JP4498012B2 - Electronics - Google Patents

Description

  The present invention has a public area in which internal data can be disclosed to electronic devices that can be connected to a network, in particular, a network-connected counterpart in the electronic equipment, and the other party's electronic device that is connected via the public area. The present invention relates to an electronic device capable of exchanging unencrypted and encrypted file data information.

  Conventionally, when publishing file data held in an undisclosed area in one's own electronic device to a plurality of other electronic devices connected to the network, the file data to be disclosed is stored in the network described above. This is done by moving or copying to a public area in one's own electronic device that is accessible from a plurality of connected other electronic devices, thereby enabling access from the other electronic device. At this time, in the case where the file can be used only for a specific partner among the plurality of partner-side electronic devices connected to the network, the specific partner may be used for the file to be disclosed. Set the file attribute or folder attribute that enables access to the file only, or use multiple public keys for encryption sent in advance from the multiple counterpart electronic devices. Or performing encryption using a predetermined group encryption key in the plurality of partner electronic devices described above, creating the encrypted file, and then moving or copying to the public folder described above. It was done.

  However, in the configuration as described above, in the method of changing the attribute for the file or folder to be disclosed, the file and folder can be read as necessary by the other party connected to the network, It is necessary to individually change the non-permission attribute, the visible attribute, the invisible attribute, and the like, which is a very time-consuming operation for a user who wants to publish a file.

  In addition, in the method of file encryption, when using a group public key, it is necessary to select an appropriate group public key for multiple parties who use the data file. When reusing a group public key, there was a risk of mistakenly selecting an appropriate group public key, such as a group member who did not need to be disclosed.

  Further, in the method of using the public keys of a plurality of opponents, it is necessary to obtain the latest public key of the opponents beforehand.

  Further, after the encryption is completed, the encrypted file needs to be moved or copied to a public folder.

  Also in the created encrypted file, there are multiple keys for decryption in the encrypted file created using multiple public keys compared to the encrypted file using a single public key. This would reduce the level of security when placing it in a public folder.

  In addition, since the encrypted file that has been released has been copied to all the other electronic devices that require the file, it will continue to be released, but it will still be encrypted. In addition, since unnecessary files exist, a waste area of the public file area is left.

  The present invention has been made in view of the above points, and an object of the present invention is to easily create a data file whose contents can be notified only to a specific partner and to make it safe to publish.

  The electronic device of the present invention is an electronic device capable of displaying an internal area that cannot be referred to by a network-connected external electronic device and a public area that can be referred to by the external electronic device, and starts connection with the external electronic device. When acquiring, the external electronic device is requested to submit the public key to obtain the public key, and an icon corresponding to the public key of the external electronic device obtained by the obtaining unit is displayed. Display means, icon input means for inputting selection of the icon, operation input means for inputting operation of a data file existing in the internal area and the public area, and existing in the internal area after selecting the icon Corresponding to the selected icon for the data file by performing an operation of moving or copying the data file to the public area Wherein the encrypted data file was encrypted with Hirakikagi and a generating means for generating the public area.

  According to the present invention, in an electronic device capable of displaying an internal area that cannot be referred to by an external electronic device connected to a network and a public area that can be referred to by the external electronic device, a specific partner currently connected is selected. It is possible to easily generate an encrypted data file that can be informed only to a specific party and to publish it safely by performing an operation to bring the data file in the internal area to the public area afterwards. It becomes.

Preferred embodiments of the present invention will be described below with reference to the accompanying drawings.
(First embodiment)
1 to 9 show the characteristic operation of the electronic device according to the present invention by the transition of the display screen of the electronic device. In particular, FIG. 1 is a diagram that best represents the feature of the electronic device according to the present invention. is there. Here, FIG. 1 shows a display screen of an electronic apparatus according to the present invention, 101 shows an internal folder of machine A, 102 shows another machine connected to machine A, here machine B, The connection state of the machines C and D is indicated by a key icon 103. In addition, the key icon 103 indicates the use state of the public key in the connected machine as an icon display state. Here, the public keys of the machine B and the machine D are selected and used. ing. Reference numeral 104 denotes a folder whose contents can be disclosed to other machines to which the machine A is connected. The folder 104 exists in the internal folder of the machine A by the drag and drop operation 105 of the pointing device by the user shown in the figure. The data file 106 (document 2) is copied as an encrypted data file 107 (document 2) on the open folder.

