JP5022917B2 - Mobile terminal and terminal function control program - Google Patents

Description

  The present invention relates to a mobile terminal, and more particularly to a mobile terminal control technique used in a data center.

  Servers of various companies are accumulated in the data center. A data center operating company (hereinafter simply referred to as an “operating company”) collectively undertakes maintenance and operation of these servers. Although the data center is a highly confidential place, not only the employees of the operating company (hereinafter simply referred to as “employees”) but also the employees of affiliated companies that have been outsourced by the operating company (hereinafter referred to as “data center”). “Subcontractors”) often visit.

In general, as a security measure when entering a subcontractor,
1. When a subcontractor enters a data center, an employee of the operating company is always accompanied as a responsible person regardless of the work contents.
2. Prohibits the use of cell phones and cameras.
There are many management rules.
JP 2002-319082 A

  Some of the commissioned work is more efficient if it is carried out in cooperation with multiple workers. For this reason, the operation rule that prohibits the introduction of mobile phones may result in a decrease in work efficiency in the data center.

  The present invention has been made in view of the above-mentioned problems, and its main object is to provide a mobile terminal that can be carried by a data center worker. As a result, use restrictions are imposed as in a data center. It is to provide a mobile terminal that can be carried even at a place.

One embodiment of the present invention relates to a mobile terminal.
When this mobile terminal detects the entry of its own terminal into a predetermined restricted area, the mobile terminal invalidates a predetermined function installed in its own terminal.

Another aspect of the invention relates to a mobile terminal carried by an operator whose behavior in a data center is to be monitored.
This mobile terminal has a function of transferring a captured image to an external device. When the mobile terminal detects the entry of its own terminal into a predetermined restricted area, the mobile terminal suppresses transfer of the captured image to the external device.

  It should be noted that any combination of the above-described components, and the present invention expressed by a method, a system, a recording medium, and a computer program are also effective as an aspect of the present invention.

  According to the present invention, it is possible to provide a mobile terminal that is easy to carry even in a highly confidential place such as a data center.

FIG. 1 is a hardware configuration diagram of the data center monitoring system 250.
In the data center monitoring system 250, the data center 200 is connected to the image server 240 and the data center monitoring apparatus 100 via the Internet 252. Further, monitoring terminals 242a, 242b,... 242c (hereinafter collectively referred to as “monitoring terminal 242”) are connected to the image server 240 and the data center monitoring apparatus 100. The monitoring terminal 242 may be a general computer terminal equipped with a web browser.

  An operator in the data center 200 carries a dedicated mobile terminal 300 described later. The mobile terminal 300 is lent to an operator when entering the data center 200. The mobile terminal 300 has a call function, in particular, an IP (Internet Protocol) telephone function and an imaging function. All the images captured by the mobile terminal 300 are transferred to the image server 240. The image server 240 accumulates captured images in the data center 200.

The data center monitoring device 100 is introduced to monitor the behavior of each worker in the data center 200 from a remote location via the Internet 252. The user interfaces of the data center monitoring apparatus 100 and the image server 240 are provided to the monitoring terminal 242 as web pages. The monitor operates the monitoring terminal 242 to remotely monitor the behavior of the worker in the data center 200 while accessing the image server 240 and the data center monitoring apparatus 100. In addition, by the relay of the data center monitoring apparatus 100, the monitoring terminal 242 and the mobile terminal 300 can make a call by IP phone. In this embodiment, the image server 240 and the data center monitoring apparatus 100 are described as separate apparatuses. However, the data center monitoring apparatus 100 may have a function as the image server 240.
Hereinafter, “worker” means both a subcontractor and an employee. In addition, the “monitor” usually assumes an employee who is responsible for managing the worker.

  The figure shows 1F of the data center 200. The first floor of the data center 200 is divided into an office room 202, an office room 204, a conference room 206, a corridor 208, and a system room 210. Entrance detectors 212a, 212b, 212c, and 212d (hereinafter collectively referred to as “entrance detector 212”) are installed at the entrances of the office 202, the office 204, the conference room 206, and the system room 210, respectively. Has been. Each worker is assigned a “worker ID”. When an operator enters any room, the worker ID is input to the entry detection device 212. The room entry detection device 212 identifies which room the worker is in. A “terminal ID” is assigned to the mobile terminal 300. For this reason, you may input terminal ID into the room entry detection apparatus 212 instead of worker ID. The communication address of the mobile terminal 300 may be used as the terminal ID. Alternatively, the telephone number of the mobile terminal 300 may be used as the terminal ID.

