JP2020113835A - Encryption device, decryption device, key generation device, information processing device, and program - Google Patents

Abstract

To decrypt encrypted data without holding an encryption key used when data is encrypted in an encryption device and without requiring a password input by a user.SOLUTION: An encryption device 2 includes a base data acquisition unit 262 that acquires base data, an authentication unit 260 that authenticates a user, an encryption key acquisition unit 264 that acquires an encryption key generated on the basis of the base data and the user information of the authenticated user, an encryption execution unit 265 that generates encrypted data using an encryption key, an encryption key discard unit 267 that discards the encryption key after the encryption data is generated by the encryption execution unit, and an output unit 266 that adds the base data to the encrypted data and saves the data.SELECTED DRAWING: Figure 2

Description

The present invention relates to an encryption device, a decryption device, a key generation device, an information processing device and a program, and more particularly to a technique for generating encrypted data and plaintext data.

Conventionally, when storing data to be kept secret in an information processing device connected to a network or an information processing device installed in an office and used by a plurality of users, the data may be seen by others, Various techniques have been proposed as techniques for preventing tampering. For example, Patent Document 1 discloses a technique for ensuring security by generating an encryption key based on a plurality of secret keys hidden in a program and encrypting data using the encryption key.

JP 2012-151546 A

However, the information processing device of Patent Document 1 holds therein an encryption key used for encrypting data. Therefore, for example, when the information processing apparatus is connected to the network, there is a possibility that a malicious third party may illegally access and steal the internal encryption key. It is also possible to use a common key system in which the encryption key and the decryption key are common. In such a case, if the encryption key is stolen, the encrypted data can be decrypted using the encryption key, and a malicious third party can see the contents of the encrypted data or tamper with it. There is a problem that you can do it.

Further, in order to prevent the cryptographic key from being stolen by a malicious third party, it is conceivable that the information processing device does not hold the cryptographic key, for example, the user stores the password (encryption key). In this case, since the information processing device does not hold the encryption key, there is no possibility that the encryption key will be stolen from the information processing device. However, if the user forgets the password (encryption key), there is a problem in that the information processing device cannot decrypt the encrypted data.

Therefore, the present invention has been made in order to solve the above problems, and does not hold the encryption key used when encrypting the data in the information processing device, but also when decrypting the encrypted data. It is an object of the present invention to provide an encryption device, a decryption device, a key generation device, an information processing device, and a program that can decrypt encrypted data without requiring a user to input a password.

In order to achieve the above-mentioned object, the invention according to claim 1 is an encryption device, which is a base data acquisition means for acquiring base data, an authentication means for performing authentication processing for authenticating a user, the base data and the An encryption key for obtaining an encryption key generated based on the user information of the user authenticated in the authentication process, and an encryption for encrypting data using the encryption key obtained by the encryption key acquisition unit. Encryption means, encryption key destruction means for discarding the encryption key used by the encryption means, and additional data for specifying the base data added to the encrypted data generated by the encryption means and output And an output unit that operates.

According to a second aspect of the present invention, in the encryption device according to the first aspect, the additional information is the base data.

The invention according to claim 3 is the encryption device according to claim 1 or 2, wherein the base data is a random number.

The invention according to claim 4 is the encryption apparatus according to any one of claims 1 to 3, wherein the base data includes information indicating a date and time.

According to a fifth aspect of the present invention, in the encryption device according to any one of the first to fourth aspects, the authentication unit acquires the biometric information of the user and performs the authentication process.

According to a sixth aspect of the invention, in the encryption device according to any one of the first to fifth aspects, the user information is authentication information acquired in the authentication processing.

According to a seventh aspect of the present invention, in the encryption device according to any one of the first to sixth aspects, a communication unit that communicates with another device and the base data acquired by the base data acquisition unit are stored in the other device. Further comprising a base data transmitting unit for transmitting to the device, wherein the encryption key obtaining unit is configured to generate the encryption key based on the user information and the base data transmitted by the base data transmitting unit. The configuration is characterized in that it is acquired from the other device via a communication unit.

According to an eighth aspect of the present invention, in the encryption device according to the seventh aspect, the communication unit performs one-to-one short-range wireless communication with the other device when the other device is within a predetermined distance range. This configuration is characterized by being performed.

The invention according to claim 9 is the encryption device according to any one of claims 1 to 6, further comprising: an encryption key generating unit that generates the encryption key based on the user information and the base data. The encryption key acquisition means acquires the encryption key from the encryption key generation means.

According to a tenth aspect of the present invention, in the encryption device of the ninth aspect, the encryption key generating means sets the data length of the encryption key to a predetermined data length.

According to an eleventh aspect of the present invention, there is provided a decryption device, which comprises an authentication means for performing an authentication process for authenticating a user, and an encryption key generated based on base data and user information of the user authenticated in the authentication process. Based on input means for inputting encrypted encrypted data, specifying means for specifying the base data from additional information added to the encrypted data, and the user information and the base data specified by the specifying means. A decryption key obtaining unit that obtains a decryption key generated by the decryption key, and a decryption unit that uses the decryption key obtained by the decryption key obtaining unit to decrypt the encrypted data to generate plaintext data. The configuration is characterized by.

According to a twelfth aspect of the present invention, in the decryption device according to the eleventh aspect, the authentication unit acquires the biometric information of the user and performs the authentication process.

According to a thirteenth aspect of the present invention, in the decryption device according to the eleventh or twelfth aspect, the user information is authentication information acquired in the authentication processing.

According to a fourteenth aspect of the present invention, in the decoding device according to any one of the eleventh to thirteenth aspects, a communication unit that communicates with another device, and the base data specified by the specifying unit are transmitted to the other device. Further comprising: base data transmitting means, wherein the decryption key acquisition means, via the communication means, the decryption key generated based on the user information and the base data identified by the identifying means. The configuration is characterized in that it is acquired from the other device.

According to a fifteenth aspect of the present invention, in the decoding device according to the fourteenth aspect, the communication unit performs one-to-one short-range wireless communication with the other device when the other device is within a predetermined distance range. This is a feature.

According to a sixteenth aspect of the present invention, in the decryption device according to any one of the eleventh to thirteenth aspects, a decryption key generation unit that generates the decryption key based on the user information and the base data identified by the identification unit. Further, the decryption key acquisition means acquires the decryption key from the decryption key generation means.

According to a seventeenth aspect of the present invention, in the decryption device of the sixteenth aspect, the decryption key generating means sets the data length of the decryption key to a predetermined data length.

The invention according to claim 18 is an information processing apparatus, including base data acquisition means for acquiring base data, authentication means for performing authentication processing for authenticating a user, and the user authenticated in the base data and the authentication processing. Encryption key acquisition means for acquiring an encryption key generated on the basis of the user information, encryption means for encrypting data using the encryption key acquired by the encryption key acquisition means, and the encryption Refer to the encryption key destruction means for discarding the encryption key used by the means, the output means for adding the additional information capable of specifying the base data to the encrypted data generated by the encryption means, and the additional information. By means of specifying means for specifying the base data, a decoding key acquisition means for acquiring a decoding key generated based on the user information and the base data specified by the specifying means, and by the decoding key acquisition means And a decryption unit that decrypts the encrypted data to generate plaintext data by using the obtained decryption key.

The invention according to claim 19 is an encryption key generating device, wherein base data acquisition means for acquiring base data, authentication means for performing authentication processing for authenticating a user, and authentication in the base data and the authentication processing The configuration is characterized by including an encryption key generation unit that generates an encryption key based on user information of a user, and a key output unit that outputs the encryption key generated by the encryption key generation unit.

The invention according to claim 20 is a program, wherein the computer is authenticated in the base data acquisition step of acquiring base data, an authentication step of performing an authentication process of authenticating a user, and the base data and the authentication step. An encryption key obtaining step of obtaining an encryption key generated based on user information of a user; an encryption step of encrypting data using the encryption key obtained in the encryption key obtaining step; An encryption key discarding step of discarding the encryption key used in the encryption step, and an output step of adding the base data identifiable additional information to the encrypted data generated in the encryption step and outputting the encrypted data. The configuration is characterized by being executed.

The invention according to claim 21 is a program, and an encryption generated on the computer based on an authentication step of performing an authentication process for authenticating a user, and base data and user information of the user authenticated in the authentication step. An input step of inputting encrypted data encrypted by a key; a specifying step of specifying the base data from additional information added to the encrypted data; the user information and the base data specified in the specifying step; A decryption key acquisition step of obtaining a decryption key generated based on the above, and a decryption step of decrypting the encrypted data to generate plaintext data by using the decryption key obtained in the decryption key acquisition step. The configuration is characterized by being executed.

According to the present invention, the encryption key used when encrypting the data is not held in the information processing device, and when decrypting the encrypted data, the user does not need to input a password, The encrypted data can be decrypted.

