JP5857862B2 - Information processing apparatus and program - Google Patents

Description

  The present invention relates to an information processing apparatus and a program for decrypting an encrypted file.

  When distributing electronic data, encryption is performed to ensure security. Decryption of the encrypted electronic data is usually possible by inputting a decryption key (password), but in order to ensure higher security, further conditions are imposed on the decryption.

  For example, a user who is permitted to operate the electronic data and a location where the operation is permitted to the electronic data are determined in advance, and whether or not the user who tries to release the encryption is a permitted user is authenticated. There has been proposed a system capable of decrypting only at a location where an authorized user is permitted by checking whether or not the current location of the user is an authorized location (see Patent Document 1).

JP 2008-15669 A JP 2007-213467 A

  In the case of the method disclosed in Patent Document 1, for example, in a situation where an administrator or the like does not monitor, after decrypting the electronic data at a place where the authorized user is permitted, There is a risk that a third party who is not permitted to browse the electronic data after decryption will secretly view it on the screen or print it out. For this reason, whether or not security is maintained becomes weak depending on the ethics of the user who is permitted to decrypt.

  The present invention is intended to solve the above problem, and manages the decryption of an encrypted file so that unauthorized information leakage from a user permitted to decrypt to a third party is prevented. An object of the present invention is to provide an information processing apparatus and a program that can be used.

  The gist of the present invention for achieving the object lies in the inventions of the following items.

[1] A plurality of user terminals that can be permitted to be decrypted, and a header portion in which a plurality of communication user terminals that are a part of the plurality of user terminals and are a confirmation destination of permission for decryption are registered. , An input unit for inputting an encrypted file obtained by encrypting the main body unit separately from the header unit ;
A short-range wireless communication unit for short-range wireless communication with a user terminal;
Attempt to communicate by the said plurality of communication user terminals that are registered in the header portion short-range wireless communication unit of the encrypted file input from the input unit, when it can communicate with the plurality of communication user terminal, wherein A decryption permission unit that permits decryption of the main body of the encrypted file;
A decryption unit that decrypts the main body of the encrypted file when decryption is permitted by the decryption permission unit, and generates a decrypted file;
An information processing apparatus characterized by comprising:

In the above invention, when it is possible to communicate with a plurality of communication user terminals that are a part of a plurality of user terminals registered in the encrypted file and are a confirmation destination of the permission of decryption by short-range wireless communication, The encrypted file is decrypted with the decryption permitted. When communication is possible with multiple communication user terminals by short-range wireless communication, there are a plurality of other users near the user terminal that is trying to decode, so the user who is trying to decode these Accordingly, it is possible to prevent unauthorized actions such as having a third party browse.

[2] It further has a location detection unit that detects the location of the device itself,
The header portion includes location information of a location where decoding is permitted,
The decryption permission unit does not permit the decryption when the location detected by the location detection unit does not match the location indicated by the location information included in the header portion [1] ].

  In the above invention, being in a specified specific place is set as a weighting condition for decoding.

[3] The decoding permission unit, when the own apparatus does not match any of the user terminals that are registered in the header portion is characterized in that it does not allow the decryption [1] or [2] The information processing apparatus described.

  In the above invention, the decoding is performed by the specified specific information processing apparatus as a weighting condition for decoding.

[4] After the decryption the file by the decrypt unit is generated repeats the confirmation can be communicated by the said plurality of communication user terminal wireless communication unit, wherein when it becomes impossible to confirm that can communicate, The information processing apparatus according to any one of [1] to [3], further including a monitoring unit that deletes the decrypted file.

In the above-described invention, it is monitored whether or not a state in which short-range wireless communication with a plurality of specific communication user terminals is continued after decryption. If not, the file obtained by decryption is Forcibly deleted.

[5] The decryption permission unit communicates with the plurality of communication user terminals by the short-range wireless communication unit when the own device matches any of the plurality of communication user terminals registered in the encrypted file. The information processing apparatus according to any one of [1] to [4], wherein the information processing apparatus is excluded from a condition that permits decoding of the main body .

In the above invention, when the device is one of a plurality of communication user terminals registered in the encrypted file, the fact that it can communicate with other communication user terminals by short-range wireless communication is a condition for decryption. Not included.

[6] The information processing apparatus according to any one of [1] to [5], wherein a condition for permitting decryption of the main body unit of the encrypted file is displayed on a display unit.

