JP2019004247A - Information processing system, information processing device, control program, and control method - Google Patents

Abstract

To provide an information processing system capable of safely and easily transmitting and receiving user authentication information.SOLUTION: An information processing system includes a server 12, an image forming device 14, and a user terminal 200. The image forming device 14 generates a public key and a secret key, and displays a code image embedded with the public key on a display. The user terminal 200 reads the code image to acquire the public key, generates encryption information by encrypting the user authentication by the public key, and transmits first information containing the public key and the encryption information to the server 12. The image forming device 14 accesses a storage unit of the server 12. When the first information containing the same public key as the public key for collation exists in the storage unit, the image forming device causes the server 12 to transmit the encryption information contained in the first information. When it receives the encryption information, the image forming device 14 acquires the user authentication information by decrypting the encryption information by the secret key, and then performs user authentication using the user authentication information.SELECTED DRAWING: Figure 4

Description

  The present invention relates to an information processing system, an information processing apparatus, a control program, and a control method, and more particularly to an information processing system, an information processing apparatus used in the information processing system, a control program, It relates to a control method.

  An example of this type of background art is disclosed in Patent Document 1. The information processing apparatus of the background art includes a wireless communication unit that acquires identification information for each user from a wireless tag possessed by the user, and an imaging unit that captures an image including the biological information of the user using the imaging device. The information processing apparatus of the background art performs user authentication based on the identification information acquired by the wireless communication unit and the image captured by the imaging unit.

JP 2017-037635 A

  However, since the information processing apparatus of the background art includes the wireless communication unit and the imaging unit, there is a problem that the manufacturing cost of the information processing apparatus increases.

  In order to solve this problem, it is also conceivable to transmit the user's information to the information processing apparatus via a network such as the Internet from a portable terminal possessed by the user.

  However, since the user information is transmitted and received between the information processing apparatus and the portable terminal via the network, the user information may pass to an unspecified third party. For this reason, there is a problem regarding safety (security). In addition, when transmitting information from the mobile terminal, there is a problem that the work of specifying the transmission destination of the information is troublesome and takes time.

  Therefore, a main object of the present invention is to provide a novel information processing system, information processing apparatus, control program, and control method.

  Another object of the present invention is to provide an information processing system, an information processing apparatus, a control program, and a control method capable of transmitting and receiving information safely and easily.

  A first invention is an information processing system including a mobile terminal, a server, and an information processing apparatus. The information processing apparatus is, for example, an image forming apparatus such as an MFP, a copier (copy machine), a printing apparatus (printer), and a facsimile, or a display device such as an electronic blackboard and an information display. The information processing apparatus includes display means and first transmission means. The display means displays the code image in which the public key is embedded on the display. The first transmission means transmits the public key to the server as a public key for verification. The portable terminal is a portable terminal such as a smartphone, a future phone, or a tablet PC, and includes an acquisition unit, a first generation unit, and a second transmission unit. The acquisition unit acquires the public key from the code image displayed on the display. The first generating means generates encrypted information obtained by encrypting predetermined sending information with the public key acquired by the acquiring means. The second transmission unit transmits the first information including the encrypted information and the public key generated by the first generation unit to the server. The server is a general-purpose server, and includes a first reception unit, a second reception unit, a storage unit, and a third transmission unit. The first receiving unit receives the public key for verification transmitted from the information processing apparatus. The second receiving means receives the first information transmitted from the mobile terminal. The storage means stores the public key for verification received by the first receiving means and the first information received by the second receiving means. The third transmitting unit transmits the encrypted information included in the first information to the information processing apparatus.

  The second invention is an information processing system subordinate to the first invention, and a judging means for judging whether or not the first information including the same public key as the public key for verification exists in the storage means of the server And a transmission control that causes the third transmission unit to transmit the encrypted information included in the first information when the determination unit determines that there is first information including a public key that matches the public key for verification. Means are further provided.

  A third invention is an information processing system subordinate to the second invention, wherein the information processing apparatus includes a determination unit and a transmission control unit, and the determination unit accesses the storage unit of the server, and the storage unit The transmission control means determines whether there is first information including the public key that matches the public key for verification by the determination means. If it is determined, a request for transmission of the encrypted information included in the first information is made to the server.

  A fourth invention is an information processing system subordinate to the second invention, and the server includes a determination unit and a transmission control unit.

  A fifth invention is an information processing system subordinate to any one of the first to fourth inventions, wherein the information processing apparatus generates a public key and a secret key corresponding to the public key, The apparatus further comprises third receiving means for receiving the encrypted information transmitted from the server, and decrypting means for decrypting the encrypted information received by the third receiving means with the secret key.

  A sixth invention is an information processing system according to any one of the first to fifth inventions, wherein the mobile terminal further includes photographing means for photographing the code image, and the obtaining means is photographed by the photographing means. The obtained code image is decrypted to obtain a public key.

  A seventh invention is an information processing system according to any one of the first to sixth inventions, wherein the server generates a code image based on the public key received by the first receiving means. And a third transmission unit transmits the code image generated by the third generation unit to the information processing apparatus.

  An eighth invention is an information processing system subordinate to any one of the first to sixth inventions, and the information processing apparatus includes third generation means for generating a code image in which a public key is embedded.

  A ninth invention is an information processing apparatus that is used in an information processing system and is communicably connected to a server included in the information processing system. The information processing apparatus includes display means, first transmission means, determination means, and transmission control means. The display means displays the code image in which the public key is embedded on the display. The first transmission means transmits the public key to the server as a public key for verification. The determination unit accesses the storage unit of the server, and determines whether or not there is encryption information associated with the same public key as the verification public key. The transmission control unit makes a transmission request for the encrypted information to the server when the determination unit determines that there is encrypted information associated with the same public key as the verification public key.

  A tenth invention is a control program for an information processing apparatus that is used in an information processing system and is communicably connected to a server included in the information processing system, wherein a public key is embedded in the processor of the information processing apparatus. Display means for displaying the encoded image on the display, first transmission means for transmitting the public key to the server as a public key for verification, access to the storage means of the server, and storing the same as the public key for verification When judging means for judging whether or not there is encrypted information associated with the public key, and when it is judged by the judging means that there is encrypted information associated with the same public key as the public key for verification The server is caused to function as a transmission control means for making a transmission request for the encrypted information.

  In an eleventh aspect of the invention, a processor of an information processing apparatus used in an information processing system and connected to a server included in the information processing system communicatively displays (a) a code image in which a public key is embedded on a display. (B) transmitting the public key to the server as a public key for verification; (c) accessing the storage means of the server and associating the storage means with the same public key as the public key for verification A step of determining whether or not the encrypted information provided exists, and (d) when it is determined in step (c) that there is encrypted information associated with the same public key as the public key for verification, This is a control method for executing a step of requesting the server to send the encrypted information.

  A twelfth invention is a portable terminal that is used in an information processing system including an information processing device and a server, is connected to the server so as to be communicable, and can transmit / receive information to / from the information processing device via the server. The portable terminal includes an acquisition unit, a first generation unit, and a second transmission unit. The acquisition unit acquires the public key from the code image displayed on the display of the information processing apparatus. The first generating means generates encrypted information obtained by encrypting predetermined sending information with the public key acquired by the acquiring means. The second transmission unit transmits the first information including the encrypted information and the public key generated by the first generation unit to the server.

