WO2022009611A1 - Dispositif de traitement d'informations, programme, et procédé de commande de dispositif de traitement d'informations - Google Patents

Dispositif de traitement d'informations, programme, et procédé de commande de dispositif de traitement d'informations Download PDF

Info

Publication number
WO2022009611A1
WO2022009611A1 PCT/JP2021/022430 JP2021022430W WO2022009611A1 WO 2022009611 A1 WO2022009611 A1 WO 2022009611A1 JP 2021022430 W JP2021022430 W JP 2021022430W WO 2022009611 A1 WO2022009611 A1 WO 2022009611A1
Authority
WO
WIPO (PCT)
Prior art keywords
image
router
determined
information processing
image data
Prior art date
Application number
PCT/JP2021/022430
Other languages
English (en)
Japanese (ja)
Inventor
勝 山本
文誠 山添
雅之 川井
一徳 砂子
和也 後藤
昌平 末永
Original Assignee
株式会社Jsol
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 株式会社Jsol filed Critical 株式会社Jsol
Priority to JP2021534123A priority Critical patent/JP7077504B1/ja
Priority to JP2021171471A priority patent/JP2022016441A/ja
Publication of WO2022009611A1 publication Critical patent/WO2022009611A1/fr

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06TIMAGE DATA PROCESSING OR GENERATION, IN GENERAL
    • G06T7/00Image analysis

