JP4550857B2 - Information processing apparatus allocation method, management server and terminal for executing the method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a thin client type information processing system for effectively utilizing resources (local machines). <P>SOLUTION: When an authentication device 6 is used for the first time, a remote machine 2 to which the authentication device 6 is connected inquires an address for a local machine 1 to be actually allocated to the remote machine 2 from a management server 7. The management server 7 determines, in response to the inquiry, the local machine 1 to be actually allocated to the remote machine 2, and reports the address of this local machine 1 to the remote machine 2. The remote machine 2 remotely operates the local machine 1 specified by the address reported from the management server 7. <P>COPYRIGHT: (C)2007,JPO&amp;INPIT

Description

The present invention relates to an information processing system having a plurality of information processing apparatuses and remote operation terminals connected to each other via a network, and more particularly to an information processing apparatus allocation technique for remote operation terminals.

Patent Document 1 discloses a technique for detecting a virus infection source in a LAN system. In this technology, when a client computer that has entered a virus reports a virus intrusion to the server computer by e-mail, the access history acquisition program of the server computer collects and analyzes the access history from the access history database of the e-mail report source client computer. To do.

In recent years, so-called thin client type information processing systems have attracted attention.
A thin client type information processing system can use various application programs and data installed in the local machine by remotely controlling the desktop of the local machine at home or office using the remote machine at hand. . In addition to PCs (Personal Computers), locally connected input / output devices (local machines)
A server (for example, a blade server) having no keyboard, mouse, and display is used.

JP 2004-86241 A

There is known an anti-virus technology that, when a virus infection of a computer is detected, blocks the connection of the computer to the network and prevents secondary infection to other computers. When this anti-virus technique is applied to a local machine in a conventional thin client type information processing system, the following problems occur. That is, since the remote machine cannot access the local machine, the remote machine cannot know the state of the local machine. Here, when the local machine is a PC, the state of the local machine can be immediately confirmed using an input / output device locally connected to the local machine.
However, if the local machine is a server that does not have a locally connected input / output device, the state of the local machine cannot be immediately confirmed if the network connection is interrupted.

Also, in the conventional thin client type information processing system, the address of the local machine is assigned to the remote machine in advance. In other words, the local machine is assigned to the remote machine before use, and the resources of the local machine cannot be used effectively.

The present invention has been made in view of the above circumstances, and an object of the present invention is to provide a thin client type information processing system capable of effectively utilizing resources (local machines) . Another object of the present invention is to provide a thin client type information processing system capable of knowing the state of a local machine from a remote machine.

In order to achieve the above object, an invention related to an information processing apparatus allocation method includes:
A method of assigning information processing devices to terminals in an information processing system having a plurality of information processing devices connected to each other via a network, a management server for managing the information processing devices, and a plurality of terminals,
The management server is
In response to the allocation request, the address of the information processing apparatus whose terminal allocation status is unallocated among the plurality of information processing apparatuses is notified to the terminal of the allocation request transmission source, and the terminal allocation of the information processing apparatus Update the status from an unallocated status to a status indicating that the allocation request transmission source terminal has been allocated,
The terminal is
When the address of the information processing apparatus to be allocated to the own terminal is not stored, an allocation request is transmitted to the management server, and the address of the information processing apparatus to be allocated to the own terminal is received from the management server and stored. ,
When the address of the information processing device to be allocated to the terminal is stored, the operation information input to the input device of the terminal is transmitted to the address of the information processing device, and the video information is transmitted from the information processing device. Received and displayed on the display device of the terminal,
The information processing apparatus is
Receiving operation information from the terminal, performing information processing according to the operation content indicated by the operation information, and transmitting video information indicating the result to the terminal
It is characterized by.

In order to achieve the above object, the invention relating to the management server
  A management server for managing an information processing apparatus assigned to a terminal,
  Allocation status storage means for storing the terminal allocation status of each of the plurality of information processing devices;
  In response to the allocation request, the address of the information processing apparatus indicating that the terminal allocation status stored in the allocation status storage means is an unallocated status is notified to the terminal of the allocation request transmission source, and the allocation status An allocation management unit that updates the terminal allocation state of the information processing apparatus stored in the storage unit from an unallocated state to a state indicating that it should be allocated to the terminal of the allocation request transmission source. .
  In addition, other inventions related to the management server
  A management server for managing an information processing apparatus assigned to a terminal,
  An operation state storage means for storing an operation state of each of the plurality of information processing apparatuses;
  In response to a virus infection notification, the operation state of the information processing apparatus that is the notification source stored in the operation state storage unit is changed to a virus infection state, and in response to a failure notification, the operation state storage unit An operation state management means for changing the stored operation state of the information processing apparatus of the notification source to a failure state;
  In response to a status inquiry notification, the allocation status storage unit is used to identify an information processing device to be allocated to the notification source terminal, and the operation status of the identified information processing device stored in the operation status storage unit Is notified to the notification source terminal, and when the specified information processing device is in a failure state, the notification source terminal is notified of the fact. And an inquiry response means for transmitting the address of the information processing device indicating that the terminal assignment state stored in the assignment state storage means is an unassigned state to the terminal that is the notification source. .

In order to achieve the above object, the invention relating to a terminal
  A terminal for remotely operating an information processing apparatus assigned by a management server,
  Assigned to the address of the management server stored in the address storage means when at least the address of the information processing apparatus to be assigned to the terminal is not stored in the address storage means in which the address of the management server is stored Sending a request, receiving an address of an information processing device to be assigned to the terminal from the management server, and assigning request means for storing in the address storage means;
  When the address of the information processing device to be assigned to the terminal is stored in the address storage means, the operation information input to the input device of the terminal is transmitted to the address of the information processing device, and the information processing Remote operation means for receiving video information from the device and displaying it on the display device of the terminal.

In order to achieve the above object, an invention related to an information processing apparatus
  An information processing apparatus assigned to a terminal by a management server,
  Remote operation receiving means for receiving operation information from the terminal, performing information processing according to the operation content indicated by the operation information, and transmitting video information indicating the result to the terminal;
  Network blocking means for detecting infection of a computer virus, notifying the management server, and blocking the connection of the information processing apparatus to the network.

According to the present invention, when a terminal uses an information processing device for the first time, the management server is queried for the address of the information processing device assigned to the terminal, and the management server receives the inquiry and assigns the information processing device to the terminal. decide. Therefore, resources (information processing apparatus) can be used effectively. Further, according to the present invention, when the information processing apparatus detects a virus infection, it notifies the management server to that effect and then cuts off the connection to the network. Therefore, the state of the information processing apparatus can be known from the terminal.

  Hereinafter, an embodiment of the present invention will be described.

FIG. 1 is a schematic diagram of a remote desktop system (thin client type information processing system) to which an embodiment of the present invention is applied.

As shown in the figure, the remote desktop system according to the present embodiment includes a plurality of local machines 1, a plurality of remote machines 2 and an authentication device 6, a management server 7, and a file server 8. Multiple local machines 1, management server 7, and file server 8
Are connected to a local area network (LAN) 4A, which is an internal network built in a company or the like. The LAN 4A is connected to a WAN (Wide Area Network) 5 via the router 3A. The authentication device 6 can be attached to and detached from the remote machine 2. Remote machine 2
It is connected to a LAN 4B, which is an external network constructed at a destination such as a hotel or a station.
The LAN 4B is connected to the WAN 5 via the router 3B.

