WO2009154040A1 - 画像形成装置および画像形成装置におけるアクセス制御方法 - Google Patents
画像形成装置および画像形成装置におけるアクセス制御方法 Download PDFInfo
- Publication number
- WO2009154040A1 WO2009154040A1 PCT/JP2009/058015 JP2009058015W WO2009154040A1 WO 2009154040 A1 WO2009154040 A1 WO 2009154040A1 JP 2009058015 W JP2009058015 W JP 2009058015W WO 2009154040 A1 WO2009154040 A1 WO 2009154040A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- image forming
- forming apparatus
- unit
- information
- reference information
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G03—PHOTOGRAPHY; CINEMATOGRAPHY; ANALOGOUS TECHNIQUES USING WAVES OTHER THAN OPTICAL WAVES; ELECTROGRAPHY; HOLOGRAPHY
- G03G—ELECTROGRAPHY; ELECTROPHOTOGRAPHY; MAGNETOGRAPHY
- G03G15/00—Apparatus for electrographic processes using a charge pattern
- G03G15/55—Self-diagnostics; Malfunction or lifetime display
-
- B—PERFORMING OPERATIONS; TRANSPORTING
- B41—PRINTING; LINING MACHINES; TYPEWRITERS; STAMPS
- B41J—TYPEWRITERS; SELECTIVE PRINTING MECHANISMS, i.e. MECHANISMS PRINTING OTHERWISE THAN FROM A FORME; CORRECTION OF TYPOGRAPHICAL ERRORS
- B41J2/00—Typewriters or selective printing mechanisms characterised by the printing or marking process for which they are designed
- B41J2/005—Typewriters or selective printing mechanisms characterised by the printing or marking process for which they are designed characterised by bringing liquid or particles selectively into contact with a printing material
- B41J2/01—Ink jet
- B41J2/17—Ink jet characterised by ink handling
- B41J2/175—Ink supply systems ; Circuit parts therefor
- B41J2/17503—Ink cartridges
- B41J2/17543—Cartridge presence detection or type identification
- B41J2/17546—Cartridge presence detection or type identification electronically
-
- G—PHYSICS
- G03—PHOTOGRAPHY; CINEMATOGRAPHY; ANALOGOUS TECHNIQUES USING WAVES OTHER THAN OPTICAL WAVES; ELECTROGRAPHY; HOLOGRAPHY
- G03G—ELECTROGRAPHY; ELECTROPHOTOGRAPHY; MAGNETOGRAPHY
- G03G15/00—Apparatus for electrographic processes using a charge pattern
- G03G15/50—Machine control of apparatus for electrographic processes using a charge pattern, e.g. regulating differents parts of the machine, multimode copiers, microprocessor control
- G03G15/5075—Remote control machines, e.g. by a host
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N1/00—Scanning, transmission or reproduction of documents or the like, e.g. facsimile transmission; Details thereof
- H04N1/00127—Connection or combination of a still picture apparatus with another apparatus, e.g. for storage, processing or transmission of still picture signals or of information associated with a still picture
- H04N1/00326—Connection or combination of a still picture apparatus with another apparatus, e.g. for storage, processing or transmission of still picture signals or of information associated with a still picture with a data reading, recognizing or recording apparatus, e.g. with a bar-code apparatus
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N1/00—Scanning, transmission or reproduction of documents or the like, e.g. facsimile transmission; Details thereof
- H04N1/44—Secrecy systems
- H04N1/4406—Restricting access, e.g. according to user identity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N1/00—Scanning, transmission or reproduction of documents or the like, e.g. facsimile transmission; Details thereof
- H04N1/44—Secrecy systems
- H04N1/4406—Restricting access, e.g. according to user identity
- H04N1/4426—Restricting access, e.g. according to user identity involving separate means, e.g. a server, a magnetic card
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N1/00—Scanning, transmission or reproduction of documents or the like, e.g. facsimile transmission; Details thereof
- H04N1/44—Secrecy systems
- H04N1/4406—Restricting access, e.g. according to user identity
- H04N1/4433—Restricting access, e.g. according to user identity to an apparatus, part of an apparatus or an apparatus function
-
- G—PHYSICS
- G03—PHOTOGRAPHY; CINEMATOGRAPHY; ANALOGOUS TECHNIQUES USING WAVES OTHER THAN OPTICAL WAVES; ELECTROGRAPHY; HOLOGRAPHY
- G03G—ELECTROGRAPHY; ELECTROPHOTOGRAPHY; MAGNETOGRAPHY
- G03G15/00—Apparatus for electrographic processes using a charge pattern
- G03G15/55—Self-diagnostics; Malfunction or lifetime display
- G03G15/553—Monitoring or warning means for exhaustion or lifetime end of consumables, e.g. indication of insufficient copy sheet quantity for a job
Definitions
- the present invention relates to an image forming apparatus and an access control method in the image forming apparatus, and more particularly to a configuration capable of appropriately performing access control even in an environment in which connection to an external network is restricted.
- image forming apparatuses such as MFPs (Multiple Function Peripherals) and printers are also being networked.
- Such an image forming apparatus is connected to a personal computer or the like via a LAN (Local Area Network) or the like, and according to a print command received from a personal computer (or an application executed on the personal computer). An image forming process is executed.
- LAN Local Area Network
- license code specific authentication information
- an application approved by the manufacturer (manufacturer) of the image forming apparatus there is known a method for permitting data communication with an image forming apparatus only for an application that transmits a regular license code. That is, the image forming apparatus that has received an access from any application determines whether or not to receive a license code transmitted from the application, and whether or not the received license code is illegal, Only when a legitimate license code is received, access from the application is permitted.
- a license code is updated at any time as the version of the application is upgraded or the expiration date is expired. Therefore, in order for such security measures to function effectively, it is necessary for the manufacturer of the image forming apparatus to distribute the updated license code in a timely manner.
- Patent Document 1 proposes a method for determining the validity of an application installed in a networked image forming apparatus or the like.
