JPH03246647A - Security level rewriting processing system - Google Patents

Abstract

PURPOSE:To make it possible to refer necessary data when necessary, to improve the elasticity of the system and to secure the safeness of data by providing the system with a level rewriting part, and when a level is a prescribed value, rewriting the level. CONSTITUTION:When the input of a personal ID 3, the specification of data 8 and the rewriting of the level 9 of the data 8 are instructed from a terminal 1, the level rewriting processing part 6 compares a level 4 corresponding to the personal ID 3 with the level 9 corresponding to the data 8. When the level 4 is more than the level 9 as the compared result, the level 9 is changed (rewritten) to a high or low level in accordance with a situration, a user (personal ID 3) range capable of referring the corresponding data 8 can be changed. Consequently, the elasticity of the system can be improved without lossing the safeness of data.

Description

[Detailed Description of the Invention] [Summary] To improve the flexibility of the system without compromising security regarding a security level rewriting processing method in a distributed database that reads specified data when a set personal ID is input. The purpose is to make it possible.

A security processing unit that sets a level corresponding to a personal ID and a level corresponding to data, and checks whether or not reference to the data is permitted, and a level rewrite processing unit that rewrites the level corresponding to the data. , the security processing unit performs the check based on the two levels, and the level rewriting processing unit receives an instruction from the terminal when the level corresponding to the personal ID is equal to or higher than the level corresponding to the data. The level corresponding to the data is configured to be rewritable according to the data.

[Industrial application field]

The present invention relates to a security level rewriting processing method,
More specifically, the present invention relates to a security level rewriting processing method in a distributed database that reads specified data when a set personal ID is input.

In database systems, some kind of security method is employed to maintain the confidentiality of data.

[Conventional technology]

FIG. 7 is an explanatory diagram of the prior art, showing a conventional security system.

In FIG. 7, 1 is a terminal, 20 is a database, 21
is the personnel mask file, 22 is the terminal management file, 23
is DASD.

According to the method shown in FIG. 7(A), the personal IDs of users who are permitted to use the system are registered in the personnel mask file 21 in advance. Then, it is checked whether or not the individual In input by the user from the terminal l exists in the one-person mask file 21.

According to the method shown in FIG. 7(B), tasks (resources such as usable application programs) are limited for each terminal 1, and the contents are registered in advance in the terminal management file 22. Based on the terminal ID of the accessed terminal 1, the terminal management file 22 is used to check whether the service requested by the terminal 1 is restricted.

According to the method shown in FIG. 7(C), an access code is predetermined for each DASD 23 and set in the DASD 23 as firmware. Then, the access code input by the user from the terminal 1 is checked to see if it matches the firmware of the DASD 23.

In this way, conventionally, one individual ID, terminal ID, or access code is used as a security check condition.

[Problem to be solved by the invention]

According to the prior art described above, it is difficult to change the check conditions once set.

That is, in the case of the method shown in FIG. 7(A), it is necessary to rewrite the personnel mask file 21 in order to change the check conditions.

However, it is impossible for the user to rewrite the personnel mask file 21, and therefore, the only option is for example to be rewritten by the system administrator.

Therefore, there is a problem in that the system does not have the flexibility to provide the user with the necessary information when he or she needs it. Another problem is that it takes time to rewrite the personnel mask file 21.

In the case of the method shown in FIG. 7(B), since the terminal management file 22 is changed in order to change the business restrictions, the system lacks flexibility for the same reason as the above case, and it takes time to make changes. In the case of the method shown in FIG. 7(C), changing the access code requires changing the firmware set in the DASD 23, that is, changing the DASD 23 itself. There are problems in that it lacks flexibility, takes time to change, and involves changing hardware.

An object of the present invention is to provide a security level rewriting processing method that makes it possible to increase the flexibility of a system without compromising security.

[Means to solve the problem]

FIG. 1 is a diagram illustrating the principle of the present invention and shows a data processing system according to the present invention.