  In the figure, a circle indicated by a broken line indicates a cell area 230 of each of a plurality of base stations (access points) installed in the data center 200. In the first floor of the data center 200 shown in the figure, there are 33 in total, one in the office room 202, one in the office room 204, four in the conference room 206, three in the hallway 208, and 24 in the system room 210. A base station is installed, and a total of 33 cell regions 230 are set so as to partially overlap. The mobile terminal 300 communicates by connecting to a base station in charge of the cell region 230 to which it belongs. A “base station ID” is assigned to the base station. The data center monitoring apparatus 100 holds “base station information” for each base station in which the base station ID is associated with the installation location of the base station. The data center monitoring apparatus 100 identifies the base station to which the mobile terminal 300 is connected, and based on the base station information, the location of the mobile terminal 300, and thus the location of the worker carrying the mobile terminal 300 Is identified.

  As a general technique for detecting the location of the mobile terminal 300, GPS (Global Positioning System) can be cited. However, since GPS is a position measurement system using artificial satellites, it is not suitable for closed rooms such as data centers. For this reason, the data center monitoring apparatus 100 according to the present embodiment identifies the location of the mobile terminal 300 based on the detection result of the base station that is the connection destination and the room entry detection apparatus 212. A detailed algorithm will be described later.

Further, the data center 200 is provided with a “restricted area” where entry and behavior of workers should be restricted. The restricted areas shown in the present embodiment are mainly classified into the following three types.
1. No entry area This is an area where all workers are prohibited. In the drawing, an entry prohibition area 222 is set at the lower left of the system room 210. There are four cell regions that overlap all or part of the entry prohibition area 222, which are cell regions 230c, 230d, 230e, and 230f. The data center monitoring apparatus 100 determines that an unauthorized intrusion occurs when the mobile terminal 300 of a certain worker connects to any of the four cell area responsible base stations.
2. Restricted entry area This is an area where entry of workers is prohibited under certain conditions. For example, only the worker who undertakes the work of the customer company A should be permitted to enter the area where the server of the customer company A is installed. However, another worker in charge of a customer company other than the customer company A also enters the data center 200. The data center monitoring apparatus 100 holds information indicating a customer company that each worker is in charge of. In the figure, an entry restriction area 224 is set in the lower right of the system room 210, and a server of the customer company A is installed in this entry restriction area 224. The cell area that overlaps all or part of the entry restricted area 224 is only the cell area 230g. When the mobile terminal 300 of the worker who is not in charge of the customer company A connects to the base station in charge of the cell area 230g, the data center monitoring apparatus 100 determines that the intrusion has occurred.
3. Function Restricted Area This is an area where all or some of the functions installed in the mobile terminal 300 are restricted. In the figure, a function restriction area 220 is set at the center of the system room 210. The function restricted area 220 is a photographing prohibited area. There are two cell regions that overlap all or part of the function-restricted area 220: a cell region 230a and a cell region 230b. When the mobile terminal 300 is connected to the base station in the cell area 230a or the cell area 230b, the mobile terminal 300 voluntarily disables the image transfer function for transferring the captured image to the image server 240.

  A plurality of types of restricted areas may be combined such as an entry restricted area and a function restricted area, an entry prohibited area and a function restricted area. Moreover, what is necessary is just to set arbitrarily the function which should be restrict | limited in a function restriction area. For example, you may set the function restriction area which restricts not only image transfer but a telephone call. In the following, the base station in the cell area that overlaps all or part of the restricted area is referred to as a “restricted base station”.

  The system room 210 in which a large number of servers are installed is in an environment where electromagnetic waves are likely to be irregularly reflected because the entire room is shielded by an iron plate or a wire mesh. For this reason, in order to ensure the stability of communication, it is necessary to install many base stations with a small cell area. Therefore, in the system room 210 with high confidentiality in the data center 200, the location of the mobile terminal 300 can be specified with sufficient and sufficient accuracy by the connected base station even if GPS cannot be used. On the other hand, in the office rooms 202 and 204, the conference room 206, etc., it is not necessary to arrange so many base stations.

FIG. 2 is an external view of the mobile terminal 300.
The mobile terminal 300 is a terminal dedicated to the data center 200 and is uniquely identified by a terminal ID. The mobile terminal 300 has a call function using an IP phone, but the call destination is limited to an extension in order to ensure security. The operator can make a call by pressing the telephone button 302 after inputting the extension number using the numeric keypad 308. The operator can acquire a photographed image of the subject by pressing the photographing button 306 with the subject photographed on the monitor 304. The captured image is automatically transferred to the image server 240 at the same time as imaging without taking steps such as attaching an e-mail. After the transfer, the captured image data may be automatically deleted from the mobile terminal 300. Thus, although the mobile terminal 300 has a call function and an imaging function, it is devised so that information does not leak to a destination unrelated to work.

