JPH01255060A - Data output system - Google Patents

Abstract

PURPOSE:To provide safety with a high level and to prevent the possibility of outflow of data from being generated by performing not only the encipherment of the data, but the recording of a keyword which becomes a key at the time of decoding on a recording medium separately from that of the data. CONSTITUTION:A magnetic tape is set on a first output device 3 as the recording medium, and an IC card on a second output device 7 as the recording medium. The data such as a customer name to whom a DM is sent, a content, and a format, etc., are inputted and the keyword of the encipherment is inputted at an input device 1. An arithmetic controller 5 calls prescribed data from a data base 2, and performs the encipherment at an encipherment part 6 setting an inputted keyword as a cryptographic key. By performing such processing, the magnetic tape on which enciphered data is recorded and the IC card on which the keyword is recorded can be obtained. The keyword recorded on the IC card is the key at the time of performing the encipherment, and also, it becomes the key at the time of decoding at a bailee side. Therefore, it is possible to secure the safety with the high level by recording the enciphered data and the key word on separate recording media.

Description

[Detailed Description of the Invention] [Industrial Application Field] The present invention provides direct mail (hereinafter referred to as
It's called DM. ) etc., and particularly relates to a data output system that encrypts data to improve security.

[Conventional technology] It is common practice in financial and insurance companies such as life insurance companies and non-life insurance companies, as well as various credit companies and service industry companies to issue DMs based on customer data. The issuance of these documents is outsourced to printing companies, etc. The configuration of the system is shown in FIGS. 8 and 9.

FIG. 8 shows the processing performed on the commissioning side, in which 50 is an input device, 51 is a database, 52 is an arithmetic and control device, and 53
is the output device. The database 51 stores a large amount of customer data, and when the customer to send the DM, its contents, output format, etc. are input from the input device 50, the arithmetic and control device 52 inputs the items specified by the input device 50. data is retrieved from the database 51 and output to the output device 53 in a predetermined format. This output is normally performed by creating an image tape using magnetic tape (hereinafter referred to as MT) based on a format for high-speed printers.

Note that the above configuration can be easily implemented by using a host computer on the entrusting side.

FIG. 9 is a diagram showing the processing performed on the receiving side, where 54 is an input device and 55 is an output device. The image tape outputted in FIG. 8 is sent to the contract optical company by mail, transportation, etc., and is set in the input device 54. Thereby, the data recorded on the MT is outputted by the output device 55. This output device 55 is composed of, for example, an offline high-speed printer, and prints predetermined data on a predetermined paper in a predetermined format, performs post-processing such as inserting and sealing, and sends the DM.
is completed.

[Problem to be solved by the invention] However, in the conventional method, the MT created by the entrusting party is in the form of an image tape, so if it is stolen, the MT is usually used. MT
There has been a problem in that the recorded contents can be easily known by using the device. In other words, confidentiality protection was based on a relationship of trust between the outsourcer who created the data and the outsourcer who outputted the data. However, since security measures such as password methods or data encryption are adopted for data communication, it is possible to construct a data output system with high security by adopting such data communication methods. However, the transmitted and decrypted data remains in the hands of the recipient or user, and the customer data can be easily processed. Therefore, data communication means cannot be easily adopted in the data output system.

The present invention solves the above-mentioned problems, and aims to provide a data output system that has a high level of security and eliminates the possibility of data leakage.

[Means for Solving the Problems] In order to achieve the above object, the data output system of the present invention includes means for encrypting data stored in a database using a keyword and recording it on a first recording medium. , an encryption device comprising means for recording the keyword on a second recording medium; and a decryption apparatus comprising means for decrypting and outputting the encrypted data using the first and second recording media. It is characterized by consisting of a device.

[Operation] According to the present invention, the consignor encrypts the customer data necessary for issuing a DM using an appropriate keyword and records it on an appropriate recording medium, for example, MT, and further encrypts the customer data necessary for issuing a DM on an appropriate recording medium, such as MT, For example, the keyword used when encrypting the IC card is recorded. The trustee receives these two recording media and outputs the encrypted customer data offline.

[Example code] Examples will be described below with reference to the drawings.

FIG. 1 is a diagram showing one configuration example of an encryption device according to the present invention,
FIG. 2 is a diagram showing the configuration of an IC card, FIG. 3 is a diagram showing an example of the configuration of a decoding device, and FIG. 4 is a diagram showing a flowchart of a data output system according to the present invention.

Figure 1 shows the encryption device installed on the entruster's side.
is an input device, 2 is a database, 3 is a first output device,
4 is a data bus, 5 is an arithmetic control unit, 6 is an encryption unit, 7
is the second output device.

