JP2019128821A - Terminal device, terminal device control method, program, file sharing system, and file sharing system control method - Google Patents

Abstract

To provide a terminal device, a terminal device control method, a program, a file sharing system, and a file sharing system control method, for which security is enhanced.SOLUTION: A file sharing system 100 includes a terminal device 20 connected to a storage device 10 storing files via a network. The terminal device 20 comprises a control unit 22, a communication unit 21, a display unit 23 and an input unit 24. When a first instruction for causing the storage device to enable a shared service is inputted to an input unit, the control unit transmits an unlocking signal including a first key to the storage device via the communication unit on the basis of the first instruction. When folder information for displaying a window is received from the storage device having received the unlocking signal including the first key, the control unit causes a window to be displayed by the display unit on the basis of the folder information. When it is determined that the shared service is disabled, the control unit closes the displayed window.SELECTED DRAWING: Figure 3

Description

  The present invention relates to a terminal device connected to a storage device storing a file via a network, a control method of the terminal device, a program, a file sharing system, and a control method of the file sharing system.

  2. Description of the Related Art Conventionally, there is a file sharing system including a server device having a so-called shared folder that can be accessed from a plurality of users on a network.

  In such a file sharing system, when the user operates the terminal device to log on to the server device and accesses a shared folder provided in the server device, the shared folder is displayed on the terminal device operated by the user Thus, the user can check the shared folder.

  Some files in the shared folder are not desired to be viewed by users other than the user himself or a user other than the group to which the user belongs, and access rights can be set for the shared folder (for example, patents). Reference 1).

  A network system, which is an example of a file sharing system described in Patent Document 1, includes storage means for setting an access right to a terminal device operated by a user and storing a file. When the storage means is accessed from the terminal device, the display means of the terminal device displays the folder having the access right in the terminal device and the folder without the access right in different states.

  By this, the user can grasp the presence or absence of the access right to the folder only by visually recognizing the folder displayed on the display means.

JP 2004-110459 A

  In the network system described in Patent Document 1, after the terminal device logs on to the storage means for storing the file, the terminal device itself shuts off the connection with the storage means or does not access the storage means for a predetermined time or more. It is disclosed that it will be a logoff.

  However, Patent Document 1 does not describe, for example, how a shared file is displayed when a terminal device displaying a shared file in a shared folder logs off. For example, if a shared file whose access is restricted is continued to be displayed even after the terminal device logs off, the user may be misunderstood that the shared file is in an accessible state.

  In addition, even though the shared folder can not be accessed, continuing to display the shared file in the shared folder on the display means of the terminal device is a risk that a third party other than the user can see the shared file. There are also problems in terms of security.

  Therefore, the present invention has been made in view of the above problems, and provides a terminal device, a file sharing system, and the like with enhanced security.

  In order to achieve the above object, a terminal device according to an aspect of the present invention is a terminal device connected to a storage device storing a file via a network, and the storage device via the network A communication unit to communicate, an input unit to which an instruction to be executed by the terminal device is input, a display unit to display a window of a folder to which the file belongs, and the storage device sharing service of the folder on the network And a control unit that controls the communication unit, the input unit, the display unit, and the memory unit. The control unit is configured to: When a first instruction that is an instruction to enable the shared service to the storage device is input to the input unit, the first instruction is input based on the first instruction. By transmitting an unlock signal including the first key stored in the memory unit via the communication unit, folder information for displaying the window from the storage device via the communication unit is displayed. When it is received, the window is displayed on the display unit based on the folder information, and when it is determined that the shared service is invalidated, the display of the window is deleted.

  According to this, when it is determined that the shared service is disabled, the terminal device (specifically, the control unit) deletes the display of the security folder window displayed on the display unit, for example, the window is displayed. close up. Thereby, since it can suppress that the window of a security folder continues being displayed on a display part, security is strengthened.

  In the terminal device according to one aspect of the present invention, the control unit is configured to receive the shared service when a second command, which is a command to cause the storage device to invalidate the shared service, is input to the input unit. It may be determined to be invalidated, a locking signal instructing to stop providing the shared service may be transmitted via the communication unit, and the display of the window may be deleted.

  According to this, even when the user forgets to close the security folder window, the control unit automatically closes the security folder window displayed on the display unit. Thereby, since it can suppress that the window of a security folder continues being displayed on a display part, security is strengthened.

  In the terminal device according to an aspect of the present invention, when the control unit receives an invalid signal indicating that the shared service is invalidated from the storage device, the shared service is invalidated. And the display of the window may be deleted.

  According to this, for example, when the control unit receives an invalidation signal from the storage device, the control unit automatically closes the window of the security folder displayed on the display unit. Thereby, since it can suppress that the window of a security folder continues being displayed on a display part, security is strengthened.

  In the terminal device according to an aspect of the present invention, the control unit checks whether the shared service is enabled in the storage device when the storage device is not accessed for a predetermined threshold time or longer. When the confirmation signal is transmitted and the invalid signal is received, it may be determined that the shared service has been invalidated, and the display of the window may be deleted.

  According to this, when the user does not use the terminal device for more than a threshold time, for example, the control unit causes the storage device to transmit a confirmation signal for confirming whether the shared service is activated or not, the communication unit Send through. Further, when the control unit receives the invalidation signal transmitted from the storage apparatus via the communication unit, the control unit automatically closes the security folder window displayed on the display unit. Thereby, since it can suppress more that the window of a security folder continues being displayed on a display part, security is strengthened more.

  Further, in the terminal device according to one aspect of the present invention, the storage device includes a security folder in which a shared service is activated only when the first key is received, and sharing without receiving the first key. A normal shared folder in which the service is enabled is stored, and the control unit creates an access list that lists the accessed folders among the folders stored in the storage device, When it is determined that the shared service is disabled, the access list created is referred to, and if the folder window displayed on the display unit is the security folder window, the window is closed. It is also good.

  According to this, when the terminal device determines whether the shared folder displayed on the display unit is a security folder, it is not necessary to check the storage device each time. Therefore, the control unit can easily determine whether or not the shared folder displayed on the display unit is a security folder.

  In the terminal device according to one aspect of the present invention, the folder information further includes deletion information in which it is determined whether the display of the window is to be deleted when the provision of the shared service is stopped. If the control unit determines that the shared service has been invalidated, the control unit determines whether to delete the display of the window based on the deletion information, and the folder deletes the display of the window The window may be closed when it is determined that it is an object to be performed.

  According to this, the control unit can select whether to close or not close the window of the security folder based on a predetermined setting. Therefore, the convenience of the terminal device is improved.

  In the terminal device according to one aspect of the present invention, when the control unit determines that the shared service is invalidated, whether or not the path of the window matches the path of the security folder If it is determined that it is determined that the path of the window matches the path of the security folder, the window may be closed.

  According to this, when the display of the window that has opened the security folder is shifted to the display of the folder in the terminal device, the folder can be displayed on the display unit regardless of whether the storage device is accessible. . Therefore, such a folder does not have to be in a state where it is not clear to the user whether or not the folder is displayed in an accessible state, and it is less necessary to close the window of the folder. As described above, since the window of the shared folder displayed on the display unit is not closed unnecessarily, the decrease in convenience of the terminal device can be suppressed.

  It is sufficient that the path matches from the root to the security folder path. When the subfolder in the security folder or the subfolder below it is opened, the whole path does not match. However, these subfolders should be protected as well, so if the path to the security folder matches, the window will be closed when the sharing service is disabled. Also, when the lower layer subfolder is opened in another window, it is preferable not only to close the original window but also to close the other window.

  Further, in the terminal device according to one aspect of the present invention, the memory unit has a plurality of different filer programs for causing the display unit to display the window, and the control unit instructs a filer program to be used. When a third command to be input is input to the input unit, one filer program is selected from the plurality of filer programs based on the third command, and the selected filer program is used to A window may be displayed on the display unit.

  According to this, since the window of the shared folder stored in the storage device can be displayed on the display unit by the filer program meeting the user's preference, the convenience is improved.