In FIG. 1, 1 is a terminal, and 2 is a personal ID section.

3 is a personal ID, 4 is a level of the personal ID, 5 is a security processing section, 6 is a level rewrite processing section, 7 is a file (or database), 8 is data, and 9 is a level corresponding to data 8.

At the terminal 1, the user inputs his/her personal ID3 manually.

It is also used to specify data 8 to be referenced.

Personal ID section 2 corresponds to 1 personal ID3.

Stores the preset level 4.

A file (or database) 7 stores data 8 and a corresponding preset level 9.

The security processing unit 5 checks whether or not reference to the data 8 is permitted. That is, when a predetermined personal ID 3 is input from the terminal 1, reference to the data 8 specified from the terminal 1 is allowed.

The level rewriting processing unit 6 rewrites the level 9 corresponding to the data 8 in a predetermined case.

[For production]

When the personal ID 3 is input and the data 8 to be referenced is specified from the terminal 1, the security processing unit 5 compares the level 4 corresponding to the personal ID 3 and the level 9 corresponding to the data 8. And based on the results of the comparison,
If level 4 is higher than or equal to (greater than or equal to) level 9.

The personal ID 3 is allowed to refer to the data 8.

On the other hand, from the terminal 1 input 2 the personal ID 3 and specify the data 8,
When an instruction to rewrite the level 9 of the data 8 is issued, the level rewrite processing section 6 compares the level 4 and the level 9. Based on the comparison result, if level 4 is equal to or higher than level 9, level 9 is rewritten in accordance with the instruction.

According to the above, the security of data 8 in file (or database) 7 can be maintained by using level 4 set for each individual ID 3 and level 9 set for each data 8 as check conditions. I can do it.

On the other hand, by changing (rewriting) the preset level 9 higher or lower depending on the situation, the range of users (individual ID 3) who can refer to the corresponding data 8 can be changed. This allows users to obtain and provide the necessary information when they need it, increasing the flexibility of the system. This rewriting of level 9 is performed by the level rewriting processing unit 6, so there is no burden on the system administrator or user, and the time required for rewriting is short.
Since this can only be done by the personal ID 3 with level 4, which is level 9 or higher, the security of the data 8 will not be compromised.

〔Example〕

FIG. 2 is a diagram showing the configuration of the embodiment.

10 is a network.

Terminal 1 (1-1 to 1-4) is connected to network 10
are connected to each other via a computer network to form a computer network. The terminals 1-1 to 1-4 are independent computers each equipped with a central processing unit and a main memory. Each of the terminals 1-1 to 1-4 also has a file (or database) 7.
-1 to 7-4. The file 7-1 of a certain terminal 1-1 is.

It can also be used from other terminals 1-2 to 1-4.

The same applies to the other files 7-2 to 7-4. This system thus constitutes a two-distributed database system.

In this distributed database system, file 7-
In order to maintain the safety of the data in terminals 1 to 7-4, a security check is performed in each of terminals 1-1 to 1-4. For this purpose, each of the terminals 1-1 to 1-4 includes a security processing section 5. Also, each terminal 1-
The personal ID sections 1 to 14 can be mutually referenced from other terminals. For example, when a certain terminal 1-1 receives a request to reference the file 7-1 from another terminal 1-2, the security processing unit 5 of the terminal 1-1 performs a check. The personal ID section 2 of the terminal 1-2 that is the source of the reference request is referenced. When reference to the data 8 in the file 7-1 is permitted, the data 8 is read from the file 7-1 and sent from the terminal 1-1 to the terminal 1-2 via the network 10.

FIG. 3 is a diagram showing the configuration of the embodiment.

11 is a screen editing processing section, 12 is a display buffer, 13 is a reading/writing section, and 14 is a level checking section.

81 is a pattern screen (file), 82 is actual data (file), 91 is a level corresponding to the pattern screen 81,
92 is a level corresponding to the actual data 82.