The entrustor first loads the first recording medium (
Hereinafter, MT will be taken as an example of the first recording medium. ), set the second recording medium (hereinafter, an IC card will be taken as an example as the second recording medium) in the second output device 7, and use the input device 1 to enter the name of the customer sending the DM, the contents, Input various data such as format, as well as keywords that are the key to encryption. The above processing is the preprocessing of process 20 in FIG. When the input of data and keywords is completed, the arithmetic and control device 5 reads predetermined data from the database 2 and encrypts it according to an algorithm determined by the encryption unit 6 using the input keyword as an encryption key. This is process 2 in Figure 4.
1, and through this processing, it is possible to obtain an MT on which encrypted data is recorded and an IC card on which keywords are recorded. The encrypted data is recorded in the MT set in the first output device 3, and the arithmetic control unit 5 records the keyword in the IC card set in the second output device 7.

This is the processing of process 22. M for this keyword
The most distinctive feature of the present invention is that it is recorded on an IC card, which is a recording medium different from T.T.

In other words, the keyword recorded on the IC card is the key for encryption as well as the key for decryption on the trustee's side. Correct decoding occurs only when the card is used. By recording the encrypted data and the keyword on separate recording media in this way, a high level of security can be ensured.

Note that the keyword can be arbitrarily determined to be, for example, up to 8 alphanumeric characters. As shown in FIG. 2, the IC card includes a calculation section 9, an encryption/decryption section 10, and a storage section 11.
The input keyword is encrypted by its own encryption algorithm stored in the encryption/decryption unit 10 under the control of the calculation unit 9 and stored in the storage unit 11 . Although this keyword encryption is performed to further enhance security, it is of course possible to store the keyword as is.

The above is the processing performed by the entruster, and the MT and IC card obtained through this processing are handed over to the entrustor for output. The trustee decrypts and outputs the encrypted data from the MT and the IC card, and the configuration for this purpose can be, for example, as shown in FIG. 3. In FIG. 3, 12 is a first input device, 13 is a second input device, 14 is a decoding unit, and 15 is an output device.

In this configuration, when MT is set in the first input device 12, the encrypted data is read out and the decryption unit 14 reads out the encrypted data.
is input. Furthermore, when the IC card is set in the second input device 13, the second input device 13 verifies whether the keyword recorded on the IC card is in a predetermined format. The decoder 1 decodes
Send to 4. Upon receiving these inputs, the decryption unit 14 uses the keyword inputted from the IC card 8 as a key to decode M
Decrypt the encrypted data input from T.

At this time, if the keyword is correct, that is, M
If you use an IC card that was created at the same time as MT, the correct data will be decrypted, but if you use a different IC card that was not created at the same time as MT, the keywords used for decryption will be different from those of the encryption. Since the keyword is different from the one originally used, completely meaningless data will be output.

The data decoded by the decoding unit 14 in this way is
Output device 15 for output processing of process 24 in FIG.
will be sent to. As the output device 15, it is preferable to use an offline non-impact kanji printer that employs a laser dry electrophotographic method. According to this, 1400 per minute
It is capable of printing as high as 0 lines, at high speed, and with a wide variety of output functions. When the output processing of the process 24 is completed, the post-processing of the process 25 is performed next. There are various forms of DM, such as those that are sealed, those that are postcards, and those that use labels to hide written information.Therefore, it is necessary to process the output list into the desired format, which requires post-processing. It is provided. For this purpose, the output device 15 is connected to a device that automatically encloses the DM, a device that cuts the DM to the size of a postcard, etc., as appropriate, depending on the form of the DM.

When the post-processing of process 25 is completed in this way, D
M is completed, and the data output process ends.

Note that in reality, there may be cases where security is not required so much, so in preparation for such cases, it is possible to output not only encrypted data but also a list from conventional image tapes by switching operations. Good.

Although the encryption/decryption method is not mentioned in the above description because it can be arbitrarily adopted, for example, the strip method shown in FIG. 5 or the DES method shown in FIG. 6 can be used. As shown in FIG. 5, in the strip method, when encrypting an original text 30, a substitution table is selected from a cipher table 32 according to instructions of an appropriately set encryption key 31, and substitution processing is performed according to a unique algorithm processing 33. 34
This method involves performing the following steps to obtain the encryption unit 35, and the encryption key 3
1. It is a highly confidential method in that only a person who knows the code table 32 and algorithm 33 can decipher it. Also, DES
The method is one of the encryption standards standardized in the United States.
An encrypted portion 44 is obtained by repeating transposition processing 42 and substitution processing 43 on the original text 40 using an appropriately set encryption key 41 16 times. This DES method does not have high confidentiality, but since the algorithm has been made public, it can be easily adopted.

