JP2020166883A5 - - Google Patents

Download PDF

Info

Publication number
JP2020166883A5
JP2020166883A5 JP2020103046A JP2020103046A JP2020166883A5 JP 2020166883 A5 JP2020166883 A5 JP 2020166883A5 JP 2020103046 A JP2020103046 A JP 2020103046A JP 2020103046 A JP2020103046 A JP 2020103046A JP 2020166883 A5 JP2020166883 A5 JP 2020166883A5
Authority
JP
Japan
Prior art keywords
information
terminal device
management terminal
analysis
program
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
JP2020103046A
Other languages
Japanese (ja)
Other versions
JP2020166883A (en
JP7074371B2 (en
Filing date
Publication date
Application filed filed Critical
Publication of JP2020166883A publication Critical patent/JP2020166883A/en
Publication of JP2020166883A5 publication Critical patent/JP2020166883A5/ja
Application granted granted Critical
Publication of JP7074371B2 publication Critical patent/JP7074371B2/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Claims (18)

管理対象とする第1の情報を取得する情報取得手段と、前記第1の情報、及び前記第1の情報に対する付加情報である第2の情報を蓄積する情報蓄積手段と、蓄積メディアと、を備える情報管理端末装置であって、
前記蓄積メディアが、前記情報管理端末装置を前記情報蓄積手段として動作させるプログラムを含む特定プログラムのみがアクセス可能な秘匿領域と、前記特定プログラム以外のプログラムもアクセス可能な通常領域と、を有し、
前記情報蓄積手段が、前記第1の情報又は前記第1の情報を参照可能なリンクと、前記第2の情報又は前記第2の情報を参照可能なリンクの前記通常領域への逐次的な蓄積を行い、
前記秘匿領域が、前記第1の情報及び/又は前記第2の情報の改竄を検出するためのデータ改竄検出パラメタを保持し、
前記情報蓄積手段で蓄積した前記第1の情報及び前記第2の情報から配信対象情報を選択して出力する配信手段を更に備え、
前記第2の情報が、前記配信手段による出力の履歴、前記配信手段による出力先を特定する情報、前記配信手段による出力先での処理結果のうち、少なくとも一つを含むことを特徴とする、情報管理端末装置。 An information acquisition means for acquiring the first information to be managed, an information storage means for storing the first information and a second information which is additional information to the first information, and a storage medium. It is an information management terminal device that is provided.
The storage media has a secret area that can be accessed only by a specific program including a program that operates the information management terminal device as the information storage means, and a normal area that can be accessed by programs other than the specific program.
The information storage means sequentially stores the first information or the link that can refer to the first information and the link that can refer to the second information or the second information in the normal region. And
The concealed area holds a data tampering detection parameter for detecting tampering with the first information and / or the second information.
A distribution means for selecting and outputting distribution target information from the first information and the second information accumulated by the information storage means is further provided.
The second information includes at least one of an output history by the distribution means, information for specifying an output destination by the distribution means, and a processing result at the output destination by the distribution means. Information management terminal device. 前記データ改竄検出パラメタが、前記第1の情報及び/又は前記第2の情報を用いて、前記第1の情報及び/又は前記第2の情報に対する改竄の有無を検出するための情報を生成する鍵であることを特徴とする、請求項1に記載の情報管理端末装置。 The data tampering detection parameter uses the first information and / or the second information to generate information for detecting the presence or absence of tampering with respect to the first information and / or the second information. The information management terminal device according to claim 1, wherein the information management terminal device is a key. 前記秘匿領域に、前記特定プログラムの改竄検出を行うためのプログラム改竄検出パラメタを含み、
前記プログラム改竄検出パラメタを用いた前記特定プログラムの改竄検出処理を行う、プログラム改竄検出手段を備えることを特徴とする、請求項1又は請求項2に記載の情報管理端末装置。 The concealed area includes a program tampering detection parameter for detecting tampering with the specific program.
The information management terminal device according to claim 1 or 2, further comprising a program tampering detection means that performs tampering detection processing of the specific program using the program tampering detection parameter. 前記プログラム改竄検出手段が前記特定プログラムの改竄検出処理を定期的に行い、
前記特定プログラムの改竄を検出した際に、前回の前記特定プログラムの改竄検出処理を実行した時点から前記プログラムの改竄を検出した時点までに蓄積された前記第1の情報及び前記第2の情報の削除又は回復を行うことを特徴とする、請求項3に記載の情報管理端末装置。 The program tampering detection means periodically performs tampering detection processing of the specific program,
When the falsification of the specific program is detected, the first information and the second information accumulated from the time when the falsification detection process of the specific program is executed last time to the time when the falsification of the program is detected The information management terminal device according to claim 3, characterized in that it is deleted or recovered. 前記データ改竄検出パラメタを用いた前記第1の情報及び/又は前記第2の情報の改竄検出処理を行うデータ改竄検出手段を備え、
