WO2022113296A1 - 流通管理装置、流通管理システムおよび流通管理方法 - Google Patents
流通管理装置、流通管理システムおよび流通管理方法 Download PDFInfo
- Publication number
- WO2022113296A1 WO2022113296A1 PCT/JP2020/044326 JP2020044326W WO2022113296A1 WO 2022113296 A1 WO2022113296 A1 WO 2022113296A1 JP 2020044326 W JP2020044326 W JP 2020044326W WO 2022113296 A1 WO2022113296 A1 WO 2022113296A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- information
- distribution
- user
- protected
- distribution management
- Prior art date
Links
- 238000009826 distribution Methods 0.000 title claims abstract description 684
- 238000007726 management method Methods 0.000 title claims description 257
- 230000004913 activation Effects 0.000 claims abstract description 71
- 238000003860 storage Methods 0.000 claims description 58
- 230000005540 biological transmission Effects 0.000 claims description 57
- 238000000034 method Methods 0.000 claims description 32
- 230000004044 response Effects 0.000 claims description 19
- 230000003213 activating effect Effects 0.000 claims description 9
- 238000001994 activation Methods 0.000 description 65
- 238000004891 communication Methods 0.000 description 29
- 238000010586 diagram Methods 0.000 description 21
- 230000000694 effects Effects 0.000 description 17
- 230000006870 function Effects 0.000 description 15
- 238000012545 processing Methods 0.000 description 12
- 238000001514 detection method Methods 0.000 description 9
- 230000008569 process Effects 0.000 description 9
- 206010039203 Road traffic accident Diseases 0.000 description 8
- 238000012986 modification Methods 0.000 description 6
- 230000004048 modification Effects 0.000 description 6
- 230000001133 acceleration Effects 0.000 description 4
- 238000000151 deposition Methods 0.000 description 4
- 230000002093 peripheral effect Effects 0.000 description 4
- 125000002066 L-histidyl group Chemical group [H]N1C([H])=NC(C([H])([H])[C@](C(=O)[*])([H])N([H])[H])=C1[H] 0.000 description 3
- 230000002596 correlated effect Effects 0.000 description 3
- 230000000875 corresponding effect Effects 0.000 description 3
- 230000010365 information processing Effects 0.000 description 3
- 238000012546 transfer Methods 0.000 description 3
- 208000019901 Anxiety disease Diseases 0.000 description 2
- 230000036506 anxiety Effects 0.000 description 2
- QVGXLLKOCUKJST-UHFFFAOYSA-N atomic oxygen Chemical compound [O] QVGXLLKOCUKJST-UHFFFAOYSA-N 0.000 description 2
- 239000008280 blood Substances 0.000 description 2
- 210000004369 blood Anatomy 0.000 description 2
- 230000036772 blood pressure Effects 0.000 description 2
- 230000036760 body temperature Effects 0.000 description 2
- 230000037396 body weight Effects 0.000 description 2
- 230000036541 health Effects 0.000 description 2
- 230000033001 locomotion Effects 0.000 description 2
- 229910052760 oxygen Inorganic materials 0.000 description 2
- 239000001301 oxygen Substances 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 230000003111 delayed effect Effects 0.000 description 1
- 239000000284 extract Substances 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 238000005461 lubrication Methods 0.000 description 1
- 239000000203 mixture Substances 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 239000007787 solid Substances 0.000 description 1
- 238000005728 strengthening Methods 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
Definitions
- the present invention relates to a technique for distributing information to be protected.
- Patent Document 1 describes a technique for distributing information to be protected.
- the personal information distributor device 200 described in Patent Document 1 receives personal information and its provision conditions from the personal information device 100.
- the personal information distributor device 200 extracts personal information that meets the conditions in response to a request from the personal information user device 300, assigns an authentication code to the personal information, and transmits the personal information to the personal information user device 300. do.
- the user transmits the information to be protected, specifically the personal information held in the personal information device 100, from the personal information device 100 to the personal information distributor device 200. There is a need to. That is, in order to distribute the personal information to the personal information user device 300, the user needs to deposit the personal information in the personal information distributor device 200 once.
- One aspect of the present invention has been made in view of the above-mentioned problems, and one example of the purpose is to provide a technique for appropriately distributing information to be protected.
- the distribution management device is an information holding device that holds protection target information regarding a user, and when a predetermined distribution condition is satisfied, the protection target information is transmitted to the protection target information.
- the information when the acquisition means for acquiring the distribution license data indicating that the user has licensed the information to be transmitted to the information utilization device to be used and the distribution conditions indicated by the acquired distribution license data are satisfied. It is provided with a distribution activation means for permitting the possessing device to transmit the protected target information to the information utilization device.
- an information holding device that holds protected information about a user, an information using device that uses the protected information, and the information holding device are distributed in a predetermined manner.
- the above includes a storage device for storing distribution license data indicating that the user has licensed to transmit the protected information to the information utilization device when the conditions are satisfied, and a distribution management device.
- the information holding device transfers the protected information to the information utilization device. It is equipped with a distribution activation means that allows transmission.
- the distribution management device when the distribution management device holds the protected target information about the user and the information holding device holds the predetermined distribution conditions, the protected target information is stored.
- the distribution license data indicating that the user has licensed to transmit the protected information to the information utilization device is acquired, and the distribution conditions indicated by the acquired distribution license data are satisfied. In some cases, it includes permitting the information holding device to transmit the protected information to the information utilization device.
- information to be protected can be properly distributed.
- FIG. 1 is a block diagram showing the configuration of the distribution management device 1.
- the distribution management device 1 is a device that manages the distribution so that the information to be protected is properly distributed.
- the information to be protected is referred to as protected information.
- transmitting the protection target information from one device to the other device is referred to as "distribution".
- the distribution management device 1 includes an acquisition unit 22 and a distribution activation unit 24.
- the acquisition unit 22 is configured to realize the acquisition means in this exemplary embodiment.
- the distribution activation unit 24 is configured to realize the distribution activation means in this exemplary embodiment.
- the acquisition unit 22 acquires distribution license data.
- the distribution license data is the information holding device that holds the protected target information about the user, and when the predetermined distribution conditions are satisfied, the protected target information is transmitted to the information utilization device that uses the protected target information. This is information indicating that the above-mentioned user has given permission to do so.
- the distribution license data is registered in the storage device in advance before the event that satisfies the predetermined distribution condition occurs.
- the storage device for storing the distribution license data may be provided in the distribution management device 1, or may be a device different from the distribution management device 1 accessible to the distribution management device 1 such as a cloud server. It may be the one provided in.
- the distribution activation unit 24 permits the information holding device to transmit the protected information to the information utilization device when the distribution conditions shown in the above-mentioned distribution license data acquired are satisfied. Specifically, the distribution activation unit 24 indicates, according to the acquired distribution license data, the protection target information held by the information holding device with respect to the information holding device indicated by the distribution license data. Allow transmission to the information utilization device.
- FIG. 2 is a flowchart showing a processing flow of the distribution management method executed by the distribution management device 1.
- the distribution management method includes at least step S1 and step S3, and may include step S2 if necessary.
- step S1 the acquisition unit 22 acquires the distribution license data.
- the acquisition unit 22 refers to the storage device and reads out the distribution license data stored in the storage device.
- step S2 it is determined whether or not the distribution conditions shown in the acquired distribution license data are satisfied.
- the determination of success or failure of the distribution condition may be executed by the determination unit 23 of the distribution management device 1 described later.
- the distribution activation unit 24 may receive a notification that the distribution condition has been satisfied from another device or another component in the distribution management device 1.
- the distribution management device 1 proceeds from YES in S2 to S3.
- step S3 the distribution activation unit 24 permits the information holding device to transmit the protected target information to the information utilization device when the distribution conditions indicated by the acquired distribution license data are satisfied.
- FIG. 3 is a block diagram showing the overall configuration of the distribution management system 100 including the distribution management device 1.
- the distribution management system 100 includes an information holding device 2, an information utilization device 3, a storage device 11, and a distribution management device 1.
- the information holding device 2 is a device that holds protection target information 210 regarding a user.
- the information utilization device 3 is a device that uses the protection target information 210, and is a legitimate receiver of the protection target information 210.
- the storage device 11 is a device for storing the distribution license data 110.
- the distribution license data 110 is information indicating that the user has licensed the information holding device 2 to transmit the protected information 210 to the information utilization device 3 when a predetermined distribution condition is satisfied.
- the information holding device 2 uses the protected information 210 as the information utilization device 3. It is provided with a distribution activation unit 24, which allows transmission to the user.
- the distribution management device 1 and the information holding device 2 are connected so as to be communicable via a communication network NW such as the Internet.
- the information holding device 2 and the information utilization device 3 are connected so as to be communicable via the same communication network NW or a different communication network as the above-mentioned communication network.
- the distribution management device 1 and the information utilization device 3 may also be connected via the communication network NW.
- the communication network connecting the distribution management device 1 and the storage device 11 may be a private dedicated line or the same communication network NW as described above.
- a public line network such as the Internet is included between the distribution management device 1 and the storage device 11, in consideration of safety, a VPN (Virtual Private Network) is provided between the distribution management device 1 and the storage device 11. ) May be provided.
- FIG. 4 is a data structure diagram showing an example of the data structure of the distribution license data 110.
- the distribution license data 110 has, for example, a configuration including each item of distribution conditions, protected information, information holding device, and information utilization device.
- the item "distribution condition” defines a condition for permitting the user to provide the protected information 210 to the information utilization device 3.
- the user can specify, for example, one or a plurality of predetermined events as the distribution conditions under which the protected information 210 may be distributed.
- One or more events specified by the user may be defined as distribution conditions. In this case, when an event defined as a distribution condition occurs, the distribution activation unit 24 permits the distribution of the protected information 210.
- the item "protected information” defines the protected information 210 that is the object of distribution and is licensed to be provided to the information utilization device 3.
- the user can specify information that identifies the protection target information 210, such as the type, name, and identification number of the protection target information 210, for example.
- the type of protected information 210 may be defined in the item, such as "address”, "name", and “telephone number”.
- the user's personal information such as "family register copy”, “medical certificate”, “holiday certificate”, "garage certificate”, “medical expense receipt”, “salary statement”, etc.
- the name of the document or the form of the document may be defined.
- the item "information holding device” defines the information holding device 2 that creates or holds the protected target information 210 defined in the item "protected target information”.
- information unique to the information holding device 2 that uniquely identifies the information holding device 2 is defined.
- the information unique to the information holding device 2 is, for example, a device ID, an IP address, a device name, and the like.
- the item "information utilization device” defines the information utilization device 3 licensed by the user as a legitimate recipient of the protection target information 210 defined in the item "protection target information”.
- Information unique to the information utilization device 3 is defined in the item.
- the information unique to the information utilization device 3 is, for example, a device ID, an IP address, a device name, and the like, as in the information holding device 2.
- the acquisition unit 22 of the distribution management device 1 reads, for example, the distribution license data 110 shown in FIG. 4 from the storage device 11.
- the distribution activation unit 24 permits the distribution of the protected target information 210 defined in the distribution license data 110 when the distribution conditions defined in the read distribution license data 110 are satisfied.
- the distribution activation unit 24 sends the above-mentioned protected target information 210 to the information utilization device 3 shown in the distribution license data 110 with respect to the information holding device 2 shown in the distribution license data 110. Allow to send.
- the protected information 210 is safely provided from the information holding device 2 to the information utilization device 3 at the required timing.
- the acquisition unit 22 of the distribution management device 1 is the storage device 11 of the distribution management device 1 in advance.
- the distribution license data 110 registered in the storage device 11 of the external device is acquired.
- the distribution activation unit 24 permits the information holding device 2 to transmit the protection target information 210 to the information utilization device 3. do.
