JP4642725B2 - Determination apparatus, determination method, and program - Google Patents

Description

  The present invention relates to a determination device, a determination method, and a program, and more particularly, to a determination device, a determination method, and a program that perform a predetermined operation when a plurality of preset confirmation data are received.

  Conventionally, a file management system that permits access to a predetermined file when a plurality of input passwords are valid is known.

Patent Document 1 (Japanese Patent No. 3662828) and Patent Document 2 (Japanese Patent No. 3807747) describe systems that permit access to a predetermined file when a plurality of valid passwords are simultaneously input. Yes.
Japanese Patent No. 3662828 Japanese Patent No. 3807747

  The systems described in Patent Document 1 and Patent Document 2 do not permit access to a predetermined file (predetermined operation) unless a plurality of valid passwords (confirmation data) are simultaneously received.

  Therefore, the user must input a plurality of valid passwords to this system at the same time.

  In particular, when this system is used for Web service authentication and each of a plurality of passwords is assigned to a plurality of users, it is difficult for the plurality of users to input passwords simultaneously from the respective terminal devices. Had to do the operation.

  A system that performs a series of authentication operations for determining whether or not a plurality of passwords received with a minute time difference after starting the authentication operation is a valid password is also conceivable.

  However, in this system, for example, when there is a large time difference between accepting one password and accepting another password, the authentication operation must be interrupted, that is, an operation not corresponding to a series of authentication operations is performed. In such a case, an accurate authentication operation cannot be performed.

  An object of the present invention is to provide a determination device, a determination method, and a program capable of performing a predetermined operation even when there is a large time difference between inputs of a plurality of confirmation data.

  In order to achieve the above object, a determination apparatus according to the present invention is a determination apparatus that performs a predetermined operation when receiving some of a plurality of preset confirmation data, and individually receives the confirmation data. Each time the reception unit, the storage unit, and the reception unit receive the confirmation data, the reception completion information is recorded in the storage unit in association with the confirmation data, and the reception completion information is associated with the confirmation data. A determination unit that determines whether or not the number of pieces of confirmation data has reached a predetermined number that is equal to or less than the number of the plurality of pieces of confirmation data and is an integer of 2 or more, and the determination unit includes: When it is determined that the number of confirmation data associated with the number does not reach the predetermined number, the predetermined operation is not performed, and the determination unit confirms that the reception completion information is associated The number of data is the predetermined number When determining reached the, and includes, the operation management unit to perform the predetermined operation.

  The determination method of the present invention is a determination method performed by a determination device that executes a predetermined operation when receiving some of a plurality of preset confirmation data, each time the confirmation data is received. A recording step of recording reception completion information in association with the confirmation data, and when the reception completion information is recorded, the number of confirmation data associated with the reception completion information is the plurality of confirmations A determination step for determining whether or not a predetermined number that is less than or equal to the number of data for use and an integer greater than or equal to 2 has reached, and the number of confirmation data associated with the reception completion information has reached the predetermined number If not, the predetermined operation is not performed, and when the number of confirmation data associated with the reception completion information reaches the predetermined number, an operation management step for performing the predetermined operation; including.

  According to the above invention, every time each piece of confirmation data is accepted, reception completion information corresponding to the confirmation data is recorded in the storage unit. For this reason, even if there is a time difference in the input of a plurality of confirmation data, the results of completion of acceptance of the confirmation data are recorded in the storage unit. When the number of confirmation data associated with the reception completion information is less than the predetermined number, the predetermined operation is not performed, and the number of confirmation data associated with the reception completion information becomes the predetermined number. When it reaches, a predetermined operation is performed.

  For this reason, it is possible to perform a predetermined operation even if there is a large time difference between the input of a plurality of confirmation data.

  Each time the determination unit records the acceptance completion information in the storage unit in association with the confirmation data, the determination unit counts the number of confirmation data associated with the acceptance completion information. It is desirable to determine whether or not the predetermined number has been reached.

  According to the above invention, every time confirmation data is input, the number of confirmation data associated with the reception completion information is counted again. For this reason, it is possible to perform a predetermined operation even if there is a large time difference between the input of a plurality of confirmation data.

  The storage unit stores the plurality of pieces of confirmation data in advance, the reception unit individually receives data, and the determination unit receives the data received by the reception unit as the confirmation data. A data determination unit that determines whether or not the data is stored in the storage unit, and the data determination unit determines that the data received by the reception unit is stored in the storage unit as the confirmation data. In this case, the reception completion information is recorded in the storage unit in association with the confirmation data, and whether the number of confirmation data associated with the reception completion information has reached the predetermined number. And a data management unit for determining

  According to the above invention, when the data received by the receiving unit is the confirmation data, the reception completion information is recorded in the storage unit in association with the confirmation data. For this reason, it is possible to record the reception completion information in the storage unit only when valid confirmation data is received. Therefore, it is possible to improve the management accuracy of the reception completion information in the storage unit.

  The accepting unit accepts the data individually from a plurality of terminal devices, and the storage unit stores contact information of the plurality of terminal devices or contact information of a user who inputs the confirmation data, It is desirable that the data management unit notifies the predetermined information to at least one of the contacts stored in the storage unit when the reception completion information is recorded in the storage unit.

  According to the above invention, for example, when the receiving unit receives the confirmation data from the terminal device, it is possible to notify the other terminal device or the user who inputs the confirmation data to that effect.

  When the data management unit records only one piece of the reception completion information in the storage unit, the data management unit may notify at least one of the contacts stored in the storage unit of information for prompting data input. desirable.

  According to the above invention, when input of confirmation data is started, it is possible to prompt the user of another terminal device or a user who inputs confirmation data to input data.

  The operation management unit manages an access right to the first specific information, and the data management unit determines that the number of confirmation data associated with the reception completion information has not reached the predetermined number In this case, the plurality of terminal devices are prohibited from accessing the first specific information, and the data management unit determines that the number of confirmation data associated with the reception completion information is the predetermined number. If the terminal device that has transmitted the confirmation data is permitted to access the first specific information, the data management unit confirms that the reception completion information is associated with the first confirmation information. When the number of data for use reaches the predetermined number, it is desirable to notify the contact information stored in the storage unit of information indicating that the first specific information can be accessed.

  When confirmation data is input from a plurality of terminal devices with a time difference, the user who first inputs the confirmation data cannot access the first identification information when the confirmation data is input. You have to wait until the information is accessible.

  According to the above invention, information indicating that the first specific information is accessible is notified to a plurality of terminal devices or a user who inputs confirmation data. Therefore, a user of a plurality of terminal devices or a user who inputs confirmation data can easily know that the first specific information can be accessed. For this reason, the user of the terminal device or the user who inputs the confirmation data does not have to perform the troublesome work of checking whether or not the first specific information can be accessed.

  The operation management unit manages an access right to the second specific information, and the data determination unit determines that the data received by the reception unit is stored in the storage unit as the confirmation data. In this case, it is desirable that the terminal device that has transmitted the confirmation data is permitted to access the second specific information.

  According to the above invention, it is possible to access the second specific information with only one confirmation data.

  Whether or not the number of the terminal devices that have logged into the determination device and transmitted the different confirmation data has reached a specific number that is less than or equal to the number of the plurality of terminal devices and an integer greater than or equal to 2. A login management unit for determining, wherein the operation management unit manages an access right to the third specific information, and the data management unit determines that the number of pieces of confirmation data associated with the reception completion information is It is determined that the predetermined number has been reached, and the login management unit has logged in to the determination device, and the number of terminal devices that have transmitted the different confirmation data has reached the specific number Then, it is desirable to permit the logged-in terminal device to access the third specific information.

  According to the above invention, if the number of confirmation data associated with the reception completion information reaches a predetermined number and a specific number (two or more integers) of terminal devices are not logged in to the determination device, 3. Unable to access specific information. For this reason, in the situation where only one terminal device is accessing, it is possible to prevent the third specific information from being tampered with by the one terminal device.

