JP2022070027A - Information processing device - Google Patents

Abstract

To provide an information processing device and a program that reduce the possibility that users who do not know the change of setting values cannot use their own machines, as compared with a case where the setting values of their own machines are not changed according to the usage status and the operating environment, and compared with a case where processing is uniformly executed only under the changed setting values, after the setting values are changed while ensuring security.SOLUTION: In an automatic device setting change system, an image forming device controlled to change setting values for safety setting of an own machine according to at least one of the usage status and the operating environment of the own machine acquires changed setting values (S1002), in response to a detection of the execution of job processing (S1001), and determines whether the job processing satisfies changed setting value conditions (S1003) and satisfies initial setting value conditions (S1006). If the changed setting value conditions and the initial setting value conditions are not satisfied, the image forming device temporarily changes the setting (S1010, S1014) and executes the job processing (S1011, S1015).SELECTED DRAWING: Figure 10

Description

The present invention relates to an information processing apparatus and a program.

The following Patent Document 1 is a device management device for a device to be managed, and refers to a table that defines a change rate of a set value according to the operation status of the device after a certain period of time has elapsed from the start of operation / operation. A crisis management device that sets or changes parameters for each of a plurality of devices is disclosed.

The following Patent Document 2 describes an evaluation means for evaluating an event occurring in an environment including an information processing apparatus, a determination means for determining a security level based on the evaluation result of the event, and a determination means for determining the security setting of the information processing apparatus. It discloses an information processing system that changes the security level according to the threat to the actual security, including a change means for changing the setting level as determined by.

Japanese Patent No. 5862011 Japanese Patent No. 6402577

An object of the present invention is to change the set value of the own machine while ensuring security, and then uniformly lower the set value after the change, as compared with the case where the set value of the own machine is not changed according to the usage situation and the operating environment. It is an object of the present invention to provide an information processing device that reduces the possibility that a user who does not know the change of a set value cannot use his / her own machine, as compared with the case where the process is executed only by.

The present invention according to claim 1 is
Equipped with a processor
The processor controls to change the setting value for the safety setting of the own machine according to at least one of the usage status and the operating environment of the own machine.
When a process trial that does not satisfy the changed safety setting is accepted and the process trial satisfies the safety setting before the change, control is performed to temporarily execute the process. , An information processing device.

Further, the present invention according to claim 2 is a case where the processor accepts a trial of a process that does not satisfy the safety setting after the change, and the trial of the process satisfies the safety setting before the change. In addition, the user who tried the process is specified, and the process is executed with the set value that does not satisfy the changed safety setting but satisfies the changed safety setting in the usage history of the user. The information processing apparatus according to claim 1, which temporarily permits the execution of the process when there is a history of the execution.

Further, in the present invention according to claim 3, the processor does not satisfy the safety setting after the change and satisfies the safety setting before the change in the usage history of the own machine by the user. If there is no history of execution, the administrator is notified, and if the administrator gives permission, the execution of the process is temporarily permitted, and the administrator performs the process. The information processing device according to claim 2, which prohibits the execution of the process when the execution is prohibited.

Further, the present invention according to claim 4 is a case where the processor accepts a trial of a process that does not satisfy the safety setting after the change, and the trial of the process satisfies the safety setting before the change. If the administrator permits the execution of the process temporarily, and if the administrator prohibits the execution of the process, the above-mentioned process is temporarily permitted. The information processing device according to claim 1, which prohibits the execution of processing.

The information processing device according to claim 5, wherein the processor controls to change the set value of the own machine according to the usage history of the own machine, according to any one of claims 1 to 4. ..

The present invention according to claim 6 is the information processing apparatus according to claim 5, wherein the processor controls to change the set value of the own machine according to the usage history of the encrypted communication protocol of the own machine. ..

Further, the present invention according to claim 7 controls the processor to prohibit communication with an encrypted communication protocol having a lower security than the encrypted communication protocol actually used in the usage history. The information processing apparatus according to any one of claims 1 to 6.

Further, the present invention according to claim 8 permits only communication using an encrypted communication protocol recognized as actually used by the processor in the usage history, and an encrypted communication protocol having a higher security than the encrypted communication protocol. The information processing apparatus according to claim 1 to 6, which is controlled in such a manner.

Further, the present invention according to claim 9 is the case where the processor accepts an attempt of communication using an encrypted communication protocol having a lower security than the encrypted communication protocol actually used in the usage history. The information processing apparatus according to claim 7 or 8, which controls the notification of a warning.

The present invention according to claim 10 is the information processing apparatus according to any one of claims 1 to 3, wherein the processor controls to change the setting of the acquisition path of data for image formation.