Definitions

  • This disclosure relates to technology that suppresses the risk of information leakage.
  • the presence or absence of peeping by another person is determined by detecting the face image, and when it is determined that the peeping is by another person, the peeping countermeasure processing (viewing angle control) is performed.
  • the peeping countermeasure processing viewing angle control
  • Those that perform filtering (turning on the filter, etc.) are disclosed (see, for example, Patent Document 1).
  • Patent Document 2 describes information by transmitting image information and audio information taken by a camera provided in an information terminal to a server and analyzing the image information and audio information by the server. What determines the degree of leakage risk is disclosed (see, for example, Patent Document 2).
  • This disclosure was made in view of the above circumstances, and aims to provide technology that can suppress the risk of information leakage.
  • the information processing apparatus of the present disclosure includes a display unit that displays an image according to a user's operation, and can transmit and receive information via a network by connecting to a router.
  • the information processing apparatus is provided with a determination means for determining whether or not a predetermined event has occurred, and a control means for executing a predetermined process when it is determined that the predetermined event has occurred. To suppress the risk of information leakage.
  • control means executes a process of outputting a predetermined image signal or a process of limiting the output of the image signal. Suppress the risk of information leakage.
  • control means suppresses the risk of information leakage by executing a process of notifying the administrator terminal when it is determined that the predetermined event has occurred.
  • the control means when it is determined that the predetermined event has occurred, the control means suppresses the risk of information leakage by executing a process of recording the log of the information processing terminal.
  • the information processing apparatus of the present disclosure includes a photographing means for photographing the user, the predetermined event is that the photographed image includes a photographing device image, and the determination means is said.
  • the image corresponding to the operation of the user is not displayed. The risk of information leakage due to the image displayed on the information processing device being captured by the imaging device is suppressed.
  • the determination means determines whether or not the captured device image has a size larger than the size set for each photographing device.
  • the image of the photographing device is determined by determining that the image of the photographing device includes the image of the photographing device. If the size is smaller than the set size, it is difficult to take an image displayed on the information processing apparatus. Therefore, the risk of information leakage is suppressed and the work efficiency of the user is not reduced.
  • the determination means when the captured image includes the captured device image, the determination means has a locus of the captured device image included in the captured image captured a predetermined number of times within a set locus range.
  • the image of the photographing device is obtained by determining that the image of the photographing device includes the image of the photographing device.
  • the control means when it is determined that the predetermined event has occurred, the control means is displayed on the information processing apparatus by changing the first image to the second image and displaying the image. It suppresses the risk of information leakage due to the image being taken by the photographing device.
  • the predetermined event is that the router is connected to an unacceptable router whose use is not permitted
  • the determination means is whether or not the router is an acceptable router whose use is permitted.
  • the control means outputs an image signal to the outside
  • the control means includes a process of limiting the external output of the image signal. , Suppress the risk of information leakage due to the information processing device being connected to an unacceptable router.
  • control means is unacceptable by releasing the restriction on the external output of the image signal when a predetermined condition is satisfied in a state where the external output of the image signal is restricted. Even when connected to a router, for example, when the administrator or the like determines that there is no risk of information leakage, it is possible to remove the restriction on the external output of the image signal.
  • the program of the present disclosure is a program to be executed by an information processing apparatus having a display unit that displays an image according to a user's operation and capable of transmitting and receiving information via a network by connecting to a router.
  • Information processing by functioning as a determination means for determining whether or not a predetermined event has occurred and a control means for executing a predetermined process when it is determined that the predetermined event has occurred. Suppress the risk of information leakage in the device.
  • the control method of the information processing apparatus of the present disclosure includes a display unit that displays an image according to a user's operation, and controls an information processing apparatus capable of transmitting and receiving information via a network by connecting to a router.
  • a determination step for determining whether or not a predetermined event has occurred and a control step for executing a predetermined process when it is determined that the predetermined event has occurred. , Suppress the risk of information leakage in information processing equipment.
  • FIG. 3 is a block diagram showing a hardware configuration applicable to the employee terminal 100, the VDI server 200, and the management server 300 shown in FIG. 1. It is a block diagram which shows the functional structure of the employee terminal 100 and management server 300 shown in FIG. It is a figure which shows the example of the shooting determination. It is a figure which shows the example of the use allowable router determination. It is a flowchart which shows the example of the process in the employee terminal 100, the VDI server 200, and the management server. It is a flowchart which shows the example of the router authentication processing in the employee terminal 100. It is a flowchart which shows the example of the photographing detection processing in the employee terminal 100.
  • the information leakage risk suppression technology of the present disclosure uses a camera equipped or connected to an information processing device such as a personal computer to capture an image of a camera owned by a third party or a photographing device such as a mobile terminal with a camera as a predetermined event. By detecting it, a predetermined process is executed.