It is a figure which illustrates the concept of the process by an information processing system. It is a figure which shows an example of the hardware constitutions and functional constitution of an encryption device. It is a figure which shows an example of the hardware constitutions and functional constitution of a decoding device. It is a figure which shows an example of the hardware constitutions and functional constitution of a key generation apparatus. It is a figure which shows an example of the operation process at the time of encryption. It is a figure which shows an example of the operation process at the time of decoding. It is a flow chart which shows an example of a processing procedure of encryption processing by an encryption device. It is a flow chart which shows an example of a processing procedure of decoding processing by a decoding device. 9 is a flowchart showing an example of a processing procedure of a key generation process by the key generation device. It is a figure which illustrates the concept of the process by the information processing system of 2nd Embodiment. It is a figure which shows an example of the hardware constitutions and functional constitution of the information processing apparatus of 2nd Embodiment. It is a figure which shows an example of the hardware constitutions and functional constitution of the information processing apparatus of 3rd Embodiment.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the drawings. In the embodiments described below, elements common to each other are designated by the same reference numerals, and a duplicate description thereof will be omitted.

(First embodiment)
FIG. 1 is a diagram illustrating the concept of processing by the information processing system 1 according to the first embodiment of the present invention. FIG. 1A is a diagram illustrating the concept of encryption processing by the information processing system 1. The information processing system 1 includes an encryption device 2, a decryption device 3, and a key generation device 4. The encryption device 2 and the decryption device 3 are installed in a local environment such as an office. Moreover, the encryption device 2 and the decryption device 3 are configured to be able to communicate with each other via a network 5 such as a LAN (Local Area Network). The key generation device 4 is, for example, a wearable device worn on a user's arm or the like, and is based on standards such as NFC (Near Field Communication) and Bluetooth (registered trademark), and the encryption device 2 and the decryption device 3 and the short-range wireless communication. This is a configuration that enables communication. When establishing communication between the encryption device 2 and the key generation device 4, the user needs to bring the key generation device 4 attached to a part of the body such as an arm close to the encryption device 2.

The encryption device 2 is, for example, a general personal computer (PC), and is a device that can generate the encrypted data 90 by encrypting image data and other data. The encryption device 2 transmits the generated encrypted data 90 to the decryption device 3 via the network 5. The encryption device 2 is not limited to a personal computer, and may be a device such as a tablet terminal or a smartphone.

The key generation device 4 is a device that can generate an encryption key 92 and a decryption key 93 for decrypting the encrypted data 90 using the base data 91 and the user information. Here, the base data 91 is data necessary for generating the encryption key 92 and the decryption key 93. For example, the base data 91 is random data such as a random number generated by the encryption device 2. The user information is data required to generate the encryption key 92 and the decryption key 93, and is information about the user who is authenticated by the key generation device 4. For example, the user information is a user ID or the like registered for each user, and is information registered in advance in a predetermined storage area of the key generation device 4 by a user or an administrator. The encryption key 92 and the decryption key 93 are generated based on a predetermined key generation algorithm, and when the base data 91 and the user information used at the time of generating the encryption key 92 and the generation of the decryption key 93 are the same, The key 92 and the decryption key 93 are a pair of keys. When the encryption key 92 and the decryption key 93 are a pair of keys, the encrypted data 90 encrypted by the encryption key 92 can be decrypted by the decryption key 93.

The key generation device 4 is a device that can acquire authentication information such as biometric information and perform user authentication. As described above, the key generation device 4 of the present embodiment is a wristband type wearable device worn on the arm of the user. The key generation device 4 of the present embodiment acquires the heartbeat information of the user as authentication information and performs authentication processing. The key generation device 4 is not limited to a wristband type wearable device. It may be a glasses-type wearable device capable of acquiring the user's iris information, a portable fingerprint authentication device capable of acquiring the user's fingerprint information, or the like. In that case, the key generation device 4 acquires the user's iris information and fingerprint information as authentication information.

The encryption device 2 of this embodiment does not hold the encryption key 92 for encrypting data. Therefore, the encryption device 2 encrypts the data by acquiring the encryption key 92 from the key generation device 4. For example, when the encryption device 2 receives an instruction to encrypt data from the user, the encryption device 2 first performs a user authentication process. Here, the encryption device 2 sends an authentication confirmation request to the key generation device 4. Upon receiving the authentication confirmation request, the key generation device 4 acquires the authentication information of the user, authenticates the user, and sends the result to the encryption device 2. When the authentication is successful, the encryption device 2 transmits the base data 91 to the key generation device 4 in order to acquire the encryption key 92 from the key generation device 4.

Upon receiving the base data 91 from the encryption device 2, the key generation device 4 acquires the user information regarding the authenticated user stored in the predetermined storage area. The key generation device 4 generates the encryption key 92 using the base data 91 and the user information acquired from the predetermined storage area based on a predetermined key generation algorithm. When the encryption key 92 is generated, the key generation device 4 sends the generated encryption key 92 to the encryption device 2.

When the encryption device 2 receives the encryption key 92 from the key generation device 4, the encryption device 2 encrypts the data using the received encryption key 92. At this time, the encryption device 2 generates the encrypted data 90 based on a predetermined encryption algorithm. After generating the encrypted data 90, the encryption device 2 discards the encryption key 92 used when generating the encrypted data 90. By discarding the encryption key 92, it is possible to prevent the encryption key 92 from being stolen.

Next, the encryption device 2 outputs or saves the generated encrypted data 90. In this embodiment, a case will be described in which the encrypted data 90 generated by the encryption device 2 is transmitted to the decryption device 3. When transmitting the generated encrypted data 90 to the decrypting device 3, the encrypting device 2 adds the base data 91, which is the source of the encryption key 92, to the encrypted data 90 and transmits it. The base data 91 is used when generating the encryption key 92 used when generating the encrypted data 90 and also when generating the decryption key 93 used when decrypting the encrypted data 90.

FIG. 1B is a diagram exemplifying the concept of the decoding process by the information processing system 1. The decryption device 3 is a device that can generate plaintext data by decrypting the encrypted data 90 encrypted by the encryption device 2. The decoding device 3 is configured by an image forming device such as an MFP (Multifunction Peripherals) and has a plurality of functions related to image processing such as a copy function, a scan function, a print function, and a FAX function. In the present embodiment, the case where the decoding device 3 is an image processing device having a plurality of functions related to image processing will be described, but the present invention is not limited to this. The decoding device 3 may be an information processing device such as a PC that does not have a function related to image processing.

The decryption device 3 does not hold the decryption key 93 for decrypting the encrypted data 90 inside the device. Therefore, the decryption device 3 decrypts the encrypted data 90 by acquiring the decryption key 93 from the key generation device 4. When the decryption device 3 receives a decryption instruction of the encrypted data 90 from the user, the decryption device 3 first performs a user authentication process. Here, the decryption device 3 sends an authentication confirmation request to the key generation device 4. Upon receiving the authentication confirmation request, the key generation device 4 acquires the authentication information of the user, authenticates the user, and sends the result to the decryption device 3. When the authentication is successful, the decryption device 3 transmits the base data 91 required for generating the decryption key 93 to the key generation device 4, in order to obtain the decryption key 93 from the key generation device 4. The base data 91 is added to the encrypted data 90 received from the encryption device 2, and is the same data as the base data 91 used when generating the encryption key 92.

Upon receiving the base data 91 from the decryption device 3, the key generation device 4 acquires the user information regarding the authenticated user stored in the predetermined storage area. At this time, if the user who instructed the encryption process and the user who instructed the decryption process are the same, the user information acquired from the predetermined storage area is the same. Next, the key generation device 4 generates the decryption key 93 using the base data 91 and the user information based on a predetermined key generation algorithm. This decryption key 93 becomes a decryption key 93 that is paired with the encryption key 92 if the user who instructed the encryption process and the user who instructed the decryption process are the same. This is because the encryption key 92 and the decryption key 93 are generated based on the same base data 91 and user information. When the decryption key 93 is generated, the key generation device 4 transmits the generated decryption key 93 to the decryption device 3.

When the decryption device 3 receives the decryption key 93 from the key generation device 4, the decryption device 3 uses the received decryption key 93 to decrypt the encrypted data 90. As described above, the decryption key 93 used here is paired with the encryption key 92 obtained by encrypting the encrypted data 90. Therefore, the decryption device 3 can generate the plaintext data by decrypting the encrypted data 90 using the received decryption key 93.

As described above, the information processing system 1 of the present embodiment generates the decryption key 93 for decrypting the encrypted data 90 when the user instructing the encryption process and the user instructing the decryption process are the same. It is possible. Hereinafter, such an information processing system 1 will be described in more detail.

First, the encryption device 2 will be described in detail. FIG. 2 is a diagram showing an example of a hardware configuration and a functional configuration of the encryption device 2. The hardware configuration of the encryption device 2 includes a communication interface 20, a display unit 21 including a color liquid crystal display, an operation unit 22 including a keyboard, a mouse, a touch panel, a storage unit 23, and a control unit 24. These are provided, and these are capable of mutually inputting/outputting data via the data bus 25.

The communication interface 20 is an interface for connecting the encryption device 2 to the network 5. The encryption device 2 communicates with the decryption device 3 via this communication interface 20. The communication interface 20 also includes a short-range wireless communication unit 20a. The encryption device 2 performs one-to-one short-range wireless communication with the key generation device 4 via the short-range wireless communication unit 20a. By inputting/outputting data to/from the key generation device 4 by one-to-one short-range wireless communication, it is possible to perform wireless communication while ensuring security.