  A file sharing system according to an aspect of the present invention includes the terminal device and the storage device, and the storage device is configured to share information for sharing a folder to which the file belongs on the network. It is stored in association with two keys, and when the unlock signal including the first key is received from the terminal device, it is determined whether or not the received first key matches the second key When it is determined that the first key and the second key match, the shared service is activated using the shared information, and the folder information of the folder is transmitted to the terminal device. Do.

  According to this, the same effect as the terminal device can be obtained.

  Note that these general or specific aspects may be realized by a system, a method, an integrated circuit, a computer program, or a recording medium such as a computer readable CD-ROM, a system, a method, an integrated circuit, a computer program And any combination of recording media.

  In addition, the present invention can be realized not only as a terminal device and a file sharing system, but also as a method using steps of processing units constituting the terminal device and the file sharing system. The present invention may also be realized as a program that causes a computer to execute the above steps. The present invention may also be realized as a recording medium such as a CD-ROM readable by a computer having the program recorded thereon. Further, the present invention may be realized as information, data, or a signal indicating the program. These programs, information, data, and signals may be distributed via a communication network such as the Internet.

  According to the terminal device and the file sharing system according to one aspect of the present invention, security is enhanced.

The figure which shows the structure of the file sharing system containing the terminal device which concerns on embodiment The figure which shows the hardware constitutions of the terminal device which concerns on embodiment The block diagram which shows the characteristic function structure of the file sharing system which concerns on embodiment The sequence diagram which shows the operation | movement procedure which sets a security folder in the sharing service which the file sharing system which concerns on embodiment performs The sequence diagram which shows the operation | movement procedure at the time of using the shared folder which is not the security folder stored in the storage device by the terminal device which concerns on embodiment A sequence diagram showing an operation procedure when the terminal apparatus according to the embodiment fails to use the security folder stored in the storage apparatus The sequence diagram which shows the operation | movement procedure at the time of using the security folder stored in the storage apparatus by the terminal device which concerns on embodiment A sequence diagram showing a first example of an operation procedure when the terminal device according to the embodiment stops using the security folder stored in the storage device The sequence diagram which shows the 2nd example of the operation | movement procedure when the terminal device which concerns on embodiment stops utilization of the security folder stored in the storage apparatus A sequence diagram showing a third example of an operation procedure when the terminal device according to the embodiment stops using the security folder stored in the storage device. The flowchart which shows the operation | movement procedure which determines whether the terminal device which concerns on embodiment closes the window of a security folder Figure showing an example of a security folder window Diagram showing an example of the window of the storage unit The figure which shows an example of the access list which the terminal device which concerns on embodiment manages The figure which shows an example of the screen displayed when sharing setting of the folder The figure which shows an example of the share setting table which the storage apparatus which concerns on embodiment manages The figure which shows an example of the screen displayed on a terminal device when using a security folder

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. Note that each of the embodiments described below shows a specific example of the present invention. Numerical values, shapes, materials, components, arrangement positions and connection forms of components, steps, order of steps, and the like shown in the following embodiments are merely examples, and are not intended to limit the present invention. The present invention is limited only by the claims. Therefore, among the components in the following embodiments, components that are not described in the independent claims indicating the highest concept of the present invention are described as optional components.

  Each figure is a schematic view, and is not necessarily illustrated strictly. Further, in the drawings, substantially the same configurations are denoted by the same reference numerals, and overlapping descriptions may be omitted or simplified.

Embodiment
[Constitution]
First, configurations of a terminal device 20 and a file sharing system 100 according to the embodiment will be described with reference to FIGS. 1 to 3.

  FIG. 1 is a diagram illustrating a configuration of a file sharing system 100 including a terminal device 20 according to an embodiment. FIG. 2 is a diagram illustrating a hardware configuration of the terminal device 20 according to the embodiment. FIG. 3 is a block diagram showing a characteristic functional configuration of the file sharing system 100 according to the embodiment.

  The file sharing system 100 shown in FIG. 1 includes NAS (Network Attached Storage) 10a which is an example of the storage device 10 shown in FIG. 2 and PCs (Personal Computers) 20a to 20c which are an example of the terminal device 20 shown in FIG. And

  The NAS 10 a is communicably connected to the PCs 20 a to 20 c via a network, and includes storages such as HDDs (Hard Disk Drives) in which so-called shared files, which can be accessed by the PCs 20 a to 20 c, are stored. Although FIG. 1 shows a LAN (Local Area Network) as an example of a network, it may be the Internet or the like, and is not particularly limited.

  The NAS 10a includes a wired LAN adapter 11a, a wireless LAN module 11b, an HDD_A 12a, an HDD_B 12b, a RAID (Redundant arrays of inexpensive disks) module 12d, an SD card 12e, an SD card connector 12f, and an SoC (System on Chip) 13a and DDR SDRAM (Double-Data-Rate Synchronous Dynamic Random Access Memory) 13b.

  The wired LAN adapter 11a is an example of the communication unit 11, and is an adapter that communicates with the PCs 20a and 20b. The wired LAN adapter 11a is connected to the PCs 20a and 20b by communication lines. The communication method between the wired LAN adapter 11a and the PCs 20a and 20b is not particularly limited. For example, communication may be performed using a communication method such as IEEE 802.3 or Ethernet (registered trademark).

  The wireless LAN module 11b is an example of the communication unit 11, and is a module that wirelessly communicates with the PC 20c. The communication method between the wireless LAN module 11b and the PC 20c is not particularly limited. For example, communication such as IEEE 802.11, IEEE 802.15.1, IEEE 802.15.4, Bluetooth (registered trademark), ZigBee (registered trademark), etc. It may communicate using a scheme.

  The HDD_A 12 a and the HDD_B 12 b are an example of the components of the storage unit 12, and are storage devices storing files (shared files) that can be shared by the PCs 20 a to 20 c and folders (shared folders) to which the files belong. In this embodiment, an HDD is shown as an example. In this embodiment, since files are shared in units of folders, a description will be given assuming that folders are shared.

  The RAID module 12d is an example of a component of the storage unit 12, and is a module that operates as a single virtual hard disk by combining a plurality of hard disks. In the present embodiment, the RAID module 12 d combines two HDDs, the HDD_A 12 a and the HDD_B 12 b, and performs mirroring processing to ensure redundancy.

  The SD card 12e is an example of a component of the storage unit 12, and is a flash memory that is detachably connected to the NAS 10a via the SD card connector 12f, and stores a control program and setting data.

  The SoC 13a is an example of a component of the control unit 13, and is an integrated circuit component having a processor that is read from the SD card 12e and executes a control program that has been expanded on the DDR SDRAM 13b in an executable manner.

  The DDR SDRAM 13 b is an example of a component of the control unit 13, and is a memory in which a control program executed by the SoC 13 a is stored. The control program includes a file sharing program, an http (hypertext transfer protocol) server program, a communication program, and the like.

  The PCs 20 a to 20 c are an example of the terminal device 20, and are computers operated by the user for viewing and changing shared files in the shared folder of the NAS 10 a.

  As shown in FIG. 2, the PC 20a includes an NIC (Network Interface Card) 21a, a CPU (Central Processing Unit) 22a, a chipset 22b, a display 23a, a mouse 24b, a keyboard 24a, an HDD 25a, and a DDR SDRAM 26a. With.

  The NIC 21a is an example of the communication unit 21, and is hardware for communicating with the NAS 10a. The NIC 21 a is hardware for performing wired communication with the NAS 10 a in the PCs 20 a and 20 b. The PC 20 c is further provided with a wireless LAN module (not shown), and this wireless LAN module is hardware for communicating with the NAS 10 a.

  The CPU 22a is an example of a component of the control unit 22, and is a processor that executes a control program stored in the DDR SDRAM 26a.

  The chip set 22b is an example of a component of the control unit 22, and is an integrated circuit for connecting peripheral devices such as the NIC 21a, the mouse 24b, the keyboard 24a, the HDD 25a, and the CPU 22a.

  The display 23a is an example of the display unit 23, and is a display device that displays a screen.

  The mouse 24b and the keyboard 24a are examples of the input unit 24, and are input devices that are operated by a user and input processing commands to be executed by the PC 20a.

  The HDD 25 a is an example of the storage unit 25, and is a storage device in which the PC 20 a stores data such as folders and files.