Local machine 1 is connected to remote machine 2 with VPN (Virtual Private Network)
And receives and processes input information (operation contents of the input device) sent from the remote machine 2 via the VPN, and transmits video information (desktop screen of the display device) indicating the processing result to the remote machine. 2 to send. The local machine 1 is a computer that normally uses an input / output device such as a blade server without being locally connected.

FIG. 2 is a schematic diagram of the local machine 1. As shown in the figure, the local machine 1
U (Central Processing Unit) 101, RAM (Random Access Memory) 102 functioning as a work area for CPU 101, and NIC (Networ for connection to LAN 4A)
k Interface Card) 103, HDD (Hard Disk Drive) 104, and flash ROM
(Read Only Memory) 105 and video card 107 for generating desktop video information
A bridge 108 that relays the bus BUS connected to each of the units 101 to 107, and a power source 109.

The flash ROM 105 stores a BIOS (Basic Input / Output System) 1050. After the power supply 109 is turned on, the CPU 101 first accesses the flash ROM 105 and executes the BIOS 1050 to recognize the system configuration of the local machine 1.

The HDD 104 includes an OS (Operating System) 1041 and a VPN communication program 104.
2, at least a remote server program 1043, a virus detection program 1044, and a plurality of application programs 1045 are stored.

The OS 1041 is a program for the CPU 101 to control each unit 102 to 109 of the local machine 1 and execute each program 1042 to 1044 described later.
In accordance with the BIOS 1050, the CPU 101 transfers the OS 1041 from the HDD 104 to the RAM 10
Load to 2 and execute. Thus, the CPU 101 causes each unit 102 of the local machine 1 to
˜109 is comprehensively controlled.

The VPN communication program 1042 is a communication program for building a VPN between the remote machine 2 and, for example, IPsec (Security Architecture for the Internet P
rotocol). The CPU 101 performs HD according to the OS 1041.
The VPN communication program 1042 is loaded from the D 104 to the RAM 102 and executed. Thus, the CPU 101 establishes a VPN with the remote machine 2 in accordance with a communication start request received from the remote machine 2 via the NIC 103, and communicates with the remote machine 2 via this VPN.

The remote server program 1043 is a program for enabling the desktop of the local machine 1 to be remotely operated from the remote machine 2, and is, for example, a VNC (Virtual Network Computing) server program developed at AT & T Cambridge Laboratory. C
The PU 101 executes the remote server program 104 from the HDD 104 according to the OS 1041.
3 is loaded into the RAM 102 and executed. As a result, the CPU 101 receives and processes the input information (keyboard and mouse operation details) sent from the remote machine 2 via the VPN, and also displays video information (display desktop screen) indicating the processing result.
Send to the remote machine 2 via VPN.

The virus detection program 1044 is a program for removing viruses from files stored in the RAM 102 and the HDD 104. Virus detection program 1
In step 044, each file stored in the RAM 102 and the HDD 104 is compared with a virus pattern prepared in advance to detect a computer virus infection of the file. It then isolates or removes computer viruses from the detected files. If the detected computer virus cannot be isolated or removed, the virus infection is notified to the management server 7, and then the OS 1041 is requested to stop the driver of the NIC 103, and the LAN 4A
Disconnect from the.

Application programs 1045 include general-purpose web browsers, word processors, spreadsheet programs, and the like. In accordance with the OS 1041, the CPU 101 responds to an instruction received from the keyboard and mouse via the I / O connector 106 or an instruction received from the remote machine 2 via the remote server program 1043 to receive a desired application program 1044 from the HDD 104. Is loaded into the RAM 102 and executed. Then, the video card 107 generates video information of the desktop screen reflecting the execution result,
The data is transmitted to the remote machine 2 via the remote server program 1043.

A one-chip microcomputer 1031 is mounted on the NIC 103. The one-chip microcomputer 1031 monitors the power supply state of the power supply 109 to the NIC 103. And power supply 1
When the power supply to the NIC 103 of 09 is cut off, the NIC 103 is operated by a power supply provided separately from the power supply 109 of the local machine 1. In response to the status inquiry received from the management server 7, if the power supply to the NIC 103 of the power source 109 is cut off, the stop status is notified to the management server 7, and if not, the operating status is set to the management server. 7 is notified.

FIG. 3 is a diagram for explaining the operation of the local machine 1. This flow is originally executed by the CPU 101 or the one-chip microcomputer 1031 according to a program. However, in order to simplify the description, the flow of the processing of the CPU 101 will be described with the program as the execution subject.

When receiving the input information from the remote machine 2 via the NIC 103 (YES in S100), the active application program 1045 executes processing corresponding to the operation content (keyboard operation and mouse operation) indicated by the input information. (S101). Then, video information representing the desktop screen reflecting the processing result is generated in the video card 107, and the video information is transmitted to the remote machine 2 via the NIC 103 (S102).
.

When the virus detection program 1044 detects a virus-infected file from the RAM 102 and the HDD 104 (YES in S110), the virus detection program 1044 executes a quarantine or removal process on the file (S111). If isolation or removal fails (S112)
NO) and a virus infection notification is transmitted to the management server 7 via the NIC 103 (S113).
Thereafter, the driver of the NIC 103 managed by the OS 1041 is stopped, and the LAN 4A
Is disconnected (S114).

Further, when the one-chip microcomputer 1031 receives a status inquiry from the management server 7 via the NIC 103 (YES in S120), if the power supply of the power supply 109 to the NIC 103 is cut off (NO in S121), the one-chip microcomputer 1031 is in a stopped state. To the management server 7 (S123). On the other hand, when power supply to the NIC 103 of the power supply 109 is not cut off (YES in S121)
The operating state is notified to the management server 7 (S122).

Returning to FIG. 1, the description will be continued. The management server 7 manages the allocation of each of the plurality of local machines 1 to the remote machine 2.

FIG. 4 is a schematic diagram of the management server 7. As illustrated, the management server 7 includes a CPU 701.
A RAM 702 functioning as a work area for the CPU 701, a NIC 703 for connecting to the LAN 4A, an HDD 704, a flash ROM 705, an I / O connector 706 for connecting a keyboard and a mouse, and a video for connecting a display. A card 707, a bridge 708 that relays a bus BUS connected to each of these units 701 to 707, and a power source 709 are included.

A BIOS 7050 is stored in the flash ROM 705. The CPU 701
After the power supply 709 is turned on, the system configuration of the management server 7 is recognized by first accessing the flash ROM 705 and executing the BIOS 7050.

The HDD 704 includes an OS 7041, an allocation state management table 7042, an operation state management table 7043, an allocation state management program 7044, and an operation state management program 7045.
, And an inquiry response program 7046 are stored at least.

The OS 7041 is a program for the CPU 701 to comprehensively control the units 702 to 709 of the management server 7 and execute programs 7044 to 7046 described later. CP
The U 701 loads the OS 7041 from the HDD 704 to the RAM 702 and executes it in accordance with the BIOS 7050. As a result, the CPU 701 causes each unit 702 to 709 of the management server 7.
Overall control.