The storage unit 23 is a non-volatile storage unit including, for example, a hard disk drive (HDD) or a solid state drive (SSD). The encryption program 100 is stored in the storage unit 23.

The control unit 24 is configured to include a CPU, a memory, etc., which are not shown. The CPU is for executing the encryption program 100 stored in the storage unit 23. The memory is for storing temporary data generated when the CPU executes the encryption program 100. When the encryption program 100 is executed by the CPU of the control unit 24, the control unit 24 causes the authentication unit 260, the base data generation unit 261, the base data acquisition unit 262, the base data transmission unit 263, the encryption key acquisition unit 264, The functions of the encryption execution unit 265, the output unit 266, and the encryption key destruction unit 267 will be described below in detail.

The authentication unit 260 is a processing unit that performs authentication processing for authenticating a user. The authentication unit 260 of this embodiment communicates with the key generation device 4 to perform authentication processing. As described above, the key generation device 4 of the present embodiment can acquire the heartbeat information of the user as the authentication information and authenticate the user based on the acquired authentication information. When the user gives an instruction for the encryption process, the authentication unit 260 communicates with the key generation device 4 attached by the user who gives the encryption process. Then, the authentication unit 260 transmits an authentication confirmation request to the key generation device 4. The key generation device 4, which has received the authentication confirmation request, acquires the authentication information of the user, authenticates the user, and transmits the authentication result to the encryption device 2. As a result of the user authentication performed in the key generation device 4, when the authentication unit 260 receives the authentication success notification, the authentication unit 260 determines that the user authentication has been successful. When the authentication unit 260 determines that the user has been successfully authenticated, it instructs the base data generation unit 261 to generate base data. On the other hand, when the authentication unit 260 receives the authentication failure notification, the authentication unit 260 determines that the user authentication has failed. In this case, the authentication unit 260 does not instruct the base data generation unit 261 to generate base data. When the authentication unit 260 receives the authentication failure notification, the authentication unit 260 may cause the display unit 21 to display an image for notifying the user that the user authentication has failed. This allows the user to know that his/her authentication has failed.

The base data generation unit 261 is a processing unit that generates the base data 91. The base data generation unit 261 generates the base data 91 when the base data generation instruction is input from the authentication unit 260. At this time, it is preferable that the base data generation unit 261 generate different base data 91 each time. By generating the base data 91 as different data each time, the encryption key 92 generated based on the base data 91 and the user information also differs accordingly. This is because security can be enhanced by generating a different encryption key 92 each time data is encrypted. The base data generation unit 261 may generate, for example, a random number in order to generate different base data 91 for each encryption process, and use the generated random number as the base data 91. Also, the base data generation unit 261 may use, as the base data 91, predetermined data including information indicating the current date and time. Then, when the base data generation unit 261 generates the base data 91, the base data generation unit 261 outputs the generated base data 91 to the base data acquisition unit 262.

The base data acquisition unit 262 is a processing unit that acquires the base data 91. Upon acquiring the base data 91 from the base data generation unit 261, the base data acquisition unit 262 outputs the base data 91 to the base data transmission unit 263.

The base data transmission unit 263 is a processing unit that transmits the base data 91 acquired by the base data acquisition unit 262 to the key generation device 4. Upon receiving the base data 91 from the base data acquisition unit 262, the base data transmission unit 263 transmits the input base data 91 to the key generation device 4.

The encryption key acquisition unit 264 is a processing unit that acquires the encryption key 92 generated based on the base data 91 and the user information of the authenticated user. The encryption key acquisition unit 264 of this embodiment acquires the encryption key 92 from the key generation device 4. When the encryption key acquisition unit 264 acquires the encryption key 92 from the key generation device 4, the encryption key acquisition unit 264 outputs the acquired encryption key 92 to the encryption execution unit 265.

The encryption execution unit 265 acquires, for example, the data designated by the user as the encryption target data, and performs the encryption process on the data. At this time, the encryption execution unit 265 uses the encryption key 92 acquired by the encryption key acquisition unit 264 to encrypt the data. The encryption execution unit 265 uses the encryption key 92 to encrypt the data based on a predetermined encryption algorithm to generate the encrypted data 90. After generating the encrypted data 90, the encryption execution unit 265 outputs the encrypted data 90 to the output unit 266.

The encryption key discarding unit 267 functions when the encryption data 90 is generated by the encryption executing unit 265, and discards the encryption key 92 used when the encryption data 90 is generated by the encryption executing unit 265. It is a department. By discarding the encryption key 92, the encryption device 2 is prevented from holding the used encryption key 92. By doing so, it is possible to prevent the situation where the encryption key 92 is stolen by another person. By preventing the encryption key 92 from being stolen, it is possible to prevent a malicious third party from browsing or tampering with the contents.

The output unit 266 is a processing unit that adds additional information that can identify the base data 91 to the encrypted data 90 generated by the encryption execution unit 265 and outputs the encrypted data 90 and the additional information to the decryption device 3. .. When the encryption data 90 is generated by the encryption execution unit 265, the encryption key 92 used to generate the encryption data 90 is discarded by the encryption key destruction unit 267. Therefore, when decrypting the encrypted data 90, it is necessary to generate the decryption key 93 based on the base data 91 used to generate the encryption key 92 and the user information. Therefore, in the present embodiment, additional information that can identify the base data 91 used when generating the encryption key 92 is added to the encrypted data 90 and is transmitted to the decryption device 3 together with the encrypted data 90. Thereby, the decryption device 3 can specify the base data 91 necessary for generating the decryption key 93. In this embodiment, the case where the base data 91 itself is added as the additional information is illustrated. By adding the base data 91 as the additional information, the process for specifying the base data 91 based on the additional information can be omitted.

Next, the decoding device 3 will be described in detail. FIG. 3 is a diagram illustrating an example of a hardware configuration and a functional configuration of the decoding device 3. The hardware configuration of the decoding device 3 includes a communication interface 30, an operation panel 31, a storage unit 32, a scanner unit 33 that optically reads an image of an original, a printer unit 34 that prints out, and a public telephone network (not shown). A FAX unit 35 and a control unit 36 for transmitting and receiving FAX data via the data bus 37 are provided, and these can mutually input and output data via a data bus 37.

The communication interface 30 is an interface for connecting the decoding device 3 to the network 5. The decryption device 3 communicates with the encryption device 2 via this communication interface 30. The communication interface 30 also includes a short-range wireless communication unit 30a. The decryption device 3 performs one-to-one short-range wireless communication with the key generation device 4 via the short-range wireless communication unit 30a. By inputting/outputting data to/from the key generation device 4 by one-to-one short-range wireless communication, it becomes possible to perform wireless communication while ensuring security.

The operation panel 31 includes a display unit 31a and an operation unit 31b. The display unit 31a includes, for example, a color liquid crystal display, and displays various operation screens for prompting the user to perform an operation. The operation unit 31b includes touch panel keys arranged on the screen of the display unit 31a, push button keys arranged around the screen of the display unit 31a, and the like, and receives an operation by the user.

The storage unit 32 is a non-volatile storage unit including, for example, a hard disk drive (HDD) or a solid state drive (SSD). The storage unit 32 stores the basic program 101, the decryption program 102, the encrypted data 90, and the base data 91 associated with the encrypted data 90.

The control unit 36 is configured to include a CPU, a memory, etc., which are not shown. The CPU is for executing the basic program 101 and the decryption program 102 stored in the storage unit 32. The memory is for storing temporary data generated when the CPU executes the basic program 101 and the decryption program 102. When the CPU of the control unit 36 executes the basic program 101, the decoding device 3 functions as an image processing device having a plurality of image processing functions such as a copy function and a print function.

When the decryption program 102 is executed by the CPU of the control unit 36, the control unit 36 causes the input unit 361, the authentication unit 362, the base data identification unit 363, the base data transmission unit 364, the decryption key acquisition unit 365, and the decryption execution. It functions as the unit 366. The details of each of these units will be described below.

The input unit 361 is a processing unit that inputs the encrypted data 90 and the additional information added to the encrypted data 90. The input unit 361 of this embodiment inputs the encrypted data 90 and the additional information added to the encrypted data 90 from the encryption device 2 via the communication interface 30. The additional information in this embodiment is the base data 91. When inputting the encrypted data 90 and the additional information, the input unit 361 stores the encrypted data 90 and the additional information in the storage unit 32 in association with each other. For example, the input unit 361 creates a folder for each encrypted data 90 stored in the storage unit 32, and stores the corresponding encrypted data 90 and additional information in the created folder.