  A thirteenth invention is used in an information processing system including an information processing device and a server, is connected to the server so as to be communicable, and is a portable terminal control program capable of transmitting and receiving information to and from the information processing device via the server An acquisition unit that acquires a public key from a code image displayed on a display of an information processing device, and a encrypted information obtained by encrypting predetermined sending information with the public key acquired by the acquisition unit. The first generating means for generating the first information, and the first information including the encrypted information generated by the first generating means and the public key are functioned as second transmitting means for transmitting to the server.

  According to a fourteenth aspect of the invention, there is provided a processor of a portable terminal which is used in an information processing system including an information processing device and a server, is connected to the server so as to be communicable and can transmit / receive information to / from the information processing device via the server (A) A step of acquiring a public key from the code image displayed on the display of the information processing apparatus, (b) Generating encrypted information obtained by encrypting predetermined sending information with the public key acquired in step (a) And (c) a control method for executing the step of transmitting the first information including the encrypted information and the public key generated in step (b) to the server.

  According to the present invention, information can be transmitted and received safely and easily.

  The above object, other objects, features and advantages of the present invention will become more apparent from the following detailed description of embodiments with reference to the drawings.

FIG. 1 is a diagram showing an example of the configuration of an information processing system according to the present invention. FIG. 2 is a block diagram showing an electrical configuration of the image forming apparatus shown in FIG. FIG. 3 is a block diagram showing an electrical configuration of the user terminal shown in FIG. FIG. 4 is an illustrative view for explaining an operation example of the information processing system. FIG. 5 is an illustrative view showing one example of a home screen of the image forming apparatus. FIG. 6 is an illustrative view showing an example of a login screen of the image forming apparatus. FIG. 7 is an illustrative view showing one example of a home screen of a user terminal. FIG. 8 is an illustrative view showing one example of a home screen of a user terminal. FIG. 9 is an illustrative view showing one example of a home screen of a user terminal. FIG. 10 is an illustrative view showing one example of a home screen of a user terminal. FIG. 11 is an illustrative view showing one example of a memory map of a RAM of the user terminal shown in FIG. 12 is an illustrative view showing one example of a memory map of a RAM of the server shown in FIG. FIG. 13 is an illustrative view showing one example of a memory map of a RAM of the image forming apparatus shown in FIG. FIG. 14 is a flowchart showing an example of information processing of the CPU of the image forming apparatus shown in FIG. FIG. 15 is a flowchart showing an example of information processing of the CPU of the user terminal shown in FIG. FIG. 16 is a flowchart showing an example of information processing of the CPU of the server shown in FIG. FIG. 17 is an illustrative view showing one example of a job selection screen in a modified example. FIG. 18 is an illustrative view showing one example of a scan setting screen in a modified example. FIG. 19 is a diagram illustrating an example of the configuration of the information processing system according to the second embodiment. FIG. 20 is a block diagram showing an electrical configuration of the display device shown in FIG. FIG. 21 is a flowchart showing an example of information processing of the CPU of the image forming apparatus in the third embodiment. FIG. 22 is a flowchart showing an example of information processing by the CPU of the server in the third embodiment.

[First embodiment]
FIG. 1 is a diagram showing an example of the configuration of an information processing system 10 according to the present invention. Referring to FIG. 1, an information processing system 10 according to a first embodiment of the present invention includes a server 12, which is an image forming apparatus (corresponding to an information processing apparatus) via a network such as the Internet. 14 and a mobile terminal (user terminal) 200 are communicably connected.

  In FIG. 1, one image forming apparatus 14 and one user terminal 200 are illustrated, but two or more image forming apparatuses 14 and user terminals 200 may be provided.

  The server 12 is a general-purpose server and includes components such as a CPU 12a, a RAM 12b, and a communication module.

  In the first embodiment, the image forming apparatus 14 is an MFP (Multifunction Peripheral) having a copy function, a printer function, a scanner function, a facsimile function, and the like. The present invention can be applied not only to a multifunction peripheral but also to other image forming apparatuses such as a copying machine (copying machine), a printing apparatus (printer), and a facsimile machine.

  FIG. 2 is a block diagram showing an electrical configuration of the image forming apparatus 14 shown in FIG. Referring to FIG. 2, image forming apparatus 14 includes a CPU 142. A RAM 144, a touch panel control circuit 146, a display control circuit 148, an image forming unit 154, an image reading unit 156, and a communication circuit 158 are connected to the CPU 142 via the bus 140. A touch panel 150 is connected to the touch panel control circuit 146, and a display 152 is connected to the display control circuit 148. As the display 152, for example, an LCD or an EL (Electro-Luminescence) display can be used. The same applies to the display 212 of the user terminal 200 described later. In the first embodiment, a capacitive touch panel is used as the touch panel 150, and the touch panel 150 is provided on the display surface of the display 152. However, a touch panel display in which the touch panel 150 and the display 152 are integrally formed may be used. In addition, the touch panel 150 is not limited to the electrostatic capacity method, and an arbitrary method such as an electromagnetic induction method, a resistance film method, and an infrared method can be used. The same applies to the touch panel 210 of the user terminal 200 described later.

  The CPU 142 governs overall control of the image forming apparatus 14. The RAM 144 is used as a work area and a buffer area for the CPU 142.

  The touch panel control circuit 146 applies a necessary voltage or the like to the touch panel 150, and indicates a position of the detected touch input when a touch operation (touch input) within the effective touch range is detected on the touch panel 150. The touch coordinate data is output to the CPU 142.

  The display control circuit 148 includes a GPU, a VRAM, and the like. Under the instruction of the CPU 142, the GPU uses the image generation data 344b (see FIG. 13) stored in the RAM 144 to display various screens on the display 152. Display image data is generated in the VRAM, and the generated display image data is output to the display 152. As an example, the display 152 displays a home screen 100 (see FIG. 5 and the like) that is a screen for selecting a desired job from various jobs that can be executed by the image forming apparatus 14. However, in the first embodiment, the job means copying (including scanning of an original), printing, and transmission of a fax.

  The image reading unit 156 includes a light source, a plurality of mirrors, an imaging lens, a line sensor, and the like. The image reading unit 156 exposes the document surface with a light source, and guides reflected light reflected from the document surface to the imaging lens using a plurality of mirrors. Then, the reflected light is imaged on the light receiving element of the line sensor by the imaging lens. The line sensor detects the luminance and chromaticity of the reflected light imaged on the light receiving element, and generates read image data based on the image on the surface of the document.

  The image forming unit (printing device) 156 is a general-purpose laser printer, and includes a photoconductor, a charger, an exposure device, a developing device, a transfer device, a fixing device, and the like, and corresponds to print data processed by an image processing circuit. Print an image on recording paper. However, the image forming unit 154 may be configured by an ink jet printer instead of the laser printer.

  The communication circuit 158 is a communication circuit for connecting to a network such as the Internet. The communication circuit 158 is a wired communication circuit or a wireless communication circuit, and communicates with an external computer (external terminal) such as the server 12 and other information processing apparatuses via a network in accordance with an instruction from the CPU 142.

  Note that the electrical configuration of the image forming apparatus 14 shown in FIG. 2 is merely an example, and is not necessarily limited to this. For example, the image forming apparatus 14 may be provided with hardware operation buttons such as an operation panel or a hardware keyboard as other input means.

  The user terminal 200 is a portable terminal that can be carried, such as a general-purpose smartphone, a future phone, or a tablet PC, and has various functions such as a call function, an e-mail function, and a browser function.