- the information holding device 2 holding the protected target information 210 can transmit the protected target information 210 to the information utilization device 3.
- an information protection technique using an electronic signature, a password, or the like can be adopted for transmitting and receiving the protected information 210.
- the protection target information 210 is safely provided from the information holding device 2 to the information utilization device 3 that requires the protection target information 210 when the distribution conditions are satisfied.
- the distribution management device 1 manages the timing of distributing the protected target information 210, the provider and the provider based on the distribution license data 110, and does not hold the protected target information 210 by itself.
- the protection target information 210 is still held in the information holding device 2 which is the original location. That is, the user does not need to deposit the important protection target information 210 in the distribution management device 1. Therefore, the user does not have to bear the risk that the protected object information 210 is falsified or intercepted at the time of depositing, and the risk that the protected object information 210 aggregated in the depositing device is leaked.
- the distribution management device 1, the distribution management method, and the distribution management system 100 release the user from the above-mentioned risks. Then, the protected target information 210, which has been once licensed for distribution as distribution license data, is safely provided to the required information utilization device 3 at the required timing under the control of the distribution management device 1. That is, the user is freed from the troublesome procedure that the user has to give permission each time the protected information 210 is distributed.
- the user naturally thinks that he / she does not want to deposit important protected information 210 in another device, and that he / she is uneasy to deposit it.
- the psychological burden on users is eliminated. Then, the user can use the highly convenient distribution management system 100 without any troublesome procedures with peace of mind.
- FIG. 5 is a block diagram showing the overall configuration of the distribution management system 100 including the distribution management device 1.
- the distribution management system 100 according to this exemplary embodiment is applied as a system for the user to properly distribute his / her own protected information 210 to related places when the user becomes a victim of a traffic accident.
- the distribution management system 100 includes an information holding device 2, an information utilization device 3, a storage device 11, and a distribution management device 1.
- the storage device 11 is provided in the distribution management device 1.
- the information holding device 2 and the information utilization device 3 for transmitting and receiving the protected information 210 are collectively referred to as a “distribution subject device” as a distribution subject.
- the distribution management system 100 includes a plurality of distribution main devices 230.
- the distribution main device 230 functions as at least one of the information holding device 2 and the information utilization device 3. That is, when the distribution subject device 230 functions as the information holding device 2 when transmitting the protected protection target information 210 to the other distribution subject device 230, and when the protection target information 210 is received from the other distribution subject device 230. Functions as the information utilization device 3.
- each of the distribution management device 1 and the distribution main device 230 can communicate with each other via the communication network NW, and the distribution main devices 230 also communicate with each other via the communication network NW. It shall be possible.
- the distribution main device 230 as an example, a medical institution device 231, an office device 232, a public institution device 233 for managing accidents, an insurance company device 234, and an insurance company device 234, and Law firm equipment 235 is envisioned.
- the public institution device 233 is an information processing device belonging to a public institution that manages traffic, such as a police station and a safe driving center.
- the distribution management system 100 further includes user peripherals owned by the user.
- the user peripheral device includes a user device 4, a wearable terminal 5 as an external device, and another external device 501. These user peripheral devices are communicably connected to the distribution management device 1 via the communication network NW.
- the user peripheral device may be communicably connected to some of the distribution principal devices 230 via the communication network NW or other communication network, if necessary.
- the user device 4 is a device for assisting the user in registering the distribution license data 110 in the storage device 11.
- the user device 4 is, for example, a smartphone.
- the external device is a communication device configured outside the distribution management device 1.
- the external device detects that a predetermined event has occurred and transmits event occurrence information for notifying the occurrence to the distribution management device 1 via a communication network such as a communication network NW.
- the wearable terminal 5 and the external device 501 are examples of the external device.
- the user device 4 may function as an external device for notifying event occurrence information.
- the wearable terminal 5 is a device that can be worn by the user.
- the wearable terminal 5 includes, for example, a sensor for measuring a physical quantity related to the user's body or a physical quantity related to the user's surrounding environment. Further, the wearable terminal 5 may detect the occurrence of a specific event based on a predetermined physical quantity measured by the sensor. Then, the wearable terminal 5 may transmit the event occurrence information including the measured physical quantity to the distribution management device 1.
- the physical quantity measured by the wearable terminal 5 is not limited to this, but is, for example, acceleration. By detecting the acceleration, it is possible to detect the possibility that a motion leading to an accident, such as an impact, a drop, or a sudden movement, has occurred in the user wearing the wearable terminal 5.
- the wearable terminal 5 may measure the amount of activity of the user (number of steps, number of steps, distance traveled, calories burned, etc.) and vital data (heart rate, blood pressure, body temperature, blood oxygen concentration, body weight, etc.). good.
- the external device 501 is an external device different from the wearable terminal 5, and as an example, it is a drive recorder mounted on a car driven by a user.
- the external device 501 uses the impact received by the automobile as a trigger to transmit the video data obtained by taking a picture with the camera to another device.
- the external device 501 transmits the video data to one of the distribution main devices 230, but the external device 501 may transmit the video data to the distribution management device 1 as event generation information. ..
- information processing is generally executed as follows.
- a registration request for distribution license data 110 is transmitted from the user device 4 to the distribution management device 1.
- the distribution management device 1 registers the distribution license data 110 in the storage device 11 according to the request.
- the distribution license data 110 is registered in the storage device 11 before the traffic accident of (2) occurs.
- event occurrence information is transmitted from an external device to the distribution management device 1.
- the wearable terminal 5 transmits event generation information indicating that an impact has been detected to the distribution management device 1 ((3) -1).
- the external device 501 (drive recorder) may transmit the video data recorded before and after the impact to the insurance company device 234 ((3) -2).
- the public institution device 233 transmits the accident certificate to the distribution management device 1 as event occurrence information ((3) -3).
- an accident certificate is sent to the distribution management device 1. It is assumed that a contract has been concluded in advance to supply.
- the public institution device 233 functions as an external device that supplies event occurrence information to the distribution management device 1.
- the distribution management device 1 permits the information holding device 2 to transmit the protection target information 210 according to the distribution license data 110.
- the information holding device 2 permitted to transmit transmits the protected information 210 to the information utilization device 3 recognized as a legitimate receiver. In this way, the protection target information 210 is distributed between the distribution main devices 230 via the communication network NW.
- FIG. 6 is a block diagram showing the configuration of the distribution management device 1.
- the distribution management device 1 includes a control device 10 and a storage device 11. Although not shown, the distribution management device 1 includes a communication device for communicating via the communication network NW of another device.
- the control device 10 is composed of, for example, an arithmetic unit such as a CPU (central processing unit) or a dedicated processor.
- a RAM for example, a program in which the above-mentioned arithmetic unit stores a program stored in a storage device (for example, a storage device 11) realized by a ROM (read only memory) or the like. It can be realized by reading it to random access memory) and executing it.
- the storage device 11 stores various data used in the control device 10.
- the storage device 11 non-volatilely stores the distribution license database 1100 (hereinafter, license DB 1100) for registering a plurality of distribution license data 110.
- the storage device 11 may be configured as an external storage device accessible to the distribution management device 1.
- the control device 10 further includes a registration unit 21, a determination unit 23, a warning unit 25, an information protection unit 26, and a report.
- a part or all of the part 27 may be provided.
- the registration unit 21 is configured to realize the registration means in this exemplary embodiment.
- the determination unit 23 is configured to realize the determination means in this exemplary embodiment.
- the advance notice unit 25 is configured to realize the advance notice means in the present exemplary embodiment.
- the information protection unit 26 is configured to realize the information protection means in this exemplary embodiment.
- the reporting unit 27 is configured to realize the reporting means in this exemplary embodiment.
- the registration unit 21 registers the distribution license data 110 in the storage device 11 in response to the user permitting the distribution of the protected information 210 under predetermined distribution conditions.
- the registration unit 21 transmits the protection target information 210 from the user device 4 operated by the user to the information utilization device 3 when the distribution condition is satisfied. Receive a notice to the effect of permission.
- the registration unit 21 Upon receiving this notification, the registration unit 21 generates the distribution license data 110 and registers it in the storage device 11.
- the registration unit 21 registers the distribution license data 110 in the storage device 11 in advance before the distribution conditions are actually satisfied.
- the determination unit 23 determines whether or not the distribution conditions defined in the distribution license data 110 registered in advance are satisfied. Specifically, the determination unit 23 determines the success or failure of the distribution condition based on one or more event occurrence information for notifying the occurrence of an event transmitted from one or a plurality of external devices.
- a plurality of events are defined as distribution conditions in one distribution license data 110. Then, the determination unit 23 determines that the distribution condition is satisfied when the plurality of event occurrence information received from each of the plurality of external devices correlates with each other.
- Multiple event occurrence information correlates with each other means that the plurality of event occurrence information is generated due to one event that occurred for the same user. For example, it is assumed that the first event and the second event are defined as distribution conditions in one distribution license data 110.
- the determination unit 23 receives the first event occurrence information, and receives the second event occurrence information within a predetermined time after receiving the first event occurrence information.
- the determination unit 23 may determine that the first event occurrence information and the second event occurrence information correlate with each other based on the closeness of the time distance, and may determine that the distribution condition is satisfied. ..
- the event occurrence information may include user information unique to the user for identifying the user who has become a party to the event.
- the determination unit 23 uses the user information included in the first event occurrence information received from a certain external device and the user included in the second event occurrence information received from the same or another external device. See information and. Then, the determination unit 23 determines that the first event occurrence information and the second event occurrence information correlate with each other when these user information indicate the same user, and the distribution condition is satisfied. You may judge.
- the advance notice unit 25 has the protection target information 210 as the information holding device for the information utilization device 3 which is the receiver of the protection target information 210. Notice that it will be sent from 2.
- the information protection unit 26 provides information when the distribution activation unit 24 does not receive the receipt completion notification from the information utilization device 3 within a predetermined time after permitting the information holding device 2 to transmit the protection target information 210.
- the transmission permission issued to the possessing device 2 is invalidated.
- the receipt completion notification is a notification indicating that the information utilization device 3 has successfully received the protection target information 210 from the information holding device 2.
- the reporting unit 27 transmits the protected target information 210 to the user device 4 operated by the user in response to the distribution activation unit 24 permitting the information holding device 2 to transmit the protected target information 210. Report that you have allowed it.
- the user apparatus 4 may include an input support unit 41 and a transmission unit 42.
- the input support unit 41 is configured to realize the input support means in the present exemplary embodiment.
- the transmission unit 42 is configured to realize the registration means included in the user device 4.
- the input support unit 41 supports the input work for the user to register the distribution license data 110 in the storage device 11 in advance. Specifically, the input support unit 41 causes the user to answer whether or not the information holding device 2 permits the information holding device 2 to transmit the protected information 210 to the information using device 3 when the distribution condition is satisfied. Provides an interface (UI) to the user.
- UI interface
- the transmission unit 42 transmits the user's response input via the UI to the distribution management device 1.
- the transmission unit 42 requests the distribution management device 1 to register the distribution permission data 110 by transmitting the reply to the distribution management device 1.
- the transmission unit 42 requests the distribution management device 1 to register the distribution license data 110 in the storage device 11 in advance before the distribution conditions are actually satisfied.
- the transmission unit 42 transmits the user's response to the distribution management device 1, it is desirable to add the user's electronic signature, for example, a hash value.
- the input support unit 41 accesses a website operated by the distribution management device 1 and displays a UI screen on a display unit (not shown) of the user device 4 through a web browser.
- the UI screen may be designed to present a question asking the user for permission and ask the user to answer whether or not to give permission.
- the input support unit 41 may display the UI screen on which the question and the answer are arranged on the display unit of the user device 4.
