JP4706299B2 - Image handling device - Google Patents

Description

  The present invention relates to a technique for giving a personal certificate that proves the identity of a user to image data created by a predetermined user.

  In recent years, due to the enforcement of the e-document law, a predetermined user, for example, using a device having a scanning function such as a scanner or a digital multi-function peripheral, a printed matter or the like representing predetermined information to be scanned ( Hereinafter, it is also referred to as a scan object) to create image data and use it as a substitute for the scan object. Examples of the scanning object include a certificate such as a receipt.

  By the way, the user may give a certificate (hereinafter referred to as a personal certificate) that proves his / her identity to the created image data in order to manage the created image data or prevent falsification. In this case, the user manages the personal certificate by himself and gives it to the created image data (see Patent Document 1).

JP-A-9-223210

  However, since the personal certificate proves the identity of the user, naturally confidentiality is important. Therefore, as described above, when the user manages the personal certificate by himself / herself, the user needs to pay considerable attention to the management in order to maintain the confidentiality of the personal certificate.

  The present invention has been made in view of the above problems, and is an image management system for managing image data created by a predetermined user. The user can manage the created image data without managing personal certificates by himself / herself. An object of the present invention is to provide a technology capable of giving a personal certificate of the user.

In order to achieve at least a part of the above object, the image management system of the present invention includes:
An image management system for managing image data created by a predetermined user,
A personal certificate storage unit for storing personal certificates proving the identity of multiple users,
An authentication unit for authenticating the predetermined user;
In the authentication result performed by the authentication unit, when the predetermined user is authenticated, the authentication of the personal certificates of the plurality of users stored in the personal certificate storage unit is performed. A personal certificate acquisition unit for acquiring the personal certificate of a predetermined user;
A personal certificate grant unit for granting the acquired personal certificate to the image data created by the predetermined user;
It is a summary to provide.

  According to the image management system configured as described above, the user can easily give the personal certificate to the image data created by the user without managing the personal certificate. Therefore, the user need not pay considerable attention to the management of the personal certificate, and can maintain the confidentiality of the personal certificate.

In the image management apparatus,
An encrypted hash value obtained by encrypting a hash value calculated from the image data with a secret key issued by a predetermined certification authority, and a public key corresponding to the secret key; , And an encrypted hash value assigning unit.

  In this way, it can be easily determined whether the image data has been tampered with.

In the image management apparatus,
The image management system is connected to a time stamp issuing device that issues a time stamp,
A time stamp acquisition unit for acquiring the time stamp from the time stamp issuing device;
A time stamp giving unit for giving the acquired time stamp to the image data created by the user;
You may make it provide.

  In this way, the user can give a type stamp to the created image data only by inputting authentication information without performing any other processing.

In order to achieve at least a part of the above object, the image handling apparatus of the present invention includes:
An image handling apparatus connected to a personal certificate storage server for storing personal certificates proving the identity of a plurality of users, and handling image data created by a predetermined user,
In the authentication result of the predetermined user performed by the image handling device or another device other than the image handling device, when the predetermined user is authenticated, the plurality of the plurality of the plurality of the plurality of the plurality of the plurality of the plurality of the plurality of the plurality A personal certificate acquisition unit that acquires the personal certificate of the predetermined user that has been authenticated among the personal certificates of the user;
A personal certificate grant unit for granting the acquired personal certificate to the image data created by the predetermined user;
It is a summary to provide.

  According to the image handling apparatus configured as described above, the user can easily give the personal certificate to the image data created by the user without managing the personal certificate. Therefore, the user need not pay considerable attention to the management of the personal certificate, and can maintain the confidentiality of the personal certificate.

In the above image handling device,
An encrypted hash value obtained by encrypting a hash value calculated from the image data with a secret key issued by a predetermined certification authority, and a public key corresponding to the secret key; , And an encrypted hash value assigning unit.

  In this way, it can be easily determined whether the image data has been tampered with.

In the above image handling device,
The image handling device is connected to a time stamp issuing device for issuing a time stamp,
A time stamp acquisition unit for acquiring the time stamp from the time stamp issuing device;
A time stamp giving unit for giving the acquired time stamp to the image data created by the user;
You may make it provide.

  In this way, the user can give a type stamp to the created image data only by inputting authentication information without performing any other processing.