- Patent Document 1 Japanese Patent Application Laid-Open No. 2005-267405
- an object of the present invention is to provide an image forming apparatus capable of appropriately performing access control on the image forming apparatus without imposing an excessive burden on the user. And an access control method in an image forming apparatus.
- An image forming apparatus stores a communication unit for performing data communication, and first reference information including at least one of identification information that should be prohibited from access and identification information that can be permitted to be accessed.
- first reference information including at least one of identification information that should be prohibited from access and identification information that can be permitted to be accessed.
- the reading unit updates the first reference information stored in the storage unit when the second reference information read from the consumable is newer than the first reference information stored in the storage unit. .
- the consumable item includes at least one of a toner unit and an imaging unit.
- the reading unit includes a sensor for reading the second reference information by any one of an electrical method, a magnetic method, and an optical method when the consumable item is mounted.
- an IC chip or IC tag for storing the second reference information is added to the consumable item.
- the second reference information added to the consumable is encrypted, and the reading unit decrypts the second reference information read from the consumable.
- the transmission source permitted to access is qualified, and if it is not qualified, the identification information included in the connection request from the transmission source is detected as unauthorized identification information.
- a adding unit for adding the unauthorized identification information detected by the detecting unit to the consumable item.
- the adding unit writes unauthorized identification information in a storage medium storing the second reference information.
- an access control method in an image forming apparatus capable of data communication stores the first reference information including at least one of identification information that should be prohibited from access and identification information that can be permitted to access, and upon receiving a connection request that includes the identification information of the transmission source, A step of determining whether or not to permit access to the connection request by collating the request with the first reference information, and a second information including at least one of identification information that should be prohibited from access and identification information that can be permitted to be accessed Reading the second reference information from the consumable for image formation to which the reference information is added, and updating the first reference information stored in the storage unit based on the second reference information.
- FIG. 1 is a cross-sectional view schematically showing an apparatus configuration of an image forming apparatus according to a first embodiment of the present invention.
- 1 is a block diagram showing a functional configuration of an image forming apparatus according to a first embodiment of the present invention. It is a block diagram which shows the function structure of the personal computer according to 1st Embodiment of this invention. It is a schematic diagram which shows the structural example of the program run with the personal computer according to 1st Embodiment of this invention.
- FIG. 2 is a block diagram showing a control structure of the image forming apparatus according to the first embodiment of the present invention.
- FIG. It is a figure which shows the data structure of the distribution information according to 1st Embodiment of this invention.
- FIG. 3 is an external view showing a form in which distribution information is added to the toner unit according to the first embodiment of the present invention. It is an external view which shows another form which adds distribution information to the consumable goods according to 1st Embodiment of this invention. It is a figure which shows another form which adds distribution information to the consumable goods according to 1st Embodiment of this invention. It is a flowchart which shows a series of processing procedures in the system according to 1st Embodiment of this invention.
- a multi-function peripheral equipped with a plurality of functions such as a FAX transmission function and an image reading function in addition to an image forming function such as copying and printing.
- FIG. 1 is a schematic configuration diagram showing an example of a system configuration according to the first embodiment of the present invention.
- image forming apparatus MFP capable of data communication and a plurality of personal computers PC1 to PC3 (hereinafter referred to as “personal computer PC”) are connected to a local network NW such as an in-house network. (Also collectively referred to as “)”.
- an application that performs data communication sends a print command to image forming apparatus MFP or obtains a file stored in image forming apparatus MFP in accordance with a user instruction. More specifically, when a user performs a printing operation on a document creation application or a spreadsheet application, an application such as a printer driver generates a print command based on information from the application, and forms an image. Send to device MFP.
- an application such as a file management program displays a list of files such as image data stored in image forming apparatus MFP or acquires a designated file in accordance with a user operation.
- the image forming apparatus MFP When the image forming apparatus MFP receives access from the personal computer PC as described above, it requests unique authentication information (hereinafter also referred to as “license code”) from the access source application. Image forming apparatus MFP permits access only when it is determined that the license code from the access source application is not invalid.
- license code unique authentication information
- the “authentication information” or “license code” in this specification is used for authentication to establish a logical connection (connection) between the image forming apparatus MFP and another apparatus (for example, a personal computer). It is a general term for information to be stored.
- a unique code value is used for the connection source device (hardware) or application (program). More specifically, a unique code is assigned to an application approved by the manufacturer (manufacturer) of image forming apparatus MFP, or a combination code such as the application name, version number, and applied patch number is used. Cases are assumed. In the following embodiment, it is assumed that a unique license code is assigned in advance to each application.
- the local network NW is connected to the Internet, which is an external network, via the gateway GW.
- gateway GW prohibits (limits) access from image forming apparatus MFP to the external server.
- image forming apparatus MFP cannot access server SRV of manufacturer (or sales company) of image forming apparatus MFP existing on the Internet.
- server SRV manufacturer (or sales company) of image forming apparatus MFP existing on the Internet.
- FIG. 2 is a schematic diagram for explaining a license code distribution method according to the first embodiment of the present invention.
- a manufacturer or the like sells consumables 300 used in image forming apparatus MFP with distribution information 302 including the latest license code added thereto, and image forming apparatus MFP
- the distribution information is read from such consumables, and authentication processing is performed. That is, when image forming apparatus MFP receives a connection request from an application executed on personal computer PC, image forming apparatus MFP collates the license code of the application included in the connection request with the distribution information added to the consumable item, and determines whether or not connection is possible. to decide.
- This distribution information includes reference information including at least one of a license code that should be prohibited from access and a license code that can be allowed access.
- a toner unit As the consumable item, a toner unit, an imaging unit, a recording sheet, a prepaid card, and the like are conceivable.
- distribution information 302 is mainly added to the toner unit will be exemplified.
- the distribution information 302 may include a black list in which a license code for specifying a party to which access is prohibited is described, and a white list in which a license code for specifying a party to which access is permitted is described. .
- a blacklist it is determined that an application not registered in the blacklist is valid, and when using a whitelist, only an application registered in the whitelist is determined to be valid.