  In the above invention, the user is notified of the decoding conditions. As a result, the user can recognize what action should be taken for decoding.

[7] The system further includes an encrypted file generation unit that generates the encrypted file in response to designation of the plurality of user terminals, the plurality of communication user terminals, and the main body unit. [1] Thru | or the information processing apparatus as described in any one of [6].

  In the above invention, in addition to decryption, a function of generating an encrypted file is also provided.

[8] The plurality of user terminals, and the plurality of communication user terminals, said receiving a body portion, and a specified location information of where decoding is permitted, the encrypted file to generate the encrypted file The information processing apparatus according to [2], further including a generation unit.

[9] The information processing apparatus according to [8], wherein a plurality of the location information can be specified.

[10] The information processing according to any one of [7] to [9], wherein the encrypted file generation unit automatically sets its own device to one of the communication user terminals. apparatus.

[11] An information processing apparatus including a short-range wireless communication unit,
A program that functions as the information processing apparatus according to any one of [1] to [10].

  According to the information processing apparatus and the program according to the present invention, it is possible to prevent unauthorized information leakage from a user permitted to decrypt to a third party.

It is explanatory drawing which shows the structural example of the meeting material management system using the portable terminal as an information processing apparatus which concerns on this invention. 1 is a block diagram showing a schematic configuration of a mobile terminal 10. It is a figure which shows the mode of the authentication by the example of a data structure of the encryption file in the case of one permission area, and near field communication. It is a figure which shows the mode of the authentication by the data structure example and near field communication of an encryption file when there are two permission areas. It is a flowchart which shows the flow of encryption file production | generation. It is a figure which shows an example of the encryption detailed setting screen which an encryption file production | generation application displays on the display / operation part of a portable terminal. It is a flowchart which shows the flow of a decoding of an encryption file. It is a flowchart which shows the continuation of FIG. It is a figure which shows an example of the decoding condition display screen which displays the area conditions and companion conditions required for a decoding displayed on the display part of a portable terminal. It is a flowchart which shows a monitoring process. It is a flowchart which shows a deletion process.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

  FIG. 1 shows a configuration example of a conference material management system 5 using a portable terminal 10 as an information processing apparatus according to the present invention. The portable terminal 10 is carried by each participant of the conference and is used for creating, distributing, browsing, and the like of conference materials. The conference material management system 5 includes a plurality of mobile terminals 10 possessed by members who participate in the conference.

  The mobile terminal 10 has a short-range wireless communication function capable of communicating only in a short distance such as infrared communication or Bluetooth (registered trademark) in addition to a function of communicating via a network such as a wireless LAN (Local Area Network). .

  In the conference material management system 5, for example, the encrypted file 30 obtained by encrypting the conference material is created by the mobile terminal 10A of the user A, and this is distributed to the mobile terminals 10 of the participants in the conference through the wireless LAN. In the case of FIG. 1, for example, the encrypted file 30 is distributed from the mobile terminal 10A of the user A to the mobile terminal 10B of the user B, the mobile terminal 10C of the user C, and the mobile terminal 10D of the user D.

Decryption of the distributed encrypted file 30 is as follows:
(1) User condition: Decoding at the terminal of a user authorized to decrypt (hereinafter referred to as authorized user),
(2) Area condition: Decoding at a location where decoding is permitted (hereinafter referred to as a permitted area),
(3) Accompanying conditions; capable of communicating with a plurality of specific terminal devices (hereinafter referred to as communication user terminals) by short-range wireless communication;
Permitted when all three conditions are satisfied.

  For example, an encrypted file in which each participant of the conference is set as an authorized user, the first conference room is set as an allowed area, and the mobile terminal 10A of user A and the mobile terminal 10B of user B are set as communication user terminals. Assume the case of decrypting. At this time, for example, the user C who is one of the authorized users can communicate with each of the mobile terminal 10A of the user A and the mobile terminal 10B of the user B and the mobile terminal 10C of the user A by short-range wireless communication in the first conference room. Only in the case that the encrypted file is decrypted by the own terminal 10C, the conference material can be browsed.

  As described above, when the mobile terminal 10C of the user C is capable of short-range wireless communication with the mobile terminal 10A of the user A and the mobile terminal 10B of the user B (when the companion condition is satisfied), the user A and the user are close to the user C. Since B exists, the user C receives monitoring from these users A and B. Therefore, an illegal act in which the user C secretly browses the decrypted conference material is prevented.