FIG. 3 is a screen diagram of the image browsing screen 260.
The monitor browses the captured images accumulated in the image server 240 using the web browser of the monitoring terminal 242. The image browsing screen 260 is a screen provided as a web page from the image server 240 to the monitoring terminal 242. Meta information such as a photographer, shooting date and time, and shooting location is attached to the shot image. When the mouse cursor is placed on the photographed image 262b, a meta information field 266 is displayed, and meta information attached to the photographed image 262b is displayed.

Not only the workers but also the supervisors are assigned according to the client companies. Just as it is not preferable that an operator who is not in charge of the customer company A enters the area where the server of the customer company A is installed, the photographed image of the area where the server of the customer company A is installed is taken. It is also not preferable that a supervisor who is not in charge of viewing is browsing. Therefore, the photographed image that can be viewed by the supervisor in charge of the customer company A is limited to the photographed image by the worker in charge of the customer company A.
The image browsing screen 260 shown in the figure is a screen displayed on the monitoring terminal 242 for the supervisor in charge of the customer company A. The photographed images 262a and 262b are photographed images by workers in charge of the customer company A and can be browsed. On the other hand, the non-public images 264a, 264b, 264c, and 264d are photographed images by workers other than the worker in charge of the customer company A and cannot be viewed.

  As a further security measure, on the image browsing screen 260, a user interface for printing and copying the photographed image 262 is invalidated. In this way, the captured image is prevented from flowing out of the image server 240. It should be noted that the captured image here does not have to be limited to a still image, and it is understood by those skilled in the art that it may be a moving image captured in the data center 200.

FIG. 4 is a functional block diagram of the mobile terminal 300.
Each block shown here can be realized in hardware by an element such as a CPU of a computer or a mechanical device, and in software it is realized by a computer program or the like. Draw functional blocks. Therefore, those skilled in the art will understand that these functional blocks can be realized in various forms by a combination of hardware and software.
The same applies to the functional block diagram of the data center monitoring apparatus 100 shown in FIG.

The mobile terminal 300 includes a user interface processing unit (hereinafter referred to as “UI processing unit 310”), an imaging unit 320, a communication unit 330, a data processing unit 340, and a data holding unit 350.
The UI processing unit 310 is in charge of processing related to the entire user interface, such as input processing from the worker and information display for the worker.
The imaging unit 320 captures a subject and acquires a captured image. The communication unit 330 communicates with the data center monitoring apparatus 100 and the image server 240 via the base station and the Internet 252.
The data processing unit 340 executes various types of data processing based on data acquired from the UI processing unit 310, the imaging unit 320, the communication unit 330, and the data holding unit 350. The data processing unit 340 also serves as an interface among the UI processing unit 310, the imaging unit 320, the communication unit 330, and the data holding unit 350.
The data holding unit 350 stores various setting data prepared in advance and data received from the data processing unit 340.

UI processing unit 310:
The UI processing unit 310 includes an input unit 312 and a display unit 314.
The input unit 312 receives an input operation from an operator. The display unit 314 displays various information to the worker. Display unit 314 includes an alarm unit 316. The warning unit 316 prompts the worker to leave the restricted area by displaying a warning message on the monitor 304 when the worker enters the restricted area. Details will be described later with reference to FIG. Not only the display but also a warning by voice or a built-in vibrator may be given.

Communication unit 330:
Communication unit 330 includes a call unit 332, an image transfer unit 334, and a connection information transmission unit 336.
The call unit 332 establishes an IP telephone line with another mobile terminal 300 or the monitoring terminal 242 and establishes these calls. The image transfer unit 334 transfers the captured image to the image server 240 simultaneously with imaging. At this time, the above-described meta information is also transferred along with the photographed image. The connection information transmitting unit 336 transmits the set of the base station ID acquired from the connection destination base station and the terminal ID of the terminal itself to the data center monitoring apparatus 100 as “connection information”. The data center monitoring apparatus 100 determines that the mobile terminal 300 has entered the restricted area when connection information with the restricted base station as the connection destination is received. At this time, the data center monitoring apparatus 100 transmits a “warning signal” to the mobile terminal 300. The warning signal includes “restriction type information” that indicates the entry prohibited area, the entry restricted area, and the function restricted area. The warning signal may include a warning message.

Data processing unit 340:
The data processing unit 340 includes an entry detection unit 342 and a function restriction unit 344. When connected to the restricted base station, the communication unit 330 receives a warning signal from the data center monitoring apparatus 100. When the communication unit 330 receives a warning signal, the entry detection unit 342 determines that its own terminal has entered the restricted area. The warning unit 316 displays a warning message as shown in FIG. 12 on the monitor 304 when entry into the restricted entry area or prohibited entry area is detected based on the restriction type information. The function restriction unit 344 invalidates the image transfer function of the image transfer unit 334 when entry into the function restriction area is detected based on the restriction type information. For example, a valid flag is set in the image transfer unit 334, and the image transfer unit 334 can transfer a captured image to the image server 240 only when the valid flag is set to ON. The function restriction unit 344 invalidates the image transfer function by turning off the validity flag in the function restriction area. According to such an aspect, it is possible to prohibit the mobile terminal 300 itself from photographing in the function restricted area.