- the “illegal license code” may include, in a broad sense, a license code registered in the black list and a license code not registered in the white list.
- the consumables as described above are inevitably replaced when the image forming apparatus MFP is used. Therefore, by adopting the distribution method as described above, it is possible to easily update the information of the unauthorized license code used for authentication even in the image forming apparatus MFP in which connection to the external network is restricted. As a result, access control for image forming apparatus MFP can be performed appropriately.
- FIG. 3 is a cross sectional view schematically showing an apparatus configuration of image forming apparatus MFP according to the first embodiment of the present invention.
- image forming apparatus MFP includes a scanner 112, a print engine 114, a paper feed unit 118, a paper discharge device 120, and a paper discharge tray 122.
- the scanner 112 reads image information from a document and generates image data. This image data is sent to the print engine 114 for print processing or transmitted as FAX data. More specifically, the scanner 112 reads image information of a document by irradiating light from a light source toward a document placed on a platen glass and receiving light reflected from the document by an imaging device or the like. . Alternatively, the scanner 112 may be configured to include a document feed table, a delivery roller, a registration roller, a transport drum, and a sheet discharge table so that continuous document reading can be performed.
- the print engine 114 prints image data read by the scanner 112 and image data received by a network I / F unit 106 (FIG. 4) described later on a recording sheet.
- the print engine 114 includes an electrophotographic color image forming unit. More specifically, the print engine 114 includes imaging (imaging) units 70Y, 70M, and 70C that generate toner images of respective colors of yellow (Y), magenta (M), cyan (C), and black (K). , 70K (hereinafter also collectively referred to as “imaging unit 70”).
- the imaging units 70Y, 70M, 70C, and 70K are arranged in the described order along the transfer belt 22 that is driven cyclically in the print engine 114.
- the imaging units 70Y, 70M, 70C, and 70K respectively include exposure scanning units 60Y, 60M, 60C, and 60K (hereinafter also collectively referred to as “exposure scanning unit 60”) and photosensitive drums 62Y, 62M, 62C, and 62K (hereinafter, referred to as “exposure scanning units 60”). And “photosensitive drum 62”).
- Exposure scanning unit 60 Exposure scanning unit 60
- photosensitive drum 62 photosensitive drums 62Y, 62M, 62C, and 62K
- Each of the exposure scanning units 60 emits laser light corresponding to each color image included in the target image data, and deflects the laser light to expose the surface of the corresponding photosensitive drum 62 in the main scanning direction. And polygon mirror.
- Electrostatic latent images are formed on the surfaces of the photosensitive drums 62Y, 62M, 62C, and 62K by exposure by the exposure scanning unit 60 as described above, and the electrostatic latent images correspond to the corresponding toner units 64Y, 64M, 64C, It is developed as a toner image by toner particles supplied from 64K (hereinafter also collectively referred to as “toner unit 64”).
- Each color toner image developed on the surface of each photosensitive drum 62 is sequentially transferred to the transfer belt 22. Further, the toner image superimposed on the transfer belt 22 is further transferred onto the recording paper supplied from the paper supply unit 118 in time.
- the toner image transferred onto the recording paper is fixed at the fixing unit disposed at the downstream portion, and then discharged to an appropriate discharge tray 122 through the discharge device 120.
- the imaging unit 70, the toner unit 64, recording paper, and the like correspond to consumables.
- the photosensitive drum 62 deteriorates with use
- toner particles stored therein are consumed with use.
- FIG. 4 is a block diagram showing a functional configuration of image forming apparatus MFP according to the first embodiment of the present invention.
- image forming apparatus MFP includes a CPU (Central Processing Unit) 100, a memory 104, a network interface (I / F) unit 106, an operation unit 108, a display unit 110, a scanner 112, and the like.
- the print engine 114 and the data reading unit 116 are connected to each other via the bus 102 so that data communication is possible.
- the CPU 100 is an arithmetic device that controls the overall control of the image forming apparatus MFP, and provides each process according to the present embodiment by executing a program stored in advance in the memory 104 or the like.
- the memory 104 typically includes a volatile memory such as a DRAM (Dynamic Random Access Memory) and a non-volatile memory such as a flash memory. More specifically, the memory 104 temporarily stores image data of a document read by the scanner 112 and stores a program executed by the CPU 100.
- a volatile memory such as a DRAM (Dynamic Random Access Memory)
- a non-volatile memory such as a flash memory. More specifically, the memory 104 temporarily stores image data of a document read by the scanner 112 and stores a program executed by the CPU 100.
- the operation unit 108 is an input unit that accepts user instructions and includes various keys and a touch panel.
- the display unit 110 is an information presentation unit that presents various types of information to the user, and includes a liquid crystal panel and an LED (Light Emitting Diode) indicator.
- a liquid crystal panel and an LED (Light Emitting Diode) indicator.
- Network I / F unit 106 transmits and receives a signal for performing data communication with personal computer PC and other image forming apparatus MFP via local network NW.
- the data reading unit 116 reads the distribution information added to the consumable item (typically, a toner unit), and stores the read distribution information in the memory 104.
- the distribution information is added to the consumables by various methods such as electrical, magnetic, and optical, so that the data reading unit 116 depends on the form of the distribution information added to the consumables.
- Each comprising a sensor capable of reading data electrically, magnetically and optically.
- FIG. 5 is a block diagram showing a functional configuration of the personal computer PC according to the first embodiment of the present invention.
- personal computer PC includes a CPU 200 that executes various programs including an operating system, a memory 212 that temporarily stores data necessary for execution of the program by CPU 200, and a program that is executed by CPU 200.
- a hard disk drive (HDD) 210 that stores data in a nonvolatile manner.
- Such a program is read from a CD-ROM 214a or a flexible disk 216a by a CD-ROM (Compact Disk-Read Only Memory) drive 214 or a flexible disk (FD: Flexible Disk) drive 216, respectively.
- CD-ROM Compact Disk-Read Only Memory
- FD Flexible Disk
- the CPU 200 receives an operation request from the user via the input unit 208 including a keyboard and a mouse, and outputs a screen output generated by executing the program to the display 204.