  The DDR SDRAM 26a is an example of the memory unit 26, and is a memory in which a control program executed by the CPU 22a is stored.

  Further, the DDR SDRAM 26a stores a management application 26b, a filer program 26c, and an access list 26d.

  The management application 26b is an application for managing shared folders and shared files stored in the NAS 10a. For example, upon receiving information on a shared folder from the NAS 10a, the management application 26b stores the received information on the shared folder in the access list 26d.

  The filer program 26c is a program for accessing shared folders and shared files stored in the NAS 10a. Specifically, the filer program 26c is a GUI (Graphical User Interface) for operating folders and files stored in the HDD 25a, shared folders stored in the NAS 10a, and shared files. For example, the shared folder and the shared file stored in the NAS 10a are displayed on the display 23a by the filer program 26c.

  The access list 26d is a list storing shared folders being accessed among shared folders stored in the NAS 10a. The access list 26d stores, for example, the path of the shared folder address, folder name, etc. stored in the NAS 10a accessed by the PC 20a. A path means a network path indicating the location of a resource on the network. The shared folder path includes the shared name of the folder. For example, the network path is determined based on UNC (Universal Naming Convention).

  The components of the PCs 20b and 20c may be the same as those of the PC 20a. Further, the PCs 20a to 20c may not be PCs, but may be smart phones, tablet terminals, etc. that can communicate with the NAS 10a via a network.

  Also, in the file sharing system 100 shown in FIG. 1, three PCs 20a to 20c are connected to the NAS 10a via the LAN, but the number of PCs connected to the NAS 10a via the LAN is illustrated. Is not limited and may be two or four or more.

  As shown in FIG. 3, the file sharing system 100 according to the present embodiment includes a storage device 10 and a terminal device 20.

  The storage apparatus 10 functionally includes a communication unit 11, a storage unit 12, and a control unit 13.

  The communication unit 11 communicates with the terminal device 20 via a network.

  The storage unit 12 stores shared folders and shared files. The storage unit 12 also stores a key (second key) associated with shared information for sharing the shared folder to which the stored shared file belongs on the network.

  The control unit 13 controls the communication unit 11 and the storage unit 12. Specifically, when the communication unit 11 receives an unlock signal including a security key (first key) from the terminal device 20, the control unit 13 determines whether or not the received first key matches the second key. Determine if When it is determined that the first key and the second key match, the control unit 13 enables the shared service on the network of the shared folder using the shared information. The shared service refers to a service that provides use of a shared folder and a shared file belonging to the shared folder. More specifically, the shared service refers to a service that provides a folder in the storage unit 12 so as to be accessible to the terminal device as a shared folder. In this embodiment, a security folder and a normal shared folder are provided as shared folders. The security folder is a folder in which the shared service is activated only when the security key is received from the terminal device 20, and the ordinary shared folder is the shared service in which the security key is not received from the terminal device 20. Is a folder that has been

  Further, when the communication unit 11 receives a lock signal from the terminal device 20, or when there is no access for at least a threshold time set arbitrarily, the control unit 13 invalidates the shared service to the terminal device 20. The threshold time is not particularly limited, and may be, for example, 10 minutes, less than 10 minutes, or more than 10 minutes.

  Functionally, the terminal device 20 includes a communication unit 21, a control unit 22, a display unit 23, an input unit 24, a storage unit 25, and a memory unit 26.

  The communication unit 21 communicates with the storage apparatus 10 via a network.

  The input unit 24 receives an input of a command to be executed by the terminal device 20 by the user.

  The display unit 23 displays a window of a shared folder stored in the storage device 10.

  The storage unit 25 stores data such as folders and files that the terminal device 20 has.

  The memory unit 26 stores a first key for enabling the shared service on the network of the shared folder in the storage apparatus 10. The memory unit 26 stores a filer program 26c (see FIG. 2) for displaying a folder window. The control unit 22 creates a window of a folder based on the filer program 26c, and causes the display unit 23 to display the window. In the following description, displaying a folder in a window may be simply displaying a folder. The memory unit 26 may store a plurality of different filer programs 26c.

  The control unit 22 controls the communication unit 21, the input unit 24, the display unit 23, the storage unit 25, and the memory unit 26. Specifically, the control unit 22 causes the input unit 24 to input an instruction (first instruction) instructing the storage device 10 to activate the sharing service of the security folder (that is, to provide the sharing service). In this case, an unlock signal including the first key is transmitted via the communication unit 21 based on the first command.

  When the control unit 22 receives folder information for displaying the window of the shared folder on the display unit 23 from the storage device 10 via the communication unit 21, the control unit 22 causes the display unit 23 to display the window of the shared folder . More specifically, based on the received folder information, the control unit 22 causes the display unit 23 to display the window of the shared folder, the subfolders belonging to the shared folder, and icons such as shared files. The folder information includes, for example, a shared folder path. In this way, the user can operate the shared folder, the shared file belonging to the shared folder, the subfolder, and the like while referring to the window of the shared folder displayed on the display unit 23.

  In addition, when the window of the folder stored in the storage apparatus 10 is displayed on the display unit 23 and the control unit 22 determines that the shared service is disabled, the control unit 22 displays the window of the shared folder. Delete the display (hereinafter referred to as “close window”).

  For example, the control unit 22 receives an instruction (second command) for instructing the storage apparatus 10 to invalidate the shared folder sharing service (that is, stop the provision of the shared service) to the input unit 24 by the user. The window of the shared folder displayed on the display unit 23 may be closed by determining that the shared service is invalidated.

  Also, for example, when the control unit 22 receives from the storage device 10 an invalid signal indicating that the shared service is invalid, the control unit 22 determines that the shared service is invalidated and closes the window.

  For example, when the storage unit 10 is not accessed for a predetermined threshold time or longer, the control unit 22 may transmit a confirmation signal for confirming whether or not the shared service is enabled to the storage device 10. Further, when receiving an invalid signal from the storage apparatus 10, the terminal device 20 may determine that the shared service is invalid and close the window.

  In addition, the control unit 22 may create an access list 26 d including information on shared folders of the storage device 10 being accessed, and store the access list 26 d in the memory unit 26. When the control unit 22 determines that the shared service is invalid, the control unit 22 refers to the access list 26d. You may close the folder window. That is, when the window of the folder displayed on the display unit 23 is a security folder window, the control unit 22 closes the window. On the other hand, when the window of the folder displayed on the display unit 23 is a normal shared folder of the storage device 10 or a folder in the terminal device 20, the control unit 22 may not close the window. .

  The folder information may include deletion information in which it is determined whether the window displayed on the display unit 23 is closed when the sharing service is invalidated. In this case, when the control unit 22 determines that the shared service is not activated, the control unit 22 determines whether to close the window based on the deletion information included in the folder information received from the storage device 10, and the folder is a window When it is determined that the object is to be closed, the window may be closed.

  In addition, the control unit 22 controls the window displaying the security folder displayed on the display unit 23 to be, for example, a shared folder that is not the security folder of the storage device 10 or a storage device other than the storage device 10 (for example, When the folder of the storage unit 25) is displayed, the shared folder window displayed on the display unit 23 may not be closed even when the shared service is stopped. Specifically, when the control unit 22 determines that the shared service is invalidated, the control unit 22 determines whether the path of the window displayed on the display unit 23 matches the path of the security folder. When it is determined that the path of the window displayed on the display unit 23 matches the path of the security folder, the window displayed on the display unit 23 may be closed. This coincidence may be performed if the window path matches up to the security folder path. When a subfolder in the security folder or a subfolder below it is displayed, the path of the window as a whole does not match the path of the security folder. Even in such a case, the open subfolders should of course be protected, and if the path to the security folder matches, close the window. When a subfolder under the security folder is opened in another window, it is preferable not only to close the original window but also to close the other window.

  Also, for example, the memory unit 26 of the control unit 22 may store a plurality of different filer programs 26 c. When a plurality of filer programs 26c are stored in the memory unit 26, the control unit 22 may select the filer program 26c for causing the display unit 23 to display a shared folder based on predetermined settings. For example, when an instruction (third instruction) for instructing the filer program 26c to be used is input to the input unit 24, the control unit 22 selects one of the plurality of filer programs 26c based on the third instruction. The filer program 26 c may be selected, and the window of the shared folder may be displayed on the display unit 23 using the selected filer program 26 c.