  FIG. 3 is a block diagram showing an electrical configuration of the user terminal 200 shown in FIG. With reference to FIG. 3, the user terminal 200 of the first embodiment includes a CPU 202. A RAM 204, a touch panel control circuit 206, a display control circuit 208, a camera 214 and a communication circuit 216 are connected to the CPU 202 via a bus 230. A touch panel 210 is connected to the touch panel control circuit 206, and a display 212 is connected to the display control circuit 208.

  The CPU 202 governs overall control of the user terminal 200. The RAM 204 is used as a work area and a buffer area for the CPU 202.

  The communication circuit 216 is a communication circuit for connecting to a network such as the Internet. The communication circuit 216 is a wireless communication circuit, and communicates with an external computer such as the server 12 and other user terminals 200 via a network in accordance with an instruction from the CPU 202.

  The touch panel control circuit 206 applies a necessary voltage to the touch panel 210 and outputs touch coordinate data indicating the position of the touch input to the CPU 202 when a touch input is detected.

  The display control circuit 208 includes a GPU, a VRAM, and the like. Under the instruction of the CPU 202, the GPU displays various screens on the display 212 using the image generation data 304b (see FIG. 11) stored in the RAM 204. Display image data is generated in the VRAM, and the generated display image data is output to the display 212.

  The camera 214 has an imaging element (image sensor) and a focus lens capable of adjusting the position, and performs imaging by converting imaging light as visible light captured from the imaging element into an electrical signal. As an example of this image sensor, a solid-state image sensor such as a CCD (Charge Coupled Device) image sensor or a CMOS (Complementary Metal Oxide Semiconductor) image sensor can be cited. The captured image data output from the camera 214 is stored in the RAM 204.

  Note that the electrical configuration of the user terminal 200 illustrated in FIG. 3 is merely an example, and is not necessarily limited to this. For example, the user terminal 200 may be provided with hardware operation buttons as other input means. In FIG. 3, components related to a call and the like are omitted for simplicity.

  In the information processing system 10 having such a configuration, predetermined information may be transmitted to the image forming apparatus 14 from the user terminal 200 possessed by the user. In transmitting and receiving information between the user terminal 200 and the image forming apparatus 14, it is conceivable that the user terminal 200 and the image forming apparatus 14 directly communicate with each other by short-range wireless or the like.

  In this case, it is necessary for the user terminal 200 and the image forming apparatus 14 to include a module for performing short-range wireless communication, and there is a problem that manufacturing costs of the user terminal 200 and the image forming apparatus 14 increase.

  In order to solve this problem, it is conceivable to transmit information from the user terminal 200 to the image forming apparatus 14 via the network (and the server 12).

  However, since information is transmitted and received between the user terminal 200 and the image forming apparatus 14 via the network, there is a possibility that the information passes to an unspecified third party. For this reason, there is a problem regarding safety (security). Further, when transmitting information from the user terminal 200, there is a problem that the work of specifying the information transmission destination is troublesome and takes time and effort.

  Therefore, in order to avoid such inconvenience, the information processing system 10 according to the first embodiment generates encrypted information obtained by encrypting predetermined information in the user terminal 200, and the encrypted information is stored in the network. Are transmitted and received through the network.

  In the first embodiment, each of the user terminal 200 and the image forming apparatus 14 stores a predetermined application program (hereinafter simply referred to as “app”) that operates in cooperation with the cloud service. Briefly, by executing this application, predetermined information (hereinafter referred to as “sending information”) is transmitted from the user terminal 200 to the image forming apparatus 14. The image forming apparatus 14 performs predetermined processing based on the received sending information.

  For example, when a user wishes to use a cloud service, user authentication is performed to determine whether the user is a user (registered user) permitted to use (log in) the cloud service.

  In this case, authentication information (corresponding to sending information) of the user who uses the user terminal 200 is transmitted from the user terminal 200 to the image forming apparatus 14. The image forming apparatus 14 performs user authentication (corresponding to a predetermined process) based on the received authentication information.

  Hereinafter, an operation example of the information processing system 10 will be described with reference to FIG. However, it is assumed that the authentication information is, for example, a login ID and a password, and is stored in advance in a storage unit (nonvolatile memory such as HDD, flash memory, or EEPROM) of the user terminal 200.

  FIG. 4 is an illustrative view for explaining an operation example of the information processing system. FIG. 5 is an illustrative view showing an example of a home screen 100 of the image forming apparatus 14. FIG. 6 is an illustrative view showing an example of a login screen 120 of the image forming apparatus 14. FIG. 7 is an illustrative view showing one example of a home screen 130 of the user terminal 200. FIG. 8 is an illustrative view showing another example of the home screen 130 of the user terminal 200. FIG. 9 is an illustrative view showing one example of a home screen 130 of the user terminal 200. FIG. 10 is an illustrative view showing one example of a home screen 130 of the user terminal 200.

  When the image forming apparatus 14 is turned on and is in a standby state in which each function can be executed, a home screen 100 as shown in FIG. 5 is displayed on the display 152 of the image forming apparatus 14. The home screen 100 includes an image of a software key (icon) for selecting each job such as copying, printing, facsimile, and scanning and an image of a software key for displaying an operation screen (setting screen) for each job. Is displayed. On the home screen 100, an image of a software key (hereinafter referred to as “login icon”) 102 for starting (logging in) use of the cloud service is displayed.

  When the login icon 102 is touched (selected), the image forming apparatus 14 generates a public key and a secret key corresponding to the public key. However, the correspondence between the public key and the private key means that data encrypted with the public key can be decrypted with the private key. Further, the public key and the secret key may be fixed or may be different every time they are generated.

  When the image forming apparatus 14 generates the public key and the private key, the image forming apparatus 14 stores the public key (public key for verification) and the private key in the RAM 144 and transmits the public key for verification to the server 12 ((( 1)).

  When the server 12 receives the public key for verification, the server 12 stores (registers) the received public key for verification in a storage unit (for example, a non-volatile memory) of the server 12. Further, the server 12 generates a code image 124 (see FIG. 6) in which information about the public key for verification is embedded. The code image 124 is, for example, a two-dimensional code. The two-dimensional code may be a matrix type two-dimensional code such as QR code (registered trademark), micro QR code, DataMATRIX, MaxiCODE, and VeriCODE, or a stack type two-dimensional code such as PDF417 and CODE49.

  When the server 12 generates the code image 124, the server 12 transmits the code image 124 to the image forming apparatus 14 ((2) in FIG. 4).

  Upon receiving the code image 124, the image forming apparatus 14 displays a login screen 120 as shown in FIG. 6 on the display 152 ((3) in FIG. 4). As shown in FIG. 6, a code image 124 and a message 122 that prompts the user terminal 200 to read the code image 124 are displayed on the login screen 120. The login screen 120 is hidden (returns to the home screen 100) when a predetermined time (for example, 3 to 5 minutes) elapses from when it is displayed on the display 152.

  Here, when the user terminal 200 is in a standby state in which each function can be executed, a home screen 130 as shown in FIG. 7 is displayed on the display 212 of the user terminal 200. On the home screen 130, images of a plurality of software keys 132 assigned to various functions executable on the user terminal 200 are displayed. The plurality of software keys 132 include a software key (hereinafter referred to as “login icon”) 132a for starting use of the cloud service.