- CPU 200 performs data communication with image forming apparatus MFP via network interface (I / F) unit 206 formed of a LAN card or the like. These parts are connected to each other via a bus 202 so that data communication is possible.
- I / F network interface
- FIG. 6 is a schematic diagram showing a configuration example of a program executed by the personal computer PC according to the first embodiment of the present invention.
- an operating system (OS) 250 for performing basic processing is executed in the personal computer PC.
- An application 252 and a GUI (Graphical) are used by utilizing a part of the functions of the operating system.
- Programs such as (User Interface) 256 and communication process 258 are executed.
- Application 252 includes license code 254 assigned in advance by a manufacturer (manufacturer) of image forming apparatus MFP, and when connecting to image forming apparatus MFP, connection including this license code 254 is included. Send a request.
- the GUI 256 causes the display 204 to display a visual interface for displaying various types of information and receiving user instructions. That is, when the user performs an operation while referring to the display 204, a corresponding internal command is transmitted to the application 252 via the GUI 256, and processing by the application 252 is executed. The execution result by the application 252 is transmitted to the GUI 256 and displayed on the display 204.
- Communication process 258 executes communication processing with image forming apparatus MFP in accordance with an internal command from application 252 or the like.
- FIG. 7 is a block diagram showing a control structure of image forming apparatus MFP according to the first embodiment of the present invention.
- the control structure shown in FIG. 7 is realized mainly by the CPU 100 (FIG. 4) executing a program stored in advance. However, part or all of the functions realized by the program may be provided by dedicated hardware.
- image forming apparatus MFP has, as its control structure, transmission / reception unit 150, authentication information extraction unit 152, authentication unit 154, distribution information DB (Data Base) 156, and distribution information reading unit 158. Including.
- the transmission / reception unit 150 establishes a connection with an application executed on the personal computer PC and performs data communication. First, when the transmission / reception unit 150 receives a connection request from an application executed on the personal computer PC, the transmission / reception unit 150 outputs the connection request to the authentication information extraction unit 152.
- the authentication information extraction unit 152 extracts the license code of the application included in the connection request, and outputs the extracted license code to the authentication unit 154.
- the authenticating unit 154 compares the extracted license code with the distribution information stored in the distribution information DB 156 to determine whether the license code is valid. That is, the authentication unit 154 determines whether or not access is permitted for a connection request from the transmission source. Further, the authentication unit 154 returns the determination result to the transmission / reception unit 150. When the determination result is invalid, the transmission / reception unit 150 transmits a message indicating access prohibition to the application that has transmitted the connection request. Alternatively, no response may be made from the transmission / reception unit 150 to the request from the transmission source application thereafter. On the other hand, when the determination result is valid, the transmission / reception unit 150 establishes a connection with the application that is the transmission source of the connection request, and starts data communication.
- the transmission / reception unit 150 sends control commands to the scanner 112, the print engine 114, the data reading unit 116 (FIG. 4), etc., in response to a request transmitted from the other party's application. Send.
- FIG. 7 illustrates a configuration in which the distribution information DB 156 includes a black list 156a and a white list 156b, but only one of these lists may be used.
- the authentication unit 154 determines that the license code is invalid, and the license code extracted from the transmission request is the white list 156b. If the license code is registered, the license code is determined to be valid.
- FIG. 8 shows a data structure of distribution information according to the first embodiment of the present invention.
- both black list 156a and white list 156b include at least a list of license codes.
- application information application name and version information
- the date on which the license code is registered by the manufacturer of image forming apparatus MFP are described in association with each license code. . Note that the application information and the registered date are optional items and need not be described.
- the distribution information DB 156 is arranged in a non-volatile area such as the memory 104, and holds distribution information (black list 156a and / or white list 156b) even after the image forming apparatus MFP is turned off.
- distribution information reading unit 158 reads the distribution information added to consumable 300, and The read distribution information is stored in the distribution information DB 156. As the timing for reading the distribution information from the consumable 300, the first time when it is determined that the consumable 300 is newly installed is sufficient.
- the distribution information added to the consumable 300 is preferably encrypted in order to prevent unauthorized tampering. In this case, the distribution information reading unit 158 uses the previously acquired encryption. The encrypted information is decrypted using the key.
- FIG. 9 is an external view showing a form in which distribution information is added to the toner unit according to the first embodiment of the present invention.
- FIG. 9A shows an example of a toner unit to which distribution information 302 is added
- FIG. 9B shows an example of a mounted state of the toner unit.
- the toner unit includes a storage portion in which toner is stored and a constricted portion connected to the storage portion.
- the constricted portion is provided with a locking portion so as to engage with a mount portion 320 provided on the image forming apparatus MFP side as shown in FIG. 9B.
- This locking portion is composed of two disc-shaped flange portions.
- the distribution information 302 may be added to the toner unit at any position.
- the data reading unit 116 is integrally formed with the mount unit 320 and the toner unit is engaged with the mount unit 320.
- the distribution information 302 can be read in a state. That is, as an example, the distribution information 302 stored in the storage medium is added between the two brim parts constituting the engaging part of the toner unit.
- the same mode can be adopted.
- FIG. 10 is an external view showing another form in which distribution information 302 is added to the consumable according to the first embodiment of the present invention.
- various methods such as electrical, magnetic, and optical can be adopted as the distribution method of the distribution information 302.
- an IC (Integrated Circuit) chip as shown in FIG.
- a storage medium storing distribution information 302 electrically may be distributed to the consumables using an IC tag.
- the data reading unit 116 emits a radio signal and adopts a configuration that reads binary data of the distribution information 302 from such a storage medium in a contact or non-contact manner.
- the distribution information 302 as shown in FIGS. 10B and 10C may be added optically.
- FIG. 10B shows a method using a one-dimensional barcode
- FIG. 10C shows a two-dimensional barcode (so-called QR (Quick Response)). Code).
- the data reading unit 116 is configured to read the reflected light from these barcodes with a CCD (Charge Coupled Device) or the like.