The present invention according to claim 11 is the information processing apparatus according to claim 10, wherein the processor controls to change the setting of the communication port for acquiring data for image formation.

The information according to any one of claims 1 to 11, wherein the present invention according to claim 12 controls the processor to change the setting of the own machine when the processor detects a threat to the safety of the own machine. It is a processing device.

The information processing device according to claim 12, wherein the processor controls to acquire a threat to the safety of the own machine from threat information issued by a third party. be.

Further, the present invention according to claim 14 is
Control the computers that make up the information processing device to change the setting values for the safety settings of the own machine according to at least one of the usage status and the operating environment of the own machine.
If a process trial that does not satisfy the changed safety setting is accepted and the process trial satisfies the safety setting before the change, control is performed to temporarily execute the process. It is a program that executes the process of changing the set value of the own machine according to the usage status of the own machine.

According to the first aspect of the present invention, the set value of the own machine is changed uniformly after being changed while ensuring security, as compared with the case where the set value of the own machine is not changed according to the usage situation and the operating environment. It is possible to provide an information processing device that reduces the possibility that a user who does not know the change of the set value cannot use the own machine, as compared with the case where the process is executed only under the set value of.

According to the second aspect of the present invention, when a user accepts a trial of a process that satisfies the safety setting before the change but does not satisfy the safety setting after the change, the process cannot be executed by the user. Can be avoided.

According to the third aspect of the present invention, if a user satisfies the safety setting before the change but the user does not execute the process satisfying the safety setting before the change, the permission of the administrator is granted. Based on this, the process can be executed.

According to the fourth aspect of the present invention, when a trial of a process that satisfies the safety setting before the change but does not satisfy the safety setting after the change is accepted, the process is executed with the permission of the administrator. You will be able to do it.

According to the fifth aspect of the present invention, it is possible to reflect the safety setting according to the actual operating condition of the own machine.

According to the sixth aspect of the present invention, it is possible to reflect on the security setting according to the encrypted communication protocol actually used by the own machine.

According to the present invention according to claim 7, it is possible to change the security setting so as to allow communication only with the encrypted communication protocol actually used by the own machine or the encrypted communication protocol having higher security. It will be possible.

According to the eighth aspect of the present invention, it is possible to prohibit communication using a low-security encrypted communication protocol that is not actually used by the own machine.

According to the ninth aspect of the present invention, it is possible to notify the administrator or the user that the communication by the prohibited encrypted communication protocol has been received.

According to the tenth aspect of the present invention, it is possible to limit the data acquisition route according to the usage status and the operating environment of the own machine.

According to the eleventh aspect of the present invention, it is possible to limit the communication port according to the usage status and the operating environment of the own machine.

According to the twelfth aspect of the present invention, it is possible to limit the safety setting with low safety according to the threat to the safety of the own machine.

According to the thirteenth aspect of the present invention, it is possible to limit the safety setting having low safety according to the operating environment in which the own machine is placed.

According to the thirteenth aspect of the present invention, as compared with the case where the computer constituting the information processing apparatus does not change the set value of its own device according to the usage situation and the operating environment, the set value while ensuring security. It is possible to reduce the possibility that a user who does not know the change of the set value cannot use the own machine, as compared with the case where the process is uniformly executed only under the set value after the change. ..

It is an overall conceptual diagram which shows the device setting automatic change system 10 in one Embodiment of this invention. It is a hardware block diagram of the image forming apparatus 100 of this embodiment. It is a functional block diagram of the image forming apparatus 100 of this embodiment. It is a flowchart which shows the flow of the SSL / TLS set value change processing in this embodiment. It is a sequence diagram of the SSL / TLS set value change processing in this embodiment. It is an evaluation table of the SSL / TLS set value in this embodiment. It is a figure which shows the state before and after the change when the SSL / TLS set value change processing is performed for each image forming apparatus 100A, 100B, 100C. It is a table showing an example of threat information issued by a third party. It is a flowchart of the process performed when the set value is changed. It is a flowchart which shows the operation when the trial of a job process is accepted. It is explanatory drawing which shows the concept of changing the setting value of the cipher suite used by the image forming apparatus 100A and the image forming apparatus 100B. It is a table which shows an example of the setting state of the print mode, that is, the setting state of the acquisition path of the data which image formation | shape performs the image formation apparatus 100. It is a figure which shows an example of the setting of the communication port of the image forming apparatus 100.

The device setting automatic change system 10 including the image forming apparatus 100 will be described with reference to the drawings as an embodiment. It should be noted that the following embodiments are for exemplifying and explaining the image forming apparatus 100 as the information processing apparatus of the present invention, and are not intended to limit the present invention to the following embodiments.

