in block B13), the firmware (for example, the embedded OS) executes the communication with the management server device 20 to obtain the VDI connection software. Download from the management server device 20 (block B14).

  Here, it is assumed that the VDI connection software (download package) downloaded from the management server device 20 in this embodiment is encrypted with a common key in a common key encryption method (for example, AES256). A common key for decrypting the VDI connection software encrypted by such a common key cryptosystem is distributed in advance to a client terminal (electronic device 10) that can be used in the thin client system. Shall. The encrypted VDI connection software may be further protected by, for example, a zip with a password (120 bits). This password may be distributed in advance to the electronic device 10 in the same manner as the common key, or may be notified in advance to the user who uses the electronic device 10.

  Therefore, the firmware executes a process of decrypting the VDI connection software (encrypted VDI connection software) downloaded from the management server device 20 using a key distributed in advance to the electronic device 10. To do. For example, a screen (splash screen) indicating that the VDI connection software is being downloaded is displayed on the display of the electronic device 10 during the download process in block B14 and the VDI connection software decryption process.

  Next, as a result of the decryption process of the VDI connection software, it is determined whether the VDI connection software has been successfully decrypted (that is, the VDI connection software has been decrypted) (block B15).

  If it is determined that the VDI connection software has been successfully decrypted (YES in block B15), the VDI connection software is cached in the SD card 10j mounted on the electronic device 10, but the VDI connection software If the operating software is cached as it is, the VDI connecting software in the SD card 10j may be illegally used when the electronic device 10 is stolen or lost.

  Therefore, in this embodiment, the firmware re-encrypts the decrypted VDI connection software and caches it in the SD card 10j. In this case, it is assumed that the VDI connection software is encrypted using a key (hereinafter referred to as a device-dependent key) generated based on information unique to the electronic device 10 (device information). The device-dependent key is, for example, a common key in the common key cryptosystem, and is generated in advance and held in the electronic device 10 when the electronic device 10 is registered as a client terminal that can be used in the thin client system, for example. It shall be. That is, each client terminal that can be used in the thin client system has a different device-dependent key.

  In this case, it is determined whether the VDI connection software using the device-dependent key has been successfully encrypted (the VDI connection software has been encrypted) (block B16).

  When it is determined that the encryption of the VDI connection software is successful (YES in block B16), the firmware executes a process of caching the encrypted VDI connection software (that is, storing it in the SD card 10j). To do. As a result of this processing, it is determined whether or not the VDI connection software has been successfully cached (block B17).

  If it is determined that caching of the VDI connection software has been successful (YES in block B17), the firmware executes processing for reading the VDI connection software for the SD card 10j. Thus, it is determined whether or not the VDI connection software has been successfully read (that is, the VDI connection software has been read from the SD card 10j) (block B18).

  Here, it is assumed that it is determined that the VDI connection software has been successfully read (YES in block B18). In this case, the VDI connection software read from the SD card 10j is encrypted using the device-dependent key as described above. Therefore, the firmware executes a process of decrypting the VDI connection software using the device-dependent key held in the electronic device 10.

  In this case, it is determined whether or not the VDI connection software has been successfully decrypted (that is, the VDI connection software has been decrypted) (block B19).

  When it is determined that the VDI connection software has been successfully decrypted (YES in block B19), the SD card 10j is unmounted. The unmount process is a process for releasing the mounted state of the SD card 10j. When the SD card 10j is unmounted (the mounted state of the SD card 10j is released), the electronic device 10 does not recognize the SD card 10j, and therefore the electronic device 10 writes and reads data to and from the SD card 10j. I can't. That is, in the electronic device 10 according to the present embodiment, the SD card 10j (that is, the external storage) is validated only during a limited period during the VDI connection SW acquisition process.

  As a result of the unmount process, it is determined whether or not the SD card 10j has been successfully unmounted (block B20).

  If it is determined that the SD card 10j has been successfully unmounted (YES in block B20), the firmware acquires the VDI connection software decrypted using the device-dependent key as described above (block B21). The VDI connection software acquired in block B21 is expanded and activated in the RAM 13 in block B6 shown in FIG. 6 described above.

  For example, a screen (splash screen) indicating that the VDI connection software is being cached is displayed on the display of the electronic device 10 being processed in blocks B16 to B20.

