WO2021001999A1 - Dispositif de traitement d'informations et procédé de traitement d'informations - Google Patents

Dispositif de traitement d'informations et procédé de traitement d'informations Download PDF

Info

Publication number
WO2021001999A1
WO2021001999A1 PCT/JP2019/026662 JP2019026662W WO2021001999A1 WO 2021001999 A1 WO2021001999 A1 WO 2021001999A1 JP 2019026662 W JP2019026662 W JP 2019026662W WO 2021001999 A1 WO2021001999 A1 WO 2021001999A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
unit
personal information
information processing
processing device
Prior art date
Application number
PCT/JP2019/026662
Other languages
English (en)
Japanese (ja)
Inventor
公一朗 西山
Original Assignee
三菱電機株式会社
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 三菱電機株式会社 filed Critical 三菱電機株式会社
Priority to PCT/JP2019/026662 priority Critical patent/WO2021001999A1/fr
Priority to JP2021529316A priority patent/JP7042976B2/ja
Publication of WO2021001999A1 publication Critical patent/WO2021001999A1/fr

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules

Definitions

  • the present invention relates to an information processing device and an information processing method for a mobile body.
  • the vehicle information data storage system described in Patent Document 1 is configured to erase or prohibit reading of the vehicle position information stored in the storage device according to the laws and regulations of the country in which the vehicle exists.
  • Patent Document 1 since the past behavior of the vehicle user may be specified by a third party based on the vehicle position information stored in the storage device, the vehicle position information is managed as personal information.
  • personal information such as cookies used by general-purpose applications such as web browsers is not managed. Therefore, even when the vehicle moves out of the EU, the web browser can use cookies and the like inside the vehicle. That is, in the prior art described in Patent Document 1, the personal information targeted by the GDPR could not be managed correctly and strictly in accordance with the restrictions of the GDPR.
  • an information processing device that can be moved and connected to the Internet (for example, an in-vehicle navigation device), as one method of managing personal information such as cookies targeted by the GDPR in accordance with the restrictions of the GDPR, other than the person himself / herself.
  • personal information When personal information is obtained from the Internet, it can be immediately encrypted and converted into confidential information so that it cannot be disclosed to the public.
  • the information processing device also encrypts the cookies and the like used in the web browser which is a general-purpose application, so that the web browser cannot use the encrypted cookies and the like, which is convenient for the user. Will be impaired.
  • the present invention has been made to solve the above problems, and an object of the present invention is to provide an information processing device that has both protection of personal information used by a general-purpose application and convenience of a user.
  • the information processing device is a mobile information processing device including a general-purpose application execution unit that executes a general-purpose application program and an individual application execution unit that executes an individual application program, and provides personal information.
  • a general-purpose application execution unit that executes a general-purpose application program and an individual application execution unit that executes an individual application program, and provides personal information.
  • the information separation unit that separates the first personal information used by the general-purpose application execution unit and the second personal information used by the individual application execution unit, and the first personal information separated by the information separation unit.
  • the first information addition unit that adds the position information of the information processing device when the first personal information is acquired and the position information added to the first personal information are within a predetermined specific area.
  • the first condition determination unit that determines whether or not the condition is determined
  • the first personal information is encrypted. It is provided with an information processing unit that does not encrypt the first personal information when it is determined that the personal information is in a specific area, and a storage unit that stores the first personal information encrypted by the information processing
  • the general-purpose application execution unit can use the first personal information in plain text as much as possible. Therefore, restrictions on the use of general-purpose application programs are reduced. Therefore, it is possible to provide an information processing device that has both protection of personal information used by a general-purpose application execution unit and convenience of a user.
  • FIG. It is a block diagram which shows the structural example of the information processing apparatus which concerns on Embodiment 1.
  • FIG. It is a flowchart which shows the operation example at the time of personal information acquisition by the information processing apparatus which concerns on Embodiment 1. It is a continuation of the flowchart of FIG. It is a flowchart which shows the operation example at the time of the 1st personal information reading by the information processing apparatus which concerns on Embodiment 1. It is a flowchart which shows the operation example at the time of the 2nd personal information reading by the information processing apparatus which concerns on Embodiment 1. It is a block diagram which shows the structural example of the information processing apparatus which concerns on Embodiment 2.
  • FIG. 1 is a block diagram showing a configuration example of the information processing apparatus 1 according to the first embodiment.
  • the information processing device 1 is a navigation device, a smartphone, or the like that is mounted on or brought into a moving body such as a vehicle.
  • the information processing device 1 includes a general-purpose application execution unit 7 that executes a general-purpose application program such as a web browser, and an individual application execution unit 8 that executes an individual application program unique to the information processing device 1.
  • the information processing device 1 includes an information separation unit 2, a first information addition unit 3, a second information addition unit 4, a first condition determination unit 5, a second condition determination unit 6, and an information processing unit 9. It includes a main storage unit 10, a sub storage unit 11, and a route search unit 12.
  • the information processing device 1 corresponding to GDPR will be described as an example.
  • the information processing device 1 handles personal information in plain text in a specific area (in this case, in the EU) and moves personal information out of the specific area (outside the EU) in order to support GDPR. When you take it out, it is encrypted and made into a secret sentence.
  • the route search unit 12 detects the current position and moving speed of the information processing device 1.
  • the route search unit 12 refers to the map information it owns, searches for a movement route from the current position to the destination, and determines the movement route.
  • the route search unit 12 calculates the estimated time of arrival at the destination when the information processing device 1 moves along the determined route in consideration of the average speed of the information processing device 1 and the like.
  • the route search unit 12 may calculate the estimated time of arrival from outside the specific area to the inside of the specific area when moving along the determined route, or the estimated time of arrival from within the specific area to the outside of the specific area. ..