- the question is arranged on the UI screen as, for example, the text "Do you allow the information holding device 2 to transmit the protected information 210 to the information utilization device 3 when this distribution condition is satisfied?".
- an answer button for selecting "Yes” or “No” for the above-mentioned question may be arranged on the same UI screen.
- the transmission unit 42 transmits the user's answer indicating that the distribution has been permitted to the distribution management device 1.
- the transmission unit 42 sends the "distribution conditions, protected information 210, information holding device 2 and information utilization device 3" presented on the UI screen to the storage device 11 as distribution license data 110. It can be requested to the distribution management device 1 to be registered.
- the UI screen for example, a plurality of options are arranged on the UI screen, and the UI screen includes protection target information 210 for permitting distribution to a user, distribution conditions for permitting distribution, and information. It may be designed to select the possession device 2 and the information utilization device 3.
- the user device 4 may include a registration unit 21 instead of the transmission unit 42 as the registration means.
- the registration unit 21 of the distribution management device 1 may be omitted.
- the input support unit 41 and the registration unit 21 provided in the user device 4 are provided as applications installed on a smartphone.
- the input support unit 41 and the registration unit 21, which are applications for registering the distribution license data 110 in the storage device 11, are mounted on the user device 4.
- the input support unit 41 displays the above-mentioned UI screen on the display unit and accepts an answer as to whether or not the user permits distribution.
- the registration unit 21 may use the distribution permission data including "distribution conditions, protected information 210, information holding device 2 and information utilization device 3" presented on the UI screen.
- 110 is generated and registered in the license DB 1100 of the storage device 11.
- the storage device 11 can be realized, for example, by a cloud server or the like that can be read by the distribution management device 1.
- the registration unit 21 registers the distribution license data 110 in the license DB 1100, it is desirable to add a user's electronic signature, for example, a hash value, to the distribution license data 110.
- FIG. 7 is a data structure diagram showing an example of the data structure of the license DB 1100.
- the license DB 1100 is a database that stores a plurality of distribution license data 110.
- One row (record) in the table shown in FIG. 7 indicates one distribution license data 110.
- the license DB 1100 has a configuration including each item of the distribution condition, the information to be protected, the information holding device, and the information utilization device described in the exemplary embodiment 1.
- the license DB 1100 may further include all or part of the data ID, user information, validity period, user electronic signature and status items in addition to the above items.
- the item "data ID” indicates identification information for uniquely identifying one distribution license data 110.
- the distribution license data 110 is created for each combination of the information holding device 2 and the information utilization device 3, even if the same user has the same protected target information 210. By assigning a data ID to each of the distribution license data 110, it becomes easy to manage the individual distribution license data 110 in the license DB 1100.
- the item "user information” indicates identification information for uniquely identifying the user who is the owner of the protected information 210 to be distributed.
- the user information may be any information unique to the user. For example, a name, a nickname, a user ID, a telephone number, a combination thereof, and the like can be adopted as user information.
- the item "valid period” indicates the period for which distribution is permitted by the user. In other words, it is a period during which the distribution activation unit 24 can permit the transmission of the protection target information 210 based on the registered distribution license data 110.
- This validity period is set by, for example, the registration unit 21.
- the registration unit 21 associates the distribution license data 110 with the validity period and registers the distribution license data 110 in the license DB 1100.
- the registration unit 21 may set the validity period based on a predetermined rule according to the type of the protection target information 210, or may set the predetermined period as the validity period based on the registration date and time. .. Alternatively, the registration unit 21 may set the validity period based on the period specified by the user.
- the item "user electronic signature” indicates the electronic signature of the user given by the user device 4. From the hash value stored in this item, it can be confirmed that "the content of the distribution license data 110 is definitely based on the legitimate license of the user transmitted from the user device 4".
- the item "status" is information indicating the state of the corresponding distribution license data 110, and for example, the status indicates whether the distribution license data 110 is in the active state or the inactive state. , Flags, and other binary formats can be adopted.
- the active state means that the distribution license data 110 is valid. That is, the active state means that the distribution condition of the distribution license data 110 is satisfied, and the protected information 210 should be transmitted from the information holding device 2 to the information utilization device 3.
- the inactive state means that the distribution license data 110 is not valid. That is, the inactive state means that the distribution condition of the distribution license data 110 is not satisfied, and the protected information 210 is not in a situation where the information holding device 2 should be transmitted to the information utilization device 3.
- the distribution activation unit 24 handles the status as follows, for example.
- the distribution activation unit 24 activates the distribution license data 110 from the inactive state to the active state.
- the distribution activation unit 24 sets the value of the status of the distribution license data 110 including the distribution conditions determined to be established to "cannot be distributed” indicating that the transmission of the protected information 210 is prohibited. Update to "Distributable” indicating that transmission is permitted from.
- the distribution activation unit 24 first refers to the status of the requested distribution license data 110, triggered by receiving a request for distribution permission of the protection target information 210 from any of the distribution main devices 230.
- the distribution activation unit 24 permits the information holding device 2 to transmit the protection target information 210 to the information utilization device 3 when the status indicates that the distribution is possible.
- the status item may be omitted in the license DB 1100.
- the distribution activation unit 24 generates a distribution permit for transmission to the information holding device 2 when the determination unit 23 determines that the distribution conditions are satisfied.
- the distribution permit is information for permitting the distribution management device 1 to transmit the protection target information 210 to the information utilization device 3 to the information holding device 2.
- the distribution activation unit 24 stores the generated distribution permit in the storage device 11, and in response to a request from the information holding device 2 or the information utilization device 3, the distribution permission described above is given to the information holding device 2.
- a certificate may be issued.
- the distribution activation unit 24 voluntarily issues a distribution permit to the information holding device 2 at the timing when it is determined that the distribution conditions are satisfied, without waiting for the request from the distribution main device 230. You may.
- the data structure of the distribution permit will be described in detail later with reference to the attached figure.
- FIG. 8 is a sequence diagram showing a processing flow of a distribution management method executed by each device of the distribution management system 100.
- step S101 the transmission unit 42 of the user device 4 transmits the user's response received by the input support unit 41 to the distribution management device 1. Specifically, the transmission unit 42 stores the distribution permission data 110 for the distribution management device 1 by transmitting a reply to the effect that the user has permitted the distribution of the protection target information 210 to the distribution management device 1. Request to register with 11.
- the transmission unit 42 transmits the content of this permission to the distribution management device 1 with the user's electronic signature added.
- step S102 the registration unit 21 of the distribution management device 1 generates distribution license data 110 based on the content of the license received from the user device 4, and registers the distribution license data 110 in the license DB 1100.
- the registration unit 21 defines a plurality of events in order to accurately capture the event that "the user has a traffic accident" on the distribution management system 100.
- the registration unit 21 receives an impact detection notification (first event occurrence information) from the wearable terminal 5 and an accident certificate (second event occurrence information) from the public engine device 233. Two events, that is, are defined as distribution information.
- the registration unit 21 registers the "holiday certificate" in the item of the protection target information, the office device 232 in the item of the information holding device, and the insurance company device 234 in the item of the information utilization device.
- the distribution license data 110 is stored in the storage device 11 in advance before the event that the user encounters a traffic accident actually occurs.
- step S103 the acquisition unit 22 acquires the distribution license data 110 registered from the storage device 11.
- the determination unit 23 starts monitoring whether or not the distribution conditions defined in the acquired distribution license data 110 are satisfied.
- each process of the distribution management system 100 proceeds as follows.
- step S104 the wearable terminal 5 detects an impact and transmits an impact detection notification to the distribution management device 1.
- the wearable terminal 5 is pre-programmed to notify the distribution management device 1 when an impact is detected.
- the external device 501 as a drive recorder may transmit the recorded video data to the insurance company device 234.
- the external device 501 is pre-programmed to transfer the video data recorded before and after the impact detected to the insurance company device 234.
- step S106 the public institution device 233 functioning as an external device transmits the accident certificate to the distribution management device 1.
- the Japan Safe Driving Center that received the user's application created an accident certificate based on the report from the police station that was in charge of on-site verification. You may. Then, the accident certificate created by the public institution device 233 belonging to the Japan Safe Driving Center is transmitted to the distribution management device 1.
- step S107 the determination unit 23 of the distribution management device 1 determines the success or failure of the distribution conditions registered in the license DB 1100 based on the event occurrence information received from each external device.
- the success / failure determination process of the distribution conditions will be described in detail later with reference to the attached figure.
- step S108 is executed.
- the distribution activation unit 24 enables distribution of the protected information 210 according to the distribution license data 110 determined that the distribution conditions are satisfied. Specifically, the distribution activation unit 24 permits the information holding device 2 to transmit the protection target information 210 to the information utilization device 3.
- the distribution activation unit 24 may activate the distribution license data 110. That is, the status of the distribution license data 110 may be updated from "Distributable” to "Distributable”.
- the distribution activation unit 24 may generate a distribution permit to be transmitted to the information holding device 2.
- step S109 the reporting unit 27 receives protection target information for the user device 4 operated by the user in response to the distribution activation unit 24 permitting the information holding device 2 to transmit the protection target information 210. You may report that you have allowed the transmission of 210.
- a request for permitting the distribution of the protection target information 210 is transmitted to the distribution management device 1.
- the insurance company device 234 sends a distribution permission request to the distribution management device 1 to the effect that it wants to use the leave certificate issued by the work device 232 in response to receiving an accident report and an insurance premium application from the user. You may send it.
- the office device 232 which is the information holding device 2, may send a distribution permission request for transmitting the created leave certificate to the insurance company device 234 to the distribution management device 1.
- step S111 the acquisition unit 22 reads the distribution license data 110 specified from the distribution license request from the storage device 11.
- the distribution activation unit 24 sends a leave certificate to the insurance company device 234 to the work device 232 based on the status of the read distribution permission data 110 being "distributable". Permission and instructions.
- the distribution activation unit 24 may send a distribution permit to the work device 232 to permit and instruct to send the leave certificate to the insurance company device 234 in response to the distribution permit request. good.
- step S112 the notice unit 25 receives the leave certificate from the insurance company device 234, which is the recipient of the leave certificate, in response to the distribution activation unit 24 permitting the distribution of the leave certificate. It may be announced that it will be transmitted from the device 232.
- step S113 the information protection unit 26 does not receive the receipt completion notification from the insurance company device 234 within a predetermined time after the distribution activation unit 24 permits the work device 232 to send the leave certificate.
- the transmission permission issued to the work device 232 may be invalidated.
- the receipt completion notification is a notification received from the insurance company device 234 in step S115, and is a notification indicating that the insurance company device 234 has successfully received the leave certificate from the work device 232.
- step S114 the office device 232 sends a leave certificate to the insurance company device 234 based on the permission issued from the distribution management device 1.
- step S115 the insurance company device 234 sends a receipt completion notice to the distribution management device 1 notifying that the leave certificate has been successfully received.
- step S116 the reporting unit 27 of the distribution management device 1 further sends a distribution completion report to the user device 4 of the user, reporting that the leave certificate has been transmitted from the work device 232 to the insurance company device 234. You may send it.
- step S117 onward the same processing as in S109 to S114 is executed with the law firm device 235 as the information utilization device 3 and the insurance company device 234 as the information holding device 2.
- the law firm device 235 transmits a distribution permission request for the necessary protection target information 210 to the distribution management device 1.
- the law firm device 235 may, for example, transmit the above-mentioned distribution permission request to the distribution management device 1 when a request is received from a user.
- the protection target information 210 required by the law firm device 235 is, for example, a leave certificate and insurance enrollment information.