  • This predetermined process includes a process of outputting a predetermined image signal or a process of limiting the output of the image signal, a process of notifying the administrator terminal, a process of recording a log of the information processing terminal, and the like. ..
  • the information leakage risk suppression technology of the present disclosure is to execute a predetermined process when the information processing apparatus is connected to a router other than the pre-registered allowable use router as a predetermined event.
  • FIG. 1 is an overall system configuration diagram according to an embodiment of the present disclosure.
  • the overall system 10 according to the embodiment of the present disclosure is composed of a plurality of employee terminals 100, a VDI server 200, a management server 300, and a plurality of wireless routers A401 to EF404, which are information processing devices.
  • One of the employee terminals 100 can be an administrator terminal.
  • Employee 1 terminal 100a, employee 2 terminal 100b, and employee 3 terminal 100c which are employee terminals used by employees working in the company, are connected to the wireless router A401 installed in the company and are connected to the company network (for example, LAN). ) Is connected to the VDI server 200 and the management server 300.
  • the employee 4 terminal 100d which is an employee terminal used by an employee who works outside the company 1 (for example, at home), is connected to the wireless router AB402 installed at home, and is managed by the VDI server 200 via the Internet 500. Connected to the server 300.
  • the employee 5 terminal 100e which is an employee terminal used by an employee who has a meeting in an outside company 2 (for example, a conference room of another company), is connected to a wireless router CD403 installed in the other company and is connected to a VDI via the Internet 500. It is connected to the server 200 and the management server 300.
  • the employee 6 terminal 100f which is an employee terminal used by an employee who works in an external 3 (for example, a shared office), is connected to a wireless router EF404 installed in the shared office and is a VDI server via the Internet 500. It is connected to 200 and the management server 300.
  • the employee terminal 100 operates as a client that communicates with the VDI server 200 and the management server 300, respectively.
  • the employee terminal 100 may be a notebook type personal computer, a desktop type personal computer, or a tablet computer. Further, the employee terminal 100 may be a thin client terminal.
  • the management server 300 has a function of authenticating whether the employee terminal 100 is legitimate and a function of transmitting information such as various data and various programs to the employee terminal 100 as needed. Further, the management server 300 has a function of managing business hours based on the operating time of the employee terminal 100 of each employee, a function of transmitting update information to the employee terminal 100, and a function of generating a one-time password to the employee terminal. It has a function of transmitting to 100. Further, the management server 300 may notify the administrator terminal when the user of the employee terminal 100 is an unspecified user or when the user receives the photographing device specific information taken by the photographing device. good.
  • the VDI server 200 functions as a server configured to provide a virtual desktop environment to the employee terminal 100 using a virtual desktop infrastructure (VDI).
  • VDI virtual desktop infrastructure
  • the VDI server 200 receives various operation information on the employee terminal 100 and displays the image information on the screen of the employee terminal 100 and the image information corresponding to the updated part of the screen. To send. By displaying the screen corresponding to this image information on the employee terminal 100, the virtual desktop environment executed on the VDI server 200 can be used in the same manner as the desktop environment operating on the employee terminal 100. can. The status of work using the virtual desktop environment may be recorded. In particular, after detecting a predetermined event, the log of the employee terminal 100 may be stored.
  • the VDI server 200 is not an essential configuration in the overall system configuration according to the embodiment of the present disclosure.
  • a remote desktop environment is used by remotely connecting to a terminal inside the company (for example, an employee terminal 100 used for work in the company) from an external employee terminal 100. You may do so.
  • FIG. 2 is a block diagram showing a hardware configuration applicable to the employee terminal 100, the VDI server 200, and the management server 300 shown in FIG.
  • the CPU 701 performs integrated control of each device connected to the system bus 720.
  • the ROM 702 and the storage device 704 store a basic input / output system (BIOS) and an operating system (OS), which are control programs of the CPU 701.
  • the ROM 702 and the storage device 704 store various programs and the like necessary for functioning as the employee terminal 100 in the case of the employee terminal 100, and are necessary for functioning as the VDI server 200 in the case of the VDI server 200.
  • Various programs and the like are stored, and in the case of the management server 300, various programs and the like necessary for functioning as the management server 300 are stored.
  • the log of the employee terminal 100 after detecting a predetermined event is stored in the storage device 704.
  • the RAM 703 functions as the main memory, work area, etc. of the CPU 701.
  • the CPU 701 reads a program or the like necessary for executing various processes from the ROM 702 or the storage device 704 into the RAM 703, and executes the read program or the like to realize various operations.
  • the communication I / F (communication interface) 705 communicates with an external device via a network (LAN or Internet), and executes communication control processing (for example, communication using TCP / IP) on the network. ..
  • the camera (shooting means) 706 is provided, for example, above the surface on which the display (display unit) 711 is provided, and shoots an image on the operator side looking at the display 711. Further, the camera 706 is equipped with a wide-angle lens, and can capture images of the operator and the surroundings of the operator.
  • the position where the camera 706 is provided may be any position as long as the operator and the image around the operator can be photographed.
  • the speaker 707 outputs various sounds, and the microphone 708 inputs the operator's voice and surrounding sounds.
  • the input device 709 is a keyboard, a mouse, or the like.
  • the graphic board 710 outputs a video signal, and a display 711 is connected to it. Further, the graphic board 710 has a video output I / F (video output interface) 712 such as an HDMI (registered trademark) terminal and an analog RGB output terminal, and is a video device connected to the video output I / F 712. Output a video signal to (display, projector, etc.).