  • the route search unit 12 outputs the position information of the information processing device 1 to the first information addition unit 3, the second information addition unit 4, the first condition determination unit 5, and the second condition determination unit 6.
  • the information separation unit 2 uses personal information acquired from the outside such as the Internet via a communication device (not shown) or the like into personal information used by the general-purpose application execution unit 7 and personal information used by the individual application execution unit 8. To separate. Personal information includes not only information such as name, nationality, gender, and age, but also information such as cookies and IP addresses.
  • the personal information used by the general-purpose application execution unit 7 is referred to as "first personal information”
  • the personal information used by the individual application execution unit 8 is referred to as "second personal information”.
  • the information separation unit 2 outputs the first personal information to the first information addition unit 3 and outputs the second personal information to the second information addition unit 4.
  • the first information addition unit 3 adds the current position information from the route search unit 12 to the first personal information from the information separation unit 2.
  • the current position corresponds to the position where the first personal information was acquired.
  • the first information addition unit 3 outputs the first personal information to which the position information is added to the first condition determination unit 5.
  • the second information addition unit 4 adds the current position information from the route search unit 12 to the second personal information from the information separation unit 2.
  • the current position corresponds to the position where the second personal information was acquired.
  • the second information addition unit 4 outputs the second personal information to which the position information is added to the second condition determination unit 6.
  • the first condition determination unit 5 is a first personal information (that is, a first personal information from the first information addition unit 3) and a main storage unit acquired from the outside according to an instruction from the general-purpose application execution unit 7. Either the first personal information of the plain sentence stored in 10 or the first personal information of the secret sentence stored in the sub-storage unit 11 is selected. Then, the first condition determination unit 5 determines whether or not a predetermined condition is satisfied.
  • the predetermined conditions will be described later.
  • the first condition determination unit 5 outputs the first personal information in plain text to the general-purpose application execution unit 7 when the first personal information acquired from the outside is selected and when a predetermined condition is satisfied. To do. Further, when instructed by the general-purpose application execution unit 7, the first condition determination unit 5 stores the first personal information in the main storage unit 10 in plain text. On the other hand, the first condition determination unit 5 outputs the first personal information to the information processing unit 9 when the predetermined conditions are not satisfied. The information processing unit 9 encrypts the first personal information and stores it in the sub storage unit 11 as a secret sentence.
  • the first condition determination unit 5 selects the first personal information in plain text stored in the main storage unit 10 and satisfies a predetermined condition, the first condition determination unit 5 reads the plain text from the main storage unit 10. The first personal information is output to the general-purpose application execution unit 7.
  • the first condition determination unit 5 selects the first personal information of the secret sentence stored in the sub-storage unit 11 and when the predetermined condition is satisfied, the secret read from the sub-storage unit 11
  • the first personal information of the sentence is output to the information processing unit 9.
  • the information processing unit 9 decodes the first personal information, converts it into plain text, and outputs it to the general-purpose application execution unit 7.
  • the second condition determination unit 6 is a second personal information (that is, a second personal information from the second information addition unit 4) and a main storage unit acquired from the outside according to an instruction from the individual application execution unit 8. Either the second personal information of the plain sentence stored in 10 or the second personal information of the secret sentence stored in the sub-storage unit 11 is selected. Then, the second condition determination unit 6 determines whether or not a predetermined condition is satisfied.
  • the predetermined conditions will be described later.
  • the conditions used by the first condition determination unit 5 and the conditions used by the second condition determination unit 6 may be the same or different.
  • the second condition determination unit 6 outputs the second personal information in plain text to the individual application execution unit 8 when the second personal information acquired from the outside is selected and when a predetermined condition is satisfied. To do. Further, when instructed by the individual application execution unit 8, the second condition determination unit 6 stores the second personal information in the main storage unit 10 in plain text. On the other hand, the second condition determination unit 6 outputs the second personal information to the information processing unit 9 when the predetermined conditions are not satisfied.
  • the information processing unit 9 encrypts the second personal information and stores it in the sub-storage unit 11 as a secret sentence.
  • the second condition determination unit 6 selects the second personal information in plain text stored in the main storage unit 10 and satisfies a predetermined condition
  • the second condition determination unit 6 reads the plain text from the main storage unit 10.
  • the second personal information is output to the individual application execution unit 8.
  • the second condition determination unit 6 selects the second personal information of the secret sentence stored in the sub storage unit 11 and satisfies the predetermined condition, the secret read from the sub storage unit 11
  • the second personal information of the sentence is output to the information processing unit 9.
  • the information processing unit 9 decodes the second personal information, converts it into plain text, and outputs it to the individual application execution unit 8.
  • the general-purpose application execution unit 7 instructs the first condition determination unit 5 to acquire arbitrary first personal information, receives the instructed first personal information from the first condition determination unit 5, and makes a general-purpose application. Run the program.
  • the individual application execution unit 8 instructs the second condition determination unit 6 to acquire arbitrary second personal information, receives the instructed second personal information from the second condition determination unit 6, and makes an individual application. Run the program.
  • the information processing unit 9 performs encryption processing or decryption processing on the first personal information in accordance with the instruction of the first condition determination unit 5. In addition, the information processing unit 9 performs encryption processing or decryption processing on the second personal information in accordance with the instructions of the second condition determination unit 6.
  • the information processing unit 9 stores the encrypted first personal information and the second personal information in the sub storage unit 11. The information processing unit 9 outputs the decrypted first personal information to the first condition determination unit 5. Further, the information processing unit 9 outputs the decrypted second personal information to the second condition determination unit 6.