  When the login icon 132 a is touched, a confirmation screen (confirmation window) 134 as shown in FIG. 8 is displayed on the display 212 of the user terminal 200. The confirmation window 134 is a screen for requesting the user to confirm that the camera is activated, and is displayed on the front surface of the home screen 130.

  For example, a confirmation message “Do you want to start the camera?” Is displayed on the confirmation window 134. The confirmation window 134 also displays a “Yes” button 134 a for starting the camera 214 and a “No” button 134 b for not starting the camera 214.

  The confirmation window 134 cannot be operated except for touching the “Yes” button 134a or the “No” button 134b, and cannot perform other operations.

  If the “No” button 134 b is selected, the confirmation window 134 is hidden and the screen returns to the home screen 130. When the “Yes” button 134 a is selected, the camera 214 is activated and a preview screen (preview window) 136 as shown in FIG. 9 is displayed on the display 212 of the user terminal 200. In the preview window 136, a real-time moving image corresponding to a photographed image photographed by the camera 214, that is, a through image (preview image) is displayed.

  Here, the user terminal 200 determines whether or not the code image 124 is included in the captured image captured by the camera 214 (whether or not the code image 124 is captured). With the camera 214 activated, the user terminal 200 is moved to an appropriate position, whereby the code image 124 is captured ((4) in FIG. 4). When the code image 124 is photographed, the user terminal 200 extracts the code image 124 from the photographed image and decodes the extracted code image 124.

  When the user terminal 200 decrypts the code image 124, the user terminal 200 acquires a public key embedded in the code image 124 (the same public key as the public key for verification). That is, the user terminal 200 acquires (reads) the public key from the code image 124. Further, when the user terminal 200 acquires the public key, the user terminal 200 generates information (encrypted information) obtained by encrypting the user authentication information stored in the user terminal 200 with the public key.

  When the user terminal 200 generates the encryption information, the user terminal 200 associates the public key with the encryption information encrypted with the public key and transmits the information to the server 12 ((5) in FIG. 4). For convenience of explanation, the public key and the encrypted information may be collectively referred to as first information.

  When the server 12 receives the first information, the server 12 stores the first information in the storage unit of the server 12.

  The image forming apparatus 14 accesses the storage unit of the server 12 at a predetermined cycle (for example, 10 seconds to 60 seconds), and determines whether there is first information including the same public key as the public key for verification ( (6) of FIG. This process is started when the image forming apparatus 14 receives the code image 124 ((2) in FIG. 4), and is repeated until it is determined that there is first information including the same public key as the public key for verification. (Polling).

  When it is determined that there is first information including the same public key as the public key for verification, the image forming apparatus 14 specifies the encrypted information included in the first information, and sends a transmission request for the encrypted information. Is transmitted to the server 12 ((7) in FIG. 4). At this time, when the login screen 120 is displayed on the display 152, the login screen 120 is hidden.

  When the server 12 receives the transmission request for the encryption information, the server 12 transmits the encryption information to the image forming apparatus 14 that has transmitted the transmission request (transmission request source) ((8) in FIG. 4). At this time, the first information including the encrypted information transmitted to the image forming apparatus 14 and the data of the public key for verification that is the same as the public key included in the first information are deleted from the storage unit of the server 12.

  When receiving the encryption information, the image forming apparatus 14 decrypts the received encryption information with the secret key stored in the RAM 144. As described above, since the encrypted information is obtained by encrypting the authentication information of the user who uses the user terminal 200, the image forming apparatus 14 uses the authentication information (first authentication information) corresponding to the encrypted information. get.

  In the information processing system 10, user authentication is performed according to the first authentication information acquired by the image forming apparatus 14. Note that user authentication may be performed by the image forming apparatus 14 or the server 12.

  For example, when user authentication is performed by the image forming apparatus 14, registered user authentication information (second authentication information) is stored in the storage unit of the image forming apparatus 14. Then, when the first authentication information matches the second authentication information, the image forming apparatus 14 determines that the user corresponding to the first authentication information is a registered user. If it is determined that the user is a registered user, the user authentication is successful, and the user corresponding to the authentication information for authentication is permitted to log in to the cloud service. In addition, when the user authentication is successful, information indicating that the user authentication is successful is transmitted from the server 12 to the user terminal 200 to notify the user that the user authentication is successful. For example, a notification screen (notification window) 138 as shown in FIG. 10 is displayed on the display 212 of the user terminal 200. In this notification window 138, a “login completed” message is displayed. In addition, the notification window 138 cannot be operated except for selecting and closing the “OK” button 138a, and other operations cannot be performed.

  On the other hand, if it is determined that the user is not a registered user, the user authentication has failed and the user corresponding to the authentication authentication information is not permitted to log in to the cloud service. In this case, the user is notified that the user authentication has failed. Although illustration is omitted, for example, a message indicating that the user authentication has failed is displayed on the display 212 of the user terminal 200.

  When user authentication is performed by the server 12, the second authentication information is stored in the storage unit of the server 12. In this case, the image forming apparatus 14 transmits the acquired first authentication information to the server 12. The server 12 acquires the first authentication information and performs user authentication. Note that the content of user authentication is the same as that performed in the image forming apparatus 14, and therefore description thereof is omitted.

  The above-described operation of the information processing system 10 is performed by the CPU 202 of the user terminal 200 executing the information processing program for the user terminal 200 stored in the RAM 204, and the CPU 12a of the server 12 being the information for the server 12 stored in the RAM 12b. The processing program is executed, and the CPU 142 of the image forming apparatus 14 executes the information processing program for the image forming apparatus 14 stored in the RAM 144. Specific processing will be described later with reference to a flowchart.

  FIG. 11 is an illustrative view showing one example of a memory map 300 of the RAM 204 of the user terminal 200 shown in FIG. As shown in FIG. 11, the RAM 204 includes a program storage area 302 and a data storage area 304. The program storage area 302 of the RAM 204 stores an information processing program for the user terminal 200 as described above. The information processing program for the user terminal 200 includes a communication program 302a, an operation detection program 302b, a display program 302c, a photographing program 302d, a code reading program 302e, an encryption program 302f, and a transmission program 302g.

  The communication program 302a is a program for communicating (transmitting / receiving) data with other computers or devices such as the server 12 via a network.

  The operation detection program 302b is a program for detecting a touch input. The CPU 202 acquires touch coordinate data output from the touch panel 210 according to the operation detection program 302b, and the acquired touch coordinate data is stored in the RAM 204 according to time series. To remember. However, as described above, when a hardware operation button is provided, the input of the operation button is also detected according to the operation detection program 302b.

  The display program 302 c generates display image data, that is, screen data such as the above-described home screen 130, confirmation window 134, preview window 136, and notification window 138 using image generation data 304 b to be described later, and outputs it to the display 212. It is a program to do.

  The shooting program 302d is a program for controlling the camera 214 and acquiring a shot image.

  The code reading program 302e is a program for extracting the code image 124 from the photographed image photographed in accordance with the photographing program 302d and decoding the extracted code image 124. The code reading program 302e is also a program for decrypting the code image 124 and acquiring public key data 304d embedded in the code image 124.

  The encryption program 302f is a program for encrypting authentication information data 304e, which will be described later, using a public key acquired according to the code reading program 302e.

  The transmission program 302g is a program for transmitting the first information data including the public key data 304d and the encrypted information data 304f to the server 12. However, at the time of transmission, the communication program 302a is executed.