  As described above, when the VDI connection software is not cached in the SD card 10j, the VDI connection software downloaded from the management server device 20 is encrypted and cached in the SD card 10j. In other words, the electronic device 10 according to the present embodiment has a function of using the area of the SD card 10j as a BIOS expansion area (hereinafter referred to as a BIOS area expansion function).

  Hereinafter, the extended function of the BIOS area will be briefly described. In this embodiment, as described above, for example, the VDI connection software (download package) protected by an encryption method such as AES256 is decrypted, and the decrypted VDI connection software is encrypted with the device-dependent key. The

  In a general thin client system, an external storage such as the SD card 10j cannot be used from the viewpoint of security. However, in this embodiment, the VDI connection software is encrypted with a device-dependent key as described above. By doing so, the SD card 10j can be used as a BIOS expansion area (cache area).

  Here, it is assumed that the electronic device 10 in which the VDI connection software is cached in the SD card 10j as described above is taken out by, for example, theft. In this case, if the electronic device 10 is to be used, the power source of the electronic device 10 is automatically turned off as described above with reference to FIG. 5, so that all information on the RAM 13 of the electronic device 10 is erased. According to this, it is possible to prevent information on the RAM 13 from leaking.

  Further, it is conceivable that the SD card 10j is removed from the electronic device 10 (the card slot 10i) taken out due to theft or the like, and the other device accesses the SD card 10j (information therein) for an illegal purpose. However, in the present embodiment, the VDI connection software stored in the SD card 10j is encrypted, and can be decrypted only with the device-dependent key held in the electronic device 10. In other words, since the VDI connection software cached in the SD card 10j in the electronic device 10 can be used only in the electronic device 10, even if the SD card 10j is inserted into another device, the VDI connection software is used. There is little risk of leakage of connection software information (for example, information for connecting to the VDI server device 40).

  Thereby, in the present embodiment, an external storage such as the SD card 10j can be used as a BIOS expansion area in a state where the risk of information leakage is reduced (that is, in a secure state).

  Here, the case where the VDI connection software is not cached in the SD card 10j has been described. However, when the VDI connection software is cached in the SD card 10j, the VDI connection software is stored in the SD card 10j in block B13. It is determined that there is software (YES in block B13). In this case, the processing after block B18 is executed.

  That is, when the VDI connection software is cached in the SD card 10j, the VDI connection software (VDI connection software encrypted with the device-dependent key) is acquired from the SD card 10j. According to this, for example, the VDI connection software is efficiently downloaded without downloading the VDI connection software from the management server device 20 each time the electronic device 10 is turned on (that is, provided with the virtual desktop environment). It is possible to acquire and start.

  When it is determined that the cache function is not valid in block B11 shown in FIG. 7 (NO in block B11), and when it is determined in block B12 that the SD card 10j has not been successfully mounted (NO in block B12). ) The processing of blocks B22 and B23 similar to the processing of blocks B14 and B15 is executed. If it is determined that the VDI connection software has been successfully decoded in the process of block B23 (YES in block B23), the process of block B21 is executed.

  According to this, when the cache function is not valid (that is, set to invalid), or when the SD card 10j cannot be mounted due to, for example, HW failure or the like, it is downloaded from the management server device 20. VDI connection software can be acquired from the downloaded package.

  In addition, it is assumed that it is determined in block B15 that the VDI connection software has not been successfully decoded (NO in block B15). In this case, since there is a possibility that the electronic device 10 does not have a common key (that is, the electronic device 10 is not registered as a client terminal that can be used in the thin client system), the VDI connection SW acquisition processing is performed. Is terminated. In this case, for example, the power of the electronic device 10 is turned off (that is, the system is terminated). The same applies to the case where it is determined in block B23 that the VDI connection software has not been successfully decrypted.

  Similarly, if it is determined in block B16 that the VDI connection software has not been successfully encrypted (NO in block B16), the electronic device 10 may not have a device-dependent key. The connection SW acquisition process is terminated, and the power of the electronic device 10 is turned off.