The data 8 of the file 7 includes, for example, a pattern screen 81 that defines the frame of the screen of the terminal 1, and actual data 82 that is displayed on the a side (constituting the screen). A corresponding level 91 is set in advance for each pattern screen 81, and a corresponding level 92 is set in advance for each actual data 82.

The continuous output/writing unit 13 reads or writes data 8 in the file 7 .

The level check department worker 4 checks the level 91 of the pattern screen 81 designated as the data 8 to be referenced and the level 4 of the individual ID 3 to which this is to be referenced. That is, the level 91 is extracted from the file 7 of the own terminal via the read/write section 13 in accordance with the specification from the terminal l.

Depending on the input from terminal 1, the individual I of any terminal 1
Level 4 corresponding to individual ID 3 is extracted from D section 2.

Then, level 91 and level 4 are compared. If level 4 is level 91 or higher.

The level check unit 14 allows the individual ID 3 to refer to the pattern screen 81. That is, pattern screen 8
1 is read out via the read/write section 13 and stored in the display buffer 12.

In addition, when the actual data 82 is specified as the data to be referenced, the level check unit 14 performs the same process using the level 92. In other words, when the level 4 is equal to or higher than the level 92, the actual data 82 is displayed. The data is stored in the buffer 12.

The data stored in the display buffer 12 is edited as one screen by the one-screen editing processing section 11 and then displayed on the screen of the terminal 1.

Apart from the above, the level rewriting processing unit 6 is activated by a rewriting instruction from the terminal 1, and rewrites level 92 of the actual data 82, in particular, of the level 9 of the data 8.

For this purpose, the following processing is performed.

The corresponding level 9 is checked for the level 92 of the actual data 82 designated as the data 8 to be rewritten and the level 4 of the individual ID 3 requesting rewriting. That is, in the same manner as described above, level 4 and level 92 are extracted and compared. When level 4 is level 92 or higher, level rewriting processing section 6.

Rewrite level 92 to the specified new level.

Note that it goes without saying that level 91 can be rewritten as needed.

In addition, the level check section 1 extracts and compares the level.
4, and the level rewriting processing unit 6 may perform the rewriting based on the result.

In addition, the level check section 14 and the level rewriting processing section 6
may be provided outside the security processing unit 5, or may be called by the security processing unit 5 to perform predetermined processing.

Next, CA using the system shown in Figures 1 to 3
L (Computer-assisted rear
ning) will be explained using FIGS. 4 to 6.

In FIG. 4, 15 is an actual data level section.

16 is a pattern screen level section, and 17 is a CAL screen.

Now, teacher A, student B, and student C are each using terminal 1-1.1.
It is assumed that the CAL system will be used from -2 and 1-3.

As shown in FIG. 4(A), teacher A, student B, and student C each have roolJ as individual ID3.

r002'' and ro03J. Personal ID DrO01J
, ro02'' and r003J level 4.

'AJt rBJ and 'C', respectively.

Personal ID3. The user name and level 4 are associated with each other and are used as the personal ID of each terminal 1-1 to 14.
Registered in Section 2.

All levels 4 and 9 (91, 92).

"A" is the highest, and the following grades are assigned in descending order.

CAL Hyakumenkumen 17 For example, as shown in Figure 4 (B), the title ("Mathematics Test 1st Year J") 17-1. Question display area 172 for displaying questions to students, for students to input answers. Answer input area 17-3. Nine question display areas 17 including correct answer display areas 17 to 4, etc. for displaying correct answers to students.
- within 2.

A specific "problem" will be displayed. A specific "answer" is displayed in the correct answer display area 174.

On the other hand, an answer is entered by the student and displayed in the answer input area 17-3.

