JP6876226B2 - Content management system, server equipment and programs - Google Patents

Description

The present invention relates to a content management system, a server equipment and programs.

In a system that manages contents such as documents, measures are taken to protect the information contained in the contents from leakage. Patent Document 1 describes that a document stored in a document management system is encrypted before being stored. Patent Document 2 describes that an image format having a mechanism for encrypting a part of image data is adopted and only a necessary part is encrypted. Patent Document 3 describes that a specific area of a manuscript is masked, and information contained in the area is encoded and synthesized into the manuscript.

Japanese Unexamined Patent Publication No. 11-17915 Re-table 2008/146334 Japanese Unexamined Patent Publication No. 2011-151469

After the content is encrypted, it is impossible for any device other than the device that has the key required for decryption to handle the information contained in the content.
An object of the present invention is to provide a technique for managing encrypted content together with information related to the content while protecting confidential information contained in the content from leakage.

The content management system according to claim 1 of the present invention includes an encryption unit that generates a second content that encrypts the first content, and a specific unit that specifies information to be kept secret contained in the first content. , A concealment unit that generates the third content by performing a process for concealing the information to be concealed from the first content, and related information related to the third content based on the third content. The generation unit to be generated, the storage unit that stores the second content and the related information in association with each other, and the storage unit that receives the search request and satisfies the search condition specified in the search request are stored in the storage unit. An image that accepts an operation of searching from the inside and outputting the second content stored in association with the related information and downloading any one or more of the second contents stored in the storage unit. A display unit that displays a list of the above using the related information associated with each of the one or more second contents, and a selection of any of the images included in the list displayed on the display unit. and a receiving unit that receives the said output section, you output the second content corresponding to said selected image.

Content management system according to claim 2 of the present invention, in the structure according to claim 1, wherein the storage unit, the second content, and the third content, in association with the relevant information, the output The unit is characterized in that one or both of the second content and the third content are output according to the authority of the output destination.

In the content management system according to claim 3 of the present invention, in the configuration according to claim 1 or 2 , the specific unit conceals information that satisfies a predetermined condition contained in the first content. It is characterized by identifying it as information that should be used.

In the content management system according to claim 4 of the present invention, in the configuration according to any one of claims 1 to 3 , the specific unit is designated by the user included in the first content. The information is specified as the information to be kept secret.

The server device according to claim 5 of the present invention is a second content in which the first content stored in the client device is encrypted, and a process for concealing information to be concealed from the first content. The acquisition unit that acquires the three contents from the client device, the generation unit that generates the related information related to the third content based on the third content, and the second content and the related information are associated with each other. The storage unit that stores the content and the related information that receives the search request from the client device and satisfies the search condition specified in the search request are searched from the storage unit and stored in association with the related information. A list of an output unit that outputs the second content and an image that accepts an operation of downloading any one or more of the second contents stored in the storage unit is provided for each of the one or more second contents. a display unit for displaying with the relevant information associated with, and a receiving unit for receiving a selection of one of the images included in the list displayed on the display unit, the output unit selecting you output the second content corresponding to been the image.

The program according to claim 6 of the present invention is for concealing the second content in which the first content stored in the client device is encrypted and the information to be concealed from the first content in the computer of the server device. A step of acquiring the processed third content from the client device, a step of generating related information related to the third content based on the third content, and the second content and the related information. The second content stored in association with the related information by receiving the search request from the client device, searching for the related information satisfying the search condition specified in the search request, and storing the related information in association with the related information. And a list of images that accept the operation of downloading any of the stored one or more of the second contents, using the related information associated with each of the one or more of the second contents. The step of displaying the image on the display unit and the step of accepting the selection of any of the images included in the list displayed on the display unit are executed , and the image is selected when the selection of the image is accepted. This is a program for causing the computer to output the second content corresponding to the image.

According to the inventions according to claims 1, 5 and 6, a technique for managing encrypted content together with information related to the content while protecting confidential information contained in the content from leakage. Can be provided , and the user can be made to select one of the contents by using the related information corresponding to each of the one or more encrypted contents as a clue.
According to the invention of claim 2, the encrypted content and the processed content for concealing the information to be concealed can be output according to the authority of the output destination .
According to the invention of claim 3 , the information can be specified without the user specifying the information to be kept secret.
According to the invention of claim 4 , the information to be kept secret can be specified regardless of the format of the information contained in the content.