  FIG. 2 shows the display screen of the electronic device after the duplication operation shown in FIG. 1 is completed. The encrypted data file 206 exists in the open folder 204 and is connected to the machine A at the same time. In 202 indicating this machine, the selection state of the public key icon 203 used for encryption is released.

  FIG. 3 shows a display screen on the machine B connected to the machine A, 301 is a screen displaying the contents of the public folder of the machine A being connected, and 302 is an internal folder of the machine B. ing. At this time, by dragging and dropping the encrypted data file 303 (document 2) existing in the public folder of the machine A into the internal folder of the machine B, the machine B copies the data file to the internal folder of the machine B. At the same time, the normal data file 304 is generated by performing decryption using the secret key corresponding to the public key for encryption deposited in the machine A when connecting to the machine A.

  FIG. 4 shows a display screen when the data file publishing operation is performed again after FIG. 2. As in FIG. 1, the data file 405 (document 5) existing in the internal folder of the machine A is shown. Is dragged and dropped to the open folder 404 of the machine A. However, in FIG. 4, no selection operation is performed on the key icon 403 representing the machine connected to the machine A. As a result, the data file 406 (document 5) duplicated in the public folder of the machine A is duplicated in the public folder of the machine A without being encrypted.

  FIG. 5 is a diagram showing a state where the encrypted data file 506 (document 2) existing in the open folder of the machine A is selected and pressed by the pointing operation by the user after FIG. At this time, among the key icons 503 connected to the machine A, the display of the key icon having the public key used when creating the encrypted data file 506 is changed, and the machine not using the public key It is in a state that can be identified.

  6 is a machine connected to the machine A after FIG. 5 and the machine D using the public key deposited in the machine A is connected when the encrypted file of the encrypted data file 506 is created. The display screen of the machine A after stopping is shown. At this time, the key icon 603 corresponding to the machine D is deleted from the key icon 603 indicating the machine connected to the machine A. At this time, the encrypted data file 606 is apparently unchanged, but is re-encrypted in the machine A, as will be apparent from FIG.

  FIG. 7 shows that the encrypted data file 706 is selected and pressed by the pointing operation by the user after FIG. 6 and is identified by the key icon 703 at this time. As described above, the encrypted data file 706 is recreated into an encrypted data file using only the public key deposited by the machine B.

  FIG. 8 shows a state where the pressed state of the encrypted data file 706 is released after FIG. 7, and the key icon indicating the electronic device connected to the machine A is also returned to the normal one.

  FIG. 9 shows a machine connected to machine A after FIG. 8 and the last machine using the public key deposited in machine A when the encrypted file of encrypted data file 806 is created. The display screen of the machine A after a certain machine B stops a connection is shown. Here, all the machines connected to the machine A having the public key used at the time of encryption of the encrypted file 806 in FIG. It has been deleted.

  FIG. 10 shows an example of the network connection of the electronic devices described in FIGS. 1 to 9. When connecting to the machine A, the machine B is a priority LAN, the machine C is Bluetooth, and the machine D Is connected by a wireless LAN, but the network connection means to the machine A is not particularly limited, and the connection form of the network is not limited.

  FIG. 11 is a block diagram showing an internal configuration of an electronic device according to the present invention, where 1101 is a CPU that controls the entire electronic device according to the present invention, and ROM 1102 and RAM 1103 execute a program and a program that control the electronic device. 1104 is a card I / O device for expanding the functions of the electronic device with various external cards, 1105 is an auxiliary device for 1102 and 1103. 1106 is a bus device for transferring various data in the electronic device, 1107 is an I / O subsystem for controlling input / output of the electronic device, 1108 is a display device, 1109 is an audio device, 1110 Is an input device such as a pointing device or various switches, 1111 is a wireless LAN device, 12 other network I / F unit, 1113 denotes a network.