  • the main storage unit 10 stores the first personal information and the second personal information in plain text.
  • the sub-storage unit 11 stores the first personal information and the second personal information of the secret sentence.
  • the storage area in one storage device is divided into two, one storage area is used as the main storage unit 10, and the other storage area is used as the sub storage unit 11.
  • the main storage unit 10 and the sub storage unit 11 may be composed of two independent storage devices.
  • the storage devices constituting the main storage unit 10 and the sub storage unit 11 may be fixed to the information processing device 1 or may be removable.
  • the storage device may be a server on the network and may have a configuration capable of communicating with the information processing device 1. In the case of this configuration, the information processing device 1 may treat the personal information stored in the server as personal information acquired from the outside.
  • FIG. 2 is a flowchart showing an operation example at the time of personal information acquisition by the information processing device 1 according to the first embodiment.
  • FIG. 3 is a continuation of the flowchart of FIG.
  • step ST1 when the personal information acquired from the outside is the first personal information used by the general-purpose application execution unit 7 (step ST1 “YES”), the information separation unit 2 obtains the personal information from the outside. It is output to the first information addition unit 3 as the personal information of 1.
  • the information separation unit 2 uses the personal information acquired from the outside as the second personal information. Is output to the second information addition unit 4.
  • step ST2 the first information addition unit 3 adds position information to the first personal information from the information separation unit 2 and outputs it to the first condition determination unit 5.
  • step ST3 and step ST4 the first condition determination unit 5 determines whether or not a predetermined condition is satisfied.
  • the first condition determination unit 5 determines whether or not the acquisition position of the first personal information is within a predetermined specific area based on the position information added to the first personal information. Is determined.
  • the acquisition position of the first personal information is within the specific area (step ST3 “YES”)
  • the first condition determination unit 5 is the first in which the first personal information is predetermined in step ST4. Determine if the disclosure condition is met.
  • the first disclosure condition is, for example, information indicating whether or not disclosure to a third party is possible, which is determined for each type of first personal information.
  • the name is set to be publicly available (that is, the name meets the first public condition) and the nationality is set to be non-public (that is, the nationality does not meet the first public condition).
  • the first disclosure condition is set in advance for the first condition determination unit 5 by, for example, the user of the information processing apparatus 1.
  • the first condition determination unit 5 outputs the first personal information to the general-purpose application execution unit 7. Further, when instructed by the general-purpose application execution unit 7, the first condition determination unit 5 outputs the first personal information to the main storage unit 10.
  • step ST5 the main storage unit 10 stores the first personal information from the first condition determination unit 5.
  • the first condition determination unit 5 instructs the information processing unit 9 to encrypt the first personal information. ..
  • the first condition determination unit 5 tells the information processing unit 9 to encrypt the first personal information. Instruct.
  • step ST6 the information processing unit 9 performs encryption processing on the first personal information to make a secret sentence, and outputs the secret sentence to the sub-storage unit 11.
  • step ST7 the sub-storage unit 11 stores the first personal information from the information processing unit 9.
  • step ST12 the second information addition unit 4 adds position information to the second personal information from the information separation unit 2 and outputs it to the second condition determination unit 6.
  • step ST13 and step ST14 the second condition determination unit 6 determines whether or not a predetermined condition is satisfied.
  • the second condition determination unit 6 determines whether or not the acquisition position of the second personal information is within a predetermined specific area based on the position information added to the second personal information. Is determined.
  • the second condition determination unit 6 sets the second personal information in advance in step ST14. Determine if the disclosure condition is met.
  • the second disclosure condition may be the same as or different from the first disclosure condition.
  • all kinds of second personal information may be set not to be disclosed.
  • the management of the second personal information can be simplified.
  • the second condition determination unit 6 outputs the second personal information to the individual application execution unit 8. Further, when instructed by the individual application execution unit 8, the second condition determination unit 6 outputs the second personal information to the main storage unit 10.
  • step ST15 the main storage unit 10 stores the second personal information from the second condition determination unit 6.
  • the second condition determination unit 6 instructs the information processing unit 9 to encrypt the second personal information. ..
  • the second condition determination unit 6 tells the information processing unit 9 to encrypt the second personal information. Instruct.
  • step ST16 the information processing unit 9 performs encryption processing on the second personal information to make a secret sentence, and outputs the secret sentence to the sub-storage unit 11.
  • step ST17 the sub-storage unit 11 stores the second personal information from the information processing unit 9.
  • FIG. 4 is a flowchart showing an operation example at the time of reading out the first personal information by the information processing apparatus 1 according to the first embodiment.
  • the general-purpose application execution unit 7 instructs the first condition determination unit 5 to read the first personal information.
  • the first condition determination unit 5 reads out the corresponding first personal information from the main storage unit 10 or the sub storage unit 11.
  • the first condition determination unit 5 determines in step ST22 and step ST23 whether or not a predetermined condition is satisfied.
  • the first condition determination unit 5 acquires the position information from the route search unit 12, and determines whether or not the current position of the information processing device 1 is within the specific area based on the position information. ..
  • the first condition determination unit 5 determines in step ST23 whether or not the first personal information satisfies the first disclosure condition. ..
  • step ST24 whether or not the first condition determination unit 5 has read the first personal information from the sub-storage unit 11. That is, it is determined whether or not the first personal information is a secret sentence.
  • the first condition determination unit 5 instructs the information processing unit 9 to decode the first personal information.
  • step ST25 the information processing unit 9 performs decoding processing on the first personal information from the first condition determination unit 5 to make it plain text.
  • step ST26 the information processing unit 9 outputs the first personal information in plain text to the general-purpose application execution unit 7.
  • step ST24 “NO”) the first condition determination unit 5 skips the decoding process in step ST25, and in step ST26, the first personal information is used as the general-purpose application execution unit. Output to 7.