Various other encryption/decryption methods are known, but
In either method, correct decoding cannot be performed unless the encryption key is known, and this encryption key is the keyword mentioned above.

In the data output system according to the present invention, only one type of encryption/decryption method may be employed, but multiple types of methods are prepared and the encryption/decryption method to be used is stored in the IC card along with a keyword. You may also do so.

The configurations shown in FIGS. 1 and 3 can be achieved by adding an encryption section and a decryption section to the conventional structure.

Although one embodiment of the data output method according to the present invention has been described above, the present invention is not limited to the above embodiment, and various modifications are possible. For example, with reference to Figure 1, it was explained that the MT and IC card are set in the encryption device at the same time, but if such a device is not possible due to cost, keywords can be written on the IC card using a handy terminal. It is good to go. As shown in FIG. 7, the handy terminal is capable of inputting alphabetic characters and numbers by operating keys on an input section 45, and input contents are displayed on a display section 46. Then, by setting the IC card in an IC card storage section (not shown) provided on the back surface and operating the input section 45, a keyword can be input.

In addition, as the first recording medium, in addition to MT, a magnetic disk, an optical disk, etc. can be used, and the second recording medium only needs to be able to record keywords.
Magnetic cards, optical cards, etc. can be used.

As the output device of the decoding section, in addition to a printer, any device that can be processed into a visible medium, such as a microfilm recording device or an optical disk recording device, can be used.

In addition, the scope of application of the data output system according to the present invention is not limited to customer data of insurance companies, but also to output of data that requires high security in government offices and various companies, or output of data that requires privacy protection. It can be applied to a wide range of areas.

[Effects of the Invention] As is clear from the above description, according to the present invention, not only data is encrypted, but also a keyword that is a key for decryption is recorded on a recording medium separate from the data. Because
It is extremely secure. Therefore,
Not only does it prevent duplication, but it is also extremely effective as a theft measure.

In addition, if the data output system is connected to other equipment or systems via a network,
Once the data is decrypted, it is possible to leak and process the data via a communication line, but in this data output system, all the equipment used on the contracted side is configured offline. Since it simply outputs data, it cannot process the data.

It goes without saying that printing out and subsequent processing of large amounts of data can be done in total.

[Brief explanation of the drawing]

FIG. 1 is a diagram showing a configuration example of an encryption device of a data output system according to the present invention, FIG. 2 is a diagram showing an IC card, and FIG. 3 is a diagram showing an example of a decryption device of a data output system according to the present invention. FIG. 4 is a diagram showing a flowchart of the data output system according to the present invention; FIG. 5 is a diagram explaining the strip method; FIG. 6 is a diagram explaining the DES method;
Figure 7 is a diagram showing an example of a handy terminal, Figure 8 is a diagram showing the configuration of the consignor side of a conventional data output system, and Figure 9 is a diagram showing the configuration of the consignor side of the conventional data output system. be. DESCRIPTION OF SYMBOLS 1... Input device, 2... Database, 3... First output device, 4... Data bus, 5... Arithmetic control section, 6... Encryption section, 7... second output device, 8.
・IC card, 9 ・Computation unit, 10 ・Encryption・
Decoding unit, 11...Storage unit, 12...First input device, 13...Second input device, 14...Decoding unit,
15... Output device. Applicant: Dai Nippon Printing Co., Ltd.

Claims (9)

[Claims] (1) means for encrypting data stored in a database using a keyword and recording it on a first recording medium;
an encryption device comprising means for recording the keyword on a second recording medium; and a decryption device comprising means for decrypting and outputting the encrypted data using the first and second recording media. A data output system comprising: (2) The data output system according to claim 1, wherein the first recording medium is a magnetic tape. (3) The data output system according to claim 1, wherein the second recording medium is an IC card. (4) The data output system according to claim 1, wherein the first and second recording media are magnetic tapes and IC cards, respectively. (5) The data output system according to claim 1, 2, 3 or 4, wherein the output means is an offline printer. (6) The data output system according to claim 1, 2, 3, 4 or 5, wherein the means for recording on the second recording medium is a handy terminal. (7) A data output method characterized by encrypting data using a keyword, decrypting the encrypted data using the keyword, and outputting the decrypted data. (8) An encryption system comprising means for encrypting data stored in a database using a keyword and recording it on a first recording medium, and means for recording the keyword on a second recording medium. conversion device. (9) Decrypt the encrypted data using a first recording medium on which the encrypted data is recorded and a second recording medium on which the keyword used during the encryption is recorded. A decoding device characterized in that it outputs a