  • a video output I / F (video output interface) 712 such as an HDMI (registered trademark) terminal and an analog RGB output terminal
  • FIG. 3 is a block diagram showing a functional configuration of the employee terminal 100 and the management server 300 shown in FIG.
  • the image input unit (shooting means) 101 transmits the image data taken by the camera 706 to the user authentication unit 102 and the shooting determination unit 104. Since the image input unit is set to transmit 10 image data per second, for example, the frame rate is 10 fps.
  • the face image data and the face image data are associated with the user ID (user identifier) of each user (employee) who is permitted to use the employee terminal 100.
  • User face image data including feature amount data showing features is stored.
  • the user determination unit (determination means) 102 specifies the face image data included in the image data received from the image input unit 101. Then, the specified face image data is collated with the user face image data stored in the user face image data storage unit 103, and the degree of matching in the user face image data is at least a predetermined level (for example, 80%). It is determined whether or not there is data that is. When it is determined that the user face image data contains data having a degree of matching of a predetermined level or higher, the face image data included in the image data received from the image input unit 101 can be used by the employee terminal 100.
  • a predetermined level for example, 80%
  • the user determination unit 102 transmits the user determination result information to the leakage prevention control unit 109 at any time, that is, since the frame rate of the image input unit 101 is 10 fps, about 10 times per second.
  • the user determination unit 102 transmits the user unspecified information indicating that the face image data cannot be specified to the leakage prevention control unit 109. ..
  • the user determination unit 102 may be an AI model based on AI (artificial intelligence) utilizing machine learning or the like. Then, in this case, for example, the AI model of the user determination unit 102 may be updated by the AI model transmitted from the management server 300 to the employee terminal 100.
  • the image data storage unit 105 for shooting determination contains a plurality of camera image data corresponding to each shape of a plurality of cameras as a shooting device, and a plurality of camera-equipped mobile terminal images corresponding to each shape of a plurality of camera-equipped mobile terminals.
  • a plurality of image data of a plurality of photographing devices including data and the like are stored. Since the image data of the imaging device stored in the image data storage unit 105 for imaging determination gives priority to the detection speed by the imaging determination unit 104, the contour image data indicating the characteristics of the contour of the camera or the portable terminal with a camera is simplified. Image data.
  • the imaging determination unit (determination means) 104 reads the imaging device determination image data stored in the imaging determination image data storage unit 105, and the image data received from the image input unit 101 matches the imaging device determination image data. Determine if there is an image. When it is determined that there is data having a degree of matching with the image data for determining the photographing device at a predetermined level (for example, 60%) or more, the image data received from the image input unit 101 includes the image data of the photographing device. It is determined that it is.
  • the photographing determination unit 104 determines that the image data of the photographing device is included, the image data for the next time or later received from the image input unit 101 also matches the same image data for determining the photographing device as the previous time. Determine if there is an image. By executing such a determination a predetermined number of times (for example, a total of three times), the imaging determination unit 104 determines whether or not the same imaging device image data exists in each image data. Further, when the same image pickup device image data exists in each image data, it is determined whether or not the locus of the image pickup device image data is within the set range.
  • the photographing device it was determined that the same image data of the imaging device exists in each image data, and that the locus of the image data of the imaging device is within the set range (for example, a region 1.2 times the size of the image data of the imaging device). In this case, it is determined that the screen of the employee terminal 100 may be photographed by the photographing device. When it is determined that the screen of the employee terminal 100 may be photographed by the photographing device, the photographing device specific information is transmitted to the leakage prevention control unit 109. If the locus of the image data of the photographing device exceeds the set range, it is determined that the photographing device does not intend to photograph the screen of the employee terminal 100 because the photographing device is moving.
  • the set range for example, a region 1.2 times the size of the image data of the imaging device.
  • the photographing determination unit 104 determines that the image data received from the image input unit 101 after the transmission of the photographing device specific information does not include an image matching the image data for determining the photographing device (the image data of the photographing device does not exist). If so, the image pickup device unspecified information is transmitted to the leakage prevention control unit 109. If the size of the image data of the photographing device included in the image data received from the image input unit 101 is smaller than the size (set number of pixels) set for each photographing device, the photographing determination unit 104 sets the employee terminal 100. Since it is difficult to shoot the screen of the camera, it is not determined that the image data of the shooting device is included.
  • the photographing determination unit 104 may be an AI model based on AI (artificial intelligence) utilizing machine learning or the like. Then, in this case, for example, the AI model of the shooting determination unit 104 may be updated by the AI model transmitted from the management server 300 to the employee terminal 100.
  • AI artificial intelligence
  • the allowable use router data storage unit 107 stores the SSID (service set identifier) of the wireless router (allowable use router) to which the connection of the employee terminal 100 is permitted as the allowable use router data.
  • SSID service set identifier