- CCD Charge Coupled Device
- the distribution information 302 can be embedded in the recording paper itself or in the recording paper packaging.
- FIG. 11 is a diagram showing still another form in which distribution information 302 is added to the consumable according to the first embodiment of the present invention.
- the manufacturer (or sales company) of image forming apparatus MFP may manufacture and / or sell recording paper suitable for its own image forming apparatus MFP.
- distribution information can be added to the recording paper or its packaging using a tint block or the like.
- this tint block is a pattern drawn in a predetermined dot unit, and information is embedded in accordance with the positions of dots constituting each pattern.
- a dedicated data reading unit may be provided, but it is read as image data using the scanner 112 (FIG. 3) mounted on the image forming apparatus MFP.
- the distribution information may be generated by performing image processing with the CPU 100 (FIG. 4). That is, when the user purchases a new recording sheet, the sheet with the tint block embedded therein or its packaging is placed on the scanner 112 (FIG. 3), and is updated to new distribution information simply by executing the image reading function. be able to.
- a method of storing distribution information in the prepaid card in addition to the balance information electrically and / or magnetically can be adopted.
- the distribution information added to each consumable it is preferable to additionally include information such as the update date and the expiration date in the distribution information added to each consumable.
- FIG. 12 is a flowchart showing a series of processing procedures in the system according to the first embodiment of the present invention.
- a list of license codes collected in advance for use in authentication processing is generated as distribution information in the manufacturer of image forming apparatus MFP or the like (step S100).
- the manufacturer of image forming apparatus MFP collects a license code corresponding to an application determined by some means when an illegal operation is performed, and the collected license code Is generated as distribution information.
- the license code of the application approved by the manufacturer of the image forming apparatus MFP or the like is excluded from the license code corresponding to the application that is determined by some means when performing an illegal operation. Is generated as distribution information.
- the distribution information is preferably encrypted with an illegal code with a predetermined secret key.
- step S102 distribution information is added to the manufactured consumables in the manufacturer of the image forming apparatus MFP or the like.
- This consumable item is sold to the user by the manufacturer or sales company of image forming apparatus MFP (step S104).
- the user attaches the purchased consumables to the image forming apparatus MFP (step S106). Then, CPU 100 of image forming apparatus MFP reads distribution information added to the attached consumable item (step S108). The read distribution information is decrypted as necessary.
- the CPU 100 compares the read distribution information with the distribution information currently stored in the memory 104 (distribution information DB 156), and determines whether or not the read distribution information is newer (step S110). If the read distribution information is newer than the distribution information currently stored in memory 104 (distribution information DB 156) (YES in step S110), the distribution information stored in memory 104 (distribution information DB 156) is read. The distribution information is updated (step S112). On the other hand, if the read distribution information is not newer than the distribution information currently stored in the memory 104 (distribution information DB 156) (NO in step S110), the process of step S112 is skipped, and the process proceeds to step S114. move on.
- step S114 the CPU 100 determines whether a connection request is received from the application. If the connection request has not been received (NO in step S114), the process of step S114 is repeated.
- the CPU 100 extracts the license code included in the received connection request (step S116). Further, the CPU 100 compares the extracted license code with the distribution information stored in the memory 104 (distribution information DB 156), and determines whether or not the license code is valid (step S118).
- step S118 If the license code is valid (YES in step S118), CPU 100 permits access to the connection request (step S120) and starts data communication with the application that transmitted the connection request (step S120). Step S122). Then, when the data communication ends, the process returns.
- step S118 CPU 100 denies access to the connection request (step S124), and accesses the application that is the transmission source of the connection request. A message indicating prohibition is transmitted (step S126), and the process returns.
- FIG. 13 is a schematic diagram for explaining a fraudulent license code collection method according to the second embodiment of the present invention.
- image forming apparatus MFP # when image forming apparatus MFP # receives a connection request from an application executed on personal computer PC, it determines whether or not connection is possible based on distribution information stored in advance. Judging. At this time, even if the license code included in the connection request does not correspond to the unauthorized license code included in the distribution information, that is, even if it is determined that the license code is valid, the image forming apparatus MFP # determines whether or not the access source application is qualified, and if it is determined that the access source application is not qualified, the license code used by the access source application is fraudulent or highly likely to be fraudulent. Detect as.
- the used consumable 300 is generally collected by a manufacturer or a sales company.
- image forming apparatus MFP # uses the license code collected as described above or having a high possibility of fraud (hereinafter also simply referred to as “illegal license code”). And added to the used consumables 300 collected as the fraud authentication information 304.
- the manufacturer or sales company updates the unauthorized license code DB 400 managed by itself based on the unauthorized authentication information 304 added to the collected consumable 300.
- illegal license codes that can be generated locally can be collected more easily.
- FIG. 14 is a block diagram showing a functional configuration of image forming apparatus MFP # according to the second embodiment of the present invention.
- image forming apparatus MFP # includes a data reading / writing unit 118 instead of data reading unit 116 in the functional configuration of image forming apparatus MFP according to the first embodiment shown in FIG. Since the others are the same as those in FIG. 4, detailed description thereof will not be repeated.
- the data reading / writing unit 118 reads the distribution information added to the consumable item (typically, a toner unit), and stores the read distribution information in the memory 104. Further, the data reading / writing unit 118 writes the fraud authentication information including the fraud license code collected by the processing as described later on the consumable item. The writing of the fraud authentication information may be added to a distribution information storage medium added at the shipping stage from the manufacturer or sales company. Alternatively, the data reading / writing unit 118 may directly print a barcode (one-dimensional or two-dimensional) indicating fraud recognition information on the surface of the consumable item.
- a barcode one-dimensional or two-dimensional
- a pattern or character such as a bar code indicating fraud recognition information is provided.
- a barcode one-dimensional or two-dimensional
- fraud recognition information may be printed as a label, and the user may attach the printed label to a consumable item to be collected.
- the data reading / writing unit 118 employs a necessary configuration as appropriate according to the mode for adding the fraud recognition information to the consumables to be collected.