  The data determination unit, when the data received by the reception unit is not stored in the storage unit as the confirmation data, error information for executing an error display on the terminal device that transmitted the data And when the data is stored in the storage unit as the confirmation data and the number of the confirmation data does not reach the predetermined number, the data management unit It is desirable to notify the terminal device that has transmitted the inoperability information for executing the display indicating that the predetermined operation cannot be performed.

  According to the above-described invention, it is possible to notify an input error of confirmation data, and it is possible to notify that a predetermined operation cannot be performed even when accurate confirmation data is input.

  The data management unit measures an elapsed time from when only one piece of the reception completion information is recorded in the storage unit, and the reception completion information is correlated even if the elapsed time exceeds a predetermined time. If the number of confirmation data is less than the predetermined number, using the contact information stored in the storage unit, the terminal device or the user who has not yet transmitted the confirmation data, It is desirable to notify information that prompts data input.

  According to the above invention, it is possible to prevent the user from forgetting to input the confirmation data.

  The determination unit measures an elapsed time from when only one piece of the reception completion information is recorded in the storage unit, and the reception completion information is associated even if the elapsed time exceeds a predetermined time. When the number of confirmation data is less than the predetermined number, it is desirable to delete the reception completion information recorded in the storage unit.

  According to the above invention, if a predetermined number of confirmation data is not input even after a predetermined time has elapsed, for example, although it is not the time to input the confirmation data originally, the confirmation data is mistakenly caused by a user's misunderstanding. When input, it is possible to reset the reception record of the confirmation data.

  The program of the present invention is a program for causing a computer to execute a determination process for executing a predetermined operation when some of a plurality of preset confirmation data is received, each time the confirmation data is received, A recording process for recording reception completion information in association with the confirmation data, and when the reception completion information is recorded, the number of confirmation data associated with the reception completion information is the plurality of confirmation data. A determination process for determining whether or not a predetermined number that is less than or equal to the number of data and is an integer of 2 or more and the number of confirmation data associated with the reception completion information does not reach the predetermined number In this case, the predetermined operation is not performed, and when the number of confirmation data associated with the reception completion information reaches the predetermined number, an operation management process for performing the predetermined operation, Executing no decision processing in the computer.

  According to the said invention, it becomes possible to make a computer perform the said determination method.

  According to the present invention, it is possible to perform a predetermined operation even if there is a large time difference in the input of a plurality of confirmation data.

  Embodiments of the present invention will be described below with reference to the drawings.

(First embodiment)
FIG. 1 is a block diagram showing an access management system including a determination apparatus according to the first embodiment of the present invention.

  In FIG. 1, the access management system includes terminal devices 1 to 3, a file server 4, and an authentication server 5. The authentication server 5 can communicate with the terminal devices 1 to 3 via the network 6, and can communicate with the file server 4 via the network 7.

  The terminal devices 1 to 3 are, for example, PCs (personal computers) or portable terminals such as mobile phones. Note that the number of terminal devices is not limited to three, but may be a plurality.

  The terminal device 1 includes an input unit 11, a display unit 12, a memory 13, and a communication unit 14. The terminal device 2 includes an input unit 21, a display unit 22, a memory 23, and a communication unit 24. The terminal device 3 includes an input unit 31, a display unit 32, a memory 33, and a communication unit 34.

  The input units 11, 21, and 31 are, for example, a keyboard and a mouse, and receive input from the user. The display units 12, 22 and 32 display various information. The memories 13, 23 and 33 store various information. The communication units 14, 24 and 34 communicate with other devices via the network 6.

  The file server 4 stores information (first specific information) such as data managed by the user.

  The authentication server 5 is an example of a determination device, and includes a communication unit 51, a request analysis unit 52, a divided data generation unit 53, a storage unit 54 such as a memory, a notification information generation unit 55, a determination unit 56, An authority management unit 57. The determination unit 56 includes a divided data determination unit 56a and a data management unit 56b.

  When the authentication server 5 includes a recording medium such as a memory readable by a computer and a computer such as a CPU, a program that defines the operation of the authentication server 5 is recorded on the recording medium. When the computer reads the program from the recording medium and executes it, the communication unit 51, the request analysis unit 52, the divided data creation unit 53, the notification information creation unit 55, the determination unit 56, and the authority management unit 57. And may be realized.

  The communication unit 51 is an example of a reception unit, and communicates with the terminal devices 1 to 3. For example, the communication unit 51 receives requests and data from the terminal devices 1 to 3.

  The request analysis unit 52 analyzes the request received by the communication unit 51.

  If the request received by the communication unit 51 is a disclosure request for requesting the disclosure of data in the file server 4, the request analysis unit 52 provides the disclosure request to the divided data creation unit 53.

  If the request received by the communication unit 51 is an input request for requesting input of divided data, the request analysis unit 52 provides the input request to the divided data determination unit 56a.

  The divided data creation unit 53 can communicate with the terminal devices 1 to 3 via the communication unit 51.

  When the divided data creation unit 53 accepts the publication request, the divided data creation unit 53 requests the transmission destination (terminal device) of the publication request for information for creating divided data necessary for creating divided data.

  The divided data creation information includes, for example, an administrator password, the number of pieces of divided data, a distribution destination of the divided data, and the number of pieces of divided data necessary for releasing the data.

  Hereinafter, the number of data pieces (predetermined number) necessary for publishing data is also referred to as “judgment condition” and is an integer equal to or smaller than the number of pieces of divided data.

  The distribution destination of the divided data is used as a contact address of the terminal device to which the divided data is distributed. It should be noted that the distribution destination of the divided data may be the contact information of the user to whom the divided data is distributed, that is, the contact information of the user who inputs the divided data (for example, the mail address assigned to the user).

  Upon receiving the divided data creation information, the divided data creation unit 53 creates a plurality of divided data (confirmation data) based on the divided data creation information. For example, the divided data creation unit 53 creates divided data by dividing the administrator password into the number of pieces of divided data.

  When the divided data creating unit 53 creates the divided data, it creates a data table in which the divided data is associated with the distribution destination of the divided data, and stores the data table in the storage unit 54 together with the determination condition.

  FIG. 2 is an explanatory diagram showing an example of information (data table and determination condition) stored in the storage unit 54.

  In FIG. 2, the divided data 201 is associated with a divided data distribution destination 202, a reception completion status 203, and a determination condition 204.

  In the column of the reception completion status 203, reception completion information “×” is recorded when the divided data 201 associated with the reception completion status 203 is received. In FIG. 2, the column of the reception completion status 203 is blank.

  Returning to FIG. 1, when the divided data creation unit 53 stores the data table and the determination condition in the storage unit 54, the divided data creation unit 53 provides a creation completion signal to the notification information creation unit 55.

  The notification information creation unit 55 can communicate with the terminal devices 1 to 3 via the communication unit 51.

  When receiving the creation completion signal, the notification information creation unit 55 refers to the data table in the storage unit 54 and notifies each distribution data 201 to the distribution destination 202 associated with the division data.

  Whenever the communication unit 51 receives the divided data 201 from any one of the terminal devices 1 to 3, the determination unit 56 records the reception completion information “×” in the storage unit 54 in association with the divided data 201 and completes the reception. It is determined whether or not the number of pieces of divided data 201 associated with the information “x” has reached the number (predetermined number) represented by the determination condition 204 associated with the divided data.

  Each time the determination unit 56 records the reception completion information “×” in association with the divided data 201 in the storage unit 54, the determination unit 56 counts the number of pieces of divided data 201 associated with the reception completion information “×”. Then, it is determined whether or not the count number has reached the predetermined number.

  The divided data determination unit 56 a can communicate with the terminal devices 1 to 3 via the communication unit 51.

  When the divided data determination unit 56a receives an input request from the request analysis unit 52, the divided data determination unit 56a requests the divided data from the transmission source (terminal device) of the input request.

  When the divided data determination unit 56 a receives data (hereinafter referred to as “reception data”) from the transmission source, the divided data determination unit 56 a determines whether the reception data is stored in the storage unit 54 as the divided data 201.

  The divided data determination unit 56a notifies the determination result to the terminal device that transmitted the received data.

  In addition, when the received data is stored in the storage unit 54 as the divided data 201, the divided data determination unit 56a provides the determination result and the received data to the data management unit 56b.