The figure which shows the whole structure of the content management system which concerns on one Embodiment of this invention. The block diagram which shows the structure of the server apparatus and the client apparatus which concerns on this embodiment. The figure which shows the structure of the index table which concerns on the same embodiment. The figure which shows the structure of the related information table which concerns on the same embodiment. A sequence chart showing a process when uploading content executed by the content management system according to the same embodiment. The figure which shows an example of the content handled by the content management system which concerns on the same embodiment. A flowchart showing a process of generating related information executed by the content management system according to the same embodiment. A sequence chart showing a process of outputting encrypted contents executed by the content management system according to the same embodiment. The figure which shows the display example of the screen which displays the list of contents which concerns on the same embodiment. A sequence chart showing a process of outputting confidentially processed content executed by the content management system according to the same embodiment. The figure which shows the functional structure of the content management system which concerns on modification 2 of this invention.

[Embodiment]
<Structure>
FIG. 1 is a diagram showing an overall configuration of a content management system 1 according to an embodiment of the present invention. The content management system 1 includes a server device 10 and a plurality of client devices 20. FIG. 1 shows three of the plurality of client devices 20, client devices 20A, 20B, and 20C. Each of the server device 10 and the plurality of client devices 20 is connected to the communication line 100 by wire or wirelessly. The client device 20 is an information processing device such as a smartphone, a tablet terminal, or a personal computer. The communication line 100 includes a communication network such as the Internet.

The server device 10 manages the contents. The content is content that includes information that is visible to the user. The content of the present embodiment represents a document, more specifically, a form used for business of a company, a public institution, or the like. The client device 20 uploads the content managed by the server device 10 and downloads the content managed by the server device 10. In this embodiment, the client device 20A is used by a user who uploads content to the server device 10. The client devices 20B and 20C are used by a user who has the authority to download contents from the server device 10.

FIG. 2 is a block diagram showing the configurations of the server device 10 and the client device 20. The server device 10 includes a control unit 11, a storage unit 12, and a communication unit 13 as hardware elements. The control unit 11 controls each unit of the server device 10. The control unit 11 includes, for example, a processor including a CPU (Central Processing Unit), a ROM (Read Only Memory), and a RAM (Random Access Memory). The CPU reads the program stored in the ROM or the storage unit 12 into the RAM and executes it. The CPU uses the RAM as a work area to perform various controls. The control unit 11 further performs image processing. The control unit 11 has an image processing circuit such as an ASIC (Application Specific Integrated Circuit). The storage unit 12 stores data. The storage unit 12 has a non-volatile storage device such as a hard disk device. The communication unit 13 connects to the communication line 100 and communicates via the communication line 100. The communication unit 13 has, for example, a modem.

The client device 20 includes a control unit 21, a storage unit 22, a communication unit 23, an operation unit 24, and a display unit 25 as hardware elements. The control unit 21 controls each unit of the client device 20. The storage unit 22 stores data. The communication unit 23 connects to the communication line 100 and communicates via the communication line 100. The control unit 21, the storage unit 22, and the communication unit 23 have the same configuration as, for example, the hardware elements of the same name in the server device 10. The operation unit 24 receives the operation performed by the user. The operation unit 24 has, for example, a button and a touch sensor. The display unit 25 displays an image. The display unit 25 has, for example, a liquid crystal display.

The control unit 21 of the client device 20 includes an encryption unit 211, a specific unit 212, a concealment unit 213, a transmission unit 214, a first acquisition unit 215, a display control unit 216, a reception unit 217, and a second unit. The acquisition unit 218 and the decoding unit 219 are included. The control unit 11 of the server device 10 includes an acquisition unit 111, a generation unit 112, a storage control unit 113, and an output unit 114.
In the client device 20, the encryption unit 211 encrypts the original content (original content) stored in the storage unit 22 to generate the encrypted content. The encryption unit 211 supplies the encrypted content to the transmission unit 214. The original content is content that has not yet been encrypted and is an example of the first content of the present invention. The encrypted content is the content after the original content is encrypted, and is an example of the second content of the present invention.