The authentication unit 362 is a processing unit that performs an authentication process for authenticating a user. The authentication unit 362 of this embodiment communicates with the key generation device 4 to perform authentication processing. As described above, the key generation device 4 of the present embodiment acquires the heartbeat information of the user as the authentication information, and performs the authentication process based on the acquired authentication information. When the user's instruction for the decryption processing is accepted, the authentication unit 362 functions. The authentication unit 362 communicates with the key generation device 4 worn by the user who has instructed the decryption process. Then, the authentication unit 362 transmits an authentication confirmation request to the key generation device 4. Upon receiving the authentication confirmation request, the key generation device 4 acquires the user authentication information, authenticates the user, and sends the authentication result to the decryption device 3. When the authentication unit 362 receives the authentication success notification as a result of the user authentication performed by the key generation device 4, the authentication unit 362 determines that the user authentication has succeeded. When the authentication unit 362 determines that the user has been successfully authenticated, the authentication unit 362 instructs the base data specifying unit 363 to specify the base data. As a result, the authentication unit 362 causes the base data identification unit 363 to identify the base data 91 required to decrypt the encrypted data 90 that is the target of the decryption process. On the other hand, when the authentication unit 362 receives the authentication failure notification as a reply to the authentication confirmation request, the authentication unit 362 determines that the user authentication has failed. In this case, the authentication unit 362 does not instruct the base data specifying unit 363 to specify the base data. When the authentication unit 362 receives the authentication failure notification, the authentication unit 362 may display an image for notifying the user that the user authentication has failed on the display unit 31a. This allows the user to know that his/her authentication has failed.

The base data specifying unit 363 is a processing unit that specifies the base data 91 that is necessary when decrypting the encrypted data 90 based on the additional information added to the encrypted data 90. When the base data specifying unit 363 inputs a base data specifying instruction from the authentication unit 362, the base data specifying unit 363 performs a process for specifying the base data 91. In this embodiment, the base data 91 that is the additional information is stored in the storage unit 32 in association with the encrypted data 90. As described above, for example, the base data 91 is stored together with the corresponding encrypted data 90 in the folder of each encrypted data 90 created in the predetermined storage area of the storage unit 32. Therefore, the base data identification unit 363 can identify the base data 91 associated with the encrypted data 90 as the base data 91 required when decrypting the encrypted data 90. When the base data specifying unit 363 specifies the base data 91 required to decrypt the encrypted data 90, the base data specifying unit 363 outputs the specified base data 91 to the base data transmitting unit 364.

The base data transmission unit 364 is a processing unit that transmits the base data 91 identified by the base data identification unit 363 to the key generation device 4. Upon receiving the base data 91 from the base data specifying unit 363, the base data transmitting unit 364 transmits the base data 91 to the key generating device 4.

The decryption key acquisition unit 365 functions when the authentication unit 362 determines that the user has been successfully authenticated, and is generated based on the user information regarding the authenticated user and the base data 91 specified by the base data specifying unit 363. It is a processing unit that acquires the decryption key 93 to be generated. The decryption key acquisition unit 365 of this embodiment acquires the decryption key 93 generated by the key generation device 4 from the key generation device 4. Upon acquiring the decryption key 93 from the key generation device 4, the decryption key acquisition unit 365 outputs the acquired decryption key 93 to the decryption execution unit 366.

The decryption execution unit 366 is a processing unit that decrypts the encrypted data 90 using the decryption key 93 acquired by the decryption key acquisition unit 365. The decryption executing unit 366 uses the decryption key 93 to decrypt the encrypted data 90 based on a predetermined decryption algorithm to generate plaintext data. For example, when the plaintext data is image data, the decryption device 3 can display an image based on the plaintext data on the display unit 31a or perform printout based on the plaintext data.

Next, the key generation device 4 will be described in detail. FIG. 4 is a diagram showing an example of a hardware configuration and a functional configuration of the key generation device 4. The key generation device 4 includes, as its hardware configuration, a short-distance wireless communication unit 40, an authentication information acquisition unit 41, a storage unit 42, and a control unit 43, which mutually input data via a data bus 44. This is a configuration capable of outputting.

The short-range wireless communication unit 40 is an interface for the key generation device 4 to perform one-to-one short-range wireless communication with the encryption device 2 or the decryption device 3.

The authentication information acquisition unit 41 acquires the authentication information of the user. As described above, the authentication information acquisition unit 41 of the present embodiment acquires heartbeat information of the user wearing the key generation device 4 as authentication information. The authentication information acquisition unit 41 outputs the acquired authentication information to the authentication unit 362 described later.

The storage unit 42 is a non-volatile storage unit including, for example, a solid state drive (SSD). The key generation program 103 and the user information 94 are stored in the storage unit 42.

In the user information 94, various information regarding the user who owns the key generation device 4 is registered in advance by the user or the administrator. For example, in the user information 94, identification information for identifying (identifying) a user such as a user ID, a department to which the user belongs, and a date of birth is registered. In the user information 94, biometric information such as heartbeat information, vein information, fingerprint information, and iris information of the user may be registered. Further, in the user information 94, information dedicated to generating the encryption key 92 and the decryption key 93 such as a secret key (password) may be registered. Further, if there is a group such as a department to which a plurality of users belong, the common user information 94 may be assigned to the plurality of users belonging to the group. By doing so, it becomes possible to decrypt the encrypted data 90 encrypted by the instruction of the user belonging to the group according to the instruction of the other user belonging to the group, and when performing common work by a plurality of users. The convenience of can be improved.

The control unit 43 is configured to include a CPU, a memory and the like (not shown). The CPU is for executing the key generation program 103 stored in the storage unit 42. The memory is for storing temporary data generated when the CPU executes the key generation program 103. When the CPU of the control unit 43 executes the key generation program 103, the control unit 43 functions as the authentication unit 431, the base data acquisition unit 432, the key generation unit 433, and the key output unit 434. The details of each of these units will be described below.

The authentication unit 431 is a processing unit that performs an authentication process for authenticating a user. Upon receiving the authentication confirmation request from the encryption device 2 or the decryption device 3, the authentication unit 431 causes the authentication information acquisition unit 41 to function and acquires the user authentication information. In the present embodiment, since the authentication process is performed based on the user's heartbeat information, the authentication information acquisition unit 41 is made to acquire the heartbeat information as the user's authentication information. The authentication unit 431 authenticates the user by determining whether the authentication information input from the authentication information acquisition unit 41 matches the information registered in the user information 94 stored in the storage unit 42. When the authentication information input from the authentication information acquisition unit 41 matches the information registered in the user information 94, the authentication process is successful. In this case, the authentication unit 431 sends an authentication success notification to the encryption device 2 or the decryption device 3. On the other hand, if the authentication information input from the authentication information acquisition unit 41 does not match the information registered in the user information 94, the authentication process fails. In this case, the authentication unit 431 sends an authentication failure notification to the encryption device 2 or the decryption device 3.

The base data acquisition unit 432 is a processing unit that acquires the base data 91. The base data acquisition unit 432 of this embodiment acquires the base data 91 from the encryption device 2 and the decryption device 3. When the base data acquisition unit 432 acquires the base data 91, it outputs the base data 91 to the key generation unit 433.

The key generation unit 433 functions when the user authentication process is successful. The key generation unit 433 is a processing unit that generates the encryption key 92 or the decryption key 93 using the base data 91 acquired by the base data acquisition unit 432 and the user information 94 of the authenticated user. When the key generation unit 433 acquires the base data 91 from the base data acquisition unit 432, the key generation unit 433 acquires the user information 94 regarding the authenticated user stored in the storage unit 42. In the present embodiment, when the user information 94 includes a plurality of pieces of information, it is assumed that which piece of the plurality of pieces of information is used to generate the encryption key 92 and the decryption key 93 is determined in advance. .. In this case, the key generation unit 433 may acquire only the information necessary for generating the key from the user information 94. The information acquired by the key generation unit 433 does not necessarily have to be the information included in the user information 94 stored in the storage unit 42. Specifically, the authentication information acquired by the authentication information acquisition unit 41, that is, the heartbeat information in this embodiment may be used as the information for generating the encryption key 92 and the decryption key 93. In this case, since the authentication information has already been acquired by the authentication information acquisition unit 41, there is no need for the key generation unit 433 to separately acquire the user information 94 from the storage unit 42 after the authentication processing. When the authentication information acquired by the authentication information acquisition unit 41 is used as the information used for key generation, the key generation unit 433 uses the base data 91 and the authentication information acquired by the authentication information acquisition unit 41 to generate the encryption key. 92 or the decryption key 93 can be generated.

The key generation unit 433 generates the encryption key 92 and the decryption key 93 based on a predetermined key generation algorithm. The data lengths of the encryption key 92 and the decryption key 93 generated by the key generation unit 433 are unified to a predetermined data length. If the base data 91 and the user information 94 used at the time of generating the encryption key 92 and at the time of generating the decryption key 93 are the same, the predetermined key generation algorithm is the encrypted data encrypted by the encryption key 92. Any algorithm can be used as long as it can generate a decryption key 93 that can decrypt 90. However, it is preferable to adopt a common key system in which the encryption key 92 and the decryption key 93 which forms a pair are common. For example, a hash value is calculated by inputting the base data 91 into a predetermined hash function, and an electronic signature obtained by encrypting the hash value using the user information 94 as a secret key based on a predetermined encryption algorithm. , An encryption key 92 and a decryption key 93. The reason why the common key system is preferable is that when the public key system in which the encryption key 92 and the decryption key 93 forming a pair is different is adopted, the encryption device 2 encrypts data as compared with the case where the common key system is adopted. This is because the encryption algorithm of 1 becomes complicated and the load of the encryption device 2 becomes heavy. The key generation unit 433 outputs the generated encryption key 92 or decryption key 93 to the key output unit 434.