  If it is determined in block B19 that the VDI connection software has not been successfully decrypted (NO in block B19), for example, the device-dependent key in the electronic device 10 caches the VDI connection software in the SD card 10j. The key used at the time is different (that is, the SD card 10j is used by another device), the VDI connection SW acquisition processing is terminated and the power of the electronic device 10 is turned off. Is done.

  Furthermore, when it is determined in block B20 that the SD card 10j has not been successfully unmounted (NO in block B20), the SD card 10j is mounted (that is, a state in which data can be written to and read from the SD card 10j). ) Will be maintained. Since this may cause information leakage, in this case, the VDI connection SW acquisition process is terminated and the power of the electronic device 10 is turned off.

  For example, even if it is determined in block B16 that the VDI connection software has been successfully encrypted, writing to the SD card 10j is prohibited, and the SD card 10j has insufficient capacity. When the software cannot be stored (cached) in the SD card 10j, it is determined in block B17 that the VDI connection software has not been successfully cached (NO in block B17). In this case, the processing after block B22 is executed. According to this, the VDI connection software cannot be cached in the SD card 10j, but the VDI connection software can be acquired from the download package downloaded from the management server device 20. The same applies to the case where it is determined that the VDI connection software has not been successfully read in block B18 due to, for example, damage to the SD card 10j.

  In the block B13 shown in FIG. 7, it has been described that it is determined whether or not the SD card 10j has VDI connection software. For example, the SD card 10j has VDI connection software (that is, cached). Even if the VDI connection software has been updated in the management server device 20 (that is, the VDI connection software in the SD card 10j and the VDI connection software in the management server device 20). If they do not match), it is determined that there is no VDI connection software in the SD card 10j. Whether the VDI connection software in the SD card 10j matches the VDI connection software in the management server device 20 is included in the file name of the VDI connection software in the SD card 10j and the above-described policy. It is determined by comparing the file name (the file name of the latest VDI connection software).

  If the VDI connection software in the SD card 10j does not match the VDI connection software in the management server device 20, the latest VDI connection software in the management server device 20 (that is, the updated VDI connection software) Software) is downloaded to the electronic device 10, and the VDI connection software stored (cached) in the SD card 10j is overwritten with the updated VDI connection software.

  In the process shown in FIG. 7, the case where the common key encryption method is adopted for the encryption and decryption of the VDI connection software has been described. However, other encryption methods are adopted for the encryption and decryption. It doesn't matter.

  As described above, in an environment where the electronic device 10 can communicate with the management server device 20 via, for example, an in-house wireless LAN, the electronic device 10 is connected to the VDI as described in FIGS. By activating the connection software, it is possible to receive a virtual desktop environment (operate in the virtual desktop environment).

  Here, in recent years, a service that enables access to, for example, the Internet via a network called a public wireless LAN is known, but such a public wireless LAN (that is, provided outside a company) is known. In some cases, it is desired to use the electronic device 10 via a network. Note that Web authentication is often required when using a public wireless LAN.

  Hereinafter, a procedure for using a general public wireless LAN will be briefly described. Here, for convenience, an electronic device using a public wireless LAN is referred to as a public wireless LAN connection device.

  When using a public wireless LAN, the public wireless LAN connection device is, for example, an access point provided within a range in which the public wireless LAN can be used (hereinafter referred to as a public wireless LAN area) in accordance with a user operation or the like. Connected to.

  Next, a browser is activated in the public wireless LAN connection device, and a screen (hereinafter referred to as Web authentication screen) for inputting information necessary for Web authentication (hereinafter referred to as Web authentication information) is connected to the public wireless LAN connection. Appears on device display. The Web authentication information includes an ID, a password, and the like that are predetermined for using the public wireless LAN.

  When Web authentication information (ID and password) is input to the Web authentication screen displayed on the display of the public wireless LAN connection device in this way, Web authentication is executed based on the input Web authentication information. .

  When the Web authentication executed in this way is successful (that is, when correct Web authentication information is input to the Web authentication screen), the public wireless LAN connection device, for example, the Internet via the access point (public wireless LAN) It becomes possible to connect to. That is, when Web authentication is completed by the above-described procedure, the public wireless LAN connection device can use the public wireless LAN.

  Next, it is assumed that the electronic device 10 according to the present embodiment is provided with a virtual desktop environment using a public wireless LAN.

