JP5466191B2 - Access control system, server management device, data storage device, access control method, server management program, and data storage program - Google Patents

Description

  The present invention relates to an access control technique in a sensor data database.

  Since sensor data contains a lot of personal information and security important information, when handling sensor data, access control that enables various access control considering the data owner's policy and data user's authority etc. Technology is required.

  An example of such an access control technique is XACML (extensible Access Control Markup Language). XACML improves the specification of XACL (XML Access Control Language), which is a language specification formulated by IBM, and enables more flexible and advanced control policy setting. XACL can control the reading, writing, generation, and deletion of XML documents, but XACML can define more specific access control for various data resources than XACL. In XACML, it is possible to describe and control “who”, “where”, and “how” of specific information. For example, it is possible to set advanced and complicated conditions such as “adult users only” or “only those who are registered”.

  Also, in the ubiquitous computing field where various sensors and actuators are placed around and operated, a sensor data database (sensor data DB) that provides a function to store and retrieve information from sensors as a history is being researched. Has been.

  As an example of such a sensor data DB, there is uTupleSpace (Non-Patent Document 1). In uTupleSpace, each sensor data is called EA, and a search formula is called EF. One of the technical features of uTupleSpace is the ability to search the EA history later by EF, and when an EF is registered in advance and a new EA is accumulated, the EF registration source receives the new arrival notification of the EA. It is mentioned that functions are integrated.

"Design and implementation of a new uTupleSpace that enables storage and retrieval of large amounts of schemaless data", Keiichiro Kashiwagi et al., Multimedia, Distributed, Collaboration and Mobile (DICOMO2010) Symposium, July 2010

  When providing the data stored in the database to the user, as a method of performing the access control described by XACML, first the data is searched according to the input search condition for searching the data desired by the user, and then the search result is displayed. There is a method in which it is checked whether the disclosure condition of each included data matches the user information of the user, and only data determined to be provided is passed to the user. However, such a simple method often requires a large amount of data search and release condition check, which is a heavy processing load. For example, if the search result for the search condition entered by the user contains a huge amount of data, but the search result does not include data that can be disclosed to the user, there is no data provided to the user. Nevertheless, the processing required for the search processing and the check of the disclosure conditions of the data included in the search results becomes enormous. In particular, in a ubiquitous environment where there are a large amount of data to be searched and users who use them, these processing loads become very large.

  In addition, as in uTupleSpace, a function that searches the history of data (EA) later by a search formula (EF) and a new notification of the data are registered when the search formula is registered in advance and new data is accumulated. In the case where the functions received by the search formula registration source are integrated, not only the function of searching for data when storing the search formula but also the function of searching for the search formula when storing the data is required. When there are a large number of users and a large amount of search expressions are accumulated, such as in the ubiquitous environment, even when searching for search expressions, the processing required to check the search conditions and the disclosure conditions for the search expressions included in the search results Has the problem of becoming enormous.

  Accordingly, in order to solve the above-described problems, the present invention has an access control system, a server management device, a data storage device, and an access control method that have a function for improving the search processing of data and search expressions and can reduce the processing load. An object is to provide a server management program and a data storage program.

  In order to achieve the above object, a server management device, a data storage device, an access control system, an access control method, a server management program, and a data storage program according to the present invention preliminarily store data disclosure conditions or search-type user information. Considering this, use multiple data storage devices to store data for the same disclosure conditions or search formulas for the same user information in the same data storage device, and search only necessary data storage devices based on the disclosure conditions and user information when searching. It was decided to.

Specifically, an access control system according to the present invention is an access control system comprising a server management device and a plurality of data storage devices forming a tree structure,
The server management device
A public condition receiving unit that receives a public condition registration request from the client device connected to the network via the network, and a hierarchical public condition and a non-hierarchy having a hierarchical structure for the public condition registration request received by the public condition receiving unit. A public condition separating unit that separates the data into publicized conditions, a server placement information database that stores server placement information that is information on the layered public conditions set for each of the data storage devices connected to the network, and the public conditions A pre-processing unit that queries the server arrangement information database for the layered disclosure condition separated by the separation unit, extracts the server arrangement information that matches the layered publication condition, and transmits the server arrangement information to the client device; Have
The data storage device includes:
A sensor data storage database for storing sensor data including at least public condition information, a search expression storage database for storing a search formula for the sensor data including at least user information, and a network in which the client device is based on the server arrangement information When receiving an information registration request transmitted via, a sensor data extraction unit that searches the device and other data storage devices and extracts sensor data accessible by the client device from the sensor data storage database; When the client device receives an information registration request transmitted via a network based on the server arrangement information, the client device searches the own device and the other data storage device, and a search formula that can access sensor data is the search formula. A search expression extraction unit for extracting from the accumulation database; Characterized in that it.

An access control method for a data storage device according to the present invention is an access control method for an access control system comprising a server management device and a plurality of data storage devices forming a tree structure,
A public condition reception procedure for receiving a public condition registration request from the client device connected to the network via the network;
A publication condition separation procedure for separating the publication condition registration request received in the publication condition reception procedure into a hierarchical publication condition having a hierarchical structure and a non-hierarchical publication condition;
A server arrangement information storage procedure for storing server arrangement information, which is information on the layered disclosure conditions set for each data storage device connected to the network, in a server arrangement information database;
Before querying the server location information database for the hierarchical release conditions separated in the release condition separation procedure, extracting the server placement information that matches the hierarchical release conditions, and transmitting the server placement information to the client device Processing procedure and
Sensor data accumulation procedure for accumulating sensor data including at least disclosure condition information in a sensor data accumulation database;
A search formula storage procedure for storing the search formula of the sensor data in a search formula storage database, including at least user information;
When the client device receives an information registration request transmitted via a network based on the server arrangement information, the client device searches its own device and the other data storage device, and sensor data accessible by the client device is stored in the sensor. Sensor data extraction procedure to extract from the data storage database;
When the client device receives an information registration request transmitted via a network based on the server arrangement information, the client device searches the own device and the other data storage device, and a search formula that can access sensor data is the search formula. Search expression extraction procedure to extract from the accumulation database;
It is characterized by performing.

  This access control system uses a plurality of data storage devices to store the same disclosure condition data or the same user information retrieval formula in the same data storage device, and at the time of retrieval, the necessary data storage device based on the disclosure conditions and user information Search only. The access control system forms a logical network structure of a tree structure between data storage devices, and uses the tree structure to narrow down data storage devices to be searched using the tree structure.

  Therefore, the present invention can provide an access control system that has a function of improving the search processing of data and search expressions and can reduce the processing load.