The specific unit 212 identifies information to be kept secret contained in the original content. Such information is hereinafter referred to as "confidential information". The specific unit 212 notifies the confidential unit 213 of the specified confidential information.

The concealment unit 213 performs concealment processing on the original content to generate concealed content. The concealment process is a process for concealing the confidential information specified by the specific unit 212. The concealed content is an example of the third content of the present invention. The concealment unit 213 supplies the concealed content to the transmission unit 214.

The transmission unit 214 transmits the encrypted content and the confidential content to the server device 10 via the communication unit 23.

In the server device 10, the acquisition unit 111 acquires the encrypted content received by the communication unit 13 and the confidential content. The acquisition unit 111 supplies the encrypted content and the concealed content to the storage control unit 113, and supplies the concealed content to the generation unit 112.

The generation unit 112 generates related information related to the concealed content based on the concealed content. The generation unit 112 supplies the related information to the storage control unit 113. The related information includes information obtained based on the confidentialized content.

The storage control unit 113 stores the encrypted content, the confidential content, and the related information in the storage unit 12. This association is performed by writing data to the index table TB1 and the related information table TB2 stored in the storage unit 12.

FIG. 3 is a diagram showing the configuration of the index table TB1. The index table TB1 is a table that stores the "index", the "file path of the encrypted content", and the "file path of the confidential content" in association with each other. The index is information indicating an index of the content, and is information unique to the content. The index is, for example, the name of the content. The file path of the encrypted content is information indicating the location of the encrypted content stored in the storage unit 12. The file path of the concealed content is information indicating the location of the concealed content stored in the storage unit 12. When the storage control unit 113 stores the encrypted content and the concealed content in the storage unit 12, the storage control unit 113 associates these contents by updating the index table TB1.

FIG. 4 is a diagram showing the configuration of the related information table TB2. The related information table TB2 is a table that stores the "index" and the "related information" in association with each other. Related information here includes "applicant", "application date", and "thumbnail". The applicant indicates the name of the person making the application. The application date indicates the date when the application is made. The thumbnail shows a reduced image of the concealed content. A file path indicating a thumbnail storage location is stored in the related information table TB2. When the storage unit 113 stores the related information, the storage control unit 113 updates the related information table TB2 to associate the encrypted content and the confidential content with the related information.

It will be described back to FIG.
The output unit 114 outputs the encrypted content stored in the storage unit 12 to the client device 20. Further, the output unit 114 transmits data for displaying a list of one or more encrypted contents stored in the storage unit 12 (hereinafter referred to as “list data”) to the client device 20 via the communication unit 13. Output. The list data is data for displaying one or more encrypted contents and related information associated with each of the one or more encrypted contents.

In the client device 20, the first acquisition unit 215 acquires the list data received by the communication unit 23. The first acquisition unit 215 supplies the list data to the display control unit 216.

The display control unit 216 causes the display unit 25 to display an image. The display control unit 216 displays a list of encrypted contents using related information based on the list data. The reception unit 217 accepts the selection of any encrypted content according to the operation performed by the user on the operation unit 24. The reception unit 217 notifies the server device 10 of the encrypted content for which the selection has been accepted via the communication unit 23.

In the server device 10, the output unit 114 outputs (transmits) the selected encrypted content to the client device 20 via the communication unit 13 in response to the notification from the reception unit 217. The output unit 114 further has a function of outputting the concealed content. The output unit 114 outputs one or both of the encrypted content and the confidentialized content according to the authority of the output destination.

In the client device 20, the second acquisition unit 218 acquires the encrypted content or the concealed content received by the communication unit 23. The second acquisition unit 218 supplies the acquired encrypted content to the decryption unit 219. In addition, the second acquisition unit 218 supplies the confidentialized content to the display control unit 216. The decryption unit 219 decrypts the encrypted content. The decryption unit 219 decrypts the content when it has a decryption key corresponding to the encryption key used for encryption. The decoding unit 219 supplies the decoded content to the display control unit 216. The display control unit 216 causes the display unit 25 to display the decrypted content or the confidentially processed content acquired by the second acquisition unit 218.