The allocation state management table 7042 includes, for each local machine 1, the local machine 1
The allocation information is stored. FIG. 5 is a diagram schematically showing the allocation state management table 7042. As shown in the figure, a record 70420 is registered for each local machine 1.
It has a field 70421 for registering the ID of the local machine 1, a field 70422 for registering the network address of the local machine 1, and a field 70423 for registering the allocation type of the local machine 1. The allocation type includes “main allocation”, “temporary allocation”, and “unallocated”. “Main assignment” indicates a state in which the remote machine 2 is permanently assigned. “Temporary allocation” indicates a state in which the remote machine 2 is temporarily allocated when the local machine 1 that is “mainly allocated” to the remote machine 2 is stopped for maintenance or the like. “Unassigned” indicates a state in which the remote machine 2 is not yet assigned.

The operation state management table 7043 stores the operation state of the local machine 1 for each local machine 1. FIG. 6 is a diagram schematically showing the operation state management table 7043. As shown in the figure, a record 70430 is registered for each local machine 1. The record 70430 includes a field 70431 for registering the ID of the local machine 1, a field 70432 for registering the network address of the local machine 1, and the local machine 1
And a field 70433 for registering the operation state (any one of “operation”, “stop”, and “virus infection”).

The allocation status management program 7044 is assigned to the local machine 1 assigned to the remote machine 2.
It is a program for managing. The allocation status management program 7044 uses the allocation status management table 7042 and the operation status management table 7043 to execute the remote machine 2.
The local machine 1 to be allocated to is determined, and the allocation status management table 7042 is updated according to the determined contents.

The operation state management program 7045 is a program for managing the operation state of the local machine 1. The operation state management program 7045 acquires the operation state from each local machine 1 and updates the operation state management table 7043 according to the acquired content.

The inquiry response program 7046 is a program for responding to an inquiry from the remote machine 2. In response to the status query and recovery query from the remote machine 2, the query response program 7046 obtains the operating status of the local machine 1 that has been assigned to the remote machine 2 and responds with the operating status management table 7043. Update.

FIG. 7 is a diagram for explaining the operation of the management server 7. This flow is essentially C
The PU 701 executes according to the program. However, here, in order to simplify the description, the flow will be described with the program as the execution subject.

When receiving the virus infection notification from the local machine 1 via the NIC 703 (YES in S700), the operation state management program 7045 searches the operation state management TL 7043 for the record 70430 having the network address of the virus infection notification source. Then, the operating state registered in the field 70433 of the searched record 70430 is changed to “virus infection” (S701).

In addition, the allocation state management program 7044 is connected to the remote machine 2 via the NIC 703.
If the allocation request is a real allocation request (YES in S711), the local machine 1 to be fully allocated to the remote machine 2 that is the allocation request source is determined (S712). . Specifically, a record 70420 in which the allocation type in the field 70423 is “unallocated” is searched from the allocation status management table 7042.
Next, for each of the searched records 70420, the record 70430 in which the ID registered in the field 70421 is registered in the field 70431 or the network address registered in the subfield 70422 is registered in the field 70432 is recorded. Is searched from the operation state management table 7043 to check whether or not the operation state registered in the field 70433 of the record 70430 is “active”. When the operation state is “active”, this target record 70420 is set as the record 70420 of the main allocation candidate. Record 7 of the main allocation candidate set as described above
One of 0420 is selected, and this is determined as a record 70420 for the real allocation.

Next, the allocation state management program 7044 transmits the ID and network address registered in the field 70421 and the field 70422 of the actual allocation record 70420 to the remote machine 2 that is the allocation request source (S714). In addition, the field 7 of the record 70420 of the main allocation registered in the allocation state management table 7042.
The allocation type of 0423 is updated from “unallocated” to “main allocation” (S715).

On the other hand, the allocation state management program 7044 is connected to the remote machine 2 via the NIC 703.
If the allocation request received from step 1 is a temporary allocation request (NO in S711), the local machine 1 to be temporarily allocated to the remote machine 2 of the allocation request source is determined (S713). Specifically, a record 70420 in which the assignment type of the subfield 70424 is “unassigned”
A search is made from the allocation state management table 7042. Next, for each searched record 7042, the record 70430 in which the ID registered in the field 70421 is registered in the field 70431 or the network address registered in the subfield 70422 is registered in the field 70432 is recorded. Is searched from the operation state management table 7043 to check whether or not the operation state registered in the field 70433 of the record 70430 is “active”. If the operating status is "Active"
This target record 70420 is set as a temporary allocation candidate record 70420. One temporary allocation candidate record 70420 set as described above is selected, and this is determined as a temporary allocation record 70420.

Next, the allocation state management program 7044 transmits the ID and network address registered in the field 70421 and the field 70422 of the temporary allocation record 70420 to the remote machine 2 that is the allocation request source (S714). In addition, field 7 of the temporary allocation record 70420 registered in the allocation status management table 7042.
The allocation type of 0423 is updated from “unallocated” to “temporary allocation” (S715).

In addition, when the inquiry response program 7046 receives a status inquiry notification from the remote machine 2 via the NIC 703 (YES in S720), the inquiry response program 7046 checks the status of the local machine 1 assigned to the status inquiry notification source (S721). . Specifically, the record 70430 in which the ID of the local machine 1 included in the status inquiry notification is registered in the field 70431 or the network address included in the status inquiry notification is registered in the field 70432. Record 70430 that has been recorded in the operation state management table 704
3, the operation state registered in the field 70433 of the record 70430 is acquired.

Next, the inquiry response program 7046 checks whether or not the operation state acquired in S721 is “virus infection” (S722). If the operating status is "Virus infection" (
An inquiry response indicating that the operation state is “virus infection” is generated and transmitted to the remote machine 2 that is the state inquiry notification source via the NIC 703 (S722: YES).
725). On the other hand, when the operation state is not “virus infection” (NO in S722), the inquiry response program 7046 sends a state inquiry to the network address of the local machine 1 included in the notification of the state inquiry. (S723)
). Then, the operation state is acquired from the local machine 1, and the record 7 searched in S721 is obtained.
The field 70433 of 0430 is updated with the acquired operation state (S724). Further, an inquiry response indicating the operation state (either “active” or “stop”) acquired in S724 is generated, and this is transmitted to the remote machine 2 that is the state inquiry notification source via the NIC 703 (S725). .

Further, when the inquiry response program 7046 receives a recovery inquiry notification from the remote machine 2 via the NIC 703 (YES in S730), the inquiry response program 7046 checks whether or not the local machine 1 assigned to the recovery inquiry notification source has been recovered. Specifically, for the network address of the assigned local machine 1 included in the notification of the recovery query, a status query is
Transmission is performed via the NIC 703 (S731). When the operating state is acquired from the local machine 1, the ID of the assigned local machine 1 included in the recovery inquiry notification is included in the record 70430 registered in the field 70431, or in the recovery inquiry notification. The network address of the assigned local machine 1 is the field 7043
2 to retrieve the record 70430 registered in the operation status management table 7043,
The field 70433 of the record 70430 is updated with the acquired operation state (S7).
32). In addition, an inquiry response indicating the operation state (either “active” or “stopped”) acquired in S732 is generated and transmitted to the remote machine 2 that is the recovery inquiry notification source via the NIC 703 (S733). .

Next, when the operation state indicated by the inquiry response transmitted to the recovery inquiry notification remote machine 2 is “active” (YES in S734), the inquiry response program 7046 returns to the recovery inquiry notification source remote machine 2. Release the local machine 2 temporarily assigned to (S
735). Specifically, the record 70420 in which the ID of the temporary allocation local machine 1 included in the recovery query notification is registered in the field 70421 or the temporary allocation local machine 1 included in the recovery query notification The record 70420 in which the network address is registered in the field 70422 is searched from the allocation state management table 7042. Then, the allocation type registered in the field 70423 of the searched record 70420 is updated from “temporary allocation” to “unallocated”.

