JPH10269180A - Security releasing method in information device, and security system realizing the method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To construct a security system in an information device that avoids the danger of password release by a third person, by using an infrared communication, etc., and performing password release with the input processing through another information device. SOLUTION: In an information device 1, which performs security release through a password input, the security of its own information device is released by receiving a password that is sent from another information device 2 through an infrared communicating medium 3. A range is given to the use period of a password, and the setting of a new password is urged when the range is exceeded. If security release that is performed through a password transmission from the other information device fails, the password input is made through an inputting means that is held by the information device of its own and security release is carried out.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a security release method for an information device, which is suitable for an information device for executing an application by setting a password, and a security system for implementing the method.

[0002]

2. Description of the Related Art High-performance microprocessors have been supplied at low cost due to semiconductor mass-production technology and hardware technological innovation.
A relatively high performance PC (Personal Computer), PDA (Pe
It is now possible to build information devices such as rsonal digital assistants). This type of information device can easily execute a wide variety of easy-to-use distribution software available on the market simply by installing a commercially available general-purpose OS such as Windows, and is useful for personal use.

[0003] In this type of information equipment, security of personal data has become a problem, and it has conventionally been addressed by password protection by character input. In the information devices described above, the number of devices used per person has increased, and personal data such as an address book and a schedule have been stored in the devices used more than ever, and the problem of security assurance has been further highlighted. .

[0004]

The security function for the information device operates when the information device is started, when the network is connected, or when the screen saver is started during the work. To release the security function, the user inputs a password which has been set and registered in advance. Was realized.

[0005] However, when the user temporarily leaves his / her seat, access to the information device by a third party becomes possible, and when the password registered and set by the third party is obtained, the cancellation is facilitated. In this case, the password itself has no security function.

The present invention has been made in view of the above circumstances, and has a configuration in which a password is released through input processing by another information device using infrared communication or the like.
An object of the present invention is to provide a security release method for an information device that avoids the risk of a password being released by a third party, and a security system that realizes the method.

[0007]

According to the security system for information equipment of the present invention, an information equipment for releasing security by inputting a password receives a password issued from another information equipment, thereby enabling the security of its own information equipment to be improved. The first feature is to release security. Transmission and reception of a password between information devices is performed via an infrared communication medium. Another feature is that a range is set for the usage period of the password, and when the range is exceeded, the user is prompted to set a new password. Further, when the release of the security by transmitting the password from another information device fails, the security is released by inputting the password through the input means of the own information device.

A security system according to the present invention receives a password transmitted from a partner information device, compares the password with a password set and registered in advance, and responds to the partner information device in response to the password reception to transmit the password to the own information device. Means to release the security function for, and wait for a certain period of time for reception, wait for a password change request from the partner information device, set and register the password to be transmitted, and then make this information valid as this password is valid A second feature is that it comprises means for canceling the security function of the device. When the password transmitted from the partner information device is determined to be invalid as a result of the comparison and collation, a screen for canceling the password is displayed on the own information device to prompt for a correct password, and the correct password is input. It is further characterized by further comprising means for canceling the security function. Furthermore,
The security system of the present invention includes means for transmitting a password for releasing security to a partner information device, and, when a response to password transmission is received from the partner information device, searching a database and setting a use period of the password. Checks the range, generates a new password depending on the content, and sends a new password to the partner information device, sends a new password after receiving a response from the partner information device, and registers the password A third feature is to provide a means for performing the following.

[0009] A method for security release according to the present invention comprises receiving a password transmitted from a partner information device,
The password is compared with the password registered in advance and responded to the partner information device to respond to the password reception, the security of the information device itself was released, and the password change request from the partner information device was waited for a certain period of time. The first characteristic is that the password transmitted and transmitted is set and registered, and thereafter, the password is made valid and the security of the information device is released. In addition, a password for security release is transmitted to the partner information device, and when the partner information device responds to the password transmission, the database is searched to check the setting range regarding the period of use of the password, and the content is checked. In some cases, a new password is generated, a new password setting request is issued to the partner information device, a new password is sent after the response from the partner information device is sent, and the password is set and registered. The second feature is that the security is released.

[0010] Thus, the danger of the password being released by a third party can be avoided, and the security of personal data can be ensured.