Such a CAL screen 17 is as shown in FIG. 4(C).
, Screen T D rGo 1 J , rGo 2J
The pattern screen 81 of the 0-screen IDrCOIJ, which is composed of the three pattern screens 81 of the
It consists of a title 17-1, an answer input area (frame only) 17-3, etc. The pattern screen 81 of the screen IDrGO2J is a 0 screen I consisting of a correct answer display area 17-4 and a specific "answer".
The pattern screen 81 of DrCO3J has 9 question display area 17-
2 and specific r-problems. Screen IDC or pattern screen 81) rGOl'', rGo2'' and rGO3J
The levels 91 are rC, , r71, respectively. J and "C". The screen ID and level 91 are registered in the pattern screen level section 16 in association with each other.

The pattern screen level section 16 is provided in the file 7 in which the pattern screen 81 exists.

In addition, the parts that make up the CAL screen 17, that is, the actual data 82
The "problem" and "answer" have "C" and "A" as the level 92, respectively, as shown in FIG. has been done. The actual data level part 15 is provided in the file 7 in which the actual data 82 exists.

Figure 5 shows the level check processing flow, mainly consisting of:
It shows the processing performed by the level check section 14.

(2) A check is made by comparing the level 4 of the personal ID 3 of the user who is attempting to refer to the level 92 of the actual data 82 that constitutes the CAL screen 17 which is to be referred to.

If level 4 is lower than level 92, the process ends.

(2) When level 4 is level 92 or higher, the actual data 82 is stored in the 1 display buffer 12.

(2) A check is made by comparing the level 4 with the level 91 of the pattern screen 81 that constitutes the CAL screen 17.

If level 4 is lower than level 91, the process ends.

(2) If level 4 is level 91 or higher, the pattern screen 81 is stored in the 9 display buffer 12.

(2) The art dealer editing processing section 11 edits the screen using the data stored in the 1-display buffer 12 and displays it as a CAL screen 17.

A user whose level 4 is determined to be low in either process (2) or (2) cannot refer to the actual data 82 or the like.

For example, under the conditions shown in FIG. 4, students B and C can refer to the "question" but cannot refer to the "answer."

However, after students B and C finished their answers, the level 92 of the "answer" was changed from "A" to "C."

Students B and C can also refer to the "answer".

This change is made by a person with an "answer" level of 92 (rAJ) or higher, that is, teacher A.

FIG. 6 is a data reference processing flow.

■ Level 4 of personal ID 3 is registered as shown in FIG. 4(A). This registration is performed by the terminal 1-1, for example, according to the instructions of the system administrator and/or teacher A, especially for Level 4 students B and C.

Set by teacher A. Therefore, the personal ID section 2 is set in the file 7-1 by the teacher A's terminal 1-1.

■ According to teacher A's instructions, terminal 1-1 moves to Figure 4 (B
) CAL screen shown (including “Question” and “Answer”) 17
Create. Similarly, according to teacher A's instructions, terminal 1
-1 is each pattern screen 81 that constitutes the CAL screen 17
and for each actual data 82, each h level 91 and 92
are set as shown in FIGS. 4(C) and 4(D). Therefore, the pattern screen 81. Actual data 82. The pattern screen level section 16 and the actual data level section 15 are stored in the file 7-1.
is set and stored.

■ Students B and C are on terminals 1-2 and 1-3 to 9, respectively.
By inputting the personal ID 3, a notification requesting the display of the "problem" is sent to the terminal 1-1 via the network 10.

The level check unit 14 of the terminal 1-1 that receives this notification performs the process shown in FIG.
Check the IJ pattern screen (frame screen) 81. This pattern screen 81 is allowed to be referenced if the level is "C" or higher, so the file 7-1 of the terminal 1-1
taken from.

The data is sent from the terminal 1-1 via the network 10 to the display buffers 12 of the terminals 1-2 and 1-3 and displayed once. Next, the pattern screen 81 of the screen IDrCO2J and the actual data (r-problem) 82 constituting this are checked. Since these are also allowed to be referenced by students B and C, they are similarly displayed on terminals 1-2 and 1-3.

At this point, even if a request is made to refer to the "answer" pattern screen 81 and actual data 82, it will be rejected by process (2) in FIG.