  • the router determination unit (determination means) 106 determines whether or not the SSID of the wireless router to which the employee terminal 100 is connected corresponds to the SSID of the allowable use router stored in the allowable use router data storage unit 107. When it is determined that the SSID of the wireless router to which the employee terminal 100 is connected corresponds to the SSID of the allowable use router, the permission router connection information including the SSID of the allowable use router and the user ID is transmitted to the leakage prevention control unit 109. ..
  • the leakage prevention of the unauthorized router connection information including the SSID of the unauthorized router and the user ID is prevented. It is transmitted to the control unit 109.
  • the leak prevention control unit (control means) 109 When the leak prevention control unit (control means) 109 receives the user unspecified information from the user determination unit 102 and receives the image pickup device specific information from the image pickup determination unit 104 as a predetermined event, the leak prevention control unit (control means) 109 is predetermined.
  • a predetermined process such as a process of outputting an image signal or a process of limiting the output of an image signal, a process of notifying an administrator terminal, and a process of recording a log of an information processing terminal is executed.
  • the leakage prevention control unit 109 changes the image signal to the display 711 from the current image signal (first image) to a screen saver image signal (second image) and outputs the image signal.
  • the leak prevention control unit 109 may notify the administrator terminal in the background when a predetermined event occurs. At this time, the leakage prevention control unit 109 may notify the administrator terminal without changing the information on the screen. Further, when the photographing device specific information is received, the photographing detection information including the user ID is transmitted to the operating time management unit 301.
  • the leakage prevention control unit 109 receives the usage permission router connection information or the usage permission router connection information from the router determination unit 106, the leakage prevention control unit 109 transmits the operation information to the operation time management unit 301. Then, the SSID included in the licensed router connection information or the licensed router connection information is stored as the connection destination router information. If the newly received SSID of the licensed router connection information or the SSID included in the disallowed router connection information is different from the SSID of the connection destination router information stored, the newly received licensed router connection information or , The SSID included in the unauthorized router connection information is stored as new connection destination router information.
  • the leakage prevention control unit 109 when the leakage prevention control unit 109 receives the unusable router connection information from the router determination unit 106, the leakage prevention control unit 109 invalidates the video output I / F (external output) 712 in the video output unit 108 (stops the output of the video signal). do.
  • the one-time password transmitted from the password input unit 110 after the video output I / F 712 in the video output unit 108 was invalidated matched the one-time password received from the password generation unit 309 described later. In this case, the video output I / F 712 in the video output unit 108 is enabled (the output of the video signal is allowed).
  • the leakage prevention control unit 109 When the leakage prevention control unit 109 receives the unusable router connection information from the router determination unit 106, it outputs another image signal so as to change the image signal to the display 711 from the current image signal to the screen saver image signal. You may do it. A pop-up image may be output. Further, the administrator terminal may be notified via the management server 300. Further, the log of the target employee terminal 100 may be recorded so that the analysis can be performed later.
  • the operating time management unit 301 manages the operating time of the employee terminal 100 based on the operation information, the shooting detection information, the cancellation information, etc. received from the leak prevention control unit 109.
  • the operating time management unit 301 stores the operating time of the employee terminal 100 in the operating time storage unit 302.
  • the user face image data update unit 303 determines whether or not the user face image data registered in the user face image data registration unit 304 has been updated and determines that the user face image data has been updated
  • the user face image data update unit 303 determines whether or not the user face image data has been updated.
  • the updated user face image data (new user face image data) is transmitted to the leakage prevention control unit 109.
  • the leakage prevention control unit 109 receives new user face image data from the user face image data update unit 303, the leak prevention control unit 109 uses the user face image data stored in the user face image data storage unit 103 as the new user face. Update to image data.
  • the shooting determination data update unit 305 determines whether or not the shooting device determination image data registered in the shooting determination image data registration unit 306 has been updated, and determines that the shooting device determination image data has been updated.
  • the updated image data for determining the photographing device (new image data for determining the photographing device) is transmitted to the leakage prevention control unit 109.
  • the leakage prevention control unit 109 receives new image data for image determination for image capture from the image data update unit 305 for image determination, the leak prevention control unit 109 uses the image data for image image determination for image capture stored in the image data storage unit 105 for image determination as a new image device. Update to the image data for judgment.
  • the permissible use router update unit 307 determines whether or not the permissible use router data registered in the permissible use router registration unit 308 has been updated, and if it is determined that the permissible use router data has been updated, the updated permissible use router has been updated.
  • Data new usage allowable router data
  • the leakage prevention control unit 109 receives new use-allowed router data from the use-allowed router update unit 307, the leak-prevention control unit 109 updates the use-allowed router data stored in the use-allowed router data storage unit 107 with new use-allowed router data.
  • the password generation unit 309 When the password generation unit 309 receives a one-time password generation request from an external terminal (for example, an employee terminal 100 used by an administrator (superior) or the like), the password generation unit 309 generates a one-time password and generates the one-time password. Is transmitted to the leakage prevention control unit 109 and the external terminal.