[Device setting automatic change system configuration]
FIG. 1 is an overall conceptual diagram showing a device setting automatic change system 10 according to an embodiment of the present invention. The device setting automatic change system 10 includes image forming devices 100A, 100B, 100C, and a client PC 200 connected to the in-house network 20, respectively, and the in-house network 20 is connected to the Internet 40 via a communication control device 30. In the following description, the image forming apparatus 100A, 100B, and 100C will be simply referred to as an image forming apparatus 100 unless otherwise specified.

A plurality of client PCs 200 are actually connected to the in-house network 20, but in the present embodiment, a case where only one client PC 200 is connected will be described for the sake of simplicity. The document data created by the client PC 200 or the document data transmitted from a computer (not shown) connected to the Internet 40 is transmitted to an arbitrary image forming apparatus 100 to form an image.

In the device setting automatic change system 10 of the present embodiment, each of the image forming devices 100A, 100B, and 100C independently sets the safety setting of the own machine according to at least one of the usage status and the operating environment of the own machine. Automatically control to change the value. In addition, in this embodiment, "safety setting" is used to prevent leakage or rewriting of information and setting values stored in the image forming apparatus 100, or operation or communication by an unauthorized person to improve safety. It is a setting set in the own machine, and includes communication-related settings such as an encrypted communication protocol setting, a cipher suite setting to be used, a print mode setting, and a communication port setting.

[Structure of image forming apparatus]
The configuration of the image forming apparatus 100 will be described with reference to FIGS. 2 and 3. 2 is a hardware configuration diagram of the image forming apparatus 100, and FIG. 3 is a functional block diagram of the image forming apparatus 100. As shown in FIG. 2, the image forming apparatus 100 includes a CPU 101, a memory 102, a storage device 103, an image reading forming unit 104, a user interface 105, and a communication interface 106, each of which is connected to a control bus 107.

The CPU 101 is a control microprocessor, and controls the operation of each part of the image forming apparatus 100 based on the control program stored in the storage apparatus 103.

The memory 102 temporarily stores the document data received from the client PC 200 and the document data received from another computer via the Internet 40.

The storage device 103 is composed of a hard disk drive (abbreviated as HDD) and a solid state drive (abbreviated as SDD), and stores a control program for controlling each part of the image forming apparatus 100 and various setting values. To.

The image reading formation unit 104 includes a reading device, a paper feeding device, a paper ejection device, and a printing device, and performs reading of an image, a read image, or a document received from another computer via a client PC 200 or the Internet 40. Image formation of data, that is, printing is performed.

The user interface 105 has a display device and an input device. The display device is composed of a liquid crystal display or the like, and displays a menu screen or an operation screen necessary for a user who uses the image forming device 100. The input device is a touch panel provided on the display device or a machine input type operation button provided separately from the display device, and is required by the user while visually recognizing the menu screen or operation screen displayed on the display device. It is for performing the input operation to be performed.

The communication interface 106 is for controlling communication with the in-house network 20.

Further, as shown in FIG. 3, the image forming apparatus 100 executes an image reading control unit 111, a setting management control unit 112, a security control unit 113, and a history processing management by executing a control program stored in the storage device 103. It exerts a function as a unit 114 and a communication processing control unit 115. Further, the storage device 103 stores the set value storage unit 116 and the history storage unit 117.

The image reading control unit 111 controls the operation of each part of the image reading forming unit 104, and is a print job received from a client PC 200, another computer connected via the Internet 40, or an input of the user interface 105 of the own machine. The reading device, the paper feeding device, the paper ejection device, and the printing device are operated according to the instructions input by the user operating the device, and the image is read and the image is printed on the recording medium. In the present embodiment, "job" and "job processing" refer to a series of processes for realizing one function, and "print job" means a series of processes for realizing a printing function in particular. That is.

The setting management control unit 112 determines whether or not it is necessary to change the set value for the safety setting of the own machine according to at least one of the usage status of the own machine and the operating environment, and the change is necessary. If it is determined, the security control unit 113 is instructed to change the set value. In addition, when a job trial that does not meet the changed safety settings is accepted, it is determined whether to temporarily allow job execution, and the security control unit 113 is instructed to temporarily change the set value. do.

The "usage status" is a history of security settings used during actual job processing during a predetermined period, and is the set value of the encrypted communication protocol used and used. Includes encryption suite, print mode used, and communication port used. In addition, the "operating environment" is a threat situation to the safety in the environment where the own machine is placed, and it is issued by a third party or a threat to the safety of the own machine such as an actual attack on the own machine. Includes threat status obtained from threat information such as publicly disclosed vulnerability information and security incident information.

The security control unit 113 confirms or changes the set value set in the set value storage unit 116, which will be described later, based on the instruction of the setting management control unit 112. Further, the security control unit 113 notifies the client PC that the setting value of the safety setting has been changed, and permits or rejects the reception of the job.