The search expression extraction unit of the data storage device in the access control system according to the present invention,
A receiving function for receiving a sensor data registration request including at least the sensor data as the information registration request;
A search formula that matches the sensor data included in the sensor data registration request from the search formula storage database of the own device and the search formula storage database of the data storage device lower than the self device as the other data storage device. Search expression search function to search,
A post-processing function for extracting a search expression accessible to sensor data from public condition information included in the sensor data included in the sensor data registration request and user information included in the search expression of a search result of the search expression search function; ,
It is characterized by having.

In the access control method according to the present invention, in the search expression extraction procedure,
A sensor data registration request including at least the sensor data is received as the information registration request, the search formula storage database of the own device, and the search formula storage of the data storage device lower than the self device as the other data storage device Search the database for a search formula that matches the sensor data included in the sensor data registration request, and search the public condition information of the sensor data included in the sensor data registration request and the search result of the search formula search function A search expression that can access sensor data is extracted from user information included in the expression.

The sensor data extraction unit of the data storage device in the access control system according to the present invention,
A reception function for receiving a search expression registration request including at least a search expression of the sensor data as the information registration request;
Sensor data that matches the search formula included in the search formula registration request from the sensor data storage database of the own device and the sensor data storage database of the data storage device higher than the own device as the other data storage device. Sensor data search function to search,
A post-processing function for extracting sensor data accessible to the user from user information included in the search formula included in the search formula registration request and public condition information included in sensor data of a search result of the sensor data search function;
It is characterized by having.

In the access control method according to the present invention, in the sensor data extraction procedure,
A search formula registration request including at least a search formula for the sensor data is received as the information registration request, the sensor data storage database of the own device, and the data storage device higher than the own device as the other data storage device The sensor data storage database is searched for sensor data that matches the search formula included in the search formula registration request, and the user information included in the search formula included in the search formula registration request and the search result of the sensor data search function Sensor data that can be accessed by the user is extracted from the disclosure condition information included in the sensor data.

  A server management apparatus according to the present invention includes a disclosure condition receiving unit that receives a disclosure condition registration request, and a disclosure condition that has been received by the disclosure condition reception unit, a hierarchical disclosure condition having a hierarchical structure, and a non-hierarchical disclosure. The public condition separating unit that separates into the conditions, the server placement information database that stores the server placement information that is the information of the layered public conditions set for each data storage device connected to the network, and the public condition separating unit are separated A pre-processing unit that queries the server arrangement information database for the layered publication condition and extracts the server arrangement information that matches the layered publication condition.

  The server management program according to the present invention provides a server management apparatus with a disclosure condition reception procedure for receiving a disclosure condition registration request, and a hierarchical disclosure condition having a hierarchical structure for the disclosure condition registration request received in the disclosure condition reception procedure. Server arrangement information for storing in the server arrangement information database server release information that is information on the layered release conditions set for each data storage device connected to the network. An accumulation procedure and a pre-processing procedure for querying the server arrangement information database for the layered publication condition separated in the publication condition separation procedure and extracting the server arrangement information that matches the layered publication condition are executed.

The data storage program according to the present invention includes a plurality of data storage devices that form a tree structure.
From the network, a sensor data storage procedure for storing sensor data including at least public condition information in a sensor data storage database, a search formula storage procedure for storing a search formula for the sensor data including at least user information in a search formula storage database, and When an information registration request is received, it searches for its own device and other data storage devices, extracts the sensor data accessible by the user from the sensor data storage database, and sends an information registration request from the network. When received, the search apparatus searches for its own device and the other data storage device, and executes a search expression extraction procedure for extracting a search expression capable of accessing sensor data from the search expression storage database.

A data storage device according to the present invention is a plurality of data storage devices forming a tree structure,
A search formula storage database for storing a search formula including at least user information, and a search formula for searching the self-device and other data storage devices when receiving an information registration request from the network and accessing sensor data. A search expression extraction unit for extracting from the search expression storage database,
The search expression extraction unit
A reception function for receiving a sensor data registration request including at least the sensor data as the information registration request, the search expression storage database of the own device, and the data storage device lower than the own device as the other data storage device A search expression search function for searching for a search expression that matches the sensor data included in the sensor data registration request from a search expression storage database, public condition information and the search expression possessed by the sensor data included in the sensor data registration request And a post-processing function for extracting a search expression that can access sensor data from user information included in the search expression of a search result of a search function.

In the data storage program according to the present invention, in the search expression extraction procedure,
A sensor data registration request including at least the sensor data is received as the information registration request, the search formula storage database of the own device, and the search formula storage of the data storage device lower than the self device as the other data storage device Search the database for a search formula that matches the sensor data included in the sensor data registration request, and search the public condition information of the sensor data included in the sensor data registration request and the search result of the search formula search function A search expression that can access sensor data is extracted from user information included in the expression.

A data storage device according to the present invention is a plurality of data storage devices forming a tree structure,
A sensor data storage database for storing sensor data including at least public condition information, and when receiving an information registration request from the network, search for the own device and the other data storage device, and obtain sensor data accessible by a user A sensor data extraction unit that extracts from a sensor data storage database,
The sensor data extraction unit
A reception function for receiving a search expression registration request including at least a search expression for the sensor data as the information registration request, the sensor data storage database of the own apparatus, and the data storage higher than the own apparatus as the other data storage apparatus A sensor data search function for searching for sensor data that matches the search formula included in the search formula registration request from the sensor data storage database of the apparatus; user information included in the search formula included in the search formula registration request; And a post-processing function for extracting sensor data accessible by the user from the disclosure condition information included in the sensor data of the search result of the sensor data search function.

In the data storage program according to the present invention, in the sensor data extraction procedure,
A search formula registration request including at least a search formula for the sensor data is received as the information registration request, the sensor data storage database of the own device, and the data storage device higher than the own device as the other data storage device The sensor data storage database is searched for sensor data that matches the search formula included in the search formula registration request, and the user information included in the search formula included in the search formula registration request and the search result of the sensor data search function Sensor data that can be accessed by the user is extracted from disclosure condition information included in the sensor data.

  The present invention provides an access control system, a server management device, a data storage device, an access control method, a server management program, and a data storage program that have a function for improving the efficiency of data and search expression search processing and can reduce the processing load. Can be provided.