  Although illustration is omitted, the program storage area 302 also stores programs for selecting and executing various functions of the user terminal 200.

  In the data storage area 304 of the RAM 204, operation input data 304a, image generation data 304b, photographed image data 304c, public key data 304d, authentication information data 304e, encryption information data 304f, and the like are stored.

  The operation input data 304a is data in which touch coordinate data detected according to the operation detection program 302b is stored in time series. However, the operation input data 304a may include operation data for hardware buttons.

  The image generation data 304b is data such as polygon data or texture data for generating display image data corresponding to various screens displayed on the display 212.

  The photographed image data 304c is image data regarding a photographed image photographed by the camera 214 in accordance with the photographing program 302d.

  The public key data 304d is key data for encrypting the authentication information data 304e, and is data obtained by decrypting the code image 124 according to the code reading program 302e.

  The authentication information data 304e is data corresponding to authentication information such as a login ID and a password of a user who uses the user terminal 200.

  The encrypted information data 304f is data obtained by encrypting the authentication information data 304e according to the encryption program 302f.

  Although not shown, the data storage area 304 stores other data necessary for executing the information processing program for the user terminal 200, or a timer required for executing the information processing program for the user terminal 200. (Counter) and registers are provided.

  FIG. 12 is an illustrative view showing one example of a memory map 320 of the RAM 12b of the server 12 shown in FIG. As illustrated in FIG. 12, the RAM 12 b includes a program storage area 322 and a data storage area 324. As described above, the information storage program for the server 12 is stored in the program storage area 322 of the RAM 12b. The information processing program for the server 12 includes a communication program 322a, a reception program 322b, a registration program 322c, a code generation program 322d, a transmission program 322e, and a deletion program 322f.

  The communication program 322a is a program for communicating with other computers or devices such as the user terminal 200 and the image forming apparatus 14 via a network.

  The reception program 322b is a program for receiving the first information data transmitted from the user terminal 200. The reception program 322b is also a program for receiving the verification public key data and the encryption information transmission request signal transmitted from the image forming apparatus 14. However, at the time of reception, the communication program 322a is executed.

  The registration program 322c is a program for storing the public key data 324a corresponding to the public key for verification received in accordance with the reception program 322b and the first information data 324c corresponding to the first information in the storage unit of the server 12. .

  The code generation program 322d is a program for generating code image data 324b corresponding to the code image 124 in which information about the public key corresponding to the public key data 324a is embedded.

  The transmission program 322e is a program for transmitting the code image data 324b to the image forming apparatus 14 and transmitting data about encryption information to the image forming apparatus 14. However, at the time of transmission, the communication program 322a is executed.

  When the encryption program is transmitted to the image forming apparatus 14, the deletion program 322f sets the first information data 324c corresponding to the first information including the encryption information and the same public key as the public key included in the first information. This is a program for deleting the corresponding public key data 324 a from the storage unit of the server 12.

  Although illustration is omitted, the program storage area 322 also stores programs for selecting and executing various functions of the server 12.

  The data storage area 324 of the RAM 12b stores public key data 324a, code image data 324b, first information data 324c, and the like. The public key data 324a is data corresponding to the public key for verification. The code image data 324b is data corresponding to the code image 124 generated according to the code generation program 322d. The first information data 324c is data corresponding to the first information transmitted from the user terminal 200.

  Although not shown, the data storage area 324 stores other data necessary for executing the information processing program for the server 12 or a timer (counter required for executing the information processing program for the server 12. ) And registers.

  As described above, data such as the public key data 324a and the first information data 324c is stored in the storage unit of the server 12, and is read from the storage unit of the server 12 as necessary. However, these data may be stored in an external storage device such as a database accessible by the server 12 instead of the storage unit of the server 12.

  FIG. 13 is an illustrative view showing one example of a memory map 340 of the RAM 144 of the image forming apparatus 14 shown in FIG. As shown in FIG. 13, the RAM 144 includes a program storage area 342 and a data storage area 344. The program storage area 342 of the RAM 144 stores an information processing program for the image forming apparatus 14 as described above. The information processing program for the image forming apparatus 14 includes a communication program 342a, an operation detection program 342b, a key generation program 342c, a transmission program 342d, a reception program 342e, a display program 342f, a determination program 342g, a transmission request program 342h, and a decryption program 342i. including.

  The communication program 342a is a program for communicating with other computers or devices such as the server 12 via a network.

  The operation detection program 342b is a program for detecting a touch input, and the CPU 142 stores the touch coordinate data acquired according to the operation detection program 342b in the RAM 144 according to time series. However, as described above, when a hardware button is provided or when a hardware keyboard is connected, the input of the button or key is also detected according to the operation detection program 342b.

  The key generation program 342c is a program for generating a public key and a secret key corresponding to the public key.

  The transmission program 342d is a program for transmitting data such as public key data 344c to the server 12. However, at the time of transmission, the communication program 342a is executed.

  The reception program 342e is also a program for receiving the code image data 324b transmitted from the server 12, data about encryption information, and the like. However, at the time of reception, the communication program 342a is executed.

  The display program 342f is a program for generating display image data, that is, screen data such as the home screen 100 and the login screen 120 described above, using image generation data 344b described later, and outputting the screen data to the display 152.

  The determination program 342g is a program for accessing the storage unit of the server 12 at a predetermined cycle and determining whether or not the first information including the same public key as the verification public key exists. However, when accessing the storage unit of the server 12, the communication program 342a is executed.

  When it is determined that there is first information including the same public key as the verification public key, the transmission request program 342h designates the encrypted information included in the first information and transmits the encrypted information. It is a program for transmitting a request signal to the server 12. However, when the transmission request signal is transmitted, the communication program 342a is executed.

  The decryption program 342i is a program for decrypting the encrypted information received according to the reception program 342e with the secret key generated according to the key generation program 342c.

  Although illustration is omitted, the program storage area 342 also stores an image reading program, an image forming program, and the like. The image reading program is a program for controlling the image reading unit 156 to read an image of a document and to output an image signal (image data) corresponding to the read image. The image forming program is a program for controlling the image forming unit 154 to print a multicolor or single color image on a sheet. The program storage area 342 also stores an authentication program for performing user authentication, a program for selecting and executing various functions provided in the image forming apparatus 14, and the like.

  Further, operation input data 344a, image generation data 344b, public key data 344c, secret key data 344d, encoded image data 344e, decrypted data 344f, and the like are stored in the data storage area 344 of the RAM 144.

  The operation input data 344a is data in which touch coordinate data detected according to the operation detection program 342b is stored in time series. However, the operation input data 344a may include operation data for hardware buttons or keys.

  The image generation data 344b is data such as polygon data or texture data for generating display image data corresponding to various screens displayed on the display 152.

  The public key data 344c is data about the public key generated by the key generation program 342c. The secret key data 344d is data on the secret key generated by the key generation program 342c.

  The code image data 344e is data corresponding to the code image data 324b transmitted from the server 12.

  The decrypted data 344f is data obtained by decrypting the encrypted information according to the decryption program 342i. In the first embodiment, the decrypted data 344f is authentication information of a user who uses the user terminal 200.

  Although not shown, the data storage area 344 stores other data necessary for executing the information processing program for the image forming apparatus 14 or is necessary for executing the information processing program for the image forming apparatus 14. A timer (counter) and a register are provided.