  • step ST22 “NO” When the current position is outside the specific area (step ST22 “NO”), the first condition determination unit 5 ends the operation shown in the flowchart of FIG. If the first personal information does not satisfy the first disclosure condition (step ST23 “NO”), the first condition determination unit 5 ends the operation shown in the flowchart of FIG.
  • the first condition determination unit 5 When the general-purpose application execution unit 7 instructs the first condition determination unit 5 to output the first personal information externally, the first condition determination unit 5 has the current position in the specific area and the current position is within the specific area. When the first personal information satisfies the first disclosure condition, the first personal information is output in plain text to the outside. On the other hand, when the current position is outside the specific area, or when the first personal information does not satisfy the first disclosure condition, the first condition determination unit 5 outputs the first personal information as a secret sentence to the outside. Alternatively, the external output of the first personal information may be stopped.
  • FIG. 5 is a flowchart showing an operation example at the time of reading out the second personal information by the information processing apparatus 1 according to the first embodiment.
  • the individual application execution unit 8 instructs the second condition determination unit 6 to read the second personal information.
  • the second condition determination unit 6 reads the corresponding second personal information from the main storage unit 10 or the sub storage unit 11.
  • the second condition determination unit 6 determines whether or not the predetermined conditions are satisfied in step ST32 and step ST33.
  • step ST32 the second condition determination unit 6 acquires position information from the route search unit 12, and determines whether or not the current position of the information processing device 1 is within the specific area based on the position information. ..
  • step ST33 the second condition determination unit 6 determines in step ST33 whether or not the second personal information satisfies the second disclosure condition. ..
  • step ST34 whether or not the second condition determination unit 6 has read the second personal information from the sub-storage unit 11. That is, it is determined whether or not the second personal information is a secret sentence.
  • the second condition determination unit 6 instructs the information processing unit 9 to decrypt the second personal information.
  • step ST35 the information processing unit 9 performs decoding processing on the second personal information from the second condition determination unit 6 to make it plain text.
  • step ST36 the information processing unit 9 outputs the second personal information in plain text to the individual application execution unit 8.
  • step ST34 “NO” When the second personal information is in plain text (step ST34 “NO”), the second condition determination unit 6 skips the decoding process in step ST35, and in step ST36, the second personal information is converted into the individual application execution unit. Output to 8.
  • step ST32 “NO” When the current position is outside the specific area (step ST32 “NO”), the second condition determination unit 6 ends the operation shown in the flowchart of FIG. If the second personal information does not satisfy the second disclosure condition (step ST33 “NO”), the second condition determination unit 6 ends the operation shown in the flowchart of FIG.
  • the second condition determination unit 6 When the individual application execution unit 8 instructs the second condition determination unit 6 to output the second personal information externally, the second condition determination unit 6 has the current position in the specific area and the current position is within the specific area. When the second personal information satisfies the second disclosure condition, the second personal information is output in plain text to the outside. On the other hand, when the current position is outside the specific area, or when the second personal information does not satisfy the second disclosure condition, the second condition determination unit 6 outputs the second personal information as a secret sentence to the outside. Alternatively, the external output of the second personal information may be stopped.
  • the information processing device 1 includes an information separation unit 2, a first information addition unit 3, a first condition determination unit 5, an information processing unit 9, and a sub-storage unit 11. ..
  • the information separation unit 2 separates the personal information into a first personal information used by the general-purpose application execution unit 7 and a second personal information used by the individual application execution unit 8.
  • the first information addition unit 3 adds the position information of the information processing device 1 when the first personal information is acquired to the first personal information separated by the information separation unit 2.
  • the first condition determination unit 5 determines whether or not the position information added to the first personal information is within a predetermined specific area.
  • the information processing unit 9 determines that the position information added to the first personal information is outside the specific area by the first condition determination unit 5, the information processing unit 9 encrypts the first personal information and within the specific area. If, the first personal information is not encrypted.
  • the sub-storage unit 11 stores the first personal information encrypted by the information processing unit 9. In this way, the information processing device 1 uses the first personal information as plainly as possible by changing the protection method of the first personal information such as the online identifier used by the general-purpose application execution unit 7 inside and outside the specific area. Therefore, restrictions on the use of general-purpose application programs such as web browsers can be reduced. Therefore, the information processing device 1 can achieve both the protection of the first personal information used by the general-purpose application execution unit 7 and the convenience of the user.
  • the information processing unit 9 of the first embodiment decodes the first personal information stored in the sub storage unit 11.
  • the information processing device 1 can use the first personal information in plain text as much as possible, so that restrictions on the use of general-purpose application programs such as a web browser can be reduced.
  • the information processing device 1 separates the first personal information and the second personal information, the conditions for encrypting and decrypting the first personal information and the conditions for encrypting and decrypting the second personal information are performed.
  • the conditions can be the same or different. Therefore, the information processing device 1 makes the second personal information available in plain text as much as possible like the first personal information, or manages the second personal information more strictly than the first personal information. Is possible.
  • FIG. 6 is a block diagram showing a configuration example of the information processing apparatus 1 according to the second embodiment.
  • the information processing device 1 according to the second embodiment has a configuration in which a key generation unit 13 is added to the information processing device 1 of the first embodiment shown in FIG. Further, the user information indicating the user of the information processing apparatus 1 to the first information addition unit 3, the second information addition unit 4, the first condition determination unit 5, and the second condition determination unit 6. Is input.
  • the information processing device 1 may include means for detecting the user of the information processing device 1.
  • User information is an identification number, etc.