It is a block diagram explaining the access control system which concerns on this invention. It is a figure explaining sensor data. It is a figure explaining a sensor data storage destination search request. It is a figure explaining public conditions. It is a block diagram explaining the server management apparatus which concerns on this invention. It is a block diagram explaining the server management apparatus which concerns on this invention. It is a figure explaining a server arrangement | positioning information database. It is a block diagram explaining the server management apparatus which concerns on this invention. It is a figure explaining the logical network structure of the data storage apparatus which concerns on this invention. It is a figure explaining the data storage device which concerns on this invention. It is a figure explaining a sensor data storage database. It is a figure explaining a search type accumulation database. It is a figure explaining the registration request | requirement of sensor data. It is a figure explaining a sensor data storage database. It is a figure explaining the search request of a search expression. It is a figure explaining the search request | requirement of non-hierarchical release conditions. It is a figure explaining a non-hierarchical release condition database. It is a figure explaining a mode that a post-processing part transmits the search request | requirement of non-hierarchical public conditions to a server management apparatus, and receives non-hierarchical public conditions. It is a figure explaining the search request of a profile. It is a figure explaining a user profile database. It is a figure explaining a mode that a post-processing part transmits the search request of a profile to a server management apparatus, and receives a profile. It is a figure explaining the search request of a profile. It is a figure explaining a mode that a post-processing part transmits the search request of a profile to a server management apparatus, and receives a profile. It is a figure explaining the search formula of sensor data. It is a figure explaining the accumulation destination search request of a search expression. It is a figure explaining the registration request | requirement of a search expression. It is a figure explaining a search type accumulation database. It is a figure explaining the search request | requirement of sensor data. It is a figure explaining the search request | requirement of non-hierarchical release conditions. It is a figure explaining a mode that a post-processing part transmits the search request | requirement of non-hierarchical public conditions to a server management apparatus, and receives non-hierarchical public conditions. It is a figure explaining the search request of a profile. It is a figure explaining a mode that a post-processing part transmits the search request of a profile to a server management apparatus, and receives a profile.

  Embodiments of the present invention will be described with reference to the accompanying drawings. The embodiments described below are examples of the present invention, and the present invention is not limited to the following embodiments. In the present specification and drawings, the same reference numerals denote the same components.

(System configuration)
FIG. 1 shows the configuration of the entire system in the present embodiment. A server management device (103), seven data storage devices (901 to 907), CL1 (101), and CL2 (102) are connected to the network (105). CL1 (101) and CL2 (102) are client devices that perform registration and search of sensor data. CL1 (101) is a device that is identified by “address = CL1” or “_respid = CL1”, and CL2 ( 102) is a device identified by “address = CL2” or “_respid = CL2”.

  The server management apparatus (103) includes therein a disclosure condition receiving unit (111), a disclosure condition separating unit (112), a preprocessing unit (113), a non-hierarchical disclosure condition DB (121), and a server arrangement information DB ( 122), user profile DB (123), affiliation information reception unit (116), disclosure condition search unit (114), profile search unit (115), and server information transmission unit (117).

Each of the seven data storage devices (901 to 907) has an IP address as
The data storage device (901) reads 192.168.0.1,
The data storage device (902) is 192.168.0.2,
The data storage device (903) calculates 192.168.0.3,
The data storage device (904) is 192.168.0.4,
The data storage device (905) reads 192.168.0.5,
The data storage device (906) reads 192.168.0.6,
The data storage device (907) is set to 192.168.0.7,
Have.

  Each data storage device has a function of storing sensor data and a search expression therein, and further performs a search process for confirming the match between the two. The detailed configuration and operation of this system will be described below.

(Operation example 1)
First, an operation in which CL1 (101) registers the sensor data (201) shown in FIG. In the present embodiment, each sensor data is expressed as an array of one or more key-value pairs. The example of the sensor data (201) means that the length of the arrangement of the Key-Value pair is 1, and has a value of “23” for the Key of “data”. In the example of the sensor data (201), CL1 (101) represents that the temperature data is about to be registered by measuring a sensor value meaning 23 degrees.

FIG. 3 shows the contents of the sensor data storage destination search request (301).
CL1 (101) transmits a sensor data storage destination search request (301) to the server management apparatus (103) and inquires about the location of the data storage apparatus in which the sensor data (201) should be stored.

  The sensor data storage destination search request (301) includes the disclosure condition (302) as information. The disclosure condition (302) indicates a condition of a user who can access the sensor data (201). The disclosure condition (302) is expressed as an array of one or more key-value pairs, like the sensor data (201), and includes a hierarchical disclosure condition (303) and a non-hierarchical disclosure condition (304).

  The hierarchical disclosure condition (303) is one Key-Value pair having a hierarchical structure, and in this example, “belong_condition = / ntt / mirai” corresponds. Which Key-Value pair is to be used as the hierarchical disclosure condition is determined in advance. The value of the hierarchized disclosure condition is a character string starting with a slash “/”, and is expressed by separating each hierarchy with a slash “/” in order from the upper hierarchy. For example, the value of the hierarchical disclosure condition (303) indicates a hierarchical structure in which “mirai” is subordinate to “ntt”.

  On the other hand, the non-hierarchical disclosure condition (304) is the remaining Key-Value pair, and “name = kashi” corresponds in this example.

  Note that the disclosure condition (302) of the sensor data storage destination search request (301) described above has only one pair including a “/” sign as a value among the key-value pairs. In the present embodiment, even when there are two or more pairs in the Key-Value pair that include the “/” code as the Value, it can be handled as follows.

  For example, as shown in FIG. 4, when the disclosure condition (402) has a plurality of key-value pairs having a hierarchical structure, a predetermined one of them is set as the hierarchical disclosure condition (403), and the remaining key- A Value pair can be handled as a non-hierarchical disclosure condition (404). In the present embodiment, the Key-Value pair using belong_condition as a key is set as a hierarchical disclosure condition.

  Here, belong_condition has a meaning indicating the affiliation of a user who can access the sensor data. For example, the hierarchized disclosure condition (303) indicates that only the user belonging to the department “mirai” in the organization “ntt” can access the sensor data (201). In addition, “/” is used as a delimiter. However, the present invention is not limited to this, and conditions other than affiliation, for example, an address written as “Musashino City in Tokyo, Japan”, etc., may be used as the hierarchical disclosure condition.

  The disclosure condition receiving unit (111) in the server management apparatus (103) receives the sensor data storage destination search request (301) transmitted by the CL1 (101), and separates the disclosure condition (302) included in the request into the disclosure condition. Part (112).

  The public condition separating unit (112) additionally registers the non-hierarchical public condition (304) included in the public condition (302) in the non-hierarchical public condition DB (121) as shown in FIG. At that time, the disclosure condition separation unit (112) assigns unique disclosure condition information to the additionally registered information. The public condition information is an identifier of the non-hierarchical public condition (304). In the present embodiment, it is assumed that a Key-Value pair having “_pseial” as a key is used as the public condition information.

  In the non-hierarchical disclosure condition DB data (501), since values 1 and 2 have already been used as _serial, 3 is used as a new serial number for the additional registration. Thereby, the data (501) in the non-hierarchical disclosure condition DB (121) becomes the data (601) in the non-hierarchical disclosure condition DB (121) of FIG. 6 by the additional registration.