  Note that the present invention is not limited to the above-described aspects of the device invention such as the image management system, and can also be realized as a method invention such as an image management method. Further, aspects as a computer program for constructing those methods and apparatuses, aspects as a recording medium recording such a computer program, data signals embodied in a carrier wave including the computer program, etc. It can also be realized in various ways.

  Further, when the present invention is configured as a computer program or a recording medium that records the program, the entire program for controlling the operation of the apparatus may be configured, or only the portion that performs the functions of the present invention. It may be configured.

Hereinafter, embodiments of the present invention will be described in the following order based on examples.
A. Example:
A1. Image management system overview:
A2. Personal certificate grant processing:
B. Variations:

A. Example:
A1. Image management system overview:
FIG. 1 is an explanatory diagram showing a schematic configuration of an image management system 1000 as an embodiment of the present invention. The image management system 1000 includes a scanner 100, a scanner management device 300, and a storage server 700 provided in a predetermined company, an authentication server CSV provided in a certificate authority (CA), and a time stamp provided in a time stamp authority. Server TSV. In the company, the scanner 100, the scanner management apparatus 300, and the storage server 700 are connected by a local area network LAN. The time stamp server TSV and the authentication server CSV are connected to the network NT, and the network NT is connected to the local area network LAN. Accordingly, an apparatus such as the scanner 100 connected to the local area network LAN in the company can be connected to the time stamp server TSV and the authentication server CSV via the network NT.

  The system outline of this image management system 1000 is as follows. That is, when the authentication information (user ID and password) is input by the user, the scanner 100 transmits the authentication information to the authentication server CSV via the scanner management apparatus 300. On the other hand, the authentication server CSV authenticates the user based on the transmitted authentication information. When the authentication result is authentication OK, the scanner 100 reads a printed material or the like (hereinafter also referred to as a scan object) representing predetermined information to be scanned and creates image data. The scanner 100 transmits the created image data to the scanner management apparatus 300, and transmits the user ID of the authenticated user to the authentication server CSV via the scanner management apparatus 300. The authentication server CSV reads a personal certificate that proves the identity of the user from a predetermined memory based on the transmitted user ID, and transmits the personal certificate to the scanner management apparatus 300. In the scanner management apparatus 300, the transmitted personal certificate is attached to the image data (electronic signature), and then transmitted to the storage server 700. The storage server 700 stores the transmitted image data with the personal certificate. These details will be described in the personal certificate grant processing described later. The image data stored in the storage server 700 is used for various purposes in place of the scan target. Further, the scanning object is not limited to a printed material, and may be a handwritten sentence or a pattern. Examples of the scan target include a certificate such as a receipt.

  FIG. 2 is a schematic configuration diagram showing the configuration of the scanner 100 in the present embodiment. FIG. 3 is a schematic front view of the scanner 100 in the present embodiment. As described above, the scanner 100 is a device that accepts user authentication information (user ID and password) in a personal certificate grant process, which will be described later, and reads predetermined scanning objects to create image data. 2 mainly includes a reading execution unit 110 (reading mechanism), a CPU 130, a RAM 180, and a touch panel 200.

  As shown in FIG. 3, the touch panel 200 is installed in front of the scanner 100, and accepts input of authentication information or the like from the user or gives predetermined information to the user in a personal certificate grant process described later. Function as a user interface (UI). As an example, the touch panel 200 of FIG. 3 shows a state where an authentication information, that is, a user ID and password input screen is displayed.

  The RAM 180 includes an image data storage unit 185 that stores image data created by an image data creation unit 140 described later.

  The reading execution unit 110 is a reading mechanism, and when there is an instruction from the image data creation unit 140 described below, the scan execution unit 110 scans the scan target and sequentially transmits the image data of the scan target to the image data creation unit 140. .

  The CPU 130 includes an image data creation unit 140, an authentication processing unit 150, a display control unit 160, and a communication control unit 170. These functional blocks are constructed in software by reading and executing a predetermined application program stored in a predetermined ROM (not shown). These functional blocks perform personal certificate grant processing described later.

  When the scan object is placed on the reading stage 20 (FIG. 3) and the scan start button 30 (FIG. 3) is pressed by the user, the image data creation unit 140 controls the reading execution unit 110 to read the reading execution unit. Image data of the scan target is acquired from 110, and these are collected to create image data of the entire scan target. The image data creation unit 140 stores the created image data in the image data storage unit 185.