  FIG. 14 is a flowchart showing an example of information processing executed by the CPU 142 of the image forming apparatus 14 shown in FIG. This information processing is started when the login icon 102 is touched by the user.

  As shown in FIG. 14, when the information processing is started, the CPU 142 of the image forming apparatus 14 generates a public key and a secret key in step S1, and transmits a public key for verification to the server 12 in step S3. Subsequently, in step S5, the code image 124 transmitted from the server 12 is received. In step S7, the code image 124 is displayed on the display 152, and the process proceeds to step S9.

  In step S9, the storage unit of the server 12 is accessed. In step S11, it is determined whether or not the first information including the same public key as the public key for verification exists in the storage unit of the server 12. If “NO” in the step S11, that is, if there is no first information including the same public key as the collation public key, the process waits for a predetermined time and returns to the step S9.

  On the other hand, if “YES” in the step S11, that is, if there is the first information including the same public key as the public key for verification, the same public key as the public key for verification is stored in the server in a step S13. The transmission request of the encryption information included in the first information including Subsequently, in step S15, the encrypted information is received, and in step S17, the encrypted information is decrypted with the secret key generated in step S1.

  In subsequent step S19, the information decrypted in step S17 is used to execute a predetermined process such as user authentication, and the information processing is terminated.

  Next, information processing executed by the CPU 202 of the user terminal 200 will be described. FIG. 15 is a flowchart showing an example of information processing of the CPU 202 of the user terminal 200 shown in FIG. This information processing is started when the login icon 132a is touched by the user.

  As shown in FIG. 15, when the information processing is started, the CPU 202 of the user terminal 200 displays a confirmation window 134 on the display 212 in step S31, and determines whether shooting is permitted in step S33. Here, it is determined which of the “Yes” button 134a or “No” button 134b displayed in the confirmation window 134 is touched.

  If “NO” in the step S33, that is, if photographing is not permitted, the information processing is ended. On the other hand, if “YES” in the step S33, that is, if photographing is permitted, the camera 214 is activated to start photographing in a step S35, and the preview window 136 is displayed on the display 212 in a step S37. In step S39, it is determined whether the code image 124 is captured.

  If “NO” in the step S39, that is, if the code image 124 is not photographed, the process returns to the step S37. On the other hand, if “YES” in the step S39, that is, if the code image 124 is photographed, the code image 124 is decrypted and a public key is obtained in a step S41.

  Subsequently, in step S43, predetermined sending information is read out, and in step S45, the sending information is encrypted with the public key acquired in step S41 to generate encrypted information.

  In step S47, the first information including the public key and the encrypted information encrypted with the public key is transmitted to the server 12, and the information processing is terminated.

  Next, information processing executed by the CPU 12a of the server 12 will be described. FIG. 16 is a flowchart showing an example of information processing of the CPU 12a of the server 12 shown in FIG.

  As shown in FIG. 16, when the information processing is started, the CPU 12a of the server 12 determines whether or not the collation public key transmitted from the image forming apparatus 14 has been received in step S51. If “NO” in the step S51, that is, if the public key for verification is not received, the process returns to the same step S51. On the other hand, if “YES” in the step S51, that is, if a public key for collation is received, the public key for collation is stored in the storage unit of the server 12 in a step S53, and the collation is performed in a step S55. The code image 124 in which the information about the public key is embedded is generated.

  Subsequently, in step S57, the code image 124 is transmitted to the image forming apparatus 14, and in step S59, it is determined whether or not the first information transmitted from the user terminal 200 is received. If “NO” in the step S59, that is, if the first information is not received, the process returns to the same step S59. On the other hand, if “YES” in the step S59, that is, if the first information is received, the first information is stored in the storage unit of the server 12 in a step S61, and is included in the first information in a step S63. It is determined whether there is a request to send encrypted information.

  If “NO” in the step S63, that is, if there is no request for transmitting encrypted information, the process returns to the same step S63. On the other hand, if “YES” in the step S63, that is, if there is a request for transmitting encrypted information, the specified encrypted information is transmitted to the image forming apparatus 14 in a step S65, and transmitted in a step S67. The first information including the encrypted information and the public key for verification that is the same as the public key included in the first information are deleted, and the information processing ends.

  As described above, each example of the information processing executed by the CPU 142 of the image forming apparatus 14, the information processing executed by the CPU 202 of the user terminal 200, and the information processing executed by the CPU 12a of the server 12 has been described. There is no need to be limited to. For example, depending on the content of the processing in step S19 in the information processing of the image forming apparatus 14, processing other than the processing described above may be executed. For example, when user authentication is executed in step S19, the image forming apparatus 14 and the server 12 may cooperate to execute user authentication. In addition, the user terminal 200, the image forming apparatus 14, and the server 12 may cooperate to execute processing for notifying the user whether or not user authentication has been successful.

  According to the first embodiment, the image forming apparatus 14 generates a public key and a secret key, and the user terminal 200 generates encrypted information obtained by encrypting predetermined sending information with the public key. However, since it is transmitted / received via a network, information can be transmitted / received safely. For this reason, according to the first embodiment, highly confidential information can be transmitted and received safely.

  Further, according to the first embodiment, only by reading the code image 124 by the user terminal 200, the predetermined sending information is encrypted and transmitted to the image forming apparatus 14, so that the user's trouble can be reduced as much as possible. And can easily send and receive information.

  In the first embodiment, the server 12 generates the code image 124. However, the present invention is not limited to this. The image forming apparatus 14 may generate the code image 124. In such a case, the process of transmitting the code image data 324b from the server 12 to the image forming apparatus 14 ((2) in FIG. 4) is omitted.

  In the first embodiment, the case where user authentication is performed has been described as an example. However, the present invention can also be applied to other processes. For example, the present invention can be applied to processing for registering (transmitting) data (job data) about a job in the image forming apparatus 14. However, the job data may be image data such as print image data used for printing and transmission image data used for fax transmission, or data regarding control signals that cause the image forming apparatus 14 to perform scanning or copying. May be.

  FIG. 17 is an illustrative view showing one example of a job selection screen 180 in a modified example. After reading the code image 124 (after (4) in FIG. 4), the user terminal 200 displays a job selection screen 180 on the display 212 for allowing the user to select job data (corresponding to sending information). .

  As shown in FIG. 17, the job selection screen 180 displays images of a plurality of software keys (icons) 182 assigned to various jobs that can be executed by the image forming apparatus 14. When any icon 182 is touched, a setting screen for each job corresponding to the touched icon 182 is displayed. Although illustration is omitted, on the setting screen, setting of the selected job (for example, selection of print data) is performed in accordance with a user operation. When the job setting is completed, the job data is encrypted in the user terminal 200, and encrypted information obtained by encrypting the job data is transmitted to the image forming apparatus 14 via the server 12 ((5) to ((5) in FIG. 4). Equivalent to 8)). The image forming apparatus 14 decrypts the encrypted information to acquire job data, and executes a predetermined job (corresponding to a predetermined process) based on the job data.

  Furthermore, the present invention is also applicable to (workflow) processing that causes the image forming apparatus 14 to execute a plurality of operations. FIG. 18 is an illustrative view showing one example of a scan setting screen 190 in a modified example. For example, when an icon 182 corresponding to a scan job is touched on the job selection screen 180, a scan setting screen 190 is displayed on the display 212.