  Further, as shown in FIG. 6, the disclosure condition separation unit (112) passes the identifier “_pseial = 3” of the non-hierarchical disclosure condition and the hierarchical disclosure condition (303) to the preprocessing unit (113).

  FIG. 7 shows data in the server arrangement information DB (122). Each server arrangement information (701 to 707) included in the server arrangement information DB (122) represents the correspondence between the hierarchical disclosure conditions and the IP addresses of the data storage devices (901 to 907). Here, in the data storage device (901 to 907), the sensor data including the hierarchical disclosure condition in the disclosure condition and the user who matches the hierarchical disclosure condition store the search formula. For example, the server arrangement information (701) is stored in the data storage device having the IP address (192.168.0.1) in which the sensor data disclosed for / ntt and the search formula of the user belonging to / ntt are stored. Indicates to do.

  Next, as shown in FIG. 8, the preprocessing unit (113) searches the server arrangement information DB (122), and acquires the IP address of the server that matches the layered disclosure condition (303). Specifically, data storage of server placement information, that is, server placement information (702) in which the value represented by Belong_condition of the layered disclosure condition (303), that is, / ntt / mirai, matches the value represented by belong of the server placement information. Obtain the IP address (801) of the device, 192.168.0.2.

  Then, the preprocessing unit (113) transmits the disclosure condition information (401) and the acquired IP address (801) to CL1 (101) as a response to the sensor data storage destination search request (301).

  If each server arrangement information (701 to 707) included in the server arrangement information DB (122) is interpreted as shown below, the data storage device (901 to 907) has a tree-structured logical network structure. It can be considered that it is composed. However, the logical network here represents a conceptual connection relationship between data storage devices, and does not represent that the network (105) physically forms a tree structure.

  FIG. 9 shows the logical network configuration of the data storage devices (901 to 907). In the present embodiment, it is assumed that a tree-structured logical network structure is configured based on a key-value pair with “belong” as a key.

  Specifically, in FIG. 7, the data storage device (901) indicated by the row (701) holding belong = / ntt is set as the vertex of the tree structure, and belong = / ntt / mirai is held as a lower node. The data storage device (902) indicated by the row (702) and the data storage device (905) indicated by the row (705) holding belong = / ntt / cs are included. The data storage device (902) as a lower node, the data storage device (903) indicated by the row (703) holding belong = / ntt / mirai / usa and the row (704) holding belong = / ntt / mirai / ws Has a data storage device (904). The data storage device (905) serves as a lower node, the data storage device (906) indicated by the row (706) holding belong = / ntt / cs / hi, and the row (707) holding belong = / ntt / cs / mo. Has a data storage device (907).

  FIG. 10 is a diagram showing the configuration of the data storage device (902). The data storage device (902) includes an EA storage DB (1001), an EF storage DB (1002), upper node information (1003), lower node information (1004), an EA receiver (803), and an EA storage unit. (804), an EF search unit (805), a post-processing unit (806), an EA transmission unit (807), an EF reception unit (808), an EF storage unit (809), and an EA search unit (810).

  The upper node information (1003) indicates the IP address of the data storage device corresponding to the upper node of the logical network, and the lower node information (1004) indicates the IP address of the data storage device corresponding to the lower node of the logical network.

  FIG. 11 shows the contents of the EA accumulation DB (1001). EA is a term of uTupleSpace and is sensor data. FIG. 12 shows the contents of the EF storage DB (1002). EF is a term of u TupleSpace and is a search expression. The other data storage devices have the same configuration.

  The CL1 (101) receives the response to the sensor data storage destination search request (301) from the server management device (103), and sends the sensor data to the data storage device (902) of the IP address 192.168.0.2 included in the response. Send a registration request.

  FIG. 13 is a diagram showing the contents of the sensor data registration request (1301). The registration request includes EA (1302). The EA (1302) includes disclosure condition information (401) included in the response, information (1303) for identifying CL1 (101), and sensor data (201) registered by CL1 (101). In this example, the disclosure condition information (401) is “_pserial = 3”, the information (1303) for identifying CL1 (101) is “address = CL1”, and the sensor data (201) to be registered is “data = 23 ".

  The EA receiver (803) in the data storage device (902) receives the sensor data registration request (1301), and extracts the EA (1302) included in the request. The EA accumulation unit (804) additionally registers the EA (1302) in the EA accumulation DB (1001). FIG. 14 is a diagram showing the contents of the data (1401) in the EA accumulation DB (1001) after the additional registration processing.

  Next, the EF search unit (805) in the data storage device (902) searches the EF storage DB (1002) in FIG. 12 for an EF that matches the EA (1302). Here, the matching rule of u TupleSpace is followed. That is, for all the keys other than the key starting from the underscore included in the EF, the key exists in the EA, and the search condition expressed as the value for the key included in the EF is the value as the value for the key included in the EA. Only when the values match, it is determined that the EF and the EA match. In this example, it is determined that the EF (1201) and the EF (1202) in which the value of the address key matches that of the EA match, and a search result is obtained.

  Next, the EF search unit (805) in the data storage device (902) searches the EF from all data storage devices of nodes lower than the data storage device (902) in the logical network structure. In other words, the EF search unit (805) in the data storage device (902) transmits a search request for a search formula to the data storage device (903) and the data storage device (904).

  FIG. 15 shows the contents of the retrieval request (1501) of the retrieval formula. The search request includes EA (1302). The data storage device (903) and the EA reception unit in the data storage device (904) receive the search request (1501) of the search formula and take out the EA (1302) included in the request. The EF search unit in the data storage device (903) and the data storage device (904) finds an EF that matches the EA (1302) in the EF storage DB in the data storage device (903) and the data storage device (904). And the search result is transmitted to the EF search unit (805) in the data storage device (902). In this example, for simplicity, it is assumed that the data storage device (903) and the data storage device (904) have no EF that matches the EA (1302).

  Next, the post-processing unit (806) in the data storage device (902) inquires about the non-hierarchical disclosure condition that matches the disclosure condition information (401) “_perial = 3” included in the EA (1302). A search request for non-hierarchical disclosure conditions is transmitted to the server management apparatus (103). FIG. 16 shows the contents of the search request (1601) for the non-hierarchical disclosure condition. As shown in the figure, the non-hierarchical disclosure condition search request (1601) includes disclosure condition information (1602).

  The public condition search unit (114) in the server management device (103) receives the non-hierarchical public condition search request (1601) and extracts the public condition information (1602) included in the request. The public condition search unit (114) searches from the non-hierarchical public condition DB (121) as shown in FIG. Specifically, the value represented by the _serial key of the disclosure condition information (1602), that is, the line where the value of the _serial key of the non-hierarchized disclosure condition DB data (1701) matches, that is, “_serial = 3, name = “kashi” is searched, and the non-hierarchical disclosure condition “name = kashi” included in the row is transmitted to the data storage device (902) as a response to the request.