- FIG. 15 is a block diagram showing a control structure of image forming apparatus MFP # according to the second embodiment of the present invention.
- the control structure shown in FIG. 15 is realized mainly by the CPU 100 (FIG. 4) executing a program stored in advance. However, part or all of the functions realized by the program may be provided by dedicated hardware.
- control structure of image forming apparatus MFP # according to the present embodiment is the same as that of image forming apparatus MFP according to the first embodiment shown in FIG. This corresponds to a further addition of DB 166 and fraud recognition information adding unit 168. Therefore, detailed description of the elements shown in FIG. 7 will not be repeated.
- the fraud recognition information detection unit 164 After successfully authenticating the connection request from the application executed on the personal computer PC, based on the data from the connection request source application and the license code included in the connection request It is determined whether or not is fraudulent or highly likely to be fraudulent. If the fraud recognition information detection unit 164 determines that it is fraudulent or has a high possibility of fraud, the fraud recognition information detection unit 164 sequentially stores the license code in the fraud recognition information DB 166 as an illegal license code. Specific examples in which the license code is determined to be illegal or highly likely to be illegal include the following.
- License code when a connection request including the same license code is transmitted from an application and an application different from the application (2) Included in a connection request from an application that transmitted data including computer virus (3) The license code included in the connection request from the application that transmits data that frequently causes an error (abnormal termination) in the print processing of the image forming apparatus MFP #, etc.
- the fraud recognition information DB 166 is stored in the memory 104 The non-recognition information is held even after the image forming apparatus MFP # is turned off.
- the fraud recognition information adding unit 168 adds the fraud recognition information stored in the fraud recognition information DB 166 to the consumable item at a predetermined timing. Alternatively, the fraud recognition information adding unit 168 directly prints a barcode (one-dimensional or two-dimensional) indicating fraud recognition information on the surface of the consumable item.
- the timing for adding the fraud recognition information includes a predetermined number of fraud license codes immediately before the toner unit or imaging unit is removed from the image forming apparatus MFP #, and every time the fraud recognition information detection unit 164 detects a fraud license code. Each time it is detected or every certain interval.
- FIG. 16 is a flowchart showing a series of processing procedures in the system according to the second embodiment of the present invention.
- image forming apparatus MFP # it is assumed that distribution information is stored in memory 104 (distribution information DB 156) in advance.
- CPU 100 of image forming apparatus MFP # determines whether or not a connection request is received from an application (step S200). If the connection request has not been received (NO in step S200), the process of step S200 is repeated.
- the CPU 100 extracts the license code included in the received connection request (step S202). Further, the CPU 100 compares the extracted license code with the distribution information stored in the memory 104 (distribution information DB 156), and determines whether or not the license code is valid (step S204).
- step S204 If the license code is not valid (NO in step S204), CPU 100 denies access to the connection request (step S206) and prohibits access to the application that transmitted the connection request. The message shown is transmitted (step S208), and the process returns.
- step S204 CPU 100 permits access to the connection request (step S206) and starts data communication with the application that transmitted the connection request. (Step S208).
- the CPU 100 detects an unauthorized license code by the processing of subsequent steps S210 to S214.
- step S210 the CPU 100 determines whether or not the license code included in the connection request transmitted by the transmission source application is the same as the license code included in the connection request transmitted by another application in the past. To do. If the license code included in the connection request transmitted by the transmission source application is not the same as that of another application (NO in step S210), the process proceeds to step S212.
- step S212 the CPU 100 determines whether data transmitted from the transmission source application includes a computer virus or the like. If the transmitted data does not contain a computer virus or the like (NO in step S212), the process proceeds to step S214.
- step S214 the CPU 100 determines whether an error (abnormal end) frequently occurs in the print processing or the like. If an error does not occur frequently in the print processing or the like (NO in step S214), data communication is continued. Then, when the data communication ends, the process returns.
- the CPU 100 determines whether the license code used by the current transmission source application is illegal or highly likely to be illegal. It is determined that there is (step S216). Then, the CPU 100 stores the unauthorized license code in the memory 104 (unauthorized recognition information DB 166).
- the CPU 100 determines whether or not it is time to write fraud recognition information (step S218). If it is time to write fraud recognition information (YES in step S218), CPU 100 adds the detected fraudulent license code to the consumable item (step S220). Then, the process returns. The process also returns when it is not time to write fraud recognition information (NO in step S218).
- the case where the image forming apparatus is accessed from an application executed on the personal computer is mainly exemplified, but the access request source is limited to a narrowly defined application.
- the same processing is possible even with a device itself such as a personal computer or other image forming apparatus, or firmware executed by each device.