  The data management unit 56 b can communicate with the terminal devices 1 to 3 via the communication unit 51.

  When the data management unit 56b receives the determination result and the reception data, the data management unit 56b records the reception completion information “x” in the field of the reception completion status 203 (see FIG. 2) associated with the reception data.

  When the data management unit 56b records the reception completion information “×”, whether or not the number of the divided data 201 associated with the reception completion information “×” has reached a predetermined number indicated by the determination condition 204. Determine.

  When the number of the divided data 201 associated with the reception completion information “x” reaches the predetermined number indicated by the determination condition 204, that is, when the determination condition 204 is satisfied, An operation start signal is provided to the authority management unit 57.

  Further, when the reception completion information “×” is recorded in the storage unit 54, the data management unit 56 b uses at least one of the distribution destinations using the distribution destination 202 of the divided data stored in the recording unit 54. In addition, predetermined information (for example, information for prompting data input or information indicating that the information in the file server 4 is accessible) is notified.

  The authority management unit 57 is an example of an operation management unit, and manages access rights to information (for example, files) in the file server 4.

  Specifically, the authority management unit 57 prohibits the terminal device from accessing information in the file server 4 until an operation start signal is received from the data management unit 56b, and sends an operation start signal from the data management unit 56b. When accepted, the terminal device that has transmitted the divided data is permitted to access the information in the file server 4.

  Next, the operation will be described.

  FIG. 3 is a sequence diagram for explaining the divided data creation operation. Hereinafter, the divided data creation operation will be described with reference to FIG.

  In the following description, it is assumed that the user of the terminal device 1 stores information managed by the user of the terminal device 1 in the file server 4 using the authentication server 5. Furthermore, it is assumed that the administrator data of the terminal device 1 is registered in the storage unit 54 of the authentication server 5.

  When the user of the terminal device 1 accesses the authentication server 5 using the terminal device 1, the communication unit 51 of the authentication server 5 provides the request analysis unit 52 with a notification that the access has been made.

  Upon receiving the notification that access has been made, the request analysis unit 52 returns a menu screen to the terminal device 1 via the communication unit 51. The terminal device 1 displays a menu screen on the display unit 12.

  FIG. 4 is an explanatory diagram showing an example of the menu screen 401. In FIG. 4, a menu screen 401 includes a file server data disclosure button 401a and a divided data input button 401b.

  When the data disclosure button 401 a of the file server is clicked by the input unit 11, the communication unit 14 transmits a disclosure request to the authentication server 5.

  When the request analysis unit 52 of the authentication server 5 receives the disclosure request, the request analysis unit 52 provides the disclosure request to the divided data creation unit 53.

  Upon receipt of the publication request, the divided data creation unit 53 requests administrator data from the terminal device 1 that is the transmission destination of the publication request as a response.

  When the user of the terminal device 1 transmits administrator data from the terminal device 1 to the authentication server 5 (step S301), the divided data creation unit 53 determines whether or not the administrator data is stored in the storage unit 54. Is confirmed (step S302).

  When the administrator data is not stored in the storage unit 54, the divided data creation unit 53 returns error information to the terminal device 1 (step S303).

  On the other hand, when the administrator data is stored in the storage unit 54, the divided data creation unit 53 returns a divided data creation request screen to the terminal device 1 (step S303). The terminal device 1 displays a divided data creation request screen on the display unit 12.

  FIG. 5 is an explanatory diagram showing an example of a divided data creation request screen.

  In FIG. 5, the divided data creation request screen 501 includes an administrator password input field 501 a, an input field 501 b for the number of persons whose information is to be disclosed (the number of divided data), and the contact information (partition data of the divided data) A distribution destination) input field 501c, an input field 501d for the number of divided data inputs (determination condition) as an access authority change condition, a public execution button 501e, and a cancel button 501f.

  When the user of the terminal device 1 operates the input unit 11 to input information in each input field, and then clicks the disclosure button 501e with the input unit 11, the communication unit 14 receives the information ( The divided data creation information) is transmitted to the authentication server 5 (step S304).

  Upon receiving the divided data creation information, the divided data creation unit 53 divides the administrator password into the number of pieces of divided data and creates divided data (step S305).

  When the divided data creation unit 53 creates the divided data, it creates a data table in which the divided data is associated with the distribution destination of the divided data, and stores the data table in the storage unit 54 together with the determination condition (see FIG. 2). .

  When the divided data creation unit 53 stores the data table and the determination condition in the storage unit 54, the divided data creation unit 53 provides a creation completion signal to the notification information creation unit 55.

  When receiving the creation completion signal, the notification information creation unit 55 refers to the data table in the storage unit 54 and notifies each distribution data 201 to the distribution destination 202 associated with the division data (step S306). .

  FIG. 6 is a flowchart for explaining the divided data determination operation. Hereinafter, the divided data determination operation will be described with reference to FIG.

  In the following description, it is assumed that the user of the terminal device 2 has divided data.

  When the user of the terminal device 2 accesses the authentication server 5 using the terminal device 2, the communication unit 51 of the authentication server 5 provides the request analysis unit 52 with a notification that the access has been made.

  Upon receiving the notification that the request has been accessed, the request analysis unit 52 returns a menu screen to the terminal device 2. The terminal device 2 displays a menu screen (see FIG. 4) on the display unit 22.

  When the divided data input button 401 b is clicked by the input unit 21, the communication unit 24 transmits an input request to the authentication server 5.

  Upon receiving the input request, the request analysis unit 52 provides the input request to the divided data determination unit 56a.

  Upon receipt of the input request, the divided data determination unit 56a returns a divided data input screen to the terminal device 2 that is the transmission destination of the input request as a response. The terminal device 2 displays a divided data input screen on the display unit 22.

  FIG. 7 is an explanatory diagram showing an example of a divided data input screen.

  In FIG. 7, a divided data input screen 701 shows a divided data input field 701 a, an input status display unit 701 b indicating the input status of divided data, and the number of divided data that will be required in the future to satisfy the determination condition 204. A remaining display portion 701c is provided.

  The divided data determination unit 56a creates an input status display unit 701b and a remaining display unit 701c with reference to the data table and determination conditions in the storage unit 54.

  For example, the divided data determination unit 56a provides a square corresponding to each piece of divided data shown in the data table in the storage unit 54 in the input status display unit 701b, and further, reception completion information “x” is recorded. The cells corresponding to the divided data are shaded or filled.

  Further, for example, the divided data determination unit 56a performs an operation of subtracting the number of reception completion information “x” from a predetermined number indicated in the determination condition, and displays the calculation result on the remaining display unit 701c.

  When the user of the terminal device 2 operates the input unit 21 and inputs the divided data in the divided data input field 701a, the communication unit 24 transmits the divided data to the authentication server 5.

  When the divided data determination unit 56a receives divided data (hereinafter referred to as “received data”) from the terminal device 2 (step S601), the divided data determination unit 56a determines whether or not the received data is stored as the divided data 201 in the storage unit 54. (Step S602).

  When the received data is not stored as the divided data 201 in the storage unit 54 (step S603), the divided data determination unit 56a notifies the terminal device 2 that has transmitted the received data of error information for executing error display. (Step S604).

  On the other hand, when the received data is stored as the divided data 201 in the storage unit 54 (step S603), the divided data determination unit 56a provides the determination result and the received data to the data management unit 56b.

  When receiving the determination result and the received data, the data management unit 56b records the reception completion information “x” in the field of the reception completion status 203 associated with the received data (see FIG. 2) (step S605). .

  When the reception completion information “×” is recorded, the data management unit 56 b counts the number of the divided data 201 associated with the reception completion information “×”, and the count number is a predetermined number indicated by the determination condition 204. It is determined whether or not the number has been reached (step S606).

  When the reception completion information “×” is recorded, if the number of pieces of divided data 201 associated with the reception completion information “×” is less than the predetermined number indicated by the determination condition 204, the data management unit 56b Notifies the terminal device that has transmitted the divided data of inoperability information for displaying that the terminal device cannot perform an operation (predetermined operation) of accessing information in the file server 4, and the authentication server 5. Is in a waiting state for divided data.