  FIG. 2 shows a schematic configuration of the mobile terminal 10. The mobile terminal 10 includes a processing unit 11 that comprehensively controls the operation of the mobile terminal 10, a display / operation unit 12, a network communication unit 13, a short-range wireless communication unit 14, a medium connection unit 15, an audio The output unit 16, the storage unit 17, the GPS (Global Positioning System) information acquisition unit 18 and the like are connected to each other via a bus.

  The processing unit 11 includes a CPU (Central Processing Unit), a ROM (Read Only Memory), a RAM (Random Access Memory), and the like as main parts. Each operation is performed as the mobile terminal 10 by the CPU executing a program stored in the ROM.

  The display / operation unit 12 is a display unit such as a liquid crystal display (LCD), and a touch panel unit that is provided on the screen of the display unit and detects a position coordinate of a location touched by a user's finger or pen. And other operation switches. The display / operation unit 12 has a function of displaying various operation screens, setting screens, application screens, decrypted files, and the like, and a function of accepting user operations from switches and touch panels.

  The network communication unit 13 performs a function of communicating with an external device through a network such as a wireless LAN.

  The short-range wireless communication unit 14 communicates with another mobile terminal 10 or the like by a communication method capable of communication only at a short distance such as infrared communication or Bluetooth (registered trademark). The communicable distance is preferably limited to a distance that allows one user to monitor the behavior of the other user, and is preferably limited to, for example, 3 to 5 meters.

  An information storage medium such as a memory card is detachably connected to the medium connection unit 15. The sound output unit 16 has a function of outputting touch sound, sound, and the like.

  The storage unit 17 has a function of storing various data. The storage unit 17 stores an encrypted file, decrypted electronic data, and the like. In addition, information for specifying the mobile terminal 10 is registered in the storage unit 17. For example, an IP address, a user ID, a unique identification name given to the mobile terminal 10 and the like are stored in a nonvolatile manner.

  The GPS information acquisition unit 18 functions to detect the location of the mobile terminal 10. Here, position information (latitude, longitude) indicating the current position of the mobile terminal 10 is acquired by GPS.

  The processing unit 11 functions as a reverse geocoding processing unit 21 and an electronic data access unit 22 by executing various programs and application programs.

  The reverse geocoding processing unit 21 performs a function of converting the positional information based on the latitude and longitude acquired by the GPS information acquisition unit 18 into address notation. Here, based on the position reference information provided by the Ministry of Land, Infrastructure, Transport and Tourism, the latitude / longitude indicated by the position information is converted into an address that is finely expressed to the level of a large letter / machichome address.

  The electronic data access unit 22 has a function of creating the encrypted file 30, a function of determining whether or not to permit the decryption of the encrypted file 30, a function of decrypting the encrypted file 30, and a decryption thereof after decryption. The function to monitor the converted file is fulfilled. The electronic data access unit 22 includes an encryption unit 23 that encrypts header information in which electronic data to be encrypted and decryption conditions are written, and the like, and a decryption unit that executes a decryption process. 24, and a monitoring unit 25 for monitoring the decrypted file.

  FIG. 3 shows an example of the data structure of the encrypted file 30 and the state of authentication by short-range wireless communication when there is one permitted area. The encrypted file 30 shown in FIG. 1A is composed of a header information part 31 and an electronic data part 32.

  The header information part 31 and the electronic data part 32 are individually encrypted.

  The header information part 31 describes the decoding conditions. That is, permission area information 31a indicating a permission area, permission user information 31b indicating a permission user, and communication user terminal information 31c indicating a communication user terminal are described. Further, in the header information part 31, access group information 31d indicating an access group name is described. An access group is a group in which a plurality of users are registered as one group. In this example, it is assumed that a conference material is distributed, and the access group is composed of a plurality of authorized users who gather in one conference room and hold the conference.

  In this example, the authorized user information 31b is information (terminal name, IP address, MAC address, user ID, etc.) of the mobile terminal 10 used by the authorized user. Here, information of the mobile terminals 10A to 10D used by the user A, the user B, the user C, and the user D is registered as the permitted user information 31b.