前記データ改竄検出手段が前記第1の情報及び/又は前記第2の情報の改竄を検出した際に、前回の前記第1の情報及び/又は前記第2の情報の改竄検出処理を実行した時点から前記第1の情報及び/又は前記第2の情報の改竄を検出した時点までに蓄積された前記第1の情報及び前記第2の情報の削除又は回復を行うことを特徴とする、請求項1から請求項4の何れかに記載の情報管理端末装置。 A data tampering detection means for performing tampering detection processing of the first information and / or the second information using the data tampering detection parameter is provided.
When the data tampering detecting means detects tampering with the first information and / or the second information, the time when the previous tampering detection process of the first information and / or the second information is executed. The first information and / or the second information accumulated up to the time when the falsification of the second information is detected is deleted or recovered from the first information and / or the second information. The information management terminal device according to any one of 1 to 4. 前記配信手段が、選択した前記配信対象情報の秘匿レベルを設定する秘匿レベル設定手段と、前記秘匿レベルを付加情報として前記配信対象情報に付加して出力する手段と、を有することを特徴とする、請求項1から請求項5の何れかに記載の情報管理端末装置。 The distribution means includes a concealment level setting means for setting a concealment level of the selected distribution target information, and a means for adding the concealment level as additional information to the distribution target information and outputting the information. , The information management terminal device according to any one of claims 1 to 5. 前記秘匿レベルが、
前記配信対象情報を暗号化せずに送信するクラス0と、
前記配信対象情報の暗号化を行った状態で送信するクラス1と、
前記配信対象情報を暗号化し、出力先での複製を禁止し、前記配信対象情報の有効期限を設定して送信するクラス2と、
前記配信対象情報を暗号化し、出力先での複製の禁止、前記配信対象情報に対する任意の処理によって生じる処理結果情報の取り扱いの制限、前記配信対象情報の有効期限を設定して送信するクラス3と、を含むことを特徴とする、請求項6に記載の情報管理端末装置。 The confidentiality level is
Class 0, which transmits the distribution target information without encryption, and
Class 1 to be transmitted with the distribution target information encrypted, and
Class 2 that encrypts the distribution target information, prohibits duplication at the output destination, sets the expiration date of the distribution target information, and transmits the information.
Class 3 that encrypts the distribution target information, prohibits duplication at the output destination, restricts the handling of processing result information caused by arbitrary processing on the distribution target information, sets an expiration date of the distribution target information, and transmits the information. The information management terminal device according to claim 6, wherein the information management terminal device includes. 前記第2の情報が、前記秘匿レベルをさらに含むことを特徴とする、請求項6又は請求項7に記載の情報管理端末装置。 The information management terminal device according to claim 6 or 7, wherein the second information further includes the confidentiality level. 前記第1の情報の取得や配信に際して認証を行う個人・資格情報認証手段をさらに備える請求項1から請求項8の何れかに記載の情報管理端末装置。 The information management terminal device according to any one of claims 1 to 8, further comprising an individual / qualification information authentication means that authenticates when acquiring or distributing the first information. 前記第1の情報が、物の健康に関する情報であり、機器状態情報、機器稼働情報又は環境情報であることを特徴とする、請求項1から請求項9の何れかに記載の情報管理端末装置。 The information management terminal device according to any one of claims 1 to 9, wherein the first information is information on the health of a thing, and is device state information, device operation information, or environmental information. .. 他の端末装置より配信される第1の情報、及び前記第1の情報に対する付加情報である第2の情報を受信する受信手段と、前記第1の情報、及び前記第2の情報の解析を行う解析手段と、前記解析手段による解析結果の前記他の端末装置への送信及び/又は表示を行う出力手段と、蓄積メディアと、を備える情報管理端末装置であって、
前記蓄積メディアが、前記情報管理端末装置を前記受信手段と、前記解析手段と、前記出力手段と、として動作させるプログラムを含む特定プログラムのみがアクセス可能な秘匿領域と、前記特定プログラム以外のプログラムもアクセス可能な通常領域と、を有し、
前記秘匿領域が、前記特定プログラムの改竄検出を行うためのプログラム改竄検出パラメタを含み、
前記プログラム改竄検出パラメタを用いた前記特定プログラムの改竄検出を行うプログラム改竄検出手段を備えることを特徴とする、情報管理端末装置。 The receiving means for receiving the first information distributed from the other terminal device and the second information which is additional information to the first information, the first information, and the analysis of the second information. An information management terminal device including an analysis means to be performed, an output means for transmitting and / or displaying an analysis result by the analysis means to the other terminal device, and a storage medium.