- step S118 the distribution activation unit 24 of the distribution management device 1 confirms that the status of the distribution license data 110 to which the law firm device 235 is the recipient is “Distributable”. Then, the distribution activation unit 24 permits and instructs the office device 232 to send the leave certificate to the law firm device 235.
- step S119 the office device 232 sends a leave certificate to the law firm device 235 in accordance with the above permission and instructions.
- step S120 the distribution activation unit 24 permits the insurance company device 234 to transmit insurance subscription information to the law firm device 235 based on the above-mentioned status of "distributable”. Instruct.
- step S121 the insurance company device 234 transmits insurance enrollment information to the law firm device 235 in accordance with the above permission and instructions.
- step S121 for example, in order to distribute the medical certificate from the medical institution device 231 to the insurance company device 234 and the law firm device 235, the same processing as in S109 to S121 is executed in the distribution management system 100. Further, in order to distribute the accident certificate from the public institution device 233 to the insurance company device 234 and the law firm device 235, the same processing as in S109 to S121 is executed in the distribution management system 100.
- FIG. 9 is a data structure diagram showing an example of the data structure of the distribution permit.
- the distribution permit shown in FIG. 9 is generated, for example, by the distribution activation unit 24 of the distribution management device 1 in S108 based on the distribution license data 110.
- the distribution permit shown in FIG. 9 is transmitted to the information holding device 2 and processed by the information holding device 2.
- the distribution permit includes, for example, user information, protected information, information utilization device, transmission deadline, transmission upper limit deadline, user electronic signature, and distribution management device electronic signature.
- the item "user information” indicates user information that identifies the owner of the protection target information 210 to be distributed, that is, the user who has licensed the protection target information 210 to be distributed. With reference to this item, the information holding device 2 can determine who the protected information 210 is to be distributed.
- the item "Protection target information” indicates the protection target information 210 to be distributed. With reference to this item, the information holding device 2 can determine which protected information 210 is to be distributed.
- the item "information utilization device” indicates the information utilization device 3 which is a legitimate receiver of the protection target information 210 to be distributed. With reference to this item, the information holding device 2 can determine to which information utilization device 3 the protection target information 210 should be transmitted.
- the item "transmission deadline” indicates the deadline for transmitting the protected information 210 to the information utilization device 3.
- the distribution activation unit 24 of the distribution management device 1 sets a transmission deadline in which the information holding device 2 can transmit the protection target information 210 in this item.
- the distribution activation unit 24 may set a transmission deadline so that the protected information 210 is provided to the information utilization device 3 within 3 days after the information holding device 2 receives the distribution permit. good.
- the distribution activation unit 24 may set the transmission deadline based on a predetermined rule according to the type of the protection target information 210, or after a predetermined number of days based on the date and time when the distribution condition is satisfied. It may be set as a transmission deadline.
- the distribution activation unit 24 may set the transmission deadline based on the date specified by the user. Alternatively, the distribution activation unit 24 may set the transmission deadline based on the date desired by the information utilization device 3. With reference to this item, the information holding device 2 can determine by when the protection target information 210 should be transmitted to the information utilization device 3.
- the item "upper limit number of transmissions" indicates the upper limit of the number of times that the information holding device 2 can transmit the protection target information 210 to the information utilization device 3.
- the distribution activation unit 24 sets an upper limit of the number of times that the information holding device 2 can transmit the protection target information 210 to the information utilization device 3 in this item.
- the distribution activation unit 24 may, for example, set the maximum number of transmissions based on a predetermined rule according to the type of the protection target information 210, or set the maximum number of transmissions based on the maximum number of times specified by the user. May be. With reference to this item, the information holding device 2 can determine how many times the protection target information 210 can be transmitted to the information utilization device 3.
- the item "user electronic signature” indicates the electronic signature of the user added to the distribution license data 110 that is the source of the corresponding distribution permit.
- the information holding device 2 can confirm from the hash value stored in this item that "the content of the distribution permit is definitely based on the legitimate permission of the user”.
- the item "Distribution management device electronic signature” indicates the electronic signature of the distribution management device 1 attached to the distribution permit.
- the distribution activation unit 24 generates a distribution permit with an electronic signature of the distribution management device 1 and transmits it to the information holding device 2.
- the information holding device 2 confirms by the hash value stored in this item that "the distribution permit is definitely transmitted from the distribution management device 1 and its contents have not been tampered with”. Can be done.
- the wearable terminal 5 may generate a first event occurrence information notifying that a collision event has occurred and transmit it to the distribution management device 1.
- the first event occurrence information may include the user information of the user who is the wearer of the wearable terminal 5, the collision detection date and time, and the measured acceleration value.
- the determination unit 23 may receive information indicating that the user has had an accident, such as an accident certificate, from the public institution device 233 as the second event occurrence information as the second event occurrence information.
- the distribution condition is based on the fact that the determination unit 23 receives the first event occurrence information indicating the occurrence of the collision from the wearable terminal 5 and the accident certificate from the public institution device 233 as the second event occurrence information. It may be determined that it has been established.
- FIG. 10 is a flowchart showing an example of the flow of the success / failure determination process of the distribution condition executed by the determination unit 23.
- step S21 the determination unit 23 determines whether or not the first event occurrence information, for example, the impact detection notification has been received from the wearable terminal 5.
- the determination unit 23 proceeds from YES in S21 to S22.
- step S22 the determination unit 23 determines whether or not the second event occurrence information, for example, the accident certificate has been received from the public institution device 233. When the accident certificate is received, the determination unit 23 proceeds from YES in S22 to S23.
- the determination unit 23 may determine whether or not there is a correlation between the two event occurrence information based on the time distance. As an example, the determination unit 23 determines whether or not the second event occurrence information has been received within a predetermined time after receiving the first event occurrence information. When the reception dates and times of the two event occurrence information are close to each other, the determination unit 23 determines that the two event occurrence information are correlated, and proceeds from YES in S23 to S24. On the other hand, when the reception dates and times of the two event occurrence information are different, the determination unit 23 determines that there is no correlation between the two event occurrence information, and proceeds from NO in S23 to S26.
- the determination unit 23 may determine whether or not there is a correlation by determining whether or not the two event occurrence information is caused by an event that has occurred in the same user. As an example, the determination unit 23 determines whether or not the user information included in the first event occurrence information and the second event occurrence information belongs to the same user. When the user information of the two event occurrence information points to the same user, the determination unit 23 determines that the two event occurrence information are correlated, and proceeds from YES in S24 to S25. On the other hand, when the user information of the two event occurrence information points to different users, the determination unit 23 determines that there is no correlation between the two event occurrence information, and proceeds from NO in S24 to S26.
- step S25 the determination unit 23 determines that the distribution condition is satisfied based on the reception of two event occurrence information caused by one event that occurred in the same user.
- the determination unit 23 outputs the determination result to the distribution activation unit 24.
- step S26 the determination unit 23 determines that the two received event occurrence information are caused by different events, and determines that the distribution conditions are not satisfied.
- the determination unit 23 outputs the determination result to the distribution activation unit 24.
- the determination unit 23 may compare the reception date and time of the first event occurrence information with the reception date and time of the second event occurrence information in step S23. When the two reception dates and times are close to each other, for example, within 2 to 3 days, the determination unit 23 determines in step S25 that these event occurrence information correlate with each other, and determines that the distribution condition is satisfied. May be good.
- the determination unit 23 determines the collision detection date and time indicated by the impact detection notification, which is the first event occurrence information, and the "occurrence date and time" included in the accident certificate, which is the second event occurrence information. You may compare. When the detection date and time and the "occurrence date and time" are close to each other, for example, when the difference between the date and time is within half a day, the determination unit 23 determines that these event occurrence information correlate with each other, and determines that the distribution condition is satisfied. You may.
- step S24 the determination unit 23 compares the "wearer's name of the wearable terminal 5" included in the impact detection notification with the "name (of the party involved in the accident)" included in the accident certificate. You may. When the above-mentioned "wearing name” and “name” refer to the same user, the determination unit 23 determines in step S25 that these event occurrence information correlate with each other, and determines that the distribution condition is satisfied. You may.
- the determination unit 23 After receiving the first event occurrence information, the determination unit 23 grants the group of distribution license data 110 corresponding to the first event occurrence information while waiting for the subsequent second event occurrence information. It may be extracted in advance from DB1100. As a result, when the second event occurrence information is received, the distribution license data 110 for which the distribution conditions are satisfied can be quickly narrowed down, and the load distribution of information processing or the lubrication of the processing can be realized.
- the notice unit 25 may send a password capable of opening the protected information 210 transmitted from the information holding device 2 to the information utilization device 3 together with the notice. By doing so, even if the protected object information 210 transmitted from the information holding device 2 accidentally arrives at another device, only the information utilization device 3 of the legitimate recipient who owns the password opens the protected object information 210.
- the protection target information 210 can be protected by preventing it from being prevented.
- ⁇ Effect of this exemplary embodiment> When a user suffers a damage such as a traffic accident, the user is considered to perform various procedures related to the accident such as applying for insurance and consulting with a lawyer. At this time, the user is requested by various related parties such as an insurance company and a law firm to submit various protected information about the user. In the past, submitting protected information to relevant places one by one has been a burdensome task for users. Further, if the protected information created by the user is inadequate, there is a problem that accurate information is not transmitted to related parts and various procedures are delayed. If the user's protected information can be directly exchanged between related parties, the error in information transmission may be reduced, but the user's permission is required every time the protected information is exchanged, which is for the user. The complexity of the procedure is still unsolved.
- the distribution management device 1 can recognize that the distribution condition is satisfied based on the fact that the user has suffered an accident. can. Then, when the distribution condition is satisfied, the distribution management device 1 obtains the necessary protection target information 210 from the information holding device 2 according to the distribution license data 110 registered in advance in the storage device 11. It manages the distribution of the protected information 210 so that it is supplied to 3. Specifically, the distribution management device 1 gives permission to the information holding device 2 and gives an instruction to transmit the predetermined protection target information 210 to the information utilization device 3. In this way, the information holding device 2 transmits the protection target information 210 held by itself to the information utilization device 3.
- the user's protection target information 210 required for the procedure is accurately transmitted from the information holding device 2 that originally possesses the protection target information 210 to the information utilization device 3 that is a legitimate receiver at the required timing. To. Therefore, information transmission errors are reduced.
- the user only needs to register once in the storage device 11 a prior permission that "any protected information 210 may be sent to any information utilization device 3 at any time" before an emergency. It's fine. Therefore, the user is freed from the burdensome work of submitting the protected information to the relevant places one by one after an emergency, and is also freed from the trouble of being asked for permission every time the protected information is exchanged. ..
- the distribution management system 100 when the user is damaged by an accident, the user is requested to submit protected information from various places concerned, or is requested to obtain permission one by one. Is gone. Then, according to the distribution management system 100, the protection target information 210 can be smoothly distributed among related places. Therefore, the user can easily proceed with procedures such as insurance application and consultation with a lawyer.
- the information held by the distribution management device 1 that centrally manages the distribution of the protected information 210 is the above-mentioned prior permission. That is, it is not necessary to keep the protection target information 210 itself from the user. Therefore, it is possible to eliminate the psychological burden on the user, such as not wanting to deposit the important protection target information 210 in another device, and having a risk and anxiety about depositing it. This is a very advantageous point for the user from the viewpoint of facilitating the utilization of the distribution management system 100.
- the overall configuration of the distribution management system 100 according to this exemplary embodiment is substantially the same as that of the distribution management system 100 shown in FIG. The configuration different from the distribution management system 100 of the exemplary embodiment 2 will be described in detail later.
- the distribution management system 100 according to this exemplary embodiment is a system for the user to properly distribute his / her own protected information 210 to related places when the user concludes a contract to purchase a car from a car dealer. Applies as.