  FIG. 12 is a functional block diagram related to the public folder function of the electronic device according to the present invention. Here, 1201 is a public folder file management unit that manages all files in the public folder, 1202 is a network monitoring unit that monitors other electronic devices connected to the electronic device, and 1203 is another connected to the display screen of the electronic device. Connection status display means for displaying the status of the electronic device 1204, public key use instruction means 1204 that is instructed by the user on the display screen, and 1205 that obtains the public key from other electronic devices connected to the network Public key acquisition / registration means to be registered in the server 1206 is an encryption means for encrypting the data file using the public key, and 1207 is an in-use public key information recording means for recording information on the public key used for the encryption. 1208 is a file operation for moving, duplicating and deleting data files existing in the public folder and the internal folder Stage, 1209 is a public folder monitoring means for monitoring the state of the public folder in the public to other electronic devices.

  FIG. 13 is a flowchart for explaining the operation of the electronic device according to the present invention when a network connection by another electronic device is detected. Here, reference numeral 1301 denotes an entry point when the aforementioned network connection is detected, and 1302 A step 1303 for performing authentication for network connection of the electronic device is a step for determining whether or not the authentication is successful. If the authentication is unsuccessful, the process immediately proceeds to an end step. 1304 is a step of requesting the public key to the electronic device of the other party that has been successfully authenticated, 1305 is a step of determining whether or not the public key exists, and 1306 is a machine that is connected when the public key cannot be acquired. A step of acquiring a machine icon resource for performing display by a machine icon, 1307 a step of acquiring a public key when a public key exists, 1308 a step of registering the acquired public key, and 1309 displaying a machine being connected Is a step of acquiring a key icon resource for displaying a key icon, and 1310 is a step of displaying an icon of a connected machine on the display screen.

  FIG. 14 is a flowchart for explaining the operation when the connected machine icon of the electronic apparatus according to the present invention is selected, where 1401 is an entry when the icon display area of the connected machine is operated. Yes, 1402 is a step for identifying the operated icon, and 1403 is a step for determining whether or not the operated icon is a key icon. If it is not a key icon, the process immediately proceeds to the end step. 1404 is a step of determining whether or not the operated icon has already been selected. 1405 is a step of changing the key icon to a selected display when it has not been selected. 1406 is a key icon being selected. This is a step of canceling the currently selected display.

  FIG. 15 is a flowchart for explaining the operation of the electronic device according to the present invention when publishing a file. Here, reference numeral 1501 denotes a data file in an internal folder being moved to a publishing folder by a user operation. This is the entry point when a drag and drop operation is performed. In 1502, the source file of the data file being operated is identified, and in 1503, the key icon displaying the connected machine is checked. Next, in 1504, it is determined whether there is a selected key icon. If there is no selected key icon, in 1510, the data file is copied into the folder in which the source file is open. Shift to the end step. If there is a selected key icon in 1504, the process advances to step 1505 to acquire a registered public key corresponding to the selected key icon. In 1506, the public key is being used. Is recorded as public key information. Next, in 1507, an encrypted file is created as a temporary file using the public key described above, and then in 1508, the file is moved to a public folder. In step 1509, all selected key icons operated by the user are deselected and the process ends.

  FIG. 16 is a flowchart for explaining the operation of the electronic device according to the present invention when the encrypted file existing in the open folder is selected by the user and pressed using a pointing device or the like. 1601 is an entry point, 1602 is a step of canceling the selection display state of a key icon for displaying a connected machine, 1603 is a step of identifying a data file being pressed, and 1604 is data obtained by encrypting the identified data file In this step, it is determined whether or not the file is an encrypted file. If the file is not an encrypted file, the process immediately proceeds to the end point. If the file is an encrypted file, the information about the public key in use recorded in 1506 in FIG. 15 is searched. In 1606, the encrypted file being pressed, which is the search result, is encrypted. The key icon corresponding to the public key used at the time of the display is set to the display state being selected.