<Operation>
(A: Uploading content)
FIG. 5 is a sequence chart showing a process when uploading the content executed by the content management system 1. FIG. 6 is a diagram illustrating the contents handled by the content management system 1. Hereinafter, the case where the client device 20A uploads the content will be described.
In the client device 20A, the display control unit 216 reads the original content from the storage unit 22 and displays it on the display unit 25 (step S1). The display control unit 216 reads out the original content specified by the operation performed by the user on the operation unit 24. Here, it is assumed that the original content D1 shown in FIG. 6 has been read. The original content D1 includes information (characters and symbols in this case) entered by the user, such as the applicant name, the application date, and the identification number unique to the applicant. The identification number is, for example, a number given to each citizen and should not be known to a person other than a very limited person such as the person himself / herself or his / her place of employment.

It is assumed that the user performs an operation instructing the operation unit 24 to upload the original content to the server device 10. In this case, the encryption unit 211 encrypts the original content D1 (step S2). The encryption unit 211 generates the encrypted content D2 by encrypting the original content D1 with the possession encryption key. As shown in FIG. 6, the encrypted content D2 is, for example, content in which the information included in the original content D1 is encrypted.

Next, the specifying unit 212 specifies the confidential information included in the original content D1 (step S3). Here, the specific unit 212 specifies the confidential information according to the operation performed by the user on the operation unit 24. For example, the user performs an operation of designating information to be kept secret while looking at the original content D1 displayed on the display unit 25. Here, it is assumed that the user has specified the "identification number" and "12345678903" of the original content D1.

The concealment unit 213 performs concealment processing on the original content D1 to generate concealed content (step S4). The concealment process includes image processing that replaces information specified by the user with other information. This image processing is, for example, a process of replacing an area in which information to be kept secret is displayed with a single color area. As a result, the concealed content D3 shown in FIG. 6 is generated. In the concealed content D3, the information existing in the area M is concealed. Further, the concealed content D3 is a content having the same file format as the original content D1. Therefore, the identification number cannot be read from the concealed content D3, but the information other than the identification number can be read. In other words, in the concealed content D3, the identification number cannot be extracted from the concealed content.
The concealment process may be a process other than the image processing described above as long as it is a process that makes it impossible to extract the concealment information from the original content.

The transmission unit 214 transmits the encrypted content D2 generated in step S2 and the confidential content D3 generated in step S4 to the server device 10 via the communication unit 23 (step S5).

In the server device 10, the acquisition unit 111 acquires the encrypted content D2 and the concealed content D3 via the communication unit 13 (step S6). The storage control unit 113 stores the acquired encrypted content D2 and the concealed content D3 in the storage unit 12 (step S7). In step S7, the acquisition unit 111 associates the index "form A" with the encrypted content file path "/ tmp / ango / docuA" and the concealed content file path "/ tmp / mask / docuA". "And is stored.
The index may be specified based on the information embedded in the content, or may be specified by other methods.

(B: Generation of related information)
FIG. 7 is a flowchart showing a process of generating related information executed by the content management system 1.
In the server device 10, the generation unit 112 acquires the concealed content (step S11). The generation unit 112 acquires the content that has not yet generated related information among the confidentially processed contents stored in the storage unit 12. Here, it is assumed that the generation unit 112 acquires the concealed content D3 described with reference to FIG.
The timing of acquiring the confidentially processed content is not particularly limited. This timing may be, for example, when the confidentialized content is uploaded, or may be a predetermined time.

Next, the generation unit 112 generates related information based on the concealed content D3 acquired in step S11 (step S12). The related information includes, for example, information extracted from the confidentialized content. Information such as the applicant name and application date) is extracted from the concealed content D3. Since the identification number included in the original content D1 is not included in the concealed content D3, it is not extracted in step S12. The relevant information further includes thumbnails of the confidentialized content.
The related information may include other information generated based on the confidentialized content. As such related information, there is information regarding the attributes of the confidentialized content.

When the related information is generated by the generation unit 112, the storage control unit 113 stores the related information in the storage unit 12 (step S13). In step S13, the storage control unit 113 stores the applicant name, the application date, and the file path of the thumbnail in the index table TB1 in association with the index of the confidentially processed content D3.
Through the above processing, the server device 10 can manage the encrypted content and the confidentially processed content in association with the related information.