- the distribution management system 100 includes a distribution main device 230, a storage device 11, and a distribution device that functions as at least one of an information holding device 2 and an information utilization device 3. Includes management device 1.
- the distribution management device 1 may include a storage device 11.
- the wearable terminal 5 may not be included as an external device.
- the external device 501 included in the distribution management system 100 is an in-vehicle communication terminal mounted on a purchased vehicle purchased by a user from a car dealer.
- the in-vehicle communication terminal is a device capable of wirelessly communicating with a user device 4 such as a smartphone via wireless communication means such as Bluetooth (registered trademark).
- the in-vehicle communication terminal may be a car navigation system, a drive recorder, or the like.
- the distribution management system 100 includes an automobile insurance company device as an external device.
- Auto Insurance Company Equipment belongs to an automobile insurance company that provides services related to automobile insurance to users.
- the automobile insurance company device transmits a contract conclusion notification to the distribution management device 1 to notify that the automobile insurance contract has been concluded with the user as event occurrence information.
- the distribution management system 100 includes, for example, a car dealer's device, a police station device, and a transportation station device as the distribution main device 230.
- the car dealer device creates and holds the purchased vehicle information, which is information about the purchased vehicle, as the protection target information 210 belonging to the car dealer who sells the car to the user.
- the car dealer's device also functions as an external device.
- the car dealer device transmits a contract conclusion notice to the distribution management device 1 to notify that the contract regarding the sale and purchase of the car has been concluded with the user as the event occurrence information.
- the police station equipment belongs to the police station and creates a garage certificate based on the purchased vehicle information created by the car dealer equipment.
- the Transport Bureau equipment belongs to the Transport Bureau and performs various procedures such as registration procedures for the vehicle purchased by the user based on the garage certificate created by the police station equipment.
- FIG. 11 is a data structure diagram showing an example of the data structure of the license DB 1100.
- the license DB 1100 includes data ID, user information, distribution conditions, protected information, information holding device, information utilization device, validity period, user electronic signature, and status items described in each of the above-described exemplary embodiments. It is a configuration including.
- the determination unit 23 of the distribution management device 1 operates as follows. Specifically, the determination unit 23 determines that the distribution conditions have been satisfied when the determination unit 23 receives the contract conclusion notification regarding automobile sales from the vehicle dealer equipment and the contract conclusion notification regarding automobile insurance from the automobile insurance company equipment. .. When the contractor's name included in the two contract conclusion notices points to the same user "userC", the determination unit 23 determines that the two contract conclusion notices correlate with each other, and the distribution condition is satisfied. May be determined.
- the distribution activation unit 24 activates the distribution so that the purchased vehicle information is transmitted from the car dealer's device to the police station device according to the distribution license data 110 of the data ID "011".
- the distribution activation unit 24 may activate the status of the distribution license data 110 from non-distributable to distributable, or permit the car dealer device to send the purchased vehicle information to the police station device. You may generate a testimony.
- the car dealer device With the distribution activation unit 24 activating the distribution based on the distribution license data 110 of the data ID "011", the car dealer device transmits the purchased vehicle information to the police station device.
- the garage certificate is transmitted from the police station device to the transport station device in the same flow.
- ⁇ Effect of this exemplary embodiment> when the user purchases a car, the user is not required to submit the protection target information or the permission is requested one by one from the related places, and the protection target is not required. Information 210 can be smoothly distributed among related places. Therefore, the user can easily proceed with procedures such as acquisition of a garage certificate and registration of a vehicle.
- the overall configuration of the distribution management system 100 according to this exemplary embodiment is substantially the same as that of the distribution management system 100 shown in FIG. The configuration different from the distribution management system 100 of the exemplary embodiment 2 will be described in detail later.
- the distribution management system 100 according to this exemplary embodiment is applied as a system for the user to properly distribute his / her own protection target information 210 to related places when the user makes a final tax return.
- the distribution management system 100 includes a distribution main device 230, a storage device 11, and a distribution device that functions as at least one of an information holding device 2 and an information utilization device 3. Includes management device 1.
- the distribution management device 1 may include a storage device 11.
- the external device for supplying event occurrence information to the distribution management device 1 is, for example, a user device 4, a medical institution device 231 of a medical institution visited by the user, and a user. It is a banking device of a bank that manages the accounts opened by.
- the medical institution device 231 When the medical institution device 231 issues a medical expense receipt to the user who has performed the medical examination, the medical institution device 231 transmits a medical examination notification notifying that the user has received the medical examination to the distribution management device 1 as event occurrence information.
- the user device 4 When the user visits a medical institution and receives a medical expense receipt, the user device 4 follows the user's operation to approve the user's electronic signature to prove the validity of the medical expense receipt. It is transmitted to the distribution management device 1 as event occurrence information.
- the bank device When the bank device confirms the payment to the user's predetermined account, the bank device sends a payment confirmation notification notifying that the payment has been confirmed to the distribution management device 1 as event occurrence information.
- the user device 4 transmits the user's electronically signed approval for approving the fact of the payment to the distribution management device 1 as event occurrence information according to the user's operation.
- the distribution management system 100 includes, for example, a medical institution device 231, a bank device, and a tax office device as the distribution main device 230.
- the medical institution device 231 belongs to the medical institution where the user has consulted, and creates and holds a medical expense receipt as the protection target information 210.
- the bank device belongs to the bank that manages the account opened by the user, and holds the deposit amount to the account as the protection target information 210.
- the tax office equipment belongs to the tax office and performs procedures related to final tax returns based on the user's income calculated from the medical expense receipt and the deposit amount.
- FIG. 12 is a data structure diagram showing an example of the data structure of the license DB 1100.
- the license DB 1100 includes data ID, user information, distribution conditions, protected information, information holding device, information utilization device, validity period, user electronic signature, and status items described in each of the above-described exemplary embodiments. It is a configuration including. Since the medical expense receipt is issued for each medical institution, in this exemplary embodiment, the distribution license data 110 for permitting the distribution of the medical expense receipt is registered for each issuing medical institution. In this exemplary embodiment, the validity period of the distribution license data 110 may be set to the period subject to the final tax return.
- the determination unit 23 of the distribution management device 1 operates as follows. Specifically, the determination unit 23 receives a medical examination notification from the medical institution device A to notify that the user has received a medical examination, and approves with a user electronic signature indicating that there is no mistake that the user has received a medical examination (hereinafter referred to as “approval”). When the user approval) is received from the user device 4, it is determined that the distribution conditions are satisfied. The determination unit 23 compares the patient name included in the consultation notification with the user information associated with the user device 4 that has sent the user approval. Then, when the patient name and the user information point to the same user "userD", the determination unit 23 may determine that the two event occurrence information correlate with each other and determine that the distribution condition is satisfied.
- the distribution activation unit 24 activates the distribution so that the medical expense receipt is transmitted from the medical institution device A to the tax office device according to the distribution license data 110 of the data ID "013".
- the distribution activation unit 24 may activate the status of the distribution license data 110 from non-distributable to distributable, or permit the medical institution device A to send a medical expense receipt to the tax office device. You may generate a testimony.
- the medical institution device A With the distribution activation unit 24 activating the distribution based on the distribution license data 110 of the data ID "013", the medical institution device A sends a medical expense receipt to the tax office device.
- the deposit amount that is, the user's income amount is transmitted from the bank device to the tax office device in the same flow.
- the user does not have to collect and keep a record of paying medical expenses or earning income for final tax return.
- the record can be smoothly distributed among related places as the protection target information 210. Therefore, the user can easily proceed with the final tax return procedure.
- the distribution management system 100 of the present disclosure is not limited to each of the above-described exemplary embodiments, and can be applied to various use scenes in which the user wants to distribute the protected information 210 safely and smoothly.
- the distribution management system 100 can be applied to a health management system and can be useful for strengthening cooperation between users and medical institutions.
- the wearable terminal 5 as the information holding device 2 can be used for user activity (steps, steps, distance traveled, calories burned, etc.) and vital data (heart rate, blood pressure, body temperature, blood oxygen concentration, body weight, etc.). ) Is held as protection target information 210.
- the medical institution device 231 transmits a reservation completion notification notifying that the medical examination reservation has been accepted to the distribution management device 1 as event occurrence information.
- the distribution management device 1 issues permission and instructions to the wearable terminal 5 according to the distribution permission data 110 registered in advance. Specifically, the distribution management device 1 transmits the user's activity amount and vital data measured in a predetermined period immediately before the appointment date of the medical examination from the wearable terminal 5 to the medical institution device 231. To instruct.
- the medical staff can grasp the health management information of the user who is the patient by the day of the examination.
- a part or all of the functions of the distribution management device 1 may be realized by hardware such as an integrated circuit (IC chip) or by software.
- the distribution management device 1 is realized by, for example, a computer that executes an instruction of a program that is software that realizes each function.
- a computer that executes an instruction of a program that is software that realizes each function.
- An example of such a computer (hereinafter referred to as computer C) is shown in FIG.
- the computer C includes at least one processor C1 and at least one memory C2.
- a program P for operating the computer C as the distribution management device 1 is recorded in the memory C2.
- the processor C1 reads the program P from the memory C2 and executes it, so that each function of the distribution management device 1 is realized.
- Examples of the processor C1 include CPU (Central Processing Unit), GPU (Graphic Processing Unit), DSP (Digital Signal Processor), MPU (Micro Processing Unit), FPU (Floating point number Processing Unit), and PPU (Physics Processing Unit). , Microcontrollers, or combinations thereof.
- the memory C2 for example, a flash memory, an HDD (Hard Disk Drive), an SSD (Solid State Drive), or a combination thereof can be used.
- the computer C may further include a RAM (RandomAccessMemory) for expanding the program P at the time of execution and temporarily storing various data. Further, the computer C may further include a communication interface for transmitting / receiving data to / from another device. Further, the computer C may further include an input / output interface for connecting an input / output device such as a keyboard, a mouse, a display, and a printer.
- RAM RandomAccessMemory
- the computer C may further include a communication interface for transmitting / receiving data to / from another device. Further, the computer C may further include an input / output interface for connecting an input / output device such as a keyboard, a mouse, a display, and a printer.
- the program P can be recorded on a non-temporary tangible recording medium M that can be read by the computer C.
- a recording medium M for example, a tape, a disk, a card, a semiconductor memory, a programmable logic circuit, or the like can be used.
- the computer C can acquire the program P via such a recording medium M.
- the program P can be transmitted via a transmission medium.
- a transmission medium for example, a communication network, a broadcast wave, or the like can be used.
- the computer C can also acquire the program P via such a transmission medium.
- the distribution management device permits the necessary protection target information to be transmitted from the information holding device to the information utilization device in accordance with the distribution license data when the distribution conditions are satisfied. .. Based on this permission, the protected information will be transmitted from the information holding device to the information utilization device.
- the information to be protected is not held in the distribution management device, but is held in the information holding device that is the original location. That is, the user does not need to deposit important protected information in the distribution management device. Therefore, the user does not have to take the risk of leaking the protected information. As a result, the psychological burden on the user who is anxious about the risk can be eliminated, and the information to be protected can be properly distributed.
- the events that occur to the user can be accurately grasped as a system, and the protected information can be appropriately distributed at the required timing.
- Appendix 3 The distribution management device according to Appendix 2, wherein the determination means determines that the distribution conditions are satisfied when a plurality of event occurrence information received from each of the plurality of external devices correlates with each other.
- the distribution condition is satisfied when the user information unique to the user, which is included in each of the first event occurrence information and the second event occurrence information, indicates the same user.
- the distribution management device according to Appendix 3 or 4, wherein it is determined that the event has been performed.
- the appendix is characterized in that at least one of the external devices is a wearable terminal worn by the user, and the event occurrence information transmitted from the wearable terminal includes a physical quantity measured by the wearable terminal.