  FIG. 17 is a flowchart for explaining the operation of the electronic device according to the present invention when another electronic device connected to the network stops the connection, where 1701 is the entry point and 1702 is the electronic device that has stopped the connection. If the public key is not registered, the process proceeds to step 1711. If the public key is not registered, the process proceeds to step 1711. The machine icon corresponding to the stopped electronic device is deleted from the display and the process ends. If the public key has been registered, in step 1703, the key icon corresponding to the electronic device that has stopped the connection among the icons indicating the connected machine is deleted from the display. In step 1704, the key icon is deleted. It is determined whether or not the registered public key is in use. If it is not in use, the process immediately ends. If it is used, in step 1705, an access lock process for prohibiting user access is performed on the encrypted data file in which the public key is used. In step 1706, the encrypted data is deleted. It is determined whether or not there are a plurality of public keys used in creating the file. If there are not a plurality of public keys, the process ends after deleting the encrypted data file in step 1712. If there are a plurality of public keys used to create the encrypted data file, in step 1707, the remaining public keys other than the public key deposited by the connected and stopped electronic device are used. The public key is re-acquired, the public key information being used is re-recorded in step 1708, and a re-encrypted temporary file is created again from the source file using the remaining public key in 1709. In step 1710, the temporary file is moved to the public folder and the process ends.

  Hereinafter, the operation of the electronic apparatus according to the present invention will be described in detail with reference to FIGS. Now, as shown in FIG. 10, in order to have a configuration in which a plurality of electronic devices are connected to the electronic device machine A according to the present invention, each electronic device to be connected to the machine A is The machine A requests connection according to various network connection protocols. At this time, in the machine A, a connection request is detected by the network monitoring unit in FIG. 12, and a connection detection routine shown in FIG. 13 is started. Steps 1302 and 1303 are authentication means for confirming the connected party, and normally the connection is not permitted if the authentication fails. Of course, if security is not required, the authentication means can be omitted.

  Next, the machine A is authenticated and requests the connected machine to submit a public key. At this time, in the case of a machine that does not have a public key, a machine icon resource is acquired instead of a key icon in the display area indicating the machine connected to the machine A on the display screen of the machine A, and 1310 The display is performed by the connection status display means 1203, and the routine ends. If the public key exists, the public key is acquired, and in 1308, the public key is registered by the public key acquisition / registration means 1205 in association with the machine permitted to connect.

  In step 1309, a key icon resource is prepared. In step 1310, the connection status display unit 1203 displays the key icon, and the routine ends. By following such a procedure, the machine B, the machine C, and the machine D are connected to the network configuration as shown in FIG.

  Next, for the purpose of safely transferring the data file 106 in the internal folder 101 of the machine A to the other machine, in this case, the machine B and the machine D, the user of the machine A moves to the open folder 104. The procedure for copying will be described. First, the user of the machine A selects a partner key icon 103 to be disclosed by limiting the data file by a tap operation of the pointing device or the like. At this time, the machine key selection routine shown in FIG. First, in step 1402, the type of the selected icon is identified, and in 1403, it is determined whether or not it is a key icon. Here, in the case where the other party who wants to make public is a machine that does not keep the public key, the process ends immediately, and the state of the display of the selected machine icon does not occur. If it is a key icon, it is determined whether or not the key icon is already selected. Here, since the key icon is not yet selected, the process proceeds to 1405 and the display indicating that the key icon is being selected. To change.

  At this time, if it is already selected, the selection is canceled, and in 1406, the key icon is displayed in a normal non-selected state. As a result, the display of the key icon on the machine 102 connected to the machine A is as shown at 103.

  Next, the user of the machine A selects and operates the data file to be disclosed using the file operation unit 1208 such as the drag and drop operation 105 of the pointing device, and thereby operates the data file using the public folder file management unit 1201. Will be created in a public folder. At this time, the file disclosure / encryption routine of FIG. 15 starts to operate.