(C: Download encrypted content)
FIG. 8 is a flowchart showing a process of downloading encrypted contents executed by the content management system 1. Hereinafter, a case where the client device 20B downloads the encrypted content and displays the information contained in the content will be described.
In the client device 20B, the reception unit 217 accepts an operation of designating an index or a search condition when downloading the encrypted content (step S21). If the index of the content to be downloaded is known, the user performs an operation to specify it. When specifying search conditions, the user performs an operation to specify related information such as the application company name and application date. When the reception unit 217 receives the operation in step S21, the reception unit 217 transmits a search request for the content for which the index or the search condition is specified to the server device 10 via the communication unit 23 (step S22).

When the output unit 114 receives the search request via the communication unit 13, it determines whether or not the index is specified in the search request (steps S23 and S24). Here, it is assumed that the search condition related to the related information is specified in the search request. In this case, the output unit 114 determines “NO” in step S24. In this case, the output unit 114 searches the index of the encrypted content whose related information satisfies the search condition with reference to the index table TB1 and the related information table TB2, and shows a list of the searched encrypted contents. The list data is transmitted to the client device 20 via the communication unit 13 (step S25). When the first acquisition unit 215 acquires the list data in the client device 20B, the display control unit 216 causes the display unit 25 to display the content list (steps S26 and S27).

FIG. 9 is a diagram illustrating a screen SC that displays a list of contents displayed on the display unit 25. As shown in FIG. 9, the screen SC displays one or more encrypted contents satisfying the search condition in association with each related information of the one or more encrypted contents. In the example of FIG. 9, the thumbnail IM1 of the concealed content D3, the display area R1 of the related information generated from the concealed content D3, and the download button B1 are associated with each other. In the lower row, the thumbnail IM2 of the concealed content corresponding to the form B, the display area R2 of the related information generated from the concealed content, and the download button B2 are associated with each other. The download button is a button operated by the user when downloading the content.

When the user of the client device 20B selects the encrypted content to be downloaded, the user operates the corresponding download button. In response to this operation, the reception unit 217 notifies the server device 10 of the index of the content to be downloaded via the communication unit 23 (step S28). Here, it is assumed that the download button B1 is operated by the user.

In the server device 10, the output unit 114 acquires the notified index (step S29). The output unit 114 reads the encrypted content associated with the acquired index from the storage unit 12 (step S30). Here, the output unit 114 refers to the index table TB1 to specify the file path of the encrypted content associated with the index "form A", and reads out the encrypted content D2. Then, the output unit 114 outputs (transmits) the encrypted content D2 to the client device 20B via the communication unit 13 (step S31).

When the second acquisition unit 218 acquires the encrypted content D2 in the client device 20B, the decryption unit 219 decrypts the encrypted content D2 (steps S32 and S33). The display control unit 216 causes the display unit 25 to display the decrypted content (step S34). The content displayed in step S34 is the same as the original content D1 described with reference to FIG.

If it is determined in step S24 that the index is specified in the search request (step S24; YES), the output unit 114 proceeds to step S29. Then, the output unit 114 acquires the index and reads the encrypted content associated with the index from the storage unit 12. Then, the output unit 114 outputs the encrypted content to the client device 20B via the communication unit 13 (steps S30 and S31). When the index is specified in this way, it is not necessary to send the content list.

(D: Download of confidential content)
The client device 20C does not have the authority to download the encrypted content, but has the authority to download the confidentially processed content. In this case, the process is executed according to the procedure described below.
FIG. 10 is a flowchart showing a process of downloading the content executed by the content management system 1. The description of the process common to downloading encrypted content will be simplified as appropriate.
In the client device 20C, the reception unit 217 accepts an operation of designating an index or a search condition when downloading the encrypted content (step S41). When the reception unit 217 receives this operation, the reception unit 217 transmits a search request for the content for which the index or the search condition is specified to the server device 10 via the communication unit 23 (step S42). When the output unit 114 receives the search request via the communication unit 13, it determines whether or not it has the authority to download the confidentially processed content (steps S43 and S44). This determination is performed, for example, by authentication using the authentication information (for example, ID or password) of the client device 20C, but a specific method does not matter. Then, if the download authority is given (step S44; YES), the output unit 114 determines whether or not the index is specified in the search request (step S45). Here, it is assumed that the search condition for the related information is specified in the search request. In this case, the output unit 114 determines “NO” in step S45.