Data holding unit 350:
The data holding unit 350 includes an image holding unit 352. The captured image is once held in the image holding unit 352. Then, the image transfer unit 334 automatically transfers the captured image temporarily held in the image holding unit 352 to the image server 240 on condition that the valid flag is on. The data processing unit 340 may delete the captured image from the image holding unit 352 after the transfer is completed or when the valid flag is off.

FIG. 5 is a functional block diagram of the data center monitoring apparatus 100.
The data center monitoring apparatus 100 includes a user interface processing unit (hereinafter referred to as “UI processing unit 110”), a communication unit 140, a data processing unit 130, and a data holding unit 150.
The UI processing unit 110 is in charge of processing related to the entire user interface, such as input processing from the monitor and information display for the monitor.
The communication unit 140 communicates with the mobile terminal 300 via the Internet 252 and the base station.
The data processing unit 130 executes various data processing based on data acquired from the UI processing unit 110, the communication unit 140, and the data holding unit 150. The data processing unit 130 also serves as an interface between the UI processing unit 110, the communication unit 140, and the data holding unit 150.
The data holding unit 150 stores various setting data prepared in advance and data received from the data processing unit 130.

UI processing unit 110:
The UI processing unit 110 includes an input unit 112 and a display unit 114.
The input unit 112 receives an input operation from a supervisor. The display unit 114 displays various types of information to the monitor. Strictly speaking, the display unit 114 displays various information on the monitor of the monitoring terminal 242 by transmitting a predetermined web page to the monitoring terminal 242. The display unit 114 includes a position display unit 116, an attribute display unit 118, and a warning unit 120. The position display unit 116 displays the monitoring screen 170 shown in FIG. The attribute display unit 118 displays the attribute information of each worker in the manner shown in FIG. The warning unit 120 displays a warning on the monitoring screen 170 when the worker enters the restricted area in the manner shown in FIGS. 10 and 11.

Communication unit 140:
The communication unit 140 includes an alarm transmission unit 142, a call unit 144, and a connection information acquisition unit 146.
The call unit 144 relays a call between the mobile terminal 300 and the monitoring terminal 242 by establishing an IP telephone line. The alarm transmission unit 142 transmits the above-described warning signal to the mobile terminal 300. The connection information acquisition unit 146 acquires connection information from the mobile terminal 300. As a modification, the connection information acquisition unit 146 may acquire connection information from the base station.

Data processing unit 130:
The data processing unit 130 includes a position specifying unit 132, a position correcting unit 134, a room entry detecting unit 136, and an unauthorized intrusion detecting unit 138. The position specifying unit 132 specifies the location of each worker based on the base station to which the mobile terminal 300 is connected. The room entry detection unit 136 receives room entry information from a room entry detection device 212 provided in the data center 200. The room entry information includes the room ID of the room to be entered and the worker ID of the worker who entered the room. In this embodiment, the entry is described as the detection target, but both the exit and the entry / exit may be detected. The position correction unit 134 corrects the location of each worker based on the room entry information. The correction of the location will be described in detail with reference to FIG. The unauthorized intrusion detection unit 138 determines that an unauthorized intrusion occurs when an operator enters the entry prohibition area or an unauthorized worker enters the entry restricted area.

Data holding unit 150:
The data holding unit 150 includes an ownership information holding unit 152, a base station information holding unit 154, a connection information holding unit 156, and an attribute information holding unit 158.
The owned information holding unit 152 holds “owned information”. The possession information is information registered when the mobile terminal 300 is lent to the worker, and the worker ID, the terminal ID, the communication address of the mobile terminal 300, and the telephone number are associated with each other. The base station information holding unit 154 holds base station information. In the base station information, for each base station, location information indicating the base station ID and its installation location, a flag indicating whether or not the base station is restricted, restriction type information indicating details of restrictions such as entry prohibition, entry restriction, and function restriction Are matched. The connection information holding unit 156 holds connection information. In the connection information, for each mobile terminal 300, the terminal ID of the mobile terminal 300 is associated with the base station ID of the base station that is the connection destination. The attribute information holding unit 158 holds, for each worker, the worker ID and attribute information indicating the worker's attribute in association with each other. The attribute information holding unit 158 will be described in detail with reference to FIG.

