JP2020013516A - Information processing system, confidential document creation method, information processing device and program - Google Patents

Abstract

To provide an information processing system capable of suppressing leakage of confidential information.SOLUTION: An information processing system for creating a confidential electronic document includes: image file storage means for storing an image file in each letter form corresponding to a character code; conversion rule storage means for storing a conversion rule of the character code; character code conversion means for converting a character code to be included in a confidential electronic document and the character code corresponding to the image file in each letter form according to the conversion rule; confidential document creation means for reading an image file associated with the converted character code to be included in the confidential electronic document from the image file storage means, and replacing the letter form corresponding to the converted character code with an image of an image file corresponding to the converted character code; and output means for causing an output device to output the confidential electronic document created by the confidential document creation means.SELECTED DRAWING: Figure 1

Description

  The present invention relates to an information processing system, a confidential document creation method, an information processing device, and a program.

  If the data (file) of the confidential document is transferred to a third party, a great deal of damage may occur, and various security solutions have been proposed to reduce the risk of the confidential document being leaked.

  2. Description of the Related Art Conventionally, there is a customer information system that can reduce the risk of leakage of customer information without making a major change to a current system. In this customer information system, the secure font server replaces the characters with the secure font for each employee and transmits the customer information obtained via the Web server to the computer. Each time the customer information with the replaced characters is displayed, the secure font server displays the secure font. A server provides a secure font to a computer and restores and displays character substitution (for example, see Patent Document 1).

  However, in the conventional security solution, the encrypted customer information is decrypted every time the computer displays the customer information. Therefore, if the decrypted customer information leaks, it is not possible to cope with the risk of the leakage of the customer information.

  As described above, the conventional security solution has a problem that, when an electronic document containing confidential information (confidential electronic document) leaks, it is not possible to cope with the risk of leakage of confidential information due to copying of the confidential electronic document.

  An embodiment of the present invention aims to provide an information processing system capable of suppressing leakage of confidential information.

  In order to achieve the above object, claim 1 of the present application is an information processing system for creating a confidential electronic document, comprising: an image file storage means for storing an image file for each character shape corresponding to a character code; A conversion rule storage unit for storing rules, a character code to be included in the confidential electronic document, and a character code conversion unit for converting a character code corresponding to an image file for each glyph in accordance with the conversion rule; The image file associated with the converted character code to be included in the image file is read out from the image file storage unit, and the character shape corresponding to the converted character code is converted into an image of the image file corresponding to the converted character code. Confidential document creation means for creating the confidential electronic document replaced with And having and an output means for outputting to an output device the confidential electronic document.

  According to the embodiment of the present invention, leakage of confidential information can be suppressed.

FIG. 1 is a configuration diagram of an example of an information processing system according to an embodiment. FIG. 2 is a hardware configuration diagram of an example of a computer according to the embodiment. FIG. 2 is a hardware configuration diagram of an example of an image forming apparatus according to the embodiment. It is a functional block diagram of an example of a server device concerning this embodiment. FIG. 2 is a functional configuration diagram of an example of a client device according to the embodiment. 5 is a flowchart illustrating an example of a processing procedure of the information processing system according to the embodiment. FIG. 4 is an image diagram of an example of a non-confidential document. FIG. 4 is an explanatory diagram of an example of a character code conversion table. FIG. 11 is an explanatory diagram of an example of a process of converting a character code of a character image for each character shape. FIG. 4 is a configuration diagram of an example of setting information used in an image variable function. FIG. 9 is an explanatory diagram of an example of a process for converting a password list. FIG. 9 is an explanatory diagram of an example of a process of creating and outputting a confidential document. It is explanatory drawing of an example of an image character function.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings. In this embodiment, an electronic document including confidential information (a confidential electronic document) is simply called a confidential document. An electronic document that does not include confidential information (non-confidential electronic document) is simply called a non-confidential document.

[First Embodiment]
<System configuration>
FIG. 1 is a configuration diagram of an example of an information processing system according to the present embodiment. The information processing system 1 in FIG. 1 includes a server device 10, a client device 12, and an image forming device 16 connected via a network 18 such as a LAN or a WAN. Although FIG. 1 shows an example in which the client device 12 and the image forming device 16 are connected via the network 18, the client device 12 and the image forming device 16 may be directly connected by, for example, a USB cable or a printer cable. The server device 10, the client device 12, and the image forming device 16 may be plural.