Returning to FIG. 1, the description will be continued. The remote machine 2 constructs a VPN with the local machine 1 and transmits the input information (operation contents of the input device) input to the local remote machine 2 to the local machine 1 through the VPN. Video image information (desktop screen of the display device) is received from the local machine 1 and displayed on the display of its own remote machine 2. The remote machine 2 is a local machine 1 assigned to the remote machine 2 itself.
Are registered in the authentication device 6. If the network connection with the local machine 1 assigned to the local remote machine 2 is interrupted, the network address of the local machine 1 temporarily assigned to the local remote machine 2 is acquired as necessary. Register in the authentication device 6. The remote machine 2 is a so-called HDD-less PC and is configured so that a printer, an external drive, an external memory, and the like cannot be connected locally or through a network. That is, the remote machine 2 is configured such that only a printer, an external drive, an external memory, or the like that is locally or network-connected to the local machine 1 can be used. By doing this,
The possibility of information leakage due to theft of the remote machine 2 is reduced.

FIG. 8 is a schematic diagram of the remote machine 2. As shown in FIG.
U201 for connecting the U201, the RAM 202 functioning as a work area of the CPU 201, the NIC 203 for connecting to the LAN 4B, and the authentication device (USB device) 6
SB port 204, flash ROM 205, I / O connector 206 for connecting a keyboard and mouse, video card 207 for connecting a display, and a bridge for relaying a bus BUS connected to these units 201 to 207 208 and power supply 20
9 and.

The flash ROM 205 includes a BIOS 2050, an OS 2051, a VPN communication program 2052, a remote client program 2053, and an allocation request program 2054.
, And an inquiry program 2055 are stored at least.

After the power supply 209 is turned on, the CPU 201 first accesses the flash ROM 205 to
By executing the IOS 2050, the system configuration of the remote machine 2 is recognized.

The OS 2051 is a program for the CPU 201 to control each unit 202 to 209 of the remote machine 2 and execute each program 2052 to 2055 described later.
In accordance with the BIOS 2050, the CPU 201 loads the OS 2051 from the flash ROM 205 to the RAM 202 and executes it. As a result, the CPU 201 comprehensively controls the units 2102 to 209 of the remote machine 2. Note that the OS 2051 of this embodiment uses a relatively small size that can be stored in the flash ROM 205 such as an embedded OS.

The VPN communication program 2052 is a communication program for establishing a VPN with the local machine 1 having the address notified from the remote client program 2053, and is a communication program using, for example, IPsec. CPU201 is OS20
51, the VPN communication program 2052 is transferred from the flash ROM 205 to the RAM 202.
To load and execute. As a result, the CPU 201 transmits a communication start request to the local machine 1 that has been permanently or temporarily assigned to its own remote machine 2 via the NIC 203, constructs a VPN with the local machine 1, and creates this VPN. Communicate with the local machine 1 via

The remote client program 2053 is a program for the remote machine 2 to remotely access the desktop of the local machine 1, and is, for example, a VNC client (viewer) program. The CPU 201 loads a remote client program 2053 from the flash ROM 205 to the RAM 202 and executes it in accordance with the OS 2051. As a result, the CPU 201 transmits the input information (operation contents of the keyboard and mouse) of the I / O connector 206 to the local machine 1 via the VPN, and at the same time, the VP
The video information (display desktop screen) sent from the local machine 1 via N is output to a display (not shown) connected to the video card 207.

It should be noted that the remote client program 2053 has to execute CP
Let U201 perform the next authentication process. That is, the CPU 201 causes the display connected to the video card 207 to display a user ID and password input form, and
An input of a user ID and a password is received from a user via a keyboard and a mouse connected to the O connector 206. And the accepted user ID and password
A request for user authentication is sent to the authentication device 6 connected to the B port 204. Then, only when the user authentication is established, the address of the local machine 1 is received from the authentication device 6 and notified to the VPN communication program 2052.

The assignment request program 2054 registers the address of the local machine 1 and the temporarily assigned local machine 1 that are assigned to the local remote machine 2 in the authentication device 6 in accordance with the instruction of the remote client program 2053, 6 is a program for deleting the address of the local machine 1 tentatively assigned to the local remote machine 2 registered in the local remote machine 2. The inquiry program 2055 is a program for inquiring of the operation state of the local machine 1 assigned to the local remote machine 2 to the management server 7 in accordance with an instruction from the remote client program 2053.

9 and 10 are diagrams for explaining the operation of the remote machine 2. This flow is originally executed by the CPU 201 according to the program. However, here, in order to simplify the description, the flow will be described with the program as the execution subject.

The remote client program 2053 displays a user ID and password input form on the display connected to the video card 207, and the I / O connector 206.
An input of a user ID and a password is received from the user via a keyboard and a mouse connected to (S901). The received user ID and password are transmitted to the authentication device 6 connected to the USB port 204 to request authentication (S902), and an authentication result is received from the authentication device 6 (S903).

If the authentication result indicates an authentication failure (NO in S903), this flow ends.
On the other hand, if the authentication result indicates successful authentication (YES in S903), the remote client program 2053 checks whether the address received together with the authentication result from the authentication device 6 is the address of the management server 7 (S905). . Authentication device 6 to management server 7
If this address is received (YES in S905), the authentication device 6 has not yet been used for the main allocation of the local machine 1 to the remote machine 2. That is, the remote machine 2 is not used for remote operation of the local machine 1. In this case, the remote client program 2053 notifies the assignment request program 2054 of the address of the management server 7 and instructs the local machine 1 for the real assignment.

In response to this, the allocation request program 2054 sends the management server 7 via the NIC 203.
This allocation request is transmitted to (S906). Next, the allocation request program 2054
If the address of the local machine 1 assigned to the own remote machine 2 is received from the management server 7 via the C203 (S907), the address of the local machine 1 assigned to the own remote machine 2 is changed to the USB port. The data is transmitted to the authentication device 6 via 204, registered in the authentication device 6, and notified to the remote client program 2053 (S908). The remote client program 2053 is the allocation request program 2
The VPN communication program 2052 is notified of the address of the local machine 1 assigned to the local remote machine 2 notified from 054 to instruct the establishment of the VPN.

In response to this, the VPN communication program 2052 establishes a VPN with the local machine 1 assigned to the remote machine 2 (S909). The remote client program 2053 cooperates with the remote server program 1043 of the local machine 1 assigned to the local remote machine 2 via this VPN to perform remote operation of the local machine 1 assigned to the local remote machine 2. Start (S910).

On the other hand, when the address received from the authentication device 6 together with the authentication result is not the address of the management server 7 (NO in S905), the address is the address of the local machine 1. Therefore, the remote client program 2053 determines whether the address is the address of the local machine 1 that is permanently assigned to the local remote machine 2 or the address of the local machine 1 that is temporarily allocated to the local remote machine 2. (S921). When the address is the address of the local machine 1 which is assigned to the remote machine 2 (S9)
21) YES, the remote client program 2053
The VPN communication program 2052 is notified of the address of the local machine 1 that has been assigned to the server, and the establishment of the VPN is instructed.