FIG. 6 is a data structure diagram of the attribute information holding unit 158.
The worker ID column 160 is the worker ID, the name column 162 is the worker's name, the affiliation column 164 is the subcontractor and the employee, the responsible column 166 is the name of the customer company in charge of the work, and the affiliation column 168 is the subcontractor. Indicates the name of the company. In the case of the figure, “Hashimoto Shigeru” with worker ID = 01 is set with attribute information “It is a subcontractor belonging to company Q and is responsible for company A”. On the other hand, “Asako Arai” with worker ID = 02 is an employee who is also in charge of Company A and Company B. Various attribute information other than this may be set. For example, as other attribute information, job scope, holding qualification, technical level, years of experience, etc. can be considered.

FIG. 7 is a screen diagram of the monitoring screen 170.
On the monitoring terminal 242, a monitoring screen 170 provided from the data center monitoring apparatus 100 in a web page format is displayed. A map area 270 shows a floor plan of 1F of the data center 200. A total of 33 base stations are installed in 1F of the data center 200 in FIG. 1, and as a result, 33 cell areas are set. The map area 270 is divided into 33 areas corresponding to the cell areas. For example, since four cell areas are set in the conference room 206, the area of A101 corresponding to the conference room 206 is also divided into four areas.

  The position display unit 116 of the data center monitoring apparatus 100 generates the map area 270 based on the base station information. Here, six icons 278a, 278b, 278c, 278d, 278e, 278f (hereinafter simply referred to as “icon 278”) collectively indicate the position of the worker. According to the figure, in the office room 204, there is one worker shown as an icon 278a.

For example, when a mobile terminal 300 of a worker A is connected to a base station in a cell area that covers the office 204, the connection information transmission unit 336 of the mobile terminal 300 becomes a connection destination with the terminal ID of the own terminal. The connection information indicating the base station ID of the base station is transmitted to the data center monitoring apparatus 100. The connection information acquisition unit 146 of the data center monitoring apparatus 100 receives this connection information and records it in the connection information holding unit 156. First, the position specifying unit 132 specifies the worker A carrying the terminal ID from the possession information. Next, the position of the base station indicated in the connection information is specified with reference to the base station information. When the base station ID at this time is a base station that covers the office 204, the position display unit 116 displays an icon 278a indicating the worker A in an area indicating the office 204 in the map area 270.
In this embodiment, the icon 278 is displayed in different colors depending on whether the worker is an employee or a subcontractor. By changing the display mode of the icon 278 in accordance with the attribute of the worker, the monitor can easily visually check how the attribute of the worker is arranged.

  When a floor is selected in the floor selection box 280 in the floor selection area 272 and the display button 282 is pressed, the arrangement of each worker on the designated floor is displayed in the map area 270. When the operator's name, worker ID, terminal ID, and the like are input in the search area 284 and the search button 286 is pressed, the floor where the corresponding worker exists becomes the display target of the map area 270.

  For example, assume that worker B is specified by the search. The position specifying unit 132 refers to the possession information and specifies the terminal ID of the mobile terminal 300 carried by the worker B. Next, the position specifying unit 132 specifies the base station to which the mobile terminal 300 is connected with reference to the connection information, and specifies the location of the base station with reference to the base station information. . If this base station is a base station installed on the second floor, the position display unit 116 displays the floor plan of the data center 200 in the map area 270.

  The worker list area 276 displays a list of the names of the workers whose icons 278 are displayed in the map area 270. Here, the worker number displayed beside the name of each worker corresponds to the worker number displayed on the right shoulder of each icon 278. Further, the worker whose “asterisk (*)” is displayed in the worker list area 276 indicates that it is an employee.

FIG. 8 is a screen diagram when the attribute information of the worker is displayed on the monitoring screen 170.
When the monitor moves the mouse cursor to one of the icons 278, the attribute information of the worker associated with the icon 278 is popped up in the attribute information area 288. When the mouse cursor is moved to the icon 278e as shown in the figure, the attribute information of the worker “5: Takeshi Azuma” associated with the icon 278e is displayed in a pop-up display in the attribute information area 288.
The monitor can easily check the attribute of the worker who has entered the data center 200 at any time simply by moving the mouse cursor to the icon 278.

Furthermore, when the left button of the mouse is double-clicked with the mouse cursor placed on any of the icons 278, a call can be made to the operator's mobile terminal 300 of that icon 278. The calling unit 144 specifies the worker's mobile terminal 300 associated with the icon 278 that has been double-clicked from the possession information, and further specifies the telephone number of the mobile terminal 300 and then calls the telephone. .
The monitor can always talk with any worker entering the data center 200 by simply double clicking the mouse cursor on the icon 278. By a call between the captured image uploaded to the image server 240 and the mobile terminal 300, the worker and the supervisor can proceed with the work while sufficiently communicating even in a remote place.

