WO2006118029A1 - Information processing system, mobile terminal device, and program - Google Patents

Information processing system, mobile terminal device, and program Download PDF

Info

Publication number
WO2006118029A1
WO2006118029A1 PCT/JP2006/308174 JP2006308174W WO2006118029A1 WO 2006118029 A1 WO2006118029 A1 WO 2006118029A1 JP 2006308174 W JP2006308174 W JP 2006308174W WO 2006118029 A1 WO2006118029 A1 WO 2006118029A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
terminal device
unit
personal information
update completion
Prior art date
Application number
PCT/JP2006/308174
Other languages
French (fr)
Japanese (ja)
Inventor
Kengo Shinohara
Original Assignee
Ixi Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ixi Co., Ltd. filed Critical Ixi Co., Ltd.
Publication of WO2006118029A1 publication Critical patent/WO2006118029A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/22Processing or transfer of terminal data, e.g. status or physical capabilities

Definitions

  • the present invention relates to an information processing system and the like for protecting personal information.
  • a request for authentication information and information data protection is sent from the information data protection requesting device via the network. Sent to the device.
  • the communication means of the communication terminal device receives the request regarding the protection of the information data and the authentication information and sends them to the information data processing means of the communication terminal device.
  • the information data processing means of the communication terminal device sends authentication information to the authentication means and requests authentication of the information data protection requesting device.
  • the authentication means authenticates the information data protection requesting device and sends the result to the information processing means.
  • the information data processing means that has received the result erases the information data stored in the information data storage means in accordance with the information data protection request, and Is protected from reading (see, for example, Patent Document 1).
  • Patent Document 1 Japanese Unexamined Patent Publication No. 2003-114828 (Page 1, Fig. 1 etc.)
  • the user of the communication terminal device has the power to determine whether the information is present or how much information is present. For example, if the information data is phonebook data, the user of the communication terminal device has no power to determine how many people have been registered. For example, until the data that has been knocked up is obtained, It was difficult to contact Moreover, in order to acquire data, it was necessary to back up without force, and the load of the server device to be knocked up was generated.
  • An information processing system is an information processing system including an operation terminal device, a control server device, and a mobile terminal device, wherein the operation terminal device includes the mobile terminal device.
  • the control server device is identified by mobile terminal identification information included in the control command receiving unit that receives the control command and the control command received by the control command receiving unit.
  • a protection command transmission unit that transmits a protection command, which is a command for protecting personal information, to the mobile terminal device, and the mobile terminal device stores a personal information class in which personal information is stored.
  • a protection command receiving unit that receives the protection command, and overwriting a predetermined character string on the personal information stored in the personal information storage unit,
  • An information processing system comprising: an update unit that updates information.
  • the information processing system relates to the fact that when the updating unit updates the personal information, the mobile terminal device updates the personal information.
  • An update completion information transmitting unit that transmits update completion information that is information to the control server device, the control server device receiving a third update completion information receiving unit that receives the update completion information;
  • a third update completion information transmitting unit that transmits the update completion information received by the third update completion information receiving unit to the operation terminal device, wherein the operation terminal device receives the update completion information.
  • An information processing system further comprising: an update completion information receiving unit; and a first update completion information output unit that outputs the update completion information.
  • the information processing system of the third invention is an information processing system including an operation terminal device, an authentication server device, a control server device, and a mobile terminal device, wherein the operation terminal device Is the operation terminal device identification information that is information for identifying the operation terminal device.
  • the authentication server device includes a second operation terminal device identification information reception unit that receives the operation terminal device identification information, a second control command reception unit that receives the control command, (Ii) an authentication unit that authenticates the operation terminal device based on the operation terminal device identification information received by the operation terminal device identification information reception unit, and an authentication result in the authentication unit is authentication permission.
  • a second control command transmission unit that transmits the control command to the control server device, wherein the control server device receives the control command, and the control command reception unit receives the control command.
  • a protection command transmitting unit that transmits a protection command that is a command for protecting personal information to the mobile terminal device identified by the mobile terminal identification information included in the control command, the mobile terminal device comprising: A personal information storage unit storing personal information, a protection command receiving unit receiving the protection command, and overwriting a predetermined character string on the personal information stored in the personal information storage unit.
  • An information processing system comprising an update unit for updating.
  • This powerful configuration can further authenticate the operation terminal device and prevent malicious third parties from manipulating personal information.
  • the information processing system provides information indicating that the mobile terminal device has been updated when the update unit has updated the personal information.
  • An update completion information transmitting unit that transmits certain update completion information to the control server device, the control server device receiving a third update completion information receiving unit that receives the update completion information, and the third update.
  • a third update completion information transmitting unit for transmitting the update completion information received by the completion information receiving unit to the authentication server device, wherein the authentication server device receives the update completion information.
  • the operation terminal device receives the first update completion information for receiving the update completion information.
  • a first update completion information output unit that outputs the update completion information.
  • the mobile terminal device updates the personal information.
  • a personal information transmitting unit that transmits information to the control server device, wherein the control server device receives a personal information received by the third personal information receiving unit and a third personal information receiving unit that receives the personal information;
  • An information processing system further comprising a personal information output unit for outputting information.
  • the information processing system of the present invention it is possible to protect personal information stored in a terminal such as a mobile phone, and the user knows that personal information exists even after processing personal information. be able to.
  • FIG. 1 is a conceptual diagram of the information processing system in the present embodiment.
  • the information processing system includes an operation terminal device 11, a control server device 12, and a mobile terminal device 13.
  • the operation terminal device 11 is a terminal that receives a control command that is a command for protecting personal information and transmits the control command to the control server device 12.
  • the control server device 12 is a device that receives a control command and transmits the control command to the mobile terminal device 13.
  • the mobile terminal device 13 is, for example, a mobile terminal in which phone book information is stored, and is a mobile terminal having a function of updating the phone book information and preventing personal information from leaking if theft is lost. .
  • the mobile terminal device 13 is, for example, a mobile phone, a PDA, or a portable personal computer. Etc.
  • the operation terminal device 11 and the control server device 12 are connected by, for example, the Internet or LAN.
  • the control server device 12 and the mobile terminal device 13 perform transmission / reception of information by, for example, peer-to-peer (P2P) communication.
  • Peer-to-peer (P2P) communication is, for example, communication using a short message service (SMS).
  • SMS short message service
  • FIG. 2 is a block diagram of the information processing system in the present embodiment.
  • the operation terminal device 11 includes a reception unit 1101, a control command transmission unit 1102, a first update completion information reception unit 1103, and a first update completion information output unit 1104.
  • Control server device 12 includes control command receiving unit 1201, protection command transmitting unit 1202, third update completion information receiving unit 1203, third update completion information transmitting unit 1204, third personal information receiving unit 12 05, personal information An output unit 1206 is provided.
  • the mobile terminal device 13 includes a personal information storage unit 1301, a protection command reception unit 1302, an update unit 1303, an update completion information transmission unit 1304, and a personal information transmission unit 1305.
  • the receiving unit 1101 is information having mobile terminal identification information that is information for identifying the mobile terminal device 13, and receives a control command that is a command for protecting personal information that is information related to an individual.
  • the personal information is information related to individuals, for example, phone book information that is phone book information, address book information that is address book information, and a customer database in which information such as customer addresses is stored.
  • the mobile terminal identification information is, for example, a telephone number, an IP address, an IP address and port number, a nickname.
  • the data structure of the control instruction does not matter.
  • the control command may be composed only of mobile terminal identification information.
  • “acceptance” includes acceptance by manual input, reception of an external device, reading from a recording medium, and the like.
  • the control command input means may be anything such as a numeric keypad, keyboard, mouse or menu screen.
  • the accepting unit 1101 can be realized by a device driver for input means such as a numeric keypad or a keyboard, or control software for a menu screen.
  • the control command transmission unit 1102 transmits the control command received by the reception unit 1101 to the control server device 12.
  • the timing and trigger at which the control command transmission unit 1102 transmits the control command does not matter. For example, when the reception unit 1101 receives a control command, the control command transmission unit 1102 immediately transmits the control command.
  • Control command transmitter 1102 is usually wireless or wireless. Alternatively, it may be realized by a broadcasting means that is realized by a wired communication means.
  • First update completion information receiving section 1103 receives update completion information.
  • the update completion information is information indicating that the update is performed when the update unit 1303 of the mobile terminal device 13 updates the personal information.
  • the data structure and contents of the update completion information are not limited.
  • the update completion information may include information for identifying the updated personal information, or may be information only indicating that the update has been completed.
  • First update completion information receiving section 1103 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
  • the first update completion information output unit 1104 outputs update completion information.
  • output is a concept including display on a display, printing on a printer, sound output, transmission to an external device, storage on a recording medium, and the like.
  • the first update completion information output unit 1104 may or may not include an output device such as a display or a speaker.
  • the first update completion information output unit 1104 can be implemented by output device driver software, or output device driver software and an output device.
  • the control command receiving unit 1201 receives a control command from the operation terminal device 11.
  • the control command receiving unit 1201 may receive the control command indirectly from the operation terminal device 11 or may directly receive the control command.
  • the control command receiving unit 1201 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
  • the protection command transmission unit 1202 is a protection command that is a command for protecting personal information to the mobile terminal device 13 identified by the mobile terminal identification information included in the control command received by the control command receiving unit 1201. Send.
  • the protection command transmission unit 1202 usually also performs processing for forming a protection command from a control command.
  • the protection command transmission unit 1202 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.
  • Third update completion information receiving section 1203 receives update completion information from mobile terminal device 13.
  • the third update completion information receiving unit 1203 may receive update completion information indirectly from the mobile terminal device 13.
  • the third update completion information receiving unit 1203 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
  • the third update completion information transmission unit 1204 transmits the update completion information received by the third update completion information reception unit 1203 to the operation terminal device 11.
  • the third update completion information transmission unit 1204 Usually, it is realized by wireless or wired communication means, but may be realized by broadcasting means.
  • the third personal information receiving unit 1205 receives personal information from the mobile terminal device 13.
  • Third personal information receiving section 1205 may receive personal information indirectly from mobile terminal device 13.
  • the third personal information receiving unit 1205 may be realized by means for receiving power broadcasting, which is usually realized by wireless or wired communication means.
  • the personal information output unit 1206 outputs the personal information received by the third personal information receiving unit 1205.
  • Output is a concept that includes display on a display, printing on a printer, transmission to an external device, storage on a recording medium, and the like.
  • the output is preferably stored in a recording medium.
  • the personal information output unit 1206 may or may not include an output device such as a recording medium.
  • the personal information output unit 1206 can be realized by output device driver software, or output device driver software and an output device.
  • the personal information storage unit 1301 stores one or more pieces of personal information.
  • the one or more pieces of personal information are, for example, phone book information and customer DB.
  • the personal information storage unit 1301 is preferably a non-volatile recording medium, but can also be realized by a volatile recording medium.
  • the personal information stored in the personal information storage unit 1301 is, for example, information manually input by the user of the mobile terminal device 13.
  • the personal information stored in the personal information storage unit 1301 is information received from an external device, for example.
  • the protection command receiving unit 1302 receives a protection command from the control server device 12.
  • the protection command receiving unit 1302 may receive the protection command indirectly from the control server device 12.
  • the protection command receiving unit 1302 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
  • the update unit 1303 In response to receiving the protection command, the update unit 1303 overwrites a predetermined character string on the personal information stored in the personal information storage unit 1301 and updates the personal information.
  • the updating unit 1303 overwrites the location of the phone number with a predetermined character string, for example.
  • the update unit 1303 may overwrite the numeric character string of the telephone number with a predetermined character (such as X) by the character string length of the number of digits of the numeric character string.
  • the updating unit 1303 may generate a code with a random number or the like and overwrite the character string of the name and the telephone number with the character of the code.
  • the update unit 1303 For example, the telephone number of the original personal information may be acquired, a predetermined calculation may be performed using the telephone number as a parameter, and the calculation result may be overwritten as a new telephone number (numerical string). If a new phone number is generated and overwritten, a person who has stolen or picked up the mobile terminal device 13 has obtained information such as a different phone number and is aware that the information is incorrect. There is an advantage that it is not.
  • the updating unit 1303 selects personal information based on the information for identifying personal information, and updates the selected personal information.
  • the update unit 1303 can also implement an MPU, memory, or the like.
  • the processing procedure of the update unit 1303 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).
  • the update completion information transmission unit 1304 transmits update completion information, which is information indicating that the update has been performed, to the control server device 12.
  • the update completion information transmission unit 1304 is usually realized by a wireless communication means, but may be realized by a wired communication means or a broadcast means.
  • the personal information transmitting unit 1305 transmits the personal information to the control server device 12 before the updating unit 1303 updates the personal information.
  • the personal information transmission unit 1305 is usually realized by a wireless communication unit, but may be realized by a wired communication unit or a broadcasting unit.
  • the reception unit 1101 of the operation terminal device 11 receives a control command, and the control command transmission unit 1102 transmits the control command received by the reception unit 1101 to the control server device 12. Then, the first update completion information receiving unit 1103 of the operation terminal device 11 receives the update completion information, and the first update completion information output unit 1104 outputs the update completion information.
  • control server device 12 Next, the operation of the control server device 12 will be described using the flowchart of FIG.
  • Step S301 The control command receiving unit 1201 determines whether or not it has received the control command. If a control command is received, go to step S302, and if no control command is received, go to step S305.
  • Step S302 The protection command transmission unit 1202 receives the control command received in Step S301.
  • the mobile terminal identification information it has is acquired.
  • the protection command transmission unit 1202 constitutes a protection command.
  • the protection command transmission unit 1202 normally configures a protection command based on the control command received in step S301.
  • Step S304 The protection command transmitting unit 1202 transmits the protection command configured in Step S303 to the mobile terminal device 13 specified by the mobile terminal identification information acquired in Step S302. Return to step S301.
  • Step S 305 Third update completion information receiving section 1203 determines whether or not update completion information has been received from mobile terminal device 13. If update completion information is received, the process goes to step S306, and if update completion information is not received, the process goes to step S307.
  • Step S306 The third update completion information transmitting unit 1204 transmits the update completion information received in step S305 to the operation terminal device 11. Return to step S301.
  • Step S 307 Third personal information receiver 1205 determines whether or not personal information has been received from mobile terminal device 13. If personal information is received, the process goes to step S308, and if no personal information is received, the process returns to step S301.
  • Step S308 The personal information output unit 1206 outputs the personal information received in step S307. Return to step S301.
  • control server device 12 performs an authentication process for authenticating whether or not the operation terminal device 11 is a valid terminal. As a result of the authentication process, the authentication is permitted. Only the protection command may be sent to the mobile terminal device 13!
  • Step S 401 Protection command receiving section 1302 determines whether or not a protection command has been received from control server device 12. If a protection command is received, the process proceeds to step S402. If a protection command is not received, the process returns to step S401.
  • the personal information transmission unit 1305 converts the personal information to be updated into a personal information class. Acquired from the department 1301. If personal information storage unit 1301 stores two or more personal information and the protection order has information specifying one or more personal information of the two or more personal information, personal information transmission unit 1305 Selects and obtains one or more personal information.
  • Step S403 The personal information transmitting unit 1305 transmits the personal information acquired in step S402 to the control server device 12.
  • Step S404 In response to the reception of the protection command, the update unit 1303 overwrites the predetermined character string on the personal information stored in the personal information storage unit 1301, and updates the personal information. Details of the update process will be described with reference to the flowchart of FIG.
  • Step S405 When the update unit 1303 updates personal information, the update completion information transmission unit 1304 configures update completion information that is information indicating that the update has been performed.
  • the configuration of the update completion information may be a process of reading update completion information stored in advance.
  • the update completion information transmitting unit 1304 may constitute update completion information having information for specifying the updated personal information.
  • Step S406 The update completion information transmission unit 1304 transmits the update completion information configured in step S405 to the control server device 12. Return to step S401.
  • Step S501 The updating unit 1303 substitutes 1 for the counter i.
  • Step S502 The update unit 1303 determines whether or not the i-th data exists in the personal information to be updated. If the i-th data exists, the process goes to step S503. If the i-th data does not exist, the process returns to the upper function.
  • Step S503 The updating unit 1303 obtains the i-th data in the personal information to be updated.
  • Step S504 The updating unit 1303 processes the i-th data acquired in step S503 by a predetermined process.
  • the predetermined process is, for example, an encryption process.
  • the predetermined process is, for example, to execute an operation f “f (i-th data)” on the i-th data.
  • the i-th data is, for example, a numeric string of telephone numbers, and f is It is a predetermined arithmetic expression.
  • F is preferably reversible.
  • Step S505 The updating unit 1303 overwrites and updates the i-th data in the personal information to be updated with the data obtained by checking in step S504.
  • Step S506 The updating unit 1303 increments the counter i by 1. Return to step S502.
  • step S504 the i-th data is covered and updated using the checked data.
  • a predetermined character string for example, "09012345678"
  • FIG. 1 A conceptual diagram of the information processing system is shown in FIG. 1
  • the personal information storage unit 1301 of the mobile terminal device 13 stores the phone book information shown in FIG.