  First, in 1502, the data file 106 (document 2) to be disclosed by the user is identified as a source file. In 1503, the state of the key icon 103 in the area of the machine 102 connected to the machine A is confirmed. Done. Here, in 1504, it is detected that the key icons corresponding to the machine icons B and D of the key icons are being selected. In 1505, the public key acquisition registration unit 1205 corresponds to the registered machines B and D. A public key is obtained. Next, in 1506, information on the used public key is recorded using the used public key information recording unit 1207.

  Next, using the public key, a temporary encrypted file is created by the encryption unit 1206, and then, in 1508, using the public folder file management unit 1201 and the file operation unit 1208, the temporary file described above is used. The encrypted file is moved to the public folder. Next, when the above movement is completed, an encrypted file as shown by 206 in FIG. 2 is created, and the selection state of the key icon is canceled in 1509, and the non-selection state of the key icon as shown by 203 Will be displayed.

  After that, the machine B can see the encrypted data file 303 in the public folder of the machine A being connected as shown in FIG. 3, and is deposited when connecting to the machine A as necessary. The decrypted data file 304 can be reconstructed using the private key corresponding to the public key.

  Further, as shown in FIG. 4, in the data file duplication operation of machine A, as shown by the key icon 403 of 402, all the key icons are kept in a non-selected state and are opened to the open folder by a drag and drop operation or the like. When copied, as shown in 406, it is a normal file duplication operation without encryption, and the contents of the data file can be browsed on all machines connected to the machine A. It is.

  In addition, as shown in FIG. 5, when the encrypted data file in the open folder is subjected to a special operation such as a pressing operation of a pointing device or the like in the machine A, the public folder monitoring unit 1209 When this is detected, the used public key display routine for identifying and displaying the public key being used in the operated encrypted data file shown in FIG. 16 starts operation. Here, first, in 1602, all the key icons 503 in the area 502 are once displayed in the deselection display state, and in 1603, the data file currently being pressed is identified. Next, in 1604, it is determined whether or not the identified data file is encrypted data. If the data file is not encrypted data, the process proceeds to a step to end immediately. In FIG. 5, since the data is encrypted data, the process proceeds to step 1505. Information on the used public key is retrieved using the used public key information recording unit 1207. In 1606, the used public key is changed to the used public key. The key icon of the corresponding machine switches to the selected display. As a result, the user can check the public key used when creating the encrypted file created on the public folder and the corresponding connected machine.

  Next, as shown in 602 of FIG. 6, from the state of FIG. 5, among the machines connected to the machine A, the machine D using the public key has stopped the connection when creating the encrypted file 506. In this case, the network monitoring unit 1202 detects the connection stop and the connection stop detection routine of FIG. Here, it is first determined whether or not the machine whose connection has been stopped in 1702 is a machine that has registered a public key. If the machine has not been registered, the machine icon in the area 502 is deleted immediately. finish. Since the public key is registered here, the process proceeds to step 1703, and the key icon corresponding to the machine D in the area 502 is deleted.

  Next, in step 1704, it is determined whether or not there is information indicating that the public key stored in the machine A by the machine D is being used in the in-use public key information recording unit 1207, and if the public key is in use. If not, proceed to the step that ends immediately. Here, since the public key is in use here, the process proceeds to step 1705 to prohibit access by the user of the encrypted file using the public key. It is determined whether or not there are a plurality of public keys used at the time of creation. If a plurality of public keys do not exist, the process proceeds to a step of deleting the encrypted file in step 1712 and ending.

  Here, since the public key of machine B is used in addition to machine D, the process proceeds to step 1707, and the remaining public key, here, the public key of machine B is acquired, and the public key currently used at 1708 is acquired. After the key information is re-recorded, the encryption process using only the remaining public key is performed in 1709 and the movement to the public folder is performed in 1710. As a result, the display screen shown in FIG. 6 is configured.