In response to this, the VPN communication program 2052 establishes a VPN with the local machine 1 assigned to the remote machine 2 (S922). If the VPN is successfully established (YES in S923), the remote client program 2053 cooperates with the remote server program 1043 of the local machine 1 assigned to the local remote machine 2 through this VPN, and Remote operation of the local machine 1 assigned to the machine 2 is started (S924).

If the VPN communication program 2052 fails to establish the VPN in S922 (S
923), the remote client program 2053 acquires the address of the management server 7 from the authentication device 6. Then, the inquiry program 2055 is notified of the address of the management server 7 and the network address of the assigned local machine 1 to instruct state inquiry. In response to this, the inquiry program 2055 generates a state inquiry including the network address of the assigned local machine 1 and transmits it to the management server 7 via the NIC 203 (S931).

Next, the inquiry program 2055 receives an inquiry response from the management server 7 (
S932), the operation state included in the inquiry response is displayed as the remote client program 2.
053 is notified. In response to this, the remote client program 2053 checks whether the operation state received from the inquiry program 2055 is “virus infection” or “stop” (S933), and if it is “virus infection” (S933). YES), this flow is finished. On the other hand, in the case of “stop” (NO in S933), the remote client program 2053 displays a confirmation screen as to whether or not to temporarily allocate the local machine 1 on the display connected to the video card 207, and the I / O connector. An instruction as to whether or not to make a temporary assignment is received from the user via the keyboard and mouse connected to 206 (S93).
4). If an instruction not to temporarily allocate is received (NO in S935), this flow ends. On the other hand, when an instruction for temporary allocation is received (YES in S935), the remote client program 2053 acquires the address of the management server 7 from the authentication device 6. Then, the address of the management server 7 is notified to the allocation request program 2054 to instruct temporary allocation of the local machine 1.

In response to this, the allocation request program 2054 sends the management server 7 via the NIC 203.
A temporary allocation request is transmitted to (S936). Next, the allocation request program 2054
If the address of the local machine 1 provisionally assigned to the local remote machine 2 is received from the management server 7 via the C203 (S937), the address of the local machine 1 provisionally assigned to the local remote machine 2 is changed to the USB port. The data is transmitted to the authentication device 6 via 204, registered in the authentication device 6, and notified to the remote client program 2053 (S938). The remote client program 2053 is the allocation request program 2
The VPN communication program 2052 is notified of the address of the local machine 1 tentatively assigned to the local remote machine 2 notified from 054 to instruct VPN establishment.

In response to this, the VPN communication program 2052 establishes a VPN with the local machine 1 temporarily assigned to the local remote machine 2 (S939). The remote client program 2053 cooperates with the remote server program 1043 of the local machine 1 temporarily allocated to the local remote machine 2 via this VPN, and performs remote operation of the local machine 1 temporarily allocated to the local remote machine 2. Start (S940).

In S921, when the address received together with the authentication result from the authentication device 6 is the address of the local machine 1 temporarily assigned to the own remote machine 2 (NO in S921),
The remote client program 2053 acquires the address of the management server 7 and the network address of the assigned local machine 1 from the authentication device 6. And
The management server 7 address and the network address of the assigned local machine 1 are notified to the inquiry program 2055 to instruct a recovery inquiry. In response,
The inquiry program 2055 generates a recovery query including the temporarily assigned local machine 1 address and the fully assigned local machine 1 network address.
The data is transmitted to the management server 7 via the NIC 203 (S951).

Next, the inquiry program 2055 receives an inquiry response from the management server 7 (
S952), the remote client program 2 displays the operation state included in the inquiry response.
053 is notified. In response to this, the remote client program 2053 checks whether the operation state received from the inquiry program 2055 is “active” or “stopped” (S953). In the case of “operation” (YES in S953), the address of the local machine 1 temporarily assigned to the local remote machine 2 is deleted from the authentication device 6 (S95).
4). Then, the remote client program 2053 notifies the VPN communication program 2052 of the address of the local machine 1 assigned to the remote machine 2 itself,
Instructs establishment of VPN.

In response to this, the VPN communication program 2052 establishes a VPN with the local machine 1 assigned to the remote machine 2 (S955). The remote client program 2053 cooperates with the remote server program 1043 of the local machine 1 assigned to the local remote machine 2 via this VPN to perform remote operation of the local machine 1 assigned to the local remote machine 2. Start (S956).

On the other hand, if the operating state received from the inquiry program 2055 is “stopped” in S953 (NO in S953), the remote client program 2053 uses the address of the local machine 1 temporarily assigned to the own remote machine 2 as the VPN communication. Program 20
52 is instructed to establish a VPN.

In response to this, the VPN communication program 2052 establishes a VPN with the local machine 1 provisionally assigned to its own remote machine 2 (S961). The remote client program 2053 cooperates with the remote server program 1043 of the local machine 1 temporarily allocated to the local remote machine 2 via this VPN, and performs remote operation of the local machine 1 temporarily allocated to the local remote machine 2. Start (S962).

In the flow shown in FIGS. 9 and 10, the ID of the local machine 1 may be used as information for specifying the local machine 1 instead of the network address or together with the network address.

Returning to FIG. 1, the description will be continued. The authentication device 6 authenticates the user ID and password received from the remote machine 2 and notifies the verification result to the remote machine 2. Here, when the authentication result is authentication successful, the authentication device 6 uses the address registered in the authentication device 6 together with the authentication result as the address of the management server 7 or the address of the assigned local machine 1. In addition, the remote machine 2 is notified together with a flag for identifying whether it is a temporarily assigned local address. The authentication device 6 registers and deletes the address of the local machine 1 in accordance with an instruction from the remote machine 2 that has been authenticated.

FIG. 11 is a schematic diagram of the authentication device 6. As illustrated, the authentication device 6 includes a USB adapter 601 for connecting to the USB port 204 of the remote machine 2 and an IC chip 602.

The IC chip 602 stores authentication information 6031, an authentication program 6032, an address table 6033, and an address management program 6034. The authentication device 6 may be configured so that a flash memory can be externally attached, and a part of the data in the IC chip 602 may be stored in the flash memory.

  The authentication information 6031 has a user ID and password.

The authentication program 6032 is a program that performs user authentication using the user ID and password input to the remote machine 2 to which the self-authentication device 6 is connected and the authentication information 6031.

In the address table 6033, a management server entry for registering the address of the management server 7, a main allocation entry for registering the address of the local machine 1 that has been permanently allocated to the remote machine 2 to which the self-authentication device 6 is connected, and the remote table A temporary assignment entry for registering the address of the local machine 1 temporarily assigned to the machine 2. In the initial state, only the address of the management server 7 is registered in the management server entry, and the other entries are null data. Note that the ID of the local machine 1 may be registered in the main assignment entry and the temporary assignment entry together with the network address of the local machine 1 that has been assigned and temporarily assigned.

The address management program 6034 is the remote machine 2 to which the self-authentication device 6 is connected.
The address of the local machine 1 that has been assigned to the remote machine 2 is registered in the main assignment entry of the address table 6033. Also, the address table 603
The address of the local machine 1 temporarily assigned to the remote machine 2 is registered in the temporary assignment entry 3 or the address of the local machine 1 that has been temporarily assigned to the remote machine 2 is released from the temporary assignment entry. Or delete it.