  • the first information addition unit 3 indicates the current position information from the route search unit 12 and the user who is currently using the information processing device 1 with respect to the first personal information from the information separation unit 2. Add user information.
  • the first information addition unit 3 outputs the first personal information to which the location information and the user information are added to the first condition determination unit 5.
  • the second information addition unit 4 indicates the current position information from the route search unit 12 and the user who is currently using the information processing device 1 with respect to the second personal information from the information separation unit 2. Add user information.
  • the second information addition unit 4 outputs the second personal information to which the location information and the user information are added to the second condition determination unit 6.
  • the first condition determination unit 5 performs the same operation as that of the first embodiment. However, the conditions for encrypting and decrypting the first personal information differ between the first embodiment and the second embodiment.
  • the conditions of the first embodiment are whether or not the acquisition position of the first personal information or the current position of the information processing device 1 is within the specific area, and the type of the first personal information is the first disclosure condition. There were two conditions, whether or not they were satisfied.
  • the conditions of the second embodiment are the above two conditions and three conditions of whether or not the user at the time of acquiring the first personal information and the current user are the same.
  • the second condition determination unit 6 performs the same operation as that of the first embodiment. However, the conditions for encrypting and decrypting the second personal information differ between the first embodiment and the second embodiment.
  • the conditions of the first embodiment are whether or not the acquisition position of the second personal information or the current position of the information processing device 1 is within the specific area, and the type of the second personal information is the second disclosure condition. There were two conditions, whether or not they were satisfied.
  • the conditions of the second embodiment are the above two conditions and three conditions of whether or not the user at the time of acquiring the second personal information and the current user are the same.
  • the key generation unit 13 acquires at least one of the current position information, date and time information, or route information from the route search unit 12. Then, the key generation unit 13 generates key information using the information acquired from the route search unit 12, and outputs the generated key information to the information processing unit 9.
  • the information processing unit 9 performs encryption processing and decryption processing of personal information using the key information from the key generation unit 13.
  • FIG. 7 is a flowchart showing an operation example at the time of personal information acquisition by the information processing device 1 according to the second embodiment.
  • FIG. 8 is a continuation of the flowchart of FIG.
  • the operations of steps ST1, ST3, ST4, ST6, ST13, ST14, and ST16 in the flowcharts of FIGS. 7 and 8 are the operations of steps ST1, ST3, ST4, ST6, ST13, ST14, and ST16 in the flowcharts of FIGS. 2 and 3. Since it is the same as the above, the description thereof will be omitted.
  • step ST2a the first information addition unit 3 adds position information and user information to the first personal information from the information separation unit 2, and outputs the location information and the user information to the first condition determination unit 5.
  • step ST5a the main storage unit 10 stores the plaintext user information added to the plaintext first personal information from the first condition determination unit 5.
  • step ST7a the sub-storage unit 11 stores the first personal information of the secret sentence from the information processing unit 9 in a state in which the user information in plain text is added.
  • step ST12a the second information addition unit 4 adds the position information and the user information to the second personal information from the information separation unit 2, and outputs the position information and the user information to the second condition determination unit 6.
  • step ST15a the main storage unit 10 stores the plaintext user information added to the plaintext second personal information from the second condition determination unit 6.
  • step ST17a the sub-storage unit 11 stores the second personal information of the secret sentence from the second condition determination unit 6 in a state in which the user information in plain text is added.
  • FIG. 9 is a flowchart showing an operation example at the time of reading out the first personal information by the information processing device 1 according to the second embodiment. Since the operations of steps ST21 to ST26 in the flowchart of FIG. 9 are the same as the operations of steps ST21 to ST26 in the flowchart of FIG. 4, the description thereof will be omitted.
  • the first condition determination unit 5 determines whether or not a predetermined condition is satisfied in steps ST22, ST23, and ST41.
  • step ST41 the first condition determination unit 5 acquires the user information of the current information processing device 1, and the current user information and the user information added to the first personal information are the same. Determine if it exists.
  • step ST41 “YES”) when the current user information and the user information added to the first personal information are the same (step ST41 “YES”), that is, the current user himself / herself
  • step ST24 it is determined whether or not the first personal information is a secret sentence.
  • step ST41 “NO” when the current user information and the user information added to the first personal information are different (step ST41 “NO”), that is, the current user is another person.
  • the operation shown in the flowchart of FIG. 9 is terminated.
  • the current position is within the specific area, the first personal information satisfies the first disclosure condition, and the current user himself / herself.
  • the first personal information is decoded and output to the general-purpose application execution unit 7, but the present invention is not limited to this.
  • the first condition determination unit 5 uses the first personal information when the current user intends to use his / her first personal information even if the current position is outside the specific area. It may be decoded and output to the general-purpose application execution unit 7.
  • the first condition determination unit 5 when there is no user of the information processing device 1 (for example, the information processing device 1 is an in-vehicle navigation device and the driver who is the user parks the vehicle. (When going out of the vehicle), the first personal information in plain text stored in the main storage unit 10 may be temporarily encrypted into a secret text while the user is absent.
  • the general-purpose application execution unit 7 instructs the first condition determination unit 5 to output the first personal information to the outside
  • the current position of the first condition determination unit 5 is within the specific area.
  • the first personal information satisfies the first disclosure condition and the current user intends to use his / her first personal information
  • the first personal information is output in plain text to the outside. ..
  • the first The condition determination unit 5 of 1 may make the first personal information a secret sentence and output it externally, or may stop the external output of the first personal information.
  • FIG. 10 is a flowchart showing an operation example at the time of reading out the second personal information by the information processing device 1 according to the second embodiment. Since the operations of steps ST31 to ST36 in the flowchart of FIG. 10 are the same as the operations of steps ST31 to ST36 in the flowchart of FIG. 5, the description thereof will be omitted.