  At this time, the encrypted file 606 existing in the area of the folder 604 being opened has a display form similar to that of 506, but it is also apparent by executing a pressing operation such as a pointing device of the encrypted file in FIG. As described above, the public key specified when creating the encrypted file 606 has been changed to that of the machine B only.

  FIG. 8 shows the display screen of the machine A when the press state in FIG. 7 is released. When the machine B stops the connection to the machine A in this state, the same as the previous case. In FIG. 17, the connection stop detection routine is activated. In step 1706, since there are not a plurality of public keys in use, the process proceeds to 1712. After the encrypted file in the public folder is deleted, the process ends. Become.

  By adopting such a configuration, according to the present embodiment, when a plurality of machines are connected to the network of a user's electronic device having a public folder, the user can only connect to a specific connection partner. When you want to pass the information of the internal folder that is private to your network, simply select the key icon corresponding to the connection partner and then drag and drop the target data file to the public folder. Data can be disclosed safely.

  In addition, for the encrypted file in the public folder that you created, you can press the user to select the public key that you used to create the encrypted file by pressing the file. It is possible to confirm.

  If another machine with the public key that was used to create the encrypted file stops the connection, the encrypted file is the remaining connected machine other than the public key of the machine that stopped the connection. Since the file is replaced with an encrypted file using only the public key, it is possible to make the file more secure.

  Furthermore, when all machines with the public key that was used to create the encrypted file are disconnected, the encrypted file created by the user can be automatically deleted. At the same time, it is possible to avoid an unnecessary increase in file capacity while preventing the file from being kept open.

  In this embodiment, the file operation in the electronic device is a drag and drop operation using a pointing device, an icon tap operation, an icon press operation, or the like. However, the file operation method itself is provided in the electronic device. Various buttons may be used, and input means such as voice recognition may be used. Further, the encryption method using the public key and the secret key is not particularly limited, and details thereof are omitted.

(Second embodiment)
In the above embodiment, when moving the target data file to the public folder for the purpose of publishing the target data file to a specific connection partner, the key icon corresponding to the specific connection partner is selected once, and then the target data is selected. A file was dragged and dropped into a folder that was published, and the data file was encrypted and replicated to the folder that was published at the same time. However, if there is only one specific person to whom you want to publish the target data file. In this case, as shown in FIG. 18, the data file in the internal folder of the machine A is made public by dragging and dropping the target data file directly on the key icon of the other party to be made public. It is good also as a structure produced in an inside folder as an encryption file.

  By adopting such a configuration, when there is only one partner to be disclosed, it is possible to save the trouble of selecting the partner's key icon in advance and to realize a simpler operation.

(Third embodiment)
In each of the embodiments described above, the public key that the machine connected to the machine A deposits with the machine A is a public key that exists in a pair with the private key of each connected machine. As the public key that the machine connected to the machine A deposits with the machine A, a one-time public key and a private key that can be used only when making a single connection to the machine A may be used. That is, the machine that connects to the machine A uses a public key and a secret key that can be used only after the connection to the machine A is started and until the connection is stopped.

  With this configuration, when the machine B connected to the machine A imports a file encrypted using its own public key into the machine B, it is addressed to itself in the public folder of the machine A. If the encrypted file is held in the internal folder of the machine B as it is, it can be decrypted only while it is connected to the machine A. If necessary, the machine A can be decrypted by the machine B. By disconnecting the connection, it is possible to further improve safety in an emergency, such as preventing the combination in the machine B.

  An object of the present invention is to supply a storage medium that records a program code of software that realizes the functions of the above-described embodiments to a system or apparatus, and the computer (or CPU or MPU) of the system or apparatus stores the storage medium. Needless to say, this can also be achieved by reading and executing the program code stored in.

  In this case, the program code itself read from the storage medium realizes the functions of the above-described embodiments, and the program code itself and the storage medium storing the program code constitute the present invention.