  • the leak prevention control unit 109 matches the one-time password received from the password generation unit 309 with the one-time password received from the password input unit 110 (for example, the one-time password transmitted from the administrator or the like and input by the user). Judge whether or not. When the one-time passwords match, the leakage prevention control unit 109 stores the SSID of the unusable router as the SSID of the router for which temporary use is permitted (temporary use permitted router).
  • FIG. 4 is a diagram showing an example of shooting determination.
  • FIG. 4A shows an example in which it is determined that the screen of the employee terminal 100 may be imaged by the photographing device.
  • the camera-equipped portable terminal image G01 (or camera image G02) is larger than the size set for each photographing device around the user image, and the camera-equipped portable terminal image G01 (or camera) is used.
  • the locus of the image G02 is within the set range
  • it is determined that the screen of the employee terminal 100 may be imaged by the photographing device.
  • the screen saver image is displayed.
  • Another image may be superimposed and displayed on the current image as in the pop-up image.
  • Image (video) output may be blocked.
  • the administrator terminal may be notified or the log of the target employee terminal 100 may be recorded. Further, for example, when a predetermined release process or the like is performed, the normal state is set.
  • FIG. 4B shows an example in which it is determined that there is no possibility that the screen of the employee terminal 100 is imaged by the photographing device.
  • the camera-equipped mobile terminal image G01 or camera image G02
  • the shooting device determines. It is determined that there is no possibility that the screen of the employee terminal 100 will be imaged.
  • FIG. 5 is a diagram showing an example of determination of an allowable router.
  • FIG. 5A shows an example when connecting to a wireless router registered in the allowable use router data.
  • the wireless router to which the employee terminal 100 is connected is the wireless router A401 registered in the allowable use router data
  • the video output to the outside is enabled (ON).
  • FIG. 5B shows an example when connecting to a wireless router that is not registered in the allowable router data.
  • the wireless router to which the employee terminal 100 is connected is the wireless router AB402 which is not registered in the allowable router data
  • the video output to the outside is invalidated (OFF).
  • OFF the video output to the outside
  • a one-time word is input, and when the input one-time password is authenticated, the video output to the outside is enabled.
  • another image may be displayed instead of the current image, or another image may be displayed overlaid on the current image.
  • the administrator terminal may be notified or the log of the target employee terminal 100 may be recorded. In this case as well, the display of another image may be terminated by inputting the one-time password.
  • FIG. 6 is a flowchart showing an example of processing in the employee terminal 100, the VDI server 200, and the management server.
  • the login process is executed on the employee terminal 100 (S101).
  • the user is photographed, and the user's face image authentication is executed by collating the face image data specified from the photographed image data with the user's face image data.
  • the employee terminal 100 is connected to the wireless router in S103 (router connection at login).
  • VDI server 200 when the employee terminal 100 is connected to the VDI server 200, user authentication (user authentication) is executed in the VDI server 200.
  • the VDI server 200 selects the virtual desktop environment of the authenticated user and transmits screen data corresponding to the virtual desktop environment to the employee terminal 100.
  • the input data input by the input device 709 of the employee terminal 100 is transmitted to the VDI server 200, and the VDI server 200 receiving the input data transmits the screen data corresponding to the input data.
  • the screen data transmitted from the VDI server 200 is updated and displayed.
  • the management server 300 starts measuring the operating time of the employee terminal 100.
  • the management server 300 has updated data (updated user face image data, updated photographing device determination image data, updated usable allowable router data)
  • the management server 300 transmits the updated data to the employee terminal 100.
  • the employee terminal 100 receives the update data, the employee terminal 100 executes the update process of the corresponding data.
  • the employee terminal 100 determines whether or not the connected wireless router is a new wireless router. Further, it is determined whether or not the one-time password (OTP) is received from the management server 300 (S105). Here, it is determined whether or not the wireless router is a new one by determining whether or not the SSID is the same as the SSID of the connection destination router information stored in the leakage prevention control unit 109. If the connection destination router information is not stored in the leakage prevention control unit 109, it is determined that the wireless router is a new one. If it is determined that the connected wireless router is a new wireless router or has received the one-time password from the management server 300, the process proceeds to S106. On the other hand, if it is determined that the connected wireless router is not a new wireless router or the one-time password has not been received from the management server 300, the process proceeds to S107.
  • OTP one-time password
  • the router determination process is executed (S106).
  • FIG. 7 is a flowchart showing an example of router authentication processing in the employee terminal 100.
  • the router determination process first, it is determined whether or not the wireless router is permitted to be used (S1061). If it is determined that the wireless router is permitted to be used, the process proceeds to S1062. On the other hand, if it is determined that the wireless router is not permitted to be used, the process proceeds to S1063.
  • connection destination router information is stored (S1062).
  • the video output is invalidated (OFF) (S1063).
  • connection destination router information is stored (S1064).
  • the one-time password is authenticated (S1066).
  • the one-time password transmitted from the management server 300 has been received (see FIG. 6), and the one-time password has been received by the user. Is already entered, the one-time password received from the management server 300 and the one-time password entered by the user are authenticated.
  • the video output is enabled (ON) (S1068), and then the router determination process is terminated.
  • the leakage prevention control unit 109 has described an example in which the output of the image signal is restricted and the restriction is released by the password when the router is not a licensed router. However, when a predetermined event occurs. , A predetermined image signal may be output, and the restriction may be lifted with a password. Further, if the leak prevention control unit 109 is not a licensed router, the administrator terminal may be notified and the log of the target employee terminal 100 may be recorded.