  As a result, the window of the shared folder stored in the storage device 10 can be displayed on the display unit 23 by the filer program 26c according to the user's preference, so that the convenience is improved.

[Operation]
Next, with reference to FIG. 4 to FIG. 16, a procedure of operations executed by the terminal device 20 and the file sharing system 100 according to the embodiment will be described.

  FIG. 4 is a sequence diagram illustrating an operation procedure for setting a security folder in the file sharing system 100 according to the embodiment.

  First, the terminal device 20 starts a browser and requests a login screen from the storage device 10. The storage apparatus 10 functions as an http server and transmits a login screen for user authentication to the terminal apparatus 20 via the network. The conditions for the storage apparatus 10 to transmit the login screen to the terminal apparatus 20 are not particularly limited.

  Next, the terminal device 20 causes the browser to display the login screen received from the storage device 10 via the network on the display unit 23 (step S101).

  Next, the terminal device 20 receives an input of authentication information from the user through the input unit 24 (step S102). The terminal device 20 transmits the authentication information received by the input unit 24 to the storage device 10. The authentication information is information including a predetermined user ID and password, for example. The transmission of the authentication information, the transmission of the unlocking signal described later, the transmission of the locking signal, etc. are communicated by a general communication protocol such as http. In this case, a secure such as HTTPS (Hypertext Transfer Protocol Secure), which communicates by encrypting using Secure Sockets Layer (SSL) / Transport Layer Security (TLS), so that authentication information and key information are not stolen. A communication protocol is preferred.

  Next, the storage apparatus 10 performs user authentication with reference to the received user ID and password (step S103). In step S103, the storage device 10 determines, for example, whether or not the user ID and password stored in advance in the storage unit 12 match the user ID and password received from the terminal device 20. In step S <b> 103, the storage apparatus 10 authenticates the user and transmits a sharing registration screen for performing sharing settings to the terminal apparatus 20.

  Next, the terminal device 20 causes the display unit 23 to display the sharing registration screen received from the storage device 10 (step S104).

  Next, the terminal device 20 receives an input of shared information for setting a shared service from the user at the input unit 24 (step S105). The terminal device 20 transmits the shared information received by the input unit 24 to the storage device 10.

  Next, the storage device 10 registers the shared information received from the terminal device 20 (step S106). In other words, the storage device 10 stores the sharing setting information received from the terminal device 20 in the storage unit 12 in step S106.

  Next, the storage apparatus 10 starts providing shared service to the terminal apparatus 20 (step S107). Specifically, the storage device 10 enables the terminal device 20 to use the security folder stored in the storage unit 12 in step S107.

  FIG. 5 is a sequence diagram showing an operation procedure when the terminal device 20 according to the embodiment uses a shared folder (hereinafter simply referred to as a shared folder) which is not a security folder stored in the storage apparatus 10.

  First, it is assumed that the terminal device 20 accesses a shared folder stored in the storage unit 12 of the storage device 10 (step S111). It is assumed that the terminal device 20, for example, the input unit 24 receives a command for accessing the shared folder stored in the storage unit 12 from the user. The terminal device 20 transmits an operation signal (path) for requesting folder information of the shared folder. The folder information includes, for example, information such as a shared folder and a path for displaying a window of a shared file belonging to the shared folder on the display unit 23. The terminal device 20 receives the folder information and displays the shared folder window accessing the display unit 23.

  Next, when receiving an operation signal from the terminal device 20, the storage device 10 issues an authentication input request for requesting user authentication information to the terminal device 20 (step S112). Specifically, the storage device 10 transmits, to the terminal device 20, a request signal for requesting user authentication information.

  Next, the terminal device 20 causes the display unit 23 to display a screen for receiving an input of user authentication information from the user based on the request signal received from the storage device 10, and the user authentication information from the user is input by the input unit 24. It receives (step S113). The user authentication information is, for example, the user ID and password received in step S102 in FIG. The terminal device 20 transmits a user ID and a password as user authentication information to the storage device.

  Next, the storage device 10 performs user authentication with reference to the received user ID and password (step S114). In step S114, the storage device 10 determines, for example, whether or not the user ID and password stored in advance in the storage unit 12 match the user ID and password received from the terminal device 20.

  Next, the storage device 10 executes folder operation (including the operation of files in the folder, the same applies hereinafter) based on the operation signal received in step S102, and includes folder information as a response to the operation signal. A response signal is transmitted to the terminal device 20 (step S115).

  Next, the terminal device 20 adds the folder information received from the storage device 10 to the access list 26d (step S116).

  Next, the terminal device 20 displays the shared folder window on the display unit 23 based on the received folder information (step S117).

  Thus, the terminal device 20 receives the folder information of the shared folder by causing the storage device 10 to perform user authentication.

  Note that the storage device 10 may execute an authentication input request every time when it receives an operation signal repeatedly from the terminal device 20 to the shared folder stored in the storage unit 12, and after the second time, the authentication input request It is not necessary to execute. That is, the storage device 10 and the terminal device 20 may execute the processing from step S112 to step S114 once.

  FIG. 6 is a sequence diagram showing an operation procedure when the terminal device 20 according to the embodiment fails to use the security folder stored in the storage device 10.

  First, it is assumed that the terminal device 20 accesses a security folder stored in the storage unit 12 of the storage device 10 (step S121). It is assumed that the terminal device 20, for example, the input unit 24 receives a command for accessing the security folder stored in the storage unit 12 from the user. The terminal device 20 transmits an operation signal (path) for requesting folder information of the security folder.

  Here, when the storage device 10 receives the operation signal, it does not respond to the operation signal because the security folder stored in the storage unit 12 is treated as a folder that does not exist on the network (Step S122). Therefore, the terminal device 20 displays, for example, an error display on the display unit 23 because the terminal device 20 can not receive a response signal to the operation signal (step S123). In step S123, for example, an error message such as “Folder does not exist” is displayed. As a specific example, even if a file in the security folder is specified from recently used items of the application, the file cannot be opened, and the application displays an error.

  As described above, the terminal device 20 can not recognize the existence of the security folder stored in the storage unit 12 on the network when the shared service is not activated by the storage device 10. Therefore, the terminal device 20 cannot access the security folder.

  FIG. 7 is a sequence diagram showing an operation procedure when the terminal device 20 according to the embodiment uses the security folder stored in the storage device 10.

  First, the terminal device 20 transmits an unlock signal including a security key (first key) for enabling the storage device 10 to activate the sharing service of the security folder (step S131).

  Next, when the storage device 10 receives the unlock signal including the security key, the storage device 10 validates the security folder sharing service to the terminal device 20 (step S132). In step S132, the storage device 10 stores, for example, a key (second key) associated with shared information for the terminal device 20 to share the security folder on the network. When the storage device 10 receives an unlocking signal including a security key (first key) from the terminal device 20, the storage device 10 determines whether the received first key matches the second key. If the storage apparatus 10 determines that the first key and the second key match, the storage apparatus 10 enables the sharing service on the network of the security folder using the sharing setting information. The storage device 10 transmits the path of the security folder in which the sharing service is valid to the terminal device 20.

  Next, it is assumed that the terminal device 20 accesses a security folder stored in the storage unit 12 of the storage device 10 (step S121). It is assumed that the terminal device 20, for example, the input unit 24 receives a command for accessing the security folder stored in the storage unit 12 from the user. The terminal device 20 transmits an operation signal (path) for requesting folder information of the security folder.

  Here, when the operation signal is received, the storage apparatus 10, unlike step S122 shown in FIG. 6, enables the security folder sharing service in step S132, thereby storing the security stored in the storage unit 12. Since the folder is handled as a folder existing on the network, it responds to the operation signal. Specifically, when the storage device 10 receives an operation signal from the terminal device 20, the storage device 10 sends an authentication input request to the terminal device 20 to request user authentication information (step S112).

  Next, the terminal device 20 causes the display unit 23 to display a screen for receiving an input of user authentication information from the user based on the request signal received from the storage device 10, and the user authentication information from the user is input by the input unit 24. It receives (step S113).