  The post-processing unit (806) in the data storage device (902) receives the response and obtains a non-hierarchical disclosure condition “name = kashi”. FIG. 18 shows a state in which the post-processing unit (806) transmits a search request (1601) for non-hierarchical disclosure conditions to the server management apparatus (103) and receives the non-hierarchical disclosure conditions (1801).

  Next, the post-processing unit (806) in the data storage device (902) obtains the search result obtained by searching the EF storage DB (1002) and all the data storage devices of the lower nodes. The following profile search processing is performed on each of the EFs included in the search results, that is, EF (1201) and EF (1202).

  Specifically, first, the post-processing unit (806) in the data storage device (902) issues a profile search request for inquiring about a profile that matches the user information “_usual = 1” included in the EF (1201). To the server management apparatus (103). The user information is information for identifying the user, and is a pair of a _usual key and its value in this embodiment. FIG. 19 shows the contents of the profile search request (1901). The search request includes user information (1902).

  The profile search unit (115) in the server management device (103) receives the profile search request (1901) and extracts the user information (1902) included in the search request.

  The profile search unit (115) searches the user profile DB (123) as shown in FIG. 20 for a profile that matches the user information (1902). Specifically, the value represented by the _usual key of the user information (1902), that is, the line where the value of the _usual key of the data in the user profile DB () matches, that is, “_usual = 1, name = kashi” is searched. , “Name = kashi”, which is a key-value pair other than the user information “_usual = 1”, is transmitted to the data storage device (902) as a response to the search request.

  The post-processing unit (806) in the data storage device (902) receives the response and obtains the profile “name = kashi”. FIG. 21 shows how the post-processing unit (806) transmits a profile search request (1901) to the server management apparatus (103) and receives the profile (2101).

  Subsequently, a profile search request for inquiring about a profile that matches the user information “_usual = 2” included in the EF (1202) is transmitted to the server management apparatus (103). FIG. 22 shows the contents of the profile search request (2201). The search request includes user information (2202).

  The profile search unit (115) in the server management device (103) receives the profile search request (2201), and extracts user information (2202) included in the search request.

  The profile search unit (115) searches the user profile DB (123) as shown in FIG. 20 for a profile that matches the user information (2202). Specifically, the value represented by the _usual key of the user information (2202), that is, the row where the value of the _usual key of the data (2001) in the user profile DB matches, ie, “_usual = 2, name = ara” is searched. Then, the profile included in the row, that is, “name = ara”, which is a key-value pair other than the user information “_user = 2”, is transmitted to the data storage device (902) as a response to the search request.

  The post-processing unit (806) in the data storage device (902) receives the response and obtains the profile “name = ara”. FIG. 23 shows how the post-processing unit (806) transmits a profile search request (2201) to the server management apparatus (103) and receives the profile (2301).

  Next, the post-processing unit (806) in the data storage device (902) uses the profile (2101) and profile (2301) of the processing result to disclose the disclosure condition (302) “name” of the EA (1302). Select the EF that contains the user profile that matches “= kashi”. In this example, since the profile (2101) matches the publication condition (302), only the EF (1201) is selected.

  The EA transmission unit (807) in the data storage device (902) notifies the selected EF (1201) of the EA (1302) to the client device that has registered the EF. In the present embodiment, the value corresponding to the key “_respid” in the EF is information for identifying the client device that has registered the EF. That is, the EA (1302) is notified to the CL2 (102) which is the client device indicated by the _respid key in the EF (1201).

  In the present embodiment, an example is shown in which the data storage device (901 to 907) according to the present invention stores both the search formula for sensor data and the sensor data. The scope of the present invention is not limited to this, and the function may be realized by a combination of two or more devices connected by the network 105.

  For example, the data storage device may be composed of one or more search expression storage servers and one or more sensor data storage servers. Here, the search expression storage server is a server that stores a search expression for sensor data. The sensor data storage server is a server that stores sensor data. One or more search expression storage servers form a tree-structured logical network structure. Each sensor data storage server has a function of receiving a sensor data registration request including sensor data, a search expression storage server corresponding to the sensor data storage server, and a search expression storage server subordinate to the search expression storage server. After extracting the search data that the user can access from the search formula search function that searches the search formula that matches the sensor data, the public condition information included in the sensor data, and the user information included in the search formula of the search result You may make it give a processing function.

  At this time, in order to designate a search formula storage server corresponding to the sensor data storage server, the search formula storage server ID may be included in the sensor data registration request.

  Further, in the present embodiment, an example is shown in which an EF search unit that performs a search operation for all EF storage DBs included in a data storage device lower than the data storage device in the present invention is incorporated in the data storage device. It was. The scope of the present invention is not limited to this, and the function may be realized by a combination of two or more devices connected via a network.

  For example, it is assumed that CL1 (or CL2) is responsible for a part of the function of the EF search unit, the data storage device returns the arrangement information of the lower data storage device to be searched to CL1, and CL1 is based on the arrangement information. The function of the EF search unit described above may be realized by a combination of CL1 (or CL2) and the data storage device by repeating the operation of issuing a request to different data storage devices.

(Operation example 2)
Next, an operation in which CL2 (102) registers the search expression (2401) shown in FIG. In the present embodiment, each search expression is expressed as an array of one or more key-value pairs. The example of the retrieval formula (2401) means that the length of the arrangement of the key-value pair is 1, and the retrieval formula is a retrieval formula for retrieving sensor data in which the key “address” has a value “CL3”. This example of the search formula (2401) indicates that CL2 (102) is going to search for data registered from the client device CL3.

  FIG. 25 shows the contents of a search formula storage destination search request (2501). CL2 (102) transmits the search formula storage destination search request (2501) to the server management apparatus (103) and inquires about the location of the data storage apparatus where the search formula (2401) should be stored.

  The search formula storage destination search request (2501) includes affiliation information (2502) as information. The affiliation information (2502) indicates the affiliation information of the user. The affiliation information (2502) is one Key-Value pair having a hierarchical structure, and “belong = / ntt / mirai” corresponds in this example. The value of the affiliation information is a character string starting with a slash “/”, and is expressed by separating each layer with a slash “/” in order from the upper layer. For example, the value of the affiliation information (2502) indicates a hierarchical structure in which “mirai” is subordinate to “ntt”.

  Here, belong has a meaning indicating the affiliation of the user. For example, the affiliation information (2502) indicates that the person belongs to the department “mirai” in the organization “ntt”. In addition, “/” is used as a delimiter. However, the present invention is not limited to this, and conditions other than affiliation, for example, an address written as “Musashino City in Tokyo, Japan”, etc. may be used as affiliation information.