  The server device 10 is realized by an information processing device such as a PC. The server device 10 stores the non-confidential document and provides the non-confidential document to the client device 12. The client device 12 is realized by an information processing device such as a PC, a smartphone, and a mobile phone used by a user. The client device 12 has a secure document creation environment for a user to create a secure document from a non-secure document. The client device 12 creates a confidential document from the non-confidential document provided from the server device 10 and causes the image forming device 16 to print the confidential document or display the confidential document on a display or the like. After printing or displaying, the client device 12 deletes the created confidential document, thereby suppressing leakage of the confidential document.

  The image forming apparatus 16 is a processing device such as a printer, a multifunction peripheral, or a laser printer connected to the client device 12 via the network 18. The multifunction peripheral is a multifunction printer having a print function, a scanner function, a copy function, a facsimile function, and the like.

<Hardware configuration>
The server device 10 and the client device 12 in FIG. 1 are realized by, for example, a computer having a hardware configuration illustrated in FIG. FIG. 2 is a hardware configuration diagram of an example of a computer according to the present embodiment.

  The computer 500 illustrated in FIG. 2 includes an input device 501, a display device 502, an external I / F 503, a RAM 504, a ROM 505, a CPU 506, a communication I / F 507, an HDD 508, and the like. . Note that the input device 501 and the display device 502 may be connected and used when necessary.

  The input device 501 includes a keyboard, a mouse, a touch panel, and the like, and is used by a user to input each operation signal. The display device 502 includes a display and the like, and displays a processing result by the computer 500.

  The communication I / F 507 is an interface for connecting the computer 500 to the network 18. Thereby, the computer 500 can perform data communication via the communication I / F 507.

  The HDD 508 is an example of a nonvolatile storage device that stores programs and data. The stored programs and data include an OS, which is basic software for controlling the entire computer 500, and application software (hereinafter, simply referred to as an application) for providing various functions on the OS. Note that the computer 500 may use a drive device (for example, a solid state drive: SSD) using a flash memory as a storage medium instead of the HDD 508.

  The external I / F 503 is an interface with an external device. The external device includes a recording medium 503a and the like. Thereby, the computer 500 can read and / or write on the recording medium 503a via the external I / F 503. The recording medium 503a includes a flexible disk, a CD, a DVD, an SD memory card, a USB memory, and the like.

  The ROM 505 is an example of a nonvolatile semiconductor memory (storage device) that can retain programs and data even when the power is turned off. The ROM 505 stores programs and data such as BIOS executed when the computer 500 is started, OS settings, and network settings. The RAM 504 is an example of a volatile semiconductor memory (storage device) that temporarily stores programs and data.

  The CPU 506 is an arithmetic unit that reads out programs and data from a storage device such as the ROM 505 or the HDD 508 onto the RAM 504 and executes processing to realize control and functions of the entire computer 500. The server device 10 and the client device 12 according to the present embodiment can implement various processes described below by the hardware configuration of the computer 500 described above.

  The image forming apparatus 16 of FIG. 1 is realized by, for example, the hardware configuration illustrated in FIG. FIG. 3 is a hardware configuration diagram of an example of the image forming apparatus according to the present embodiment. The image forming apparatus 16 includes a controller 601, an operation panel 602, an external I / F 603, a communication I / F 604, a printer 605, a scanner 606, and the like.

  The controller 601 includes a CPU 611, a RAM 612, a ROM 613, an NVRAM 614, an HDD 615, and the like. The ROM 613 stores various programs and data. The RAM 612 temporarily stores programs and data. The NVRAM 614 stores, for example, a setting information file and the like. The HDD 615 stores various programs and data.

  The CPU 611 reads out programs, data, setting information files, and the like from the ROM 613, the NVRAM 614, the HDD 615, and the like onto the RAM 612 and executes the processing, thereby realizing control and functions of the entire image forming apparatus 16.

  The operation panel 602 includes an input unit that receives an input from a user, and a display unit that performs display. The external I / F 603 is an interface with an external device. The external device includes a recording medium 603a and the like. Thus, the image forming apparatus 16 can read and / or write on the recording medium 603a via the external I / F 603. The recording medium 603a includes an IC card, a flexible disk, a CD, a DVD, an SD memory card, a USB memory, and the like.