The key output unit 434 is a processing unit that outputs the encryption key 92 or the decryption key 93 generated by the key generation unit 433. When the encryption key 92 is generated by the key generation unit 433, the key output unit 434 of this embodiment transmits the encryption key 92 to the encryption device 2. Further, when the key generation unit 433 generates the decryption key 93, the key output unit 434 transmits the decryption key 93 to the decryption device 3.

Next, the operations of the encryption device 2, the decryption device 3, and the key generation device 4 which constitute the information processing system 1 of the present embodiment will be described. FIG. 5 is a diagram showing an example of an operation process when the information processing system 1 encrypts data. When the key generation device 4 is located within a predetermined distance from the encryption device 2, the encryption device 2 establishes a one-to-one short-range wireless communication state with the key generation device 4 (process P1). When the user gives an encryption instruction by performing a predetermined operation, the encryption device 2 accepts the encryption processing based on the instruction from the user (process P2). Upon accepting the encryption process, the encryption device 2 sends an authentication confirmation request of the user who has input the encryption instruction to the key generation device 4 (process P3). When the key generation device 4 receives the authentication confirmation request, it starts the authentication process (process P4). The key generation device 4 acquires the heartbeat information of the user as the authentication information, and confirms whether or not it matches the heartbeat information registered in the user information 94. As a result of the authentication processing, if the acquired heartbeat information matches the heartbeat information registered in the user information 94, the authentication processing succeeds. In this case, the key generation device 4 sends an authentication success notification informing that the user authentication has succeeded to the encryption device 2 (process P5).

Upon receiving the authentication success notification, the encryption device 2 generates the base data 91 (process P6). Then, the encryption device 2 transmits the generated base data 91 to the key generation device 4 (process P7). Upon receiving the base data 91, the key generation device 4 acquires the user information 94 of the authenticated user, and generates the encryption key 92 based on the base data 91 and the user information 94 (process P8). After that, the key generation device 4 transmits the generated encryption key 92 to the encryption device 2 (process P9). Upon receiving the encryption key 92, the encryption device 2 encrypts the data using the encryption key 92 to generate the encrypted data 90 (process P10). After generating the encrypted data 90, the encryption device 2 discards the encryption key 92 used when generating the encrypted data 90 (process P11). Then, the encryption device 2 adds the base data 91 used when generating the encryption key 92 to the encryption data 90 as additional information, and transmits the encryption data 90 and the base data 91 to the decryption device 3 (process P12). ). The decryption device 3 stores the received encrypted data 90 and base data 91 in a state of being associated with each other.

Next, operations of the decryption device 3 and the key generation device 4 will be described. FIG. 6 is a diagram showing an example of an operation process when the information processing system 1 decrypts the encrypted data 90. When the key generation device 4 is located within a predetermined distance from the decryption device 3, the decryption device 3 establishes a one-to-one short-range wireless communication state with the key generation device 4 (process P20). When the user gives a decryption instruction by performing a predetermined operation, the decryption device 3 accepts an instruction to decrypt the encrypted data 90 based on the user operation (process P21). When the decryption processing instruction is received, the decryption device 3 transmits an authentication confirmation request of the user who inputs the decryption instruction to the key generation device 4 (process P22). Upon receiving the authentication confirmation request, the key generation device 4 starts the authentication process (process P23). The key generation device 4 acquires the heartbeat information of the user as the authentication information, and confirms whether or not it matches the heartbeat information registered in the user information 94. As a result of the authentication process, if the acquired heartbeat information matches the heartbeat information registered in the user information 94, the user authentication process is successful. In this case, the key generation device 4 transmits an authentication success notification informing that the user authentication has succeeded to the decryption device 3 (process P24).

Upon receiving the authentication success notification, the decryption device 3 identifies the base data 91 required to generate the decryption key 93 for decrypting the encrypted data 90 to be decrypted, based on the additional information (process P25). The decryption device 3 transmits the specified base data 91 to the key generation device 4 (process P26). Upon receiving the base data 91, the key generation device 4 acquires the user information 94 of the authenticated user and generates the decryption key 93 based on the base data 91 and the user information 94 (process P27). The key generation device 4 transmits the generated decryption key 93 to the decryption device 3 (process P28). Upon receiving the decryption key 93, the decryption device 3 decrypts the encrypted data 90 using the received decryption key 93 to generate plaintext data (process P29).

Next, an example of a specific operation in the encryption device 2 will be described. FIG. 7 is a flowchart showing an example of a processing procedure of encryption processing performed in the encryption device 2. This process is a process that is performed when the encryption process is started based on the encryption instruction from the user. When this process is started, the encryption device 2 confirms whether or not the connection state with the key generation device 4 is established (step S11). If the short-range wireless communication state with the key generation device 4 is not established (NO in step S11), the encryption device 2 waits until the short-range wireless communication state with the key generation device 4 is established. On the other hand, when the short-distance wireless communication state with the key generation device 4 is established (YES in step S11), the encryption device 2 starts the authentication process (step S12). This authentication processing is performed by the encryption device 2 transmitting an authentication confirmation request to the key generation device 4. When the authentication failure notification is received from the key generation device 4 in response to the authentication confirmation request (NO in step S13), the encryption process ends. On the other hand, when the authentication success notification is received from the key generation device 4 (YES in step S13), the encryption device 2 generates and acquires the base data 91 (step S14). Then, the encryption device 2 transmits the acquired base data 91 to the key generation device 4 (step S15).

Next, the encryption device 2 waits until it receives the encryption key 92 from the key generation device 4 (step S16). When the encryption key 92 is received from the key generation device 4 (YES in step S16), the encryption device 2 generates the encrypted data 90 by encrypting the data using the received encryption key 92 (step S16). S17). Then, the encryption device 2 discards the encryption key 92 used when generating the encrypted data 90 (step S18). The encryption device 2 adds the base data 91, which is the basis for generating the encryption key 92 used for encrypting the encryption data 90, to the encryption data 90 as additional information and outputs it, or outputs it to the encryption data 90. The data is associated and saved (step S19). Then, the encryption device 2 ends the encryption process. The encryption device 2 of the present embodiment adds the base data 91 to the generated encrypted data 90 and sends the encrypted data 90 to the decryption device 3.

Next, an example of a specific operation in the decoding device 3 will be described. FIG. 8 is a flowchart showing an example of a processing procedure of a decoding process performed in the decoding device 3. This process is a process that is performed when the decryption process is started based on the decryption instruction from the user. First, the decryption device 3 confirms whether or not the connection state with the key generation device 4 is established (step S21). When the short-distance wireless communication state with the key generation device 4 is not established (NO in step S21), the decryption device 3 waits until the short-distance wireless communication state with the key generation device 4 is established. On the other hand, when the short-range wireless communication state with the key generation device 4 is established (YES in step S21), the decryption device 3 starts the authentication process (step S22). This authentication processing is performed by the decryption device 3 transmitting an authentication confirmation request to the key generation device 4. When the authentication failure notification is received from the key generation device 4 in response to the authentication confirmation request (NO in step S23), the decryption process ends. On the other hand, when the authentication success notification is received from the key generation device 4 (YES in step S23), the decryption device 3 identifies the base data 91 based on the additional information added to the encrypted data 90 (step S24). The decryption device 3 transmits the specified base data 91 to the key generation device 4 (step S25). The decryption device 3 waits until it receives the decryption key 93 from the key generation device 4 (step S26). When the decryption key 93 is received from the key generation device 4 (YES in step S26), the decryption device 3 decrypts the encrypted data 90 using the received decryption key 93 to generate plaintext data (step S27). .. Then, the decoding device 3 finishes the decoding process.

Next, an example of a specific operation in the key generation device 4 will be described. FIG. 9 is a flowchart showing an example of a processing procedure of the key generation processing performed in the key generation device 4. This process is a process performed in response to receiving the authentication confirmation request transmitted from the encryption device 2 or the decryption device 3. First, the key generation device 4 acquires user authentication information (step S31). In this embodiment, the key generation device 4 acquires heartbeat information of the user. Then, the key generation device 4 performs the authentication process by determining whether the authentication information acquired from the user matches the information registered in the user information 94 (step S32). In the present embodiment, it is confirmed whether or not the heartbeat information of the user acquired by the key generation device 4 matches the heartbeat information of the user registered in the user information 94. If the authentication information obtained from the user does not match the user information 94 as a result of the authentication processing, the authentication processing fails. When the authentication process has failed (NO in step S33), the key generation device 4 transmits an authentication failure notification to the encryption device 2 or the decryption device 3 (step S39). Then, the key generation process ends. On the other hand, as a result of the authentication process, if the authentication information acquired from the user matches the user information 94, the authentication process is successful. When the authentication is successful (YES in step S33), the key generation device 4 transmits an authentication success notification to the encryption device 2 or the decryption device 3 (step S34).