  The permitted area information 31a indicates the address of a place where decoding is permitted. In addition to the address, any information can be used as long as the location is specified by latitude and longitude.

  The communication user terminal information 31c indicates information (terminal name, IP address, MAC address, user ID, etc.) that identifies the communication user terminal. Here, mobile terminals 10A and 10C of user A and user C are registered as communication user terminals.

  When the communication user terminal is a terminal to be decrypted, decryption is permitted if only the “user condition” is satisfied among the three conditions described above. It is not required to satisfy the “area condition” and “accompanying condition”. That is, if it is a communication user terminal, decoding is permitted even if it is not in the permitted area or is not communicable with a plurality of communication user terminals by short-range wireless communication.

  FIG. 3B schematically shows the accompanying conditions under which the decryption of the encrypted file 30 in FIG. The arrow in the figure. It shows that near field communication is established. When decoding is performed by the mobile terminals 10B and 10D of the user B or the user D, it is accompanied by the decoding that the mobile terminals 10A and 10C of the user A and the user C that are communication user terminals are communicating by short-range wireless communication. It becomes a condition. In addition, a companion condition is not imposed on the user A and the user C which are communication user terminals.

  FIG. 4 shows an example of the data structure of the encrypted file 30 and the state of authentication by short-range wireless communication when there are two permitted areas. The encrypted file 30 includes a header information part 31 and an electronic data part 32.

  The header information section 31 describes the decryption conditions for the access group 1 and the decryption conditions for the access group 2. In the access group 1, the address of the conference room 1 is described as the permitted area information 31a. Moreover, the information of the portable terminals 10A to 10D of the user A, the user B, the user C, and the user D is registered as the permitted user information 31b. Moreover, the information of the mobile terminals 10A and 10B of the user A and the user B is registered as the communication user terminal information 31c.

  In the access group 2, the address of the conference room 2 is described as the permitted area information 31a. Moreover, the information of the portable terminals 10E-10H of the user E, the user F, the user G, and the user H is registered as the permitted user information 31b. Moreover, the information of the portable terminals 10E, 10F, and 10G of the users E, F, and G is registered as the communication user terminal information 31c.

  FIG. 4B schematically shows the accompanying conditions in the access group 1. In the access group 1, when decoding is performed by the mobile terminals 10C and 10D of the user C or the user D, the mobile terminal 10A of the user A and the mobile terminal 10B of the user B, which are communication user terminals, can communicate with each other by short-range wireless communication. It becomes a companion condition for decryption. When decoding is performed by the mobile terminals 10A and 10B of the user A and the user B, which are communication user terminals, no accompanying condition is imposed.

  FIG. 4C schematically shows the accompanying conditions in the access group 2. In the access group 2, when decoding is performed by the mobile terminal 10H of the user H, it is possible to communicate with the mobile terminals 10E, 10F, and 10G of the user E, the user F, and the user G that are communication user terminals by short-range wireless communication. It becomes condition of companion. When decoding is performed by the mobile terminals 10E, 10F, and 10G of the user E, the user F, and the user G, which are communication user terminals, no accompanying condition is imposed.

  In the above example, the companion condition is that short-distance wireless communication is possible with a specific number of conference participants, but the mobile terminals 10 of all conference participants (excluding the person) and the short-range The companion condition may be that wireless communication is possible.

  Next, the generation process of the encrypted file 30 will be described.

  The encrypted file 30 is generated by the mobile terminal 10 that executes an encrypted file generation program (also referred to as an encrypted file generation application).

  FIG. 5 shows the flow of generating an encrypted file. FIG. 6 shows an example of an encryption detail setting screen 50 displayed on the display / operation unit 12 of the mobile terminal 10 by the encrypted file generation application.

  First, the encrypted file generation application is activated on the mobile terminal 10 (step S101). The subsequent processing is performed by the encrypted file generation application. The activated encrypted file generation application displays an encryption detail setting screen 50 as shown in FIG. 6 on the display unit of the display / operation unit 12 of the mobile terminal 10 and accepts various settings relating to encryption (step S102). To S109).

  Specifically, the electronic data file to be encrypted is selected (step S102). For example, a file name is input to the encrypted file setting field 51 at the top of the encryption detailed setting screen 50 in FIG. On the encryption detail setting screen 50, it is also possible to select a file to be encrypted from a pull-down list, or to specify a file by tracing the tree structure of the folder.