  When only one piece of the reception completion information “×” is recorded in the storage unit 54, the data management unit 56b uses the distribution destination 202 of the divided data to at least one of the distribution destinations (terminal devices). , Information (for example, a message “Please input divided data.”) That prompts the input of data is notified.

  The information that prompts the input of data is not limited to the message “Please enter the divided data.” It can be changed as appropriate.

  On the other hand, when the number of pieces of divided data 201 associated with the reception completion information “×” reaches a predetermined number indicated by the determination condition 204, that is, when the determination condition 204 is satisfied, the data management unit 56b. Provides the authority management unit 57 with an operation start signal.

  The authority management unit 57 prohibits the terminal device from accessing information in the file server 4 until the operation start signal is received from the data management unit 56b. When the authority management unit 57 receives the operation start signal from the data management unit 56b, the divided data Is permitted to access information in the file server 4 (step S607).

  Note that after the operation start signal is output, the data management unit 56b uses the divided data distribution destination 202 to access all the distribution destinations (terminal devices) to the information in the file server 4. (For example, a message “Information in the file server 4 is now accessible”) is notified.

  The information indicating that the information in the file server 4 can be accessed is not limited to the message “The information in the file server 4 can be accessed” but can be changed as appropriate.

  According to the present embodiment, every time individual divided data is received, the determination unit 56 records reception completion information “x” in the storage unit 54 in association with the divided data. For this reason, even if there is a time difference in the input of a plurality of divided data, the reception completion result of the divided data is recorded in the storage unit 54.

  Then, the authority management unit 57 does not perform the operation of changing the access right (predetermined operation) and completes the reception when the number of pieces of divided data associated with the reception completion information “×” is less than the predetermined number. When the number of pieces of divided data associated with the information “x” reaches a predetermined number, an operation for changing the access right is executed.

  For this reason, even if there is a large time difference in the input of a plurality of divided data, it is possible to perform a predetermined operation.

  In this embodiment, each time the determination unit 56 records the reception completion information “×” in association with the divided data in the storage unit 54, the determination unit 56 calculates the number of pieces of divided data associated with the reception completion information “×”. It counts and it is determined whether the count number has reached a predetermined number.

  In this case, every time divided data is input, the number of divided data associated with the reception completion information “×” is counted again. It becomes possible to perform an operation.

  In the present embodiment, the divided data determination unit 56a determines whether the received data is divided data. When the received data is divided data, the data management unit 56b completes reception in association with the divided data. Information “×” is recorded in the storage unit 54.

  In this case, the reception completion information “×” can be recorded in the storage unit 54 only when valid divided data is received. Therefore, the management accuracy of the reception completion information “×” in the storage unit 54 can be increased.

  Further, in this embodiment, when the data management unit 56b records the reception completion information “x” in the storage unit 54, the data management unit 56b uses at least the distribution destination 202 of the divided data stored in the storage unit 54 to distribute it. Any one of the above is notified of predetermined information, for example, information for prompting data input or information indicating that the information in the file server 4 is accessible. The divided data distribution destination 202 is, for example, the contact information of the terminal device to which the divided data is distributed or the contact information of the user who inputs the divided data.

  In this case, for example, when the communication unit 51 receives divided data from the terminal device, it is possible to notify other terminal devices or users who input the divided data to that effect.

  In this embodiment, when only one piece of reception completion information “×” is recorded in the storage unit 54, the data management unit 56 b uses at least one of the distribution destinations using the distribution destination 202 of the divided data. Notify information that prompts for data entry.

  In this case, when the input of the divided data is started, it is possible to prompt the user of another terminal device or the user who inputs the divided data to input the data.

  In this embodiment, the data management unit 56b outputs the operation start signal and then uses the divided data distribution destination 202 to access the information in the file server 4 to the distribution destination. Notify information.

  In this case, information indicating that the information in the file server 4 is accessible is notified to a plurality of terminal devices. Therefore, the user of the terminal device or the user who inputs the divided data can easily know that the information in the file server 4 can be accessed, and has the information in the file server 4 been accessible? This eliminates the troublesome task of checking whether or not.

  In this embodiment, the data determination unit 56a displays error information for executing error display on the terminal device that has transmitted the received data when the received data is not stored in the storage unit 54 as divided data. Notice.

  In this case, it becomes possible to notify an input error of divided data.

  In the present embodiment, when the data management unit 56 b records the reception completion information “×” in the storage unit 54, the number of pieces of divided data 201 associated with the reception completion information “×” If the number is less than the predetermined number indicated by 204, the terminal device that has transmitted the divided data displays an indication that the terminal device cannot perform an operation (predetermined operation) for accessing information in the file server 4. Notify inoperable information.

  In this case, it is possible to notify that a predetermined operation cannot be performed even if accurate confirmation data is input.

(Second embodiment)
Next, a second embodiment of the present invention will be described.

  In an actual access management system, a plurality of users use an access management service. In this case, since the information desired to be disclosed for each user and the other party desired to be disclosed differ, in the second embodiment, a file server that can be used for each user is specified.

  FIG. 8 is a block diagram showing a second embodiment of the present invention. In FIG. 8, the same components as those in the first embodiment shown in FIG. Hereinafter, the second embodiment will be described focusing on differences from the first embodiment.

  In FIG. 8, in the authentication server 5 </ b> A, a storage unit 81, a group creation unit 82, and a group determination unit 83 are added to the authentication server 5 shown in FIG. 1, and a request analysis unit 52 a is used instead of the request analysis unit 52. The divided data creating unit 53a is used instead of the divided data creating unit 53, the notification information creating unit 55a is used instead of the notification information creating unit 55, and the divided data judging unit 56a1 is used instead of the divided data judging unit 56a. The data management unit 56b1 is used instead of the data management unit 56b, and the authority management unit 57a is used instead of the authority management unit 57.

  The authentication server 5 </ b> A communicates with the file servers 41 and 42 via the network 7.

  When the authentication server 5A includes a computer-readable recording medium such as a memory and a computer such as a CPU, a program that defines the operation of the authentication server 5A is recorded on the recording medium. When the computer reads the program from the recording medium and executes it, the communication unit 51, the request analysis unit 52a, the divided data creation unit 53a, the notification information creation unit 55a, and the determination unit (the divided data determination unit 56a1) The data management unit 56b1), the authority management unit 57a, the group creation unit 82, and the group determination unit 83 may be realized.

  The file server 41 stores user data A (first specific information) and user data B (second specific information) managed by the first user. The file server 42 stores user data C managed by the second user.

  The group creation unit 82 can communicate with the terminal devices 1 to 3 via the communication unit 51.

  When the group creation unit 82 first receives a request for storing data in the file server from a terminal device that desires to store data in the file server (hereinafter referred to as “terminal device 1”), the terminal device 1 Is specified, and a group ID and a password for identifying the file server are provided to the terminal device 1.

  In addition, the group creation unit 82 stores the group table in the storage unit 81 by associating the group ID with the password.

  When the user of the terminal device 1 stores data in the file server, the user data A and user data B are stored in the file server identified by the group ID (hereinafter referred to as “file server 41”).

  In the following, it is assumed that user data A is stored in folder X of file server 41 and user data B is stored in folder Y of file server 41.

  The request analysis unit 52a analyzes the request received by the communication unit 51.

  If the request received by the communication unit 51 is a disclosure request, the request analysis unit 52a provides the disclosure request to the divided data creation unit 53a.

  When the request received by the communication unit 51 is an input request, the request analysis unit 52a provides the group determination unit 83 with the input request.

  When the divided data creation unit 53a accepts the disclosure request, the divided data creation unit 53a requests administrator data from a terminal device (hereinafter referred to as “terminal device 1”) that is a transmission destination of the disclosure request.

  When the user of the terminal device 1 transmits the administrator data from the terminal device 1 to the authentication server 5A, the divided data creation unit 53a checks whether or not the administrator data is stored in the storage unit 54.

  When the administrator data is not stored in the storage unit 54, the divided data creation unit 53 a returns error information to the terminal device 1.