- the distribution management device according to any one of 2 to 5.
- the distribution activation means is When the distribution condition is satisfied, the status of the distribution license data is updated from "distributable” indicating that the transmission of the protected information is prohibited to “distributable” indicating that the transmission is permitted.
- the information holding device is contacted.
- the distribution management device according to any one of Supplementary note 1 to 6, which allows the information to be protected to be transmitted to the information utilization device.
- the protected target information can be distributed to the information utilization device that requires the protected target information at an appropriate timing in response to a request from the distribution subject device that exchanges the protected target information.
- the distribution activating means transmits a distribution permit permitting the information holding device to transmit the protected information to the information utilization device when the distribution conditions are satisfied.
- the distribution management device according to any one of 6.
- the protected information when it is detected that a predetermined event has occurred and the distribution conditions are satisfied, the protected information can be distributed to the information utilization device to be received at an appropriate timing. ..
- the protected target information is supplied from the information holding device to the information utilization device without delay at the timing when the transfer of the protected target information makes sense. Distribution is controlled. In addition, it is possible to avoid a state in which transmission of the protected target information is unnecessarily permitted even after the protected target information is no longer needed, and the protected target information can be safely protected.
- the user can register the distribution license data in advance by a simple operation before the event that actually requires the distribution of the protected information occurs.
- Appendix 12 The distribution management device according to Appendix 11, wherein the registration means registers a valid period during which the distribution activation means can permit transmission of the protection target information in association with the distribution license data. ..
- the information holding device is permitted to transmit only during the valid period when it is appropriate for the protected information to be distributed. Therefore, it is possible to prevent the protection target information from being distributed at an inappropriate timing and to safely protect the protection target information.
- the information utilization device In response to the distribution activation means permitting the transmission of the protection target information, the information utilization device is further provided with a warning means for notifying the protection target information to be transmitted from the information holding device.
- the distribution management device according to any one of Supplementary note 1 to 12, wherein the distribution control device is characterized by the above.
- the information utilization device can know in advance that the protection target information required in case of an emergency is transmitted from the information holding device, can safely receive the protection target information, and proceed smoothly with the procedure. be able to.
- the information utilization device does not receive a receipt completion notification indicating that the protected target information has been received.
- the distribution management device according to any one of Supplementary note 1 to 13, further comprising an information protection means for invalidating the transmission permission in the case of the case.
- the distribution management device inactivates the distribution of the protected information, and the information holding device is used. Prevents transmission of protected information. In this way, the security of the distribution of the protected information can be enhanced.
- the user can know that distribution has been permitted. Upon receiving the report, the user can take some action if the distribution permit is not appropriate. Therefore, it is possible to dispel the anxiety that the protected information is distributed without the user's knowledge, and it is possible to give the user a sense of security that the protected information is properly distributed.
- (Appendix 16) An information holding device that holds protected information about the user to be protected, and An information utilization device that uses the protected information and A storage device that stores distribution license data indicating that the user has licensed the information holding device to transmit the protected information to the information utilization device when a predetermined distribution condition is satisfied.
- the distribution management device is An acquisition means for acquiring the distribution license data from the storage device, and The feature is that the information holding device is provided with a distribution activating means for permitting the information to be protected to be transmitted to the information utilization device when the distribution condition indicated by the distribution license data is satisfied. Distribution management system.
- the distribution management system further includes a wearable terminal worn by the user.
- the wearable terminal is Event occurrence information notifying the occurrence of the detected event based on the measured physical quantity is transmitted to the distribution management device, and the event occurrence information is transmitted to the distribution management device.
- the distribution management device is The distribution management system according to Appendix 16, further comprising a determination means for determining the success or failure of the distribution condition based on the event occurrence information transmitted from the wearable terminal.
- the distribution management system further includes a user device operated by the user.
- the user device is An input support means for asking the user to answer whether or not the information holding device is permitted to transmit the protected information to the information utilization device when the distribution condition is satisfied.
- the appendix 16 or the appendix 16 is characterized by comprising a registration means for registering the distribution license data in the storage device before the distribution condition is satisfied when the reply to the effect of permission is received from the user.
- the distribution management system according to 17.
- the distribution management device When the information holding device that holds the protected target information about the user satisfies the predetermined distribution conditions, the user sends the protected target information to the information utilization device that uses the protected target information. Obtaining distribution license data indicating that the license is licensed, and When the distribution conditions indicated by the acquired distribution license data are satisfied, the information holding device is permitted to transmit the protected information to the information utilization device.
- a distribution management method characterized by including.
- Appendix 21 A computer-readable, non-temporary, tangible recording medium on which the control program according to Appendix 20 is recorded.
- It comprises at least one processor, said processor.
- the user sends the protected target information to the information utilization device that uses the protected target information.
- the acquisition process to acquire the distribution license data indicating that the license is granted.
- Distribution management that executes a distribution activation process that permits the information holding device to transmit the protected information to the information utilization device when the distribution conditions indicated by the acquired distribution license data are satisfied.
- the distribution management device may further include a memory, and the memory may store a program for causing the processor to execute the acquisition process and the distribution activation process.