  • the phone book information has one or more records having attributes such as “ID”, “name”, “affiliation”, and “phone number”. “ID” is information for identifying the record and exists for record management in the table.
  • the user of the mobile terminal device 13 loses the mobile terminal device 13, calls the operator of the operation terminal device 11, and personal information of the mobile terminal device 13 (here Now, let's say that you have requested that the phone book information be hidden from the third party. Then, it is assumed that the operator hears the telephone number “09011223456” of the mobile terminal device 13 from the user of the mobile terminal device 13 and inputs the telephone number on the screen shown in FIG.
  • control command transmission unit 1102 of the operation terminal device 11 configures the control command shown in FIG. 8 based on the information input by the operator of FIG.
  • the control command includes a command “update”, a type of personal information “phone book” to be updated, and mobile terminal identification information “09011223456” of the mobile terminal device 13.
  • control command transmission unit 1102 transmits the control command in FIG. 8 to the control server device 12.
  • the control command transmission unit 1102 holds information for communicating with the control server device 12 (IP address, e-mail address, telephone number, etc. of the control server device 12).
  • control command receiving unit 1201 of the control server device 12 receives the control command of FIG.
  • protection command transmission unit 1202 of the control server device 12 acquires the mobile terminal identification information “09011223456” with the control command power of FIG.
  • the protection command transmission unit 1202 of the control server device 12 configures the protection command of FIG. 9 from the control command of FIG.
  • the protection command transmission unit 1202 transmits the protection command of FIG. 9 to the mobile terminal device 13 that can be identified by the mobile terminal identification information “09011223456”.
  • the protection command receiving unit 1302 of the mobile terminal device 13 receives the protection command of FIG.
  • the personal information transmission unit 1305 of the mobile terminal device 13 acquires the phone book information of FIG. 6 from the personal information storage unit 1301 for backup of the phone book information. Then, the personal information transmission unit 1305 transmits the telephone directory information of FIG. 6 to the control server device 12.
  • the third personal information receiving unit 1205 of the control server device 12 receives the phone book information of FIG. Then, the personal information output unit 1206 accumulates the received phone book information.
  • the phone book information is usually stored in a pair with the mobile terminal identification information “09011223456” of the mobile terminal device 13.
  • the stored phone book information is transmitted by a predetermined process.
  • the predetermined processing is, for example, a request from a person having a legitimate authority and transmission corresponding to the request.
  • the update unit 1303 of the mobile terminal device 13 overwrites and updates the telephone directory information in accordance with the protection instruction of FIG.
  • the updating unit 1303 overwrites and updates the phone book information according to the following rules.
  • the rule is that the two characters of the name are encrypted and converted to the other two characters.
  • the rule calculates (f) a telephone number number string as a parameter, acquires another number string, and overwrites the acquired number string.
  • the numbers from the first digit to the third digit are not changed, and the numbers from the fourth digit to the eleventh digit are changed. It is an operation to be performed.
  • the encrypted two characters of the name and the computed number string are reversible, and if decompressed, the correct name can be obtained, and the number string of the original telephone number is obtained by performing the ⁇ 1 operation. It can be done.
  • the updating unit 1303 changes the phone book information in FIG. 6 to the phone book information as shown in FIG. 10 and rewrites it.
  • the update completion information transmission unit 1304 of the mobile terminal device 13 configures update completion information, which is information indicating that the update of the phone book information is completed, and transmits it to the control server device 12.
  • the third update completion information receiving unit 1203 of the control server device 12 receives the update completion information.
  • the third update completion information transmission unit 1204 transmits the update completion information to the operation terminal device 11.
  • the first update completion information receiving unit 1103 receives update completion information.
  • first update completion information output section 1104 outputs update completion information as shown in FIG.
  • the update completion information includes mobile terminal identification information.
  • personal information stored in a terminal such as a mobile phone can be protected, and the user can imagine the existence of personal information even after processing the personal information.
  • a part of personal information is rewritten, so that the user can easily know what kind of information exists and is convenient.
  • meaningless information remains, and protection of personal information can be ensured.
  • the phone book information of the mobile terminal device 13 is partially changed, but may be changed entirely.
  • the phone book information is changed so that the phone book information can be restored.
  • the phone book information may not be restored.
  • only information acquired from the original personal information such as the number of phone book information may be left.
  • the processing in the present embodiment may be realized by software.
  • This software may be distributed by software download or the like.
  • this software may be recorded and distributed on a recording medium such as a CD-ROM. Note that this is This also applies to other embodiments in the book.
  • the software that realizes the mobile terminal device in the present embodiment is the following program. In other words, this program overwrites a predetermined character string with respect to the stored personal information in response to the protection command receiving step for receiving the protection command and the reception of the protection command. And a program for executing an update step for updating the personal information.
  • the program causes the computer to further execute an update completion information transmission step of transmitting update completion information that is information indicating that the personal information has been updated. It can be a program.
  • the program may be a program for causing a computer to further execute a personal information transmission step of transmitting the personal information before updating the personal information in the updating step.
  • the information processing system in the present embodiment is characterized in that the information processing system in the first embodiment further includes an authentication server device to authenticate the operation terminal device.
  • FIG. 12 is a conceptual diagram of the information processing system in the present embodiment.
  • the information processing system includes an operation terminal device 121, an authentication server device 122, a control server device 123, and a mobile terminal device 13.
  • FIG. 13 is a block diagram of the information processing system in the present embodiment.
  • the operation terminal device 121 includes an operation terminal device identification information storage unit 12101, a reception unit 1101, a first operation terminal device identification information transmission unit 12102, a control command transmission unit 1102, a first update completion information reception unit 1103, a first An update completion information output unit 1104 is provided.
  • the authentication server device 122 includes a second operation terminal device identification information receiving unit 12201, a second control command receiving unit 12202, an authentication unit 12203, and a second control command transmitting unit 12204.
  • the control server device 123 includes a control command receiving unit 12301, a protection command transmitting unit 1202, a third update completion information receiving unit 1203, a third update completion information transmitting unit 12304, a third personal information receiving unit 1205, and a personal information output. Part 1206.
  • the operation terminal device identification information storage unit 12101 stores operation terminal device identification information that is information for identifying the operation terminal device 121.
  • the operation terminal device identification information is, for example, an IP address of the operation terminal device 121, a MAC address of the operation terminal device 121, a pair of an ID and password of an operator who operates the operation terminal device 121, and the like.
  • the operation terminal device identification information may be information that indirectly identifies the operation terminal device 121.
  • the information for indirectly identifying the operation terminal device 121 is information for identifying the user (operator) of the operation terminal device 121, for example.
  • the operation terminal device identification information may be information stored in advance or information input by an operator.
  • the operation terminal device identification information storage unit 12 101 is preferably a nonvolatile recording medium, but can also be realized by a volatile recording medium.
  • the first operation terminal device identification information transmission unit 12102 transmits the operation terminal device identification information in the operation terminal device identification information storage unit 12 101 to the authentication server device 122.
  • First operation terminal device identification information transmitting section 12102 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.
  • Second operation terminal device identification information receiving section 12201 receives operation terminal device identification information from operation terminal device 121.
  • the second operation terminal device identification information receiving unit 12201 is usually realized by a wireless or wired communication means, but may be realized by means of receiving a broadcast.
  • the second control command receiving unit 12202 is an operation terminal. A control command is received from the device 121.
  • the second control command receiving unit 12202 can also be realized by a means for receiving power broadcast or a wired communication means for which a wireless communication means is suitable.
  • the authentication unit 12203 authenticates the operation terminal device 121 based on the operation terminal device identification information received by the second operation terminal device identification information receiving unit 12201.
  • the authentication unit 12203 normally holds one or more operation terminal device identification information for identifying the operation terminal device to which authentication is permitted.
  • the authentication unit 12203 normally determines whether or not the held one or more operation terminal device identification information matches the received operation terminal device identification information, and if they match, determines that the authentication is permitted. .
  • the authentication method may be other methods.
  • the authentication of the operation terminal device 121 may be the authentication of the operator of the operation terminal device 121.
  • Authentication unit 122 03 can usually be realized from MPU, memory, etc.
  • the processing procedure of the authentication unit 12203 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).
  • the second control command transmission unit 12204 transmits the control command received by the second control command reception unit 12202 to the control server device 123 when the authentication result in the authentication unit 12203 is authentication permission.
  • the second control command transmission unit 12204 holds information for communicating with the control server device 123, for example, the IP address of the control server device 123 in advance.
  • the second control command transmission unit 12204 may be realized by a force broadcast unit that is usually realized by a wireless or wired communication unit.
  • the control command receiving unit 12301 receives a control command from the authentication server device 122.
  • the control command received by the control command receiving unit 12301 may have a data structure different from the control command transmitted by the operation terminal device 121.
  • the control command receiving unit 12301 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
  • the third update completion information transmission unit 12304 transmits the update completion information received by the third update completion information reception unit 1203 to the authentication server device 122.
  • the third update completion information transmission unit 1204 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.
  • the reception unit 1101 of the operation terminal device 121 receives a control command, and the control command transmission unit 1102 transmits the control command received by the reception unit 1101 to the authentication server device 122.
  • the first operation terminal device identification information transmission unit 12102 reads the operation terminal device identification information from the operation terminal device identification information storage unit 121 01 and authenticates the operation terminal device identification information.
  • Server device 122 The control command and the operation terminal device identification information may be transmitted in one bucket.
  • the first update completion information receiving unit 1103 of the operation terminal device 121 receives the update completion information, and the first update completion information output unit 1104 outputs the update completion information.
  • Authentication server device 122 The two operation terminal device identification information receiving unit 12201 receives the second operation terminal device identification information from the operation terminal device 121. Then, the second control command receiving unit 12202 receives a control command from the operation terminal device 121. Next, the authentication unit 12203 authenticates the operation terminal device 121 based on the received second operation terminal device identification information. As a result of the authentication process, if the authentication is permitted, the second control command transmission unit 12204 transmits a control command to the control server device 123. On the other hand, if the result of the authentication process is that authentication is not permitted, the second control command transmitter 12204 does not transmit a control command to the control server device 123. Since the authentication process is a known technique, detailed description thereof is omitted.
  • control server device 123 Next, the operation of the control server device 123 will be described.
  • the control command receiving unit 12301 of the control server device 123 receives a control command from the authentication server device 122.
  • the protection command transmission unit 1202 configures a protection command from the control command, and transmits the protection command to the mobile terminal device 13 identified by the mobile terminal identification information included in the control command.
  • the third update completion information receiving unit 1203 receives the update completion information
  • the third update completion information transmitting unit 123 04 receives the update completion information from the authentication server. Transfer to device 122.
  • the third personal information receiving unit 1205 and the personal information output unit 1206 perform the same operations as described above.
  • FIG. 1 A conceptual diagram of the information processing system is shown in FIG. 1
  • the personal information storage unit 1301 of the mobile terminal device 13 stores the phone book information shown in FIG.
  • the user of the mobile terminal device 13 loses the mobile terminal device 13, calls the operator of the operation terminal device 121, and personal information of the mobile terminal device 13 (here Now, let's say that you have requested that the phone book information be hidden from the third party.
  • the mobile terminal device 13 when the “Customer DB Invalidation” tag is selected, the type of personal information constituting the control command is “Customer DB”. Then, the mobile terminal device 13 overwrites and updates the customer DB.
  • control command transmission unit 1102 of the operation terminal device 121 configures the control command shown in FIG. 15 based on the information input by the operator of FIG. Further, the first operation terminal device identification information transmission unit 12102 configures the operation terminal device identification information shown in FIG. 15 based on the information input by the operator of FIG. Then, the operation terminal device 121 transmits information shown in FIG. 15 to the authentication server device 122.
  • authentication server apparatus 122 receives the information of FIG. Then, the authentication unit 12203 determines whether or not the operation terminal device identification information of FIG. 15 is the registered operator ID and password. Here, if the operator ID “1234” and the password “XYZQ” are registered, the authentication unit 12203 obtains a determination that authentication is permitted.
  • the second control command transmission unit 12204 transmits the control command in FIG.
  • control command receiving unit 12301 of the control server device 123 receives the control command of FIG.
  • protection command transmission unit 1202 of the control server device 12 acquires the mobile terminal identification information “09011223456” from the control command of FIG.
  • the protection command transmission unit 1202 of the control server device 12 configures a protection command from the control command of FIG.
  • the protection instruction has information of “invalidation” and “phone book”.
  • the protection command transmission unit 1202 transmits the protection command to the mobile terminal device 13 that can be identified by the mobile terminal identification information “09011223456”.
  • the protection command receiving unit 1302 of the mobile terminal device 13 receives the protection command.
  • the updating unit 1303 of the mobile terminal device 13 overwrites and updates the phone book information in accordance with the received protection command.
  • the updating unit 1303 overwrites and updates the phone book information according to the following rules.
  • the updating unit 1303 converts the phone book information in FIG. 6 into the phone book information as shown in FIG. In addition, rewrite.
  • the update completion information transmission unit 1304 of the mobile terminal device 13 configures update completion information, which is information indicating that the update of the phone book information is completed, and transmits it to the control server device 123.
  • the update completion information is transmitted from the control server device 123 to the operation terminal device 121 via the authentication server device 122.
  • the first update completion information receiving unit 1103 of the operation terminal device 121 receives the update completion information.
  • the first update completion information output unit 1104 outputs the update completion information as shown in FIG.
  • the update completion information includes mobile terminal identification information.
  • personal information stored in a terminal such as a mobile phone can be protected. And even after processing personal information, the user can know that personal information existed. For third parties, meaningless information remains, and protection of personal information can be guaranteed. Further, by authenticating the operation terminal device 121, the personal information of the malicious third party power mobile terminal device 13 can be protected.
  • the method for updating personal information is not limited to the method described above.
  • the configuration of the information processing system, the transmission / reception route of the control command or Z and the operation terminal device identification information, etc. are irrelevant!
  • the configuration of the information processing system may be as shown in FIG.
  • the operation terminal device identification information is transmitted from the operation terminal device to the control server device, and from the control server device to the authentication server device, and authentication processing of the operation terminal device is performed.
  • information related to authentication permission Z non-permission is transmitted to the authentication server device force control server device, and a control command is transmitted to the control server device force mobile terminal device only when authentication is permitted.
  • the mobile terminal device then updates the personal information according to the control command.
  • the mobile terminal device updates the phone book information based on the information of the type of personal information included in the control command.
  • the type of personal information included in the control instruction is “customer DB”
  • the mobile terminal device selects information corresponding to “customer DB” and selects the personal information corresponding to “customer DB”.
  • Update The same applies to other embodiments.
  • the processing in the present embodiment may be realized by software. This software may be distributed by software download or the like. In addition, this software may be recorded and distributed on a recording medium such as a CD-ROM. This also applies to other embodiments in this specification.
  • the software that realizes the mobile terminal device in the present embodiment is the following program. In other words, this program overwrites a predetermined character string with respect to the stored personal information in response to the protection command receiving step for receiving the protection command and the reception of the protection command. And a program for executing an update step for updating the personal information.
  • the program causes the computer to further execute an update completion information transmitting step of transmitting update completion information that is information indicating that the personal information has been updated. Program.
  • the program is a program for causing a computer to further execute a personal information transmission step of transmitting the personal information before updating the personal information in the updating step.
  • each process may be realized by centralized processing by a single apparatus (system) or a plurality of apparatuses. It may be realized by distributed processing by.
  • the transmission step for transmitting information and the reception step for receiving information are performed by hardware, for example, a modem or an interface card in the transmission step. Does not include processing (processing that can only be done with software)! /.
  • the computer that executes the program may be singular or plural. That is, centralized processing or distributed processing may be performed.
  • two or more communication means such as a control command transmission unit
  • two or more communication means existing in one apparatus may be physically realized by one medium.
  • the information processing system and the like according to the present invention can protect personal information stored in a terminal such as a mobile phone, and the user can use the personal information even after processing the personal information. It is useful as an information processing system, etc. that has the effect of being able to know the existence of personal information and protects personal information appropriately.
  • FIG. 1 Conceptual diagram of the information processing system in Embodiment 1
  • FIG. 3 is a flowchart for explaining the operation of the control server device.
  • FIG. 4 is a flowchart for explaining the operation of the mobile terminal device.
  • FIG. 5 is a flowchart for explaining the operation of the mobile terminal device.
  • FIG.11 A diagram showing an output example of the update completion information
  • FIG. 12 A conceptual diagram of an information processing system in Embodiment 2.
  • FIG. 14 is a diagram showing an input screen of the operation terminal device
  • FIG. 15 A diagram showing an example of the data structure of the control instruction, etc.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Storage Device Security (AREA)

Abstract

[PROBLEMS] The conventional information processing system has a problem that personal information to be protected is erased and even its existence is not known by a user. [MEANS FOR SOLVING PROBLEMS] A mobile terminal device includes: a personal information storage unit for storing personal information; a protection command reception unit for receiving a protection command which is a command for protecting personal information; and an update unit for updating the personal information by overwriting a predetermined character string on the personal information in the personal information storage unit upon reception of the protection command. This enables protection of personal information stored in a terminal such as mobile telephone and a user can think of the existence of the personal information even after processing of the personal information.