  • the second condition determination unit 6 determines whether or not a predetermined condition is satisfied in steps ST32, ST33, and ST42.
  • step ST42 the second condition determination unit 6 acquires the current user information of the information processing device 1, and the current user information and the user information added to the second personal information are the same. Determine if it exists.
  • step ST42 “YES” the second condition determination unit 6 determines the second individual in step ST34. Determine if the information is a secret statement.
  • the second condition determination unit 6 operates as shown in the flowchart of FIG. To finish.
  • the second condition determination unit 6 in the second condition determination unit 6, the current position is within the specific area, the second personal information satisfies the second disclosure condition, and the current user himself / herself.
  • the second personal information is decoded and output to the individual application execution unit 8, but the present invention is not limited to this.
  • the second condition determination unit 6 uses the second personal information when the current user intends to use his / her second personal information even if the current position is outside the specific area. It may be decoded and output to the individual application execution unit 8.
  • the second condition determination unit 6 temporarily stores the second personal information in plain text stored in the main storage unit 10 while the user is absent. It may be encrypted to be a secret text.
  • the individual application execution unit 8 instructs the second condition determination unit 6 to output the second personal information externally
  • the current position of the second condition determination unit 6 is within the specific area.
  • the second personal information satisfies the second disclosure condition and the current user intends to use his / her second personal information
  • the second personal information is output in plain text to the outside. ..
  • the second The condition determination unit 6 of 2 may make the second personal information a secret sentence and output it externally, or may stop the external output of the second personal information.
  • the first information addition unit 3 acquires the first personal information with respect to the first personal information separated by the information separation unit 2.
  • User information indicating the user of the information processing device 1 of the above is added.
  • the first condition determination unit 5 acquires the first personal information based on the user information added to the first personal information. It is determined whether or not the user of the information processing device 1 at that time and the current user are the same.
  • the information processing unit 9 determines that the user of the information processing device 1 when the first personal information is acquired by the first condition determination unit 5 is different from the current user, the first condition determination unit 9 Encrypt personal information.
  • the sub-storage unit 11 adds user information to the encrypted first personal information and stores it.
  • the information processing device 1 can handle the first personal information in plain text. As a result, the information processing device 1 can use the first personal information in plain text as much as possible, so that restrictions on the use of general-purpose application programs such as a web browser can be reduced.
  • the information processing unit 9 acquires the first personal information stored in the sub-storage unit 11 by the first condition determination unit 5.
  • the first personal information is decoded.
  • the information processing device 1 can handle the first personal information in plain text.
  • the information processing device 1 can use the first personal information in plain text as much as possible, so that restrictions on the use of general-purpose application programs such as a web browser can be reduced.
  • the information processing device 1 includes a key generation unit 13 that generates key information used for encryption processing and decryption processing of the information processing unit 9 by using at least one of date and time information and position information. Be prepared.
  • a key generation unit 13 that generates key information used for encryption processing and decryption processing of the information processing unit 9 by using at least one of date and time information and position information. Be prepared.
  • the information processing unit 9 always uses the same key information for encryption processing and decryption processing, if this key information leaks to the outside, all the secret sentences of the sub-storage unit 11 may be decrypted in plain text. ..
  • the information processing device 1 makes it possible to enhance the security of the key information itself by causing the key generation unit 13 to generate arbitrary key information, and more strictly manages the secret text of the sub-storage unit 11. be able to.
  • the information processing device 1 may be configured to include the key generation unit 13.
  • the information processing device 1 may control the timing of starting the encryption processing and the decryption processing of the personal information.
  • the route search unit 12 determines the estimated time of arrival from outside the specific area to the inside of the specific area when the information processing apparatus 1 moves along the determined route, and the specific area. Calculate the estimated time of arrival outside the specific area from within.
  • the first condition determination unit 5 determines whether or not the current position of the information processing device 1 is within the specific area, and if it is outside the specific area, the plaintext first stored in the main storage unit 10. It is assumed that the personal information of 1 is made into a secret sentence and stored in the sub-storage unit 11. Further, when the current position of the information processing device 1 is within the specific area, the first condition determination unit 5 decodes the above secret sentence, converts it into plain text, and returns it to the main storage unit 10.
  • the information processing unit 9 When the information processing device 1 moves from the inside of the specific area to the outside of the specific area, the information processing unit 9 encrypts a large amount of the first personal information at once. Therefore, the information processing unit 9 may temporarily use a large amount of the performance of the information processing device 1 such as the CPU (Central Processing Unit) resource of the information processing device 1. Then, when CPU resources or the like are used to operate a plurality of functions of the information processing device 1 such as the general-purpose application execution unit 7, the individual application execution unit 8, and the route search unit 12 in parallel, the information processing unit 9 There is a possibility that the CPU resources required for the encryption processing of the above cannot be secured. Therefore, the information processing unit 9 acquires the scheduled time T1 to reach the outside of the specific area from the route search unit 12.
  • the CPU Central Processing Unit
  • the information processing unit 9 starts the encryption process from the time (T1-a1).
  • “A1” is a predetermined time (for example, 2 minutes). Further, the information processing unit 9 may acquire the current time from the route search unit 12. By starting the encryption process before reaching the outside of the specific area, the information processing unit 9 can prevent the operation of the plurality of functions of the information processing device 1 from being affected by the encryption process. ..