  On the other hand, when the administrator data is stored in the storage unit 54, the divided data creation unit 53 a returns a divided data creation request screen to the terminal device 1. The terminal device 1 displays a divided data creation request screen on the display unit 12.

  FIG. 9 is an explanatory diagram showing an example of a divided data creation request screen transmitted by the divided data creation unit 53a. In FIG. 9, the same components as those shown in FIG.

  9, the divided data creation request screen 901 includes an administrator password input field 501a, an input field 501b for the number of persons (number of divided data) whose information is to be disclosed, and a contact information (divided data of the divided data). (Distribution destination) input field 501c, divided data input number (determination condition) input field 501d as an access authority change condition, group ID input field 901a, and a folder that can be accessed when the determination condition is satisfied. A name input field 901b, a folder name input field 901c that can be accessed by dividing data alone, a public execution button 501e, and a cancel button 501f are provided.

  When the user of the terminal device 1 operates the input unit 11 to input information in each input field, and then clicks the disclosure button 501e with the input unit 11, the communication unit 14 receives the information ( The divided data creation information) is transmitted to the authentication server 5A.

  When the divided data creation unit 53a receives the divided data creation information, the divided data creation unit 53a creates divided data by dividing the administrator password into the number of pieces of divided data.

  When the divided data creation unit 53a creates the divided data, the divided data is accessed by the divided data distribution destination, group ID, determination condition, folder name that can be accessed when the determination condition is satisfied, and the divided data alone. A data table associated with the folder name to be enabled and the reception completion status is created, and the data table is stored in the storage unit 54.

  FIG. 10 is an explanatory diagram showing an example of a data table stored in the storage unit 54. In FIG. 10, the same components as those shown in FIG.

  In FIG. 10, the divided data 201 includes a divided data distribution destination 202, a reception completion status 203, a determination condition 204, a group ID 1001, a folder name 1002 that can be accessed when the determination condition is satisfied, and the divided data alone. It is associated with a folder name 1003 to be accessible.

  When the divided data creation unit 53a stores the data table in the storage unit 54, the divided data creation unit 53a provides a creation completion signal to the notification information creation unit 55a.

  When receiving the creation completion signal, the notification information creation unit 55a refers to the data table in the storage unit 54 and the group table in the storage unit 81, and corresponds to each divided data 201, group ID 1001, and group ID 1001. Is notified to the distribution destination 202 associated with the divided data.

  The group determination unit 83 can communicate with the terminal devices 1 to 3 via the communication unit 51.

  When the group determination unit 83 receives an input request from the request analysis unit 52a, the group determination unit 83 requests a group ID and a password from the transmission source of the input request.

  When the group ID and password are received from the transmission source, the group determination unit 83 determines whether the group ID and password are stored in the storage unit 81.

  If the group ID and password are not stored in the storage unit 81, the group determination unit 83 notifies the determination result to the terminal device that has transmitted the group ID and password.

  When the group ID and password are stored in the storage unit 81, the group determination unit 83 provides the contact information of the terminal device that has transmitted the group ID and password and the group ID to the divided data determination unit 56a1.

  When the divided data determination unit 56a1 receives the contact information and the group ID, the divided data determination unit 56a1 requests the contact data (input request transmission source) for the divided data.

  When the divided data determination unit 56a1 receives data from the transmission source (hereinafter referred to as “reception data”), the received data is stored as the divided data 201 associated with the group ID received from the group determination unit 83. It is determined whether or not it is stored in 54.

  The divided data determination unit 56a1 notifies the determination result to the terminal device that transmitted the received data.

  Further, when the received data is stored in the storage unit 54 as the divided data 201 associated with the group ID, the divided data determination unit 56a1 displays the determination result, the received data, and the group ID as the data management unit 56b1. To provide.

  When the data management unit 56b1 receives the determination result, the reception data, and the group ID, the reception management information “×” is displayed in the column of the reception completion status 203 (see FIG. 10) associated with the reception data and the group ID. Record.

  When recording the reception completion information “×”, the data management unit 56b1 records the distribution destination of the divided data associated with the reception completion information “×” and the division associated with the received group ID. The folder name that can be accessed by data alone is read from the storage unit 54.

  Thereafter, the data management unit 56b1 provides the authority management unit 57a with a distribution destination of the divided data, a group ID, a folder name that can be accessed by the divided data alone, and an operation start signal.

  In addition, the data management unit 56b1 associates the number of pieces of reception data “x” associated with the received group ID with the group ID. It is determined whether or not the predetermined number indicated by the determination condition 204 is reached, that is, whether or not the determination condition 204 is satisfied.

  When the determination condition 204 is satisfied, the data management unit 56b1 stores the folder name associated with the determination condition 204 and accessible when the determination condition is satisfied, and the distribution destination of the divided data. Read from unit 54.

  Thereafter, the data management unit 56b1 manages the distribution destination of the divided data associated with the determination condition 204, the group ID, the folder name that can be accessed when the determination condition is satisfied, and the operation start signal. Provided to part 57a.

  In addition, when the data management unit 56 b 1 records the reception completion information “×” in the storage unit 54, the data management unit 56 b 1 sets the distribution data distribution destination 202 associated with the received group ID stored in the recording unit 54. By using the information, at least one of the distribution destinations is notified of predetermined information (for example, information for prompting data input or information indicating that the information in the file server 41 is accessible).

  When the authority management unit 57a receives from the data management unit 56b1 the distribution destination of the divided data, the group ID, the folder name that can be accessed by the divided data alone, and the operation start signal, the authority management unit 57a identifies the file identified by the group ID. From the server folder, find the folder with the folder name that can be accessed by the divided data alone.

  The authority management unit 57a permits the terminal device that has transmitted the divided data among the terminal devices corresponding to the distribution destination of the divided data received from the data management unit 56b1 to access the data in the found folder. .

  In addition, the authority management unit 57a receives, from the data management unit 56b1, the distribution destination of the divided data associated with the determination condition 204, the group ID, the folder name that can be accessed when the determination condition is satisfied, and the operation When the start signal is received, a folder having a folder name that can be accessed when the determination condition is satisfied is searched from the folder of the file server identified by the group ID.

  The authority management unit 57a permits the distribution destination of the divided data received from the data management unit 56b1 to access the data in the found folder.

  The authority management unit 57a receives from the data management unit 56b1 the distribution destination of the divided data associated with the determination condition 204, the group ID, the folder name that can be accessed when the determination condition is satisfied, and the operation Until the start signal is received, the distribution data distribution destination is prohibited from accessing the data in the folder.

  Next, the divided data determination operation will be described in detail.

  FIG. 11 is a flowchart for explaining the divided data determination operation of the second embodiment. Hereinafter, with reference to FIG. 11, the divided data determination operation of the second embodiment will be described with a focus on differences from the operation of the first embodiment.

  In the following description, it is assumed that the user of the terminal device 2 has divided data, a group ID, and a password.

  When the user of the terminal device 2 accesses the authentication server 5 </ b> A using the terminal device 2, the request analysis unit 52 returns a menu screen to the terminal device 2. The terminal device 2 displays a menu screen (see FIG. 4) on the display unit 22.

  When the divided data input button 401b is clicked by the input unit 21, the communication unit 24 transmits an input request to the authentication server 5A.

  Upon receiving the input request, request analysis unit 52 provides the input request to group determination unit 83.

  When the group determination unit 83 receives the input request, the group determination unit 83 returns a group data input screen to the terminal device 2 that is the transmission destination of the input request. The terminal device 2 displays a group data input screen on the display unit 22.

  FIG. 12 is an explanatory diagram showing an example of the group data input screen.

  In FIG. 12, a group data input screen 1201 is provided with a group ID input field 1201a, a password input field 1201b, an OK button 1201c, and a cancel button 1201d.

  The user of the terminal device 2 operates the input unit 21 to input the group ID into the group ID input field 1201a, enter the password into the password input field 1201b, and then click the OK button 1201c on the input unit 21 Then, the communication unit 24 transmits the input group ID and password to the authentication server 5A.