The authentication processing unit 150 acquires a user ID and password input by the user via the touch panel 200. Further, the authentication processing unit 150 determines whether the user has been authenticated based on the authentication result transmitted from the authentication server CSV via the scanner management apparatus 300.
The display control unit 160 performs various controls of the touch panel 200.

  The communication control unit 170 performs various communications with the scanner management apparatus 300 via an input / output interface (not shown).

  FIG. 4 is a schematic configuration diagram showing the configuration of the scanner management apparatus 300 in this embodiment. The scanner management apparatus 300 performs various processes in a personal certificate grant process described later, and mainly includes a CPU 330 and a RAM 380 as shown in FIG.

  The RAM 380 is a predetermined memory, an image data storage unit 385 that stores image data acquired by the communication control unit 370 (to be described later) and a user ID in association with each other, and a communication control unit 370 by a personal certificate giving process (to be described later). And a grant data storage unit 390 that stores a public key certificate, a time stamp, and the like acquired by.

  The CPU 330 includes a hash value calculation unit 340, a certificate grant unit 350, a time stamp grant unit 360, and a communication control unit 370. These functional blocks are constructed in software by reading and executing a predetermined application program stored in a predetermined ROM (not shown). These functional blocks perform personal certificate grant processing described later.

  The hash value calculation unit 340 calculates the hash value of the image data transmitted from the scanner 100.

  The certificate assigning unit 350 assigns (electronic signature) to the image data acquired from the scanner 100, an encryption hash value and a public key certificate described later acquired from the authentication server CSV.

  The time stamp giving unit 360 acquires a time stamp from the time stamp server TSV and gives it.

  The communication control unit 370 performs various communications with the scanner 100, the authentication server CSV, and the storage server 700 via an input / output interface (not shown).

  The storage server 700 stores image data transmitted from the scanner management apparatus 300.

  FIG. 5 is a schematic configuration diagram showing the configuration of the authentication server CSV in the present embodiment. The authentication server CSV performs various processes in a personal certificate grant process described later, and includes a CPU 500 and a RAM 560.

  FIG. 6 is an explanatory diagram showing the user information table TB1 in the present embodiment. FIG. 7 is an explanatory diagram showing the authentication data table TB2 in the present embodiment. The RAM 560 includes a hash value storage unit 575 that stores a hash value acquired by the communication control unit 540 described later in association with a user ID, a user information table storage unit 565 that stores the user information table TB1 illustrated in FIG. And an authentication data table storage unit 570 for storing the authentication data table TB2 shown in FIG.

  In the user information table TB1, as shown in FIG. 6, user IDs and passwords registered in advance by a plurality of users are stored in association with each other.

  In the authentication data table TB2, as shown in FIG. 7, the user ID of each user is stored in association with the private key data and public key certificate data issued in advance by the certificate authority (CA). ing. Here, the public key certificate functions as the personal certificate described above. That is, the public key certificate is issued by the certificate authority (CA) and corresponds to the public key corresponding to the private key of the authentication data table TB2 and information indicating the owner of the public key certificate (hereinafter referred to as owner information). And the certificate authority (CA) signature (hereinafter also referred to as CA signature), etc. are stored, and the owner information and the CA signature correspond to the personal certificate. The owner information is expressed by country name, organization name, organizational unit name, name, etc. When the public key certificate is given to the image data (electronic signature) as described later, the user who created the image data is It can also be specified (identified) information. The CA signature is a digital signature encrypted by a certificate authority (CA) with its own private key, and is used for authentication of the public key certificate itself.

  As illustrated in FIG. 5, the CPU 500 includes an authentication determination unit 510, a hash value encryption unit 520, and a communication control unit 540. These functional blocks are constructed in software by reading and executing a predetermined application program stored in a predetermined ROM (not shown). These functional blocks perform personal certificate grant processing described later.

  The authentication determination unit 510 compares the authentication information transmitted from the scanner 100 via the scanner management apparatus 300 with the user information table TB1, and authenticates the user based on the authentication information.

  The hash value encryption unit 520 encrypts the hash value of the image data transmitted from the scanner management apparatus 300 and creates an encrypted hash value.

  The communication control unit 540 performs various communications with the scanner management apparatus 300 via an input / output interface (not shown).