A secret area accessible only by a specific program including a program in which the storage medium operates the information management terminal device as the receiving means, the analysis means, and the output means, and programs other than the specific program. Has an accessible normal area,
The concealed area includes a program tampering detection parameter for detecting tampering with the specific program.
An information management terminal device comprising a program tampering detection means for detecting tampering with the specific program using the program tampering detection parameter. 前記受信手段が、前記第1の情報及び前記第2の情報に付与された秘匿レベルの判定を行う秘匿レベル判定手段を有し、
前記解析手段及び前記出力手段が、前記秘匿レベルに従って前記第1の情報、前記第2の情報、及び前記解析結果を取り扱うことを特徴とする請求項11に記載の情報管理端末装置。 The receiving means has a secret level determining means for determining the secret level given to the first information and the second information.
The information management terminal device according to claim 11, wherein the analysis means and the output means handle the first information, the second information, and the analysis result according to the confidentiality level. 前記解析手段が、前記解析の履歴情報又は前記解析の履歴情報を参照可能なリンクを前記通常領域への蓄積し、
前記秘匿領域が、前記履歴情報の改竄を検出するためのデータ改竄検出パラメタを保持することを特徴とする、請求項12に記載の情報管理端末装置。 The analysis means accumulates the history information of the analysis or the link that can refer to the history information of the analysis in the normal area.
The information management terminal device according to claim 12, wherein the secret area holds a data falsification detection parameter for detecting falsification of the history information. 前記解析手段が前記解析の履歴情報の改竄を検出した際に、前回の前記解析の履歴情報の改竄検出処理を実行した時点から前記解析の履歴情報の改竄を検出した時点までに蓄積された前記解析の履歴情報の削除又は回復を行うことを特徴とする、請求項13に記載の情報管理端末装置。 When the analysis means detects falsification of the history information of the analysis, the data accumulated from the time when the previous falsification detection process of the history information of the analysis is executed to the time when the falsification of the history information of the analysis is detected. The information management terminal device according to claim 13, wherein the analysis history information is deleted or recovered. 前記秘匿レベルが、
前記第1の情報、及び前記第2の情報を暗号化せずに取り扱うクラス0と、
前記第1の情報、及び前記第2の情報の暗号化を行った状態で取り扱うクラス1と、
前記第1の情報、及び前記第2の情報を暗号化し、出力先での複製を禁止し、前記第1の情報、及び前記第2の情報の有効期限を設定して取り扱うクラス2と、
前記第1の情報、及び前記第2の情報を暗号化し、出力先での複製の禁止、前記解析結果の取り扱いの制限、前記第1の情報、及び前記第2の情報の有効期限を設定して取り扱うクラス3と、を含むことを特徴とする、請求項12から請求項14の何れかに記載の情報管理端末装置。 The confidentiality level is
Class 0 that handles the first information and the second information without encryption, and
Class 1 that handles the first information and the second information in an encrypted state, and
Class 2 in which the first information and the second information are encrypted, duplication at the output destination is prohibited, and the expiration date of the first information and the second information is set and handled.
The first information and the second information are encrypted, and duplication at the output destination is prohibited, the handling of the analysis result is restricted, and the expiration date of the first information and the second information is set. The information management terminal device according to any one of claims 12 to 14, wherein the information management terminal device includes class 3 and the like. 前記受信手段が、他の端末装置より前記解析結果を受信し、
前記解析手段が、前記解析結果の再解析を行うことを特徴とする、請求項11から請求項15の何れかに記載の情報管理端末装置。 The receiving means receives the analysis result from another terminal device and receives the analysis result.
The information management terminal device according to any one of claims 11 to 15, wherein the analysis means reanalyzes the analysis result. 前記第1の情報が、物の健康に関する情報であり、機器状態情報、機器稼働情報又は環境情報であることを特徴とする、請求項11から請求項16の何れかに記載の情報管理端末装置。 The information management terminal device according to any one of claims 11 to 16, wherein the first information is information on physical health, which is device state information, device operation information, or environmental information. .. 前記第1の情報の受信や閲覧に際して認証を行う個人・資格情報認証手段をさらに備える請求項11から請求項17の何れかに記載の情報管理端末装置。The information management terminal device according to any one of claims 11 to 17, further comprising an individual / qualification information authentication means that authenticates when receiving or viewing the first information.
JP2020103046A 2017-03-17 2020-06-15 Information management terminal device Active JP7074371B2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2017053383 2017-03-17
JP2017053383 2017-03-17