Then, the output unit 114 refers to the index table TB1 and the related information table TB2, searches for the index of the confidentially processed content whose related information satisfies the search condition, and searches the list data based on the search result. , Is transmitted to the client device 20 via the communication unit 13 (step S46). When the first acquisition unit 215 acquires the list data in the client device 20C, the display control unit 216 causes the display unit 25 to display the list of the confidentialized contents (steps S47 and S48). The list of confidentially processed contents is displayed, for example, on a screen having the same format as the list of encrypted contents described with reference to FIG. The user of the client device 20C operates the download button of the concealed content to be downloaded from the list of the concealed content. In response to this operation, the reception unit 217 notifies the server device 10 via the index of the confidentially processed content to be downloaded and the communication unit 23 (step S49).

In the server device 10, the output unit 114 acquires the notified index (step S50). The output unit 114 reads the concealed content associated with the acquired index from the storage unit 12 (step S51). Then, the output unit 114 outputs (transmits) the concealed content D3 to the client device 20C via the communication unit 13 (step S52).

In the client device 20C, the second acquisition unit 218 acquires the concealed content D3 (step S53). The display control unit 216 causes the display unit 25 to display the acquired concealed content D3 (step S54).

If it is determined in step S45 that the index is specified in the search request (step S45; YES), the output unit 114 proceeds to step S50. Then, the output unit 114 acquires the index, reads the concealed content associated with the index from the storage unit 12, and outputs the content to the client device 20C via the communication unit 13 (step S51, step S51, S52).

As described above, in the content management system 1, the confidentialized content is uploaded from the client device 20A to the server device 10 separately from the encrypted content. Therefore, even when the server device 10 manages the encrypted content by its own device, the server device 10 can generate related information from the confidentially processed content and manage the encrypted content together with the encrypted content. Further, since the confidentialized content does not include the confidential information, the related information also does not include the confidential information. Therefore, the confidential information is not leaked from the server device 10 or the client devices 20B and 20C. Further, the concealed content is generated by performing image processing on the original content. Therefore, the client devices 20A and 20C can handle the content with general-purpose software without executing software for handling the content in a special format.

[Modification example]
The present invention may be implemented in a form different from the above-described embodiment. Moreover, you may combine each of the modification shown below.
(Modification example 1)
The identification unit 212 may specify the confidential information without the operation of designating the confidential information of the user. The specific unit 212 specifies information included in the content that satisfies the conditions in advance as confidential information. For example, an area in which confidential information exists may be defined for the content. This definition is made, for example, by embedding information in the content itself or by a definition file separate from the content. The specific unit 212 uses the information existing in the defined area as confidential information. Further, the specific unit 212 may extract a keyword from the original content, determine the degree of confidentiality of the information from the keyword, and specify the confidential information. When the identification unit 212 extracts, for example, a keyword indicating an identification number, the identification unit 212 identifies information existing within a range determined from the position of the keyword as confidential information.

(Modification 2)
Among the functions described in the above-described embodiment, the server device 10 may have a part of the functions possessed by the client device 20, or the client device may have a part of the functions possessed by the server device 10. 20 may have. Further, the content management system 1 may include a device other than the server device 10 and the client device. Then, this device may have a part of the functions possessed by the server device 10 or the client device 20. For example, if the acquisition unit 111 is configured to acquire the encrypted content, the original content may be encrypted by a device other than the client device 20. In short, the content management system 1 has a functional configuration as shown in FIG. The storage unit 311 of the content management system 1 stores the first content. The first content is, here, unencrypted content. The encryption unit 312 encrypts the first content and generates the second content. The identification unit 313 specifies the confidential information included in the first content. The concealment unit 314 performs concealment processing on the first content to generate the third content. The generation unit 315 generates related information related to the third content based on the third content. The storage control unit 316 associates the second content with the related information and stores it in the storage unit 317.

(Modification example 3)
The hardware configuration and functional configuration of the server device 10 and the client device 20 are not limited to the configurations described in the above-described embodiment.
A part of the configuration and operation of the content management system 1 described in the above-described embodiment may be omitted. For example, the confidentialized content may be used at least for generating related information. When the concealed content is not used for the purpose of downloading, the server device 10 does not have to store and manage the concealed content in the storage unit 12.