■ At the direction of students B and C, terminals 1-2 and 1-3
notifies the terminal 1-1 of the completion of the answer, and the terminal 1-1 that receives this notification displays this on its CAL screen 17. Teacher A saw this.

Screen I is displayed on the CAL screen 17 (i.e. display buffer 12).
An input is made to rewrite the levels 91 and 92 of the pattern screen 81 of DrGO2J and the actual data ("answer") 82 constituting this from 1, for example, from r A J to "C".

In response to this, the level rewriting processing unit 6 of the terminal 1-1,
The level 91.92 (rAJ) of the rewrite target is compared with the level ('AJ) of the individual ID3 who instructed the rewrite. In this case, since the levels are equal and rewriting is permitted, the levels 91 and 92 are rewritten.

Note that even if personal ID 3, which is lower than level A, requests rewriting at this point, it will be rejected.

■ When students B and C request display of the correct answer from terminals 1-2 and 1-3, the level check section 14 of terminal 1-1
will check this. Then, the "answer" pattern screen 81 and the actual data "answer" 82 are displayed on terminals 1-2 and 1-3.
The data is sent to the display buffer 12 of 9 and displayed.

In addition, in process ■, if levels 91 and 92 are rewritten from "A" to r13J, only student B can refer to "answer" and student C cannot refer to "question" and "answer".
If there are multiple .

It is also possible to lower the level successively for each "problem" and/or "answer". Furthermore, if the level of the "problem" is set to "A" until the answer begins, the confidentiality of the "problem" can be maintained.

Therefore, in addition to being able to perform level rewriting by the level rewriting processing section 6 when necessary, the flexibility of the system can be made extremely high.

If it is not desirable to rewrite level 9 (91, 92) in file 7, for example, define a predetermined area in the display buffer 12 (or read/write section 13) and write level 9 read from file 7 to this area. It may be stored and rewritten. By doing this, the level 9 in the file 7 is not changed, which is effective from the point of view of protecting the data 8. On the other hand, the rewritten level is
It is valid only while the data 8 exists in the display buffer 12. Therefore, the flexibility of the system can be increased without compromising the security of the data 8.

〔Effect of the invention〕

As explained above, according to the present invention, in the security level rewriting process in a distributed database system that reads specified data when a set individual D is input, the level rewriting processing unit is set to By rewriting the level when necessary, necessary data can be referenced as needed, increasing the flexibility of the system, and checking the level can also maintain the security of the data.

[Brief explanation of drawings]

FIG. 1 is a diagram showing the principle configuration of the present invention. FIG. 2 is a configuration diagram of an embodiment. FIG. 3 is a configuration diagram of an embodiment. FIG. 4 is an explanatory diagram of CAL. FIG. 5 is a level check processing flow. FIG. 6 is a data reference processing flow. FIG. 7 is a diagram explaining the prior art. l is the terminal, 2 is the personal ID section, 3 is the personal ID, 4 is the personal I
5 is the level corresponding to the security processing unit 6, the level corresponding to the level rewriting processing unit 6, 7 is the file (or data path), 8 is the data, and 9 is the level corresponding to the data 8.

Claims (1)

[Claims] In a data processing system that allows reference to specified data (8) when a predetermined personal ID (3) is input from a terminal (1). a security processing unit (setting a level (4) corresponding to the personal ID (3) and a level (9) corresponding to the data (8) and checking whether or not reference to the data (8) is permitted; 5), and a level rewrite processing unit (6) that rewrites the level (9) corresponding to the data (8), and the security processing unit (5) rewrites the level (4, 9) based on the two levels (4, 9). After performing the check, the level rewriting processing unit (6)
When the level (4) corresponding to the personal ID (3) is equal to or higher than the level (9) corresponding to the data (8), the data (8) is updated in response to an instruction from the terminal (1). A security level rewriting processing method characterized in that a corresponding level (9) can be rewritten.