  Next, input of information for generating the header information unit 31 as shown in FIGS. 3 and 4 is received. First, selection (setting) of one access group is received (step S103). 6 receives the setting of the access group group name in the access group column 52. It is also possible to select an access group registered in advance from a pull-down list.

  Next, input of information of a plurality of portable terminals 10 which are communication user terminals in the selected access group is received (steps S104 and S105). Here, any one of a user ID, an IP address, a MAC address, and a host name (name of the mobile terminal 10) is input as information on the communication user terminal. In the encryption detailed setting screen 50 of FIG. 6, information regarding a plurality of communication user terminals is input and set in the communication user terminal information input field 53. It is also possible to select from a pull-down list of the mobile terminal 10 registered in advance.

  Next, information on the permitted area is input or acquired (step S106). For example, when a conference room is a permitted area, location information such as the address of the conference room is acquired or received as permitted area information. The acquisition method is, for example, when the current location is present, and the GPS information acquired from the GPS information acquisition unit 18 (GPS location information) is reverse geocoded by the reverse geocoding processing unit 21 to acquire the address. . On the encryption detail setting screen 50 in FIG. 6, information on the permission area is manually input in the manual input field 54. When the automatic acquisition button 55 is pressed, the current address is automatically acquired using GPS.

  Next, regarding this access group, input of information of one or a plurality of portable terminals 10 which are transmission destinations of the encrypted file is received (steps S107 and S108). In FIG. 6, the information is input to the transmission destination setting field 56. The terminal information input here is the mobile terminal 10 of the authorized user, and is registered in the authorized user information 31b in the header information part 31 of the encrypted file 30 in FIGS. Here, the communication user terminal is automatically set as the transmission destination of the encrypted file.

  When another access group is further set (step S109; Yes), the process returns to step S103 and the process is continued.

  When all the necessary access groups have been set (step S109; No), specifically, when the OK button 57 is pressed on the encryption detailed setting screen 50 in FIG. The encrypted file 30 as shown in FIG. 3 and FIG. 4 is generated based on the information input to (Step S110). Here, the header information unit 31 is generated and encrypted, and the electronic data file is separately encrypted, and the encrypted file 30 is generated by integrating the encrypted files. After the generation is completed, the encrypted file generation application ends (step S111), and a series of operations related to the generation of the encrypted file ends (End).

  In addition to the above, the setting of the transmission type of the encrypted file in the file transmission type setting field 58 of FIG. 6 is also accepted.

  The generated encrypted file 30 is transmitted from the mobile terminal 10 that has performed the encryption to the mobile terminal 10 set as the transmission destination via a network, a server, or the like. Note that the encrypted file generation application may automatically set its own terminal that is performing encryption as one of the communication user terminals that is the confirmation destination of permission for decryption.

  Next, decryption of the encrypted file 30 will be described.

  The decryption of the encrypted file 30 is performed by executing a program for decrypting an encrypted file (also referred to as a decrypted file generating application) in the mobile terminal 10. Note that the encrypted file 30 to be decrypted is input by being received by the network communication unit 13 from another portable terminal 10 through a LAN or the like or by being taken in from an information storage medium connected to the medium connection unit 15.

  FIG. 7 shows the flow of decryption of the encrypted file. First, an instruction to open an encrypted file is received from the user on the mobile terminal 10 (step S201). This instruction is received by, for example, double-clicking the encrypted file. When the instruction is received, the decrypted file generation application is activated (step S202). The subsequent processing is performed by the decrypted file generation application.

  First, the decrypted file generation application decrypts the header information portion 31 of the encrypted file 30 to be decrypted (step S203). If this decryption fails (step S204; No), an error message indicating “file open error in header information section” is displayed on the mobile terminal 10 (step S205), and then the header information decrypted halfway. The data generated during the decryption such as the unit 31 is deleted (FIG. 8, step S226), the decrypted file generating application is closed (FIG. 8, step S227), and the process is terminated (End).

  If the decoding of the header information unit 31 is successful (step S204; Yes), all the terminal information registered as the permitted user information 31b is acquired from the header information unit 31 (step S206). It is checked whether or not the acquired terminal information matches the terminal information of the terminal itself (step S207). If there is no match (step S207; No), a predetermined error message is sent to the mobile terminal 10. Is displayed (step S208), and then the decrypted header information part 31 is deleted (FIG. 8, step S226), the decrypted file generation application is further closed (FIG. 8, step S227), and the process is terminated (step S227). End).