  • the information processing unit 9 smoothes the load of the encryption processing by adjusting the amount of the first personal information to be encrypted according to the CPU resource and the like. May be good. For example, when 80% of the CPU resources are used by a plurality of functions of the information processing device 1, the information processing unit 9 uses the remaining 20% to perform the first personal information amount so as to perform encryption processing. adjust. In this case, the information processing unit 9 can further prevent the operation of the plurality of functions of the information processing device 1 from being affected by the encryption process.
  • the information processing unit 9 decodes a large amount of the first personal information at once. Therefore, there is a possibility that the performance of the information processing device 1 such as the CPU resource of the information processing device 1 is temporarily used in large quantities. Therefore, the information processing unit 9 acquires the scheduled time T2 to reach the specific area from the route search unit 12 and starts the decryption process from the time (T2-a2), as in the case of the above-mentioned encryption processing.
  • “A2” is a predetermined time (for example, 4 minutes).
  • the information processing unit 9 starts the decryption processing from the time (T2-a2), and then adjusts the amount of the first personal information to be decrypted according to the CPU resource and the like.
  • the load of the decoding process may be smoothed.
  • the information processing unit 9 can prevent the decoding process from affecting the operations of the plurality of functions of the information processing device 1.
  • the decryption process will be started outside the specific area before reaching the specific area. Therefore, the first personal information in the decrypted plain text temporarily exists in the information processing device 1 outside the specific area. Therefore, for example, a part of the storage area of the sub-storage unit 11 is set as a protected storage area that cannot be accessed from the outside.
  • the information processing unit 9 starts the decoding process outside the specific area, the information processing unit 9 temporarily stores the first personal information in plain text in the protected storage area until it reaches the specific area.
  • timing control of the encryption process and the decryption process has been described using the first personal information as an example, but the same timing control of the encryption process and the decryption process can be performed for the second personal information.
  • 11 and 12 are diagrams showing a hardware configuration example of the information processing device 1 according to each embodiment.
  • the main storage unit 10 and the sub storage unit 11 in the information processing device 1 are memories 102.
  • Information separation unit 2 first information addition unit 3, second information addition unit 4, first condition determination unit 5, second condition determination unit 6, general-purpose application execution unit 7, individual application in the information processing device 1.
  • the functions of the execution unit 8, the information processing unit 9, the route search unit 12, and the key generation unit 13 are realized by the processing circuit. That is, the information processing device 1 includes a processing circuit for realizing the above functions.
  • the processing circuit may be a processing circuit 100 as dedicated hardware, or a processor 101 that executes a program stored in the memory 102.
  • the processing circuit 100 may be, for example, a single circuit, a composite circuit, a programmed processor, a parallel programmed processor, or an ASIC (Application Special Integrated Circuit). ), FPGA (Field Processor Gate Array), or a combination thereof.
  • Information separation unit 2 first information addition unit 3, second information addition unit 4, first condition determination unit 5, second condition determination unit 6, general-purpose application execution unit 7, individual application execution unit 8, information
  • the functions of the processing unit 9, the route search unit 12, and the key generation unit 13 may be realized by a plurality of processing circuits 100, or the functions of each unit may be collectively realized by one processing circuit 100.
  • the processing circuit is the processor 101
  • the information separation unit 2 the first information addition unit 3, the second information addition unit 4, the first condition determination unit 5, and the second condition
  • the functions of the determination unit 6, the general-purpose application execution unit 7, the individual application execution unit 8, the information processing unit 9, the route search unit 12, and the key generation unit 13 are realized by software, firmware, or a combination of software and firmware. ..
  • the software or firmware is described as a program and stored in the memory 102.
  • the processor 101 realizes the functions of each part by reading and executing the program stored in the memory 102. That is, the information processing device 1 includes a memory 102 for storing a program in which the steps shown in the flowcharts of FIGS. 2 to 5 and the like are eventually executed when executed by the processor 101.
  • this program includes an information separation unit 2, a first information addition unit 3, a second information addition unit 4, a first condition determination unit 5, a second condition determination unit 6, a general-purpose application execution unit 7, and individual applications. It can be said that the computer is made to execute the procedure or method of the application execution unit 8, the information processing unit 9, the route search unit 12, and the key generation unit 13.
  • the processor 101 is a CPU, a processing device, an arithmetic unit, a microprocessor, or the like.
  • the memory 102 may be a non-volatile or volatile semiconductor memory such as a RAM (Random Access Memory), a ROM (Read Only Memory), an EPROM (Erasable Program ROM), or a flash memory, and may be a hard disk, a flexible disk, or the like. It may be a magnetic disk of. As described above, the memory 102 constituting the main storage unit 10 and the sub storage unit 11 may be fixed to the information processing device 1 like a hard disk, or information processing such as a USB (Universal Serial Bus) memory. It may be removable from the device 1.
  • a RAM Random Access Memory
  • ROM Read Only Memory
  • EPROM Erasable Program ROM
  • flash memory any type of volatile semiconductor memory
  • the memory 102 constituting the main storage unit 10 and the sub storage unit 11 may be fixed to the information processing device 1 like a hard disk, or information processing such as a USB (Universal Serial Bus) memory. It may be removable from the device 1.
  • USB Universal Serial Bus
  • the information processing unit 9, the route search unit 12, and the key generation unit 13 may be partially realized by dedicated hardware and partly realized by software or firmware.
  • the processing circuit in the information processing apparatus 1 can realize the above-mentioned functions by hardware, software, firmware, or a combination thereof.
  • the present invention allows any combination of embodiments, modifications of any component of each embodiment, or omission of any component of each embodiment within the scope of the invention.
  • the information processing device Since the information processing device according to the present invention is designed to perform encryption processing and decryption processing of personal information according to conditions such as the current position, the information processing device for mobile bodies including people, vehicles, railways, ships, aircraft, etc. Therefore, it is particularly suitable for being carried into a vehicle or used as an information processing device suitable for being mounted on a vehicle.
  • 1 Information processing device 2 Information separation unit, 3 1st information addition unit, 4 2nd information addition unit, 5 1st condition determination unit, 6 2nd condition determination unit, 7 general-purpose application execution unit, 8 individual Application execution unit, 9 information processing unit, 10 main storage unit, 11 sub storage unit, 12 route search unit, 13 key generation unit.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)