  The affiliation information receiving unit (116) in the server management apparatus (103) receives the search expression storage destination search request (2501) transmitted by the CL2 (102), and extracts the affiliation information (2502) included in the request.

  Next, the affiliation information receiving unit (116) searches the server arrangement information DB (122) shown in FIG. 7 and acquires the IP address of the server that matches the affiliation information (2502). Specifically, the server address in which the value represented by the belong of the affiliation information (2502), that is, / ntt / mirai, matches the value represented by the belong in the server layout information, that is, the server IP address of the server layout information (702). Obtain 192.168.0.2. Then, the affiliation information receiving unit (116) transmits the acquired IP address to CL2 (102) as a response to the search expression storage destination search request (2501).

  CL2 (102) receives the response to the search formula storage destination search request (2501) from the server management device (103), and sends the search formula to the data storage device (902) of the IP address 192.168.0.2 included in the response. Send a registration request.

  FIG. 26 shows the contents of the search expression registration request (2601). The registration request includes EF (2602). The EF (2602) includes user information (2603), information (2604) for identifying CL2 (102), and a search expression (2401) registered by CL2 (102). In this example, the user information (2603) is “_usual = 3”, the information (2604) for identifying CL2 (102) is “_respid = CL2”, and the search expression (2401) to be registered is “address = CL3”. Is.

  The EF receiving unit (808) in the data storage device (902) receives the search expression registration request (2601) and extracts the EF (2602) included in the request. The EF storage unit (809) additionally registers the EF (2602) in the EF storage DB (1002). FIG. 27 is a diagram showing the contents of the data (2701) in the EF accumulation DB after the additional registration processing.

Next, the EA search unit (810) in the data storage device (902) searches the EA storage DB (1001) of FIG. 14 for an EA that matches the EF (2602). Here, the matching rule of u TupleSpace is followed. That is, for all the keys other than the key starting from the underscore included in the EF, the key exists in the EA, and the search condition expressed as the value for the key included in the EF is the value as the value for the key included in the EA. Only when the values match, it is determined that the EF and the EA match.
In this example, it is determined that the EA (1402) whose address key value matches that of the EF matches, and the search result is obtained.

  Next, the EA search unit (810) in the data storage device (902) searches for an EA from all the data storage devices of nodes higher than the data storage device (902) in the logical network structure. That is, the EA search unit (810) in the data storage device (902) transmits a sensor data search request to the data storage device (901). FIG. 28 shows the contents of the sensor data search request (2801). The search request includes EF (2602).

  The EF receiving unit (808) in the data storage device (901) receives the sensor data search request (2801) and extracts the EF (2602) included in the request. The EA search unit (810) searches the EA storage DB (1001) for an EA that matches the EF (2602), and transmits the search result to the EA search unit (810) in the data storage device (902). . In this example, for simplicity, it is assumed that the data storage device (901) does not have an EA that matches the EF (2602).

  Next, the post-processing unit (806) in the data storage device (902) obtains the search result obtained by searching the EA storage DB (1001) and all the data storage devices of the upper nodes. A search request for a non-hierarchical public condition that inquires about a non-hierarchical public condition that matches EA included in the search result, that is, the public condition information “_serial = 2” contained in the EA (1402), is sent to the server management apparatus ( 103). FIG. 29 shows the contents of the search request (2901) for the non-hierarchical disclosure condition. The search request (2901) includes disclosure condition information (2902).

  The public condition search unit (114) in the server management apparatus (103) receives the non-hierarchical public condition search request (2901) and extracts the public condition information (2902) included in the search request. The public condition retrieval unit (114) retrieves a non-hierarchical public condition that matches the public condition information (2902) from the non-hierarchical public condition DB (121) as shown in FIG. Specifically, the value represented by the _serial key of the disclosure condition information (2902), that is, the row where the value of the _serial key of the non-hierarchized disclosure condition DB data (121) matches, that is, “_serial = 2, home = “Tokyo” is searched, and the non-hierarchized disclosure condition included in the row, that is, “hometown = tokyo” that is a Key-Value pair other than the disclosure condition information “_perial = 2” is stored as a response to the search request. Send to device (902).

  The post-processing unit (806) in the data storage device (902) receives the response and obtains a non-hierarchical disclosure condition “hometown = tokyo”. FIG. 30 shows a state in which the post-processing unit (806) transmits a search request (2901) for non-hierarchical disclosure conditions to the server management apparatus (103) and receives the non-hierarchical disclosure conditions (3001).

  Next, the post-processing unit (806) in the data storage device (902) performs a profile search process as shown below on the EF (2602). Specifically, first, the post-processing unit (806) in the data storage device (902) issues a profile search request for inquiring about a profile that matches the user information “_usual = 3” included in the EF (2602). To the server management apparatus (103). FIG. 31 shows the contents of the profile search request (3101). The search request (3101) includes user information (3102).

  The profile search unit (115) in the server management apparatus (103) receives the profile search request (3101), and extracts the user information (3102) included in the request. The profile search unit (115) searches the user profile DB (123) as shown in FIG. 20 for a profile that matches the user information (3102). Specifically, the value represented by the _usual key of the user information (3102), that is, the row where the value of the _usual key of the data (2001) in the user profile DB (2001) matches, ie, “_usual = 3, hometown = tokyo” is searched. Then, the profile included in the row, that is, “home = value”, which is a key-value pair other than the user information “_usual = 3”, is transmitted to the data storage device (902) as a response to the search request.

  The post-processing unit (806) in the data storage device (902) receives the response and obtains the profile “hometown = tokyo”. FIG. 32 shows how the post-processing unit (806) transmits a profile search request (3101) to the server management apparatus (103) and receives the profile (3201).

  Next, the post-processing unit (806) in the data storage device (902) uses the non-hierarchized disclosure condition (3001) of the processing result, and the profile (3201) “hometown = tokyo” of the EF (2602). EA that includes a non-hierarchical disclosure condition that matches "." In this example, since the non-hierarchical disclosure condition (3001) matches the profile (3201), EA (1402) is selected.

  The EA transmitter (807) in the data storage device (902) notifies the selected EA (1402) to the client device that has registered the EF. In the present embodiment, the value corresponding to the key “_respid” in the EF is information for identifying the client device that has registered the EF. In other words, the EA (1402) is notified to the CL2 (102) which is the client device indicated by the _respid key in the EF (2602).

  In the present embodiment, an example is shown in which the data storage device (901 to 907) according to the present invention stores both the search formula for sensor data and the sensor data. The scope of the present invention is not limited to this, and the function may be realized by a combination of two or more devices connected via a network.