As shown in FIG. 18, the scan setting screen 190 is a screen for setting a scan job. On the scan setting screen 190, a file name, a color mode, a document size, a scan data storage destination (destination), and the like can be set. Here, the storage destination of the scan data may be set in an external terminal such as a cloud storage or another user terminal 200. In this case, workflow data (corresponding to sending information) including a control signal for causing the image forming apparatus 14 to execute a scan and a control signal for transmitting the scan data to a designated storage destination is encrypted from the user terminal 200. It is transmitted to the image forming apparatus 14. The image forming apparatus 14 decrypts the encrypted information to acquire workflow data, executes a scan based on the workflow data, and transmits the scan data to a designated storage destination. In this case, a series of processes executed by the image forming apparatus 14 corresponds to a predetermined process.
[Second Embodiment]
The information processing system 10 according to the second embodiment is the same as the first embodiment except that a display device (corresponding to an information processing device) 16 is included instead of the image forming device 14. Different contents will be explained, and duplicate explanations will be omitted.

  FIG. 19 is a diagram illustrating an example of the configuration of the information processing system 10 according to the second embodiment. FIG. 20 is a block diagram showing an electrical configuration of the display device 16 shown in FIG.

  As illustrated in FIG. 19, the information processing system 10 includes a display device 16, and the server 12 is connected to the display device 16 through a network so as to be communicable.

  The display device 16 is an electronic blackboard and an information display. The electronic blackboard is also called an interactive whiteboard (IWB) or an electronic whiteboard. The display device 16 may be a multi-display device including a plurality of display devices.

  Referring to FIG. 20, display device 16 includes a CPU 162. A RAM 164, a touch panel control circuit 166, a display control circuit 168, and a communication circuit 158 are connected to the CPU 162 via the bus 160. A touch panel 170 is connected to the touch panel control circuit 166, and a display 172 is connected to the display control circuit 168. Note that the configuration itself of these components included in the display device 16 is the same as that of the image forming apparatus 14 described above, and a description thereof will be omitted.

  However, in the display device 16, a pointing device such as a computer mouse, a touch pad, or a pen tablet may be used as input means other than the touch panel 170. The display device 16 may be provided with a hardware key such as an operation panel or a hardware keyboard as other input means.

  In the information processing system 10 including such a display device 16, for example, display content (corresponding to sending information) stored in the storage unit of the user terminal 200 is transmitted to the display device 16 and displayed on the display device 16. Display content addition processing (corresponding to predetermined processing) for adding content may be performed. However, the display content is a still image or video (moving image) to be displayed on the display device 16. The display content also includes text data included in a still image or video.

  When the display content addition process is performed, the user terminal 200 reads the code image 124 (after (4) in FIG. 4), and then selects a display screen for allowing the user to select display content to be added ( (Not shown) is displayed on the display 212. When the display content is selected, the display content is encrypted in the user terminal 200 to generate encrypted information, and the encrypted information is transmitted to the display device 16 via the server 12 ((5) to ( Equivalent to 8)). The display device 16 acquires the display content by decrypting the encrypted information.

  When the display device 16 is an electronic blackboard, image data distribution processing for distributing (distributing) image data (corresponding to sending information) created by the display device 16 to the user terminal 200 by e-mail or the like. (Corresponding to a predetermined process) may be performed. For example, in a meeting or a meeting, a handwritten image in which the contents of the proceedings are written on the board using the display device 16 may be distributed to the user terminal 200 as minutes.

  When such image data distribution processing is performed, the display device 16 designates image data to be distributed. Then, the code image 124 in which the information about the designated image data is embedded is displayed on the display 172 (corresponding to (3) in FIG. 4). After reading the code image 124 (after (4) in FIG. 4), the user terminal 200 displays a destination setting screen (not shown) for setting the distribution destination of the designated image data on the display 212. . For example, a destination input field is displayed on the destination setting screen. In the destination input field, distribution destination information such as an e-mail address for each distribution destination to which image data is distributed is input. However, when the delivery destination information as the delivery destination is stored in the user terminal 200 in advance, an icon or the like for selecting the delivery destination may be displayed.

  When the delivery destination of the image data is set, the delivery destination information is encrypted in the user terminal 200, and the encrypted information obtained by encrypting the delivery destination information is transmitted to the display device 16 via the server 12 (FIG. 4). (Corresponding to (5) to (8)). The display device 16 decrypts the encrypted information to acquire data of distribution destination information, and transmits the image data designated as the distribution destination indicated by the distribution destination information.

  According to the second embodiment, as in the first embodiment, information can be transmitted and received safely and easily.

  In the second embodiment, the case where the display content is transmitted from the user terminal 200 to the display device 16 and the case where the image data is transmitted from the display device 16 to the user terminal 200 are described as examples. Can be applied to other processes. For example, the present invention can be applied to user authentication as in the first embodiment. In this case, authentication information of the user who uses the user terminal 200 is transmitted from the user terminal 200 to the display device 16 via the server 12. The display device 16 (or the server 12) performs user authentication based on the received authentication information. In this way, highly confidential information such as user authentication information can be transmitted and received safely and easily.

The present invention can also be applied to processing for transmitting display content or data such as image data stored in the server 12 to the display device 16 after user authentication. In this case, instruction information indicating data such as display content or image data stored in the server 12 is transmitted from the user terminal 200 to the server 12. Data corresponding to the instruction information is transmitted from the server 12 to the display device 16. In this way, information can be transmitted and received safely and easily.
[Third embodiment]
The information processing system 10 according to the third embodiment is the same as the first embodiment except that the server 12 determines whether there is first information including the same public key as the public key for verification. The contents different from those of the first embodiment will be described, and redundant description will be omitted.

  In the third embodiment, when the image forming apparatus 14 transmits the public key for verification to the server 12, the image forming apparatus 14 transmits the destination information together with the public key for verification to the server 12 in association with the public key for verification. (Corresponding to (1) in FIG. 4). The server 12 registers the public key for verification and the destination information of the image forming apparatus 14 associated with the public key for verification.

  Further, when the server 12 receives the first information (corresponding to (5) in FIG. 4), the public key for collation same as the public key included in the first information is stored in the storage unit of the server 12. Determine whether or not. When the server 12 determines that the same public key for verification as the public key included in the first information is stored in the storage unit of the server 12, the server 12 converts the encrypted information included in the first information for verification. Is transmitted to the image forming apparatus 14 according to the destination information associated with the public key (corresponding to (8) in FIG. 4).

  In the third embodiment, the image forming apparatus 14 determines whether there is first information including the same public key as the public key for verification ((6) in FIG. 4), and the image forming apparatus 14. However, the process of transmitting the encrypted information transmission request to the server 12 ((7) in FIG. 4) is omitted.

  Hereinafter, the information processing in the third embodiment will be described with reference to the flowchart. The same processing as the information processing described in the first embodiment is denoted by the same reference numeral, and the description of the duplicated contents is omitted. Will be or briefly explained. Note that the information processing executed in the user terminal 200 is the same as that in the first embodiment, and thus a duplicate description is omitted.

  FIG. 21 is a flowchart showing an example of information processing of the CPU 142 of the image forming apparatus 14 in the third embodiment. As shown in FIG. 21, when the information processing is started, the CPU 142 of the image forming apparatus 14 displays the code image 124 on the display 152 in step S7, and determines whether or not the encryption information is received in step S81. . If “NO” in the step S81, that is, if the encrypted information is not received, the process returns to the same step S81.