Description

明 細 書  Specification
情報処理システム、移動体端末装置、およびプログラム  Information processing system, mobile terminal device, and program
技術分野  Technical field
[0001] 本発明は、個人情報を保護する情報処理システム等に関するものである。  [0001] The present invention relates to an information processing system and the like for protecting personal information.
背景技術  Background art
[0002] 従来の情報処理システムにおいて、通信端末装置が盗難や紛失等によりユーザの 手元から離れてしまった場合、情報データ保護要求装置から認証情報と情報データ の保護に関する要求がネットワーク経由で通信端末装置に送信される。通信端末装 置の通信手段は、この情報データの保護に関する要求と認証情報とを受信し、通信 端末装置の情報データ処理手段へ送る。通信端末装置の情報データ処理手段は、 認証情報を認証手段へ送って情報データ保護要求装置の認証を依頼する。認証手 段では、情報データ保護要求装置の認証を行ない、結果を情報処理手段へ送る。 結果を受けた情報データ処理手段は、情報データ保護要求装置の正当性が確認さ れた場合、情報データの保護に関する要求に従って情報データ記憶手段に記憶さ れた情報データを消去して、情報データを読み出しから保護する (例えば、特許文献 1参照)。  [0002] In a conventional information processing system, when a communication terminal device leaves the user due to theft or loss, a request for authentication information and information data protection is sent from the information data protection requesting device via the network. Sent to the device. The communication means of the communication terminal device receives the request regarding the protection of the information data and the authentication information and sends them to the information data processing means of the communication terminal device. The information data processing means of the communication terminal device sends authentication information to the authentication means and requests authentication of the information data protection requesting device. The authentication means authenticates the information data protection requesting device and sends the result to the information processing means. When the validity of the information data protection requesting device is confirmed, the information data processing means that has received the result erases the information data stored in the information data storage means in accordance with the information data protection request, and Is protected from reading (see, for example, Patent Document 1).
特許文献 1 :特開 2003— 114828号公報 (第 1頁、第 1図等)  Patent Document 1: Japanese Unexamined Patent Publication No. 2003-114828 (Page 1, Fig. 1 etc.)
発明の開示  Disclosure of the invention
発明が解決しょうとする課題  Problems to be solved by the invention
[0003] し力しながら、従来の情報処理システムにおいては、情報データを消去してしまう。 However, in the conventional information processing system, information data is erased.
したがって、例えば、情報が消去された後では、通信端末装置のユーザは、情報が 存在したこと、またはどれぐらいの量の情報が存在しかかが分力もな力つた。例えば、 通信端末装置のユーザは、情報データが電話帳データの場合、ァ行の人が何人登 録されていたかが分力もず、例えば、ノ ックアップしていたデータを取得するまで、ァ 行の人への連絡等が困難であった。また、データを取得するには、力ならずバックァ ップする必要があり、ノ ックアップするサーバ装置の負荷が生じていた。  Thus, for example, after the information is erased, the user of the communication terminal device has the power to determine whether the information is present or how much information is present. For example, if the information data is phonebook data, the user of the communication terminal device has no power to determine how many people have been registered. For example, until the data that has been knocked up is obtained, It was difficult to contact Moreover, in order to acquire data, it was necessary to back up without force, and the load of the server device to be knocked up was generated.
課題を解決するための手段 [0004] 本第一の発明の情報処理システムは、操作端末装置と、制御サーバ装置と、移動 体端末装置を具備する情報処理システムであって、前記操作端末装置は、前記移 動体端末装置を識別する情報である移動体端末識別情報を有する情報であり、個 人に関する情報である個人情報を保護するための命令である制御命令を受け付ける 受付部と、前記制御命令を前記制御サーバ装置に送信する制御命令送信部と、を 具備し、前記制御サーバ装置は、前記制御命令を受信する制御命令受信部と、前 記制御命令受信部が受信した制御命令が有する移動体端末識別情報で識別される 移動体端末装置に、個人情報を保護するための命令である保護命令を送信する保 護命令送信部と、を具備し、前記移動体端末装置は、個人情報が格納される個人情 報格納部と、前記保護命令を受信する保護命令受信部と、前記前記保護命令の受 信に対応して、個人情報格納部の個人情報に対して、所定の文字列を上書きし、当 該個人情報を更新する更新部と、を具備する情報処理システムである。 Means for solving the problem [0004] An information processing system according to the first aspect of the present invention is an information processing system including an operation terminal device, a control server device, and a mobile terminal device, wherein the operation terminal device includes the mobile terminal device. A receiving unit for receiving a control command, which is a command for protecting personal information, which is information relating to an individual, and is information having mobile terminal identification information which is information to be transmitted; and transmitting the control command to the control server device And the control server device is identified by mobile terminal identification information included in the control command receiving unit that receives the control command and the control command received by the control command receiving unit. A protection command transmission unit that transmits a protection command, which is a command for protecting personal information, to the mobile terminal device, and the mobile terminal device stores a personal information class in which personal information is stored. In response to reception of the protection command, a protection command receiving unit that receives the protection command, and overwriting a predetermined character string on the personal information stored in the personal information storage unit, An information processing system comprising: an update unit that updates information.
力かる構成により、携帯電話等の端末に格納された個人情報の保護が可能であり、 かつ、個人情報の処理後でもユーザは個人情報が存在したことを知ることができる。  With this powerful configuration, personal information stored in a terminal such as a mobile phone can be protected, and the user can know that personal information exists even after processing the personal information.
[0005] また、本第二の発明の情報処理システムは、第一の発明に対して、前記移動体端 末装置は、前記更新部が前記個人情報を更新した場合に、当該更新した旨を示す 情報である更新完了情報を前記制御サーバ装置に送信する更新完了情報送信部と 、をさらに具備し、前記制御サーバ装置は、前記更新完了情報を受信する第三更新 完了情報受信部と、前記第三更新完了情報受信部が受信した更新完了情報を前記 操作端末装置に送信する第三更新完了情報送信部と、をさらに具備し、前記操作端 末装置は、前記更新完了情報を受信する第一更新完了情報受信部と、前記更新完 了情報を出力する第一更新完了情報出力部と、をさらに具備する情報処理システム である。  [0005] In addition, the information processing system according to the second aspect of the invention relates to the fact that when the updating unit updates the personal information, the mobile terminal device updates the personal information. An update completion information transmitting unit that transmits update completion information that is information to the control server device, the control server device receiving a third update completion information receiving unit that receives the update completion information; A third update completion information transmitting unit that transmits the update completion information received by the third update completion information receiving unit to the operation terminal device, wherein the operation terminal device receives the update completion information. An information processing system further comprising: an update completion information receiving unit; and a first update completion information output unit that outputs the update completion information.
力かる構成により、操作端末装置のオペレータに、個人情報の更新が完了したこと を知らせることができる。  With this configuration, it is possible to notify the operator of the operation terminal device that the update of personal information has been completed.
[0006] また、本第三の発明の情報処理システムは、操作端末装置と、認証サーバ装置と、 制御サーバ装置と、移動体端末装置を具備する情報処理システムであって、前記操 作端末装置は、当該操作端末装置を識別する情報である操作端末装置識別情報が 格納される操作端末装置識別情報格納部と、前記移動体端末装置を識別する情報 である移動体端末識別情報を有する情報であり、個人に関する情報である個人情報 を保護するための命令である制御命令を受け付ける受付部と、前記操作端末装置識 別情報を前記認証サーバ装置に送信する第一操作端末装置識別情報送信部と、前 記制御命令を前記認証サーバ装置に送信する第一制御命令送信部と、を具備し、 前記認証サーバ装置は、前記操作端末装置識別情報を受信する第二操作端末装 置識別情報受信部と、前記制御命令を受信する第二制御命令受信部と、前記第二 操作端末装置識別情報受信部が受信した操作端末装置識別情報に基づ 、て、前 記操作端末装置の認証を行う認証部と、前記認証部における認証結果が認証許可 である場合に、前記制御命令を前記制御サーバ装置に送信する第二制御命令送信 部と、を具備し、前記制御サーバ装置は、前記制御命令を受信する制御命令受信部 と、前記制御命令受信部が受信した制御命令が有する移動体端末識別情報で識別 される移動体端末装置に、個人情報を保護するための命令である保護命令を送信 する保護命令送信部と、を具備し、前記移動体端末装置は、個人情報が格納される 個人情報格納部と、前記保護命令を受信する保護命令受信部と、前記個人情報格 納部の個人情報に対して、所定の文字列を上書きし、当該個人情報を更新する更新 部と、を具備する情報処理システムである。 [0006] The information processing system of the third invention is an information processing system including an operation terminal device, an authentication server device, a control server device, and a mobile terminal device, wherein the operation terminal device Is the operation terminal device identification information that is information for identifying the operation terminal device. A control that is a command for protecting personal information that is personal information that is information related to an individual, which is information having mobile terminal identification information that is information for identifying the mobile terminal device and an operation terminal device identification information storage unit that is stored A receiving unit that receives a command, a first operating terminal device identification information transmitting unit that transmits the operating terminal device identification information to the authentication server device, and a first control command transmission that transmits the control command to the authentication server device The authentication server device includes a second operation terminal device identification information reception unit that receives the operation terminal device identification information, a second control command reception unit that receives the control command, (Ii) an authentication unit that authenticates the operation terminal device based on the operation terminal device identification information received by the operation terminal device identification information reception unit, and an authentication result in the authentication unit is authentication permission. A second control command transmission unit that transmits the control command to the control server device, wherein the control server device receives the control command, and the control command reception unit receives the control command. A protection command transmitting unit that transmits a protection command that is a command for protecting personal information to the mobile terminal device identified by the mobile terminal identification information included in the control command, the mobile terminal device comprising: A personal information storage unit storing personal information, a protection command receiving unit receiving the protection command, and overwriting a predetermined character string on the personal information stored in the personal information storage unit. An information processing system comprising an update unit for updating.
力かる構成により、さらに操作端末装置の認証を行うことができ、悪意のある第三者 が個人情報を操作することを防止できる。  This powerful configuration can further authenticate the operation terminal device and prevent malicious third parties from manipulating personal information.
また、本第四の発明の情報処理システムは、第三の発明に対して、前記移動体端 末装置は、前記更新部が前記個人情報を更新した場合に、当該更新した旨を示す 情報である更新完了情報を前記制御サーバ装置に送信する更新完了情報送信部と 、をさらに具備し、前記制御サーバ装置は、前記更新完了情報を受信する第三更新 完了情報受信部と、前記第三更新完了情報受信部が受信した更新完了情報を前記 認証サーバ装置に送信する第三更新完了情報送信部と、をさらに具備し、前記認証 サーバ装置は、前記更新完了情報を受信する第二更新完了情報受信部と、前記更 新完了情報を前記操作端末装置に送信する第二更新完了情報送信部と、をさらに 具備前記操作端末装置は、前記更新完了情報を受信する第一更新完了情報受信 部と、前記更新完了情報を出力する第一更新完了情報出力部と、をさらに具備する †青報処理システムである。 In addition, the information processing system according to the fourth aspect of the present invention provides information indicating that the mobile terminal device has been updated when the update unit has updated the personal information. An update completion information transmitting unit that transmits certain update completion information to the control server device, the control server device receiving a third update completion information receiving unit that receives the update completion information, and the third update. A third update completion information transmitting unit for transmitting the update completion information received by the completion information receiving unit to the authentication server device, wherein the authentication server device receives the update completion information. A receiving unit; and a second update completion information transmitting unit that transmits the update completion information to the operation terminal device. The operation terminal device receives the first update completion information for receiving the update completion information. And a first update completion information output unit that outputs the update completion information.
力かる構成により、操作端末装置のオペレータに、個人情報の更新が完了したこと を知らせることができる。  With this configuration, it is possible to notify the operator of the operation terminal device that the update of personal information has been completed.
[0008] また、本第五の発明の情報処理システムは、第一から第四いずれかの発明に対し て、前記移動体端末装置は、前記更新部が前記個人情報を更新する前に当該個人 情報を前記制御サーバ装置に送信する個人情報送信部をさらに具備し、前記制御 サーバ装置は、前記個人情報を受信する第三個人情報受信部と、前記第三個人情 報受信部が受信した個人情報を出力する個人情報出力部と、をさらに具備する情報 処理システムである。  [0008] Further, in the information processing system according to the fifth aspect of the present invention, the mobile terminal device according to any one of the first to fourth aspects, the personal information before the update unit updates the personal information. A personal information transmitting unit that transmits information to the control server device, wherein the control server device receives a personal information received by the third personal information receiving unit and a third personal information receiving unit that receives the personal information; An information processing system further comprising a personal information output unit for outputting information.
力かる構成により、個人情報をバックアップし、後に正常な個人情報を取得できる。 発明の効果  With this powerful configuration, personal information can be backed up and normal personal information can be acquired later. The invention's effect
[0009] 本発明による情報処理システムによれば、携帯電話等の端末に格納された個人情 報の保護が可能であり、かつ、個人情報の処理後でもユーザは個人情報が存在した ことを知ることができる。  [0009] According to the information processing system of the present invention, it is possible to protect personal information stored in a terminal such as a mobile phone, and the user knows that personal information exists even after processing personal information. be able to.
発明を実施するための最良の形態  BEST MODE FOR CARRYING OUT THE INVENTION
[0010] 以下、情報処理システム等の実施形態について図面を参照して説明する。なお、 実施の形態において同じ符号を付した構成要素は同様の動作を行うので、再度の説 明を省略する場合がある。 Hereinafter, embodiments of an information processing system and the like will be described with reference to the drawings. Note that components having the same reference numerals in the embodiment perform the same operation, and thus the description thereof may be omitted.
(実施の形態 1)  (Embodiment 1)
[0011] 図 1は、本実施の形態における情報処理システムの概念図である。本情報処理シス テムは、操作端末装置 11と、制御サーバ装置 12と、移動体端末装置 13を具備する 。操作端末装置 11は、個人情報を保護するための命令である制御命令を受け付け、 制御サーバ装置 12に当該制御命令を送信する端末である。制御サーバ装置 12は、 制御命令を受信し、当該制御命令を移動体端末装置 13に送信する装置である。移 動体端末装置 13は、例えば、電話帳情報が格納された携帯端末であり、盗難ゃ紛 失の場合に、当該電話帳情報を更新し、個人情報が漏れない機能を具備する携帯 端末である。移動体端末装置 13は、例えば、携帯電話や、 PDAや、携帯型パソコン などである。操作端末装置 11と制御サーバ装置 12は、例えば、インターネットや LA Nで接続されている。また、制御サーバ装置 12と移動体端末装置 13は、例えば、ピ ァ ·トゥー ·ピア(P2P)の通信により情報の送受信を行う。ピア ·トゥー ·ピア (P2P)の 通信とは、例えば、ショートメッセージサービス(SMS)による通信である。 FIG. 1 is a conceptual diagram of the information processing system in the present embodiment. The information processing system includes an operation terminal device 11, a control server device 12, and a mobile terminal device 13. The operation terminal device 11 is a terminal that receives a control command that is a command for protecting personal information and transmits the control command to the control server device 12. The control server device 12 is a device that receives a control command and transmits the control command to the mobile terminal device 13. The mobile terminal device 13 is, for example, a mobile terminal in which phone book information is stored, and is a mobile terminal having a function of updating the phone book information and preventing personal information from leaking if theft is lost. . The mobile terminal device 13 is, for example, a mobile phone, a PDA, or a portable personal computer. Etc. The operation terminal device 11 and the control server device 12 are connected by, for example, the Internet or LAN. In addition, the control server device 12 and the mobile terminal device 13 perform transmission / reception of information by, for example, peer-to-peer (P2P) communication. Peer-to-peer (P2P) communication is, for example, communication using a short message service (SMS).