  If the acquired terminal information matches the terminal information of the own terminal (step S207; Yes), the information of the access group to which the own terminal belongs is acquired from the header information unit 31 (step S209). Further, all terminal information registered as the permitted user information 31b of this access group is acquired (step S210). Further, information of all communication user terminals registered as communication user terminal information 31c of this access group is acquired (step S211).

  Next, it is checked whether or not the own terminal is a communication user terminal of the access group (step S212). If the own terminal is a communication user terminal (step S212; Yes), the electronic data portion of the encrypted file to be decrypted 32 is decrypted (step S213), and the process proceeds to a monitoring process described later. In this way, if the own terminal is a communication user terminal, decoding is permitted without any area condition or accompanying condition being imposed. It should be noted that the decryption keys of the header information unit 31 and the electronic data unit 32 are determined in advance, and the decrypted file generation application performs decryption using the decryption key.

  If the own terminal is not a communication user terminal (step S212; No), it is confirmed whether the area condition is satisfied. Specifically, information on the current position of the terminal is acquired (step S214). Here, the GPS information acquisition unit 18 acquires GPS information of the current position of the terminal itself. The acquired GPS information is converted into address notation by the reverse geocoding processing unit 21 (step S215).

  Next, the address of the access group is acquired from the header information unit 31 (step S216). Then, details of conditions (area condition and accompanying condition) necessary for decrypting the encrypted file are displayed on the display unit of the mobile terminal 10 (step S217).

  FIG. 9 shows an example of a decoding condition display screen 60 that displays the area conditions and accompanying conditions necessary for decoding displayed on the display unit of the mobile terminal 10. This figure corresponds to a decryption condition display screen 60 displayed when decrypting the encrypted file 30 of FIG. The user can check the area condition and accompanying condition necessary for decoding by looking at the decoding condition display screen 60. If these conditions are not satisfied, the user may perform the decoding operation again after performing a location move or the like and satisfying the conditions.

  Returning to FIG. First, it is confirmed whether the area condition is satisfied. That is, it is determined whether the address of the current location of the mobile terminal 10 acquired in step S215 matches the address indicated by the permitted area information 31a of the access group acquired in step S216 (step S218). In the case (step S218; No), an error message indicating that the area condition is not satisfied is displayed (step S219). Then, the decrypted header information part 31 is deleted (step S226), the decrypted file generation application is closed (step S227), and the process is ended (End).

  If they match (step S218; Yes), the accompanying conditions are confirmed. That is, it is confirmed that short-range wireless communication can be performed with all communication user terminals indicated by the communication user terminal information 31c of the access group. Specifically, short-range wireless communication is attempted with all communication user terminals registered in the communication user terminal information 31c of the access group (steps S220 and S223; No), and communication with all the communication user terminals is possible ( When it is confirmed that the communication result is OK (normal communication was successful) (step S222; Yes) and the number of communication user terminals whose communication result is OK is plural (step S221; Yes) (step S221; Yes) S224; Yes) Since the companion condition is satisfied, and all the conditions necessary for decryption are satisfied, the electronic data portion 32 of the encrypted file is decrypted (step S228). After decryption, the processing (monitoring processing) in FIG. 10 is further performed.

  When short-range wireless communication is not possible with any communication user terminal registered in the communication user terminal information 31c of the access group (step S221; No or step S222; No), and a communication user terminal that has been capable of short-range wireless communication is If there is only one (step S224; No), an error message indicating that the companion condition is not satisfied is displayed (step S225), the decrypted header information part 31 is deleted (step S226), and the decrypted file is displayed. The generated application is closed (step S227), and the process is terminated (End).

  Next, the monitoring process will be described. The monitoring process is a part of the decrypted file generation application, and is executed when decrypted in steps S213 and S228. In the monitoring process, it is monitored that the accompanying condition is continuously satisfied, and the decrypted electronic data part 32 is forcibly deleted when the accompanying condition is not satisfied.

  In the monitoring process of FIG. 10, first, it is checked whether or not the own terminal is a communication user terminal (step S241). If the own terminal is a communication user terminal (step S241; Yes), the monitoring process is terminated. When the own terminal is a communication user terminal, monitoring is not performed because the accompanying condition is not originally set as a decoding condition.