When the USB adapter 601 of the authentication device 6 is connected to the USB port 204 of the remote machine 2 so that power is supplied from the remote machine 2 to the authentication device 6, the IC
The chip 602 executes an authentication program 6032 and an address management program 6034. FIG. 12 is a diagram for explaining the operation of the authentication device 6. This flow is
Originally, the IC chip 602 executes according to a program. However, here, in order to simplify the description, the flow will be described with the program as the execution subject.

First, the authentication program 6032 receives an authentication request from the remote machine 2 (S6).
01) The user ID and password included in the authentication request are compared with the user ID and password of the authentication information 6031 (S602). If they do not match (S6
03, NO), an authentication result indicating that authentication is not established is output to the remote machine 2, and this flow is terminated. On the other hand, if the two match (YES in S603), the address table 6033.
, It is checked whether an address is registered in the temporary allocation entry (S610).
When the address is registered in the temporary allocation entry (YES in S610), the authentication program 6032 displays the authentication result indicating the authentication success, the address of the temporarily allocated local machine 1 registered in the temporary allocation entry, and the temporary allocation. Is output to the remote machine 2 (S611). Thereafter, when an instruction to delete the address of the temporarily assigned local machine 1 is received from the remote machine 2 within a predetermined time (YES in S612), the authentication program 6032 notifies the address management program 6034 to that effect. In response, the address management program 6034 deletes the address from the temporary allocation entry in the address table 6033 (S613). Thereafter, this flow is terminated. If an instruction to delete the address of the temporarily assigned local machine 1 is not received from the remote machine 2 within a predetermined time (NO in S612), this flow is immediately terminated.

On the other hand, when the address is not registered in the temporary allocation entry in S610 (S6
10), the authentication program 6032 refers to the address table 6033, and further checks whether or not an address is registered in this allocation entry (S620). If the address is registered in this allocation entry (YES in S620), the authentication program 6032
Outputs the authentication result indicating the authentication success to the remote machine 2 together with the address of the assigned local machine 1 registered in the assigned entry and the flag indicating the assigned assignment (S621). Thereafter, when the address of the local machine 1 temporarily allocated from the remote machine 2 is received within a predetermined time (YES in S622), the authentication program 6032 notifies the address management program 6034 of this address. In response to this, the address management program 6034 registers the address received from the authentication program 6032 in the temporary allocation entry of the address table 6033 (S623). Thereafter, this flow is terminated. If the address of the local machine 1 temporarily allocated from the remote machine 2 has not been received within the predetermined time (NO in S622), this flow is immediately terminated.

If the address is not registered in this allocation entry in S620 (NO in S620), the authentication program 6032 displays the authentication result indicating the authentication success in the address table 60.
It is output to the remote machine 2 together with the address registered in the management server entry 33 (S630). After that, the authentication program 6032 waits to receive the address of the local machine 1 that has been assigned from the remote machine 2 (S631), and notifies the address management program 6034 of this address. In response, the address management program 603
4 registers the address received from the authentication program 6032 in the main assignment entry of the address table 6033 (S632). Thereafter, this flow is terminated.

In the flow shown in FIG. 12, the authentication program 6032 and the address management program 6034 are installed in the remote machine 2 instead of being installed in the authentication device 6, and the remote machine 2 executes these programs so that the remote machine 2 You may make it perform. Alternatively, a part of the authentication program 6032 and the address management program 6034 may be installed in the remote machine 2 and executed so that the remote machine 2 and the authentication device 6 cooperate with each other.

  Next, a schematic operation of the remote desktop system having the above configuration will be described.

FIG. 13 is a diagram illustrating an operation example in the case where the address of the local machine 1 that has been assigned to the remote machine 2 to which the authentication device 6 is connected is not registered in the authentication device 6.

When the authentication information (user ID and password) is input from the user (S301), the remote machine 2 generates an authentication request including the authentication information and transmits it to the authentication device 6 (S302).

Upon receiving the authentication request from the remote machine 2, the authentication device 6 performs user authentication using the authentication information 6031 registered in the authentication device 6 (S303). If authentication is established, an authentication result indicating that is transmitted to the remote machine 2 together with the address of the management server 7 registered in the address table 6033 (S304).

When the remote machine 2 receives the authentication result indicating the authentication success from the authentication device 6 together with the address of the management server 7, the remote machine 2 transmits this allocation request to the management server 7 (S305).

When receiving the main allocation request from the remote machine 2, the management server 7 determines the local machine 1 to be permanently allocated to the remote machine 2 of the main allocation request, and the address of the local machine 1 is the local machine of the main allocation request source. 1 (S306).

When the remote machine 2 receives the address of the local machine 1 assigned to the remote machine 2 from the management server 6, the remote machine 2 registers it in the address table 6033 of the authentication device 6 (S 307). In addition, the remote machine 2 establishes a VPN with the local machine 1 that has been assigned to the remote machine 2 (S308). Then, using this VPN, remote operation of the local machine 1 assigned to the local remote machine 2 is started. As a result, when a user operation is input to the input device of the remote machine 2 (S309), the input information representing the operation content is transmitted to the local machine 1 that has been assigned to the local remote machine 2 (S310). The image information on the desktop screen reflecting the input information is sent from the local machine 1 assigned to the local remote machine 2 to the local remote machine 2 (S
311).

In FIG. 14, the address of the local machine 1 permanently assigned to the remote machine 2 to which the authentication device 6 is connected is registered in the authentication device 6, and the address of the local machine 1 temporarily assigned to the remote machine 2 is registered. FIG. 11 is a diagram showing an operation example when the local machine 1 assigned to the main is disconnected due to virus infection in a case where it is not performed.

When the authentication information (user ID and password) is input from the user (S321), the remote machine 2 generates an authentication request including the authentication information and transmits it to the authentication device 6 (S322).

When receiving the authentication request from the remote machine 2, the authentication device 6 performs user authentication using the authentication information 6031 registered in the authentication device 6 (S323). If the authentication is successful, an authentication result indicating that is registered in the address table 6033.
This is sent to the remote machine 2 together with the address of the assigned local machine 1 (S3
24).

When the remote machine 2 receives the authentication result indicating the authentication success from the authentication device 6 together with the address of the local machine 1 assigned to the remote machine 2, the remote machine 2 establishes the VPN with the assigned local machine 1. Try. However, in this case, since the local machine 1 assigned to the main is disconnected from the network, establishment of the VPN fails (S325).
). Therefore, the remote machine 2 acquires the address of the management server 7 from the authentication device 6, and transmits a status inquiry including the address of the assigned local machine to the management server 7 (S326).

When the management server 7 receives the status inquiry from the remote machine 2, the operation state “virus infection” of the assigned local machine 1 having the address included in the status inquiry is received.
Generate a query response containing Then, this inquiry response is transmitted to the remote machine 2 that is the state inquiry source (S327).

The remote machine 2 displays an inquiry response including the operation state “virus infection” received from the management server 7.

In FIG. 15, the address of the local machine 1 permanently assigned to the remote machine 2 to which the authentication device 6 is connected is registered in the authentication device 6, and the address of the local machine 1 temporarily assigned to the remote machine 2 is registered. FIG. 10 is a diagram showing an operation example in a case where the local machine 1 to which the main assignment has been made is stopped in a case where it is not performed.

When the authentication information (user ID and password) is input by the user (S341), the remote machine 2 generates an authentication request including the authentication information and transmits it to the authentication device 6 (S342).