Next, the key generation device 4 waits until it receives the base data 91 from the encryption device 2 or the decryption device 3 (step S35). When the base data 91 is received from the encryption device 2 or the decryption device 3 (YES in step S35), the key generation device 4 acquires the user information 94 regarding the authenticated user from the storage unit 42 (step S36). Then, the key generation device 4 generates the encryption key 92 or the decryption key 93 using the base data 91 and the user information 94 based on a predetermined key generation algorithm (step S37). When the encryption key 92 is generated in step S37, the key generation device 4 transmits the generated encryption key 92 to the encryption device 2 (step 38). On the other hand, when the decryption key 93 is generated in step S37, the key generation device 4 transmits the generated decryption key 93 to the decryption device 3 (step S38). Then, the key generation process ends.

As described above, the information processing system 1 of this embodiment can prevent the encryption device 2 from holding the encryption key 92 by discarding the used encryption key 92. Therefore, there is no possibility that the encryption key 92 will be stolen by another person, and security can be ensured. The information processing system 1 saves the encrypted data 90 after adding the additional information capable of specifying the base data 91 used when generating the encryption key 92 to the encrypted data 90. Further, when the information processing system 1 decrypts the encrypted data 90, the base data 91 required to generate the decryption key 93 can be specified based on the additional information. Then, the information processing system 1 of the present embodiment uses the base data 91 used when generating the encryption key 92 and the user information 94 used when generating the encryption key 92, and uses the encryption key 92. It is possible to generate a decryption key 93 that makes a pair with. Therefore, if the user information 94 used when the encryption key 92 is generated can be acquired, the information processing system 1 can generate the decryption key 93 paired with the encryption key 92 to decrypt the encrypted data 90. it can. The user information 94 is information registered for each user or group authenticated by the information processing system 1. Therefore, when the user who instructs the encryption process and the user who instructs the decryption process are the same user or users who belong to the same group, the user only needs to go through the authentication process by the information processing system 1 and You can check and edit the data. In addition, the decoding device 3 of the present embodiment is configured by an image forming device such as an MFP. According to the present invention, the encrypted data 90 cannot be decrypted unless the user who has instructed the encryption process and the user who has instructed the decryption process are the same user or users who belong to the same group. Therefore, even when the encrypted data 90 obtained by encrypting a highly confidential document is stored in the decryption device 3, the encrypted data 90 is not decrypted by a malicious third party's decryption instruction. Therefore, it is possible to prevent a highly confidential document from being stolen by performing printout based on the plaintext data.

(Second embodiment)
Next, a second embodiment of the present invention will be described. In the above-described first embodiment, the mode in which the encryption device 2 that performs the encryption process and the decryption device 3 that performs the decryption process are different devices has been described. In this embodiment, an information processing device in which the encryption device 2 and the decryption device 3 are integrated will be described.

FIG. 10 is a diagram illustrating the concept of processing by the information processing system 1a of the present embodiment. The information processing system 1a includes an information processing device 6 and a key generation device 4. The information processing device 6 is a device in which the encryption device 2 and the decryption device 3 described in the first embodiment are integrated. The key generation device 4 is the same as the key generation device 4 described in the first embodiment. The information processing device 6 and the key generation device 4 are configured to be able to perform short-range wireless communication with each other.

The information processing device 6 is, for example, a general personal computer (PC), and is a device that can generate encrypted data 90 by encrypting image data and other data. The information processing device 6 is a device that can decrypt the encrypted data 90 and generate plaintext data. The information processing device 6 is not limited to a personal computer, and may be a device including a tablet terminal, a smartphone, or an image processing device such as an MFP.

The information processing device 6 performs a user authentication process when an encryption process is instructed by the user. When it is determined that the authentication is successful, the information processing device 6 transmits the base data 91 to the key generating device 4 and acquires the encryption key 92 from the key generating device 4. When the information processing device 6 receives the encryption key 92 from the key generation device 4, the information processing device 6 generates the encrypted data 90 by encrypting the data using the received encryption key 92. In addition, the information processing device 6 performs a user authentication process when the user issues a decryption process instruction. When it is determined that the authentication is successful, the information processing device 6 transmits the base data 91 to the key generation device 4 and acquires the decryption key 93 from the key generation device 4. When the information processing device 6 receives the decryption key 93 from the key generation device 4, the information processing device 6 uses the received decryption key 93 to decrypt the encrypted data 90 to generate plaintext data. Hereinafter, such an information processing device 6 will be described in more detail.

FIG. 11 is a diagram illustrating an example of a hardware configuration and a functional configuration of the information processing device 6. The information processing device 6 includes a communication interface 60, a display unit 61, an operation unit 62, a storage unit 63, and a control unit 64 as its hardware configuration, and these mutually input and output data via a data bus 65. It is a configuration that can perform.

The communication interface 60, the display unit 61, and the operation unit 62 are the same as the communication interface 20, the display unit 21, and the operation unit 22 described in the first embodiment.

The storage unit 63 is a non-volatile storage unit including, for example, a hard disk drive (HDD) or a solid state drive (SSD). The storage unit 23 stores a program 100a, encrypted data 90, and base data 91.

The control unit 64 is configured to include a CPU, a memory, etc., which are not shown. When the program 100a is executed by the CPU of the control unit 64, the control unit 64 causes the authentication unit 640, the base data generation unit 641, the base data acquisition unit 642, the base data transmission unit 643, the encryption key acquisition unit 644, and the encryption execution. It functions as the unit 645, the output unit 646, the encryption key destruction unit 647, the base data identification unit 648, the decryption key acquisition unit 649, and the decryption execution unit 650. The details of each of these units will be described below.

The authentication unit 640 is a processing unit that performs an authentication process for authenticating a user. The authentication unit 640 functions when receiving an instruction for encryption processing or decryption processing from the user. The authentication unit 640 communicates with the key generation device 4 to make an authentication confirmation request to the key generation device 4. When the authentication success of the user who has instructed the encryption process can be confirmed, the authentication unit 640 instructs the base data generation unit 641 to generate the base data 91. If the authentication success of the user who has instructed the decryption process is confirmed, the authentication unit 640 instructs the base data specifying unit 648 to specify the base data 91.

The base data generation unit 641 is a processing unit that functions in accordance with the input of a base data generation instruction from the authentication unit 640 and that generates the base data 91. The base data generation unit 641 receives the instruction to generate the base data from the authentication unit 640, generates the base data 91, and outputs the generated base data 91 to the base data acquisition unit 642.

The base data acquisition unit 642 is a processing unit that acquires the base data 91 from the base data generation unit 641. Upon acquiring the base data 91 from the base data generation unit 641, the base data acquisition unit 642 outputs the acquired base data 91 to the base data transmission unit 643.

The base data transmission unit 643 is a processing unit that transmits the base data 91 acquired by the base data acquisition unit 642 or the base data 91 specified by the base data specification unit 648 described below to the key generation device 4. Upon receiving the base data 91 from the base data acquisition unit 642 or the base data identification unit 648, the base data transmission unit 643 transmits the input base data 91 to the key generation device 4.

The encryption key acquisition unit 644 is a processing unit that acquires from the key generation device 4 the encryption key 92 generated based on the base data 91 and the user information 94 of the authenticated user. Upon acquiring the encryption key 92 from the key generation device 4, the encryption key acquisition unit 644 outputs the acquired encryption key 92 to the encryption execution unit 645.

The encryption execution unit 645 is a processing unit that uses the encryption key 92 acquired by the encryption key acquisition unit 644 to encrypt data. The encryption execution unit 645 uses the encryption key 92 to encrypt the data based on a predetermined encryption algorithm to generate the encrypted data 90. After generating the encrypted data 90, the encryption execution unit 645 outputs the generated encrypted data 90 to the output unit 646.

The output unit 646 adds to the encrypted data 90 generated by the encryption execution unit 645, the base data 91 from which the encryption key 92 used when generating the encrypted data 90 is added, and the storage unit 63 is a processing unit for saving. At this time, the encrypted data 90 and the base data 91 are associated with each other and stored in the storage unit 63. For example, the output unit 646 creates a folder corresponding to each encrypted data 90 stored in the storage unit 63, and stores the encrypted data 90 and the base data 91 in the corresponding folder. The output unit 646 may output the encrypted data 90 and the base data 91 to another device (not shown) without storing them in the storage unit 63.

The encryption key destruction unit 647 is a processing unit that discards the encryption key 92 used by the encryption execution unit 645. The encryption key discarding unit 647 functions when the encryption data 90 is generated by the encryption executing unit 645, and discards the encryption key 92 used by the encryption executing unit 645.

The base data identification unit 648 functions when an instruction to identify the base data 91 is input from the authentication unit 640. The base data specifying unit 648 is a processing unit that specifies the base data 91 based on the additional information added to the encrypted data 90. The base data identification unit 648 identifies the base data 91 when the base data identification instruction is input from the authentication unit 640. In this embodiment, base data 91 is added to the encrypted data 90 as additional information. Therefore, the base data 91 and the encrypted data 90 are associated with each other and stored in the storage unit 63. Therefore, the base data identification unit 648 identifies the base data 91 associated with the encrypted data 90 as the base data 91 required to generate the decryption key 93 used when decrypting the encrypted data 90. .. When the base data identification unit 648 identifies the base data 91 required to generate the decryption key 93 used when decrypting the encrypted data 90, the base data identification unit 648 outputs the identified base data 91 to the base data transmission unit 643.