  According to the above procedure for using the public wireless LAN, in order for the electronic device 10 to use the public wireless LAN, after the electronic device 10 is connected to the access point, a web authentication screen is displayed on the electronic device 10. It is necessary to start a browser to display.

  Here, the electronic device 10 according to the present embodiment has a configuration having only the minimum necessary functions as described above, and a browser that can be activated in the electronic device 10 is incorporated in the VDI connection software.

  For this reason, in order to execute the above-described Web authentication (display a Web authentication screen), it is necessary to start VDI connection software in the electronic device 10.

  However, in this embodiment, as described with reference to FIG. 6 described above, in order to acquire, deploy, and start the VDI connection software, it is necessary to execute the start authentication process. In order to execute, the electronic device 10 needs to communicate with the management server device 20.

  Since it is impossible to connect to the Internet (that is, the management server device 20) using the public wireless LAN unless the Web authentication is completed as described above, the activation authentication process is executed before the Web authentication is completed. In the process shown in FIG. 6, the public wireless LAN cannot be used in the electronic device 10 in the thin client system.

  Therefore, in the present embodiment, a public wireless LAN is used separately from an operation mode (hereinafter referred to as a normal activation mode) that receives provision of a virtual desktop environment by executing the processing shown in FIG. It is assumed that the electronic device 10 can be operated in an operation mode for receiving provision of a virtual desktop environment (hereinafter referred to as a Web authentication mode).

  FIG. 8 describes an outline of processing of the electronic device 10 when operating in the Web authentication mode. Here, it is assumed that the electronic device 10 exists in a public wireless LAN area.

  When the electronic device 10 operates in the Web authentication mode, unlike the above-described processing illustrated in FIG. 6 (processing when the electronic device 10 operates in the normal activation mode), Web authentication is performed before the activation authentication processing. (Processing) is executed.

  (1) The electronic device 10 (machine) is turned on by the user operating the power switch 10f.

  (2) The electronic device 10 is connected to the access point 100 provided in the public wireless LAN area.

  (3) As described above, when the electronic device 10 operates in the Web authentication mode, Web authentication for connecting to the management server device 20 is executed before the activation authentication process. In this case, in order to execute Web authentication, it is necessary to start a browser (VDI connection software). Here, as described above, the electronic device 10 cannot download the VDI connection software from the management server device 20 because it cannot communicate with the management server device 20 before the Web authentication is completed. Therefore, the electronic device 10 acquires the VDI connection software cached in the SD card 10j. In other words, in order for the electronic device 10 to operate in the Web authentication mode, it is a condition that the VDI connection software is cached in the SD card 10j.

  (4) The firmware of the electronic device 10 expands the VDI connection software on the RAM 13.

  (5) A browser included in the VDI connection software is activated, and a Web authentication screen is displayed on the display of the electronic device 10. In this case, the user can input Web authentication information on the Web authentication screen by operating the electronic device 10. As a result, Web authentication is executed between the electronic device 10 and the access point 100. When the Web authentication is successful, the electronic device 10 is connected to the Internet and can communicate with the management server device 20 via the Internet.

  (6) When communication between the electronic device 10 (firmware thereof) and the management server device 20 is started, the above-described network authentication process is executed.

  (7) If the network authentication process is successful, the device authentication process described above is further executed.

  (8) The firmware acquires VDI connection destination information from the management server device 20. Since the VDI connection destination information is as described above, detailed description thereof is omitted here.

  (9) The VDI connection software transmits a connection request (login request) to the VDI server device 40 using the network address (IP address) included in the VDI connection destination information. In the electronic device 10, the browser included in the VDI connection software is activated again. Thereby, the VDI login screen is displayed on the display of the electronic device 10. In this case, the user inputs the user ID and password included in the VDI connection destination information on the VDI login screen. As a result, the VDI connection software can log in to the VDI server device 40. When the VDI connection software logs into the VDI server device 40, a connection (VDI connection) between the electronic device 10 and the VDI server device 40 is established.

  Next, a processing procedure of processing executed by the electronic device 10 operating in the above-described Web authentication mode will be described with reference to flowcharts of FIGS. 9 and 10.

  First, for example, when the user presses the power switch 10f disposed on the upper surface of the electronic device main body 10a, the power of the electronic device 10 is turned on (block B31).