  If the own terminal is not a communication user terminal (step S241; No), the establishment of the companion condition is confirmed every certain time (for example, 30 seconds). That is, a certain amount of time has passed (step S242), and near field communication is attempted with the communication user terminal of the access group (step S243). If communication is possible (step S244; Yes), it is checked whether there is an uncommunication communication user terminal, and if there is (step S245; Yes), the process returns to step S243 and close to the uncommunication communication user terminal. Try range wireless communication. If it is confirmed that short-range wireless communication can be performed with all communication user terminals (step S245; No), the process returns to step S242 and continues.

  If any one of the communication user terminals cannot perform near field communication (step S244; No), an error message indicating that the companion condition is not satisfied is displayed (step S246), and the decoded header information The unit 31 and the electronic data unit 32 are deleted (steps S247 and S248), the decrypted file generation application is closed (step S249), and the process is terminated (End).

  Next, the deletion process performed when receiving a deletion instruction from the user will be described. Deletion processing is also performed as part of the decrypted file generation application.

  FIG. 11 shows details of the deletion process. When receiving a file deletion instruction (or an instruction to close a file) from the user, the decrypted file generation application executes the deletion process. First, the decrypted header information part 31 is deleted (step S301), and the decrypted electronic data part 32 is further deleted (step S302). Then, the decrypted file generation application is closed (step S303), and the process is terminated.

  As described above, in the conference material management system 5 according to the present embodiment, in order to decrypt the encrypted file 30, it is possible to communicate with all the portable terminals 10 of a plurality of specific users by short-range wireless communication. ) Must be satisfied. In other words, since it cannot be decrypted unless a plurality of specific users are close together, unauthorized information such as stealing the eyes of these users and showing the decrypted data to a third party or printing it. Leakage is prevented.

  In addition, since the companion condition is continuously monitored after decryption and the decrypted data is forcibly deleted when the companion condition is not satisfied, the decrypted data is always specified after the decryption. It can be viewed only under the supervision of a plurality of users, and the above-mentioned unauthorized information leakage can be prevented more reliably.

  In addition, since a plurality of access groups can be registered in one encrypted file 30, the same encrypted file 30 can be used in common for a plurality of permitted areas, and the trouble of generating an encrypted file for each location is reduced. Reduced and centralized management of encrypted files.

  Since no area condition or companion condition is imposed on the communication user terminal, the user of the communication user terminal can be decrypted anywhere or by one person. Thereby, in the same encrypted file 30, the conditions for decryption can be set for each user type. For example, a terminal device such as an owner of a file to be encrypted or an administrator having browsing privileges may be set as a communication user terminal.

  The embodiment of the present invention has been described with reference to the drawings. However, the specific configuration is not limited to that shown in the embodiment, and there are changes and additions within the scope of the present invention. Are also included in the present invention.

  In the embodiment, encryption and decryption are performed by the mobile terminal 10 which is an information processing apparatus, but may be performed by an information processing apparatus such as a personal computer, for example. Moreover, although the example applied to the meeting material management system 5 was demonstrated, it is not limited to this.

  In the embodiment, in addition to the companion condition, the user condition and the area condition are imposed. However, if the companion condition is included, it is not necessary to impose all these conditions. For example, the companion condition may be only, or It is good also as only two conditions, companion conditions and user conditions. A combination of a companion condition and another condition (for example, date and time) may be used as a decoding condition.

  In the embodiment, the address is the place information indicating the permission area. However, the latitude / longitude, GPS information, and other position coordinates in a specific coordinate system may be used. Furthermore, a place name may be used as long as information such as an address and latitude / longitude can be acquired from the place name (XX Building, Company A first conference room, etc.).

  In the embodiment, it is only necessary to be able to perform short-distance wireless communication with a communication user terminal. However, it may be configured to confirm that a specific designated user is using the communication user terminal or to obtain consent. For example, when the mobile terminal 10A is a communication user terminal, it may be conditional on being able to perform short-range wireless communication with the mobile terminal 10A while the user A is logged in to the mobile terminal 10A. Further, for example, when the mobile terminal 10C of the user C who is an authorized user requests the mobile terminal 10A which is a communication user terminal to perform decryption permission by short-range wireless communication, a predetermined screen is displayed on the mobile terminal 10A. When the user A performs a consent operation, a consent notification may be transmitted to the mobile terminal 10C of the user C, and the companion condition relating to the communication user terminal 10A may be established by receiving the consent notification. .