  When receiving the group ID and password from the terminal device 2 (step S1101), the group determination unit 83 of the authentication server 5A determines whether the group ID and password are stored in the storage unit 81 (step S1102).

  When the group ID and password are not stored in the storage unit 81 (step S1103), the group determination unit 83 notifies the terminal device 2 that has transmitted the group ID and password of error information for executing error display ( Step S1104).

  On the other hand, when the group ID and password are stored in the storage unit 81 (step S1103), the group determination unit 83 determines the contact information of the terminal device 2 that has transmitted the group ID and password, and the group ID as divided data. This is provided to the determination unit 56a1.

  When the divided data determination unit 56a1 accepts the contact information and the group ID, the divided data determination unit 56a1 refers to the storage unit 54 and selects the divided data associated with the group ID. This selection operation is referred to as group specification (step S1105).

  Hereinafter, the selected divided data is referred to as selected divided data.

  When the divided data determination unit 56a1 identifies the selected divided data, it returns a divided data input screen (see FIG. 7) to the contact received from the group determination unit 83, that is, the terminal device 2. The terminal device 2 displays a divided data input screen on the display unit 22.

  The divided data determination unit 56a1 creates an input status display unit 701b and a remaining display unit 701c with reference to the data table (see FIG. 10) in the storage unit 54.

  For example, the divided data determination unit 56a1 provides a square corresponding to each selected divided data in the input status display unit 701b, and further, the square corresponding to the selected divided data in which the reception completion information “x” is recorded is hatched or Fill.

  Further, for example, the divided data determination unit 56a1 subtracts the number of reception completion information “×” associated with the selected divided data from a predetermined number indicated in the determination condition associated with the received group ID. And the calculation result is displayed on the remaining display portion 701c.

  When the user of the terminal device 2 operates the input unit 21 and inputs the divided data in the divided data input field 701a, the communication unit 24 transmits the divided data to the authentication server 5A.

  When the divided data determination unit 56a1 of the authentication server 5A receives the divided data (hereinafter referred to as “received data”) from the terminal device 2 (step S1106), is the received data stored in the storage unit 54 as the selected divided data? It is determined whether or not (step S1107).

  When the received data is not stored as the selected divided data in the storage unit 54 (step S1108), the divided data determination unit 56a1 notifies the terminal device 2 that has transmitted the received data of error information for executing error display. (Step S1109).

  On the other hand, when the received data is stored in the storage unit 54 as the selected divided data (step S1108), the divided data determination unit 56a1 provides the determination result, the received data, and the group ID to the data management unit 56b1.

  When receiving the determination result, the received data, and the group ID, the data management unit 56b1 records the reception completion information “x” in the column of the reception completion status 203 corresponding to the received data and the group ID (see FIG. 10) ( Step S1110).

  When the data management unit 56b1 records the reception completion information “×”, the divided data alone associated with the distribution destination of the divided data associated with the reception completion information “×” and the group ID The folder name to be accessible is read from the storage unit 54.

  Thereafter, the data management unit 56b1 provides the authority management unit 57a with a distribution destination of the divided data, a group ID, a folder name that can be accessed by the divided data alone, and an operation start signal.

  In addition, the data management unit 56b1 indicates that the number of pieces of the divided data 201 associated with the group ID received from the divided data determination unit 56a1 and the reception completion information “×” is the group ID. It is determined whether or not the predetermined number indicated by the determination condition 204 associated therewith has been reached, that is, whether or not the determination condition 204 has been satisfied.

  When the determination condition 204 is satisfied, the data management unit 56b1 stores the folder name associated with the determination condition 204 and accessible when the determination condition is satisfied, and the distribution destination of the divided data. Read from unit 54.

  Thereafter, the data management unit 56b1 manages the distribution destination of the divided data associated with the determination condition 204, the group ID, the folder name that can be accessed when the determination condition is satisfied, and the operation start signal. Provided to part 57a.

  Similarly to the data management unit 56, the data management unit 56 b 1 distributes the divided data corresponding to the group ID stored in the recording unit 54 when the reception completion information “×” is recorded in the storage unit 54. Using the destination 202, at least one of the distribution destinations is notified of predetermined information (for example, information prompting data input or information indicating that the information in the file server 41 is accessible).

  When the authority management unit 57a receives from the data management unit 56b1 the distribution destination of the divided data, the group ID, the folder name that can be accessed by the divided data alone, and the operation start signal, the authority management unit 57a identifies the file identified by the group ID. From the server folder, find the folder with the folder name that can be accessed by the divided data alone.

  The authority management unit 57a permits the distribution destination of the divided data received from the data management unit 56b1 to access the information (second specifying information) in the found folder (steps S1111 and S1112).

  In addition, the authority management unit 57a receives, from the data management unit 56b1, the distribution destination of the divided data associated with the determination condition 204, the group ID, the folder name that can be accessed when the determination condition is satisfied, and the operation When the start signal is received, a folder having a folder name that can be accessed when the determination condition is satisfied is searched from the folder of the file server identified by the group ID.

  The authority management unit 57a permits the distribution destination of the divided data received from the data management unit 56b1 to access the information in the found folder (steps S1111 and S1113).

  The authority management unit 57a receives from the data management unit 56b1 the distribution destination of the divided data associated with the determination condition 204, the group ID, the folder name that can be accessed when the determination condition is satisfied, and the operation Until the start signal is received, the distribution data distribution destination is prohibited from accessing the information in the folder.

  According to the present embodiment, when the authority management unit 57a determines that the data determination unit 56a1 determines that the data received by the communication unit 51 is stored in the storage unit 54 as divided data, the divided data Is permitted to access the second specific information.

  In this case, the second specific information can be accessed with only one piece of divided data.

(Third embodiment)
Next, a third embodiment of the present invention will be described.

  When file sharing is performed in the second embodiment, the user who lastly inputs the divided data accesses the information (file) in the folder that can be accessed when the determination condition is satisfied when the divided data is input. become able to.

  However, other users do not know for a while that the information (file) can be accessed.

  For this reason, the user who has input the divided data lastly has the information (file) alone after entering the divided data and knows that other users can access the information (file). It becomes possible to tamper with.

  For this reason, the system according to the second embodiment is not suitable for handling information that is difficult for a user to falsify in secret.

  The third embodiment is a system that can solve this problem.

  FIG. 13 is a block diagram showing a third embodiment of the present invention. In FIG. 13, the same components as those of the second embodiment shown in FIG. The third embodiment will be described below with a focus on differences from the second embodiment.

  In FIG. 13, in the authentication server 5B, a login management unit 1301 is added to the authentication server 5A shown in FIG. 8, the divided data creation unit 53b is used instead of the divided data creation unit 53a, and instead of the authority management unit 57a. The authority management unit 57b is used.

  The authentication server 5B also communicates with the file server 43 via the network 7.

  The authentication server 5B prohibits a plurality of terminal devices from logging in using the same divided data.

  When the authentication server 5B includes a computer-readable recording medium such as a memory and a computer such as a CPU, a program that defines the operation of the authentication server 5B is recorded on the recording medium. When the computer reads the program from the recording medium and executes it, the communication unit 51, the request analysis unit 52a, the divided data creation unit 53b, the notification information creation unit 55a, and the determination unit (the divided data determination unit 56a1) Data management unit 56b1), authority management unit 57b, group creation unit 82, group determination unit 83, and login management unit 1301 may be realized.

  The file server 43 is a file server that was originally used by the information holder. In addition, the file server 41 is prepared for information disclosure and cannot be written by authentication with divided data.

  When the information holder publishes information, information to be disclosed manually or automatically is copied from the file server 43 to the file server 41.

  FIG. 14 is an explanatory diagram illustrating an example of a divided data creation request screen that the divided data creation unit 53b transmits to the terminal device that has transmitted the disclosure request in the third embodiment. In FIG. 14, the same components as those shown in FIG.

  In FIG. 14, the divided data creation request screen 1401 is provided with an input column 1401 for the number of simultaneous logins as an access authority changing condition in addition to the divided data creation request screen 901 shown in FIG.