[0011]

FIG. 1 is a block diagram showing an embodiment of the present invention. In the figure, reference numeral 1 denotes a portable PC, an information device on the security side such as a PDA, and 2 denotes a portable PC, P
These are information devices such as DAs on the security side, and both are connected via an infrared link 3. IrDA (Infrared Data
Association) has developed infrared communication technology for PCs, PDAs,
In addition to information devices such as printers, it is also applied to communication devices such as facsimile machines and telephones, and is conducting standardization activities so that data can be freely exchanged with each other by connecting each other wirelessly. The following passwords are exchanged using a protocol (hardware / software specification) specified by IrDA.

FIG. 2 is a block diagram showing the internal configuration of the information device 1 (2) shown in FIG. In the figure, reference numeral 11 denotes a central control unit which is a control center of the system of the present invention. 12
Denotes a communication control unit, which has the above-described infrared device built in hardware, and is connected to the central control unit via a system bus 16. Infrared transmitting / receiving circuit, modem, UART
(Universal Asynchronous Receiver Transmitter) A UAR that consists of a chip and conforms to the IrDA format.
A T frame is generated, and serial data transfer control is performed with an information device having an infrared transmitting / receiving device connected thereto. The serial data includes password data described below.

Reference numeral 13 denotes a password information control unit which sets a password and performs a search operation of a password information management database 14 described later. The password information management database 14 is composed of a magnetic disk device in terms of hardware, and stores information of each password, expiration date, and access frequency in a table format. Reference numeral 15 denotes a password input screen display unit, which is composed of a keyboard display in terms of hardware. If the password input from the other information device has failed, the password setting screen is displayed by itself, and the password is set by performing a keyboard input.

Each of the above-described blocks 11 to 15 is a block in which necessary software is loaded on a main storage device, and a CPU reads and executes the necessary software to realize the function. is there.

FIGS. 3 and 4 are flow charts showing the operation of the embodiment of the present invention. The operation for releasing the security function on the information-secured device side and the operation for releasing the security function on the information device side for releasing the security are described. Each of the operations is shown.

Hereinafter, referring to FIGS. 3 and 4, FIG.
The operation of the embodiment of the present invention shown in FIG. 2 will be described in detail.

In FIG. 3, first, the security information device 2 for releasing security is connected to the so-called information device 1 on which security is to be released, via its own communication control unit 12 in accordance with the infrared communication protocol. Make a request. Security-Related Information Equipment 1
Responds to the security-side information device 2 to which the connection request has been made (step a) via the communication control unit 14 similarly, and waits for the reception of the subsequently transmitted password. The central control unit 11 checks the reception of the password transmitted in step b (step b). Here, if it is confirmed that the password character string has not been received, the time-out occurs and the processing for releasing the security function ends once. Becomes Here, when the password character string is received, the central control unit 11 checks the received password (step c), and when the correct password is received, performs the processing of step d. Executes the processing of step l.
In step d, the security information device 2 that has requested connection is answered that the correct password has been received via the communication control unit 11. And the central control unit 11
Controls the password information control unit 13 to release the security function (step e), waits for reception for a certain period of time, and if there is a password change request from the security-side information device 2, returns to step g. If there is no processing, a timeout occurs and the processing for releasing the security function ends.

In step g, the central control unit 11 in the security-side information device responds to the new password setting request issued from the security-side information device 2 and waits for a certain period of time to receive the security information device. When the password data subsequently transmitted from is confirmed, the processing of step i is performed. If not, timeout occurs and the process ends. In step i, a response is made to the reception of the new password data via the communication control unit 12, and the reception is waited for a certain period of time.
Confirm the response from the target device to the processing of. If confirmed here, the new password received in step h is set.

In step l, if a correct password is not received in step c, a password release screen is displayed by operating the keyboard. When the correct password is input, the process of step e is performed,
If the password is incorrect, a new password is set in step n.

In FIG. 4, first, the information device 2 which releases security issues a connection request to the security-side information device 1 (step a). Then, when there is a response to the connection request, the processing of step c is performed,
If not, the security function release processing ends.
In step c, a password transmission process is performed, and if there is a response to the password transmission from the information device 1 on the security side, the process in step e is performed. If not, the process ends. In step e, the password information control unit 13 searches the password information management database 14 to check the currently valid password setting period and frequency, and when the period ends or the number of times of use exceeds a predetermined threshold, The processing of step f is performed.