  As a storage medium for supplying the program code, for example, a flexible disk, a hard disk, an optical disk, a magneto-optical disk, a CD-ROM, a CD-R, a magnetic tape, a nonvolatile memory card, a ROM, or the like can be used.

  Further, by executing the program code read by the computer, not only the functions of the above-described embodiments are realized, but also an OS (basic system or operating system) running on the computer based on the instruction of the program code. Needless to say, a case where the function of the above-described embodiment is realized by performing part or all of the actual processing and the processing is included.

  Further, after the program code read from the storage medium is written to a memory provided in a function expansion board inserted into the computer or a function expansion unit connected to the computer, the function expansion is performed based on the instruction of the program code. It goes without saying that the CPU or the like provided in the board or function expansion unit performs part or all of the actual processing, and the functions of the above-described embodiments are realized by the processing.

It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining operation | movement of the electronic device by this invention. It is a figure explaining the network connection of the electronic device by this invention. It is a figure explaining the internal structure of the electronic device by this invention. It is a figure explaining the internal structure of the electronic device by this invention. It is a flowchart explaining operation | movement of the electronic device by this invention. It is a flowchart explaining operation | movement of the electronic device by this invention. It is a flowchart explaining operation | movement of the electronic device by this invention. It is a flowchart explaining operation | movement of the electronic device by this invention. It is a flowchart explaining operation | movement of the electronic device by this invention. It is a figure explaining the 2nd Example by this invention.

Explanation of symbols

101 Internal folder of machine A 102 Machine connected to machine A 103 Key icon corresponding to connected machine 104 Published folder of machine A 105 Drag and drop operation 106 Data file (document 2)
107 Encrypted file (Document 2)

Claims (9)

In an electronic device capable of displaying an internal area that cannot be referred to by a network-connected external electronic device and a public area that can be referred to by the external electronic device,
An acquisition means for requesting the external electronic device to submit a public key and obtaining the public key when starting connection with the external electronic device;
Display means for displaying an icon corresponding to the public key of the external electronic device acquired by the acquisition means;
Icon input means for inputting selection of the icon;
Operation input means for inputting operations of data files existing in the internal area and the public area;
After selecting the icon, the data file existing in the internal area is moved or copied to the public area, so that the data file is encrypted using the public key corresponding to the selected icon. An electronic apparatus comprising: generating means for generating the performed encrypted data file in the public area.   The generation unit performs an operation of moving or copying a data file existing in the internal area to the public area after selecting a plurality of the icons, thereby corresponding to the plurality of selected icons for the data file. The electronic device according to claim 1, wherein an encrypted data file that has been encrypted using a public key is generated in the public area.   The display of an icon corresponding to a public key used for encryption of the encrypted data file is changed when an encrypted data file existing in the public area is selected. The electronic device as described in.   When any external electronic device stops connection among a plurality of external electronic devices that have submitted a plurality of public keys used for encryption of an encrypted data file existing in the public area, the generating means The electronic device according to claim 2, wherein re-encryption is performed using a public key submitted by an external electronic device other than the external electronic device whose connection is stopped.   When all external electronic devices that have submitted public keys used for encryption of encrypted data files existing in the public area stop connecting, the deletion means for deleting the encrypted data files is provided. The electronic device according to claim 1, wherein the electronic device is characterized.   The display unit displays an icon different from the icon corresponding to the public key when the acquisition unit cannot acquire the public key from the external electronic device. The electronic device as described in the paragraph.   The operation input means for inputting an operation on a data file existing in the internal area and the public area is a pointing device capable of performing a drag and drop operation on an icon of the data file. 6. The electronic device according to any one of 6.   By dragging and dropping the data file icon existing in the internal area onto the icon corresponding to the public key of the external electronic device displayed by the display means, the icon is displayed in the public area. The electronic device according to claim 7, wherein an encrypted data file encrypted using a corresponding public key is generated.   The public key submitted by the external electronic device and the corresponding private key pair are a one-time public key and private key that can be used only for one connection. Item 9. The electronic device according to any one of Items 1 to 8.

Images