  Next, the storage device 10 performs user authentication with reference to the received user ID and password (step S114).

  Next, for example, the storage apparatus 10 performs a folder operation (including a file operation in the folder) based on the operation signal received in step S102, and returns a response signal including folder information as a response to the operation signal. And transmitted to the terminal device 20 (step S133).

  Next, the terminal device 20 adds the folder information of the security folder received from the storage device 10 to the access list 26d (step S134).

  Next, the filer program 26c of the terminal device 20 causes the display unit 23 to display the window of the security folder based on the received folder information (step S135).

  As described above, the terminal device 20 can recognize the presence of the security folder stored in the storage unit 12 on the network when the shared service is enabled from the storage device 10. Therefore, the terminal device 20 can access the security folder.

  FIG. 8 is a sequence diagram illustrating a first example of an operation procedure when the terminal device 20 according to the embodiment stops using the security folder stored in the storage device 10. In the sequence diagram shown in FIG. 8, it is assumed that the process from step S131 to step S114 shown in FIG. 7 has already been executed.

  For example, the storage apparatus 10 executes the folder operation based on the signal (operation signal) indicating the folder operation received in step S102 shown in FIG. 7, and sends a response signal including folder information as a response to the operation signal. It transmits to the apparatus 20 (step S133).

  Next, based on the received folder information, the terminal device 20 displays a window of a security folder (including a subfolder below the security folder) on the display unit 23 (step S135).

  When stopping the use of the security folder, the user inputs, for example, a command to the input unit 24 of the terminal device 20 to stop the use of the security folder. For example, when the user authentication information is received from the user through the input unit 24, the terminal device 20 transmits a locking signal for requesting the invalidation of the shared service (step S136).

  Next, the terminal device 20 closes the window of the security folder displayed on the display unit 23 (step S137).

  Next, the terminal device 20 deletes the folder information corresponding to the security folder in the access list 26d (step S138).

  In addition, when the storage device 10 receives the lock signal from the terminal device 20, the storage device 10 invalidates the shared service of the security folder (step S139).

  Thus, by closing the window of the security folder displayed on the display unit 23, the terminal device 20 (specifically, the control unit 22) displays on the display unit 23 when the shared service is determined to be invalid. Close the security folder window. As a result, it can be suppressed that the window of the security folder is continuously displayed on the display unit 23, so that the security is enhanced.

  Further, the control unit 22 closes the window of the security folder displayed on the display unit 23 when the lock signal for requesting the disabling of the shared service is transmitted to the storage device 10. By doing this, the control unit 22 automatically closes the security folder window displayed on the display unit 23 even when the user has forgotten to close the security folder window. As a result, it can be suppressed that the window of the security folder is continuously displayed on the display unit 23, so that the security is enhanced.

  FIG. 9 is a sequence diagram showing a second example of the operation procedure when the terminal device 20 according to the embodiment stops using the security folder stored in the storage device 10. In the sequence diagram shown in FIG. 9, it is assumed that the processing from step S131 to step S114 shown in FIG. 7 has already been executed.

  For example, the storage apparatus 10 executes the folder operation based on the signal (operation signal) indicating the folder operation received in step S102 shown in FIG. 7, and sends a response signal including folder information as a response to the operation signal. It transmits to the apparatus 20 (step S133).

  Next, the terminal device 20 displays a security folder window on the display unit 23 based on the received folder information (step S135).

  Here, unlike in FIG. 8, it is assumed that a predetermined predetermined threshold time for the storage apparatus 10 to invalidate the shared service to the terminal apparatus 20 has elapsed.

  For example, when the storage apparatus 10 measures time and determines that there is no access from the terminal apparatus 20 for a predetermined threshold time or more (step S136a), the storage apparatus 10 sends an invalid signal indicating that the shared service is invalidated to the terminal apparatus 20. Send.

  Also, the storage apparatus 10 invalidates the security folder sharing service (step S139).

  Next, when the terminal device 20 receives an invalid signal from the storage device 10, the terminal device 20 closes the window of the security folder displayed on the display unit 23 (step S137).

  Further, when receiving the invalid signal from the storage device 10, the terminal device 20 determines that the security folder sharing service has been invalidated, and deletes the folder information corresponding to the security folder in the access list 26d (step S138). .

  As described above, when the terminal device 20 (specifically, the control unit 22) does not access the storage device 10 for a predetermined threshold time or longer, the terminal device 20 displays the security folder window displayed on the display unit 23. close up. Specifically, when the control unit 22 receives an invalidation signal from the storage device 10, for example, the control unit 22 automatically closes the window of the security folder displayed on the display unit 23. As a result, it can be suppressed that the window of the security folder is continuously displayed on the display unit 23, so that the security is enhanced.

  FIG. 10 is a sequence diagram illustrating a third example of an operation procedure when the terminal device 20 according to the embodiment stops using the security folder stored in the storage device 10. In the sequence diagram shown in FIG. 10, it is assumed that the processing from step S131 to step S114 shown in FIG. 7 has already been executed.

  For example, the storage apparatus 10 executes the folder operation based on the signal (operation signal) indicating the folder operation received in step S102 shown in FIG. 7, and sends a response signal including folder information as a response to the operation signal. It transmits to the apparatus 20 (step S133).

  Next, based on the received folder information, the window of the security folder is displayed on the display unit 23 (step S135).

  Here, unlike in FIG. 8, it is assumed that a predetermined predetermined threshold time for the storage apparatus 10 to invalidate the shared service to the terminal apparatus 20 has elapsed.

  For example, the storage device 10 measures the time, and when it is determined that there is no access from the terminal device 20 for a predetermined threshold time or longer (step S136a), the security folder sharing service is invalidated (step S139). In the third example shown in FIG. 10, unlike the second example shown in FIG. 9, the storage apparatus 10 does not transmit an invalid signal indicating that the shared service should be invalidated to the terminal apparatus 20.

  Further, the terminal device 20 measures the time, and if it is determined that the storage device 10 has not been accessed for a predetermined threshold time or more (step S136b), the terminal device 20 checks whether the shared service is enabled in the storage device 10 Send a confirmation signal to When the storage device 10 receives the confirmation signal and the shared service is invalidated, the storage device 10 transmits an invalid signal to the terminal device 20 as a response to the confirmation signal.

  When the terminal device 20 receives the invalid signal from the storage device 10, it determines that the shared service is not activated and closes the security folder window (step S137).

  Further, when the terminal device 20 receives the invalid signal from the storage device 10, it determines that the security folder sharing service has been invalidated, and deletes the folder information corresponding to the security folder in the access list 26d (step). S138).

  As described above, when the terminal device 20 (specifically, the control unit 22) does not access the storage device 10 for the predetermined threshold time or more, the window of the security folder displayed on the display unit 23 is displayed. close up. Thereby, when the user does not use the terminal device 20 for more than a threshold time, for example, the control unit 22 transmits a confirmation signal to the storage device 20 to confirm whether the shared service is activated, as a communication unit. Send via 21 Further, when the control unit 22 receives the invalidation signal transmitted from the storage device 10 via the communication unit 21, the control unit 22 automatically closes the window of the security folder displayed on the display unit 23. As a result, the security folder window can be further prevented from being displayed on the display unit 23, thereby further enhancing security.

  Subsequently, a specific processing procedure for closing the window of the shared folder displayed on the display unit 23 by the terminal device 20 will be described.

  FIG. 11 is a flowchart showing an operation procedure for determining whether or not the terminal device 20 according to the embodiment closes the security folder window. In addition, before the flowchart of FIG. 11 starts, it is assumed that the processing of step S131 to step S134 shown in FIG. 7 is executed by the storage device 10 and the terminal device 20, for example.

  First, it is assumed that the terminal device 20 acquires information indicating that the shared service provided to the storage device 10 is to be stopped (step S141). For example, the information indicating that the shared service is stopped is determined to close the security folder window, such as a lock signal transmitted after step S135 illustrated in FIG. 8 or an invalid signal received in step S136a illustrated in FIG. Information.