  Here, when operating the electronic device 10 in the Web authentication mode, the user presses the power switch 10f while pressing a predetermined key (for example, F11 key) on the keyboard. According to this, the user can select the operation mode (normal activation mode or Web authentication mode) of the electronic device 10 after the power of the electronic device 10 is turned on.

  Specifically, for example, a screen for selecting the normal activation mode or the web authentication mode (hereinafter referred to as a mode selection screen) is displayed on the display of the electronic device 10, and the user assigns the key assigned to the normal activation mode. The operation mode of the electronic device 10 can be selected by pressing a key (for example, “1” key) or a key assigned to the Web authentication mode (for example, “2” key). In this mode selection screen, it is assumed that operations on keys other than those assigned to the normal activation mode and the web authentication mode are invalid. Hereinafter, a case where the Web authentication mode is selected will be described.

  Note that when the electronic device 10 is turned on without pressing the predetermined key (the power switch 10f is pressed), it is assumed that the normal activation mode is selected, as shown in FIG. 6 described above. Processing is executed. The same applies when the key assigned to the normal activation mode is pressed on the mode selection screen (that is, the normal activation mode is selected).

  Here, for example, accessing the electronic device 10 to the Internet or the like using a public wireless LAN may involve a risk of information leakage, so whether or not the electronic device 10 can be operated in the Web authentication mode. (That is, whether or not the management server device 20 can be connected via the public wireless LAN) is defined (set) by the administrator or the like in the above-described policy. In other words, the policy includes setting information related to the web authentication mode (whether the operation in the web authentication mode is valid or invalid).

  For this reason, when the Web authentication mode is selected as the operation mode of the electronic device 10 as described above, it is determined whether or not the Web authentication mode (operation in) is valid (block B32). The determination process of block B32 is executed based on the setting information regarding the Web authentication mode included in the policy held in the electronic device 10 described above.

  If it is determined that the operation in the Web authentication mode is not valid (NO in block B32), the electronic device 10 cannot operate in the Web authentication mode. For example, an error (cannot be activated) is displayed and the electronic device 10 The power is turned off.

  The policy is acquired from the management server device 20 when the activation authentication of the electronic device 10 is successful as described above, but operates in the Web authentication mode (that is, the processes of FIGS. 9 and 10 are executed). If no policy has been acquired previously, an error is displayed and the power of the electronic device 10 is turned off.

  On the other hand, when it is determined that the operation in the Web authentication mode is valid (YES in block B32), it is determined whether or not the cache function is valid (block B33). The determination process of block B33 is executed based on the cache function setting information included in the policy held in the electronic device 10.

  Here, as described above, in order for the electronic device 10 to operate in the Web authentication mode, it is necessary to use the VDI connection software cached in the SD card 10j. For this reason, when it is determined that the cache function is not valid (NO in block B33), an error is displayed and the power of the electronic device 10 is turned off.

  On the other hand, if it is determined that the cache function is valid (YES in block B33), the VDI connection software is stored (cached) in the SD card 10j (that is, the VDI connection software is in the SD card 10j). ) Is determined (block B34).

  If it is determined that there is no VDI connection software in the SD card 10j (NO in block B34), since the VDI connection software cannot be used, an error is displayed and the power of the electronic device 10 is turned off.

  On the other hand, when it is determined that there is VDI connection software in the SD card 10j (YES in block B34), the electronic device 10 is connected to the access point 100 provided in the public wireless LAN area (block B35). ).

  When the electronic device 10 is connected to the access point 100, the VDI connection software cached in the SD card 10j is acquired in order to perform Web authentication with the access point 100 (block) B36).

  Next, the VDI connection software acquired in block B36 is expanded in the RAM 13 (block B37).

  When the VDI connection software is expanded in the RAM 13 in block B37, the browser included in the VDI connection software can be activated in the electronic device 10. When the browser is activated in the electronic device 10, a Web authentication screen (authentication site) is displayed on the display of the electronic device 10 (block B38). This Web authentication screen is a screen for inputting Web authentication information (ID and password) necessary for using the public wireless LAN as described above.