  The time stamp server TSV issues a time stamp to be added to the image data at the request of the scanner management apparatus 300. The time stamp server TSV includes a standard time management unit (not shown) that manages standard time.

A2. Personal certificate grant processing:
FIG. 8 is a flowchart showing a personal certificate grant process in the image management system 1000 in this embodiment. This personal certificate giving process is a process executed mainly by the scanner 100, the scanner management apparatus 300, and the authentication server CSV. In this personal certificate grant processing, first, the user is authenticated, and in the case of authentication OK, image data is created from the scan target. Then, a hash value obtained by encrypting a hash value calculated from the image data using a secret key issued by a certificate authority and a public key certificate functioning as a personal certificate are added to the image data (electronic signature) To do. In addition, a time stamp issued by the time stamp authority is attached to the image data (electronic signature) and stored in the storage server 700.

  Specifically, first, the authentication processing unit 150 of the scanner 100 acquires authentication information (user ID and password) input by the user via the touch panel 200. Then, the communication control unit 170 transmits the authentication information acquired by the authentication processing unit 150 to the scanner management apparatus 300 (step S10).

  Subsequently, the communication control unit 370 of the scanner management apparatus 300 receives the authentication information transmitted from the scanner 100 and transmits (transfers) it to the authentication server CSV (step S20).

  The communication control unit 540 of the authentication server CSV receives the authentication information transmitted from the scanner management apparatus 300 (step S30).

  The authentication determination unit 510 performs an authentication process based on the received authentication information (user ID and password) (step S40). Specifically, the authentication judgment unit 510 reads the user information table TB1 from the user information table storage unit 565, identifies the column corresponding to the user ID in the received authentication information in the user information table TB1, It is determined whether the password corresponding to the column matches the password in the received authentication information. The authentication judgment unit 510 sets authentication OK when they match, and sets authentication NO when they do not match.

  Subsequently, the communication control unit 540 transmits a result of the authentication process (hereinafter also referred to as an authentication result) to the scanner management apparatus 300 as a response in the process of step S30 described above (step S50).

  When receiving the authentication result from the authentication server CSV, the communication control unit 370 of the scanner management apparatus 300 transmits the authentication result to the scanner 100 as a response in the process of step S20 described above (step S60).

  Then, the communication control unit 170 of the scanner 100 receives an authentication result for the authentication information transmitted in the process of step S10 from the scanner management apparatus 300 (step S70).

  Subsequently, the authentication processing unit 150 of the scanner 100 determines whether or not the received authentication result is authentication OK (step S80).

  If the received authentication result is authentication NO (step S80: NO), the authentication processing unit 150 returns to the process of step S10.

  FIG. 9 is an explanatory diagram showing a scan condition setting screen W on the touch panel 200 of the present embodiment. If the received authentication result is authentication OK (step S80: YES), the authentication processing unit 150 enables scanning. As shown in FIG. 9, the display control unit 160 displays a scan condition setting screen W on the touch panel 200 and waits for an instruction from the user.

  On the other hand, the user adjusts the document size, color mode, document type, file format, resolution, darkness, and the like of image data to be scanned and created via the scan condition setting screen W displayed on the touch panel 200.

  Then, when the scan object is placed on the reading stage 20 (FIG. 3) and the scan start button 30 (FIG. 3) is pressed by the user, the image data creation unit 140 controls the reading execution unit 110 to read the image. Acquire fragmentary image data of the scan object from the execution unit 110, combine them, and create image data of the entire scan object in consideration of the adjustment value (step S90), and the user ID of the user and The image data is stored in the image data storage unit 185 in association with each other.

  Subsequently, the communication control unit 170 reads out the created image data and user ID from the image data storage unit 185, and transmits them to the scanner management apparatus 300 (step S100).

  On the other hand, the communication control unit 370 of the scanner management apparatus 300 receives the transmitted image data and the user ID (step S110) and associates them with each other and stores them in the image data storage unit 385.

  Next, the hash value calculation unit 340 reads the stored image data and calculates a hash value of the image data (step S120).

  Then, the communication control unit 370 reads the user ID corresponding to the image data for which the hash value has been calculated from the image data storage unit 385, and transmits the user ID and the calculated hash value to the authentication server CSV in association with each other ( Step S130).