  Next, the terminal device 20 determines whether the folder indicated by the window displayed on the display unit 23 is a security folder (step S142). In step S143, for example, the terminal device 20 refers to the access list 26d stored in the memory unit 26, and determines whether or not the folder indicated by the window displayed on the display unit 23 is a security folder. To do. In this determination, if the path of the opened window matches the path registered in the access list 26d, the window matches the security folder. As described above, it is sufficient to match the path from the root to the security folder as described above. Even when the window opens a subfolder below the security folder, the path is determined as the security folder. Even when a subfolder below the security folder is opened in another window, the path of this other window also matches the path of the security folder, so it is determined as a security folder.

  As a case where the window does not match the path of the security folder, for example, when a normal shared folder of the storage device 10 is displayed, or when a folder in the storage unit 25 of the terminal device 20 is displayed Can be given.

  In step S142, for example, the terminal device 20 may transmit a confirmation signal for confirming whether or not the folder indicated by the window displayed on the display unit 23 is a security folder to the storage device 10. . Based on the received confirmation signal, the storage device 10 transmits a response signal including information indicating whether or not the shared folder being accessed is a security folder to the terminal device 20. By doing this, the terminal device 20 may determine whether the shared folder displayed on the display unit 23 is a security folder. Thereby, the terminal device 20 can determine whether or not the shared folder indicated by the window displayed on the display unit 23 is a security folder without creating the access list 26d.

  If the terminal device 20 determines that the window displayed on the display unit 23 is a security folder (Yes in step S142), the terminal device 20 refers to the deletion information of the access list 26d and is displayed on the display unit 23. It is determined whether or not the window is closed (step S143).

  When the terminal device 20 refers to the deletion information in the access list 26d and determines that the folder indicated by the window displayed on the display unit 23 is a target to be closed (Yes in step S143), the terminal device 20 closes the window (step S137). ).

  On the other hand, when the terminal device 20 determines that the shared folder displayed on the display unit 23 is not a security folder (No in step S142), the folder indicated by the window displayed on the display unit 23 is not a target for closing. When it is determined that the window is displayed (No in step S143), the display of the window displayed on the display unit 23 is not closed.

  That is, when the folder indicated by the window displayed on the display unit 23 is a normal shared folder in the storage device 10 or a folder in the storage unit 25, the terminal device 20 displays the folder on the display unit 23. Do not close windows such as shared folders.

  By doing this, the control unit 22 automatically closes the window of the shared folder displayed on the display unit 23 only when the shared folder is a security folder. Thereby, it is possible to suppress the display of only the security folder window that is considered to be particularly important, and the normal shared folder window that is less important than the security folder is not closed. Therefore, it is possible to enhance the security and suppress the decrease in convenience.

  When the window displaying the security folder displays a folder in the storage unit 25, the terminal device 20 does not close the shared folder displayed on the display unit 23.

  In this way, when the window displaying the security folder shifts to a state where the folder in the storage unit 25 of the terminal device 20 is displayed, regardless of whether the storage device 10 is accessible or not. The folder can be displayed on the display unit 23. Therefore, such a folder does not have to be in a state where it is not clear to the user whether or not the folder is displayed in an accessible state, and it is less necessary to close the window of the folder. As described above, since the window of the folder displayed on the display unit 23 is not closed unnecessarily, the decrease in the convenience of the terminal device 20 can be suppressed.

  Further, when the display of the security folder indicated by the window displayed on the display unit 23 is not a deletion target, the terminal device 20 does not close the window of the shared folder displayed on the display unit 23.

  By doing this, the terminal device 20 can select whether to close or not close even the window of the security folder based on the predetermined setting. Therefore, the convenience of the terminal device 20 is improved.

  The control unit 22 may close the security folder window, and may not close the window including the security folder icon.

  FIG. 12A is a view showing an example of the security folder window 200 displayed on the display unit 23. As shown in FIG.

  As shown in FIG. 12A, the security folder window 200 shows, for example, subfolders and files stored in the security folder. FIG. 12A shows subfolder A and subfolder B as an example of the subfolder, and file A as an example of the file. For example, the control unit 22 closes the security folder window 200 displayed on the display unit 23 in step S137 of FIG.

  FIG. 12B is a diagram illustrating an example of the window 200 a of the storage unit 12. As shown in FIG. 12B, in the window 200a of the storage unit 12, for example, folders stored in the storage unit 12 are shown. FIG. 12B illustrates a security folder A and a security folder B as an example of the security folder, and illustrates a normal folder A as an example of a normal shared folder. For example, the control unit 22 does not close the window 200a of the storage unit 12 displayed on the display unit 23 in step S137 of FIG. The window 200a also includes a normal shared folder icon. Therefore, when the control unit 22 closes the window 200a, the display of the icon of the normal shared folder A having no problem even if it is displayed is deleted, and the convenience is lowered. In other words, since the control unit 22 does not close the window 200a, the decrease in convenience can be suppressed. When the shared service of the security folders A and B is invalidated, the icons of the security folders A and B are not displayed at the timing of the window update.

  FIG. 13 is a diagram showing an example of the access list 26d managed by the terminal device 20 according to the embodiment.

  The access list 26d is a shared folder stored in the storage unit 12 of the storage apparatus 10, and is a table including information on a shared folder that can be accessed by the terminal apparatus 20. For example, the access list 26d includes a shared folder name column 31, security A folder setting column 32, a path column 33, and a window deletion setting column 34 are included.

  In the shared folder name column 31, for example, the name of the shared folder stored in the storage unit 12 of the storage device 10 is stored.

  The security folder setting column 32 stores, for example, information on whether the shared folder is a security folder or a normal shared folder. For example, if “true” is stored, the terminal device 20 determines that the shared folder is a security folder, and if “false” is stored, the terminal device 20 determines that the shared folder is a normal shared folder.

  In the path column 33, for example, paths corresponding to the respective shared folders are stored.

  In the window deletion setting column 34, whether or not to close the security folder window displayed on the display unit 23 of the terminal device 20 when the terminal device 20 determines that the sharing service of the security folder has been disabled. The settings of are stored. If the terminal device 20 determines that the sharing service of the security folder is invalid, for example, if “true” is stored, the security folder window is closed, and if “false” is stored, the security folder window is displayed. Do not close.

  For example, in step S115 shown in FIG. 5 or step S133 shown in FIG. 7, the storage device 10 displays folder information on the display unit 23 and folder information including information on whether it is a security folder or a normal shared folder. Send. The terminal device 20 creates (updates) the access list 26d based on the received folder information. The terminal device 20 may determine whether the folder displayed on the display unit 23 is a security folder by referring to the created access list 26d in step S142 illustrated in FIG.

  As a result, when the terminal device 20 determines whether the folder displayed on the display unit 23 is a security folder, the terminal device 20 does not have to check the storage device 10 each time. Therefore, the control unit 22 can easily determine whether or not the folder displayed on the display unit 23 is a security folder.

  FIG. 14 is a diagram showing an example of the folder setting screen 40 displayed when setting sharing of a folder. The folder setting screen 40 may be displayed on a display device such as a display possessed by a communication device capable of communicating with the storage device 10, or the storage device 10 has a display device such as a display and is displayed on the display device It is also good. Further, the notification device and the storage device 10 may have input devices such as a keyboard and a mouse.

  The folder setting screen 40 is a screen (GUI) for setting a folder stored in the storage unit 12 of the storage apparatus 10. The folder setting screen 40 includes, for example, a folder name input unit 41, a security folder setting unit 42, a window deletion setting unit 42a, a hidden folder setting unit 43, a user input unit 44, a security key input unit 45, and storage. It includes a unit 46, a user selection unit 47, an access authority setting unit 48, and a determination unit 49.

  The folder name input unit 41 is a text box for receiving input of a folder name. FIG. 14 exemplifies a case where “SF1” is input as the folder name.

  The security folder setting unit 42 is a check box for receiving whether the folder is to be a security folder. For example, as illustrated in FIG. 14, when a check is input to the security folder setting unit 42, the storage apparatus 10 sets the folder as a security folder, and when the check is not input to the security folder setting unit 42, the storage apparatus 10 As a shared folder.