In step f, the password information control unit 1
3 generates a new password and issues a password setting request to the secure information device 1 via the central control unit 11 and the communication control unit 12 (step g). In step h, if there is a response from the security information device 1 to the password setting request, the process of step i is completed, and if not, the process is terminated. In step i, a new password is transmitted, a reception response to the password transmission is detected (step j), and when it is detected, a response to the password reception response (step k) is made to confirm reception, and a new password is set. (Step l) to end the security release processing.

As described above, in a conventional information device in which a password is set using an application such as a screen saver, the password is normally released by pressing a key or a mouse as a trigger, but this method is used. May be broken, allowing access to personal data by a third party.
In order to cancel the password, the risk of password cancellation by a third party is avoided by adopting a configuration in which infrared communication or the like is used to perform password input based on input processing from another information device.

In the embodiment of the present invention, an example using infrared rays as a communication medium between information devices has been described. However, the present invention is not limited to this, and similar effects can be obtained regardless of whether wired or wireless. Things.

[0024]

As described above, according to the present invention, in an information device which releases security by inputting a password, the security of its own information device is released by receiving a password issued from another information device. The transmission and reception of a password between information devices is performed, for example, via an infrared communication medium.
Another feature is that a range is set for the usage period of the password, and when the range is exceeded, the user is prompted to set a new password. Further, when the release of security by transmission of a password from another information device fails, the security is released by inputting a password through the input means of the own information device. Thus, the user can periodically update the password with a single password setting, and can avoid the danger of a third party accessing the information device.

[Brief description of the drawings]

FIG. 1 is a block diagram showing an embodiment of the present invention.

FIG. 2 is a block diagram showing an internal configuration of the information device in FIG. 1;

FIG. 3 is a flowchart showing the operation of the embodiment of the present invention.

FIG. 4 is a flowchart showing the operation of the embodiment of the present invention.

[Explanation of symbols]

REFERENCE SIGNS LIST 1 security-side information device 2 security-side information device 3 infrared communication link 11 central control unit 1
2 ... communication control unit, 13 ... password information control unit, 14 ...
Password information management database, 15: Password input screen display unit, 16: System bus.

Claims (9)

[Claims] 1. A security system for an information device which releases security by receiving a password issued from another information device in an information device which releases security by inputting a password. . 2. The security system according to claim 1, wherein transmission and reception of a password between the information devices are performed via an infrared communication medium. 3. The security system according to claim 1, wherein a range is set for the use period of the password, and setting of a new password is prompted when the range exceeds the range. 4. The method according to claim 1, wherein when the release of the security by transmitting the password from another information device fails, the password is input through the input means of the own information device to release the security. Security system for the described information equipment. 5. A means for receiving a password transmitted from a partner information device, comparing and collating the password with a password registered in advance, and releasing a security function for the information device by responding to the password reception to the partner information device. Waits for a certain period of time, waits for a password change request from the partner information device, and sets and registers the password to be transmitted. A security system for an information device, comprising: means for canceling. 6. As a result of the comparison and collation, when the password transmitted from the partner information device is determined to be invalid, a screen for canceling the password is displayed on the own information device to prompt the input of the correct password, and 6. The security system according to claim 5, further comprising means for inputting a password to release the security function. 7. A means for transmitting a password for releasing security to a partner information device, and, when a response to the password transmission is received from the partner information device, searching a database to determine a setting range relating to a use period of the password. Means for checking, generating a new password depending on the contents, requesting the other information device to set a new password, and transmitting a new password after receiving a response from the other information device, and setting and registering the password A security system for information equipment, comprising: 8. Receiving a password transmitted from the partner information device, comparing the password with a password registered in advance, responding to the partner information device with the reception of the password, and releasing the security of the own information device. Security, characterized by waiting for a password change request from a partner information device for a certain period of time, setting and registering a password to be transmitted subsequently, and then validating the password to release security for its own information device. Method for release. 9. A password for security release is transmitted to the partner information device, and when a response to the password transmission is received from the partner information device, a pre-registered database is searched to set a use period of the password. Check, and generate a new password depending on the content, make a new password setting request to the partner information device, wait for a response from the partner information device, send the new password, set and register the password, Thereafter, the security is released by using the password.