FIG. 9 is a schematic diagram for explaining the mechanism of position correction.
As described above, the position specifying unit 132 specifies the location of each mobile terminal 300 based on the installation position of the base station. However, as briefly mentioned in FIG. 1, the cell regions of the base stations overlap each other. When in the worker A is in position _{P 1} in the corridor 208, the mobile terminal 300 is connected to the serving base station of the cell region 230h covering the position _{P 1.} In this case, the position specifying unit 132 can correctly determine that the worker A exists in the hallway 208.

Operator A is that it has moved to a position P ₂ in the system room 210. Position _{P 2} is covered by the cell area 230 of both the cell area 230h and the cell region 230i. Usually, in such a situation, the mobile terminal 300 often maintains a connection with the serving base station in the cell region 230h. For this reason, the position specifying unit 132 erroneously determines that the worker A still exists in the corridor 208.
When the worker A enters the system room 210 deeply, so-called handover occurs, and the connection destination of the mobile terminal 300 is switched to the base station in charge of the cell area 230i. Thus, since the cell region 230 and the cell region 230 overlap each other, there is a limit in accurately determining the location of the mobile terminal 300 using only the base station. In particular, the case of erroneously determining whether the user is inside or outside the room such as the system room 210 is an important problem in the security management of the data center 200.

  Therefore, when entering the system room 210, the worker ID is input to the room entry detecting device 212d. In the case of the above example, when the worker A enters the system room 210, the worker A inputs the worker ID into the room entry detection device 212d. The worker ID may be recorded in the mobile terminal 300. Then, the worker ID may be read from the mobile terminal 300 to the entry detection device 212 by RFID (Radio Frequency IDentification) technology.

When the worker ID is input, the room entry detection device 212 transmits the room ID of the system room 210 and the room entry information indicating the worker ID to the data center monitoring device 100. The room entry detection unit 136 of the data center monitoring apparatus 100 determines that the worker A has entered the system room 210 with reference to the room entry information. At this time, even if the mobile terminal 300 of the worker A still maintains the connection with the responsible base station in the cell area 230h, the position correcting unit 134 assumes that the location of the worker A is in the system room 210. to correct. In this way, the position correction unit 134 appropriately corrects the location of the worker so that the detection result of the room entry detection unit 136 is given priority over the determination result of the position specifying unit 132. At the time of entry detection, the communication unit 140 of the data center monitoring apparatus 100 may instruct the mobile terminal 300 to change the connection destination itself from the base station in charge of the cell area 230h to the base station in charge of the cell area 230i.
Note that a terminal ID may be input to the room entry detection device 212 instead of the worker ID. As long as the worker carries the mobile terminal 300, both the worker ID and the terminal ID function as information for identifying the worker. Therefore, even if the terminal ID is input to the entry detection device 212, the same function is provided. Is feasible.

If many base stations having a small cell area are installed, the position detection accuracy of the worker can be improved. However, in the case of such a method, the cost for installing the base station increases. On the other hand, it is not possible to specify where the worker is in a large room such as the system room 210 with the room entry detection device 212 alone. If the entrance detection device 212 is installed for each small section, the cost will increase. In addition, the convenience of the operator is impaired.
As shown in the present embodiment, according to the method of specifying the position of the worker by the base station while giving priority to the detection result by the entrance detection device 212, the base station and the entrance detection device 212 are not excessively installed. The position of each worker can be specified with necessary and sufficient accuracy.

FIG. 10 is a screen diagram of the monitoring screen 170 when the worker enters the prohibited entry area.
Here, it is assumed that the mobile terminal 300 of the operator “3: Kaoru Tamura” shown in FIGS. 7 and 8 is connected to the restricted base station in the no entry area 222. At this time, the unauthorized intrusion detection unit 138 of the data center monitoring apparatus 100 determines that an unauthorized intrusion has occurred in the entry prohibition area 222 and notifies the warning unit 120 of the name of the operator who has made an unauthorized entry. The warning unit 120 displays a warning area 290 on the map area 270. A warning message displayed in the warning area 290 can notify the monitoring person that an unauthorized intrusion has occurred. The warning unit 120 may blink the corresponding icon 278c or display a predetermined warning mark on the corresponding worker name in the worker list area 276.
Further, when an unauthorized intrusion occurs, the alarm transmission unit 142 transmits a warning signal to the mobile terminal 300 of the worker “3: Kaoru Tamura”.