  The window deletion setting unit 42a closes the display of the security folder window displayed on the display unit 23 of the terminal device 20 when the terminal device 20 determines that the security folder sharing service is not activated. This is a check box for accepting the setting of whether or not to execute. For example, as illustrated in FIG. 14, when a check is input to the security folder setting unit 42, the storage device 10 displays the window of the security folder displayed on the display unit 23 of the terminal device 20 as the terminal device 20. If it is determined that the sharing service for the security folder is invalidated, the security folder is closed.

  The hidden folder setting unit 43 is a check box for receiving whether the folder is a so-called hidden folder that is accessible but does not display the folder. A hidden folder means a hidden share, and is a folder that is not displayed in the list of shared folders on devices on the network. That is, the folder name of the hidden folder is not disclosed to the network. For example, when the check mark is attached to the hidden folder setting unit 43, “$” is automatically attached to the end of the share name input to the folder name input unit 41.

  The user input unit 44 is a list box for inputting a user of a folder having the folder name input to the folder name input unit 41. The user selects a user ID from the list of user IDs via the input unit 24. The list of user IDs includes user IDs registered in advance.

  The security key input unit 45 is a text box for accepting an input of a security key for enabling the shared service when the folder is set as a security folder. FIG. 14 exemplifies a case where "SF1-KEY2" is input as the security key. When the storage device 10 receives an unlocking signal including “SF1-KEY2” as a security key, the storage device 10 enables the sharing service of the security folder.

  The storage unit 46 is a button for temporarily storing the user input unit 44 and the set of the user ID and the security key input to the security key input unit 45.

  The user selection unit 47 has a list of user IDs temporarily stored by the storage unit 46, a check box for selecting a user ID in the list, a user ID with a check mark, and a corresponding security key Including a button to delete the. The user can delete the set of the user ID and the security key corresponding to the check mark by inputting the check mark in the check box and pressing the delete button.

  The access authority setting unit 48 includes a radio button for restricting access to the shared folder. If any pre-registered user can access the shared folder, the radio button “All locked / unlocked users” is selected, and if the access authority is managed for each user, “Access The radio button of "Restriction setting" is selected. When the radio button of "access restriction setting" is selected, the screen changes to a screen in which the read-only user and the read-write user can be set individually.

  The storage apparatus 10 performs security folder setting and access authority setting for the shared folder. When the storage apparatus 10 receives a security key (first key) corresponding to (specifically, matching) a security key (second key) set in the shared folder in step S132 shown in FIG. , Enable shared services. The terminal device 20 can access the security folder when the shared service is enabled by the storage device 10 and the access authority to the security folder is set to be enabled. However, for example, even if the sharing service for the security folder is enabled, the terminal device 20 cannot access the security folder if there is no authority to access the security folder.

  The determination unit 49 includes a folder name input unit 41, a security folder setting unit 42, a hidden folder setting unit 43, a user input unit 44, a security key input unit 45, a storage unit 46, a user selection unit 47, The access authority setting unit 48 is a button for accepting an instruction to finally determine whether or not to set the condition in the folder. For example, when the storage device 10 accepts selection of a “save” button, the storage apparatus 10 sets each input condition in a folder.

  FIG. 15 is a diagram showing an example of the sharing setting table 50 managed by the storage apparatus 10 according to the embodiment.

  The sharing setting table 50 is a table for managing the settings of each folder received based on the folder setting screen 40 shown in FIG. Specifically, the sharing setting table 50 is the sharing information stored in the storage unit 12 in step S106 shown in FIG. The sharing setting table 50 includes, for example, a shared folder name column 51, a security folder setting column 52, a window deletion setting column 52a, a security key column 53, a user ID column 54, and an access authority column 55.

  In the shared folder name column 51, for example, the names of folders stored in the storage unit 12 of the storage apparatus 10 are stored. In the shared folder name column 51, for example, character strings input to the folder name input unit 41 shown in FIG. 13 are stored. If a check mark is added to the hidden folder setting unit 43, the character string data input to the folder name input unit 41 with “$” appended thereto is registered.

  The security folder setting column 52 stores, for example, information on whether the folder is a security folder or a normal shared folder. For example, if “true” is stored, the storage apparatus 10 determines that the folder is a security folder, and if “false” is stored, determines that the folder is a normal shared folder. The security folder setting column 52 stores, for example, the conditions input to the security folder setting unit 42 illustrated in FIG. 14.

  If it is determined in the window deletion setting column 52a that the display of the security folder window displayed on the display unit 23 of the terminal device 20 is invalidated on the terminal device 20, the sharing service of the security folder is: The setting of whether to close or not is stored. If the terminal device 20 determines that the security folder sharing service is disabled, for example, if “true” is stored, the security folder window is closed, and if “false” is stored, Do not close the security folder window. The window deletion setting column 52a stores, for example, the conditions input to the window deletion setting unit 42a illustrated in FIG.

  In the security key column 53, for example, character string data corresponding to each folder, and a security key (second key) for activating the shared service is stored. When the security key (first key) included in the unlocking signal received from the terminal device 20 matches the second key, the storage device 10 enables the shared service of the security folder. In the security key string 53, for example, the character string input to the security key input unit 44 shown in FIG. 14 is stored. In the security key column 53, duplication of security keys is prohibited.

  In the user ID column 54, the user ID corresponding to the security key column 53 is registered.

  In the access authority column 55, the access authority for the user ID column 54 is registered. In the access authority column 55, for example, either “read” indicating read only or “read / write” indicating read / write is registered.

  In the sharing setting table 50 of FIG. 15, for example, a shared folder having a folder name “SF1” and a read-only “USER1” are stored in association with the security key “SF1-KEY1”. Further, for example, a shared folder having a folder name “SF1” and a readable / writable “USER2” are stored in association with the security key “SF1-KEY2”.

  A security folder sharing service is provided to the user specified by the user ID registered in the user ID column 54 by an unlock signal.

  FIG. 16 is a diagram showing an example of a screen displayed on the terminal device 20 when using the security folder. Specifically, FIG. 16 is a diagram illustrating an example of a screen displayed on the display unit 23 of the terminal device 20 when step S131 illustrated in FIG. 7 is executed.

  First, the terminal device 20 causes the display unit 23 to display the icon 60 in advance. The terminal device 20 causes the display unit 23 to display the list 61 when the icon 60 is selected.

  The list 61 includes options such as “SF unlock” for giving an instruction to access a security folder (SF) and “SF lock” for giving an instruction to lock an already accessed security folder. It is. For example, the terminal device 20 displays the target folder selection list 62 on the display unit 23 when “SF unlocking” is selected.

  The target folder selection list 62 includes, for example, the folder names of security folders stored in the access list 26 d. For example, when one of the security folder names is selected, the terminal device 20 causes the display unit 23 to display the security key input screen 63.

  The security key input screen 63 is a text box for receiving an input of a security key. The terminal device 20 uses the character string received on the security key input screen 63 as a security key (second key) and transmits an unlock signal including the second key to the storage device 10 (step S131 shown in FIG. 7).

(Other embodiments)
As described above, the terminal device, the terminal device control method, the file sharing system, and the file sharing system control method according to one embodiment of the present invention have been described based on the embodiment. It is not limited to. Unless it deviates from the meaning of this invention, the form which carried out the various deformation | transformation which those skilled in the art conceived to this Embodiment, and the form constructed | assembled combining the component in different Embodiment is also contained in this invention.

  For example, the hardware configuration of the file sharing system in each of the above embodiments is an example, and the present invention is not limited to this. For example, in the above embodiments, the case where the network is a LAN has been described, but the network is not limited to this. The network may be any network as long as it is a computer network, for example, WAN Wide Area Network) or the Internet. In each of the above embodiments, an example in which the NAS functions as a storage device has been described, but another device may function as a storage device. For example, a multi-function peripheral, a router, or a file server can also function as a storage device.

  Moreover, in each said embodiment, although two communication modules, NAS, a wired LAN module, and a wireless LAN module, were provided, it is not limited to this. For example, the NAS may include only one of a wired LAN module and a wireless LAN module. The NAS may include a general-purpose processor instead of the SoC.

  Further, in each of the above embodiments, the NAS is provided with the RAID module, but the RAID module may not be provided. The NAS may be provided with a RAID module according to the capacity, reliability, speed, etc. required for the storage.