Each function realized by the control unit 11 or the control unit 21 of the above-described embodiment may be realized by one or a plurality of hardware circuits, or is realized by the arithmetic unit executing one or a plurality of programs. Alternatively, it may be realized by a combination of these. When the function of the control unit 11 or the control unit 21 is realized by using a program, this program is a magnetic recording medium (magnetic tape, magnetic disk (HDD (Hard Disk Drive), FD (Flexible Disk), etc.)). , It may be provided in a state of being stored in a computer-readable recording medium such as an optical recording medium (optical disk or the like), an optical magnetic recording medium, or a semiconductor memory, or may be distributed via a network. Further, the present invention can be grasped as a method of managing contents performed by a computer.

1 ... Content management system, 10 ... Server device, 20, 20A, 20B, 20C ... Client device, 11,21 ... Control unit, 111 ... Acquisition unit, 112, 315 ... Generation unit, 113, 316 ... Storage control unit, 114 ... Output unit, 12, 22, 311, 317 ... Storage unit, 13, 23 ... Communication unit, 24 ... Operation unit, 25 ... Display unit, 100 ... Communication line, 211, 312 ... Encryption unit, 212, 313 ... Specific Units, 213, 314 ... Concealment unit, 214 ... Transmission unit, 215 ... First acquisition unit, 216 ... Display control unit, 217 ... Reception unit, 218 ... Second acquisition unit, 219 ... Decryption unit.

Claims (6)

An encryption unit that generates the second content that encrypts the first content,
A specific part that identifies information to be kept secret contained in the first content,
A concealment unit that generates a third content by performing a process for concealing the information to be concealed on the first content, and a concealment unit.
A generation unit that generates related information related to the third content based on the third content, and a generation unit.
A storage unit that stores the second content in association with the related information,
An output unit that accepts a search request, searches the storage unit for the related information satisfying the search conditions specified in the search request, and outputs the second content stored in association with the related information. ,
A list of images that accept an operation to download any one or more of the second contents stored in the storage unit is displayed by using the related information associated with each of the one or more of the second contents. Display and
A reception unit that accepts the selection of any of the images included in the list displayed on the display unit, and
Equipped with a,
The output unit, a content management system that outputs a second content corresponding to the selected said image. The storage unit
The second content and the third content are stored in association with the related information.
The output unit
The content management system according to claim 1, wherein one or both of the second content and the third content are output according to the authority of the output destination. The specific part is
The content management system according to claim 1 or 2 , wherein the information included in the first content that satisfies a predetermined condition is specified as the information to be kept secret. The specific part is
The content management system according to any one of claims 1 to 3 , wherein the information specified by the user included in the first content is specified as the information to be kept secret. Acquisition unit that acquires the second content, which is the encrypted first content stored in the client device, and the third content, which has been processed to conceal the information to be concealed from the first content, from the client device. When,
A generation unit that generates related information related to the third content based on the third content, and a generation unit.
A storage unit that stores the second content in association with the related information,
The search request is received from the client device, the related information satisfying the search condition specified in the search request is searched from the storage unit, and the second content stored in association with the related information is output. Output section and
A list of images that accept an operation to download any one or more of the second contents stored in the storage unit is displayed by using the related information associated with each of the one or more of the second contents. Display and
A reception unit that accepts the selection of any of the images included in the list displayed on the display unit, and
Equipped with a,
The output unit, the server device you output the second content corresponding to said selected image. On the computer of the server device,
The step of acquiring the second content obtained by encrypting the first content stored in the client device and the third content subjected to processing for concealing the information to be concealed from the first content from the client device. ,
A step of generating related information related to the third content based on the third content, and
A step of associating and storing the second content and the related information,
A step of receiving a search request from a client device, searching for the related information satisfying the search condition specified in the search request, and outputting the second content stored in association with the related information.
A list of images that accept the operation of downloading any of the stored one or more of the second contents is displayed on the display unit using the related information associated with each of the one or more of the second contents. Steps and
A step of accepting the selection of any of the images included in the list displayed on the display unit, and
And at the same time
When the selection of the image is accepted, the second content corresponding to the selected image is output so as to be output.
A program for the computer to execute.

Images