  For example, the data storage device may be composed of one or more search expression storage servers and one or more sensor data storage servers. Here, the search expression storage server is a server that stores a search expression for sensor data. The sensor data storage server is a server that stores sensor data. One or more sensor data storage servers form a tree-structured logical network structure. Each search expression storage server receives a search expression registration request including a search expression, a sensor data storage server corresponding to the search expression storage server, and all sensor data storage servers higher than the sensor data storage server. After extracting sensor data accessible by the user from the sensor data search function for searching for sensor data that matches the search formula, user information included in the search formula, and public condition information included in the sensor data of the search result You may make it give a processing function.

  At this time, in order to designate a sensor data storage server corresponding to the search formula storage server, the sensor data storage server ID may be included in the search formula registration request.

  Further, in the present embodiment, an example is shown in which an EA search unit that performs a search operation for all EA storage DBs included in a data storage device higher than the data storage device in the present invention is incorporated in the data storage device. It was. The scope of the present invention is not limited to this, and the function may be realized by a combination of two or more devices connected via a network.

  For example, it is assumed that CL1 (or CL2) is responsible for a part of the function of the EA search unit, the data storage device returns the placement information of the upper data storage device to be searched to CL1, and CL1 is based on the placement information. The function of the EA search unit described above may be realized by a combination of CL1 (or CL2) and the data storage device by repeating the operation of issuing a request to different data storage devices.

(Other operation examples)
In the present embodiment, the encoding of the sensor data information is one line of text information in a readable format expressed in an array format of “attribute = value” pairs, but the scope of the present invention is limited to this. The present invention is not limited and can be applied to any information encoding method including an unreadable format. Further, the present invention can be applied to an information encoding method based on readable text information composed of a plurality of lines expressed using, for example, XML or JSON specifications.

(program)
The apparatus of the present invention can be realized by a computer and a program, and can be recorded on a recording medium or provided through a network. For example, a program for realizing all or part of the functions of the server management device (103) and the data storage devices (901 to 907) is recorded on a computer-readable recording medium, and the program recorded on the recording medium May be read by a computer system and executed to perform processing of each unit. Here, the “computer system” includes an OS and hardware such as peripheral devices.

  Further, the “computer system” includes a homepage providing environment (or display environment) if a WWW system is used.

  The “computer-readable recording medium” refers to a holding device such as a portable medium such as a flexible disk, a magneto-optical disk, a ROM, and a CD-ROM, and a hard disk built in the computer system.

Furthermore, the “computer-readable recording medium” dynamically holds a program for a short time like a communication line when transmitting a program via a network such as the Internet or a communication line such as a telephone line. In this case, a volatile memory in a computer system serving as a server or a client in that case, and a program that holds a program for a certain period of time are also included.
The program may be a program for realizing a part of the functions described above, and may be a program capable of realizing the functions described above in combination with a program already recorded in a computer system.

  The embodiment of the present invention has been described in detail with reference to the drawings. However, the specific configuration is not limited to this embodiment, and includes design changes and the like within a scope not departing from the gist of the present invention.

101, 102: client device 103: server management device 105: network 111: disclosure condition receiving unit 112: disclosure condition separating unit 113: preprocessing unit 114: disclosure condition searching unit 115: profile searching unit 116: belonging information receiving unit 117: Server information transmission unit 121: Non-hierarchical disclosure condition DB (database)
122: Server location information DB (database)
123: User profile DB (database)
201: Sensor data 301: Sensor data storage destination search request 302, 402: Release condition 303, 403: Hierarchical release condition 304, 404: Non-hierarchical release condition 401: Release condition information 501, 601: Non-hierarchical release condition DB Internal data 701 to 707: Server arrangement information 801: IP address 803: EA (sensor data) receiving unit 804: EA (sensor data) storage unit 805: EF (search formula) search unit 806: Post-processing unit 807: EA (sensor) Data) Transmission unit 808: EF (search formula) reception unit 809: EF (search formula) storage unit 810: EA (sensor data) search units 901 to 907: Data storage device 1001: EA (sensor data) storage DB (database)
1002: EF (search formula) storage DB (database)
1003: Upper node information 1004: Lower node information 1101: EA storage DB data 1201, 1202: Search formula 1301: Sensor data registration request 1302: Sensor data 1401: EA storage DB data 1402: Sensor data 1501: Search formula search Request 1601: Non-hierarchical public condition search request 1602: Public condition information 1701: Non-hierarchical public condition DB data 1801: Non-hierarchical public condition 1901: Profile search request 1902: User information 2001: User profile DB data 2101: Profile 2201: Profile search request 2202: User information 2301: Profile 2401: Search formula 2501: Search formula storage location search request 2502: Affiliation information 2601: Search formula registration request 2602: Search formula 2603: User information 26 4: Information 2701: EF accumulated DB in data 2801: sensor data retrieval request 2901: Non-Layered disclosure condition search request 2902: Publication condition information 3001: Non-Layered disclosure conditions 3101: Profile search request 3102: User Info 3201: Profile

Claims (10)