The history processing management unit 114 acquires the record of change of the set value for the safety setting and the record of the communication history recorded in the history storage unit 117. Further, the history processing management unit 114 may record the history of the change of the set value when the set value of the set value storage unit 116 is changed by the security control unit 113, or may record the history of the change of the set value, or another via the client PC 200 and the Internet 40. The communication history with the computer is recorded in the history storage unit 117.

The communication processing control unit 115 controls the own machine to communicate with other computers via the client PC 200 and the Internet 40 by the set value for the safety setting stored in the set value storage unit 116. Specifically, the communication interface 106 is controlled to transmit and receive data using a cryptographic protocol with a set security setting. Further, the communication is executed or blocked based on the determination of permission or denial of communication from the security control unit 113.

The set value storage unit 116 stores various set values of the own machine. In this embodiment, in particular, the set value for the safety setting is stored. In particular, as will be described in detail in the following description, specifically, the setting value of the encrypted communication protocol such as SSL / TLS is stored, and the communication in which encrypted communication protocol is valid or invalid. Is remembered.

The history storage unit 117 stores the history of changes in the setting values for the safety settings and the communication history with other computers via the client PC 200 and the Internet 40 for each computer and each user.

[Setting value change process]
Next, with reference to FIGS. 4 to 7, the flow of the setting value change processing for the safety setting in the image forming apparatus 100 of the present embodiment will be described. In the following description, as the setting value for the security setting, the setting value of the encrypted communication protocol, specifically, the SSL / TLS setting value will be exemplified. FIG. 4 is a flowchart showing the flow of the SSL / TLS set value change process in the present embodiment. FIG. 5 is a sequence diagram of the SSL / TLS set value change process in the present embodiment. FIG. 6 is an evaluation table of SSL / TLS set values in this embodiment. Further, FIG. 7 is a diagram showing the states before and after the change when the SSL / TLS set value change process is performed for each of the image forming devices 100A, 100B, and 100C.

In step S401 of FIG. 4, the setting management control unit 112 of the image forming apparatus 100 instructs the history processing control unit 114 to acquire the SSL / TLS communication history for a predetermined period in the own machine, for example, the last three months. (Corresponding to step S401-1 in FIG. 5). It should be noted that this period can be arbitrarily set by the administrator, and may be shorter than 3 months, for example, 1 month, or longer than 3 months, for example, 6 months. The history processing control unit 114 acquires the SSL / TLS communication history from the history storage unit 117 (corresponding to step S401-2 in FIG. 5). The history processing control unit 114 provides the acquired SSL / TLS communication history to the setting management control unit 112 (corresponding to step S401-3 in FIG. 5).

In step S402, the setting management control unit 112 refers to the evaluation table of the SSL / TLS setting value (hereinafter referred to as the evaluation table) as shown in FIG. 6, evaluates the setting value, that is, selects the setting value candidate to be changed. decide. In FIG. 6, when the SSL / TLS communication history is “no usage history” for SSL / TLS1.0 and “with usage history” for SSL / TLS1.1, the setting value candidates to be changed are SSL / TLS1. 2. Regardless of whether or not there is a usage history of SSL / TLS1.3, SSL / TLS1.0 is "invalid", and SSL / TLS1.1 or higher is "valid". If the SSL / TLS communication history is "no usage history" for SSL / TLS1.0 and SSL / TLS1.1, and "with usage history" for SSL / TLS1.2, the usage history of SSL / TLS1.3 is Regardless of whether or not there is a set value candidate to be changed, SSL / TLS 1.1 or less is "invalid", and SSL / TLS 1.2 or more is "valid". Further, when the SSL / TLS communication history is SSL / TLS 1.2 or less, "no usage history", and when SSL / TLS 1.3 is "with usage history", the setting value candidates to be changed are SSL / TLS1. 2 or less is "invalid", and SSL / TLS 1.3 is "valid".

The setting management control unit 112 refers to the evaluation table and determines a set value candidate after the change. For example, when SSL / TLS1.0 is "no usage history" and SSL / TLS1.1 is "with usage history" for the last 3 months, the changed setting value candidate is SSL / TLS1 from the above evaluation table. .0 is "invalid", and SSL / TLS 1.1 or higher is "valid".

Next, in step S403, the setting management control unit 112 instructs the security control unit 113 to acquire the current SSL / TLS setting value (corresponding to step S403-1 in FIG. 5), and the security control unit 113 sets. The current SSL / TLS setting value is acquired from the value storage unit 116 and notified to the setting management control unit 112 (corresponding to step S403-2 in FIG. 5).