  The communication control unit 540 of the authentication server CSV receives the transmitted user ID and hash value (step S140), associates them with each other, and stores them in the hash value storage unit 575.

  Next, the hash value encryption unit 520 performs encryption processing of the stored hash value (step S150). Specifically, the hash value encryption unit 520 first encrypts the authentication data table TB2 (FIG. 7) from the authentication data table storage unit 570, the hash value to be encrypted from the hash value storage unit 575, and the corresponding user. Each ID is read out. Subsequently, the hash value encryption unit 520 acquires a secret key corresponding to the read user ID in the read authentication data table TB2. Then, the hash value encryption unit 520 encrypts the read hash value using the acquired secret key. The hash value encrypted in this way is also referred to as an encrypted hash value below.

  Subsequently, the communication control unit 540 reads the authentication data table TB2 from the authentication data table storage unit 570, and acquires the public key certificate corresponding to the user ID read in the process of step S150 in the authentication data table TB2. Then, the communication control unit 540 transmits the acquired public key certificate, the read user ID, and the encrypted hash value encrypted by the hash value encryption unit 520 to the scanner management apparatus 300 (step S160).

  The communication control unit 370 of the scanner management apparatus 300 receives the transmitted public key certificate, user ID, and encrypted hash value (step S170) and stores them in the assigned data storage unit 390 in association with each other.

  Subsequently, the certificate grant unit 350 reads the stored public key certificate, user ID, and encrypted hash value, and reads image data corresponding to the user ID from the image data storage unit 385. Then, the certificate grant unit 350 assigns (electronic signature) a public key certificate and an encrypted hash value to the header of the read image data (step S180).

  Next, the time stamp assigning unit 360 and the communication control unit 370 perform a time stamp assigning process (step S190). Specifically, first, the communication control unit 370 of the scanner management apparatus 300 requests the time stamp server TSV to issue a time stamp, and the hash value calculated by the hash value calculation unit 340 as described above is used as the time stamp server TSV. Send to. When a time stamp issuance request is received from the scanner management apparatus 300 and the hash value is received, the time stamp server TSV acquires standard time information representing the standard time at that time from a standard time management unit (not shown). The time stamp server TSV creates a digital signature for the received hash value and the acquired standard time information using a secret key managed by the time stamp server TSV, and uses the information including the hash value, the standard time information and the digital signature as a time stamp. , It returns to the scanner management apparatus 300. The communication control unit 370 of the scanner management apparatus 300 receives this, and the time stamp assigning unit 360 further receives the received time in the image data provided with the public key certificate and the encrypted hash value in the process of step S180. Give a stamp. A detailed technique for such a time stamp assigning process is disclosed in, for example, Japanese Patent Application Laid-Open No. 2003-244139.

  Then, the communication control unit 370 transmits the image data subjected to the time stamp addition process to the storage server 700 (Step S200). On the other hand, the storage server 700 stores the transmitted image data. The image data stored in the storage server 700 is used for various purposes in place of the scan target. For example, when the scanned object is a receipt, the image data with specific information representing the receipt is used in the accounting department or the like instead of the receipt.

  As described above, in the image management system 1000 according to the present exemplary embodiment, the authentication server CSV performs authentication based on the authentication information input from the user, and the scanner management apparatus 300 prompts the user when the authentication is OK. The creation of image data is permitted, and the scan target is read to create image data. Thereafter, the scanner 100 transmits the created image data to the scanner management apparatus 300, and the scanner management apparatus 300 receives the image data and acquires the public key certificate of the user who created the image data from the authentication server CSV. The received public key certificate is assigned (electronic signature) to the received image data. As described above, this public key certificate also functions as a personal certificate. Therefore, in this way, the user can easily give a public key certificate that functions as a personal certificate to the created image data without managing it. Therefore, the user need not pay considerable attention to the management of the personal certificate, and can maintain the confidentiality of the personal certificate. In this case, the user is authenticated, and the public key certificate (personal certificate) of the user is assigned to the image data created by the authenticated user. It is possible to improve the reliability of the public key certificate (personal certificate).