- the program may also be recorded on a computer-readable, non-temporary, tangible recording medium.
- Distribution management device 1 Distribution management device 2 Information holding device 3 Information utilization device 4 User device 5 Wearable terminal 10 Control device 11 Storage device 21 Registration unit 22 Acquisition unit 23 Judgment unit 24 Distribution activation unit 25 Notice unit 26 Information protection unit 27 Reporting unit 41 Input Support unit 42 Transmission unit 100 Distribution management system 110 Distribution license data 210 Protected information 230 Distribution main device 501 External device 1100 Distribution license database
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Health & Medical Sciences (AREA)
- Theoretical Computer Science (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Bioethics (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Business, Economics & Management (AREA)
- Software Systems (AREA)
- Medical Informatics (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Databases & Information Systems (AREA)
- Tourism & Hospitality (AREA)
- Economics (AREA)
- Human Resources & Organizations (AREA)
- Marketing (AREA)
- Primary Health Care (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Information Transfer Between Computers (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
Description
本発明の第1の例示的実施形態について、図面を参照して詳細に説明する。本例示的実施形態は、後述する例示的実施形態の基本となる形態である。
本例示的実施形態に係る流通管理装置1の構成について、図1を参照して説明する。図1は、流通管理装置1の構成を示すブロック図である。流通管理装置1は、保護されるべき情報が適正に流通するように、その流通を管理する装置である。以下では、保護されるべき情報を保護対象情報と称する。そして、保護対象情報を一方の装置から他方の装置に送信することを「流通」と称する。
本例示的実施形態に係る流通管理方法の流れについて、図2を参照して説明する。図2は、流通管理装置1が実行する流通管理方法の処理の流れを示すフローチャートである。図2に示すとおり、流通管理方法は、少なくともステップS1とステップS3とを含み、必要に応じて、ステップS2を含んでいてもよい。
本例示的実施形態に係る流通管理システムの全体構成について、図3を参照して説明する。図3は、流通管理装置1を含む流通管理システム100の全体構成を示すブロック図である。
本例示的実施形態に係る流通管理システム100において、記憶装置11に記憶される流通許諾データ110のデータ構造について、図4を参照して説明する。図4は、流通許諾データ110のデータ構造の一例を示すデータ構造図である。
以上のように、本例示的実施形態に係る流通管理装置1、流通管理方法、および、流通管理システム100によれば、流通管理装置1の取得部22は、予め流通管理装置1の記憶装置11または外部装置の記憶装置11に登録されている流通許諾データ110を取得する。そして、取得された流通許諾データ110において示されている流通条件が成立した場合には、流通活性化部24は、情報保有装置2が保護対象情報210を情報利用装置3に送信することを許可する。
本発明の第2の例示的実施形態について、図面を参照して詳細に説明する。なお、例示的実施形態1にて説明した構成要素と同じ機能を有する構成要素については、同じ符号を付し、その説明を適宜省略する。
本例示的実施形態に係る流通管理システム100の全体構成について、図5を参照して説明する。図5は、流通管理装置1を含む流通管理システム100の全体構成を示すブロック図である。本例示的実施形態に係る流通管理システム100は、ユーザが交通事故の被害者となった場合に、ユーザが関係各所に自身の保護対象情報210を適正に流通させるためのシステムとして適用される。
本例示的実施形態に係る流通管理装置1の構成について、図6を参照して説明する。図6は、流通管理装置1の構成を示すブロック図である。
本例示的実施形態では、図6に示すとおり、ユーザ装置4は、入力支援部41および送信部42を備えていてもよい。入力支援部41は、本例示的実施形態において入力支援手段を実現する構成である。送信部42は、本例示的実施形態において、ユーザ装置4が備える登録手段を実現する構成である。
ユーザ装置4は、登録手段として、送信部42に代えて登録部21を備えていてもよい。ユーザ装置4が登録部21を備えている場合、流通管理装置1の登録部21は省略されてもよい。
本例示的実施形態に係る流通管理システム100において、記憶装置11に記憶される許諾DB1100のデータ構造について、図7を参照して説明する。図7は、許諾DB1100のデータ構造の一例を示すデータ構造図である。
本例示的実施形態に係る流通管理方法の流れについて、図8を参照して説明する。図8は、流通管理システム100の各装置が実行する流通管理方法の処理の流れを示すシーケンス図である。
ステップS101では、ユーザ装置4の送信部42は、入力支援部41が受け付けたユーザの回答を流通管理装置1に送信する。具体的には、送信部42は、ユーザが保護対象情報210の流通を許諾した旨の回答を流通管理装置1に送信することにより、流通管理装置1に対して、流通許諾データ110を記憶装置11に登録するように要求する。
ここで、実際に交通事故が発生してしまった後は、以下のようにして、流通管理システム100の各処理が進行する。
本例示的実施形態に係る流通管理装置1が生成する流通許可証のデータ構造について、図9を参照して説明する。図9は、流通許可証のデータ構造の一例を示すデータ構造図である。図9に示す流通許可証は、例えば、流通管理装置1の流通活性化部24が、S108において、流通許諾データ110に基づいて生成するものである。図9に示す流通許可証は、情報保有装置2に送信されて、情報保有装置2によって処理される。
(判定部23の具体例および変形例)
以下では、判定部23が、図8に示すステップS107で実行する、流通条件の成否判定処理の具体例について、図10を参照して説明する。
判定部23は、第1のイベント発生情報を受信した後、後続する第2のイベント発生情報を待機する間に、当該第1のイベント発生情報に対応する、流通許諾データ110の群を、許諾DB1100から予め抽出しておいてもよい。これにより、第2のイベント発生情報を受信した時には、流通条件が成立している流通許諾データ110を早く絞り込むことが可能となり、情報処理の負荷分散または処理の潤滑化を実現することができる。
安全性を一層高めるために、予告部25は、情報保有装置2から送信される保護対象情報210を開封することができるパスワードを、予告とともに情報利用装置3に送信してもよい。このようにすれば、情報保有装置2から送信された保護対象情報210が誤って別の装置に届いたとしても、パスワードを所有する正当な受け取り手の情報利用装置3しか保護対象情報210を開封できないようにして保護対象情報210を守ることができる。
ユーザが交通事故などの被害に遭ったとき、ユーザは、保険の申請、弁護士への相談など事故に関する様々な手続きを行うと考えられる。このとき、ユーザは、保険会社および法律事務所などの関係各所から、ユーザについての様々な保護対象情報の提出を求められる。従来、保護対象情報を関係各所に逐一提出することは、ユーザにとって負担の大きい作業であった。また、ユーザが作成する保護対象情報に不備があると、関係各所へ正確な情報が伝達されずに、様々な手続きが滞るという問題があった。関係各所の間で直接ユーザの保護対象情報を授受することができれば、情報の伝達誤りは低減される可能性があるが、保護対象情報の授受の度にユーザの許諾が必要となり、ユーザにとっての手続きの煩雑は依然解消されない。
本発明の第3の例示的実施形態について、図面を参照して詳細に説明する。なお、例示的実施形態1および例示的実施形態2にて説明した構成要素と同じ機能を有する構成要素については、同じ符号を付記し、その説明を繰り返さない。
本例示的実施形態に係る流通管理システム100の全体構成は、図5に示す流通管理システム100とほぼ同様である。例示的実施形態2の流通管理システム100と異なる構成については後に詳述する。本例示的実施形態に係る流通管理システム100は、ユーザが、車販売業者から自動車を購入する契約を締結した場合に、ユーザが関係各所に自身の保護対象情報210を適正に流通させるためのシステムとして適用される。
本例示的実施形態に係る流通管理システム100において、記憶装置11に記憶される許諾DB1100のデータ構造について、図11を参照して説明する。図11は、許諾DB1100のデータ構造の一例を示すデータ構造図である。
本例示的実施形態に係る流通管理システム100によれば、ユーザが自動車を購入したとき、ユーザが関係各所から保護対象情報の提出を求められたり、逐一許諾を求められたりすることなく、保護対象情報210を、関係各所間で、円滑に流通させることができる。したがって、ユーザは、車庫証明書の取得および自動車の登録などの手続きを容易に進めることが可能となる。
本発明の第4の例示的実施形態について、図面を参照して詳細に説明する。なお、例示的実施形態1~3にて説明した構成要素と同じ機能を有する構成要素については、同じ符号を付記し、その説明を繰り返さない。
本例示的実施形態に係る流通管理システム100の全体構成は、図5に示す流通管理システム100とほぼ同様である。例示的実施形態2の流通管理システム100と異なる構成については後に詳述する。本例示的実施形態に係る流通管理システム100は、ユーザが確定申告を行う場合に、ユーザが関係各所に自身の保護対象情報210を適正に流通させるためのシステムとして適用される。
本例示的実施形態に係る流通管理システム100において、記憶装置11に記憶される許諾DB1100のデータ構造について、図12を参照して説明する。図12は、許諾DB1100のデータ構造の一例を示すデータ構造図である。
本例示的実施形態に係る流通管理システム100によれば、ユーザは、確定申告のために医療費を支払ったり、収入を得たりしたことの記録を収集し保管しておかなくても、これらの記録を保護対象情報210として、関係各所間で、円滑に流通させることができる。したがって、ユーザは、確定申告の手続きを容易に進めることが可能となる。
本開示の流通管理システム100は、上述した各例示的実施形態に限らず、ユーザが安全かつ円滑に保護対象情報210を流通させたいと望む様々なユースシーンに適用することができる。例えば、流通管理システム100は、健康管理システムに適用することができ、ユーザと医療機関との連携を強化することに役立てることができる。
流通管理装置1の一部又は全部の機能は、集積回路(ICチップ)等のハードウェアによって実現してもよいし、ソフトウェアによって実現してもよい。
本発明は、上述した実施形態に限定されるものでなく、請求項に示した範囲で種々の変更が可能である。例えば、上述した実施形態に開示された技術的手段を適宜組み合わせて得られる実施形態についても、本発明の技術的範囲に含まれる。
上述した実施形態の一部又は全部は、以下のようにも記載され得る。ただし、本発明は、以下の記載する態様に限定されるものではない。
ユーザに関する保護されるべき保護対象情報を保有する情報保有装置が、所定の流通条件が成立した場合に、前記保護対象情報を、該保護対象情報を利用する情報利用装置に送信することを前記ユーザが許諾していることを示す流通許諾データを取得する取得手段と、
取得された前記流通許諾データが示す前記流通条件が成立した場合に、前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許可する流通活性化手段と、を備えていることを特徴とする流通管理装置。
1または複数の外部装置から送信された、イベントの発生を通知する1つ以上のイベント発生情報に基づいて、前記流通条件の成否を判定する判定手段をさらに備えていることを特徴とする、付記1に記載の流通管理装置。
前記判定手段は、複数の外部装置のそれぞれから受信した複数のイベント発生情報が互いに相関する場合に、前記流通条件が成立したと判定することを特徴とする、付記2に記載の流通管理装置。
前記判定手段は、第1のイベント発生情報を受信し、該第1のイベント発生情報を受信してから所定時間以内に第2のイベント発生情報を受信した場合に、前記流通条件が成立したと判定することを特徴とする、付記3に記載の流通管理装置。
前記判定手段は、第1のイベント発生情報および第2のイベント発生情報のそれぞれに含まれている、前記ユーザに固有のユーザ情報が、同一のユーザを示している場合に、前記流通条件が成立したと判定することを特徴とする、付記3または4に記載の流通管理装置。
前記外部装置の少なくとも1つは、前記ユーザが装着しているウェアラブル端末であり、前記ウェアラブル端末から送信される前記イベント発生情報は、該ウェアラブル端末が計測した物理量を含むことを特徴とする、付記2から5のいずれか1つに記載の流通管理装置。
前記流通活性化手段は、
前記流通条件が成立した場合に、前記流通許諾データのステータスを、前記保護対象情報の送信が禁止されていることを示す流通不可から送信が許可されていることを示す流通可に更新し、
前記情報保有装置または前記情報利用装置から前記保護対象情報の流通許可を求める要求を受け付けたときに、該保護対象情報の流通許諾データのステータスが流通可を示す場合に、前記情報保有装置に対して、前記保護対象情報を前記情報利用装置に送信することを許可する、付記1から6のいずれか1つに記載の流通管理装置。
前記流通活性化手段は、前記流通条件が成立した場合に、前記情報保有装置に対して、前記保護対象情報を前記情報利用装置に送信することを許可する流通許可証を送信する、付記1から6のいずれか1つに記載の流通管理装置。
前記流通活性化手段は、前記情報保有装置が前記保護対象情報を送信することが可能な送信期限を設定することを特徴とする、付記7または8に記載の流通管理装置。
前記流通活性化手段は、前記情報保有装置が前記保護対象情報を送信することが可能な上限回数を設定することを特徴とする、付記7から9のいずれか1つに記載の流通管理装置。
前記ユーザが操作するユーザ装置から、前記流通条件が成立した場合に前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許諾する旨の通知を受信したことに応じて、前記流通許諾データを、前記流通条件が成立する前に記憶装置に登録する登録手段をさらに備えていることを特徴とする、付記1から10のいずれか1つに記載の流通管理装置。
前記登録手段は、前記流通活性化手段が前記保護対象情報の送信を許可することができる有効期間を、前記流通許諾データに関連付けて登録することを特徴とする、付記11に記載の流通管理装置。
前記流通活性化手段が前記保護対象情報の送信を許可したことに応じて、前記情報利用装置に対して、前記保護対象情報が前記情報保有装置から送信されることを予告する予告手段をさらに備えていることを特徴とする、付記1から12のいずれか1つに記載の流通管理装置。
前記流通活性化手段が前記情報保有装置に対して前記保護対象情報の送信を許可してから所定時間以内に、前記保護対象情報を受領したことを示す受領完了通知を前記情報利用装置から受信しない場合に、前記送信の許可を無効にする情報保護手段をさらに備えていることを特徴とする、付記1から13のいずれか1項に記載の流通管理装置。
前記流通活性化手段が前記情報保有装置に対して前記保護対象情報の送信を許可したことに応じて、前記ユーザが操作するユーザ装置に対して、前記保護対象情報の送信を許可したことを報告する報告手段をさらに備えていることを特徴とする、付記1から14のいずれか1項に記載の流通管理装置。
ユーザに関する保護されるべき保護対象情報を保有する情報保有装置と、
前記保護対象情報を利用する情報利用装置と、
前記情報保有装置が、所定の流通条件が成立した場合に、前記保護対象情報を、前記情報利用装置に送信することを前記ユーザが許諾していることを示す流通許諾データを記憶する記憶装置と、
流通管理装置とを含み、
前記流通管理装置は、
前記流通許諾データを前記記憶装置から取得する取得手段と、
前記流通許諾データが示す前記流通条件が成立した場合に、前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許可する流通活性化手段と、を備えていることを特徴とする、流通管理システム。
前記流通管理システムは、さらに、前記ユーザが装着しているウェアラブル端末を含み、
前記ウェアラブル端末は、
計測した物理量に基づいて検知されたイベントの発生を通知するイベント発生情報を前記流通管理装置に送信し、
前記流通管理装置は、
前記ウェアラブル端末から送信された前記イベント発生情報に基づいて、前記流通条件の成否を判定する判定手段をさらに備えていることを特徴とする、付記16に記載の流通管理システム。
前記流通管理システムは、さらに、前記ユーザが操作するユーザ装置を含み、
前記ユーザ装置は、
前記流通条件が成立した場合に前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許諾するか否かを前記ユーザに回答させるための入力支援手段と、
前記ユーザから許諾する旨の回答を受け付けた場合に、前記流通許諾データを、前記流通条件が成立する前に前記記憶装置に登録する登録手段とを備えていることを特徴とする、付記16または17に記載の流通管理システム。
流通管理装置が、
ユーザに関する保護されるべき保護対象情報を保有する情報保有装置が、所定の流通条件が成立した場合に、前記保護対象情報を、該保護対象情報を利用する情報利用装置に送信することを前記ユーザが許諾していることを示す流通許諾データを取得すること、および、