FIG. 11 is a screen diagram of the monitoring screen 170 when the worker enters the restricted entry area.
Here, it is assumed that the mobile terminal 300 of the operator “5: Takeshi Azuma” shown in FIGS. 7 and 8 is connected to the restricted base station in the entry restricted area 224. The entry restricted area 224 is an area where the server of the customer company A is installed, and entry by persons other than the person in charge of the customer company A is prohibited. According to FIG. 6, the worker “6: Naoko Aota” is the person in charge of the customer company A, but the worker “5: Takeshi Azuma” is not the person in charge of the customer company A. For this reason, when the worker “5: Takeshi Azuma” enters the entry restriction area 224, the unauthorized entry detection unit 138 determines that the entry is unauthorized. The warning unit 120 displays a warning area 290 on the map area 270. A warning message displayed in the warning area 290 can notify the monitoring person that an unauthorized intrusion has occurred. The warning unit 120 may blink the corresponding icon 278e, or display a predetermined warning mark on the worker name in the worker list area 276.
Further, the alarm transmission unit 142 transmits a warning signal to the mobile terminal 300 of the worker “5: Takeshi Azuma”.

FIG. 12 is a screen diagram when a warning is displayed on the mobile terminal 300.
When entering a restricted area such as the entry prohibited area 222 or the entry restricted area 224, a warning signal is transmitted from the data center monitoring apparatus 100 to the mobile terminal 300. When the communication unit 330 of the mobile terminal 300 receives the warning signal, the alarm unit 316 displays a warning area 354 on the monitor 304. As shown in the figure, the warning area 354 of the monitor 304 displays a warning message “Warning: You do not have the right to enter here. You can recognize in real time that you are in a place where there is no.

The function restricted area 220 in this embodiment is a so-called photographing prohibited area. When the operator enters the function restricted area 220, the captured image cannot be transferred to the image server 240. By the way, there is an interference radio wave generator as a general technique for invalidating a communication device. Interfering radio wave generators are devices for forcibly disabling communication functions such as mobile phones by generating strong interfering radio waves. Recently, examples of introduction to concert halls and libraries are increasing. . However, the method of disabling communication equipment due to such external interference is as follows:
1. If installed in a place with many electronic devices such as a data center, the electronic devices may malfunction.
2. 2. National permission is required to install the jamming device. There is a demerit that it is impossible to finely restrict functions such as prohibiting only the shooting function or allowing calls only when there is an incoming call.

  On the other hand, since the mobile terminal 300 shown in the present embodiment invalidates the image transfer function by itself when entering the function restricted area 220, the above disadvantages can be eliminated. As specific implementation methods, the following two methods are conceivable.

1. A method for determining entry into the function restricted area 220 by the data center monitoring apparatus 100:
When the mobile terminal 300 is connected to a new base station, the mobile terminal 300 transmits connection information indicating the terminal ID and the base station ID of the base station to be connected to the data center monitoring apparatus 100. The connection information acquisition unit 146 of the data center monitoring apparatus 100 receives this connection information. The unauthorized intrusion detection unit 138 refers to the base station information, and if the connection destination is a restricted base station for the function restriction area 220, the alarm transmission unit 142 sets a warning signal in which “image transfer prohibited” is set as restriction type information. Is transmitted to the mobile terminal 300. Upon receiving this warning signal, the entry detection unit 342 of the mobile terminal 300 recognizes that it has entered the function restricted area. The function restriction unit 344 instructs the image transfer unit 334 to invalidate the image transfer function.

2. A method of determining entry into the restricted function area 220 at the mobile terminal 300:
The base station ID of the restricted base station in charge of the function restricted area 220 is registered in the mobile terminal 300 in advance. When the mobile terminal 300 connects to a new base station, the base station ID of the connection destination is notified from the base station. If the notified base station ID is the base station ID of the restricted base station in charge of the function restriction area 220, the entry detection unit 342 determines that it has entered the function restriction area. Alternatively, when the mobile terminal 300 connects to a new base station, the base station to which the mobile terminal 300 is connected transmits a predetermined restriction signal indicating that it is a “restricted base station in charge of the function restricted area 220” to the mobile terminal 300. Also good. In any case, when entering the function restriction area 220, the function restriction unit 344 instructs the image transfer unit 334 to invalidate the image transfer function.

The data center monitoring system 250 has been described based on the embodiments.
The worker can convey the work content in the data center 200 by a photographed image or an IP phone with the supervisor. Even in the data center 200 where GPS or the like is difficult to use, the location of the worker can be specified from the connected base station. In addition, the position of the worker is remotely monitored by appropriately correcting the position of the worker based on the detection result of the room entry detection device 212 in consideration of the position detection error when the base station handover occurs. it can. Conventionally, it is often prohibited to bring a mobile phone to a data center, but such a restriction may hinder cooperation between workers. According to the present embodiment, the dedicated mobile terminal 300 whose communication destination is restricted makes it easy to ensure security while considering the convenience of the operator.

  The monitoring person can check the arrangement and attributes of each worker as appropriate on the monitoring terminal 242. For this reason, it is possible to monitor two or more workers by one supervisor, and the operation of the data center 200 can be made more efficient.