  The communication I / F 604 is an interface for connecting the image forming apparatus 16 to the network 18. Accordingly, the image forming apparatus 16 can perform data communication with the client device 12 connected to the network 18 via the communication I / F 604. The printer 605 is a printing device that prints print data on paper. The scanner 606 is a reading device that reads image data (electronic data) from a document. FIG. 3 shows an example in which the image forming apparatus 16 is a multifunction peripheral. When the image forming apparatus 16 is not a multifunction peripheral, another configuration may be used.

<Software configuration>
《Server device》
The server device 10 according to the present embodiment is realized by, for example, the functions illustrated in FIG. FIG. 4 is a functional configuration diagram of an example of the server device according to the present embodiment. 4 implements a password list storage unit 20, a name list storage unit 22, and a transmission / reception unit 24 by executing a program.

  The password list storage unit 20 stores a password list which is an example of a non-confidential document. The name list storage unit 22 stores a name list which is an example of a non-confidential document. The transmitting / receiving unit 24 transmits the password list stored in the password list storage unit 20 and the name list stored in the name list storage unit 22 to the client device 12. Since the password list and the name list are simply lists of passwords and names, respectively, they are non-confidential documents that do not include confidential information.

《Client device》
The client device 12 according to the present embodiment is realized by, for example, a function as shown in FIG. FIG. 5 is a functional configuration diagram of an example of the client device according to the present embodiment. By executing the program, the client device 12 in FIG. 5 executes a character image data storage unit 30 before character code conversion, a password list storage unit 32 before character code conversion, a character code conversion table storage unit 36, and a character code conversion table storage unit 36 after character code conversion. A character image data storage unit 40, a password list storage unit 42 after character code conversion, and a confidential document storage unit 46 are realized. The client device 12 implements the character code conversion unit 34, the confidential document creation unit 44, and the output unit 48 by executing a program.

  The character image data storage unit 30 before the character code conversion stores a character image prepared for each character shape used for an image character function described later in association with a character code. The password list storage unit 32 before character code conversion stores the password list transmitted from the server device 10 as a password list before character code conversion.

  The character code conversion table storage unit 36 stores character code conversion rules. The character code conversion unit converts character codes according to the conversion rules stored in the character code conversion table storage unit. For example, the character code conversion unit 34 converts the character code of the character image for each character shape stored in the character image data storage unit 30 before the character code conversion according to the conversion rule, and stores the character code in the character image data storage unit 40 after the character code conversion. Let it. In addition, the character code conversion unit 34 converts the character code of the password list stored in the password list storage unit 32 before the character code conversion according to the conversion rule, and stores the converted character code in the password list storage unit 42 after the character code conversion.

  The confidential document creation unit 44 combines the password list, which is a non-confidential document stored in the password list storage unit 42 after the character code conversion, with the name list transmitted from the server device 10, for example, in a PDF format. Create a document. The PDF (Portable Document Format) format is an example of the format of an electronic document file.

  The confidential document creation unit 44 uses an image character function of an image variable function that replaces the character shape of the characters in the password list included in the confidential document with a character image prepared for each character and outputs the character image. Since the character codes of the password list included in the confidential document are the character codes converted by the character code conversion unit 34, they are different from the password list before the character code conversion.

  On the other hand, the character image of each character shape stored in the character image data storage unit 40 after the character code conversion has the character code converted according to the same conversion rule as the password list. Therefore, the character form of the character in the password list replaced by the confidential document creation unit 44 using the image character function is the same as the character form of the character in the password list before the character code conversion.

  As described above, since the confidential document created by the confidential document creating unit 44 has the character code representing the password list converted, the leakage of the confidential information can be suppressed. On the other hand, when the confidential document created by the confidential document creation unit 44 is printed or displayed, the appearance of the confidential document becomes the original character code before conversion, and a password list intended by the document creator can be output.

  The confidential document storage unit 46 stores the confidential document created by the confidential document creation unit 44. The transmission / reception unit 38 receives from the server device 10 the password list stored in the password list storage unit 20 and the name list stored in the name list storage unit 22. The output unit 48 causes the image forming apparatus 16 to print the confidential document temporarily stored in the confidential document storage unit 46 or causes the display device 502 to display the confidential document.