  In the image management system 1000 according to the present embodiment, the scanner management apparatus 300 encrypts the public key certificate of the user who created the image data and the hash value of the image data with the private key of the certificate authority (CA). An encrypted hash value is assigned to the image data (electronic signature). In this way, in the image data, the public key certificate itself can be authenticated from the CA signature in the assigned public key certificate. Further, the user who created the image data can be specified (identified) from the owner information in the assigned public key certificate. Further, the assigned encrypted hash value is decrypted with the public key in the public key certificate, while the hash value is newly calculated from the image data, the decrypted hash value, the newly calculated hash value, Can be determined whether or not the image data has been tampered with. In this case, if the decrypted hash value matches the newly calculated hash value, the image data has not been altered, and the decrypted hash value and the newly calculated hash value are identical. Otherwise, it can be determined that the image data has been tampered with.

  Furthermore, in the image management system 1000 of this embodiment, the scanner management apparatus 300 adds a time stamp to the image data. In this way, the user can add a time stamp to the created image data by only inputting authentication information with the scanner 100 without performing any other processing.

B. Variations:
Note that the present invention is not limited to the above-described embodiment, and can be implemented in various modes without departing from the scope of the invention.

B1. Modification 1:
In the above-described embodiment, in the personal certificate grant process, the authentication server CSV performs the determination of authentication based on the authentication information input from the user. However, the present invention is not limited to this. For example, the scanner management apparatus 300 may make an authentication determination based on authentication information input from a user. In this case, the scanner management apparatus 300 includes the user information table TB1, and when authentication information is received in the process of step S20 in the above-described personal certificate grant process (FIG. 8), authentication is performed based on the user information table TB1. To do. In this way, it is not necessary to send authentication information to the authentication server CSV, so that the authentication work can be performed quickly. Further, the authentication determination based on the authentication information input from the user may be performed by a server K (not shown) connected to the network NT and different from the authentication server CSV. Also in this case, the server K includes a user information table TB1, and performs authentication based on the user information table TB1. Even if it does in this way, there can exist an effect similar to the said Example.

B2. Modification 2:
In the above embodiment, the scanner 100 receives authentication information from a user. When the user is authenticated, the scanner 100 reads an object to be scanned and creates image data. To the device 300. On the other hand, the scanner management apparatus 300 acquires the user's personal certificate corresponding to the received user ID from the authentication server CSV, and assigns it to the image data created by the user corresponding to the user ID, thereby providing the personal certificate. The image data to which is attached is created. However, the present invention is not limited to this. For example, you may make it produce the image data to which the personal certificate was provided with the following apparatus structures.

  In other words, the image management system 1000 according to this modification includes an authentication information receiving device X (not shown) that is connected to the scanner management device 300 and can receive user authentication information and is different from the scanner 100. The scanner management apparatus 300 further includes an image data storage unit Y (not shown) in which the user ID of the user and image data created by the user are stored in association with each other. In this case, the authentication information receiving apparatus X first receives authentication information from the user and transmits it to the authentication server CSV via the scanner management apparatus 300. As described above, the authentication server CSV determines whether or not to authenticate based on the authentication information, and returns an authentication result to the authentication information receiving apparatus X via the scanner management apparatus 300. Subsequently, the authentication information receiving apparatus X receives the authentication result, and when the authentication result is authentication OK, transmits the user ID of the received authentication information to the scanner management apparatus 300. The scanner management apparatus 300 receives the user ID and acquires a public key certificate (personal certificate) based on the user ID from the authentication server CSV. Then, the scanner management apparatus 300 reads out the image data corresponding to the user ID from the image data storage unit Y, and gives (electronic signature) the acquired public key certificate (personal certificate) to the image data. In this way, image data with a personal certificate may be created.

  In this modification, information (authentication information, authentication result, etc.) is exchanged between the authentication information receiving device X and the authentication server CSV via the scanner management device 300. Information exchange between the apparatus X and the authentication server CSV may be performed directly without using the scanner management apparatus 300.

B3. Modification 3:
The image management system 1000 of the above embodiment performs user authentication using a user ID and a password, but the present invention is not limited to this. It is only necessary that user authentication can be performed accurately. For example, authentication may be performed using biological information such as fingerprints, veins, and irises. In this case, the scanner 100 has a device that can read the user ID and the biometric information. In the authentication server CSV, the user ID and the biometric information are associated in advance instead of the user information table TB1. Saved. Even if it does in this way, it can have an effect similar to the said Example.