Abstract

Selon la présente invention, une unité de séparation d'informations (2) sépare des informations personnelles en premières informations personnelles utilisées par une unité d'exécution d'applications générales (7) et en secondes informations personnelles utilisées par une unité d'exécution d'applications individuelles (8). Une première unité d'ajout d'informations (3) ajoute, aux premières informations personnelles séparées par l'unité de séparation d'informations (2), les informations de position sur un dispositif de traitement d'informations (1) lorsque les premières informations personnelles sont acquises. Une première unité de détermination de condition (5) détermine si les informations de position ajoutées aux premières informations personnelles se trouvent ou non dans une zone spécifique prédéterminée. Une unité de traitement d'informations (9) chiffre les premières informations personnelles lorsqu'il est déterminé par la première unité de détermination de condition (5) que les informations de position ajoutées aux premières informations personnelles se trouvent à l'extérieur de la zone spécifique, et ne chiffre pas les premières informations personnelles lorsque les informations de position se trouvent à l'intérieur de la zone spécifique. Une unité de stockage secondaire (11) stocke les premières informations personnelles chiffrées par l'unité de traitement d'informations (9).
PCT/JP2019/026662 2019-07-04 2019-07-04 Dispositif de traitement d'informations et procédé de traitement d'informations WO2021001999A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/JP2019/026662 WO2021001999A1 (fr) 2019-07-04 2019-07-04 Dispositif de traitement d'informations et procédé de traitement d'informations
JP2021529316A JP7042976B2 (ja) 2019-07-04 2019-07-04 情報処理装置及び情報処理方法

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2019/026662 WO2021001999A1 (fr) 2019-07-04 2019-07-04 Dispositif de traitement d'informations et procédé de traitement d'informations

Publications (1)

Publication Number Publication Date
WO2021001999A1 true WO2021001999A1 (fr) 2021-01-07

Family

ID=74100796

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2019/026662 WO2021001999A1 (fr) 2019-07-04 2019-07-04 Dispositif de traitement d'informations et procédé de traitement d'informations

Country Status (2)

Country Link
JP (1) JP7042976B2 (fr)
WO (1) WO2021001999A1 (fr)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006525563A (ja) * 2003-05-09 2006-11-09 パスマーク セキュリティ、エルエルシー ユーザとウェッブ・サイトの認証方法及び装置
US20110154050A1 (en) * 2009-12-22 2011-06-23 Pitney Bowes Inc. System and method for selectively providing cryptographic capabilities based on location
JP2019075623A (ja) * 2017-10-12 2019-05-16 株式会社ドリコム グループ通信システム、端末装置、位置情報通知方法、ならびに、プログラム

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006525563A (ja) * 2003-05-09 2006-11-09 パスマーク セキュリティ、エルエルシー ユーザとウェッブ・サイトの認証方法及び装置
US20110154050A1 (en) * 2009-12-22 2011-06-23 Pitney Bowes Inc. System and method for selectively providing cryptographic capabilities based on location
JP2019075623A (ja) * 2017-10-12 2019-05-16 株式会社ドリコム グループ通信システム、端末装置、位置情報通知方法、ならびに、プログラム

Also Published As

Publication number Publication date
JP7042976B2 (ja) 2022-03-28
JPWO2021001999A1 (fr) 2021-01-07

Similar Documents

Publication Publication Date Title
JP2004535000A5 (fr)
US9769654B2 (en) Method of implementing a right over a content
US11277257B2 (en) Method and apparatus for performing operation using encrypted data
US7908374B2 (en) Device, method and program for providing matching service
EP3961458B1 (fr) Méthodes de traitement de service basées sur la blockchain, appareils, dispositifs et supports de stockage
CN111429126A (zh) 支付方法、装置及设备
CN112700281A (zh) 行为预测方法、装置、设备及计算机可读存储介质
KR101697868B1 (ko) 공유 또는 검색을 위한 데이터 암호화 방법 및 이를 수행하는 장치
JP7042976B2 (ja) 情報処理装置及び情報処理方法
US20150312029A1 (en) Encryption apparatus, method for encryption, method for decryption and computer-readable recording medium
CN111143674A (zh) 一种数据处理方法及装置
CN110351304A (zh) 一种不同系统间的一键切换登录实现方法及装置
JP6791263B2 (ja) 暗号文照合システム及び暗号文照合方法
JP3204317B2 (ja) 電子入札システム
JPWO2019224912A1 (ja) 車両通信装置、車両アクセス制御システム、管理装置、車両アクセス制御方法、および車両アクセス制御プログラム
JP7045290B2 (ja) 情報管理システム、情報管理方法、およびプログラム
JP2021047756A (ja) 触覚振動配信装置、触覚振動配信方法、触覚振動配信プログラム
JP7067478B2 (ja) データ抽出システム、データ抽出方法、登録装置及びプログラム
Bayerl et al. Privacy-preserving speech processing via STPC and TEEs
JP2015528139A5 (fr)
KR101570947B1 (ko) 데이터를 안전하게 공유하기 위한 테이스트 기반 인증
KR20220092631A (ko) 데이터를 보호하기 위한 시스템 및 방법
CN115769202A (zh) 自动化助手的访客用户的瞬时个性化模式
JP7311664B2 (ja) 情報管理システム、情報管理方法、およびプログラム
JP6642425B2 (ja) 条件生成装置、条件生成方法、条件生成プログラム、データベース検索システム、及び、データベース検索プログラム

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19936286

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2021529316

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19936286

Country of ref document: EP

Kind code of ref document: A1