The decryption key acquisition unit 649 is a processing unit that acquires from the key generation device 4 the decryption key 93 generated based on the user information 94 of the authenticated user and the base data 91 specified by the base data specification unit 648. .. Upon acquiring the decryption key 93 from the key generation device 4, the decryption key acquisition unit 649 outputs the acquired decryption key 93 to the decryption execution unit 650.

The decryption execution unit 650 is a processing unit that decrypts the encrypted data 90 using the decryption key 93 acquired from the key generation device 4 by the decryption key acquisition unit 649. The decryption executing unit 650 uses the decryption key 93 to decrypt the encrypted data 90 based on a predetermined decryption algorithm to generate plaintext data.

As described above, the information processing system 1a of this embodiment includes the information processing device 6 in which the encryption device 2 and the decryption device 3 are integrated. Thus, the user can instruct the information processing device 6 to perform the encryption process or the decryption process by performing a predetermined operation. That is, compared to a case where the encryption device 2 and the decryption device 3 are different devices, there is an advantage that the same device can perform data encryption and decryption.

Except for the points described above, the present embodiment is the same as the one described in the first embodiment, and therefore the description is omitted.

(Third Embodiment)
Next, a third embodiment of the present invention will be described. In the above-described first embodiment, the encryption device 2 that performs the encryption process, the decryption device 3 that performs the decryption process, and the key generation device 4 that generates the encryption key 92 and the decryption key 93 are separate devices. The form has been described. In this embodiment, an information processing device in which the encryption device 2, the decryption device 3, and the key generation device 4 are integrated will be described.

The information processing apparatus of the present embodiment is composed of, for example, a general personal computer (PC), uses the base data 91 and the user information 94 to generate an encryption key 92, and uses image data and other data as encryption keys. This is a device that can generate encrypted data 90 by encrypting using 92. Further, the information processing apparatus can generate the plaintext data by generating the decryption key 93 using the base data 91 and the user information 94 and decrypting the encrypted data 90 using the generated decryption key 93. It is a device. The information processing device is not limited to a personal computer, and may be a device including a tablet terminal or a smartphone, or an image processing device such as an MFP.

FIG. 12 is a diagram illustrating an example of a hardware configuration and a functional configuration of the information processing device 7. The information processing device 7 includes, as its hardware configuration, a communication interface 71, a display unit 72, an operation unit 73, an authentication information acquisition unit 74, a storage unit 75, and a control unit 76, which are connected via a data bus 77. This is a configuration in which data can be input and output mutually.

The communication interface 71, the display unit 72, and the operation unit 73 are the same as the communication interface 20, the display unit 21, and the operation unit 22 described in the first embodiment. The communication interface 71 may not have the short-range wireless communication unit.

The authentication information acquisition unit 74 acquires user authentication information. The authentication information acquisition unit 74 may acquire the heartbeat information of the user as the authentication information, or may acquire other authentication information. For example, the authentication information acquisition unit 74 may be a biometric information acquisition device that acquires user's fingerprint information as authentication information, or a card reader device that acquires authentication information such as a user ID from an IC card possessed by the user. However, from the viewpoint of security enhancement, it is preferable that the authentication information acquisition unit 74 be a biometric authentication device.

The storage unit 75 is a non-volatile storage unit including, for example, a hard disk drive (HDD) or a solid state drive (SSD). The storage unit 75 stores the program 100b, user information 94, encrypted data 90, and base data 91.

The control unit 76 is configured to include a CPU, a memory, etc., which are not shown. When the program 100b is executed by the CPU of the control unit 76, the control unit 76 causes the authentication unit 760, the base data generation unit 761, the base data acquisition unit 762, the key generation unit 763, the encryption key acquisition unit 764, and the encryption execution unit. 765, an output unit 766, an encryption key destruction unit 767, a base data identification unit 768, a decryption key acquisition unit 769, and a decryption execution unit 770. The details of each of these units will be described below.

The authentication unit 760 is a processing unit that performs an authentication process for authenticating a user. The authentication unit 760 functions in response to receiving an instruction for encryption processing or decryption processing from the user. Upon starting the authentication process, the authentication unit 760 causes the authentication information acquisition unit 74 to function and acquires the user authentication information. When the authentication information input from the authentication information acquisition unit 74 matches the information registered in the user information 94, the authentication unit 760 determines that the authentication has succeeded. When the user who has instructed the encryption process is authenticated, the authentication unit 760 instructs the base data generation unit 761 to generate the base data 91. When the user who has instructed the decryption process is authenticated, the authentication unit 760 instructs the base data specifying unit 768 to specify the base data 91.

The base data generation unit 761 is a processing unit that generates the base data 91. The base data generation unit 761 receives the instruction to generate the base data from the authentication unit 760, generates the base data 91, and outputs the generated base data 91 to the base data acquisition unit 762.

The base data acquisition unit 762 is a processing unit that acquires the base data 91. When the base data acquisition unit 762 acquires the base data 91 from the base data generation unit 761 or the base data identification unit 768 described later, the base data acquisition unit 762 outputs the acquired base data 91 to the key generation unit 763.

The key generation unit 763 is a processing unit that generates the encryption key 92 or the decryption key 93 based on the base data 91 acquired by the base data acquisition unit 762 and the user information 94 of the authenticated user. When the key generation unit 763 acquires the base data 91 from the base data acquisition unit 762, the key generation unit 763 acquires the user information 94 regarding the authenticated user stored in the storage unit 75. Then, the key generation unit 763 uses the base data 91 and the user information 94 to generate the encryption key 92 or the decryption key 93 based on a predetermined key generation algorithm. When the encryption key 92 is generated, the key generation unit 763 outputs the generated encryption key 92 to the encryption key acquisition unit 764. On the other hand, when the decryption key 93 is generated, the key generation unit 763 outputs the generated decryption key 93 to the decryption key acquisition unit 769.

The encryption key acquisition unit 764 functions when generating the encryption key 92. The encryption key acquisition unit 764 is a processing unit that acquires from the key generation unit 763 an encryption key 92 generated based on the base data 91 and the user information 94 of the authenticated user. Upon receiving the encryption key 92 from the key generation unit 763, the encryption key acquisition unit 764 outputs the acquired encryption key 92 to the encryption execution unit 765.

The encryption execution unit 765 is a processing unit that encrypts data using the encryption key 92 acquired by the encryption key acquisition unit 764. The encryption execution unit 765 uses the encryption key 92 to encrypt the data based on a predetermined encryption algorithm to generate the encrypted data 90. After generating the encrypted data 90, the encryption execution unit 765 outputs the generated encrypted data 90 to the output unit 766.

The output unit 766 is a processing unit that adds the base data 91 to the encrypted data 90 generated by the encryption execution unit 765 and saves it in the storage unit 75. For example, the output unit 766 creates a folder corresponding to each encrypted data 90 in the storage unit 75, and stores the encrypted data 90 and the base data 91 in the corresponding folder. The encrypted data 90 and the base data 91 are stored in association with each other. The output unit 766 may output the encrypted data 90 and the base data 91 to another device without storing them in the storage unit 75.

The encryption key destruction unit 767 is a processing unit that discards the encryption key 92 used by the encryption execution unit 765. The encryption key discarding unit 767 functions when the encryption data 90 is generated by the encryption execution unit 765, and discards the encryption key 92 used when the encryption data 90 is generated by the encryption execution unit 765.

The base data identification unit 768 is a processing unit that identifies the base data 91 required to generate the decryption key 93 from the additional information added to the encrypted data 90. When the base data specifying unit 768 receives the base data specifying instruction from the authenticating unit 760, the base data specifying unit 768 specifies the base data 91 necessary for generating the decryption key 93. In the present embodiment, the base data 91 and the encrypted data 90 added as additional information to the encrypted data 90 are stored in the storage unit 75 in association with each other. Therefore, the base data identification unit 768 identifies the base data 91 associated with the encrypted data 90 as the base data 91 required to generate the decryption key 93 used when decrypting the encrypted data 90. .. When the base data identification unit 768 identifies the base data 91 required to generate the decryption key 93 used to decrypt the encrypted data 90, the base data identification unit 768 outputs the identified base data 91 to the base data acquisition unit 762.

The decryption key acquisition unit 769 is a processing unit that acquires, from the key generation unit 763, the decryption key 93 generated based on the user information 94 of the authenticated user and the base data 91 identified by the base data identification unit 768. is there. When the decryption key acquisition unit 769 acquires the decryption key 93 from the key generation unit 763, the decryption key acquisition unit 769 outputs the acquired decryption key 93 to the decryption execution unit 770.

The decryption execution unit 770 is a processing unit that decrypts the encrypted data 90 using the decryption key 93 acquired by the decryption key acquisition unit 769. The decryption executing unit 770 uses the decryption key 93 to decrypt the encrypted data 90 based on a predetermined decryption algorithm to generate plaintext data.