In the present embodiment, the mode in which the image transfer function is disabled by itself when the mobile terminal 300 that is supposed to be used in the data center 200 enters the function restricted area 220 has been described. The technical idea of voluntarily limiting functions on the terminal 300 side can be widely applied to scenes other than the data center 200.
For example, if you enter a concert hall set as a function restriction area, you can turn off the power yourself, change to manner mode, turn off the call function, turn off the shooting function, mute the audio output, etc. A mobile phone that voluntarily restricts some of the functions provided can be considered. In addition to the concert hall, various places such as public transportation such as trains and airplanes can be set as restricted areas. Further, the function to be restricted may be arbitrarily set according to the place. Furthermore, not only a mobile phone but also a portable music player that cannot set a predetermined volume or higher in public transportation can be considered.

  The present invention has been described based on the embodiments. The embodiments are exemplifications, and it will be understood by those skilled in the art that various modifications can be made to combinations of the respective constituent elements and processing processes, and such modifications are within the scope of the present invention. .

It is a hardware block diagram of a data center monitoring system. It is an external view of a mobile terminal. It is a screen figure of an image browsing screen. It is a functional block diagram of a mobile terminal. It is a functional block diagram of a data center monitoring apparatus. It is a data structure figure of an attribute information holding part. It is a screen figure of a monitoring screen. It is a screen figure when displaying attribute information of an operator on a monitoring screen. It is a schematic diagram for demonstrating the mechanism of position correction. It is a screen figure of a monitoring screen when a worker enters an entry prohibition area. It is a screen figure of a monitoring screen when a worker enters the restricted entry area. It is a screen figure when displaying a warning on a mobile terminal.

Explanation of symbols

  100 data center monitoring device, 110 UI processing unit, 112 input unit, 114 display unit, 116 position display unit, 118 attribute display unit, 120 warning unit, 130 data processing unit, 132 position specifying unit, 134 position correction unit, 136 Detection unit, 138 Unauthorized intrusion detection unit, 140 Communication unit, 142 Alarm transmission unit, 144 Calling unit, 146 Connection information acquisition unit, 150 Data holding unit, 152 Ownership information holding unit, 154 Base station information holding unit, 156 Connection information holding Department, 158 attribute information holding part, 170 monitoring screen, 200 data center, 202 office room, 204 office room, 206 conference room, 208 corridor, 210 system room, 212 entrance detection device, 220 function restricted area, 222 entry prohibited area, 224 approach Restricted area, 230 cell area, 240 image server, 242 monitoring terminal, 250 data center monitoring system, 252 Internet, 260 image viewing screen, 262 captured image, 264 private image, 270 map area, 278 icon, 300 mobile terminal, 302 Telephone button, 304 monitor, 306 shooting button, 308 numeric keypad, 310 UI processing unit, 312 input unit, 314 display unit, 316 alarm unit, 320 imaging unit, 330 communication unit, 332 call unit, 334 image transfer unit, 336 connection information Transmission unit, 340 data processing unit, 342 entry detection unit, 344 function restriction unit, 350 data holding unit, 352 image holding unit.

Claims (4)

An entry detection unit for detecting the entry of the terminal into the restricted area set in advance, with an area where execution of the predetermined function in the mobile terminal is to be restricted as a restricted area;
On condition that entry into the restricted area is detected, a function restriction unit that invalidates the predetermined function installed in the terminal,
Means for identifying the location of the person carrying the mobile terminal from the connection information indicating the set of the terminal ID of the mobile terminal and the base station ID of the base station to which the mobile terminal is connected, and information on the person entering the predetermined room A connection information transmitting unit for transmitting connection information to an external device having means for correcting the location specified based on the location;
A mobile terminal comprising:   The entry detection unit, when receiving a predetermined restriction signal from a restricted base station that is a base station having the restricted area as a responsible area, determines that its own terminal has entered the restricted area. Item 4. The mobile terminal according to Item 1.   The entry detection unit is a predetermined warning signal indicating that the base station that is the connection destination of the terminal is a base station that uses the restricted area as a responsible region, from the external device to which the connection information transmission unit has transmitted connection information. The mobile terminal according to claim 1, wherein when the mobile terminal is received, the mobile terminal determines that the mobile terminal has entered the restricted area. A computer program executed on a mobile terminal,
A function for detecting the entry of the terminal into the restricted area set in advance, with the restricted area as the execution of the predetermined function in the mobile terminal;
A function for invalidating the predetermined function installed in the terminal, on condition that entry into the restricted area is detected;
Means for identifying the location of the person carrying the mobile terminal from the connection information indicating the set of the terminal ID of the mobile terminal and the base station ID of the base station to which the mobile terminal is connected, and information on the person entering the predetermined room A function of transmitting connection information to an external device having means for correcting the location specified based on
Terminal function control program characterized by the fact that

Images