  On the other hand, if “YES” in the step S81, that is, if the encrypted information is received, the process proceeds to a step S17 to decrypt the encrypted information with the secret key generated in the step S1.

  Note that the contents of the processing up to step S7 and the processing after step S17 are the same as those in the first embodiment, and thus the description thereof is omitted.

  Next, information processing executed by the CPU 12a of the server 12 will be described. FIG. 22 is a flowchart showing an example of information processing of the CPU 12a of the server 12 in the third embodiment. As shown in FIG. 22, when starting the information processing, the CPU 12a of the server 12 stores the first information in the storage unit of the server 12 in step S61, and in step S91, the public key included in the first information It is determined whether the same public key for verification exists. If “NO” in the step S91, that is, if there is no matching public key as the public key included in the first information, the process returns to the same step S91.

  On the other hand, if “YES” in the step S91, that is, if there is a collation public key that is the same as the public key included in the first information, the process proceeds to a step S65, and the encryption designated by the image forming apparatus 14 is performed. Send information.

  Note that the contents of the processing up to step S61 and the processing after step S65 are the same as those in the first embodiment, and the description thereof will be omitted.

  According to the third embodiment, information can be transmitted and received safely and easily as in the first embodiment.

  In the third embodiment, the image forming apparatus 14 transmits the destination information to the server 12 in association with the public key for verification. However, the present invention is not limited to this. For example, when the server 12 stores (manages) destination information of the image forming apparatus 14 in advance, device identification information for specifying the image forming apparatus 14 is received from the image forming apparatus 14 instead of the destination information. It may be transmitted to the server 12. In this case, the server 12 reads the destination information of the image forming apparatus 14 according to the apparatus identification information, and determines the transmission destination of the encryption information.

  Further, the aspect shown in the third embodiment can be employed in combination with the second embodiment.

  Note that the screens, specific configurations, and the like given in the above-described embodiments are examples, and can be changed as appropriate according to actual products. Moreover, as long as the same result is obtained for each step of the flowchart shown in the above-described embodiment, the processing order can be changed as appropriate.

DESCRIPTION OF SYMBOLS 10 ... Information processing system 12 ... Server 14 ... Information processing apparatus 200 ... User terminal

Claims (14)

An information processing system including a mobile terminal, a server, and an information processing device,
The information processing apparatus includes:
Display means for displaying a code image embedded with a public key on a display; and first transmission means for transmitting the public key to the server as a public key for verification,
The portable terminal is
Obtaining means for obtaining the public key from the code image displayed on the display;
Including first generation means for generating encrypted information obtained by encrypting predetermined sending information with the public key acquired by the acquisition means, and the encrypted information generated by the first generation means and the public key Second transmission means for transmitting first information to the server;
The server
First receiving means for receiving the public key for verification transmitted from the information processing apparatus;
Second receiving means for receiving the first information transmitted from the portable terminal;
Storage means for storing the public key for verification received by the first receiving means and the first information received by the second receiving means; and the information processing apparatus that stores the encrypted information included in the first information. An information processing system comprising third transmitting means for transmitting to the information processing system. A determination unit that determines whether or not the first information including the same public key as the public key for verification exists in the storage unit of the server; and the determination unit matches the public key for verification The transmission control means for causing the third transmission means to transmit the encrypted information included in the first information when it is determined that the first information including the public key exists. Information processing system. The information processing apparatus includes the determination unit and the transmission control unit,
The determination means accesses the storage means of the server and determines whether or not the first information including the same public key as the public key for verification exists in the storage means,
When the determination unit determines that the first information including the public key that matches the public key for verification exists, the transmission control unit includes the encryption included in the first information in the server. The information processing system according to claim 2, wherein the information transmission request is made.   The information processing system according to claim 2, wherein the server includes the determination unit and the transmission control unit.   The information processing apparatus includes: a second generation unit configured to generate the public key and a secret key corresponding to the public key; a third reception unit configured to receive the encrypted information transmitted from the server; and the third reception unit. 5. The information processing system according to claim 1, further comprising decryption means for decrypting the encrypted information received in step 1 with the secret key. The portable terminal further includes photographing means for photographing the code image,
The information processing system according to claim 1, wherein the acquisition unit acquires the public key by decoding the code image captured by the imaging unit. The server includes third generation means for generating the code image based on the public key received by the first reception means,
The information processing system according to claim 1, wherein the third transmission unit transmits the code image generated by the third generation unit to the information processing apparatus.   The information processing system according to claim 1, wherein the information processing apparatus includes a third generation unit that generates the code image in which the public key is embedded. An information processing apparatus used in an information processing system and communicably connected to a server included in the information processing system,
Display means for displaying a code image in which a public key is embedded on a display;
First transmission means for transmitting the public key to the server as a public key for verification;
A determination unit that accesses the storage unit of the server and determines whether the storage unit includes encrypted information associated with the same public key as the public key for verification; and the determination unit When it is determined that the encrypted information associated with the same public key as the collation public key is present, the server includes a transmission control unit that makes a transmission request for the encrypted information. apparatus. A control program for an information processing apparatus that is used in an information processing system and is communicably connected to a server included in the information processing system,
A processor of the information processing apparatus;
Display means for displaying a code image in which a public key is embedded on a display;
First transmission means for transmitting the public key to the server as a public key for verification;
A determination unit that accesses the storage unit of the server and determines whether the storage unit includes encrypted information associated with the same public key as the public key for verification; and the determination unit A control that causes the server to function as a transmission control unit that makes a transmission request for the encrypted information when it is determined that the encrypted information associated with the same public key as the public key for verification exists. program. A processor of an information processing apparatus that is used in an information processing system and is communicably connected to a server included in the information processing system,
(A) displaying a code image embedded with a public key on a display;
(B) transmitting the public key to the server as a public key for verification;
(C) accessing the storage means of the server and determining whether or not there is encryption information associated with the same public key as the public key for verification in the storage means; and (d) ) When it is determined in step (c) that the encrypted information associated with the same public key as the verification public key exists, a request to send the encrypted information to the server Execute the control method. A portable terminal used in an information processing system including an information processing device and a server, connected to the server so as to be able to communicate, and capable of transmitting and receiving information to and from the information processing device via the server,
Obtaining means for obtaining a public key from a code image displayed on a display of the information processing apparatus;
Including first generation means for generating encrypted information obtained by encrypting predetermined sending information with the public key acquired by the acquisition means, and the encrypted information generated by the first generation means and the public key A mobile terminal comprising second transmission means for transmitting first information to the server. A control program for a portable terminal that is used in an information processing system including an information processing device and a server, is communicably connected to the server, and can transmit and receive information to and from the information processing device via the server,
A processor of the portable terminal;
Obtaining means for obtaining a public key from a code image displayed on a display of the information processing apparatus;
Including first generation means for generating encrypted information obtained by encrypting predetermined sending information with the public key acquired by the acquisition means, and the encrypted information generated by the first generation means and the public key A control program that functions as a second transmission unit that transmits first information to the server. A processor of a portable terminal that is used in an information processing system including an information processing device and a server, is communicably connected to the server, and can transmit and receive information to and from the information processing device via the server.
(A) obtaining a public key from a code image displayed on the display of the information processing apparatus;
(B) generating encrypted information obtained by encrypting predetermined sending information with the public key acquired in the step (a); and (c) the encrypted information generated in the step (b) and The control method which performs the step which transmits the 1st information containing the public key to the server.

Images