In step S404, the setting management control unit 112 compares the setting value candidate to be changed acquired in step S402 with the current SSL / TLS setting value acquired in step S403. If there is no difference as a result of the comparison, the process proceeds to step S405, and the process ends without changing the set value.

On the other hand, if there is a difference as a result of the comparison in step S404, the process proceeds to step S406, and the security control unit 113 is requested to change the set value to the SSL / TLS set value of the set value candidate to be changed determined in step S402. Instruct (corresponding to step S406-1 in FIG. 5). The security control unit 113 instructs the communication processing control unit 115 to perform the subsequent communication processing with the new setting value, that is, the SSL / TLS setting value of the setting value candidate to be changed determined in step S402 above (FIG. 5). (Corresponding to step S406-2), the SSL / TLS setting value of the setting value storage unit 116 is rewritten to a new setting value, and the process is terminated (corresponding to step S406-3).

As shown in FIG. 7, the processes of steps S401 to S406 are independently executed for each of the image forming apparatus 100A, 100B, and 100C, and the SSL / TLS set value is changed. For example, in the image forming apparatus 100B of FIG. 7, the SSL / TLS set values before the change were invalid for SSL / TLS1.0, whereas all of SSL / TLS1.1 to 1.3 were valid. However, if there is no usage history of SSL / TLS1.1 for the last 3 months and there is a usage history of SSL / TLS1.2, the SSL / TLS setting values after the setting change are SSL / TLS1.0 and 1.1. Is disabled, SSL / TLS 1.2 and 1.3 are enabled.

The above processing refers to the SSL / TLS usage history of the own machine for a preset period, and is set not to be used according to the usage history, that is, an encrypted communication protocol recognized as actually used in the usage history. The setting value and the setting value for the security setting of the own machine are changed so as to limit or prohibit the use of the encrypted communication protocol which is less secure than that. Therefore, in the above example, only job processing using an encrypted communication protocol that is recognized as actually used according to the usage history and an encrypted communication protocol that is more secure than that is permitted. .. However, the present invention is not limited to changing the setting value of the own machine according to the usage history of the encrypted communication protocol of the own machine, and when a threat to the security of the own machine such as an actual attack is detected. You may change the setting value of your own machine. For example, when the security control unit 113 of the image forming apparatus 100 functions as a firefall and an unauthorized access to the image forming apparatus 100 is detected, the setting management control unit 113 responds to the unauthorized access and sets a safety setting. May be changed.

In addition, the threat to the safety of the own machine may be acquired from threat information such as vulnerability disclosure information and security incident information issued by a third party. For example, FIG. 8 is a table showing an example of threat information issued by a third party. The threat information includes information such as ID, title indicating the content of the vulnerability, and severity.

The setting management control unit 112 acquires such threat information and invalidates the setting value that may be affected by the threat information. For example, when vulnerability information regarding SSL / TLS1.1 is acquired, the use of SSL / TLS1.1 is invalidated, and communication is performed using SSL / TLS1.2 or a more secure encrypted communication protocol. Change the setting value so that. Alternatively, obtain vulnerability information about openjpeg, and if important vulnerability information about openjpeg is published, disable the use of the openjpeg software library and enable the use of an alternative software library such as libtiff. You may change the settings.

[Process when changing setting value]
Next, the process performed when the set value is changed will be described with reference to FIG. Note that FIG. 9 is a flowchart of the process performed when the set value is changed. In step S901, the setting management control unit 112 instructs the history processing management unit 114 to refer to the past communication history performed on or performed by the own machine. The history processing management unit 114 acquires the past communication history for each user from the history storage unit 117. The period for acquiring the communication history may be the period from the time when the user starts to use the machine to the present time, or may be a shorter period from a certain point in the past to the present time. In this embodiment, the communication history for the period from the start of use of the own machine to the present time is acquired.

In step S902, the setting management control unit 112 sets the SSL after the setting change in the setting value for the safety setting included in the past communication history, that is, in the communication history using the past SSL / TSL setting value. / Determines whether or not there is communication that does not satisfy the TLS set value. If there is no communication in the past communication history that does not satisfy the SSL / TLS setting value after the setting change, the process proceeds to step S903 and no special processing is executed. On the other hand, if there is communication in the past communication history that does not satisfy the SSL / TLS set value after the setting change, the process proceeds to step S904.

In step S904, the setting management control unit 112 identifies a user who has performed communication that does not satisfy the SSL / TLS setting value after the setting change but satisfies the initial setting value, and changes the SSL / TLS setting value. The security control unit 113 notifies the user of this.

[Processing after changing the setting value]
Next, the operation when the trial of the job process is accepted after the SSL / TLS setting value is changed will be described with reference to FIG. 10. Note that FIG. 10 is a flowchart showing an operation when a trial of job processing is accepted.