[0012] 図 2は、本実施の形態における情報処理システムのブロック図である。  FIG. 2 is a block diagram of the information processing system in the present embodiment.
操作端末装置 11は、受付部 1101、制御命令送信部 1102、第一更新完了情報受 信部 1103、第一更新完了情報出力部 1104を具備する。  The operation terminal device 11 includes a reception unit 1101, a control command transmission unit 1102, a first update completion information reception unit 1103, and a first update completion information output unit 1104.
[0013] 制御サーバ装置 12は、制御命令受信部 1201、保護命令送信部 1202、第三更新 完了情報受信部 1203、第三更新完了情報送信部 1204、第三個人情報受信部 12 05、個人情報出力部 1206を具備する。  [0013] Control server device 12 includes control command receiving unit 1201, protection command transmitting unit 1202, third update completion information receiving unit 1203, third update completion information transmitting unit 1204, third personal information receiving unit 12 05, personal information An output unit 1206 is provided.
移動体端末装置 13は、個人情報格納部 1301、保護命令受信部 1302、更新部 1 303、更新完了情報送信部 1304、個人情報送信部 1305を具備する。  The mobile terminal device 13 includes a personal information storage unit 1301, a protection command reception unit 1302, an update unit 1303, an update completion information transmission unit 1304, and a personal information transmission unit 1305.
[0014] 受付部 1101は、移動体端末装置 13を識別する情報である移動体端末識別情報 を有する情報であり、個人に関する情報である個人情報を保護するための命令であ る制御命令を受け付ける。個人情報は、個人に関する情報であり、例えば、電話帳の 情報である電話帳情報、住所録の情報である住所録情報、顧客の住所等の情報が 格納されている顧客データベースなどである。移動体端末識別情報は、例えば、電 話番号、 IPアドレス、 IPアドレスとポート番号、ニックネームなどである。また、制御命 令のデータ構造は問わない。制御命令は、移動体端末識別情報のみで構成されて も良い。ここで、受け付けとは、手入力による受け付け、外部装置力もの受信、記録 媒体からの読み出しなどを含む。制御命令の入力手段は、テンキーやキーボードや マウスやメニュー画面によるもの等、何でも良い。受付部 1101は、テンキーやキーボ ード等の入力手段のデバイスドライバーや、メニュー画面の制御ソフトウェア等で実 現され得る。  [0014] The receiving unit 1101 is information having mobile terminal identification information that is information for identifying the mobile terminal device 13, and receives a control command that is a command for protecting personal information that is information related to an individual. . The personal information is information related to individuals, for example, phone book information that is phone book information, address book information that is address book information, and a customer database in which information such as customer addresses is stored. The mobile terminal identification information is, for example, a telephone number, an IP address, an IP address and port number, a nickname. The data structure of the control instruction does not matter. The control command may be composed only of mobile terminal identification information. Here, “acceptance” includes acceptance by manual input, reception of an external device, reading from a recording medium, and the like. The control command input means may be anything such as a numeric keypad, keyboard, mouse or menu screen. The accepting unit 1101 can be realized by a device driver for input means such as a numeric keypad or a keyboard, or control software for a menu screen.
[0015] 制御命令送信部 1102は、受付部 1101が受け付けた制御命令を制御サーバ装置 12に送信する。制御命令送信部 1102が制御命令を送信するタイミング、トリガーは 問わない。例えば、制御命令送信部 1102は、受付部 1101が制御命令を受け付け た場合に、ただちに制御命令を送信する。制御命令送信部 1102は、通常、無線ま たは有線の通信手段で実現される力 放送手段で実現されても良い。 The control command transmission unit 1102 transmits the control command received by the reception unit 1101 to the control server device 12. The timing and trigger at which the control command transmission unit 1102 transmits the control command does not matter. For example, when the reception unit 1101 receives a control command, the control command transmission unit 1102 immediately transmits the control command. Control command transmitter 1102 is usually wireless or wireless. Alternatively, it may be realized by a broadcasting means that is realized by a wired communication means.
[0016] 第一更新完了情報受信部 1103は、更新完了情報を受信する。更新完了情報は、 移動体端末装置 13の更新部 1303が個人情報を更新した場合に、当該更新した旨 を示す情報である。更新完了情報のデータ構造や内容は問わない。更新完了情報 は、更新した個人情報を識別する情報等を含んでも良いし、更新した旨のみの情報 でも良い。第一更新完了情報受信部 1103は、通常、無線または有線の通信手段で 実現されるが、放送を受信する手段で実現されても良い。  [0016] First update completion information receiving section 1103 receives update completion information. The update completion information is information indicating that the update is performed when the update unit 1303 of the mobile terminal device 13 updates the personal information. The data structure and contents of the update completion information are not limited. The update completion information may include information for identifying the updated personal information, or may be information only indicating that the update has been completed. First update completion information receiving section 1103 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
[0017] 第一更新完了情報出力部 1104は、更新完了情報を出力する。ここで、出力とは、 ディスプレイへの表示、プリンタへの印字、音出力、外部の装置への送信、記録媒体 への蓄積等を含む概念である。第一更新完了情報出力部 1104は、ディスプレイや スピーカ一等の出力デバイスを含むと考えても含まないと考えても良い。第一更新完 了情報出力部 1104は、出力デバイスのドライバーソフトまたは、出力デバイスのドラ ィバーソフトと出力デバイス等で実現され得る。  The first update completion information output unit 1104 outputs update completion information. Here, output is a concept including display on a display, printing on a printer, sound output, transmission to an external device, storage on a recording medium, and the like. The first update completion information output unit 1104 may or may not include an output device such as a display or a speaker. The first update completion information output unit 1104 can be implemented by output device driver software, or output device driver software and an output device.
[0018] 制御命令受信部 1201は、操作端末装置 11から制御命令を受信する。制御命令 受信部 1201は、操作端末装置 11から、間接的に制御命令を受信しても、直接に制 御命令を受信しても良い。制御命令受信部 1201は、通常、無線または有線の通信 手段で実現されるが、放送を受信する手段で実現されても良い。  [0018] The control command receiving unit 1201 receives a control command from the operation terminal device 11. The control command receiving unit 1201 may receive the control command indirectly from the operation terminal device 11 or may directly receive the control command. The control command receiving unit 1201 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
[0019] 保護命令送信部 1202は、制御命令受信部 1201が受信した制御命令が有する移 動体端末識別情報で識別される移動体端末装置 13に、個人情報を保護するための 命令である保護命令を送信する。保護命令送信部 1202は、通常、制御命令から保 護命令を構成する処理も行う。保護命令送信部 1202は、通常、無線または有線の 通信手段で実現されるが、放送手段で実現されても良い。  [0019] The protection command transmission unit 1202 is a protection command that is a command for protecting personal information to the mobile terminal device 13 identified by the mobile terminal identification information included in the control command received by the control command receiving unit 1201. Send. The protection command transmission unit 1202 usually also performs processing for forming a protection command from a control command. The protection command transmission unit 1202 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.
[0020] 第三更新完了情報受信部 1203は、移動体端末装置 13から更新完了情報を受信 する。第三更新完了情報受信部 1203は、移動体端末装置 13から、間接的に更新 完了情報を受信しても良い。第三更新完了情報受信部 1203は、通常、無線または 有線の通信手段で実現されるが、放送を受信する手段で実現されても良い。  [0020] Third update completion information receiving section 1203 receives update completion information from mobile terminal device 13. The third update completion information receiving unit 1203 may receive update completion information indirectly from the mobile terminal device 13. The third update completion information receiving unit 1203 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
[0021] 第三更新完了情報送信部 1204は、第三更新完了情報受信部 1203が受信した更 新完了情報を操作端末装置 11に送信する。第三更新完了情報送信部 1204は、通 常、無線または有線の通信手段で実現されるが、放送手段で実現されても良い。 The third update completion information transmission unit 1204 transmits the update completion information received by the third update completion information reception unit 1203 to the operation terminal device 11. The third update completion information transmission unit 1204 Usually, it is realized by wireless or wired communication means, but may be realized by broadcasting means.
[0022] 第三個人情報受信部 1205は、移動体端末装置 13から個人情報を受信する。第 三個人情報受信部 1205は、移動体端末装置 13から、間接的に個人情報を受信し ても良い。第三個人情報受信部 1205は、通常、無線または有線の通信手段で実現 される力 放送を受信する手段で実現されても良い。  The third personal information receiving unit 1205 receives personal information from the mobile terminal device 13. Third personal information receiving section 1205 may receive personal information indirectly from mobile terminal device 13. The third personal information receiving unit 1205 may be realized by means for receiving power broadcasting, which is usually realized by wireless or wired communication means.
[0023] 個人情報出力部 1206は、第三個人情報受信部 1205が受信した個人情報を出力 する。出力とは、ディスプレイへの表示、プリンタへの印字、外部の装置への送信、記 録媒体への蓄積等を含む概念である。ここでは、出力とは、記録媒体への蓄積が好 ましい。個人情報出力部 1206は、記録媒体等の出力デバイスを含むと考えても含ま ないと考えても良い。個人情報出力部 1206は、出力デバイスのドライバーソフトまた は、出力デバイスのドライバーソフトと出力デバイス等で実現され得る。  [0023] The personal information output unit 1206 outputs the personal information received by the third personal information receiving unit 1205. Output is a concept that includes display on a display, printing on a printer, transmission to an external device, storage on a recording medium, and the like. Here, the output is preferably stored in a recording medium. The personal information output unit 1206 may or may not include an output device such as a recording medium. The personal information output unit 1206 can be realized by output device driver software, or output device driver software and an output device.
[0024] 個人情報格納部 1301は、 1以上の個人情報が格納される。 1以上の個人情報とは 、例えば、電話帳情報と、顧客 DBなどである。個人情報格納部 1301は、不揮発性 の記録媒体が好適であるが、揮発性の記録媒体でも実現可能である。個人情報格 納部 1301の個人情報は、例えば、移動体端末装置 13のユーザが手入力で入力し た情報である。また、個人情報格納部 1301の個人情報は、例えば、外部の装置から 受信した情報である。  [0024] The personal information storage unit 1301 stores one or more pieces of personal information. The one or more pieces of personal information are, for example, phone book information and customer DB. The personal information storage unit 1301 is preferably a non-volatile recording medium, but can also be realized by a volatile recording medium. The personal information stored in the personal information storage unit 1301 is, for example, information manually input by the user of the mobile terminal device 13. The personal information stored in the personal information storage unit 1301 is information received from an external device, for example.
[0025] 保護命令受信部 1302は、制御サーバ装置 12から保護命令を受信する。保護命 令受信部 1302は、制御サーバ装置 12から、間接的に保護命令を受信しても良い。 保護命令受信部 1302は、通常、無線または有線の通信手段で実現されるが、放送 を受信する手段で実現されても良い。  The protection command receiving unit 1302 receives a protection command from the control server device 12. The protection command receiving unit 1302 may receive the protection command indirectly from the control server device 12. The protection command receiving unit 1302 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
[0026] 更新部 1303は、保護命令の受信に対応して、個人情報格納部 1301の個人情報 に対して、所定の文字列を上書きし、当該個人情報を更新する。個人情報が電話帳 情報であり、氏名と電話番号の情報を有する場合、更新部 1303は、例えば、電話番 号の箇所を、所定の文字列で上書きする。更新部 1303は、例えば、電話番号の数 字列を、予め決められた文字 (Xなど)で、数字列の桁数の文字列長だけ、上書きし ても良い。また、更新部 1303は、例えば、氏名と電話番号の文字列を、乱数などで コードを発生させて、当該コードの文字で上書きしても良い。また、更新部 1303は、 例えば、元の個人情報の電話番号を取得し、当該電話番号をパラメータとして所定 の演算を行い、当該演算結果を新しい電話番号 (数値列)として、上書きしても良い。 カゝかる新しい電話番号を生成し、上書きした場合、移動体端末装置 13を盗難したり、 拾得したりした者は、違った電話番号等の情報を得て、誤った情報であることに気づ かない、というメリットがある。保護命令が個人情報を識別する情報を含む場合、更新 部 1303は、個人情報を識別する情報に基づいて、個人情報を選択し、当該選択し た個人情報を更新する。更新部 1303は、通常、 MPUやメモリ等力も実現され得る。 更新部 1303の処理手順は、通常、ソフトウェアで実現され、当該ソフトウェアは ROM 等の記録媒体に記録されている。但し、ハードウ ア(専用回路)で実現しても良い。 In response to receiving the protection command, the update unit 1303 overwrites a predetermined character string on the personal information stored in the personal information storage unit 1301 and updates the personal information. When the personal information is phone book information and has name and phone number information, the updating unit 1303 overwrites the location of the phone number with a predetermined character string, for example. For example, the update unit 1303 may overwrite the numeric character string of the telephone number with a predetermined character (such as X) by the character string length of the number of digits of the numeric character string. Further, the updating unit 1303 may generate a code with a random number or the like and overwrite the character string of the name and the telephone number with the character of the code. In addition, the update unit 1303 For example, the telephone number of the original personal information may be acquired, a predetermined calculation may be performed using the telephone number as a parameter, and the calculation result may be overwritten as a new telephone number (numerical string). If a new phone number is generated and overwritten, a person who has stolen or picked up the mobile terminal device 13 has obtained information such as a different phone number and is aware that the information is incorrect. There is an advantage that it is not. When the protection order includes information for identifying personal information, the updating unit 1303 selects personal information based on the information for identifying personal information, and updates the selected personal information. In general, the update unit 1303 can also implement an MPU, memory, or the like. The processing procedure of the update unit 1303 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).
[0027] 更新完了情報送信部 1304は、更新部 1303が個人情報を更新した場合に、当該 更新した旨を示す情報である更新完了情報を制御サーバ装置 12に送信する。更新 完了情報送信部 1304は、通常、無線の通信手段で実現されるが、有線の通信手段 や放送手段で実現されても良 ヽ。  [0027] When the update unit 1303 updates the personal information, the update completion information transmission unit 1304 transmits update completion information, which is information indicating that the update has been performed, to the control server device 12. The update completion information transmission unit 1304 is usually realized by a wireless communication means, but may be realized by a wired communication means or a broadcast means.
[0028] 個人情報送信部 1305は、更新部 1303が個人情報を更新する前に、当該個人情 報を制御サーバ装置 12に送信する。個人情報送信部 1305は、通常、無線の通信 手段で実現されるが、有線の通信手段や放送手段で実現されても良い。  The personal information transmitting unit 1305 transmits the personal information to the control server device 12 before the updating unit 1303 updates the personal information. The personal information transmission unit 1305 is usually realized by a wireless communication unit, but may be realized by a wired communication unit or a broadcasting unit.
次に、情報処理システムの動作について説明する。  Next, the operation of the information processing system will be described.
[0029] まず、操作端末装置 11の動作について説明する。操作端末装置 11の受付部 110 1は制御命令を受け付け、制御命令送信部 1102は受付部 1101が受け付けた制御 命令を制御サーバ装置 12に送信する。そして、操作端末装置 11の第一更新完了情 報受信部 1103は、更新完了情報を受信し、第一更新完了情報出力部 1104は、当 該更新完了情報を出力する。  First, the operation of the operation terminal device 11 will be described. The reception unit 1101 of the operation terminal device 11 receives a control command, and the control command transmission unit 1102 transmits the control command received by the reception unit 1101 to the control server device 12. Then, the first update completion information receiving unit 1103 of the operation terminal device 11 receives the update completion information, and the first update completion information output unit 1104 outputs the update completion information.
次に、制御サーバ装置 12の動作について、図 3のフローチャートを用いて説明する  Next, the operation of the control server device 12 will be described using the flowchart of FIG.
(ステップ S301)制御命令受信部 1201は、制御命令を受信した力否かを判断する 。制御命令を受信すればステップ S302に行き、制御命令を受信しなければステップ S305に行く。 (Step S301) The control command receiving unit 1201 determines whether or not it has received the control command. If a control command is received, go to step S302, and if no control command is received, go to step S305.
(ステップ S302)保護命令送信部 1202は、ステップ S301で受信した制御命令が 有する移動体端末識別情報を取得する。 (Step S302) The protection command transmission unit 1202 receives the control command received in Step S301. The mobile terminal identification information it has is acquired.