  Here, an authentication timer is started to measure the timeout time in the Web authentication mode (block B39). It is assumed that, for example, 10 minutes is set as the default value of the timeout time in the Web authentication mode. Note that this timeout period can be changed as appropriate in the policy described above. The activation (start) timing of the authentication timer is, for example, the browser activation timing described above.

  The user can input Web authentication information on the Web authentication screen displayed in the block B38 described above. In this case, the web authentication information input to the web authentication screen is transmitted from the electronic device 10 to the access point 100. The access point 100 performs web authentication based on the web authentication information transmitted by the electronic device 10. The result of Web authentication is transmitted from the access point 100 to the electronic device 10.

  The electronic device 10 confirms the result of the Web authentication transmitted by the access point 100, and determines whether the Web authentication is successful (that is, the electronic device 10 is authenticated by the access point 100) (block B40). ). In this case, if the Web authentication information input to the Web authentication screen is correct Web authentication information assigned in advance to the access point 100, it is determined that the Web authentication is successful. On the other hand, if the Web authentication information input to the Web authentication screen is not correct Web authentication information assigned in advance to the access point 100, it is determined that Web authentication has not been successful.

  When it is determined that the Web authentication is successful (YES in block B40), the electronic device 10 can use the public wireless LAN and can access the Internet. In this case, the electronic device 10 is connected to the management server device 20 via the Internet (block B41).

  When the electronic device 10 and the management server device 20 are connected in block B41, the activation authentication process described in block B3 shown in FIG. 6 described above is performed between the electronic device 10 (embedded OS) and the management server device 20. Is executed (block B42). The activation authentication process executed in block B42 includes the network authentication process and the device authentication process as described above. Since the network authentication process and the device authentication process are as described above, detailed description thereof is omitted here.

  The embedded OS confirms the result of the activation authentication process and determines whether the activation authentication of the electronic device 10 is successful (block B43).

  When it is determined that the activation authentication of the electronic device 10 is successful (YES in block B43), the above-described authentication timer is stopped (block B44). Note that the stop timing of the authentication timer is, for example, a timing at which activation authentication of the electronic device 10 is successful in the above-described activation authentication process.

  In FIG. 10, the activation authentication process is described as being executed in block B42. However, the activation authentication process is performed after a predetermined waiting time after the electronic device 10 is connected to the access point 100 in block B35 described above. It shall be executed periodically at intervals. However, since the web server is successfully connected to the management server device 20 as described above, the timing at which the activation authentication of the electronic device 10 is determined to be successful in the activation authentication process is at least After block B41.

  Here, when the activation authentication of the electronic device 10 is successful as described above, the embedded OS executes communication with the management server device 20, whereby the policy held in the electronic device 10 is changed to the management server device 20. It is determined (checked) whether or not it has been updated (block B45).

  When it is determined that the policy held in the electronic device 10 has been updated in the management server device 20 (YES in block B45), the updated policy is acquired from the management server device 20 in the electronic device 10. (Block B46).

  When the process of block B46 is executed, the processes of blocks B47 and B48 corresponding to the processes of blocks B32 and B33 are executed based on the policy acquired in block B46.

  As a result, the Web authentication mode and the cache function are valid in the policy acquired by the electronic device 10 before operating in the Web authentication mode. Thereafter, the Web authentication mode is updated in the policy updated in the management server device 20. Alternatively, when the cache function is disabled (NO in block B47 or NO in block B48), an error is displayed and the power of the electronic device 10 is turned off.

  On the other hand, when it is determined in block B46 that the operation in the Web authentication mode is valid (YES in block B47) and it is determined in block B47 that the cache function is valid (YES in block B47), the above-described operation is performed. Processing corresponding to block B7 and block B8 shown in FIG. 6 is executed, and the electronic device 10 is connected to the VDI server device 40 (block B49). Specifically, the VDI connection software (browser included) is activated and a VDI login screen is displayed on the display of the electronic device 10, and the VDI connection destination information (included in the VDI connection destination information) is included in the VDI login screen. Information) is input, the electronic device 10 can automatically log in to the VDI server device 40. As described above, the electronic device 10 logged into the VDI server device 40 can operate in the virtual desktop environment as described above.