In step S1001 of FIG. 10, the communication processing control unit 115 of the image forming apparatus 100 detects the trial of the job processing, and the setting value of the encrypted communication protocol used by the job processing, specifically, the SSL / TLS setting value. To identify. In step S1002, the security control unit 113 acquires the set value for the changed safety setting from the set value storage unit 116.

In step S1003, the security control unit 113 determines whether the SSL / TLS set value used by the job process is equal to or higher than the currently set SSL / TLS set value. If the accepted SSL / TLS setting value is equal to or higher than the currently set SSL / TLS setting value, the process proceeds to step S1004, and the security control unit 113 permits reception of the job process. Then, the communication processing control unit 115 receives the job processing, and the image reading / forming control unit 111 executes the received print job and ends the processing. On the other hand, if the SSL / TLS setting value of the accepted job processing is lower in safety than the currently set SSL / TLS setting value, that is, a job processing trial that does not satisfy the changed safety setting is accepted. If so, the process proceeds to step S1005.

In step S1005, the history processing management unit 114 acquires the initial setting value of the SSL / TLS setting value of the own machine from the history storage unit 117. Next, in step S1006, the security control unit 113 determines whether or not the SSL / TLS setting value of the accepted job process satisfies the SSL / TLS initial setting value of the own machine, that is, the SSL / TLS of the accepted job process. It is determined whether or not the set value satisfies the condition that the set value is equal to or higher than the SSL / TLS initial set value of the own machine. If the condition is not satisfied, the process proceeds to step S1007, and the security control unit 113 refuses to execute the job and ends the process.

If it is determined in step S1006 that the SSL / TLS set value of the accepted job processing satisfies the SSL / TLS initial setting value of the own machine, the process proceeds to step S1008.

In step S1008, the history processing management unit 114 acquires the communication history of the user who intends to execute the job from the history storage unit 117. Next, in step S1009, it is determined whether or not the user has executed the job with the SSL / TLS setting value that is equal to or higher than the SSL / TLS initial setting value of the own machine.

If the user has executed a job with an SSL / TLS setting value that is equal to or higher than the SSL / TLS initial setting value of the own machine, the process proceeds to step S1010, and the setting management control unit 112 , The current SSL / TLS setting value is instructed to be changed to the SSL / TLS setting value of the job process to execute the job, and the security control unit 113 instructs the SSL / TLS set value in the setting value storage unit 116. Temporarily change the setting value up to the SSL / TLS setting value of the job process to execute the job. The SSL / TLS setting value may be temporarily changed to the SSL / TLS initial setting value.

In step S1011, the communication processing control unit 115 receives the job processing, and the image reading / forming control unit 111 executes the received job. Next, in step S1012, the setting management control unit 112 instructs the SSL / TLS setting value to be returned to the SSL / TLS setting value before receiving the job, and the security control unit 113 sets the setting value storage unit 116. The SSL / TLS setting value that has been set is changed to the SSL / TLS setting value before the job is executed, and the process is terminated.

If it is determined in step S1009 that the user has never executed the job with the SSL / TLS setting value that is equal to or higher than the SSL / TLS initial setting value of the own machine, step S1013 is performed. Proceeding, the security control unit 113 notifies the administrator or the management device that the user is trying a job that does not meet the current safety settings. Request permission from the administrator or management device to execute job processing by the user, or to temporarily change the setting value of the safety setting.

In step S1014, when the security control unit 113 receives from the administrator or the management device permission to execute the job process by the user and permission to temporarily change the setting value of the safety setting, the setting management control unit 112 , The current SSL / TLS setting value is instructed to be changed to the SSL / TLS setting value of the job process to execute the job, and the security control unit 113 instructs the SSL / TLS set value in the setting value storage unit 116. Temporarily change the setting value up to the SSL / TLS setting value of the job process to execute the job. The SSL / TLS setting value may be temporarily changed to the SSL / TLS initial setting value. When the administrator or the management device receives the prohibition of the execution of the job processing by the user in step S1014, the security control unit 113 prohibits the execution of the job processing, that is, rejects the execution.

In step S1015, the communication processing control unit 115 receives the job processing, and the image reading / forming control unit 111 executes the received job processing. Next, in step S1016, the setting management control unit 112 instructs the setting value storage unit 116 to return the SSL / TLS setting value to the SSL / TLS setting value before receiving the job process. The set SSL / TLS setting value is changed to the SSL / TLS setting value before the job processing is executed, and the processing is terminated.