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
JP2017251060A Division JP6721248B2 (en) 2017-03-17 2017-12-27 Information management terminal

Publications (3)

Publication Number Publication Date
JP2020166883A JP2020166883A (en) 2020-10-08
JP2020166883A5 true JP2020166883A5 (en) 2021-02-12
JP7074371B2 JP7074371B2 (en) 2022-05-24

Family

ID=63715689

Family Applications (2)

Application Number Title Priority Date Filing Date
JP2017251060A Active JP6721248B2 (en) 2017-03-17 2017-12-27 Information management terminal
JP2020103046A Active JP7074371B2 (en) 2017-03-17 2020-06-15 Information management terminal device

Family Applications Before (1)

Application Number Title Priority Date Filing Date
JP2017251060A Active JP6721248B2 (en) 2017-03-17 2017-12-27 Information management terminal

Country Status (1)

Country Link
JP (2) JP6721248B2 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6721248B2 (en) * 2017-03-17 2020-07-08 株式会社ミルウス Information management terminal
JP6676713B2 (en) * 2018-08-23 2020-04-08 東芝映像ソリューション株式会社 Transmitter for digital television broadcasting
JP2021033541A (en) * 2019-08-21 2021-03-01 本田技研工業株式会社 Communication system
JP6897743B2 (en) 2019-10-15 2021-07-07 日本電気株式会社 Data management device and data management method

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4372791B2 (en) 2005-08-26 2009-11-25 三菱電機株式会社 Information storage device
JP4716260B2 (en) 2006-06-26 2011-07-06 株式会社オリコム Personal information / secret information management system
JP2008257381A (en) 2007-04-03 2008-10-23 Sony Corp Information analyzing system, information analyzing device, information analyzing method, information analyzing program, and recording medium
JP5255991B2 (en) 2008-10-24 2013-08-07 株式会社日立製作所 Information processing apparatus and computer program
JP2012249035A (en) 2011-05-27 2012-12-13 Sony Corp Information processor, information processing method and program
JP6721248B2 (en) 2017-03-17 2020-07-08 株式会社ミルウス Information management terminal

Similar Documents

Publication Publication Date Title
JP2020166883A5 (en)
US8848924B2 (en) Privacy-preserving location tracking for devices
CN108768972B (en) Vehicle data storage and access method, device, system and electronic equipment
Chong et al. Secure audit logging with tamper-resistant hardware
JP6814147B2 (en) Terminals, methods, non-volatile storage media
US20170103228A1 (en) System and method for secure review of audit logs
CN105338120B (en) A kind of fixed security method of the electronic evidence based on cloud storage
CN105915332A (en) Cloud storage encryption and dereplication method and cloud storage encryption and dereplication system
US20080297326A1 (en) Low Cost RFID Tag Security And Privacy System And Method
CN109308421B (en) Information tamper-proofing method and device, server and computer storage medium
CA2714196A1 (en) Information distribution system and program for the same
WO2006087784A1 (en) Authentication method, authentication system, and tag device thereof, information reference client, authentication server, and information server
JP2009103774A (en) Secret sharing system
CN105338119A (en) Electronic evidence fixing security system based on cloud storage
US20140281576A1 (en) Information providing system, information processing apparatus, computer readable medium, and information providing method
CN113472521A (en) Block chain-based real-name digital identity management method, signature device and verification device
CN106101092A (en) A kind of information evaluation processing method and first instance
JP2016072769A5 (en)
US10754979B2 (en) Information management terminal device
US20170200020A1 (en) Data management system, program recording medium, communication terminal, and data management server
KR101808695B1 (en) Signature Extraction Module, Data Verification Module and integrity monitoring System for Sequence Data
US20170149561A1 (en) Method and system for identifying manipulation of data records
CN105897730A (en) User name and password information encryption and verification method
KR20130085537A (en) System and method for accessing to encoded files
JP5972471B2 (en) Data processing apparatus, data processing method, and program