  In the simultaneous login number input field 1401, only a specific number that is equal to or smaller than the number of divided data and an integer equal to or larger than 2 is input.

  Upon receiving the divided data creation information, the divided data creation unit 53b creates a data table in the same manner as the divided data creation unit 53a, and stores the data table in the storage unit 54.

  FIG. 15 is an explanatory diagram showing an example of a data table created by the divided data creation unit 53b. 15, the same components as those shown in FIG. 10 are denoted by the same reference numerals.

  The data table (see FIG. 15) created by the divided data creation unit 53b differs from the data table (see FIG. 10) created by the divided data creation unit 53a in the following points.

  First, the simultaneous login number 1501 is associated with the determination condition 204.

  A login check field 1502 is associated with each divided data 201.

  The login management unit 1301 manages the number of logged-in users (terminal devices) for each group ID using the login check field 1502 of the data table stored in the storage unit 54.

  Specifically, the login management unit 1301 receives the divided data transmitted when the terminal device logs in to the authentication server 5 </ b> B via the communication unit 51.

  Subsequently, the login management unit 1301 refers to the data table in the storage unit 54 and records “x” indicating that login is in progress in the login check field 1502 associated with the divided data.

  When the terminal device that has transmitted the divided data is disconnected from the authentication server 5B, the login management unit 1301 deletes the “x” in the login check column 1502 associated with the divided data.

  Subsequently, the login management unit 1301 calculates the number of “x” in the login check field 1502 for each group ID.

  Subsequently, the login management unit 1301 refers to the data table in the storage unit 54 to determine whether or not the calculated number of “x” has reached the simultaneous login number 1501 for each group ID, and the determination result Is provided to the authority management unit 57b.

  In the information associated with the same group ID, the authority management unit 57b determines that the data management unit 56b1 has reached the predetermined number of pieces of divided data associated with the reception completion information, and logs in. When the management unit 1301 determines that the number of terminal devices that have logged in to the authentication server 5B and transmitted different pieces of divided data has reached the number of simultaneous logins, the terminal device that has logged in receives information in the file server 43 ( The third specific information is permitted to be accessed.

  Next, the divided data determination operation will be described in detail.

  FIG. 16 is a flowchart for explaining the divided data determination operation of the third embodiment. In FIG. 16, the same operations as those shown in FIG. 11 are denoted by the same reference numerals. Hereinafter, with reference to FIG. 16, the divided data determination operation of the third embodiment will be described focusing on differences from the operation of the second embodiment.

  The authority management unit 57b, from the data management unit 56b1, distributes the divided data associated with the determination condition 204, the group ID, the folder name that can be accessed when the determination condition is satisfied, and the operation start signal. Is received, the determination result of the login management unit 1301 is referred to (step S1114).

  The authority management unit 57b refers to the determination result of the login management unit 1301 and whether the number of distribution destinations associated with the group ID received from the data management unit 56b1 reaches the number of simultaneous logins. It is determined whether or not (step S1115).

  If the number of logins does not reach the number of simultaneous logins, the authority management unit 57b executes step S1113.

  On the other hand, when the number of logins reaches the number of simultaneous logins, the authority management unit 57b transmits the selected divided data and permits the logged-in terminal device to access the information in the file server 43. (Step S1116).

  Note that the authority management unit 57b may provide an update signal to the data management unit 56b1 when step S1116 is executed. In this case, the data management unit 56b1 transmits, for example, the terminal device that has transmitted the selected divided data to the effect that the terminal device that has transmitted the selected divided data and logged in is permitted to access the information in the file server 43. Notify

  FIG. 17 is an explanatory diagram showing an example of notification by the data management unit 56b1.

  According to the present embodiment, it is possible to prevent the third specific information from being falsified in a state where only one terminal device is accessing.

  In each of the embodiments described above, the illustrated configuration is merely an example, and the present invention is not limited to the configuration.

  For example, in each of the embodiments described above, the communication unit 51 is used as the reception unit. However, the reception unit is not limited to the communication unit and can be changed as appropriate. For example, a keyboard or a mouse may be used as the reception unit.

  The confirmation data is not limited to the divided data obtained by dividing the administrator password, and can be changed as appropriate. As an example, the confirmation data may be data generated when some action is performed.

  The divided data is not limited to the divided administrator password, and may be passwords independent of each other (for example, a password generated by the authentication server 5 based on a random number, or a password uniquely considered by the user).

  Further, as shown in the first embodiment, as the distribution destination of the divided data, the contact information of the terminal device to which the divided data is distributed or the contact information of the user to whom the divided data is distributed, that is, the divided data is input. The contact information of the user is desirable.

  The operation management unit is not limited to the authority management unit that manages the access right, and can be changed as appropriate.

  Note that the determination apparatus described as an example of the authentication server in each of the above embodiments can provide a Web service (net disk service) that performs a predetermined action when receiving a plurality of preset confirmation data.

  The determination device manages the input result of the confirmation data in the storage unit 54 so that a plurality of confirmation data may be input from a remote location with a time difference. For this reason, even if a plurality of pieces of confirmation data are not input at the same time, the determination device can move to the next action if the input result of the confirmation data satisfies a preset condition (determination condition).

  By building such a Web service, the following service can be realized.

  In a network service system that manages access to a net disk by entering a password, access management is usually performed with a single password (referred to as an administrator password).

  When the administrator wants to publish information on the net disk at a later date, when the Web service system is operated, the number of divided passwords (divided data) specified by the administrator is generated, and the divided password is specified by the administrator. Sent to address. Each split password is different.

  Note that the system may create different URLs for the number of people as confirmation data instead of the split password. The split password may be a password independent of each other.

  When the user who receives the notification inputs each divided password to the system, the system refers to the divided password management table (storage unit 54) and manages which divided password is inputted.

  Other users also enter split passwords, and when the number of split passwords specified by the administrator in advance when information is disclosed is entered, the system takes action so that the user can refer to the public folder using the split password .

  When such a system is applied, the following usage scenes can be assumed.

(Usage scene 1)
Suppose you have information (for example, a will) on your netdisk that you don't want to show to anyone on a regular basis but that you want to share with your family.

  The owner of this information issues a split password to his family and notifies the network service system to enter the split password when something happens to him.

  When each of the family members inputs the notified split password, the family members can browse the information in the net disk.

  If this system is not used and information is simply disclosed, people who have viewed it and those who have not viewed it will come out. If you agree, the information will be available.

  The following usage scenes can also be assumed.

(Usage scene 2)
The teacher stores the information collected from the students in a folder on the net disk. Further, the teacher stores information such as a predetermined viewing date and time in another folder. The teacher generates divided passwords for the number of students and notifies the divided passwords to the students.

  When a student inputs a split password, a folder in which information such as browsing conditions is stored can be referred to.

  When a student inputs a divided password after a preset browsing date and time according to information such as browsing conditions, the system refers to the data table and manages which divided password is input.

  When the specified number of passwords are entered, the information collected from the students can be viewed (electronic time capsule).

  Depending on the service, when the input of the divided password is not collected within a certain period, it may be possible to notify the user who has not input the password again, or to clear the input history of the divided data.

  For example, the data management unit of each embodiment measures the elapsed time from when only one reception completion information is recorded in the storage unit 54, and even if the elapsed time exceeds a predetermined time, the reception completion information can be handled. When the number of confirmation data attached is less than the predetermined number, the reception completion information recorded in the storage unit 54 is deleted.

  In this case, if the predetermined number of confirmation data is not input even after the predetermined time has elapsed, for example, the confirmation data is erroneously input due to a user's misunderstanding although it is not the time to input the confirmation data originally. In this case, it is possible to reset the record that has received the confirmation data.

  In addition, the data management unit of each embodiment measures the elapsed time from when only one reception completion information is recorded in the storage unit 54, and the reception completion information corresponds even if the elapsed time exceeds a predetermined time. When the number of confirmation data attached is less than the predetermined number, the data input is performed using the contact 202 stored in the storage unit 54 to the terminal device that has not yet transmitted confirmation data. (For example, “please input the divided data immediately”) may be notified.

  In this case, it becomes possible to prevent the user from forgetting to input the confirmation data.