B4. Modification 4:
In the image management system 1000 of the above embodiment, on the authentication server CSV side, the hash value of the image data is encrypted with the private key corresponding to the public key held by the public key certificate to create an encrypted hash value. However, the present invention is not limited to this. For example, an encrypted hash value may be created on the scanner management apparatus 300 side. In this case, the scanner management apparatus 300 calculates a hash value from the image data, and obtains a secret key corresponding to the public key held by the public key certificate from the authentication server CSV. Then, the scanner management apparatus 300 encrypts the calculated hash value with the obtained secret key.

B5. Modification 5:
In the above embodiment, the scanner 100 transmits the authentication information received from the user to the authentication server CSV via the scanner management apparatus 300. However, the present invention is not limited to this, and the authentication is not limited thereto. The information may be directly transmitted to the authentication server CSV without using the scanner management apparatus 300. In the above embodiment, the authentication server CSV transmits the authentication result to the scanner 100 via the scanner management apparatus 300. However, the present invention is not limited to this, and the authentication result is You may make it transmit directly to the scanner 100 not via the scanner management apparatus 300. FIG.

B6. Modification 6:
In the above embodiment, the authentication server CSV is installed in the certificate authority and is connected to the scanner 100 and the scanner management apparatus 300 via the network NT. However, the present invention is not limited to this. For example, the authentication server CSV may be installed in the company and directly connected to the local area network LAN. Even if it does in this way, there can exist the effect of the said Example.

B7. Modification 7:
In the above-described embodiment, each part of the scanner 100, the scanner management apparatus 300, and the authentication server CSV may be configured as hardware instead of being configured as software, or configured as hardware. What is present may be configured in software.

It is explanatory drawing which shows schematic structure of the image management system 1000 as one Example of this invention. It is a schematic block diagram which shows the structure of the scanner 100 in an Example. It is a schematic front view of the scanner 100 in an Example. It is a schematic block diagram which shows the structure of the scanner management apparatus 300 in an Example. It is a schematic block diagram which shows the structure of the authentication server CSV in an Example. It is explanatory drawing showing the user information table TB1 in an Example. It is explanatory drawing showing the authentication data table TB2 in an Example. It is a flowchart showing the personal certificate provision process in the image management system 1000 in an Example. It is explanatory drawing which shows the scanning condition setting screen W in the touch panel 200 of a present Example.

Explanation of symbols

20 ... Reading stage 30 ... Scan start button 100 ... Scanner 110 ... Reading execution unit 130 ... CPU
140 ... Image data creation unit 150 ... Authentication processing unit 160 ... Display control unit 170 ... Communication control unit 180 ... RAM
185 ... Image data storage unit 200 ... Touch panel 300 ... Scanner management device 330 ... CPU
340 ... Hash value calculation unit 350 ... Certificate granting unit 360 ... Time stamp granting unit 370 ... Communication control unit 380 ... RAM
385 ... Image data storage unit 390 ... Additional data storage unit 500 ... CPU
510 ... Authentication judgment unit 520 ... Hash value encryption unit 540 ... Communication control unit 560 ... RAM
565 ... User information table storage unit 570 ... Authentication data table storage unit 575 ... Hash value storage unit 700 ... Storage server 1000 ... Image management system

Claims (3)

An image handling apparatus connected to a personal certificate storage server for storing personal certificates proving the identity of a plurality of users, and handling image data created by a predetermined user,
In the authentication result of the predetermined user performed by the image handling device or another device other than the image handling device, when the predetermined user is authenticated, the plurality of the plurality of the plurality of the plurality of the plurality of the plurality of the plurality of the plurality of the plurality A personal certificate acquisition unit that acquires the personal certificate of the predetermined user that has been authenticated among the personal certificates of the user;
A personal certificate grant unit for granting the acquired personal certificate to the image data created by the predetermined user;
An image handling apparatus comprising: The image handling device according to claim 1 ,
An encrypted hash value obtained by encrypting a hash value calculated from the image data with a secret key issued by a predetermined certification authority, and a public key corresponding to the secret key; An image handling device comprising an encrypted hash value assigning unit for assigning. In the image handling device according to claim 1 or 2 ,
The image handling device is connected to a time stamp issuing device for issuing a time stamp,
A time stamp acquisition unit for acquiring the time stamp from the time stamp issuing device;
A time stamp giving unit for giving the acquired time stamp to the image data created by the user;
An image handling apparatus comprising:

Images