  In each of the above embodiments, the NAS includes a plurality of HDDs and SD cards, but the present invention is not limited to this. The NAS may include, for example, a solid state drive (SSD) instead of a plurality of HDDs and SD cards.

  Also, for the storage device to identify a terminal device, for example, an IP address may be used, or a MAC (Media Access Control address) address or a host name may be used.

  Moreover, although the said embodiment demonstrated various screens, such as a transmission screen of a unlocking signal, these screens are an example and are not limited to this. For example, the check box for setting the hidden folder may not be included in the shared folder registration screen of FIG.

  Also, for example, data such as the access list 26 d may be stored in the memory unit 26 or may be stored in the storage unit 25. Further, the HDD 25a is shown as an example of the hardware configuration of the storage unit 25. However, the hardware configuration of the storage unit 25 is not limited to this. The storage unit 25 may be a memory such as a read only memory (ROM) or a random access memory (RAM), and may be, for example, a flash memory.

  Further, in the above embodiment, the storage apparatus 10 provides the sharing service of both the normal shared folder and the security folder, but may provide only the sharing service of the security folder. In this case, the security folder setting may not be included in FIGS.

  Further, one aspect of the present invention may be a control method in which not only the terminal device but also a characteristic configuration unit included in the terminal device is used as a step.

  Further, one aspect of the present invention may be a computer program that causes a computer to execute the characteristic steps included in the control method. In addition, one aspect of the present invention may be a computer readable non-transitory recording medium in which such a computer program is recorded.

  Further, one aspect of the present invention may be a control method in which not only the file sharing system but also a characteristic configuration unit included in the file sharing system is used as a step.

  Further, in the above embodiment, each component may be configured by dedicated hardware or implemented by executing a software program suitable for each component. Each component may be realized by a program execution unit such as a CPU or a processor reading and executing a software program recorded on a recording medium such as a hard disk or a semiconductor memory. Here, the software for realizing the terminal device and the like of the above-described embodiments is, for example, the following program.

  That is, this program is a control method of a terminal device connected to a storage device storing a file via a network, and the network of a folder to which the file stored in the storage device belongs. Receiving a first instruction that is an instruction to activate the shared service above, and a solution including a first key for causing the storage device to activate the shared service based on the first instruction Transmitting a lock signal; displaying a window of the folder based on the folder information when receiving folder information for displaying the window of the folder from the storage device; disabling the shared service If it is determined that the window is deleted, the window display is deleted. Tsu and up to execute the control method comprising.

  The present invention can be applied to a PC connected via a network with a NAS comprising a shared folder and a storage unit storing shared files belonging to the shared folder, or a file sharing system comprising the NAS and the PC.

10 storage device 10a NAS
11, 21 Communication unit 11a Wired LAN adapter 11b Wireless LAN module 12, 25 Storage unit 12a HDD_A
12b HDD_B
12d RAID module 12e SD card 12f SD card connector 13, 22 control unit 13a SoC
13b, 26a DDR SDRAM
20 Terminal device 20a-20c PC
21a NIC
22a CPU
22b Chipset 23 Display 23a Display 24 Input 24a Keyboard 24b Mouse 25a HDD
26 memory part 26b management application 26c filer program 26d access list 31, 51 shared folder name string 32, 52 security folder setting string 33 path string 34, 52a window deletion setting string 40 folder setting screen 41 folder name input part 42 security folder setting part 42a Window deletion setting section 43 Hidden folder setting section 44 User input section 45 Security key input section 46 Storage section 47 User selection section 48 Access authority setting section 49 Determination section 50 Shared setting table 53 Security key string 54 User ID string 55 Access authority string 60 Icon 61 List 62 Target Folder Selection List 63 Security Key Input Screen 100 File Sharing System 200, 200a Window

Claims (12)

A terminal device connected via a network to a storage device storing files,
A communication unit that communicates with the storage device via the network;
An input unit to which an instruction to be executed by the terminal device is input;
A display unit for displaying a window of a folder to which the file belongs;
A memory unit storing a first key for enabling a shared service on the network of the folder in the storage device;
The communication unit, the input unit, the display unit, and a control unit that controls the memory unit;
The control unit
When a first command, which is a command for enabling the shared service, is input to the input unit, the storage device stores the memory unit via the communication unit based on the first command. When the folder information for displaying the window is received from the storage device via the communication unit by transmitting the unlocking signal including the first key that has been performed, the folder information is based on the folder information. Display a window on the display,
Furthermore, the terminal device that deletes the display of the window when it is determined that the shared service is disabled. The control unit
When a second instruction that is an instruction to invalidate the shared service in the storage device is input to the input unit, it is determined that the shared service is inactivated.
The terminal device according to claim 1, wherein a lock signal instructing stop of provision of the shared service is transmitted via the communication unit, and the display of the window is deleted. The control unit
3. The display of the window is deleted when it is determined that the shared service is disabled when an invalid signal indicating that the shared service is disabled is received from the storage device. Terminal equipment. The control unit
When the storage apparatus is not accessed for a predetermined threshold time or longer, a confirmation signal for confirming whether or not the shared service is enabled is transmitted to the storage apparatus, and when the invalid signal is received, the shared service The terminal device according to claim 3, wherein the terminal device is determined to be invalidated and the display of the window is deleted. The storage device includes a security folder in which a shared service is activated only when the first key is received, and a normal shared folder in which a shared service is activated without receiving the first key. Stored,
The control unit
Among the folders stored in the storage device, an access list is created which lists the folders being accessed.
If it is determined that the shared service is not enabled, the access list created is referred to, and if the window of the folder displayed on the display unit is the window of the security folder, the display of the window is displayed. The terminal device according to any one of claims 1 to 4, which is to be deleted. The folder information further includes deletion information in which it is determined whether the display of the window is to be deleted when the provision of the shared service is stopped,
The control unit
When it is determined that the shared service is disabled, it is determined whether to delete the display of the window based on the deletion information, and when it is determined that the folder is a target to delete the display of the window, The terminal device according to claim 5, wherein the display of the window is deleted. The control unit
When it is determined that the shared service has been disabled, it is determined whether the path of the window matches the path of the security folder, and the path of the window matches the path of the security folder The terminal device according to claim 5, wherein the display of the window is deleted. The memory unit includes a plurality of different filer programs for displaying the window on the display unit.
The control unit
When a third instruction for instructing a filer program to be used is input to the input unit, one filer program is selected from the plurality of filer programs based on the third instruction, and the selected filer program is selected. The terminal device according to any one of claims 1 to 7, wherein a window of the folder is displayed on the display unit. A control method of a terminal device connected via a network to a storage device storing a file,
Accepting a first instruction that is an instruction to activate a shared service on the network of a folder to which the file stored in the storage device belongs;
Sending an unlock signal including a first key for enabling the shared service to the storage device based on the first command;
Displaying the window of the folder based on the folder information when the folder information for displaying the window of the folder is received from the storage device;
And D. removing the display of the window when it is determined that the shared service has been invalidated. The program for making a computer perform the control method of the terminal device of Claim 9. The terminal device according to any one of claims 1 to 8.
The storage device,
The storage device is
Shared information for sharing a folder to which the file belongs on the network is stored in association with a second key,
When an unlock signal including the first key is received from the terminal device, it is determined whether the received first key matches the second key.
A file that activates a shared service on the network using the shared information and transmits the folder information of the folder to the terminal device when it is determined that the first key and the second key match Shared system. A control method of a file sharing system, comprising: a storage device storing a file; and a terminal device connected to the storage device via a network,
The terminal device receives a first command that is a command to activate a shared service on the network of a folder to which the file stored in the storage device belongs;
The terminal device transmits an unlock signal including a first key for enabling the shared service to the storage device based on the first command;
When the storage device receives an unlock signal including the first key from the terminal device, the received first key is associated with shared information for sharing the folder on the network. Determining whether or not the second key matches;
When the storage device determines that the first key and the second key match, the shared information is used to enable a shared service on the network, and the folder information of the folder is sent to the terminal Transmitting to the device;
Displaying the window of the folder based on the folder information when the terminal device receives the folder information of the folder from the storage device;
And d. Removing the display of the window if the terminal device determines that the shared service has been disabled.

Images