In the above embodiment, even if the job processing that does not satisfy the changed SSL / TLS setting value is accepted, if the SSL / TLS initial setting value is satisfied, the user who tried the job processing is used. In the usage history of the own machine by the specified user, there is a history of executing job processing with the setting value that does not satisfy the changed SSL / TLS setting value but satisfies the SSL / TLS initial setting value. An example of temporarily executing the job processing in the case is described. However, even if it is not determined whether or not the initial setting value is satisfied, only whether or not the received job process satisfies the setting value of the safety setting before the change is determined, and the change is made in the usage history of the user's own machine. If there is a history of executing a job process with a setting value that does not meet the later SSL / TLS setting value but satisfies the previous SSL / TLS setting value, the job process is temporarily executed. May be good.

Further, in that case, although the received job process satisfies the setting value of the safety setting before the change, the SSL / TLS setting value after the change is satisfied in the usage history of the own machine by the user. If there is no history of executing job processing with the set value that satisfies the SSL / TLS setting value before the change, the administrator or the management device is notified and the administrator or the management device sends a notification. If permission is given, the execution of the job process is temporarily permitted, and if the execution of the job process is prohibited by the administrator or management, the execution of the job process is prohibited. good.

In the above embodiment, the case where the setting value of the encrypted communication protocol is changed as the setting value for the security setting, particularly the case where the SSL / TLS setting value is changed, has been described as an example. However, the present invention is not limited to the above embodiment. For example, as shown in FIG. 11, the setting values of the cipher suites used by the two image forming apparatus 100, that is, the image forming apparatus 100A and the image forming apparatus 100B may be changed. 11 is an explanatory diagram showing a concept of changing the setting value of the cipher suite used by the image forming apparatus 100A and the image forming apparatus 100B. According to the usage history for 6 months, the image forming apparatus 100A of FIG. 11 does not use 3DES, so that the use of 3DES is "invalid" as a setting value for the safety setting. Further, since the image forming apparatus 100B uses only the elliptic curve ECDHE according to the usage history for 6 months, the use other than the elliptic curve ECDHE is "invalid" as a setting value for the safety setting.

As shown in FIG. 11, when the cipher suite setting value is changed as the setting value for the security setting, after the setting value is changed, a job processing attempt that does not satisfy the security of the changed cipher suite setting value is performed. If so, the user who tried the job processing is identified, and the cipher suite initial setting value is satisfied although the changed cipher suite security setting is not satisfied in the usage history of the user's own machine. If there is a history of executing job processing with the set value, the execution of job processing is temporarily permitted by temporarily changing the setting of the cipher suite.

Further, FIG. 12 is a table showing an example of the setting of the print mode, that is, the setting state of the data acquisition path in which the image forming apparatus 100 forms an image. For example, if the own machine does not use the data input via the USB input for 6 months, the setting of the USB input may be changed to invalid. If a print process is attempted with USB input after changing the USB input setting to invalid, for example, the administrator or management device is requested to approve, and the print job is received only when the approval is obtained. Try to do it. As described above, the present invention may be applied to those that change the setting of the acquisition route of the data for which image formation is performed.

Further, FIG. 13 is a diagram showing an example of setting the communication port of the image forming apparatus 100. The communication port setting of FIG. 13 that is "started" indicates that the port is open to the outside and data can be transmitted / received via this port. For example, the Port9100 is in the activated state, that is, enabled by default, but if the job processing via the Port9100 has not been used for 6 months, this setting may be changed to invalid. If a job processing attempt is made via the Port9100 after changing the Port9100 setting to invalid, request approval from the administrator or management device, and receive and execute the print job only when the approval is obtained. To do. As described above, the present invention may be applied to change the setting of the communication port for acquiring the data for forming an image.

As shown in FIGS. 12 and 13, when the print mode setting value or the communication port setting setting value is changed as the setting value for the safety setting, the print mode setting value or the communication port setting is changed after the setting value is changed. When a job processing attempt that does not satisfy the safety of the set value of is performed, the user who tried the job processing is specified and included in the job processing in the usage history of the own machine by the user. If there is a history of executing job processing with the print mode setting value or communication port setting setting value, the job processing can be performed by temporarily changing the print mode setting value or communication port setting setting value. Temporarily allow execution.

In addition, in the above-described embodiment and the above-mentioned processes of FIGS. 11 to 13, when a job process is tried after changing the setting value for the safety setting, the job process that previously satisfies the initial setting value is performed for each user. It was confirmed whether it had been done, and in that case, the case where the setting value for the safety setting was temporarily changed was explained. However, the present invention is not limited to the above examples. When a job process is attempted after changing the setting value for the safety setting, the setting value for the safety setting of the job processing does not satisfy the safety setting after the change, but the safety setting before the change is satisfied. In that case, the administrator or the management device is notified without specifying the user, and if the administrator or the management device gives permission, the setting value for the safety setting is temporarily changed. By doing so, the execution of the above job processing is temporarily permitted, and if the execution of the job processing is prohibited by the administrator or the management device, the execution of the job processing is executed without changing the setting value for the safety setting. May be prohibited or not done.