Upon receiving the authentication request from the remote machine 2, the authentication device 6 performs user authentication using the authentication information 6031 registered in the authentication device 6 (S343). If the authentication is successful, an authentication result indicating that is registered in the address table 6033.
This is sent to the remote machine 2 together with the address of the assigned local machine 1 (S3
44).

When the remote machine 2 receives the authentication result indicating the authentication success from the authentication device 6 together with the address of the local machine 1 assigned to the remote machine 2, the remote machine 2 establishes the VPN with the assigned local machine 1. Try. In this case, however, the establishment of the VPN fails because the assigned local machine 1 is stopped (S345). Therefore, the remote machine 2 acquires the address of the management server 7 from the authentication device 6, and transmits a status inquiry including the ID accepted in S341 to the management server 7 (S346).

When receiving the status inquiry from the remote machine 2, the management server 7 generates an inquiry response including the operation state “stop” of the assigned local machine 1 having the address included in the inquiry. Then, this inquiry response is transmitted to the state inquiry source (S347).

The remote machine 2 displays an inquiry response including the operation state “stopped” received from the management server 7 and asks the user to confirm whether or not to temporarily allocate the local machine 1. And
When performing temporary allocation of the local machine 1, the remote machine 2 transmits a temporary allocation request including the user ID received in S341 to the management server 7 (S348).

When receiving the temporary allocation request from the remote machine 2, the management server 7 determines the local machine 1 to be temporarily allocated. Then, the address of the local machine 1 is transmitted to the remote machine 2 as the temporary allocation request source (S349).

When the remote machine 2 receives the address of the local machine 1 temporarily assigned to the remote machine 2 from the management server 6, the remote machine 2 registers it in the address table 6033 of the authentication device 6 (S350). Further, the remote machine 2 establishes a VPN with the local machine 1 temporarily assigned to the remote machine 2 (S351). Then, the remote operation of the local machine 1 temporarily assigned to the local remote machine 2 is started using this VPN. As a result, when a user operation is input to the input device of the remote machine 2 (S352), input information representing the operation content is transmitted to the local machine 1 temporarily assigned to the own remote machine 2 (S352), and the user The image information on the desktop screen reflecting the input information is transmitted from the local machine 1 temporarily assigned to the local remote machine 2 to the local remote machine 2 (S
354).

FIG. 16 shows the local machine 1 assigned to the remote machine 2 when the address of the local machine 1 temporarily assigned to the remote machine 2 to which the authentication device 6 is connected is registered in the authentication device 6. It is a figure which shows the operation example when is recovered.

When the remote machine 2 receives authentication information (ID and password) from the user (
S361) An authentication request including the authentication information is generated and transmitted to the authentication device 6 (S
362).

Upon receiving the authentication request from the remote machine 2, the authentication device 6 performs user authentication using the authentication information 6031 registered in the authentication device 6 (S363). If the authentication is successful, an authentication result indicating that is registered in the address table 6033.
The information is transmitted to the remote machine 2 together with the temporarily assigned local machine 1 address and the fully assigned local machine 1 address (S364).

When the remote machine 2 receives the authentication result indicating the authentication success from the authentication device 6 together with the address of the local machine 1 temporarily assigned to the remote machine 2, the remote machine 2 receives the address of the management server 7 from the authentication device 6 and the assigned local machine. 1 is acquired, and a recovery inquiry including the address of the temporarily assigned local machine 1 and the address of the assigned local machine 1 is transmitted to the management server 7 (S365).

When the management server 7 receives the recovery inquiry from the remote machine 2, the management server 7 generates an inquiry response including the operation state “operation” of the assigned local machine 1 included in the inquiry. Then, this inquiry response is transmitted to the remote machine 2 as the restoration inquiry source (S366).
).

The remote machine 2 displays the inquiry response including the operation state “active” received from the management server 7 and deletes the address of the local machine 1 temporarily assigned to the local remote machine 2 from the authentication device 6 (S367). . Also, the address of the local machine 1 assigned to the local remote machine 2 is acquired from the authentication device 6 (S368), and a VPN is established with the local machine 1 assigned to the local remote machine 2 (S368). S369)
. And using this VPN, the local machine 1 assigned to the remote machine 2 itself
Start remote control of. As a result, when a user operation is input to the input device of the remote machine 2 (S370), the input information representing the operation content is transmitted to the local machine 1 assigned to the remote machine 2 (S371), and the user The video information on the desktop screen reflecting the input information is transmitted from the local machine 1 assigned to the local remote machine 2 to the local remote machine 2 (S372).

  The embodiment of the present invention has been described above.

In this embodiment, when the authentication device 6 is used for the first time, the address of the local machine 1 assigned to the remote machine 2 to which the authentication device 6 is connected is inquired to the management server 7, and the management server 7 receives the inquiry. Thus, the local machine 1 to be permanently assigned to the remote machine 2 is determined. Therefore, resources (local machine 1) can be used effectively.

In this embodiment, when the local machine 1 detects a virus infection, the network connection is blocked after notifying the management server 7 of the fact. Therefore, the remote machine 2 can know the state of the local machine 1 assigned to the remote machine 2 by accessing the management server 7.

In the present embodiment, when the local machine 1 assigned to the remote machine 2 is stopped for a reason other than virus infection, another local machine 1 can be temporarily assigned as necessary. Therefore, the availability of the system can be improved while efficiently preventing secondary infection of the virus.

In addition, it is not limited to said embodiment of this embodiment, Many deformation | transformation are possible within the range of the summary. For example, in the above embodiment, the interface between the authentication device 6 and the remote machine 2 is not limited to USB. The authentication device 6 only needs to be configured to be able to communicate with the remote machine 2. For example, it may be configured so as to be detachable from the remote machine 2 such as a PC card, or Bluetooth.
By using short-range wireless communication such as (registered trademark), it may be possible to communicate without being attached to the remote machine 2.

In the above embodiment, the case where a VPN is established between the local machine 1 and the remote machine 2 to perform communication has been described as an example. However, the present invention is not limited to this. For example,
If the local machine 1 and the remote machine 2 exist in the same LAN, V
Communication between the local machine 1 and the remote machine 2 may be performed without constructing a PN.

FIG. 1 is a schematic diagram of a remote desktop system to which an embodiment of the present invention is applied. FIG. 2 is a schematic diagram of the local machine 1. FIG. 3 is a diagram for explaining the operation of the local machine 1. FIG. 4 is a schematic diagram of the management server 7. FIG. 5 is a diagram schematically showing the allocation state management table 7042. FIG. 6 is a diagram schematically showing the operation state management table 7043. FIG. 7 is a diagram for explaining the operation of the management server 7. FIG. 8 is a schematic diagram of the remote machine 2. FIG. 9 is a diagram for explaining the operation of the remote machine 2. FIG. 10 is a diagram for explaining the operation of the remote machine 2. FIG. 11 is a schematic diagram of the authentication device 6. FIG. 12 is a diagram for explaining the operation of the authentication device 6. FIG. 13 is a diagram illustrating an operation example in the case where the address of the local machine 1 that is permanently assigned to the remote machine 2 to which the authentication device 6 is connected is not registered in the authentication device 6. In FIG. 14, the address of the local machine 1 that is permanently assigned to the remote machine 2 to which the authentication device 6 is connected is registered in the authentication device 6, and the address of the local machine 1 that is temporarily assigned to the remote machine 2 is registered. FIG. 10 is a diagram showing an operation example in the case where the local machine 1 to which the main assignment has been made is disconnected from the network due to a virus infection in the case where it is not. In FIG. 15, the address of the local machine 1 permanently assigned to the remote machine 2 to which the authentication device 6 is connected is registered in the authentication device 6, and the address of the local machine 1 temporarily assigned to the remote machine 2 is registered. It is a figure which shows the operation example when the local machine 1 to which this main allocation was stopped in the case where it is not. In FIG. 16, when the address of the local machine 1 temporarily assigned to the remote machine 2 to which the authentication device 6 is connected is registered in the authentication device 6, the local machine 1 permanently assigned to the remote machine 2 is registered. It is a figure which shows the operation example at the time of recovering.