  • FIG. 8 is a flowchart showing an example of shooting detection processing in the employee terminal 100.
  • the shot image data is confirmed (S1071).
  • the process proceeds to S1073. On the other hand, if it is determined that the captured image data does not include the captured image data, the process proceeds to S1081.
  • the captured image data includes the capture device image data
  • whether or not the size (number of pixels) of the image (shooting device image data) is equal to or larger than the size (set size) set for each photographing device. (S1073). If it is determined that the size of the image data of the photographing device is equal to or larger than the size set for each photographing device, the process proceeds to S1074. On the other hand, if it is determined that the size of the image data of the photographing device is not larger than the size set for each photographing device, the process proceeds to S1081.
  • the locus range is set (S1075).
  • a region having a size 1.2 times the size of the image data of the photographing apparatus is set in the locus range.
  • the shooting detection information is transmitted to the management server 300 (S1080).
  • the shooting determination process ends.
  • the management server 300 receives the above-mentioned shooting detection information, the management server 300 suspends the measurement of the operating time. Then, when a predetermined release process or the like is performed, the measurement of the paused operating time is restarted (see FIG. 6).
  • the shooting detection information it is possible to notify the administrator terminal that a predetermined event of leakage has occurred.
  • the log of the target employee terminal 100 may be stored in the storage device 704.
  • the imaging device is determined.
  • the image data exceeds the set locus range, it is determined whether or not the DC value is 1 or more (S1081). If it is determined that the DC value is 1 or more, the process proceeds to S1082. On the other hand, when it is determined that the DC value is not 1 or more (0), the shooting determination process is terminated.
  • the DC value is set to 0 (reset). Further, the setting of the locus range is cleared (S1082). When the DC value is set to 0 and the locus range setting is cleared, the shooting determination process ends.
  • the logout process is executed (S109).
  • the logout information is transmitted from the employee terminal 100 to the VDI server 200.
  • the VDI server 200 deselects the virtual desktop environment of the user of the employee terminal 100.
  • the logout information is also transmitted from the employee terminal 100 to the management server 300.
  • the management server 300 that has received the logout information ends the measurement of the operating time of the employee terminal 100.
  • the information acquisition device is not limited to the above-described embodiments, and various within the scope of the gist of the present disclosure described in the claims. Can be transformed and changed.
  • the leakage prevention control unit 109 when the leakage prevention control unit 109 receives the user unspecified information from the user determination unit 102 and receives the image pickup device specific information from the image pickup determination unit 104, the leak prevention control unit 109 is displayed on the display 711.
  • the image signal was changed from the current image signal to the screen saver image signal and output.
  • an image signal other than the screen saver image signal may be changed and output.
  • another image signal such as a pop-up image may be superimposed and displayed on the display 711. Further, the output of the image signal may be stopped. Further, the video output I / F 712 in the video output unit 108 may be invalidated.
  • the leak prevention control unit 109 notifies the administrator terminal via the server 300 when the user unspecified information is received from the user determination unit 102 and when the photographing device specific information is received from the photographing determination unit 104. You may do so. Further, the log of the target employee terminal 100 may be recorded so that the analysis can be performed later.
  • the leakage prevention control unit 109 invalidates the video output I / F 712 in the video output unit 108 when the unusable router connection information is received from the router determination unit 106.
  • the present invention is not limited to this, and another image signal may be output so as to change the image signal to the display 711 from the current image signal to the screen saver image signal.
  • the leak prevention control unit 109 may notify the administrator terminal via the management server 300. Further, another image signal such as a pop-up image may be superimposed and displayed. Further, the log of the target employee terminal 100 may be recorded so that the analysis can be performed later.
  • the management server 300 is provided with a password generation unit 309, and when a one-time password generation request is received from an external terminal, the one-time password is generated and the generated one-time password is controlled to prevent leakage. It was supposed to be transmitted to the unit 109.
  • the present invention is not limited to this, and the password generation unit 309 may not be provided in the management server 300. In this case, it is conceivable to send the one-time password generated (or created by the administrator) on the external terminal to the employee terminal 100. Alternatively, the administrator terminal may perform a process of releasing the restriction on the external output of the image signal to the administrator server 300.
  • connection form of the employee terminal 100, the VDI server 200, and the management server 300 is a wireless connection or a wired connection, but the connection form may be a wireless connection, and the connection form may be a wireless connection. It may be a wired connection.
  • connection destination is specified from the SSID of the wireless router.
  • the connection destination may be specified by the host name or the device identifier (for example, MAC address, BD address, etc.). Further, it may be determined whether or not to allow the connection destination from the combination of the unique code (for example, a password or the like) and the identifier.
  • the DC value when it is determined that the DC value is 3 or more, it is detected as shooting by a shooting device (see S1078).
  • the present invention is not limited to this, and the DC value may be a value of 3 or more. Further, the DC value may be variable. Further, the frame rate of the image data to be used for the shooting determination may be variable.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Vision & Pattern Recognition (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Telephonic Communication Services (AREA)
  • Studio Devices (AREA)