Abstract
Description
(ネットワークシステムの全体構成)
図1は、この発明の第1実施形態に従うシステム構成の一例を示す概略構成図である。
図2は、この発明の第1実施形態に従うライセンスコードの配布方法を説明するための概略図である。
図3は、この発明の第1実施形態に従う画像形成装置MFPの装置構成の概略を示す断面図である。
図5は、この発明の第1実施形態に従うパーソナルコンピュータPCの機能構成を示すブロック図である。
図7は、この発明の第1実施形態に従う画像形成装置MFPの制御構造を示すブロック図である。なお、図7に示す制御構造は、主として、CPU100(図4)が予め格納されたプログラムを実行することで実現される。但し、プログラムによって実現される機能の一部または全部を専用のハードウェアによって提供してもよい。
図8を参照して、ブラックリスト156aおよびホワイトリスト156bは、いずれも少なくともライセンスコードの一覧を含む。また、図8に示す例では、各ライセンスコードに対応付けて、アプリケーションの情報(アプリケーション名およびバージョン情報)、および画像形成装置MFPの製造元などによって当該ライセンスコードが登録された日付が記述されている。なお、アプリケーションの情報および登録された日付は任意項目であり、必ずしも記述しなくてもよい。
図9は、この発明の第1実施形態に従うトナーユニットに配布情報を付加する形態を示す外観図である。図9(A)は、配布情報302が付加されたトナーユニットの一例を示し、図9(B)は、トナーユニットの装着状態の一例を示す。
図12は、この発明の第1実施形態に従うシステムにおける一連の処理手順を示すフローチャートである。
上述した第1実施形態では、画像形成装置のメーカなどが予め不正ライセンスコードを収集して配布情報として消耗品に付加する構成について例示した。一方、本実施の形態では、各画像形成装置において、アクセス元のアプリケーションなどが適格なものであるか否かを判断し、適格なものでなければ、当該送信元が使用するライセンスコードを不正ライセンスコードとして検知するとともに、画像形成装置のメーカなどがそれらを収集する構成について例示する。
図13は、この発明の第2実施形態に従う不正ライセンスコードの収集方法を説明するための概略図である。
以下、上述のような不正ラインスコードの収集方法を実現するための画像形成装置MFP#の構成について説明する。なお、本実施形態においては、上述した第1実施形態と同様に、消耗品に付加された配布情報によって配布情報DBの内容を更新可能な構成について例示するが、これらの構成は本実施形態に従う不正ライセンスコードの収集方法を実現するために必須の構成ではない。
図15は、この発明の第2実施形態に従う画像形成装置MFP#の制御構造を示すブロック図である。なお、図15に示す制御構造は、主として、CPU100(図4)が予め格納されたプログラムを実行することで実現される。但し、プログラムによって実現される機能の一部または全部を専用のハードウェアによって提供してもよい。
(2)コンピュータウィルスなどを含むデータを送信したアプリケーションからの接続要求に含まれているライセンスコード
(3)画像形成装置MFP#のプリント処理などにエラー(異常終了)を頻発させるデータを送信するアプリケーションからの接続要求に含まれているライセンスコード
不正認識情報DB166は、メモリ104などの不揮発領域に配置され、画像形成装置MFP#の電源がオフされた後にも、不正認識情報を保持する。
図16は、この発明の第2実施形態に従うシステムにおける一連の処理手順を示すフローチャートである。なお、画像形成装置MFP#では、予め配布情報がメモリ104(配布情報DB156)に格納されているものとする。
Claims (9)
- 画像形成装置(MFP)であって、
データ通信を行なうための通信部(150)と、
アクセスを禁止すべき識別情報およびアクセスを許可できる識別情報の少なくとも一方を含む第1の基準情報を格納するための記憶部(156)と、
送信元の識別情報を含む接続要求を受けると、当該識別要求と前記第1の基準情報とを照合することで、当該接続要求についてのアクセスの許否を判断するための認証部(154)と、
アクセスを禁止すべき識別情報およびアクセスを許可できる識別情報の少なくとも一方を含む第2の基準情報が付加された画像形成に係る消耗品から前記第2の基準情報を読出して、前記記憶部に格納されている前記第1の基準情報を前記第2の基準情報に基づいて更新するための読出部(158)とを備える、画像形成装置。 - 前記読出部は、前記消耗品から読出した前記第2の基準情報が前記記憶部に格納されている前記第1の基準情報より新しい場合に、前記記憶部に格納されている前記第1の基準情報を更新する、請求の範囲第1項に記載の画像形成装置。
- 前記消耗品は、トナーユニットおよびイメージングユニットの少なくとも一方を含む、請求の範囲第1項に記載の画像形成装置。
- 前記読出部は、前記消耗品の装着時に、電気的、磁気的、光学的のいずれかの方法によって前記第2の基準情報を読出すためのセンサを含む、請求の範囲第1項に記載の画像形成装置。
- 前記消耗品には、前記第2の基準情報を記憶するICチップまたはICタグが付加される、請求の範囲第1項に記載の画像形成装置。
- 前記消耗品に付加される前記第2の基準情報は暗号化されており、
前記読出部は、前記消耗品から読出した前記第2の基準情報を復号化する、請求の範囲第1項に記載の画像形成装置。 - アクセスが許可された送信元が適格なものであるか否かを判断し、適格なものでなければ、当該送信元からの接続要求に含まれる識別情報を不正な識別情報として検知するための検知部(164)と、
前記検知部によって検知された不正な識別情報を前記消耗品に付加するための付加部(168)とをさらに備える、請求の範囲第1項に記載の画像形成装置。 - 前記付加部は、前記第2の基準情報を格納する記憶媒体に前記不正な識別情報を書込む、請求の範囲第7項に記載の画像形成装置。
- データ通信可能な画像形成装置におけるアクセス制御方法であって、
アクセスを禁止すべき識別情報およびアクセスを許可できる識別情報の少なくとも一方を含む第1の基準情報を格納するステップ(S110)と、
送信元の識別情報を含む接続要求を受けると、当該識別要求と前記第1の基準情報とを照合することで、当該接続要求についてのアクセスの許否を判断するステップ(S118)と、
アクセスを禁止すべき識別情報およびアクセスを許可できる識別情報の少なくとも一方を含む第2の基準情報が付加された画像形成に係る消耗品から前記第2の基準情報を読出して、前記記憶部に格納されている前記第1の基準情報を前記第2の基準情報に基づいて更新するステップ(S110)とを備える、画像形成装置におけるアクセス制御方法。
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2010503290A JP4492761B2 (ja) | 2008-06-16 | 2009-04-22 | 画像形成装置および画像形成装置におけるアクセス制御方法 |
US12/997,724 US8570548B2 (en) | 2008-06-16 | 2009-04-22 | Image forming apparatus and access control method between an image forming apparatus and a device external to the image forming apparatus |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2008156893 | 2008-06-16 | ||
JP2008-156893 | 2008-06-16 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2009154040A1 true WO2009154040A1 (ja) | 2009-12-23 |
Family
ID=41433957
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2009/058015 WO2009154040A1 (ja) | 2008-06-16 | 2009-04-22 | 画像形成装置および画像形成装置におけるアクセス制御方法 |
Country Status (3)
Country | Link |
---|---|
US (1) | US8570548B2 (ja) |
JP (1) | JP4492761B2 (ja) |
WO (1) | WO2009154040A1 (ja) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2011130026A3 (en) * | 2010-04-14 | 2012-03-08 | Microsoft Corporation | Dynamic configuration of connectors for system level communications |
US8504823B2 (en) | 2009-11-24 | 2013-08-06 | Microsoft Corporation | Dynamic configuration of connectors for system-level communications |