  Note that the policy acquired in block B46 is used for the processing of blocks B47 and B48 described above, but is not stored in the BIOS. In other words, except for the setting information related to the Web authentication mode and the setting information of the cache function, it operates according to the policy held in the electronic device 10 (BIOS).

  Here, as described above, when the electronic device 10 according to the present embodiment operates in the Web authentication mode, VDI connection software cached in the SD card 10j is used. For this reason, although omitted in FIGS. 9 and 10 described above, for example, when the mounting of the SD card 10j is not successful, when the reading of the SD card 10j is not successful, the VDI connection cached in the SD card 10j If the VDI connection software cannot be used (started up) due to unsuccessful decryption of the software (device-dependent encrypted VDI connection software), an error is displayed and the electronic Assume that the device 10 is powered off.

  Although not shown in FIGS. 9 and 10, VDI connection software is acquired in block B36 in order to prevent writing and reading of data to and from the SD card 10j in the electronic device 10 (the VDI connection software). Assume that the SD card 10j is unmounted. As a result of the unmounting process of the SD card 10j, if the unmounting of the SD card 10j is not successful, an error is displayed and the power of the electronic device 10 is turned off.

  If it is determined in block B40 that the web authentication is not successful (NO in block B40), the authentication timer started in block B39 is referred to, and an error occurs if the above-described timeout time has elapsed. This is displayed and the power of the electronic device 10 is turned off. On the other hand, if the timeout time has not elapsed, the Web authentication (the processing of blocks B38 and B40) is executed again.

  Similarly, when it is determined in block B43 that activation authentication of the electronic device 10 has not been successful (NO in block B43), the authentication timer activated in block B39 is referred to, and the timeout time has elapsed. Is displayed and the power of the electronic device 10 is turned off. On the other hand, when the timeout time has not elapsed, the activation authentication process (the processes of blocks B42 and B43) is executed again.

  As described above, in the present embodiment, for example, when the management server device 20 (first server device) is connected via a network such as a public wireless LAN, Web authentication is used to use the network. When it is necessary to execute (second authentication processing), a client program (VDI connection software including a browser) necessary for executing the Web authentication processing is acquired, and the acquired client program is started. Web authentication is executed. Further, when connected to the management server device 20 via the network by executing Web authentication, an activation authentication process (first authentication process) is executed with the management server device 20. As a result, the electronic device 10 is connected to the VDI server device (second server device) and can operate in a virtual desktop environment.

  That is, in the present embodiment, when Web authentication using a browser for using the network is required when attempting to execute activation authentication processing with the management server device 20, the browser is activated before activation authentication processing. The web authentication process is executed upon activation.

  In the present embodiment, such a configuration makes it possible to use the electronic device 10 in the thin client system using a network such as a public wireless LAN that requires Web authentication. Convenience can be improved.

  In this embodiment, the client program acquired when it is necessary to execute Web authentication includes a VDI connection program for connecting the electronic device 10 to the VDI server device 40, and Web authentication is for the VDI connection. It can be executed by starting a browser included in the program. Since the VDI connection software is acquired from the SD card 10j (nonvolatile memory) inserted into the electronic device 10 (card slot 10i thereof), before the Web authentication is executed (that is, with the management server device 20). Can be obtained even before the communication is performed. In this embodiment, since the VDI connection software is cached in the SD card 10j, for example, every time the electronic device 10 is to be connected to the VDI server device 40 (that is, provided with a virtual desktop environment). Compared with the configuration in which the VDI connection software is downloaded, it is possible to speed up the startup of the electronic device 10.

  In this embodiment, the VDI connection software is encrypted and stored (cached) in the SD card 10j, and decrypted and activated when Web authentication is executed. It is possible to use the electronic device 10 using the public wireless LAN after preventing the stored VDI connection software (information therein) from being used illegally.

  Furthermore, in the present embodiment, the VDI connection software is downloaded from the management server device 20 via a network (for example, an in-house LAN) that does not need to execute Web authentication, and cannot be accessed by the user. Stored in In other words, in the present embodiment, since information other than the encrypted VDI connection software that causes information leakage is not stored in the SD card 10j, when the electronic device 10 is used using a public wireless LAN. The risk of information leakage from the VDI connection software used can be reduced.