Abstract

La présente invention concerne une technologie en mesure de supprimer un risque de fuite d'informations. Un terminal d'employé (100) de la présente divulgation exécute des processus prescrits, lorsqu'une unité de détermination d'imagerie (104) détermine que des données d'image de dispositif d'imagerie sont comprises, et une unité de détermination de routeur (106) détermine qu'un SSID d'un routeur sans fil d'une destination de connexion ne correspond pas à un SSID d'un routeur autorisé. Les processus prescrits comprennent : un processus de sortie d'un signal d'image prescrit ; un processus de limitation d'une sortie du signal d'image ; un processus de notification du terminal d'un gestionnaire ; et un processus d'enregistrement d'un journal du terminal de l'employé.
PCT/JP2021/022430 2020-07-08 2021-06-14 Dispositif de traitement d'informations, programme, et procédé de commande de dispositif de traitement d'informations WO2022009611A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
JP2021534123A JP7077504B1 (ja) 2020-07-08 2021-06-14 情報処理装置、プログラム、及び、情報処理装置の制御方法
JP2021171471A JP2022016441A (ja) 2020-07-08 2021-10-20 情報処理装置、プログラム、及び、情報処理装置の制御方法

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2020117610 2020-07-08
JP2020-117610 2020-07-08

Publications (1)

Publication Number Publication Date
WO2022009611A1 true WO2022009611A1 (fr) 2022-01-13

Family

ID=79552526

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2021/022430 WO2022009611A1 (fr) 2020-07-08 2021-06-14 Dispositif de traitement d'informations, programme, et procédé de commande de dispositif de traitement d'informations

Country Status (2)

Country Link
JP (2) JP7077504B1 (fr)
WO (1) WO2022009611A1 (fr)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2008099156A (ja) * 2006-10-16 2008-04-24 Hitachi Ltd 情報漏洩防止システム
JP2012173991A (ja) * 2011-02-22 2012-09-10 Sky Co Ltd 盗難状態判定端末及び盗難状態判定プログラム
JP2012181262A (ja) * 2011-02-28 2012-09-20 Sharp Corp 映像表示スクリーン、映像表示システム、および撮影装置検出方法
JP2012190096A (ja) * 2011-03-09 2012-10-04 Nec Commun Syst Ltd 情報処理装置およびその制御方法
JP2017208645A (ja) * 2016-05-17 2017-11-24 コニカミノルタ株式会社 情報処理装置、プログラムおよび情報処理システム

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2005159611A (ja) * 2003-11-25 2005-06-16 Victor Co Of Japan Ltd 撮像装置

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2008099156A (ja) * 2006-10-16 2008-04-24 Hitachi Ltd 情報漏洩防止システム
JP2012173991A (ja) * 2011-02-22 2012-09-10 Sky Co Ltd 盗難状態判定端末及び盗難状態判定プログラム
JP2012181262A (ja) * 2011-02-28 2012-09-20 Sharp Corp 映像表示スクリーン、映像表示システム、および撮影装置検出方法
JP2012190096A (ja) * 2011-03-09 2012-10-04 Nec Commun Syst Ltd 情報処理装置およびその制御方法
JP2017208645A (ja) * 2016-05-17 2017-11-24 コニカミノルタ株式会社 情報処理装置、プログラムおよび情報処理システム

Also Published As

Publication number Publication date
JPWO2022009611A1 (fr) 2022-01-13
JP2022016441A (ja) 2022-01-21
JP7077504B1 (ja) 2022-05-31

Similar Documents

Publication Publication Date Title
US10055956B2 (en) Monitoring camera apparatus and control method for monitoring camera apparatus
JP7014313B2 (ja) 顔認証システム、顔認証方法、生体認証システム、生体認証方法及び記録媒体
US20140123208A1 (en) Privacy aware camera and device status indicator system
JP6823267B2 (ja) 情報処理装置、情報処理システム、制御方法、及びプログラム
JP5903375B2 (ja) 通信装置、方法、及びプログラム
JP4458729B2 (ja) カメラサーバシステム、プログラム、および媒体
JP2018036812A (ja) It運用作業遠隔支援システム及び方法
JP6335551B2 (ja) 画像形成装置、監視システム、ログ管理方法、及びコンピュータプログラム
JP5500639B2 (ja) 端末装置、認証システム及びプログラム
JP2009211381A (ja) 使用者認証システム、使用者認証方法、および使用者認証プログラム
JP2019138145A (ja) 情報処理装置、情報処理装置の制御方法、及びプログラム
JP2017084025A (ja) 情報処理装置の自動ログインシステム
JP7077504B1 (ja) 情報処理装置、プログラム、及び、情報処理装置の制御方法
JP6428152B2 (ja) 肖像権保護プログラム、情報通信装置及び肖像権保護方法
JP6589736B2 (ja) 監視システム
JP2015153154A (ja) 情報処理装置および方法、情報処理システム、並びにプログラム
JP5891828B2 (ja) 携帯端末、撮影画像公開方法、プログラム
JP2017102758A (ja) 認証装置、認証方法及びプログラム
CN106561043B (zh) 设备信息注册系统以及管理装置的控制方法
KR100907741B1 (ko) 아이피 카메라를 제어하는 방법 및 그 서버
JP2022189048A (ja) 認証システム、認証装置、認証方法、及びプログラム
JP4509619B2 (ja) 映像処理装置の動作プログラム
JP2014044686A (ja) 情報処理装置、情報処理方法
JP2022100385A (ja) 共同玄関子機、共同玄関子機の画像出力方法、及びプログラム
JP2023068624A (ja) オペレータ不正検知システム

Legal Events

Date Code Title Description
ENP Entry into the national phase

Ref document number: 2021534123

Country of ref document: JP

Kind code of ref document: A

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21837905

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 21837905

Country of ref document: EP

Kind code of ref document: A1