(ステップ S303)保護命令送信部 1202は、保護命令を構成する。保護命令送信 部 1202は、通常、ステップ S301で受信した制御命令に基づいて、保護命令を構成 する。  (Step S303) The protection command transmission unit 1202 constitutes a protection command. The protection command transmission unit 1202 normally configures a protection command based on the control command received in step S301.
(ステップ S304)保護命令送信部 1202は、ステップ S 302で取得した移動体端末 識別情報で特定される移動体端末装置 13に、ステップ S303で構成した保護命令を 送信する。ステップ S 301に戻る。  (Step S304) The protection command transmitting unit 1202 transmits the protection command configured in Step S303 to the mobile terminal device 13 specified by the mobile terminal identification information acquired in Step S302. Return to step S301.
[0030] (ステップ S305)第三更新完了情報受信部 1203は、移動体端末装置 13から更新 完了情報を受信したか否かを判断する。更新完了情報を受信すればステップ S306 に行き、更新完了情報を受信しなければステップ S307に行く。 (Step S 305) Third update completion information receiving section 1203 determines whether or not update completion information has been received from mobile terminal device 13. If update completion information is received, the process goes to step S306, and if update completion information is not received, the process goes to step S307.
(ステップ S306)第三更新完了情報送信部 1204は、ステップ S305で受信した更 新完了情報を操作端末装置 11に送信する。ステップ S301に戻る。  (Step S306) The third update completion information transmitting unit 1204 transmits the update completion information received in step S305 to the operation terminal device 11. Return to step S301.
[0031] (ステップ S307)第三個人情報受信部 1205は、移動体端末装置 13から個人情報 を受信したか否かを判断する。個人情報を受信すればステップ S308に行き、個人情 報を受信しなければステップ S 301に戻る。 (Step S 307) Third personal information receiver 1205 determines whether or not personal information has been received from mobile terminal device 13. If personal information is received, the process goes to step S308, and if no personal information is received, the process returns to step S301.
(ステップ S308)個人情報出力部 1206は、ステップ S 307で受信した個人情報を 出力する。ステップ S301に戻る。  (Step S308) The personal information output unit 1206 outputs the personal information received in step S307. Return to step S301.
[0032] なお、図 3のフローチャートにおいて、制御サーバ装置 12は、操作端末装置 11が 正当な端末であるか否かを認証する認証処理を行って、当該認証処理の結果、認証 許可である場合のみ、保護命令を移動体端末装置 13に送信しても良!、。 In the flowchart of FIG. 3, the control server device 12 performs an authentication process for authenticating whether or not the operation terminal device 11 is a valid terminal. As a result of the authentication process, the authentication is permitted. Only the protection command may be sent to the mobile terminal device 13!
なお、図 3のフローチャートにおいて、電源オフや処理終了の割り込みにより処理は 終了する。  In the flowchart of FIG. 3, the process ends when the power is turned off or the process is terminated.
次に、図 4、図 5のフローチャートを用いて、移動体端末装置 13の動作について説 明する。  Next, the operation of the mobile terminal device 13 will be described using the flowcharts of FIG. 4 and FIG.
[0033] (ステップ S401)保護命令受信部 1302は、制御サーバ装置 12から保護命令を受 信したか否かを判断する。保護命令を受信すればステップ S402に行き、保護命令を 受信しなければステップ S401に戻る。  (Step S 401) Protection command receiving section 1302 determines whether or not a protection command has been received from control server device 12. If a protection command is received, the process proceeds to step S402. If a protection command is not received, the process returns to step S401.
[0034] (ステップ S402)個人情報送信部 1305は、更新対象の個人情報を、個人情報格 納部 1301から取得する。なお、個人情報格納部 1301が 2以上の個人情報を格納し ており、保護命令が当該 2以上の個人情報のうちの 1以上の個人情報を特定する情 報を有する場合、個人情報送信部 1305は、当該 1以上の個人情報を、選択して取 得する。 [0034] (Step S402) The personal information transmission unit 1305 converts the personal information to be updated into a personal information class. Acquired from the department 1301. If personal information storage unit 1301 stores two or more personal information and the protection order has information specifying one or more personal information of the two or more personal information, personal information transmission unit 1305 Selects and obtains one or more personal information.
(ステップ S403)個人情報送信部 1305は、ステップ S402で取得した個人情報を 制御サーバ装置 12に送信する。  (Step S403) The personal information transmitting unit 1305 transmits the personal information acquired in step S402 to the control server device 12.
[0035] (ステップ S404)更新部 1303は、保護命令の受信に対応して、個人情報格納部 1 301の個人情報に対して、所定の文字列を上書きし、当該個人情報を更新する。か 力る更新処理の詳細については、図 5のフローチャートを用いて説明する。  (Step S404) In response to the reception of the protection command, the update unit 1303 overwrites the predetermined character string on the personal information stored in the personal information storage unit 1301, and updates the personal information. Details of the update process will be described with reference to the flowchart of FIG.
[0036] (ステップ S405)更新完了情報送信部 1304は、更新部 1303が個人情報を更新し た場合に、当該更新した旨を示す情報である更新完了情報を構成する。更新完了 情報の構成とは、予め格納されている更新完了情報を読み込む処理でも良い。また 、 2以上の個人情報のうちの一部の個人情報を更新した場合は、更新完了情報送信 部 1304は、当該更新した個人情報を特定する情報を有する更新完了情報を構成し ても良い。  (Step S405) When the update unit 1303 updates personal information, the update completion information transmission unit 1304 configures update completion information that is information indicating that the update has been performed. The configuration of the update completion information may be a process of reading update completion information stored in advance. In addition, when some of the two or more pieces of personal information are updated, the update completion information transmitting unit 1304 may constitute update completion information having information for specifying the updated personal information.
(ステップ S406)更新完了情報送信部 1304は、ステップ S405で構成した更新完 了情報を制御サーバ装置 12に送信する。ステップ S401に戻る。  (Step S406) The update completion information transmission unit 1304 transmits the update completion information configured in step S405 to the control server device 12. Return to step S401.
次に、更新処理について、図 5のフローチャートを用いて説明する。  Next, the update process will be described with reference to the flowchart of FIG.
(ステップ S501)更新部 1303は、カウンタ iに 1を代入する。  (Step S501) The updating unit 1303 substitutes 1 for the counter i.
[0037] (ステップ S502)更新部 1303は、更新対象の個人情報の中に、 i番目のデータが 存在するか否かを判断する。 i番目のデータが存在すればステップ S503に行き、 i番 目のデータが存在しなければ上位関数にリターンする。 [0037] (Step S502) The update unit 1303 determines whether or not the i-th data exists in the personal information to be updated. If the i-th data exists, the process goes to step S503. If the i-th data does not exist, the process returns to the upper function.
(ステップ S503)更新部 1303は、更新対象の個人情報の中の i番目のデータを取 得する。  (Step S503) The updating unit 1303 obtains the i-th data in the personal information to be updated.
[0038] (ステップ S504)更新部 1303は、ステップ S 503で取得した i番目のデータを、所定 の処理により加工する。ここで、所定の処理とは、例えば、暗号ィ匕処理である。また、 所定の処理とは、例えば、「f (i番目のデータ)」という演算 fを i番目のデータに対して 実行することである。ここで、 i番目のデータは、例えば、電話番号の数字列で、 fは、 所定の演算式である。また、 fは可逆であることが望ましい。 (Step S504) The updating unit 1303 processes the i-th data acquired in step S503 by a predetermined process. Here, the predetermined process is, for example, an encryption process. The predetermined process is, for example, to execute an operation f “f (i-th data)” on the i-th data. Here, the i-th data is, for example, a numeric string of telephone numbers, and f is It is a predetermined arithmetic expression. F is preferably reversible.
(ステップ S505)更新部 1303は、更新対象の個人情報の中の i番目のデータを、ス テツプ S504でカ卩ェして得たデータで上書き更新する。  (Step S505) The updating unit 1303 overwrites and updates the i-th data in the personal information to be updated with the data obtained by checking in step S504.
(ステップ S506)更新部 1303は、カウンタ iを 1、インクリメントする。ステップ S502 に戻る。  (Step S506) The updating unit 1303 increments the counter i by 1. Return to step S502.
[0039] なお、図 5のフローチャートにおいて、ステップ S504において、 i番目のデータをカロ ェして、当該カ卩ェしたデータを用いて更新した力 予め決められた文字列(例えば、「 09012345678」)を用いて、所定の箇所 (電話番号など)を更新しても良!、。  [0039] In the flowchart of FIG. 5, in step S504, the i-th data is covered and updated using the checked data. A predetermined character string (for example, "09012345678") You can also use the to update a given location (phone number, etc.)!
以下、本実施の形態における情報処理システムの具体的な動作にっ 、て説明する 。情報処理システムの概念図は図 1である。  Hereinafter, a specific operation of the information processing system in the present embodiment will be described. A conceptual diagram of the information processing system is shown in FIG.
[0040] 今、移動体端末装置 13の個人情報格納部 1301は、図 6に示す電話帳情報を格 納している、とする。電話帳情報は、「ID」「氏名」「所属」「電話番号」などの属性を有 するレコードを 1以上有する。「ID」は、レコードを識別する情報であり、表におけるレ コード管理のために存在する。  [0040] Now, it is assumed that the personal information storage unit 1301 of the mobile terminal device 13 stores the phone book information shown in FIG. The phone book information has one or more records having attributes such as “ID”, “name”, “affiliation”, and “phone number”. “ID” is information for identifying the record and exists for record management in the table.
[0041] かかる場合、本移動体端末装置 13のユーザは、移動体端末装置 13を紛失し、操 作端末装置 11のオペレータに電話をして、自分の移動体端末装置 13の個人情報( ここでは、電話帳情報)を第三者に見えないようにして欲しい旨を依頼した、とする。 そして、オペレータは、本移動体端末装置 13のユーザから、移動体端末装置 13の 電話番号「09011223456」を聞いて、図 7に示す画面に当該電話番号を入力した、 とする。  In such a case, the user of the mobile terminal device 13 loses the mobile terminal device 13, calls the operator of the operation terminal device 11, and personal information of the mobile terminal device 13 (here Now, let's say that you have requested that the phone book information be hidden from the third party. Then, it is assumed that the operator hears the telephone number “09011223456” of the mobile terminal device 13 from the user of the mobile terminal device 13 and inputs the telephone number on the screen shown in FIG.
[0042] 次に、オペレータは、ユーザの要望に基づき、電話帳情報のバックアップを行うた めに、バックアップ「あり」のチェックボックスをチェックする(図 7参照)、とする。そして 、本オペレータは、図 7の画面の「送信」ボタンを押下した、とする。  Next, it is assumed that the operator checks the “Yes” backup check box (see FIG. 7) in order to back up the phone book information based on the user's request. Then, it is assumed that the operator presses the “Send” button on the screen of FIG.
[0043] 次に、操作端末装置 11の制御命令送信部 1102は、図 7のオペレータが入力した 情報に基づいて、図 8に示す制御命令を構成する。制御命令は、「更新」という命令と 、更新する対象の個人情報の種類「電話帳」と、移動体端末装置 13の移動体端末識 別情報「09011223456」を有する。  Next, the control command transmission unit 1102 of the operation terminal device 11 configures the control command shown in FIG. 8 based on the information input by the operator of FIG. The control command includes a command “update”, a type of personal information “phone book” to be updated, and mobile terminal identification information “09011223456” of the mobile terminal device 13.
[0044] 次に、制御命令送信部 1102は、図 8の制御命令を制御サーバ装置 12に送信する 。なお、制御命令送信部 1102は、制御サーバ装置 12と通信するための情報 (制御 サーバ装置 12の IPアドレスや電子メールアドレスや電話番号など)を保持して!/、る、 とする。 Next, the control command transmission unit 1102 transmits the control command in FIG. 8 to the control server device 12. . The control command transmission unit 1102 holds information for communicating with the control server device 12 (IP address, e-mail address, telephone number, etc. of the control server device 12).
[0045] 次に、制御サーバ装置 12の制御命令受信部 1201は、図 8の制御命令を受信する 。そして、制御サーバ装置 12の保護命令送信部 1202は、図 8の制御命令力も移動 体端末識別情報「09011223456」を取得する。  Next, the control command receiving unit 1201 of the control server device 12 receives the control command of FIG. Then, the protection command transmission unit 1202 of the control server device 12 acquires the mobile terminal identification information “09011223456” with the control command power of FIG.
そして、制御サーバ装置 12の保護命令送信部 1202は、図 8の制御命令から図 9 の保護命令を構成する。  Then, the protection command transmission unit 1202 of the control server device 12 configures the protection command of FIG. 9 from the control command of FIG.
次に、保護命令送信部 1202は、移動体端末識別情報「09011223456」で識別さ れ得る移動体端末装置 13に、図 9の保護命令を送信する。  Next, the protection command transmission unit 1202 transmits the protection command of FIG. 9 to the mobile terminal device 13 that can be identified by the mobile terminal identification information “09011223456”.
次に、移動体端末装置 13の保護命令受信部 1302は、図 9の保護命令を受信する  Next, the protection command receiving unit 1302 of the mobile terminal device 13 receives the protection command of FIG.
[0046] 次に、移動体端末装置 13の個人情報送信部 1305は、電話帳情報のバックアップ のために、個人情報格納部 1301から図 6の電話帳情報を取得する。そして、個人情 報送信部 1305は、図 6の電話帳情報を制御サーバ装置 12に送信する。 Next, the personal information transmission unit 1305 of the mobile terminal device 13 acquires the phone book information of FIG. 6 from the personal information storage unit 1301 for backup of the phone book information. Then, the personal information transmission unit 1305 transmits the telephone directory information of FIG. 6 to the control server device 12.
[0047] 次に、制御サーバ装置 12の第三個人情報受信部 1205は、図 6の電話帳情報を受 信する。そして、個人情報出力部 1206は、受信した電話帳情報を蓄積する。なお、 電話帳情報は、通常、移動体端末装置 13の移動体端末識別情報「09011223456 」と対にして、蓄積される。また、蓄積した電話帳情報は、所定の処理により、送信等 される。なお、所定の処理とは、例えば、正当な権限を有する者からの要求があり、当 該要求に対応して送信することである。その他、所定の処理は、種々あり得る。  Next, the third personal information receiving unit 1205 of the control server device 12 receives the phone book information of FIG. Then, the personal information output unit 1206 accumulates the received phone book information. The phone book information is usually stored in a pair with the mobile terminal identification information “09011223456” of the mobile terminal device 13. The stored phone book information is transmitted by a predetermined process. Note that the predetermined processing is, for example, a request from a person having a legitimate authority and transmission corresponding to the request. In addition, there are various predetermined processes.
次に、移動体端末装置 13の更新部 1303は、図 9の保護命令に従って、電話帳情 報を上書き更新する。ここで更新部 1303は、以下のルールにより、電話帳情報を上 書き更新する、とする。  Next, the update unit 1303 of the mobile terminal device 13 overwrites and updates the telephone directory information in accordance with the protection instruction of FIG. Here, it is assumed that the updating unit 1303 overwrites and updates the phone book information according to the following rules.
[0048] つまり、当該ルールは、氏名の 2文字を暗号ィ匕して、他の 2文字に変換する、という ルールである。また、当該ルールは、電話番号の数字列をパラメータとして演算 (f)し 、他の数字列を取得し、当該取得した数字列を上書きする。演算 (f)は、例えば、最 初の数字から 3桁までの数字は変化させずに、 4桁目から 11桁目までの数字は変化 させる演算である。 [0048] That is, the rule is that the two characters of the name are encrypted and converted to the other two characters. In addition, the rule calculates (f) a telephone number number string as a parameter, acquires another number string, and overwrites the acquired number string. In the calculation (f), for example, the numbers from the first digit to the third digit are not changed, and the numbers from the fourth digit to the eleventh digit are changed. It is an operation to be performed.
なお、暗号化した氏名の 2文字、演算した数字列は、可逆で、解凍すれば正しい氏 名が取得され得、かつ、 Γ1の演算を行うことにより、元の電話番号の数字列を取得で きる、とする。 Note that the encrypted two characters of the name and the computed number string are reversible, and if decompressed, the correct name can be obtained, and the number string of the original telephone number is obtained by performing the Γ 1 operation. It can be done.
そして、更新部 1303は、図 6の電話帳情報を、図 10に示すような電話帳情報に変 更して、書き換える。  Then, the updating unit 1303 changes the phone book information in FIG. 6 to the phone book information as shown in FIG. 10 and rewrites it.
次に、移動体端末装置 13の更新完了情報送信部 1304は、電話帳情報の更新が 完了した旨の情報である更新完了情報を構成し、制御サーバ装置 12に送信する。 次に、制御サーバ装置 12の第三更新完了情報受信部 1203は、更新完了情報を 受信する。そして、第三更新完了情報送信部 1204は、更新完了情報を操作端末装 置 11に送信する。  Next, the update completion information transmission unit 1304 of the mobile terminal device 13 configures update completion information, which is information indicating that the update of the phone book information is completed, and transmits it to the control server device 12. Next, the third update completion information receiving unit 1203 of the control server device 12 receives the update completion information. Then, the third update completion information transmission unit 1204 transmits the update completion information to the operation terminal device 11.
[0049] 次に、第一更新完了情報受信部 1103は、更新完了情報を受信する。そして、第 一更新完了情報出力部 1104は、図 11に示すように、更新完了情報を出力する。こ こでは、更新完了情報は、移動体端末識別情報を有する。  Next, the first update completion information receiving unit 1103 receives update completion information. Then, first update completion information output section 1104 outputs update completion information as shown in FIG. Here, the update completion information includes mobile terminal identification information.