Explanation of symbols

1 ... Local machine, 2 ... Remote machine, 3A, 3B ... Router, 4A, 4B ... LAN
5 ... WAN, 6 ... authentication device, 7 ... management server, 8 ... file server

Claims (9)

A management server for managing an information processing apparatus assigned to a terminal,
Allocation status storage means for storing the terminal allocation status of each of the plurality of information processing devices;
An operation state storage means for storing an operation state of each of the plurality of information processing apparatuses;
In response to the first allocation request, the address of the information processing apparatus whose terminal allocation status stored in the allocation status storage means is an unallocated status is notified to the terminal of the allocation request transmission source as the first allocation address. And an allocation management means for updating the terminal allocation state of the information processing apparatus to a first allocation state indicating that the terminal is allocated from the unallocated state,
The notification of virus infection, and operating status management means an operation state of the notification source of the information processing device stored in the operation state storage means to change the infection state,
In response to a notification of a first status inquiry from the terminal regarding the information processing apparatus allocated to the first allocation request, the operation status of the information processing apparatus stored in the operation status storage unit is specified. If the operating state is a virus infection state, the virus infection state is notified to the notification source terminal, and if the operation state is not a virus infection state, a status inquiry is sent to the information processing device to indicate the operation state or the stop state. An inquiry response for acquiring the indicated operating state, updating the operating state of the information processing device stored in the operating state storage means, and notifying the operating state of the first state inquiry to the terminal Means.
A management server characterized by that . The management server according to claim 1,
In response to a second assignment request from a terminal that has been notified of the stop state as the operation state with respect to the first state inquiry, the assignment management means stores the terminal assignment state stored in the assignment state storage means Is notified to the terminal of the allocation request transmission source as a second allocation address, and the terminal allocation status of the information processing device is changed from the unallocated status to the first allocation address. Update to a second allocation state indicating that it is allocated instead of one allocation address;
A management server characterized by that .   The management server according to claim 2,
  In response to the second status inquiry about the information processing apparatus assigned to the first assignment request from the terminal to which the second assignment address is notified, the inquiry response means A status inquiry is sent to the information processing apparatus to obtain an operating state indicating an operating state or a stopped state, and the operating state of the information processing apparatus stored in the operating state storage unit is changed, and the operating state is Notify the terminal that is the source of the status inquiry in 2.
  A management server characterized by that.   The management server according to claim 3,
  The inquiry response means stores the second state inquiry stored in the allocation state storage means when the operating state notified to the terminal in response to the notification of the second state inquiry is an operating state. Updating the terminal assignment state of the information processing apparatus of the second assignment address assigned to the notification source terminal from the second assignment state to the unassigned state;
  A management server characterized by that. A terminal for remotely operating an information processing apparatus assigned by a management server,
If at least the address of the information processing device assigned to the terminal is not stored in the address storage means storing the address of the management server, the address of the management server stored in the address storage means Sending a first allocation request, receiving an address of an information processing device to be allocated to the terminal from the management server, and storing in the address storage unit as a first allocation address ;
If the first assigned address is stored in the address storage means, establish a connection with the information processing device of the first assigned address, send the operation information input to the input device of the terminal, Remote operation means for receiving video information from the information processing device and displaying it on the display device of the terminal ;
When establishment of a connection with the information processing apparatus with the first assigned address fails, a first status inquiry about the information processing apparatus is notified to the management server, and the virus of the information processing apparatus is transmitted from the management server. An inquiry means for receiving an operation state indicating an infection state, an operation state, or a stop state,
Terminal, characterized in that.   The terminal according to claim 5, wherein
  The allocation request unit is configured to execute a second allocation request for the address of the management server stored in the address storage unit when the operation state received in response to the first status inquiry is a stopped state. And receiving the address of the information processing apparatus to be assigned to the terminal from the management server, and storing it in the address storage means as the second assigned address assigned instead of the first assigned address,
  The remote control means establishes a connection with the information processing apparatus of the second assigned address;
  A terminal characterized by that.   The terminal according to claim 6, wherein
  When the reconnection is started with respect to the information processing apparatus with the second assigned address stored in the address storage means, the inquiry means manages the second state inquiry about the information processing apparatus with the management Notifying the server and receiving an operation state indicating an operation state or a stop state of the information processing apparatus from the management server.
  A terminal characterized by that.   The terminal according to claim 7, wherein
  The inquiry means deletes the second assigned address stored in the address storage means when the operation state received in response to the second state inquiry is an operation state,
  The remote control means establishes a connection with the information processing apparatus of the first assigned address when the operation state received in response to the second state inquiry is an operation state;
  A terminal characterized by that. A method of assigning information processing devices to terminals in an information processing system having a plurality of information processing devices connected to each other via a network, a management server for managing the information processing devices, and a plurality of terminals,
The management server
Allocation status storage means for storing the terminal allocation status of each of the plurality of information processing devices;
Operating state storage means for storing the operating state of each of the plurality of information processing devices,
In response to the first allocation request, the address of the information processing apparatus whose terminal allocation status stored in the allocation status storage means is an unallocated status is notified to the terminal of the allocation request transmission source as the first allocation address. And an allocation management step of updating the terminal allocation state of the information processing apparatus from a non-allocation state to a first allocation state indicating that the terminal is allocated to the terminal;
In response to a notification of virus infection, an operation state management step of changing the operation state of the information processing apparatus of the notification source stored in the operation state storage means to a virus infection state;
In response to a notification of a first status inquiry from the terminal regarding the information processing apparatus allocated to the first allocation request, the operation status of the information processing apparatus stored in the operation status storage unit is specified. If the operating state is a virus infection state, the virus infection state is notified to the notification source terminal, and if the operation state is not a virus infection state, a status inquiry is sent to the information processing device to indicate the operation state or the stop state. An inquiry response that acquires the operation state indicated, changes the operation state of the information processing apparatus stored in the operation state storage means, and notifies the terminal that is the notification source of the first state inquiry of the operation state Step and
The terminal
If at least the address of the information processing device assigned to the terminal is not stored in the address storage means storing the address of the management server, the address of the management server stored in the address storage means An allocation request step for transmitting the first allocation request, receiving the first allocation address from the management server, and storing it in the address storage means;
If the first assigned address is stored in the address storage means, establish a connection with the information processing device of the first assigned address, send the operation information input to the input device of the terminal, A remote operation step of receiving video information from the information processing device and displaying it on a display device of the terminal;
When establishment of a connection with the information processing device having the first assigned address fails, the management server notifies the management server of the first status inquiry about the information processing device. Executing an inquiry step for receiving an operation state indicating a virus infection state, an operation state, or a stop state;
An information processing apparatus assigning method characterized by the above.

Images