<Process>
<< Process of Information Processing System According to Present Embodiment >>
The information processing system 1 according to the present embodiment performs processing according to, for example, the procedure shown in the flowchart of FIG. FIG. 6 is a flowchart of an example of a processing procedure of the information processing system according to the present embodiment.

  In step S10, in the information processing system 1 according to the present embodiment, the document creator creates a non-confidential document as shown in FIG. 7 using the document creation program. FIG. 7 is an image diagram of an example of a non-confidential document. FIG. 7A is an example of a password list. FIG. 7B is an example of a name list. Note that the confidential document is created by combining the password of FIG. 7A and the name list of FIG. 7B.

  For example, in the example of the password in FIG. 7A and the name list in FIG. 7B, a variable field (text frame) for inserting the password list into the non-confidential document in the name list is defined and left blank. This allows the combination of non-confidential documents.

  Each password in FIG. 7A and each name in FIG. 7B are associated with each other by an assigned ID. Each password in FIG. 7A and each name in FIG. 7B may be associated with each other in order. In this case, the Nth password in the password list is associated with the Nth name in the name list. The password list is text data for performing text processing (character code conversion). The name list may be image data that does not include character string information.

  The password list created in step S10 is stored in the password list storage unit 20 of the server device 10 in PDF format. The name list is stored in the name list storage unit 22 of the server device 10 in PDF format.

  Proceeding to step S12, the document creator creates a character code conversion table on the client device 12. For example, referring to the sample, the document creator creates a character code conversion table in which, for example, the character code before conversion is shifted forward by five characters to obtain the character code after conversion.

  FIG. 8 is an explanatory diagram of an example of the character code conversion table. FIG. 8 shows a character code conversion in accordance with a conversion rule that the character code before conversion is shifted forward by five characters to obtain a character code after conversion. For example, in FIG. 8, the correspondence between the left-hand glyph and the character code is converted into the correspondence between the right-hand glyph and the character code in FIG. 8 according to the conversion rule.

  FIG. 8 shows an example in which the character code is an ASCII code. For example, the character code "30" of the character form "0" is converted to the character code "2B" by the conversion rule. Further, the character code "31" of the character shape "1" is converted into the character code "2C" by the conversion rule. Note that the example in FIG. 8 is a simple example for easy understanding, and it is desirable to use a more complicated conversion rule.

  Proceeding to step S14, the character code conversion unit 34 converts the character code of the character image for each character shape stored in the character image data storage unit 30 before the character code conversion according to the conversion rule stored in the character code conversion table storage unit 36. . FIG. 9 is a diagram illustrating an example of a process of converting a character code of a character image for each character shape. FIG. 9 illustrates an example of a conversion rule in which a character code before conversion is shifted backward by five characters to obtain a character code after conversion. Here, it should be noted that the process of converting the character code of the character image for each character shape shown in FIG. 9 is performed in a direction opposite to that of the character code conversion table shown in FIG. By converting the character code of the character image for each glyph in the reverse direction, the password before conversion can be imaged and printed and displayed, as described later.

  For example, in FIG. 9, the correspondence between the character form “0” and the file name of the character image “30.png” is converted to the correspondence relation between the character form “0” and the file name of the character image “35.png”. In addition, the correspondence between the character form “1” and the file name of the character image “31.png” is converted into the correspondence relation between the character form “1” and the file name of the character image “36.png”.

  Note that the example in FIG. 9 is a simple example for easy understanding, and it is desirable to use a more complicated conversion rule. Further, the character image data after the character code conversion converted in step S14 is stored as setting information used in the image variable function as shown in FIG. 10, for example.

  FIG. 10 is a configuration diagram of an example of setting information used in the image variable function. In the setting information of FIG. 10, the converted character code is associated with the file name of the character image corresponding to the character code.

  Proceeding to step S16, the character code conversion unit 34 converts the password list stored in the password list storage unit 32 before character code conversion according to the conversion rule stored in the character code conversion table storage unit 36, for example, as shown in FIG. I do. FIG. 11 is an explanatory diagram of an example of a process for converting a password list. For example, in the example of FIG. 11, the password “02468” is converted into the password “579; =” according to the conversion rule. Further, the password “13579” is converted into the password “68: <>” according to the conversion rule.