[0050] 以上、本実施の形態によれば、携帯電話等の端末に格納された個人情報の保護 が可能であり、かつ、個人情報の処理後でもユーザは個人情報の存在を想像できる 。また、本具体例によれば、個人情報の一部を書き換えるので、ユーザは、おおよそ どのような情報が存在したかが分かり、便利である。一方、第三者にとっては、意味の 無い情報が残ることとなり、個人情報の保護が担保され得る。  [0050] As described above, according to the present embodiment, personal information stored in a terminal such as a mobile phone can be protected, and the user can imagine the existence of personal information even after processing the personal information. In addition, according to this specific example, a part of personal information is rewritten, so that the user can easily know what kind of information exists and is convenient. On the other hand, for a third party, meaningless information remains, and protection of personal information can be ensured.
なお、本実施の形態の具体例によれば、移動体端末装置 13の電話帳情報を一部 変更したが、全部変更しても良い。  Note that, according to the specific example of the present embodiment, the phone book information of the mobile terminal device 13 is partially changed, but may be changed entirely.
また、本実施の形態の具体例によれば、電話帳情報を元に戻せるように電話帳情 報を変更したが、元に戻せなくても良い。  Further, according to the specific example of the present embodiment, the phone book information is changed so that the phone book information can be restored. However, the phone book information may not be restored.
また、本実施の形態において、例えば、電話帳情報の件数など、元の個人情報か ら取得される情報のみを残すようにしても良 、。  In the present embodiment, for example, only information acquired from the original personal information such as the number of phone book information may be left.
[0051] さらに、本実施の形態における処理は、ソフトウェアで実現しても良い。そして、この ソフトウェアをソフトウェアダウンロード等により配布しても良い。また、このソフトウェア を CD— ROMなどの記録媒体に記録して流布しても良い。なお、このことは、本明細 書における他の実施の形態においても該当する。なお、本実施の形態における移動 体端末装置を実現するソフトウェアは、以下のようなプログラムである。つまり、このプ ログラムは、コンピュータに、保護命令を受信する保護命令受信ステップと、前記前 記保護命令の受信に対応して、格納している個人情報に対して、所定の文字列を上 書きし、当該個人情報を更新する更新ステップを実行させるためのプログラム、であ る。 [0051] Furthermore, the processing in the present embodiment may be realized by software. This software may be distributed by software download or the like. In addition, this software may be recorded and distributed on a recording medium such as a CD-ROM. Note that this is This also applies to other embodiments in the book. The software that realizes the mobile terminal device in the present embodiment is the following program. In other words, this program overwrites a predetermined character string with respect to the stored personal information in response to the protection command receiving step for receiving the protection command and the reception of the protection command. And a program for executing an update step for updating the personal information.
[0052] 上記プログラムは、コンピュータに、前記更新ステップで前記個人情報を更新した 場合に、当該更新した旨を示す情報である更新完了情報を送信する更新完了情報 送信ステップを、さらに実行させるためのプログラム、でも良い。  [0052] When the personal information is updated in the update step, the program causes the computer to further execute an update completion information transmission step of transmitting update completion information that is information indicating that the personal information has been updated. It can be a program.
上記プログラムは、コンピュータに、前記更新ステップで前記個人情報を更新する 前に、当該個人情報を送信する個人情報送信ステップを、さらに実行させるためのプ ログラム、でも良い。  The program may be a program for causing a computer to further execute a personal information transmission step of transmitting the personal information before updating the personal information in the updating step.
(実施の形態 2)  (Embodiment 2)
本実施の形態における情報処理システムは、実施の形態 1における情報処理シス テムの構成に対して、さらに認証サーバ装置を具備し、操作端末装置の認証を行うこ とを特徴とする。  The information processing system in the present embodiment is characterized in that the information processing system in the first embodiment further includes an authentication server device to authenticate the operation terminal device.
図 12は、本実施の形態における情報処理システムの概念図である。本情報処理シ ステムは、操作端末装置 121、認証サーバ装置 122、制御サーバ装置 123、移動体 端末装置 13を具備する。  FIG. 12 is a conceptual diagram of the information processing system in the present embodiment. The information processing system includes an operation terminal device 121, an authentication server device 122, a control server device 123, and a mobile terminal device 13.
図 13は、本実施の形態における情報処理システムのブロック図である。  FIG. 13 is a block diagram of the information processing system in the present embodiment.
[0053] 操作端末装置 121は、操作端末装置識別情報格納部 12101、受付部 1101、第 一操作端末装置識別情報送信部 12102、制御命令送信部 1102、第一更新完了情 報受信部 1103、第一更新完了情報出力部 1104を具備する。 The operation terminal device 121 includes an operation terminal device identification information storage unit 12101, a reception unit 1101, a first operation terminal device identification information transmission unit 12102, a control command transmission unit 1102, a first update completion information reception unit 1103, a first An update completion information output unit 1104 is provided.
認証サーバ装置 122は、第二操作端末装置識別情報受信部 12201、第二制御命 令受信部 12202、認証部 12203、第二制御命令送信部 12204を具備する。  The authentication server device 122 includes a second operation terminal device identification information receiving unit 12201, a second control command receiving unit 12202, an authentication unit 12203, and a second control command transmitting unit 12204.
[0054] 制御サーバ装置 123は、制御命令受信部 12301、保護命令送信部 1202、第三 更新完了情報受信部 1203、第三更新完了情報送信部 12304、第三個人情報受信 部 1205、個人情報出力部 1206を具備する。 [0055] 操作端末装置識別情報格納部 12101は、操作端末装置 121を識別する情報であ る操作端末装置識別情報が格納される。操作端末装置識別情報は、例えば、操作 端末装置 121の IPアドレスや、操作端末装置 121の MACアドレスや、操作端末装 置 121を操作するオペレータの IDとパスワードの組などである。操作端末装置識別 情報は、間接的に操作端末装置 121を識別する情報であっても良い。間接的に操 作端末装置 121を識別する情報とは、例えば、操作端末装置 121のユーザ (オペレ ータ)を識別する情報である。操作端末装置識別情報は、予め格納されている情報 でも良いし、オペレータが入力した情報でも良い。操作端末装置識別情報格納部 12 101は、不揮発性の記録媒体が好適であるが、揮発性の記録媒体でも実現可能で ある。 [0054] The control server device 123 includes a control command receiving unit 12301, a protection command transmitting unit 1202, a third update completion information receiving unit 1203, a third update completion information transmitting unit 12304, a third personal information receiving unit 1205, and a personal information output. Part 1206. The operation terminal device identification information storage unit 12101 stores operation terminal device identification information that is information for identifying the operation terminal device 121. The operation terminal device identification information is, for example, an IP address of the operation terminal device 121, a MAC address of the operation terminal device 121, a pair of an ID and password of an operator who operates the operation terminal device 121, and the like. The operation terminal device identification information may be information that indirectly identifies the operation terminal device 121. The information for indirectly identifying the operation terminal device 121 is information for identifying the user (operator) of the operation terminal device 121, for example. The operation terminal device identification information may be information stored in advance or information input by an operator. The operation terminal device identification information storage unit 12 101 is preferably a nonvolatile recording medium, but can also be realized by a volatile recording medium.
[0056] 第一操作端末装置識別情報送信部 12102は、操作端末装置識別情報格納部 12 101の操作端末装置識別情報を認証サーバ装置 122に送信する。第一操作端末装 置識別情報送信部 12102は、通常、無線または有線の通信手段で実現されるが、 放送手段で実現されても良 ヽ。  The first operation terminal device identification information transmission unit 12102 transmits the operation terminal device identification information in the operation terminal device identification information storage unit 12 101 to the authentication server device 122. First operation terminal device identification information transmitting section 12102 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.
[0057] 第二操作端末装置識別情報受信部 12201は、操作端末装置 121から操作端末 装置識別情報を受信する。第二操作端末装置識別情報受信部 12201は、通常、無 線または有線の通信手段で実現されるが、放送を受信する手段で実現されても良 ヽ 第二制御命令受信部 12202は、操作端末装置 121から制御命令を受信する。第 二制御命令受信部 12202は、無線の通信手段が好適である力 放送を受信する手 段や有線の通信手段でも実現可能である。  [0057] Second operation terminal device identification information receiving section 12201 receives operation terminal device identification information from operation terminal device 121. The second operation terminal device identification information receiving unit 12201 is usually realized by a wireless or wired communication means, but may be realized by means of receiving a broadcast. The second control command receiving unit 12202 is an operation terminal. A control command is received from the device 121. The second control command receiving unit 12202 can also be realized by a means for receiving power broadcast or a wired communication means for which a wireless communication means is suitable.
[0058] 認証部 12203は、第二操作端末装置識別情報受信部 12201が受信した操作端 末装置識別情報に基づいて、操作端末装置 121の認証を行う。認証部 12203は、 通常、認証許可を与える操作端末装置を識別する 1以上の操作端末装置識別情報 を保持している。認証部 12203は、通常、保持している 1以上の操作端末装置識別 情報と、受信した操作端末装置識別情報が合致するか否かを判断し、合致する場合 に、認証許可であると判断する。なお、認証の方法は、他の方法でも良い。操作端末 装置 121の認証とは、操作端末装置 121のオペレータの認証でも良い。認証部 122 03は、通常、 MPUやメモリ等から実現され得る。認証部 12203の処理手順は、通常 、ソフトウェアで実現され、当該ソフトウエアは ROM等の記録媒体に記録されている。 但し、ハードウェア(専用回路)で実現しても良い。 The authentication unit 12203 authenticates the operation terminal device 121 based on the operation terminal device identification information received by the second operation terminal device identification information receiving unit 12201. The authentication unit 12203 normally holds one or more operation terminal device identification information for identifying the operation terminal device to which authentication is permitted. The authentication unit 12203 normally determines whether or not the held one or more operation terminal device identification information matches the received operation terminal device identification information, and if they match, determines that the authentication is permitted. . The authentication method may be other methods. The authentication of the operation terminal device 121 may be the authentication of the operator of the operation terminal device 121. Authentication unit 122 03 can usually be realized from MPU, memory, etc. The processing procedure of the authentication unit 12203 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).
[0059] 第二制御命令送信部 12204は、認証部 12203における認証結果が認証許可であ る場合に、第二制御命令受信部 12202が受信した制御命令を、制御サーバ装置 12 3に送信する。なお、第二制御命令送信部 12204は、制御サーバ装置 123と通信す るための情報、例えば、制御サーバ装置 123の IPアドレスなどを、予め保持している 。第二制御命令送信部 12204は、通常、無線または有線の通信手段で実現される 力 放送手段で実現されても良い。  The second control command transmission unit 12204 transmits the control command received by the second control command reception unit 12202 to the control server device 123 when the authentication result in the authentication unit 12203 is authentication permission. Note that the second control command transmission unit 12204 holds information for communicating with the control server device 123, for example, the IP address of the control server device 123 in advance. The second control command transmission unit 12204 may be realized by a force broadcast unit that is usually realized by a wireless or wired communication unit.
[0060] 制御命令受信部 12301は、認証サーバ装置 122から制御命令を受信する。制御 命令受信部 12301が受信する制御命令は、操作端末装置 121が送信した制御命 令と異なるデータ構造等でも良い。制御命令受信部 12301は、通常、無線または有 線の通信手段で実現されるが、放送を受信する手段で実現されても良い。  The control command receiving unit 12301 receives a control command from the authentication server device 122. The control command received by the control command receiving unit 12301 may have a data structure different from the control command transmitted by the operation terminal device 121. The control command receiving unit 12301 is usually realized by a wireless or wired communication means, but may be realized by a means for receiving a broadcast.
[0061] 第三更新完了情報送信部 12304は、第三更新完了情報受信部 1203が受信した 更新完了情報を認証サーバ装置 122に送信する。第三更新完了情報送信部 1204 は、通常、無線または有線の通信手段で実現されるが、放送手段で実現されても良 い。  The third update completion information transmission unit 12304 transmits the update completion information received by the third update completion information reception unit 1203 to the authentication server device 122. The third update completion information transmission unit 1204 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.
次に、情報処理システムの動作について説明する。  Next, the operation of the information processing system will be described.
[0062] まず、操作端末装置 121の動作について説明する。操作端末装置 121の受付部 1 101は制御命令を受け付け、制御命令送信部 1102は受付部 1101が受け付けた制 御命令を認証サーバ装置 122に送信する。また、第一操作端末装置識別情報送信 部 12102は、制御命令の受け付けに対応して、操作端末装置識別情報格納部 121 01から操作端末装置識別情報を読み出し、当該操作端末装置識別情報を認証サ ーバ装置 122に送信する。なお、制御命令と操作端末装置識別情報は、一のバケツ トで送信されても良い。また、操作端末装置 121の第一更新完了情報受信部 1103 は、更新完了情報を受信し、第一更新完了情報出力部 1104は、当該更新完了情 報を出力する。 First, the operation of the operation terminal device 121 will be described. The reception unit 1101 of the operation terminal device 121 receives a control command, and the control command transmission unit 1102 transmits the control command received by the reception unit 1101 to the authentication server device 122. In response to receiving the control command, the first operation terminal device identification information transmission unit 12102 reads the operation terminal device identification information from the operation terminal device identification information storage unit 121 01 and authenticates the operation terminal device identification information. Server device 122. The control command and the operation terminal device identification information may be transmitted in one bucket. Further, the first update completion information receiving unit 1103 of the operation terminal device 121 receives the update completion information, and the first update completion information output unit 1104 outputs the update completion information.
[0063] 次に、認証サーバ装置 122の動作について説明する。認証サーバ装置 122の第 二操作端末装置識別情報受信部 12201は、操作端末装置 121から第二操作端末 装置識別情報を受信する。そして、第二制御命令受信部 12202は、操作端末装置 1 21から制御命令を受信する。次に、認証部 12203は、受信した第二操作端末装置 識別情報に基づいて、操作端末装置 121を認証する。認証処理の結果、認証許可 である場合、第二制御命令送信部 12204は、制御命令を制御サーバ装置 123に送 信する。一方、認証処理の結果、認証不許可である場合、第二制御命令送信部 122 04は、制御命令を制御サーバ装置 123に送信しない。なお、認証処理は、公知技 術であるので詳細な説明を省略する。 Next, the operation of authentication server device 122 will be described. Authentication server device 122 The two operation terminal device identification information receiving unit 12201 receives the second operation terminal device identification information from the operation terminal device 121. Then, the second control command receiving unit 12202 receives a control command from the operation terminal device 121. Next, the authentication unit 12203 authenticates the operation terminal device 121 based on the received second operation terminal device identification information. As a result of the authentication process, if the authentication is permitted, the second control command transmission unit 12204 transmits a control command to the control server device 123. On the other hand, if the result of the authentication process is that authentication is not permitted, the second control command transmitter 12204 does not transmit a control command to the control server device 123. Since the authentication process is a known technique, detailed description thereof is omitted.
次に、制御サーバ装置 123の動作について説明する。  Next, the operation of the control server device 123 will be described.
[0064] 制御サーバ装置 123の制御命令受信部 12301は、認証サーバ装置 122から制御 命令を受信する。次に、保護命令送信部 1202は、制御命令から保護命令を構成し 、制御命令が有する移動体端末識別情報で識別される移動体端末装置 13に、保護 命令を送信する。そして、移動体端末装置 13で個人情報が更新された後、第三更 新完了情報受信部 1203は更新完了情報を受信し、第三更新完了情報送信部 123 04は当該更新完了情報を認証サーバ装置 122に転送する。また、第三個人情報受 信部 1205と個人情報出力部 1206は、上述した動作と同様の動作を行う。 The control command receiving unit 12301 of the control server device 123 receives a control command from the authentication server device 122. Next, the protection command transmission unit 1202 configures a protection command from the control command, and transmits the protection command to the mobile terminal device 13 identified by the mobile terminal identification information included in the control command. After the personal information is updated in the mobile terminal device 13, the third update completion information receiving unit 1203 receives the update completion information, and the third update completion information transmitting unit 123 04 receives the update completion information from the authentication server. Transfer to device 122. The third personal information receiving unit 1205 and the personal information output unit 1206 perform the same operations as described above.