US8719112B2 (en) | 2009-11-24 | 2014-05-06 | Microsoft Corporation | Invocation of accessory-specific user experience |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2002278379A (ja) * | 2001-03-19 | 2002-09-27 | Nec Corp | 印刷システム、情報サービスシステム及び情報サービスサーバ |
JP2005178179A (ja) * | 2003-12-19 | 2005-07-07 | Ricoh Co Ltd | 通信システム |
JP2008015548A (ja) * | 2007-09-05 | 2008-01-24 | Casio Electronics Co Ltd | 画像形成装置に用いられる消耗品ユニットを再生利用する方法 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2005094215A (ja) * | 2003-09-16 | 2005-04-07 | Canon Inc | データ出力装置 |
KR100533835B1 (ko) * | 2004-01-26 | 2005-12-07 | 삼성전자주식회사 | 네트워크 프린터 시스템 및 그 토너 카트리지 관리방법 |
JP2005267405A (ja) | 2004-03-19 | 2005-09-29 | Fuji Xerox Co Ltd | 情報処理装置 |
US7221878B2 (en) * | 2005-02-18 | 2007-05-22 | Hewlett-Packard Development Company, L.P. | Allowing image formation using consumable item where code of consumable item is identical to code of image-formation device |
-
2009
- 2009-04-22 US US12/997,724 patent/US8570548B2/en not_active Expired - Fee Related
- 2009-04-22 WO PCT/JP2009/058015 patent/WO2009154040A1/ja active Application Filing
- 2009-04-22 JP JP2010503290A patent/JP4492761B2/ja not_active Expired - Fee Related
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2002278379A (ja) * | 2001-03-19 | 2002-09-27 | Nec Corp | 印刷システム、情報サービスシステム及び情報サービスサーバ |
JP2005178179A (ja) * | 2003-12-19 | 2005-07-07 | Ricoh Co Ltd | 通信システム |
JP2008015548A (ja) * | 2007-09-05 | 2008-01-24 | Casio Electronics Co Ltd | 画像形成装置に用いられる消耗品ユニットを再生利用する方法 |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8504823B2 (en) | 2009-11-24 | 2013-08-06 | Microsoft Corporation | Dynamic configuration of connectors for system-level communications |
US8719112B2 (en) | 2009-11-24 | 2014-05-06 | Microsoft Corporation | Invocation of accessory-specific user experience |
WO2011130026A3 (en) * | 2010-04-14 | 2012-03-08 | Microsoft Corporation | Dynamic configuration of connectors for system level communications |
Also Published As
Publication number | Publication date |
---|---|
US8570548B2 (en) | 2013-10-29 |
JPWO2009154040A1 (ja) | 2011-11-24 |
US20110096352A1 (en) | 2011-04-28 |
JP4492761B2 (ja) | 2010-06-30 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP4514215B2 (ja) | 情報処理装置、画像形成装置、画像形成システム、情報処理方法、画像形成方法 | |
US20150339789A1 (en) | Apparatus, license determining method, recording medium | |
JP6256228B2 (ja) | 画像形成システム | |
US20110228311A1 (en) | Image Forming System and Image Forming Method for Collectively Supporting Output Data Formats and Authentication Methods | |
JPWO2008081886A1 (ja) | 印刷媒体、画像形成装置、画像情報入力装置及びデジタル複合機 | |
US7860303B2 (en) | Image processing apparatus, program, and recording medium | |
JP2002202697A (ja) | 純正品判別方法、それに用いられる交換部品、純正品管理装置、純正品対応装置、純正品管理ネットワークシステム並びに純正品判別方法を実行するプログラムを記録したコンピュータ読み取り可能な記録媒体 | |
JP4492761B2 (ja) | 画像形成装置および画像形成装置におけるアクセス制御方法 | |
JP3762124B2 (ja) | 画像処理装置および画像処理方法およびコンピュータが読み出し可能なプログラムを格納した記憶媒体 | |
JP5145851B2 (ja) | 文書管理システム、文書管理装置および文書管理プログラム | |
US20080201773A1 (en) | Image Processing Device | |
JP2006004137A (ja) | 画像形成装置およびデータ処理方法およびコンピュータが読み取り可能なプログラムを格納した記憶媒体およびプログラム | |
US8587798B2 (en) | Replacement component for a printing device | |
JP2007087119A (ja) | 指示入力受付方法およびユーザインタフェース装置並びにプログラム | |
US20070286530A1 (en) | Data management apparatus, data management method, and storage medium | |
JP2001347734A (ja) | プリンタ装置及びこれを用いた画像印刷システム | |
JP5124241B2 (ja) | 情報処理装置、情報処理方法、情報処理プログラム及び記録媒体 | |
US11789669B2 (en) | Recording device, recording system, and non-transitory computer-readable recording medium therefor | |
JP4655615B2 (ja) | 固体識別装置及びプログラム | |
JP2007280272A (ja) | 電子ファイルのプリントアウトシステム及びその方法 | |
US20230367523A1 (en) | Recording device, recording system and control method therefor | |
JP2011193310A (ja) | 画像形成システムおよびユーザマネージャサーバ装置 | |
JP5424036B2 (ja) | 画像形成装置および画像形成プログラム | |
JP6926564B2 (ja) | 画像処理装置及びプログラム | |
KR20180007816A (ko) | 소모품 사용량에 기초하여 소모품 구매 조건을 결정하는 화상 형성 장치 및 그 동작 방법 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 2010503290 Country of ref document: JP |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 09766488 Country of ref document: EP Kind code of ref document: A1 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 12997724 Country of ref document: US |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 09766488 Country of ref document: EP Kind code of ref document: A1 |