  Proceeding to step S18, the confidential document creation section 44 creates a confidential document, for example, as shown in FIG. FIG. 12 is an explanatory diagram of an example of processing for creating and outputting a confidential document. The document creator inputs a password list 1000 stored in the password list storage unit 42 after character code conversion, a name list 1010 stored in the name list storage unit 22 as input data to the confidential document generation unit 44, and , And setting information used in the image variable function of FIG.

  Further, the setting information of the confidential document creation unit 44 is stored in a template file 1020 in a PDF format unique to the variable printing program. If there is a template file 1020, the confidential document creation unit 44 may update the password in the password list 1000 later or increase or decrease the number of members to be managed (that is, increase or decrease the number of data in the password list 1000 and the name list 1010). However, confidential documents can be easily created.

  The confidential document creation unit 44 creates a confidential document 1030 using the password list 1000, the name list 1010, and the template file 1020. Since the character code of the password included in the confidential document 1030 has been converted by the character code conversion unit 34, the character string of the password is different from the character string of the password before conversion. Therefore, the confidential document 1030 maintains strong confidentiality.

  Proceeding to step S20, the confidential document creation unit 44 creates an image image 1050 of the confidential document for output such as printing or display using the image character function of the image variable function, and temporarily stores the image in the confidential document storage unit 46. Let it. The image 1050 has the character shape of the character code shown in the setting information 1040 of FIG. 10 even if the character code of the password character remains the converted character code by the image character function of the image variable function. In other words, the appearance of the image 1050 is the character shape of the character code before conversion, and the password list intended by the document creator can be imaged and output.

  The output unit 48 causes the image forming apparatus 16 to print an image 1050 obtained by converting the password list intended by the document creator and temporarily stored in the confidential document storage unit 46, or causes the display device 502 to display the image. ,can do. After printing or displaying, the confidential document 1030 temporarily stored in the confidential document storage unit 46 is deleted.

  In the information processing system 1 according to the present embodiment, when performing output such as printing or display, the confidential document 1030 is created, and the confidential document 1030 is deleted after the output, so that leakage of confidential information can be suppressed. Further, in the information processing system 1 according to the present embodiment, even if the confidential document 1030 is leaked, the character code of the character string of the password included in the confidential document 1030 has been converted. The risk of increased leakage is reduced.

  On the other hand, the information processing system 1 according to the present embodiment can output a confidential document having the original password before conversion without changing the character code included in the confidential document 1030. Both convenience and convenience can be achieved.

《Image character function》
The image character function used by the information processing system 1 according to the present embodiment is, for example, a process as shown in FIG. FIG. 13 is an explanatory diagram of an example of the image character function. The image character function is a function of replacing the character shape of a character included in the entire image with an image (character image) prepared for each character and outputting the image.

  FIG. 13B shows a character image of the character “Y” as an example. As the character image, an image file in the PNG format or the TIFF format is prepared for each character. For example, an image file of a character image is given a file name of “character code. Extension” so that the confidential document creation unit 44 can identify the image file of the character image. The document creator gives a file name such as “Y character code.png” to the image file of the character image of the character “Y”.

  FIG. 13A is an example in which the character shapes of the characters “M”, “A”, and “X” included in the entire image are replaced with corresponding character images. By using the image character function, in the information processing system 1 according to the present embodiment, the password before conversion can be imaged and printed or displayed without changing the character code of the password after conversion.

(Summary)
According to the present embodiment, by creating a confidential document creation environment for creating a confidential document from a non-confidential document, a confidential document is temporarily created when outputting such as printing, and after the output, the confidential document is created. Because it is deleted, leakage of confidential documents can be suppressed. Further, even if the confidential document is leaked, since the character code is converted, the leak of the confidential information included in the confidential document can be suppressed. When performing printing such as printing of a confidential document, the password before conversion can be imaged without restoring the converted character code, so that both strong confidentiality and convenience can be achieved.

  The present invention is not limited to the above-described embodiments specifically disclosed, and various modifications and changes can be made without departing from the scope of the claims. Note that the information processing system 1 described in the present embodiment is merely an example, and it goes without saying that there are various system configuration examples according to applications and purposes.