以下、本実施の形態における情報処理システムの具体的な動作にっ 、て説明する 。情報処理システムの概念図は図 12である。  Hereinafter, a specific operation of the information processing system in the present embodiment will be described. A conceptual diagram of the information processing system is shown in FIG.
今、移動体端末装置 13の個人情報格納部 1301は、図 6に示す電話帳情報を格 納している、とする。  Now, it is assumed that the personal information storage unit 1301 of the mobile terminal device 13 stores the phone book information shown in FIG.
[0065] かかる場合、本移動体端末装置 13のユーザは、移動体端末装置 13を紛失し、操 作端末装置 121のオペレータに電話をして、自分の移動体端末装置 13の個人情報 (ここでは、電話帳情報)を第三者に見えないようにして欲しい旨を依頼した、とする。  [0065] In such a case, the user of the mobile terminal device 13 loses the mobile terminal device 13, calls the operator of the operation terminal device 121, and personal information of the mobile terminal device 13 (here Now, let's say that you have requested that the phone book information be hidden from the third party.
[0066] そして、オペレータは、本移動体端末装置 13のユーザから、移動体端末装置 13の 電話番号「09011223456」を聞いて、図 14に示す画面に当該電話番号を入力した 、とする。また、オペレータは、ユーザの要望に基づき、バックアップ「なし」のチェック ボックスをチェックする(図 14参照)、とする。さらに、オペレータは、オペレータを識別 するオペレータ ID「1234」、パスワード「XYZQ」を入力した、とする。次に、本ォペレ ータは、図 14の画面の「送信」ボタンを押下した、とする。 Then, it is assumed that the operator hears the telephone number “09011223456” of the mobile terminal device 13 from the user of the mobile terminal device 13 and inputs the telephone number on the screen shown in FIG. In addition, the operator shall check the “None” backup check box based on the user's request (see FIG. 14). Furthermore, it is assumed that the operator inputs an operator ID “1234” for identifying the operator and a password “XYZQ”. Next, this operation Suppose that the user presses the “Send” button on the screen of FIG.
なお、図 14において、「顧客 DB無効化」タグを選択すると、制御命令を構成する個 人情報の種類は「顧客 DB」となる。そして、移動体端末装置 13は、顧客 DBを上書き 更新する。  In FIG. 14, when the “Customer DB Invalidation” tag is selected, the type of personal information constituting the control command is “Customer DB”. Then, the mobile terminal device 13 overwrites and updates the customer DB.
[0067] 次に、操作端末装置 121の制御命令送信部 1102は、図 14のオペレータが入力し た情報に基づいて、図 15に示す制御命令を構成する。また、第一操作端末装置識 別情報送信部 12102は、図 14のオペレータが入力した情報に基づいて、図 15に示 す操作端末装置識別情報を構成する。そして、操作端末装置 121は、図 15に示す 情報を認証サーバ装置 122に送信する。  Next, the control command transmission unit 1102 of the operation terminal device 121 configures the control command shown in FIG. 15 based on the information input by the operator of FIG. Further, the first operation terminal device identification information transmission unit 12102 configures the operation terminal device identification information shown in FIG. 15 based on the information input by the operator of FIG. Then, the operation terminal device 121 transmits information shown in FIG. 15 to the authentication server device 122.
[0068] 次に、認証サーバ装置 122は、図 15の情報を受信する。そして、認証部 12203は 、図 15の操作端末装置識別情報が登録されているオペレータ ID、パスワードである か否かを判断する。ここで、オペレータ ID「1234」、パスワード「XYZQ」は登録され ているとすると、認証部 12203は、認証許可、との判断を得る。  Next, authentication server apparatus 122 receives the information of FIG. Then, the authentication unit 12203 determines whether or not the operation terminal device identification information of FIG. 15 is the registered operator ID and password. Here, if the operator ID “1234” and the password “XYZQ” are registered, the authentication unit 12203 obtains a determination that authentication is permitted.
次に、第二制御命令送信部 12204は、図 15の制御命令を制御サーバ装置 123に 送信する。  Next, the second control command transmission unit 12204 transmits the control command in FIG.
[0069] 次に、制御サーバ装置 123の制御命令受信部 12301は、図 15の制御命令を受信 する。そして、制御サーバ装置 12の保護命令送信部 1202は、図 15の制御命令から 移動体端末識別情報「09011223456」を取得する。  Next, the control command receiving unit 12301 of the control server device 123 receives the control command of FIG. Then, the protection command transmission unit 1202 of the control server device 12 acquires the mobile terminal identification information “09011223456” from the control command of FIG.
そして、制御サーバ装置 12の保護命令送信部 1202は、図 15の制御命令から保 護命令を構成する。保護命令は、「無効化」「電話帳」の情報を有する。  Then, the protection command transmission unit 1202 of the control server device 12 configures a protection command from the control command of FIG. The protection instruction has information of “invalidation” and “phone book”.
次に、保護命令送信部 1202は、移動体端末識別情報「09011223456」で識別さ れ得る移動体端末装置 13に、保護命令を送信する。  Next, the protection command transmission unit 1202 transmits the protection command to the mobile terminal device 13 that can be identified by the mobile terminal identification information “09011223456”.
次に、移動体端末装置 13の保護命令受信部 1302は、保護命令を受信する。 次に、移動体端末装置 13の更新部 1303は、受信した保護命令に従って、電話帳 情報を上書き更新する。ここで更新部 1303は、以下のルールにより、電話帳情報を 上書き更新する、とする。  Next, the protection command receiving unit 1302 of the mobile terminal device 13 receives the protection command. Next, the updating unit 1303 of the mobile terminal device 13 overwrites and updates the phone book information in accordance with the received protection command. Here, it is assumed that the updating unit 1303 overwrites and updates the phone book information according to the following rules.
つまり、当該ルールは、全文字を「X」で上書きする、というルールである。 そして、更新部 1303は、図 6の電話帳情報を、図 16に示すような電話帳情報に変 更して、書き換える。 That is, the rule is that all characters are overwritten with “X”. Then, the updating unit 1303 converts the phone book information in FIG. 6 into the phone book information as shown in FIG. In addition, rewrite.
次に、移動体端末装置 13の更新完了情報送信部 1304は、電話帳情報の更新が 完了した旨の情報である更新完了情報を構成し、制御サーバ装置 123に送信する。 次に、制御サーバ装置 123から認証サーバ装置 122を経由して、更新完了情報が 操作端末装置 121に送信される。  Next, the update completion information transmission unit 1304 of the mobile terminal device 13 configures update completion information, which is information indicating that the update of the phone book information is completed, and transmits it to the control server device 123. Next, the update completion information is transmitted from the control server device 123 to the operation terminal device 121 via the authentication server device 122.
[0070] そして、操作端末装置 121の第一更新完了情報受信部 1103は、更新完了情報を 受信する。そして、第一更新完了情報出力部 1104は、図 11に示すように、更新完 了情報を出力する。ここでは、更新完了情報は、移動体端末識別情報を有する。  [0070] Then, the first update completion information receiving unit 1103 of the operation terminal device 121 receives the update completion information. Then, the first update completion information output unit 1104 outputs the update completion information as shown in FIG. Here, the update completion information includes mobile terminal identification information.
[0071] 以上、本実施の形態によれば、携帯電話等の端末に格納された個人情報の保護 が可能である。そして、個人情報の処理後でも、ユーザは個人情報が存在していたこ とを知ることができる。第三者にとっては、意味の無い情報が残ることとなり、個人情 報の保護が担保され得る。また、操作端末装置 121の認証を行うことにより、悪意の ある第三者力 移動体端末装置 13の個人情報が保護され得る。  As described above, according to this embodiment, personal information stored in a terminal such as a mobile phone can be protected. And even after processing personal information, the user can know that personal information existed. For third parties, meaningless information remains, and protection of personal information can be guaranteed. Further, by authenticating the operation terminal device 121, the personal information of the malicious third party power mobile terminal device 13 can be protected.
なお、本実施の形態によれば、個人情報の更新方法は、上述した方法に限られな いことは言うまでもない。  Needless to say, according to the present embodiment, the method for updating personal information is not limited to the method described above.
[0072] また、本実施の形態によれば、情報処理システムの構成や、制御命令または Zお よび操作端末装置識別情報の送受信の経路などは問わな!/、。情報処理システムの 構成は、図 17に示すような構成でも良い。図 17における情報処理システムの場合、 操作端末装置識別情報は、操作端末装置から制御サーバ装置、制御サーバ装置か ら認証サーバ装置に送信され、操作端末装置の認証処理が行われる。そして、認証 許可 Z不許可に関する情報が、認証サーバ装置力 制御サーバ装置に送信され、 認証許可である場合のみ、制御サーバ装置力 移動体端末装置に制御命令が送信 される。そして、移動体端末装置は制御命令に従って、個人情報を更新する。  [0072] Further, according to the present embodiment, the configuration of the information processing system, the transmission / reception route of the control command or Z and the operation terminal device identification information, etc. are irrelevant! The configuration of the information processing system may be as shown in FIG. In the information processing system in FIG. 17, the operation terminal device identification information is transmitted from the operation terminal device to the control server device, and from the control server device to the authentication server device, and authentication processing of the operation terminal device is performed. Then, information related to authentication permission Z non-permission is transmitted to the authentication server device force control server device, and a control command is transmitted to the control server device force mobile terminal device only when authentication is permitted. The mobile terminal device then updates the personal information according to the control command.
[0073] また、本実施の形態によれば、移動体端末装置は、制御命令が有する個人情報の 種類の情報に基づいて、電話帳情報を更新した。つまり、移動体端末装置は、制御 命令が有する個人情報の種類が「顧客 DB」である場合は、「顧客 DB」に対応する情 報を選択し、当該「顧客 DB」に対応する個人情報を更新する。かかることは、他の実 施の形態においても同様である。 [0074] さらに、本実施の形態における処理は、ソフトウェアで実現しても良い。そして、この ソフトウェアをソフトウェアダウンロード等により配布しても良い。また、このソフトウェア を CD— ROMなどの記録媒体に記録して流布しても良い。なお、このことは、本明細 書における他の実施の形態においても該当する。なお、本実施の形態における移動 体端末装置を実現するソフトウェアは、以下のようなプログラムである。つまり、このプ ログラムは、コンピュータに、保護命令を受信する保護命令受信ステップと、前記前 記保護命令の受信に対応して、格納している個人情報に対して、所定の文字列を上 書きし、当該個人情報を更新する更新ステップを実行させるためのプログラム、であ る。 [0073] Further, according to the present embodiment, the mobile terminal device updates the phone book information based on the information of the type of personal information included in the control command. In other words, when the type of personal information included in the control instruction is “customer DB”, the mobile terminal device selects information corresponding to “customer DB” and selects the personal information corresponding to “customer DB”. Update. The same applies to other embodiments. Furthermore, the processing in the present embodiment may be realized by software. This software may be distributed by software download or the like. In addition, this software may be recorded and distributed on a recording medium such as a CD-ROM. This also applies to other embodiments in this specification. The software that realizes the mobile terminal device in the present embodiment is the following program. In other words, this program overwrites a predetermined character string with respect to the stored personal information in response to the protection command receiving step for receiving the protection command and the reception of the protection command. And a program for executing an update step for updating the personal information.
[0075] 上記プログラムは、コンピュータに、前記更新ステップで前記個人情報を更新した 場合に、当該更新した旨を示す情報である更新完了情報を送信する更新完了情報 送信ステップを、さらに実行させるためのプログラム、である。  [0075] When the personal information is updated in the updating step, the program causes the computer to further execute an update completion information transmitting step of transmitting update completion information that is information indicating that the personal information has been updated. Program.
上記プログラムは、コンピュータに、前記更新ステップで前記個人情報を更新する 前に、当該個人情報を送信する個人情報送信ステップを、さらに実行させるためのプ ログラム、である。  The program is a program for causing a computer to further execute a personal information transmission step of transmitting the personal information before updating the personal information in the updating step.
[0076] また、上記各実施の形態にお!、て、各処理 (各機能)は、単一の装置 (システム)に よって集中処理されることによって実現されてもよぐあるいは、複数の装置によって 分散処理されることによって実現されてもょ 、。  [0076] Also, in each of the above embodiments, each process (each function) may be realized by centralized processing by a single apparatus (system) or a plurality of apparatuses. It may be realized by distributed processing by.
[0077] なお、上記プログラムにお 、て、情報を送信する送信ステップや、情報を受信する 受信ステップなどでは、ハードウェアによって行われる処理、例えば、送信ステップに おけるモデムやインターフェースカードなどで行われる処理 (ノヽ一ドウエアでしか行わ れな 、処理)は含まれな!/、。 [0077] In the above program, the transmission step for transmitting information and the reception step for receiving information are performed by hardware, for example, a modem or an interface card in the transmission step. Does not include processing (processing that can only be done with software)! /.
また、上記プログラムを実行するコンピュータは、単数であってもよぐ複数であって もよい。すなわち、集中処理を行ってもよぐあるいは分散処理を行ってもよい。 また、上記各実施の形態において、一の装置に存在する 2以上の通信手段 (制御 命令送信部など)は、物理的に一の媒体で実現されても良いことは言うまでもない。 本発明のほんのいくつかの典型的な実施例について上で詳細に説明したが、その 典型的な実施例において、発明の利益と新規な技術力 実質的にはずれることなく 多くの変更が可能であることを当業者は容易に認識することができるであろう。したが つて、そのようなすべての変更は、本発明の範囲に含まれるものである。 Further, the computer that executes the program may be singular or plural. That is, centralized processing or distributed processing may be performed. Further, in each of the above embodiments, it goes without saying that two or more communication means (such as a control command transmission unit) existing in one apparatus may be physically realized by one medium. Although only a few exemplary embodiments of the present invention have been described in detail above, in the exemplary embodiments, the benefits of the invention and the new technical capabilities are not substantially deviated. Those skilled in the art will readily recognize that many variations are possible. Accordingly, all such modifications are intended to be included within the scope of this invention.
産業上の利用可能性  Industrial applicability
[0078] 以上のように、本発明に力かる情報処理システム等は、携帯電話等の端末に格納 された個人情報の保護が可能であり、かつ、個人情報の処理後でもユーザは個人情 報が存在したことを知ることができる、という効果を有し、個人情報を適切に保護する 情報処理システム等として有用である。  [0078] As described above, the information processing system and the like according to the present invention can protect personal information stored in a terminal such as a mobile phone, and the user can use the personal information even after processing the personal information. It is useful as an information processing system, etc. that has the effect of being able to know the existence of personal information and protects personal information appropriately.
図面の簡単な説明  Brief Description of Drawings
[0079] [図 1]実施の形態 1における情報処理システムの概念図 [0079] [FIG. 1] Conceptual diagram of the information processing system in Embodiment 1
[図 2]同情報処理システムのブロック図  [Figure 2] Block diagram of the information processing system
[図 3]同制御サーバ装置の動作について説明するフローチャート  FIG. 3 is a flowchart for explaining the operation of the control server device.
[図 4]同移動体端末装置の動作について説明するフローチャート  FIG. 4 is a flowchart for explaining the operation of the mobile terminal device.
[図 5]同移動体端末装置の動作について説明するフローチャート  FIG. 5 is a flowchart for explaining the operation of the mobile terminal device.
[図 6]同個人情報の例を示す図  [Figure 6] Diagram showing an example of the personal information
[図 7]同操作端末装置の入力画面を示す図  [Fig.7] Diagram showing the input screen of the operation terminal device
[図 8]同制御命令のデータ構造例を示す図  [Figure 8] A diagram showing an example of the data structure of the control instruction
[図 9]同保護命令のデータ構造例を示す図  [Figure 9] Diagram showing an example of the data structure of the protection instruction
[図 10]同更新した個人情報の例を示す図  [Figure 10] Diagram showing an example of the updated personal information
[図 11]同更新完了情報の出力例を示す図  [Fig.11] A diagram showing an output example of the update completion information
[図 12]実施の形態 2における情報処理システムの概念図  [FIG. 12] A conceptual diagram of an information processing system in Embodiment 2.
[図 13]同情報処理システムのブロック図  [Figure 13] Block diagram of the information processing system
[図 14]同操作端末装置の入力画面を示す図  FIG. 14 is a diagram showing an input screen of the operation terminal device
[図 15]同制御命令等のデータ構造例を示す図  [FIG. 15] A diagram showing an example of the data structure of the control instruction, etc.
[図 16]同更新した個人情報の例を示す図  [Fig.16] Diagram showing an example of the updated personal information
[図 17]同情報処理システムの概念図  [Figure 17] Conceptual diagram of the information processing system