Also, if there is an attempt to process a job after simply changing the setting value for the safety setting, and if the setting value for the safety setting for the job processing does not meet the changed safety setting, a warning will be issued. The administrator or the management device, or the user who tried the job processing may be notified.

In the above embodiment, the job processing is executed "temporarily" and the safety setting value is changed only when the execution of only the job processing satisfying a specific condition is permitted or the job is executed. It means changing the safety setting value. Alternatively, it means changing the safety setting value only for a predetermined time.

In each of the above embodiments, the processor refers to a processor in a broad sense, and is a general-purpose processor (for example, CPU: Central Processing Unit, etc.) or a dedicated processor (for example, GPU: Graphics Processing Unit, ASIC: Application Specific Integrated). Circuit, FPGA: Field Programmable Gate Array, programmable logic device, etc.).

Further, the operation of the processor in each of the above embodiments may be performed not only by one processor but also by a plurality of processors existing at physically separated positions in cooperation with each other. Further, the order of each operation of the processor is not limited to the order described in each of the above embodiments, and may be changed as necessary.

10 Device setting automatic change system 20 In-house network 30 Communication control device 40 Internet 100, 100A, 100B, 100C Image forming device 101 CPU
102 Memory 103 Storage device 104 Image reading formation unit 105 User interface 106 Communication interface 107 Control bus 111 Image reading formation control unit 112 Setting management control unit 113 Security control unit 114 History processing management unit 115 Communication processing control unit 116 Setting value storage unit 117 History storage unit 200 Client PC

Claims (14)

Equipped with a processor
The processor controls to change the setting value for the safety setting of the own machine according to at least one of the usage status and the operating environment of the own machine.
When a process trial that does not satisfy the changed safety setting is accepted and the process trial satisfies the safety setting before the change, control is performed to temporarily execute the process. , Information processing equipment. When the processor accepts a process trial that does not satisfy the changed safety setting, and the process trial satisfies the pre-change safety setting, the user who performed the process trial is selected. If there is a history in the usage history of the user's own machine that is specified and the processing is executed with the setting value that does not satisfy the safety setting after the change but meets the safety setting before the change, it is temporary. The information processing device according to claim 1, wherein the processing is permitted to be executed. When the processor does not have a history of executing processing with a set value that does not satisfy the safety setting after the change and satisfies the safety setting before the change in the usage history of the user's own machine. A notification is given to the administrator, and if the administrator gives permission, the execution of the process is temporarily permitted, and if the administrator prohibits the execution of the process, the process is performed. The information processing device according to claim 2, which prohibits execution. The processor notifies the administrator when a process attempt that does not satisfy the changed safety setting is accepted and the process trial satisfies the pre-change safety setting. The first aspect of claim 1, wherein the execution of the process is temporarily permitted when the administrator permits the execution of the process, and the execution of the process is prohibited when the administrator prohibits the execution of the process. Information processing device. The information processing device according to any one of claims 1 to 4, wherein the processor controls to change the set value of the own machine according to the usage history of the own machine. The information processing device according to claim 5, wherein the processor controls to change the set value of the own machine according to the usage history of the encrypted communication protocol of the own machine. The information according to any one of claims 1 to 6, wherein the processor controls to prohibit communication with an encrypted communication protocol having a lower security than the encrypted communication protocol actually used in the usage history. Processing device. The processor according to claims 1 to 6, wherein the processor is controlled to allow communication only with an encrypted communication protocol recognized as actually used in the usage history and an encrypted communication protocol having a higher security. Information processing device. The processor controls to notify a warning when a communication attempt using an encrypted communication protocol that is less secure than the encrypted communication protocol recognized as actually used in the usage history is accepted. Item 7. The information processing apparatus according to Item 7. The information processing device according to any one of claims 1 to 3, wherein the processor controls to change the setting of an acquisition path of data for image formation. The information processing device according to claim 10, wherein the processor controls to change the setting of a communication port for acquiring data for forming an image. The information processing device according to any one of claims 1 to 11, wherein the processor controls to change the setting of the own machine when a threat to the safety of the own machine is detected. The information processing device according to claim 12, wherein the processor controls to acquire a threat to the safety of the own machine from threat information issued by a third party. Control the computers that make up the information processing device to change the setting values for the safety settings of the own machine according to at least one of the usage status and the operating environment of the own machine.
If a process trial that does not satisfy the changed safety setting is accepted and the process trial satisfies the safety setting before the change, control is performed to temporarily execute the process. A program that executes a process to change the setting value of the own machine according to the usage status of the own machine.

Images