取得された前記流通許諾データが示す前記流通条件が成立した場合に、前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許可すること、
を含むことを特徴とする流通管理方法。
コンピュータを付記1~15の何れか一に記載の流通管理装置として動作させるためのプログラムであって、前記コンピュータを前記各手段として機能させることを特徴とする、制御プログラム。
付記20に記載の制御プログラムを記録した、コンピュータ読み取り可能な一時的でない有形の記録媒体。
上述した実施形態の一部又は全部は、更に、以下のように表現することもできる。
ユーザに関する保護されるべき保護対象情報を保有する情報保有装置が、所定の流通条件が成立した場合に、前記保護対象情報を、該保護対象情報を利用する情報利用装置に送信することを前記ユーザが許諾していることを示す流通許諾データを取得する取得処理と、
取得された前記流通許諾データが示す前記流通条件が成立した場合に、前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許可する流通活性化処理と、を実行する流通管理装置。
2 情報保有装置
3 情報利用装置
4 ユーザ装置
5 ウェアラブル端末
10 制御装置
11 記憶装置
21 登録部
22 取得部
23 判定部
24 流通活性化部
25 予告部
26 情報保護部
27 報告部
41 入力支援部
42 送信部
100 流通管理システム
110 流通許諾データ
210 保護対象情報
230 流通主体装置
501 外部装置
1100 流通許諾データベース
Claims (19)
- ユーザに関する保護されるべき保護対象情報を保有する情報保有装置が、所定の流通条件が成立した場合に、前記保護対象情報を、該保護対象情報を利用する情報利用装置に送信することを前記ユーザが許諾していることを示す流通許諾データを取得する取得手段と、
取得された前記流通許諾データが示す前記流通条件が成立した場合に、前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許可する流通活性化手段と、を備えていることを特徴とする流通管理装置。 - 1または複数の外部装置から送信された、イベントの発生を通知する1つ以上のイベント発生情報に基づいて、前記流通条件の成否を判定する判定手段をさらに備えていることを特徴とする、請求項1に記載の流通管理装置。
- 前記判定手段は、複数の外部装置のそれぞれから受信した複数のイベント発生情報が互いに相関する場合に、前記流通条件が成立したと判定することを特徴とする、請求項2に記載の流通管理装置。
- 前記判定手段は、第1のイベント発生情報を受信し、該第1のイベント発生情報を受信してから所定時間以内に第2のイベント発生情報を受信した場合に、前記流通条件が成立したと判定することを特徴とする、請求項3に記載の流通管理装置。
- 前記判定手段は、第1のイベント発生情報および第2のイベント発生情報のそれぞれに含まれている、前記ユーザに固有のユーザ情報が、同一のユーザを示している場合に、前記流通条件が成立したと判定することを特徴とする、請求項3または4に記載の流通管理装置。
- 前記外部装置の少なくとも1つは、前記ユーザが装着しているウェアラブル端末であり、前記ウェアラブル端末から送信される前記イベント発生情報は、該ウェアラブル端末が計測した物理量を含むことを特徴とする、請求項2から5のいずれか1項に記載の流通管理装置。
- 前記流通活性化手段は、
前記流通条件が成立した場合に、前記流通許諾データのステータスを、前記保護対象情報の送信が禁止されていることを示す流通不可から送信が許可されていることを示す流通可に更新し、
前記情報保有装置または前記情報利用装置から前記保護対象情報の流通許可を求める要求を受け付けたときに、該保護対象情報の流通許諾データのステータスが流通可を示す場合に、前記情報保有装置に対して、前記保護対象情報を前記情報利用装置に送信することを許可する、請求項1から6のいずれか1項に記載の流通管理装置。 - 前記流通活性化手段は、前記流通条件が成立した場合に、前記情報保有装置に対して、前記保護対象情報を前記情報利用装置に送信することを許可する流通許可証を送信する、請求項1から6のいずれか1項に記載の流通管理装置。
- 前記流通活性化手段は、前記情報保有装置が前記保護対象情報を送信することが可能な送信期限を設定することを特徴とする、請求項7または8に記載の流通管理装置。
- 前記流通活性化手段は、前記情報保有装置が前記保護対象情報を送信することが可能な上限回数を設定することを特徴とする、請求項7から9のいずれか1項に記載の流通管理装置。
- 前記ユーザが操作するユーザ装置から、前記流通条件が成立した場合に前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許諾する旨の通知を受信したことに応じて、前記流通許諾データを、前記流通条件が成立する前に記憶装置に登録する登録手段をさらに備えていることを特徴とする、請求項1から10のいずれか1項に記載の流通管理装置。
- 前記登録手段は、前記流通活性化手段が前記保護対象情報の送信を許可することができる有効期間を、前記流通許諾データに関連付けて登録することを特徴とする、請求項11に記載の流通管理装置。
- 前記流通活性化手段が前記保護対象情報の送信を許可したことに応じて、前記情報利用装置に対して、前記保護対象情報が前記情報保有装置から送信されることを予告する予告手段をさらに備えていることを特徴とする、請求項1から12のいずれか1項に記載の流通管理装置。
- 前記流通活性化手段が前記情報保有装置に対して前記保護対象情報の送信を許可してから所定時間以内に、前記保護対象情報を受領したことを示す受領完了通知を前記情報利用装置から受信しない場合に、前記送信の許可を無効にする情報保護手段をさらに備えていることを特徴とする、請求項1から13のいずれか1項に記載の流通管理装置。
- 前記流通活性化手段が前記情報保有装置に対して前記保護対象情報の送信を許可したことに応じて、前記ユーザが操作するユーザ装置に対して、前記保護対象情報の送信を許可したことを報告する報告手段をさらに備えていることを特徴とする、請求項1から14のいずれか1項に記載の流通管理装置。
- ユーザに関する保護されるべき保護対象情報を保有する情報保有装置と、
前記保護対象情報を利用する情報利用装置と、
前記情報保有装置が、所定の流通条件が成立した場合に、前記保護対象情報を、前記情報利用装置に送信することを前記ユーザが許諾していることを示す流通許諾データを記憶する記憶装置と、
流通管理装置とを含み、
前記流通管理装置は、
前記流通許諾データを前記記憶装置から取得する取得手段と、
前記流通許諾データが示す前記流通条件が成立した場合に、前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許可する流通活性化手段と、を備えていることを特徴とする、流通管理システム。 - 前記流通管理システムは、さらに、前記ユーザが装着しているウェアラブル端末を含み、
前記ウェアラブル端末は、
計測した物理量に基づいて検知されたイベントの発生を通知するイベント発生情報を前記流通管理装置に送信し、
前記流通管理装置は、
前記ウェアラブル端末から送信された前記イベント発生情報に基づいて、前記流通条件の成否を判定する判定手段をさらに備えていることを特徴とする、請求項16に記載の流通管理システム。 - 前記流通管理システムは、さらに、前記ユーザが操作するユーザ装置を含み、
前記ユーザ装置は、
前記流通条件が成立した場合に前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許諾するか否かを前記ユーザに回答させるための入力支援手段と、
前記ユーザから許諾する旨の回答を受け付けた場合に、前記流通許諾データを、前記流通条件が成立する前に前記記憶装置に登録する登録手段とを備えていることを特徴とする、請求項16または17に記載の流通管理システム。 - 流通管理装置が、
ユーザに関する保護されるべき保護対象情報を保有する情報保有装置が、所定の流通条件が成立した場合に、前記保護対象情報を、該保護対象情報を利用する情報利用装置に送信することを前記ユーザが許諾していることを示す流通許諾データを取得すること、および、
取得された前記流通許諾データが示す前記流通条件が成立した場合に、前記情報保有装置が前記保護対象情報を前記情報利用装置に送信することを許可すること、
を含むことを特徴とする流通管理方法。
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US18/037,273 US20230418972A1 (en) | 2020-11-27 | 2020-11-27 | Distribution management device, distribution management system, and distribution management method |
JP2022564959A JPWO2022113296A1 (ja) | 2020-11-27 | 2020-11-27 | |
PCT/JP2020/044326 WO2022113296A1 (ja) | 2020-11-27 | 2020-11-27 | 流通管理装置、流通管理システムおよび流通管理方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/JP2020/044326 WO2022113296A1 (ja) | 2020-11-27 | 2020-11-27 | 流通管理装置、流通管理システムおよび流通管理方法 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2022113296A1 true WO2022113296A1 (ja) | 2022-06-02 |
Family
ID=81755443
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2020/044326 WO2022113296A1 (ja) | 2020-11-27 | 2020-11-27 | 流通管理装置、流通管理システムおよび流通管理方法 |
Country Status (3)
Country | Link |
---|---|
US (1) | US20230418972A1 (ja) |
JP (1) | JPWO2022113296A1 (ja) |
WO (1) | WO2022113296A1 (ja) |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2001338074A (ja) * | 2000-05-26 | 2001-12-07 | Maxnet Co Ltd | 非常事態管理システム |
JP2013109683A (ja) * | 2011-11-24 | 2013-06-06 | Ibis Inc | 個人情報保護と緊急時サポートとを両立したウェブアプリケーションシステム |
JP2016091067A (ja) * | 2014-10-29 | 2016-05-23 | ソフトバンク株式会社 | 個人情報流通方法、個人情報流通システム及び個人情報流通事業者装置 |
JP2016177449A (ja) * | 2015-03-19 | 2016-10-06 | セコム株式会社 | 転倒検知端末およびプログラム |
JP2016201066A (ja) * | 2015-04-14 | 2016-12-01 | 株式会社フォーカルワークス | 情報処理装置 |
JP2017097745A (ja) * | 2015-11-27 | 2017-06-01 | ヤフー株式会社 | 管理装置、管理方法及び管理プログラム |
-
2020
- 2020-11-27 JP JP2022564959A patent/JPWO2022113296A1/ja active Pending
- 2020-11-27 WO PCT/JP2020/044326 patent/WO2022113296A1/ja active Application Filing
- 2020-11-27 US US18/037,273 patent/US20230418972A1/en active Pending
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2001338074A (ja) * | 2000-05-26 | 2001-12-07 | Maxnet Co Ltd | 非常事態管理システム |
JP2013109683A (ja) * | 2011-11-24 | 2013-06-06 | Ibis Inc | 個人情報保護と緊急時サポートとを両立したウェブアプリケーションシステム |
JP2016091067A (ja) * | 2014-10-29 | 2016-05-23 | ソフトバンク株式会社 | 個人情報流通方法、個人情報流通システム及び個人情報流通事業者装置 |
JP2016177449A (ja) * | 2015-03-19 | 2016-10-06 | セコム株式会社 | 転倒検知端末およびプログラム |
JP2016201066A (ja) * | 2015-04-14 | 2016-12-01 | 株式会社フォーカルワークス | 情報処理装置 |
JP2017097745A (ja) * | 2015-11-27 | 2017-06-01 | ヤフー株式会社 | 管理装置、管理方法及び管理プログラム |
Also Published As
Publication number | Publication date |
---|---|
US20230418972A1 (en) | 2023-12-28 |
JPWO2022113296A1 (ja) | 2022-06-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10636023B2 (en) | Universal secure registry | |
US20190213564A1 (en) | Systems and methods for implementing hybrid public-private block-chain ledgers | |
US8768847B2 (en) | Privacy enhancing personal data brokerage service | |
US11210671B2 (en) | User controlled event record system | |
US9727919B2 (en) | Systems and methods for reducing medical claims fraud | |
US20060004588A1 (en) | Method and system for obtaining, maintaining and distributing data | |
US8522358B2 (en) | Universal identity service avatar ecosystem | |
CN107408255A (zh) | 云加密密钥中介设备、方法和系统 | |
US20220044227A1 (en) | System and method for merchant and personal transactions using mobile identification credential | |
GB2403309A (en) | Evaluating security within a data processing or transactional environment | |
JP2003519846A (ja) | 方針通知方法とシステム | |
JP7063272B2 (ja) | 情報処理端末、情報処理装置、情報処理方法、情報処理システムおよびプログラム | |
WO2016194053A1 (ja) | 手続管理システムおよび手続管理方法 | |
JPWO2008099739A1 (ja) | 個人情報の改ざん防止と個人情報流通否認防止のための個人情報管理装置、サービス提供装置、プログラム、個人情報管理方法、照合方法、および個人情報照合システム | |
JP6350659B2 (ja) | 薬歴情報管理装置および方法、登録端末装置および方法、並びにプログラム | |
WO2022113296A1 (ja) | 流通管理装置、流通管理システムおよび流通管理方法 | |
KR20100131785A (ko) | 유무선 인터넷 통신기기를 활용한 신용진단 및 대출진단 방법 및 그 시스템 | |
JPWO2022113296A5 (ja) | ||
KR100753898B1 (ko) | 안전한 금융거래에 이용가능한 일회용 비밀번호를 이용한로그인 시스템 및 방법과 상기 일회용 비밀번호 생성프로세스를 탑재한 스마트 카드 | |
US20210150058A1 (en) | Control method, server, recording medium, and data structure | |
EP3839856A1 (en) | System and method for controlling access to account transaction information | |
KR102119383B1 (ko) | 간편동의 서비스 시스템 및 방법과, 이를 위한 사용자 장치 및 컴퓨터 프로그램 | |
CN106030645B (zh) | 登记系统和方法 | |
US20210350020A1 (en) | De-identified Identity Proofing Methods and Systems | |
JP2004297333A (ja) | デジタル証明書の認定システム、デジタル証明書の認定サーバ、pkiトークン、デジタル証明書の認定方法、及びプログラム |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 20963560 Country of ref document: EP Kind code of ref document: A1 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 18037273 Country of ref document: US |
|
ENP | Entry into the national phase |
Ref document number: 2022564959 Country of ref document: JP Kind code of ref document: A |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 20963560 Country of ref document: EP Kind code of ref document: A1 |