  In this embodiment, it is assumed that the public wireless LAN can be used within a predetermined range in order to reduce the risk of information leakage, for example. Specifically, for example, when VDI connection software is not stored in the SD card 10j, the electronic device 10 is not authenticated by Web authentication and activation authentication processing within a predetermined period, or via a public wireless LAN When it is not set by the administrator or the like that connection with the management server device 20 is possible, the power of the electronic device 10 operating in the Web authentication mode is turned off (shut down).

  In the present embodiment, the SD card 10j, which is an external storage, is used as the BIOS expansion area. However, instead of the SD card 10j, for example, another external storage (for example, eMM or USB) is used. Memory etc.) may be used as the BIOS expansion area.

  Furthermore, as long as the nonvolatile memory is inaccessible to the user, for example, the internal storage (area) may be used as the BIOS expansion area instead of the external storage. In this embodiment, the VDI connection software is described as being encrypted and cached. However, the VDI connection software is cached in the internal storage, and information in the internal storage can be leaked. In such a case, the VDI connection software may be configured not to be encrypted.

  As described above, even when a non-volatile memory other than the SD card 10j is used as the BIOS expansion area, the non-volatile memory is limited in the same manner as the SD card 10j described in the present embodiment. It shall be used only for the period.

  Although several embodiments of the present invention have been described, these embodiments are presented by way of example and are not intended to limit the scope of the invention. These embodiments can be implemented in various other forms, and various omissions, replacements, and changes can be made without departing from the spirit of the invention. These embodiments and their modifications are included in the scope and gist of the invention, and are also included in the invention described in the claims and the equivalents thereof.

  DESCRIPTION OF SYMBOLS 10 ... Electronic device, 10a ... Electronic device main body, 10b ... Display unit, 10c ... LCD, 10d ... Keyboard, 10e ... Touch pad, 10f ... Power switch, 10g ... Speaker, 10h ... Power connector, 10i ... Card slot, 10j ... SD card (nonvolatile memory), 10k... HDMI output terminal, 13... RAM, 16... BIOS-ROM, 20... Management server device (first server device), 40 .. VDI server device (second server device).

Claims (10)

Starting means for starting a browser after the first authentication processing with the first server device connected via the network;
Display processing means for displaying a virtual desktop screen provided by a second server device different from the first server device when the browser is activated;
When the second authentication process using the browser for using the network is necessary when trying to execute the first authentication process with the first server device, the first authentication process An electronic device in which the browser is activated before and the second authentication process is executed.   The electronic device according to claim 1, wherein the browser is included in a client program for connecting the electronic device to the second server device.   The electronic device according to claim 2, wherein the client program is stored in a nonvolatile memory. The non-volatile memory stores an encrypted client program,
The electronic device according to claim 3, wherein the activation unit decrypts the client program stored in the nonvolatile memory and activates a browser included in the client program. Download means for downloading the client program from the first server device in a state connected to the first server device via a network that does not require the second authentication processing;
Storage processing means for storing the downloaded client program in the nonvolatile memory,
The electronic device according to claim 4, wherein a user who uses the electronic device cannot access the nonvolatile memory.   The electronic device according to claim 3, further comprising a power control unit that turns off the power of the electronic device when the client program is not stored in the nonvolatile memory.   If the electronic device is not authenticated within a predetermined period by executing the second authentication process and the first authentication process after the browser is activated, the electronic device is turned off. The electronic device according to claim 1, further comprising a power control unit. Setting means for setting that it is connectable to the first server device via the network;
The electronic device according to claim 1, further comprising: a power control unit that turns off the power of the electronic device when it is not set to be connectable to the first server device via the network. Starting a browser after a first authentication process with a first server device connected via a network;
When the browser is activated, displaying a virtual desktop screen provided by a second server device different from the first server device;
When the second authentication process using the browser for using the network is necessary when trying to execute the first authentication process with the first server device, the first authentication process Activating the browser before and executing the second authentication process. A program executed by a computer of an electronic device,
In the computer,
Starting a browser after a first authentication process with a first server device connected via a network;
When the browser is activated, displaying a virtual desktop screen provided by a second server device different from the first server device;
When the second authentication process using the browser for using the network is necessary when trying to execute the first authentication process with the first server device, the first authentication process A program for starting the browser and executing the second authentication process before.

Images