It is the block diagram which showed the access management system containing the determination apparatus of 1st Example of this invention. 6 is an explanatory diagram showing an example of information (data table and determination condition) stored in a storage unit 54. FIG. It is a sequence diagram for demonstrating division data creation operation. 5 is an explanatory diagram showing an example of a menu screen 401. FIG. It is explanatory drawing which showed an example of the request screen for division data creation. It is a flowchart for demonstrating division | segmentation data determination operation | movement. It is explanatory drawing which showed an example of the division data input screen. It is the block diagram which showed 2nd Example of this invention. It is explanatory drawing which showed an example of the request screen for division data creation. 6 is an explanatory diagram showing an example of a data table stored in a storage unit 54. FIG. It is a flowchart for demonstrating the division | segmentation data determination operation | movement of 2nd Example. It is explanatory drawing which showed an example of the group data input screen. It is the block diagram which showed 3rd Example of this invention. It is explanatory drawing which showed an example of the division data creation request screen. It is explanatory drawing which showed an example of the data table which the divided data preparation part 53b produced. It is a flowchart for demonstrating the division | segmentation data determination operation | movement of 3rd Example. It is explanatory drawing which showed an example of the notification by the data management part 56b1.

Explanation of symbols

1-3 Terminal device 11, 21, 31 Input unit 12, 22, 32 Display unit 13, 23, 33 Memory 14, 24, 34 Communication unit 4, 41, 42, 43 File server 5, 5A, 5B Authentication server 51 Communication Unit 52, 52a Request analysis unit 53, 53a, 53b Division data creation unit 54, 81 Storage unit 55, 55a Notification information creation unit 56 Judgment unit 56a, 56a1 Division data judgment unit 56b, 56b1 Data management unit 57, 57a, 57b Authority Management unit 82 Group creation unit 83 Group determination unit 1301 Login management unit

Claims (10)

A determination device that permits access to predetermined data when receiving some of a plurality of confirmation data set in advance for a plurality of users ,
A reception unit for individually receiving the confirmation data;
A storage unit that stores the plurality of pieces of confirmation data in advance ;
A data determination unit that determines whether the received data is stored in the storage unit as the confirmation data each time the reception unit receives the confirmation data;
When the data determination unit determines that the received data is stored in the storage unit, the reception determination information is recorded in the storage unit in association with the confirmation data, and the reception completion information is stored in the storage unit. A data management unit that determines whether or not the number of confirmation data associated with the first predetermined number that is equal to or less than the number of the plurality of confirmation data and is an integer of 2 or more;
The operation management unit that permits access to the predetermined data when the data management unit determines that the number of confirmation data associated with the reception completion information has reached the first predetermined number It has a door,
Further, the storage unit stores contact information of the plurality of users, and the data management unit is an integer in which the number of confirmation data associated with the reception completion information is equal to or less than a first predetermined number. A determination device that notifies predetermined information to at least one of the contact points of the plurality of users stored in the storage unit when a certain second predetermined number is reached . The determination apparatus according to claim 1 ,
When the data management unit records only one piece of the reception completion information in the storage unit, the data management unit notifies at least one of the contacts stored in the storage unit of information for prompting data input apparatus. In the determination apparatus according to claim 1 or 2 ,
The operation management unit manages an access right to the first specific information, and the data management unit determines that the number of confirmation data associated with the reception completion information has not reached the predetermined number In this case, the plurality of terminal devices that have transmitted the confirmation data are prohibited from accessing the first specific information, and the data management unit confirms the confirmation completion data associated with the reception completion information. The terminal device that has transmitted the confirmation data is allowed to access the first specific information, when it is determined that the number has reached the predetermined number,
When the number of confirmation data associated with the reception completion information reaches the predetermined number, the data management unit stores the first specific information in the contact information stored in the storage unit. A determination device that notifies information indicating that access is possible. The determination apparatus according to any one of claims 1 to 3 ,
The operation management unit manages an access right to the second specific information, and the data determination unit determines that the data received by the reception unit is stored in the storage unit as the confirmation data. In this case, the determination device permits the terminal device that has transmitted the confirmation data to access the second specific information. In the determination apparatus according to claim 1 to 4 ,
The data determination unit is logged into, the number of end end device that transmitted the confirmation data which is different from each other, wherein a number less and 2 or more integer plurality of terminal devices for transmitting confirmation data specific A login management unit for determining whether the number has been reached,
The operation management unit manages an access right to the third specific information, and the data management unit determines that the number of confirmation data associated with the reception completion information has reached the predetermined number. And when the login management unit determines that the number of the terminal devices that have transmitted the confirmation data different from each other is logged in to the data determination unit has reached the specific number, the logged-in terminal device The determination device permits access to the third specific information. The determination apparatus according to any one of claims 1 to 5 ,
The data determination unit, when the data received by the reception unit is not stored in the storage unit as the confirmation data, error information for executing an error display on the terminal device that transmitted the data Notice
The data management unit is a terminal that transmits the data when the data is stored in the storage unit as the confirmation data and the number of the confirmation data does not reach the predetermined number A determination apparatus for notifying the apparatus of operation disabling information for executing an indication that the predetermined operation cannot be performed. The determination apparatus according to any one of claims 1 to 6 ,
The data management unit measures an elapsed time from when only one piece of the reception completion information is recorded in the storage unit, and the reception completion information is correlated even if the elapsed time exceeds a predetermined time. when the number of confirmation data that there is less than said predetermined number, using said contacts stored in the storage unit, yet the transmission to have such pre-gastric SL user the confirmation data, the data A determination device that notifies information prompting input. The determination apparatus according to any one of claims 1 to 7 ,
The data management unit measures an elapsed time from when only one piece of the reception completion information is recorded in the storage unit, and the reception completion information is correlated even if the elapsed time exceeds a predetermined time. A determination device that deletes the reception completion information recorded in the storage unit when the number of confirmation data is less than the predetermined number. A determination method performed by a determination device that permits access to predetermined data when receiving some of a plurality of confirmation data set in advance for a plurality of users ,
An accepting step for accepting the confirmation data individually;
A storage step in which the storage unit stores the plurality of confirmation data in advance;
A data determination step for determining whether or not the received data is stored in the storage unit as the confirmation data each time the confirmation data is received;
When the data management unit determines that the received data is stored in the storage unit, it records reception completion information in the storage unit in association with the confirmation data, and the reception completion information corresponds A data management step of determining whether or not the number of confirmation data attached has reached a first predetermined number that is equal to or less than the number of the plurality of confirmation data and is an integer of 2 or more;
An operation management step for permitting access to the predetermined data when the operation management unit determines that the number of confirmation data associated with the reception completion information has reached the first predetermined number; Have
Further, the storage unit stores contact information of the plurality of users, and the data management unit is an integer in which the number of confirmation data associated with the reception completion information is equal to or less than a first predetermined number. A determination method characterized by notifying predetermined information to at least one of the contact points of the plurality of users stored in the storage unit when a second predetermined number is reached . A program for causing a computer to execute a determination process for permitting access to predetermined data when receiving some of a plurality of confirmation data set in advance for a plurality of users ,
A reception process for individually receiving the confirmation data;
A storage process for storing the plurality of confirmation data in a storage unit in advance;
A data determination process for determining whether the received data is stored in the storage unit as the confirmation data each time the confirmation data is received;
When it is determined that the received data is stored in the storage unit, reception completion information is recorded in the storage unit in association with the confirmation data, and the confirmation that the reception completion information is associated A data management process for determining whether or not the number of pieces of data has reached a first predetermined number that is less than or equal to the number of the plurality of pieces of confirmation data and is an integer of 2 or more;
An operation management process for permitting access to the predetermined data when it is determined that the number of confirmation data associated with the reception completion information has reached the first predetermined number;
Further, the storage processing for storing the contact information of the plurality of users in the storage unit and the number of confirmation data associated with the reception completion information is an integer equal to or less than a first predetermined number. When the predetermined number is reached, a program for causing a computer to execute determination processing including notification processing for notifying predetermined information to at least one of the contact points of the plurality of users stored in the storage unit .