  In the embodiment, it is a companion condition that it is possible to communicate with all of a plurality of designated communication user terminals by short-range wireless communication, but when it is possible to communicate with some of a plurality of designated communication user terminals The companion condition may be satisfied. For example, the communication user terminals for four people may be specified, and the companion condition may be established when short-distance wireless communication with any two of the communication user terminals can be performed.

DESCRIPTION OF SYMBOLS 5 ... Meeting material management system 10, 10A-10D ... Portable terminal 11 ... Processing part 12 ... Display / operation part 13 ... Network communication part 14 ... Short-range wireless communication part 15 ... Medium connection part 16 ... Audio | voice output part 17 ... Memory | storage part DESCRIPTION OF SYMBOLS 18 ... GPS information acquisition part 21 ... Reverse geocoding process part 22 ... Electronic data access part 23 ... Encryption part 24 ... Decryption part 25 ... Monitoring part 30 ... Encrypted file 31 ... Header information part 31a ... Permit area information 31b ... Permitted user information 31c ... Communication user terminal information 31d ... Access group information 32 ... Electronic data part 50 ... Encryption detailed setting screen 51 ... Encryption file setting field 52 ... Access group field 53 ... Communication user terminal information input field 54 ... Manual input Field 55 ... Automatic acquisition button 56 ... Transmission destination setting field 57 ... OK button 58 ... File transmission type setting field 60 ... Decryption condition display screen

Claims (11)

A header portion in which a plurality of user terminals that can be permitted to be decrypted and a plurality of communication user terminals that are a part of the plurality of user terminals and that are confirmation destinations of decryption permission are registered; An input unit for inputting an encrypted file in which the main unit is encrypted separately from the unit ,
A short-range wireless communication unit for short-range wireless communication with a user terminal;
Attempt to communicate by the said plurality of communication user terminals that are registered in the header portion short-range wireless communication unit of the encrypted file input from the input unit, when it can communicate with the plurality of communication user terminal, wherein A decryption permission unit that permits decryption of the main body of the encrypted file;
A decryption unit that decrypts the main body of the encrypted file when decryption is permitted by the decryption permission unit, and generates a decrypted file;
An information processing apparatus characterized by comprising: It further has a location detection unit that detects the location of its own device,
The header portion includes location information of a location where decoding is permitted,
The decryption permission unit does not permit the decryption when the location detected by the location detection unit does not match the location indicated by the location information included in the header unit. The information processing apparatus according to 1. Said decoding permission unit, the information processing apparatus according to claim 1 or 2 in the case where the information processing apparatus does not match any of the user terminals that are registered in the header portion is characterized in that it does not allow the decryption . Wherein after said decoding files by decrypt unit is generated repeats the confirmation that can communicate the plurality of communication user terminals by the wireless communication unit, wherein when it is no longer possible to confirm that it can communicate, the decoding The information processing apparatus according to claim 1, further comprising a monitoring unit that deletes the file. The decryption permission unit can communicate with the plurality of communication user terminals by the short-range wireless communication unit when the own device matches any of the plurality of communication user terminals registered in the encrypted file. The information processing apparatus according to any one of claims 1 to 4, wherein the information processing apparatus is excluded from a condition for permitting decoding of the main body . The information processing apparatus according to claim 1, wherein a condition for permitting decryption of the main body of the encrypted file is displayed on a display unit. The encrypted user generator according to claim 1, further comprising: an encrypted file generator that generates the encrypted file in response to designation of the plurality of user terminals, the plurality of communication user terminals, and the main body . The information processing apparatus according to any one of the above. Wherein a plurality of user terminals, wherein a plurality of communication user terminal, and the body portion receives a specified location information of where decoding is permitted, the encryption file generation unit which generates the encrypted file The information processing apparatus according to claim 2, further comprising: The information processing apparatus according to claim 8, wherein a plurality of pieces of the location information can be designated. The information processing apparatus according to any one of claims 7 to 9, wherein the encrypted file generation unit automatically sets its own apparatus to one of the communication user terminals. An information processing device equipped with a short-range wireless communication unit,
A program that functions as the information processing apparatus according to any one of claims 1 to 10.

Images