Information security system, its server and its storage medium
First Claim
1. An information security system comprising:
- a portable information processing device; and
a server, whereinthe portable information processing device includes;
an identification information detection/notification unit to detect detectable identification information of identification information of the portable information processing device, identification information of a user and identification information of a place, and to notify a server of the detected information; and
a file using control unit to make an inquiry of the server if a file is a security target file when a user specifies an arbitrary file, and to control use of the specified file according to a response to the inquiry; and
the server includes;
a first storage unit to store, in advance, a using qualification in connection with each specific combination of the three types of identification information;
a second storage unit to store, in advance, a level for each file;
a using qualification determination unit to provide the using qualification corresponding to a specific combination stored in the first storage unit to the portable information processing device, if each piece of the notified identification information coincides with the specific combination; and
a using permit determination unit to determine whether to permit use of the specified file by computing a level of the specified file referring to the second storage unit when there is the inquiry and comparing the level with the using qualification given to the portable information processing device, and to reply to the file using control unit, whereinthe portable information processing device further includes a timer to monitor a time interval, andthe identification information detection/notification unit checks a using condition of the portable information processing device that represents a user and a using place of the portable information processing device by detecting most recent identification information of the portable information processing device,identification information of the user and identification information of the using place at the time interval, and notifies the server of the most recent detected identification information if the using condition changes; and
the using permit determination unitdetermines a new using qualification according to a change of the using condition based on the most recent identification information andnotifies the portable information processing device of the new using qualification if the using qualification changes.
1 Assignment
0 Petitions
Accused Products
Abstract
An RFID notification unit enables an RFID reader to regularly read the RFID code of an RFID tag attached to the relevant terminal itself, its user and its current location and transmits the RFID code to a server. Upon receipt of this code, the using qualification determination unit of the server determines the current using qualification of the terminal referring to a using condition storage unit. When a user attempts to open an important information file, a file using control unit issues a request to the server. A permit determination unit determines whether to permit the opening of the relevant file, based on the using qualification and the storage contents of a file/level storage unit. When the opening is permitted, the important information file is downloaded onto the terminal or its decoding key is returned.
23 Citations
12 Claims
-
1. An information security system comprising:
-
a portable information processing device; and a server, wherein the portable information processing device includes; an identification information detection/notification unit to detect detectable identification information of identification information of the portable information processing device, identification information of a user and identification information of a place, and to notify a server of the detected information; and a file using control unit to make an inquiry of the server if a file is a security target file when a user specifies an arbitrary file, and to control use of the specified file according to a response to the inquiry; and the server includes; a first storage unit to store, in advance, a using qualification in connection with each specific combination of the three types of identification information; a second storage unit to store, in advance, a level for each file; a using qualification determination unit to provide the using qualification corresponding to a specific combination stored in the first storage unit to the portable information processing device, if each piece of the notified identification information coincides with the specific combination; and a using permit determination unit to determine whether to permit use of the specified file by computing a level of the specified file referring to the second storage unit when there is the inquiry and comparing the level with the using qualification given to the portable information processing device, and to reply to the file using control unit, wherein the portable information processing device further includes a timer to monitor a time interval, and the identification information detection/notification unit checks a using condition of the portable information processing device that represents a user and a using place of the portable information processing device by detecting most recent identification information of the portable information processing device, identification information of the user and identification information of the using place at the time interval, and notifies the server of the most recent detected identification information if the using condition changes; and the using permit determination unit determines a new using qualification according to a change of the using condition based on the most recent identification information and notifies the portable information processing device of the new using qualification if the using qualification changes. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A server, comprising:
-
a first storage unit to store, in advance, a using qualification in connection with each combination of three types of identification information of identification information of a portable information processing device, identification information of a user and identification information of a place; a second storage unit to store, in advance, a level for each file; a using qualification determination unit to provide the using qualification corresponding to a specific combination to a notifying portable information processing device if each piece of the notified identification information corresponds to the specific combination stored in the first storage unit when the identification information is notified by any of the portable information processing devices; and a using permit determination unit to determine whether to permit use of the requested security target file by computing a level of the requested security target file referring to the second storage unit and comparing the using qualification given to a requesting portable information processing device with the computed level, when there is a use request of an arbitrary security target file from any of the portable information processing devices, wherein the using permit determination unit determines the using qualification based on the identification information notified from the notifying portable information processing device when a using condition of the portable information processing device that represents a user and a using place of the portable information processing device changes and notifies the portable information processing device of the new using qualification if the using qualification changes.
-
-
12. A computer-readable storage medium on which is recorded a program for causing a computer to perform a method when the computer executes the program, the method comprising:
-
storing in a first storage unit, in advance, a using qualification in connection with each combination of three types of identification information of identification information of a portable information processing device, identification information of a user and identification information of a place; storing in a second storage unit, in advance, a level for each file; providing the using qualification corresponding to a specific combination to a notifying portable information processing device if each piece of the notified identification information corresponds to the specific combination stored in the first storage unit when the identification information is notified by any of the portable information processing devices; determining whether to permit use of the requested security target file by computing a level of the requested security target file referring to the second storage unit, and comparing the using qualification given to a requesting portable information processing device with the computed level, when there is a use request of an arbitrary security target file from any of the portable information processing devices; and notifying the notifying portable information processing device of a new using qualification if the using qualification changes wherein the providing is carried out based on the identification information notified from the notifying portable information processing device when a using condition of the portable information processing device that represents a user and a using place of the portable information processing device changes.
-
Specification