An access control system comprising a server management device and a plurality of data storage devices forming a tree structure,
The server management device
A public condition receiving unit that receives a public condition registration request from the client device connected to the network via the network;
A public condition separating unit that separates the public condition registration request received by the public condition receiving unit into a hierarchical public condition having a hierarchical structure and a non-hierarchical public condition;
A server arrangement information database for storing server arrangement information that is information on the layered disclosure conditions set for each of the data storage devices connected to the network;
Before querying the server arrangement information database for the layered publication conditions separated by the publication condition separating unit, extracting the server arrangement information that matches the layered publication conditions, and transmitting the server arrangement information to the client device A processing unit;
Have
The data storage device includes:
A sensor data storage database for storing sensor data including at least the disclosure condition information;
A search expression storage database for storing a search expression of the sensor data, including at least user information;
When the client device receives an information registration request transmitted via a network based on the server arrangement information, the client device searches its own device and the other data storage device, and sensor data accessible by the client device is stored in the sensor. A sensor data extraction unit for extracting from the data storage database;
When the client device receives an information registration request transmitted via a network based on the server arrangement information, the client device searches the own device and the other data storage device, and a search formula that can access sensor data is the search formula. A search expression extraction unit for extracting from the accumulation database;
An access control system comprising: The search expression extraction unit of the data storage device includes:
A receiving function for receiving a sensor data registration request including at least the sensor data as the information registration request;
A search formula that matches the sensor data included in the sensor data registration request from the search formula storage database of the own device and the search formula storage database of the data storage device lower than the self device as the other data storage device. Search expression search function to search,
A post-processing function for extracting a search expression accessible to sensor data from public condition information included in the sensor data included in the sensor data registration request and user information included in the search expression of a search result of the search expression search function; ,
The access control system according to claim 1, further comprising: The sensor data extraction unit of the data storage device,
A reception function for receiving a search expression registration request including at least a search expression of the sensor data as the information registration request;
Sensor data that matches the search formula included in the search formula registration request from the sensor data storage database of the own device and the sensor data storage database of the data storage device higher than the own device as the other data storage device. Sensor data search function to search,
A post-processing function for extracting sensor data accessible to the user from user information included in the search formula included in the search formula registration request and public condition information included in sensor data of a search result of the sensor data search function;
The access control system according to claim 1, further comprising: A public condition receiving unit for receiving a public condition registration request;
A public condition separating unit that separates the public condition registration request received by the public condition receiving unit into a hierarchical public condition having a hierarchical structure and a non-hierarchical public condition;
A server arrangement information database for storing server arrangement information that is information on the hierarchical disclosure conditions set for each data storage device connected to the network;
Querying the server arrangement information database for the layered publication condition separated by the publication condition separating unit, and extracting the server arrangement information that matches the layered publication condition;
A server management apparatus. A plurality of data storage devices forming a tree structure,
A search expression storage database for storing a search expression including at least user information;
A sensor data storage database for storing sensor data including at least the disclosure condition information;
When receiving an information registration request from the network, a search formula extraction unit that searches the self-device and other data storage devices and extracts a search formula that can access sensor data from the search formula storage database;
When receiving an information registration request from the network, a sensor data extraction unit that searches the device and other data storage devices and extracts sensor data accessible by a user from the sensor data storage database;
Have
The search expression extraction unit
A receiving function for receiving a sensor data registration request including at least the sensor data as the information registration request;
Only the search expression accumulation database of the search expression storage database, and all the lower than the self apparatus as another of the data storage device of the data storage device of the apparatus, the sensor data included in the sensor data registration request matches A search expression search function for searching a search expression to be
A post-processing function for extracting a search expression accessible to sensor data from public condition information included in the sensor data included in the sensor data registration request and user information included in the search expression of a search result of the search expression search function; ,
Only including,
The sensor data extraction unit
A reception function for receiving a search expression registration request including at least a search expression of the sensor data as the information registration request;
The search formula included in the search formula registration request matches only from the sensor data storage database of the own device and the sensor data storage database of all the data storage devices higher than the own device as the other data storage devices. A sensor data search function for searching sensor data to be
A post-processing function for extracting sensor data accessible to the user from user information included in the search formula included in the search formula registration request and public condition information included in sensor data of a search result of the sensor data search function;
Data storage apparatus comprising a. An access control method for an access control system comprising a server management device and a plurality of data storage devices forming a tree structure,
A public condition reception procedure for receiving a public condition registration request from the client device connected to the network via the network;
A publication condition separation procedure for separating the publication condition registration request received in the publication condition reception procedure into a hierarchical publication condition having a hierarchical structure and a non-hierarchical publication condition;
A server arrangement information storage procedure for storing server arrangement information, which is information on the layered disclosure conditions set for each data storage device connected to the network, in a server arrangement information database;
Before querying the server location information database for the hierarchical release conditions separated in the release condition separation procedure, extracting the server placement information that matches the hierarchical release conditions, and transmitting the server placement information to the client device Processing procedure and
Sensor data accumulation procedure for accumulating sensor data including at least disclosure condition information in a sensor data accumulation database;
A search formula storage procedure for storing the search formula of the sensor data in a search formula storage database, including at least user information;
When the client device receives an information registration request transmitted via a network based on the server arrangement information, the client device searches its own device and the other data storage device, and sensor data accessible by the client device is stored in the sensor. Sensor data extraction procedure to extract from the data storage database;
When the client device receives an information registration request transmitted via a network based on the server arrangement information, the client device searches the own device and the other data storage device, and a search formula that can access sensor data is the search formula. Search expression extraction procedure to extract from the accumulation database;
An access control method comprising: In the search expression extraction procedure,
Receiving a sensor data registration request including at least the sensor data as the information registration request;
A search formula that matches the sensor data included in the sensor data registration request from the search formula storage database of the own device and the search formula storage database of the data storage device lower than the self device as the other data storage device. Search
A search expression that can access sensor data is extracted from public condition information included in the sensor data included in the sensor data registration request and user information included in the search expression of a search result of the search expression search function. The access control method according to claim 6 . In the sensor data extraction procedure,
Receiving a search expression registration request including at least a search expression of the sensor data as the information registration request;
Sensor data that matches the search formula included in the search formula registration request from the sensor data storage database of the own device and the sensor data storage database of the data storage device higher than the own device as the other data storage device. Search
The sensor data accessible by the user is extracted from user information included in the search formula included in the search formula registration request and public condition information included in sensor data of a search result of the sensor data search function. Item 7. The access control method according to Item 6 . In the server management unit,
A public condition reception procedure for receiving a public condition registration request;
A publication condition separation procedure for separating the publication condition registration request received in the publication condition reception procedure into a hierarchical publication condition having a hierarchical structure and a non-hierarchical publication condition;
A server arrangement information accumulation procedure for storing server arrangement information, which is information on the hierarchical disclosure conditions set for each data accumulation apparatus connected to the network, in a server arrangement information database;
Querying the server placement information database for the layered publication conditions separated in the publication condition separation procedure, and extracting the server placement information that matches the layered publication conditions;
Server management program that implements To multiple data storage devices that form a tree structure,
Sensor data accumulation procedure for accumulating sensor data including at least disclosure condition information in a sensor data accumulation database;
A search formula storage procedure for storing the search formula of the sensor data in a search formula storage database, including at least user information;
When receiving an information registration request from the network, it searches its own device and other data storage devices, and extracts the sensor data accessible by the user from the sensor data storage database; and
When receiving an information registration request from the network, a search formula extraction procedure for searching the own device and the other data storage device, and extracting a search formula that can access sensor data from the search formula storage database;
It was carried out,
In the sensor data extraction procedure,
Receiving a search expression registration request including at least a search expression of the sensor data as the information registration request;
The search formula included in the search formula registration request matches only from the sensor data storage database of the own device and the sensor data storage database of all the data storage devices higher than the own device as the other data storage devices. Search for sensor data
Extracting sensor data accessible by the user from user information included in the search formula included in the search formula registration request and public condition information included in sensor data of a search result of the sensor data search function,
In the search expression extraction procedure,
Receiving a sensor data registration request including at least the sensor data as the information registration request;
The sensor data included in the sensor data registration request matches only from the search formula storage database of the own device and the search formula storage database of all the data storage devices lower than the self device as the other data storage devices. Search for the search expression you want to
A search expression that can access sensor data is extracted from public condition information held by the sensor data included in the sensor data registration request and user information included in the search expression of the search result of the search expression search function.
A data storage program characterized by that .

Images