Claims

請求の範囲  The scope of the claims
[1] 操作端末装置と、制御サーバ装置と、移動体端末装置とを具備する情報処理システ ムであって、  [1] An information processing system comprising an operation terminal device, a control server device, and a mobile terminal device,
前記操作端末装置は、  The operation terminal device
前記移動体端末装置を識別する情報である移動体端末識別情報を有する情報であ り、個人に関する情報である個人情報を保護するための命令である制御命令を受け 付ける受付部と、  A receiving unit for receiving a control command, which is a command for protecting personal information, which is information having mobile terminal identification information which is information for identifying the mobile terminal device, and which is personal information;
前記制御命令を前記制御サーバ装置に送信する制御命令送信部と、を具備し、 前記制御サーバ装置は、  A control command transmission unit that transmits the control command to the control server device, and the control server device includes:
前記制御命令を受信する制御命令受信部と、  A control command receiver for receiving the control command;
前記制御命令受信部が受信した制御命令が有する移動体端末識別情報で識別さ れる移動体端末装置に、個人情報を保護するための命令である保護命令を送信す る保護命令送信部と、を具備し、  A protection command transmitting unit that transmits a protection command, which is a command for protecting personal information, to a mobile terminal device identified by mobile terminal identification information included in the control command received by the control command receiving unit; Equipped,
前記移動体端末装置は、  The mobile terminal device
個人情報が格納される個人情報格納部と、  A personal information storage unit for storing personal information;
前記保護命令を受信する保護命令受信部と、  A protection command receiving unit for receiving the protection command;
前記前記保護命令の受信に対応して、個人情報格納部の個人情報に対して、所定 の文字列を上書きし、当該個人情報を更新する更新部と、を具備する情報処理シス テム。  An information processing system comprising: an update unit that overwrites a predetermined character string on the personal information stored in the personal information storage unit and updates the personal information in response to receiving the protection command.
[2] 前記移動体端末装置は、  [2] The mobile terminal device includes:
前記更新部が前記個人情報を更新した場合に、当該更新した旨を示す情報である 更新完了情報を前記制御サーバ装置に送信する更新完了情報送信部と、をさらに 具備し、  An update completion information transmission unit that transmits update completion information to the control server device when the update unit updates the personal information;
前記制御サーバ装置は、  The control server device
前記更新完了情報を受信する第三更新完了情報受信部と、  A third update completion information receiving unit for receiving the update completion information;
前記第三更新完了情報受信部が受信した更新完了情報を前記操作端末装置に送 信する第三更新完了情報送信部と、をさらに具備し、  A third update completion information transmitting unit that transmits the update completion information received by the third update completion information receiving unit to the operation terminal device;
前記操作端末装置は、 前記更新完了情報を受信する第一更新完了情報受信部と、 前記更新完了情報を出力する第一更新完了情報出力部と、をさらに具備する請求 項 1記載の情報処理システム。 The operation terminal device The information processing system according to claim 1, further comprising: a first update completion information receiving unit that receives the update completion information; and a first update completion information output unit that outputs the update completion information.
操作端末装置と、認証サーバ装置と、制御サーバ装置と、移動体端末装置を具備す る情報処理システムであって、 An information processing system comprising an operation terminal device, an authentication server device, a control server device, and a mobile terminal device,
前記操作端末装置は、 The operation terminal device
当該操作端末装置を識別する情報である操作端末装置識別情報が格納される操作 端末装置識別情報格納部と、 An operation terminal device identification information storage unit in which operation terminal device identification information, which is information for identifying the operation terminal device, is stored;
前記移動体端末装置を識別する情報である移動体端末識別情報を有する情報であ り、個人に関する情報である個人情報を保護するための命令である制御命令を受け 付ける受付部と、 A receiving unit for receiving a control command, which is a command for protecting personal information, which is information having mobile terminal identification information which is information for identifying the mobile terminal device, and which is personal information;
前記操作端末装置識別情報を前記認証サーバ装置に送信する第一操作端末装置 識別情報送信部と、 A first operation terminal device identification information transmitting unit for transmitting the operation terminal device identification information to the authentication server device;
前記制御命令を前記認証サーバ装置に送信する制御命令送信部と、を具備し、 前記認証サーバ装置は、 A control command transmission unit that transmits the control command to the authentication server device, and the authentication server device includes:
前記操作端末装置識別情報を受信する第二操作端末装置識別情報受信部と、 前記制御命令を受信する第二制御命令受信部と、 A second operating terminal device identification information receiving unit that receives the operating terminal device identification information; a second control command receiving unit that receives the control command;
前記第二操作端末装置識別情報受信部が受信した操作端末装置識別情報に基づ いて、前記操作端末装置の認証を行う認証部と、 An authentication unit for authenticating the operation terminal device based on the operation terminal device identification information received by the second operation terminal device identification information receiving unit;
前記認証部における認証結果が認証許可である場合に、前記制御命令を前記制御 サーバ装置に送信する第二制御命令送信部と、を具備し、 A second control command transmission unit configured to transmit the control command to the control server device when an authentication result in the authentication unit is authentication permission;
前記制御サーバ装置は、 The control server device
前記制御命令を受信する制御命令受信部と、 A control command receiver for receiving the control command;
前記制御命令受信部が受信した制御命令が有する移動体端末識別情報で識別さ れる移動体端末装置に、個人情報を保護するための命令である保護命令を送信す る保護命令送信部と、を具備し、 A protection command transmitting unit that transmits a protection command, which is a command for protecting personal information, to a mobile terminal device identified by mobile terminal identification information included in the control command received by the control command receiving unit; Equipped,
前記移動体端末装置は、 The mobile terminal device
個人情報が格納される個人情報格納部と、 前記保護命令を受信する保護命令受信部と、 A personal information storage unit for storing personal information; A protection command receiving unit for receiving the protection command;
前記個人情報格納部の個人情報に対して、所定の文字列を上書きし、当該個人情 報を更新する更新部と、を具備する情報処理システム。  An information processing system comprising: an updating unit that overwrites a predetermined character string on the personal information stored in the personal information storage unit and updates the personal information.
[4] 前記移動体端末装置は、  [4] The mobile terminal device includes:
前記更新部が前記個人情報を更新した場合に、当該更新した旨を示す情報である 更新完了情報を前記制御サーバ装置に送信する更新完了情報送信部と、をさらに 具備し、  An update completion information transmission unit that transmits update completion information to the control server device when the update unit updates the personal information;
前記制御サーバ装置は、  The control server device
前記更新完了情報を受信する第三更新完了情報受信部と、  A third update completion information receiving unit for receiving the update completion information;
前記第三更新完了情報受信部が受信した更新完了情報を前記認証サーバ装置に 送信する第三更新完了情報送信部と、をさらに具備し、  A third update completion information transmitting unit that transmits the update completion information received by the third update completion information receiving unit to the authentication server device;
前記認証サーバ装置は、  The authentication server device
前記更新完了情報を受信する第二更新完了情報受信部と、  A second update completion information receiving unit for receiving the update completion information;
前記更新完了情報を前記操作端末装置に送信する第二更新完了情報送信部と、を らに dfe  A second update completion information transmission unit for transmitting the update completion information to the operation terminal device; and dfe
前記操作端末装置は、  The operation terminal device
前記更新完了情報を受信する第一更新完了情報受信部と、  A first update completion information receiving unit for receiving the update completion information;
前記更新完了情報を出力する第一更新完了情報出力部と、をさらに具備する請求 項 3記載の情報処理システム。  The information processing system according to claim 3, further comprising a first update completion information output unit that outputs the update completion information.
[5] 前記移動体端末装置は、 [5] The mobile terminal device includes:
前記更新部が前記個人情報を更新する前に当該個人情報を前記制御サーバ装置 に送信する個人情報送信部をさらに具備し、  A personal information transmission unit that transmits the personal information to the control server device before the update unit updates the personal information;
前記制御サーバ装置は、  The control server device
前記個人情報を受信する第三個人情報受信部と、  A third personal information receiver for receiving the personal information;
前記第三個人情報受信部が受信した個人情報を出力する個人情報出力部と、をさ らに具備する請求項 1または請求項 3記載の情報処理システム。  4. The information processing system according to claim 1, further comprising: a personal information output unit that outputs personal information received by the third personal information receiving unit.
[6] 前記個人情報は、 [6] The personal information is
電話帳に関する情報であり、氏名と電話番号を有する電話帳情報であり、 前記更新部は、 It is information about the phone book, it is phone book information with name and phone number, The update unit
前記電話番号の箇所を、所定の文字列で上書きする請求項 1から請求項 5 、ずれか 記載の情報処理システム。  The information processing system according to claim 1, wherein the location of the telephone number is overwritten with a predetermined character string.
[7] 請求項 1から請求項 5いずれか記載の情報処理システムを構成する操作端末装置。 [7] An operation terminal device constituting the information processing system according to any one of claims 1 to 5.
[8] 請求項 1から請求項 5 、ずれか記載の情報処理システムを構成する制御サーバ装置 [8] A control server device constituting the information processing system according to claim 1 to claim 5,
[9] 請求項 1から請求項 5いずれか記載の情報処理システムを構成する移動体端末装置 [9] A mobile terminal device constituting the information processing system according to any one of claims 1 to 5
[10] 請求項 3から請求項 5 、ずれか記載の情報処理システムを構成する認証サーバ装置 [10] An authentication server device constituting the information processing system according to claim 3 to claim 5,
[11] 個人情報が格納される個人情報格納部と、 [11] a personal information storage unit for storing personal information;
個人情報を保護するための命令である保護命令を受信する保護命令受信部と、 前記保護命令の受信に対応して、前記個人情報格納部の個人情報に対して、所定 の文字列を上書きし、当該個人情報を更新する更新部と、を具備する移動体端末装 置。  A protection command receiving unit that receives a protection command that is a command for protecting personal information; and in response to receiving the protection command, the personal information in the personal information storage unit is overwritten with a predetermined character string. A mobile terminal device comprising: an update unit that updates the personal information.
PCT/JP2006/308174 2005-04-27 2006-04-19 Information processing system, mobile terminal device, and program WO2006118029A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2005129103A JP2006309379A (en) 2005-04-27 2005-04-27 Information processing system, movable body terminal device, and program
JP2005-129103 2005-04-27

Publications (1)

Publication Number Publication Date
WO2006118029A1 true WO2006118029A1 (en) 2006-11-09

Family

ID=37307830

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2006/308174 WO2006118029A1 (en) 2005-04-27 2006-04-19 Information processing system, mobile terminal device, and program

Country Status (2)

Country Link
JP (1) JP2006309379A (en)
WO (1) WO2006118029A1 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH07193865A (en) * 1993-09-13 1995-07-28 Casio Comput Co Ltd Portable terminal equipment and its security method
JP2000253457A (en) * 1999-03-01 2000-09-14 Nec Mobile Commun Ltd Portable terminal equipment with personal information protection function
JP2001078255A (en) * 1999-09-01 2001-03-23 Shozo Hagiwara Mobile terminal security system
JP2003070063A (en) * 2001-08-24 2003-03-07 Seiko Epson Corp Data protection apparatus of radio communication terminal, data protection method of radio communication terminal, and system for the method

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH07193865A (en) * 1993-09-13 1995-07-28 Casio Comput Co Ltd Portable terminal equipment and its security method
JP2000253457A (en) * 1999-03-01 2000-09-14 Nec Mobile Commun Ltd Portable terminal equipment with personal information protection function
JP2001078255A (en) * 1999-09-01 2001-03-23 Shozo Hagiwara Mobile terminal security system
JP2003070063A (en) * 2001-08-24 2003-03-07 Seiko Epson Corp Data protection apparatus of radio communication terminal, data protection method of radio communication terminal, and system for the method

Also Published As

Publication number Publication date
JP2006309379A (en) 2006-11-09

Similar Documents

Publication Publication Date Title
US9456345B2 (en) Device authentication techniques
JP3610341B2 (en) Network device and remote control relay server
JP4818639B2 (en) Data backup system
US7921305B2 (en) Portable information terminal and data protecting method
JP2007102778A (en) User authentication system and method therefor
JP2000059440A (en) Verification of data transfer based on specific id code
JP4564829B2 (en) Security system
JP2007004605A (en) Communication system, client, server, and program
JP2005340976A (en) Portable communication terminal and method for controlling its information
US20070208947A1 (en) Portable telephone and program for sending and receiving electronic mail
JP2009193272A (en) Authentication system and mobile terminal
EP1830296A1 (en) Portable telephone and program for sending and receiving encrypted electronic mail
JP2003070063A (en) Data protection apparatus of radio communication terminal, data protection method of radio communication terminal, and system for the method
JP2008148048A (en) Information terminal and method and program for lock control
JP5443913B2 (en) Telephone book sharing system, server, and program
JP4501953B2 (en) Ticket authentication system
WO2006118029A1 (en) Information processing system, mobile terminal device, and program
JP2003219013A (en) Data management software program for communication terminal
JP2008217712A (en) Mail server access method and electronic mail system
JP5491050B2 (en) Portable terminal device and program
JP2004178565A (en) Server for communication management, communication method and program
JP4104610B2 (en) Authentication information providing server and authentication information providing method
JP5268273B2 (en) Electronic payment system and electronic payment method
JP5958940B2 (en) History management system using multiple types of passwords in communication terminals
JP5605973B2 (en) Electronic payment system and electronic payment method

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

NENP Non-entry into the national phase

Ref country code: RU

122 Ep: pct application non-entry in european phase

Ref document number: 06732081

Country of ref document: EP

Kind code of ref document: A1