As described above, in the information processing device 7 of this embodiment, the encryption device 2, the decryption device 3, and the key generation device 4 are integrated. Therefore, the generation of the encryption key 92 and the decryption key 93, the encryption processing, and the decryption processing can be performed by the same device. Therefore, when all of these processes are performed by the information processing device 7, as compared with the case where these processes are performed by different devices (the encryption device 2, the decryption device 3, and the key generation device 4), each device Since it is not necessary to communicate with each other, the load on each device can be reduced. In addition, when information such as the base data 91 is transmitted and received between the respective devices, it is possible to avoid a situation where a third party intercepts the information, and high security can be realized.

Except for the points described above, the present embodiment is the same as the one described in the first embodiment or the second embodiment, and therefore the description is omitted.

(Modification)
The embodiments of the present invention have been described above. However, the present invention is not limited to the contents described in each of the above embodiments, and various modifications can be applied.

In the above embodiment, the case where the additional information for specifying the base data 91 that is the source of the encryption key 92 is the base data 91 itself used when generating the encryption key 92 has been exemplified. It is not limited. For example, the additional information may be the base data 91 encrypted based on a predetermined encryption algorithm. In this case, the output unit encrypts the base data 91 on the basis of a predetermined encryption algorithm to generate additional information, and the base data specifying unit decrypts the additional information on the basis of a predetermined decryption algorithm. It suffices if 91 can be specified.

In the above embodiment, the case where the encryption program 100, the program 100a, the program 100b, the decryption program 102, and the key generation program 103 are pre-installed in the information processing device 7 or the like has been illustrated. However, the encryption program 100, the program 100a, the program 100b, the decryption program 102, and the key generation program 103 are not limited to those installed in advance in the information processing device 7 or the like, and they are the objects of transactions by themselves. It doesn't matter. In this case, the encryption program 100, the program 100a, the program 100b, the decryption program 102, and the key generation program 103 may be provided to the information processing device 7 or the like in a form that the user himself downloads via the Internet or the like. Alternatively, it may be provided to the information processing device 7 or the like in a state of being recorded in a computer-readable recording medium such as a CD-ROM.

1 Information processing system 2 Encryption device (encryption device)
3 Decoding device (decoding device)
4 Key generation device (encryption key generation device)
6 Information processing device (information processing device)
20 Communication interface (communication means)
20a Short-distance wireless communication unit (communication means)
30 Communication interface (communication means)
30a Short-distance wireless communication unit (communication means)
40 Short-distance wireless communication unit (communication means)
41 Authentication information acquisition unit (authentication means)
90 encrypted data 91 base data 92 encryption key 93 decryption key 94 user information 95 additional information 100 encryption program (program)
100a program 100b program 102 Decoding program (program)
103 key generation program 260 authentication unit (authentication means)
261 Base Data Generation Unit 262 Base Data Acquisition Unit (Base Data Acquisition Means)
263 Base Data Transmission Unit (Base Data Transmission Means)
H.264 encryption key acquisition unit (encryption key acquisition means)
265 encryption execution unit (encryption means)
266 Output unit (output means)
267 Cryptographic Key Discarding Unit (Cryptographic Key Discarding Means)
361 Input unit (input means)
362 Authentication unit (authentication means)
363 Base data identification unit (identification means)
364 Base data transmission unit (base data transmission means)
365 Decryption Key Acquisition Unit (Decryption Key Acquisition Means)
366 Decoding execution unit (decoding means)
431 Authentication unit (authentication means)
432 Base data acquisition unit (base data acquisition means)
433 Key generation unit (encryption key generation means, decryption key generation means)
434 Key Output Unit (Key Output Means)
640 Authentication unit (authentication means)
642 Base data acquisition unit (base data acquisition means)
644 Encryption key acquisition unit (encryption key acquisition means)
645 Encryption execution unit (encryption execution means)
646 Output unit (output means)
647 encryption key destruction unit (encryption key destruction means)
648 Base data identification unit (identification means)
649 Decryption key acquisition unit (decryption key acquisition means)
650 Decoding execution unit (decoding means)

Claims (21)

Base data acquisition means for acquiring base data,
An authentication method that performs authentication processing to authenticate the user,
An encryption key acquisition unit that acquires an encryption key generated based on the base data and user information of a user authenticated in the authentication process,
Encryption means for encrypting data using the encryption key acquired by the encryption key acquisition means,
Encryption key destruction means for destroying the encryption key used by the encryption means,
Output means for adding the additional information capable of specifying the base data to the encrypted data generated by the encryption means, and outputting the added information.
An encryption device comprising: The encryption device according to claim 1, wherein the additional information is the base data. The encryption device according to claim 1, wherein the base data is a random number. The encryption device according to claim 1, wherein the base data includes information indicating a date and time. The encryption device according to any one of claims 1 to 4, wherein the authentication means acquires biometric information of a user and performs the authentication process. The encryption device according to any one of claims 1 to 5, wherein the user information is authentication information acquired in the authentication process. Communication means for communicating with other devices,
Base data transmitting means for transmitting the base data acquired by the base data acquiring means to the other device,
Further equipped with,
The encryption key acquisition means may acquire the encryption key generated based on the user information and the base data transmitted by the base data transmission means from the other device via the communication means. The encryption device according to any one of claims 1 to 6, which is characterized. The encryption device according to claim 7, wherein the communication unit performs one-to-one short-range wireless communication with the other device when the other device is within a range of a predetermined distance. Encryption key generation means for generating the encryption key based on the user information and the base data,
Further equipped with,
7. The encryption device according to claim 1, wherein the encryption key acquisition unit acquires the encryption key from the encryption key generation unit. The encryption device according to claim 9, wherein the encryption key generation means sets a data length of the encryption key to a predetermined data length. An authentication method that performs authentication processing to authenticate the user,
Input means for inputting the encrypted data encrypted by the encryption key generated based on the base data and the user information of the user authenticated in the authentication processing,
Specifying means for specifying the base data from additional information added to the encrypted data,
Decryption key acquisition means for acquiring a decryption key generated based on the user information and the base data identified by the identification means,
Decryption means for decrypting the encrypted data to generate plaintext data by using the decryption key acquired by the decryption key acquisition means,
A decoding device comprising: The decryption device according to claim 11, wherein the authentication unit acquires biometric information of the user and performs the authentication process. 13. The decryption device according to claim 11, wherein the user information is authentication information acquired in the authentication process. Communication means for communicating with other devices,
Base data transmission means for transmitting the base data identified by the identification means to the other device,
Further equipped with,
The decryption key acquisition unit acquires the decryption key generated based on the user information and the base data identified by the identification unit, from the other device via the communication unit. The decoding device according to any one of claims 11 to 13. The decoding device according to claim 14, wherein the communication unit performs one-to-one short-range wireless communication with the other device when the other device is within a predetermined distance range. Decryption key generating means for generating the decryption key based on the user information and the base data identified by the identifying means,
Further equipped with,
14. The decryption device according to claim 11, wherein the decryption key acquisition unit acquires the decryption key from the decryption key generation unit. The decryption device according to claim 16, wherein the decryption key generation unit sets the data length of the decryption key to a predetermined data length. Base data acquisition means for acquiring base data,
An authentication method that performs authentication processing to authenticate the user,
An encryption key acquisition unit that acquires an encryption key generated based on the base data and user information of a user authenticated in the authentication process,
Encryption means for encrypting data using the encryption key acquired by the encryption key acquisition means,
Encryption key destruction means for destroying the encryption key used by the encryption means,
Output means for adding additional information capable of specifying the base data to the encrypted data generated by the encryption means,
Specifying means for specifying the base data by referring to the additional information,
Decryption key acquisition means for acquiring a decryption key generated based on the user information and the base data identified by the identification means,
Decryption means for decrypting the encrypted data to generate plaintext data by using the decryption key acquired by the decryption key acquisition means,
An information processing apparatus comprising: Base data acquisition means for acquiring base data,
An authentication method that performs authentication processing to authenticate the user,
An encryption key generating unit that generates an encryption key based on the base data and user information of a user authenticated in the authentication process,
Key output means for outputting the encryption key generated by the encryption key generation means,
An encryption key generation device comprising: On the computer,
A base data acquisition step for acquiring base data,
An authentication step that performs authentication processing to authenticate the user,
An encryption key acquisition step of acquiring an encryption key generated based on the base data and the user information of the user authenticated in the authentication step,
An encryption step of encrypting data using the encryption key obtained in the encryption key obtaining step;
An encryption key destruction step of destroying the encryption key used in the encryption step,
An output step of adding the additional information capable of identifying the base data to the encrypted data generated in the encryption step and outputting the added data.
A program characterized by causing to execute. On the computer,
An authentication step that performs authentication processing to authenticate the user,
An input step of inputting encrypted data encrypted by an encryption key generated based on the base data and the user information of the user authenticated in the authentication step;
A specifying step of specifying the base data from additional information added to the encrypted data;
A decryption key obtaining step of obtaining a decryption key generated based on the user information and the base data identified in the identifying step,
A decryption step of decrypting the encrypted data to generate plaintext data using the decryption key obtained in the decryption key obtaining step;
A program characterized by causing to execute.

Images