  The character image data storage unit 30 is an example of an image file storage unit described in the claims. The character code conversion table storage unit 36 is an example of a conversion rule storage unit. The character code conversion unit 34 is an example of a character code conversion unit. The confidential document creation unit 44 is an example of a confidential document creation unit. The output unit 48 is an example of an output unit. The image forming device 16 is an example of an output device. The confidential document creation unit 44 is an example of a confidential document deleting unit.

Reference Signs List 1 information processing system 10 server device 12 client device 16 image forming device 18 network 20 password list storage unit 22 name list storage unit 24 transmission / reception unit 30, 40 character image data storage unit 32, 42 password list storage unit 34 character code conversion unit 36 Character code conversion table 38 Transmission / reception unit 44 Confidential document creation unit 46 Confidential document storage unit 48 Output unit 502 Display device 605 Printer 1000 Password list 1010 Name list 1020 Template file 1030 Confidential document 1040 Setting information 1050 Image image of confidential document

JP 2006-24051 A

Claims (7)

An information processing system for creating a confidential electronic document,
Image file storage means for storing an image file for each glyph corresponding to the character code;
Conversion rule storage means for storing the conversion rules of the character code,
Character code included in the confidential electronic document, and character code conversion means for converting the character code corresponding to the image file for each glyph according to the conversion rule,
The image file associated with the converted character code included in the confidential electronic document is read out from the image file storage unit, and the character shape corresponding to the converted character code corresponds to the converted character code. Confidential document creation means for creating the confidential electronic document replaced with an image of an image file,
Output means for outputting the confidential electronic document created by the confidential document creation means to an output device,
Information processing system having Further comprising a confidential document deletion unit for deleting the confidential electronic document output by the output unit,
2. The information according to claim 1, wherein the confidential document creating unit creates the confidential electronic document from a plurality of non-confidential electronic documents when the output unit causes the output device to output the confidential electronic document. Processing system. The character code included in the confidential electronic document before conversion according to the conversion rule is not the same as the converted character code included in the confidential electronic document created by the confidential document creation unit. The glyph of the character code included in the confidential electronic document before conversion according to the rule is the same as the glyph of the converted character code included in the confidential electronic document created by the confidential document creation unit. The information processing system according to claim 1 or 2, wherein: The confidential document creating means is realized by an image variable function,
The information processing system according to claim 1, wherein: A confidential document creation method executed in an information processing system,
A storage step of storing an image file for each glyph corresponding to the character code in the image file storage means,
A character code included in the confidential electronic document, and a character code conversion step of converting a character code corresponding to the image file for each glyph in accordance with a conversion rule of the character code stored in a conversion rule storage unit;
The image file associated with the converted character code to be included in the confidential electronic document is read from the image file storage unit, and the character shape corresponding to the converted character code corresponds to the converted character code. Confidential document creation step of creating the confidential electronic document replaced with an image of an image file,
An output step of outputting the confidential electronic document created in the confidential document creation step to an output device;
Confidential document creation method. An information processing apparatus for creating a confidential electronic document,
Image file storage means for storing an image file for each glyph corresponding to the character code;
Conversion rule storage means for storing the conversion rules of the character code,
Character code included in the confidential electronic document, and character code conversion means for converting the character code corresponding to the image file for each glyph according to the conversion rule,
The image file associated with the converted character code included in the confidential electronic document is read out from the image file storage unit, and the character shape corresponding to the converted character code corresponds to the converted character code. Confidential document creation means for creating the confidential electronic document replaced with an image of an image file,
Output means for outputting the confidential electronic document created by the confidential document creation means to an output device,
Information processing device having An information processing device that creates confidential electronic documents,
Image file storage means for storing an image file for each glyph corresponding to a character code;
Conversion rule storage means for storing the conversion rule of the character code,
Character code included in the confidential electronic document, and character code conversion means for converting the character code corresponding to the image file for each glyph in accordance with the conversion rule,
The image file associated with the converted character code included in the confidential electronic document is read out from the image file storage unit, and the character shape corresponding to the converted character code corresponds to the converted character code. Confidential document creation means for creating the confidential electronic document replaced with an image of an image file,
Output means for outputting the confidential electronic document created by the confidential document creation means to an output device,
Program to function as

Images