JP2015219761A - Terminal data management server, terminal data management method, and program for terminal data management server - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a terminal data management server, a terminal data management method, and a program for the terminal data management server for managing an application for preventing data leakage unintended by a user.SOLUTION: A terminal data management server 100 is configured to receive the input of a policy to permit an operation in a management object terminal 10, and to receive data related to an application newly installed in the management object terminal 10 from the management object terminal 10, and to determine whether or not the application newly installed in the management object terminal 10 is an application pertinent to the policy on the basis of the policy, and to, when the policy is protected by the application, transmit, to the management object terminal 10, a registration instruction such that alarm display related to the policy to be output when the application operates in the management object terminal 10 is set so as not to be output.

Description

  The present invention relates to a terminal data management server, a terminal data management method, and a terminal data management server program for managing data stored in a terminal connected to a public line.

  In recent years, various services are provided to users by connecting a mobile terminal connected to a public network to a Web server or the like. In particular, with the advent of smartphones (high-performance mobile phones), it has become possible to provide advanced services that have been provided for personal computers with mobile terminals.

  Terminals such as smartphones and personal computers provide many services by installing applications on each terminal. Typical services include services called SNS (Social Network Service) and Internet telephone services. It is provided and data such as messages, images, and moving images is frequently transmitted and received between terminals.

  For example, in the case of a social network service, in order to transmit and receive data such as messages and images, the contact information of the partner to be transmitted is necessary. As the contact address, the Internet service of Non-Patent Document 1 uses a telephone number of a partner who transmits and receives data as a contact address.

Murakami, Jun, “No. 1 If you know correctly! The first step of LINE is from the initial setting” [online], August 5, 2013, ITMobileMobile, [May 11, 2014 search], Internet <Http://www.itmedia.co.jp/mobile/articles/1308/05/news018.html>

  However, in the method described in Non-Patent Document 1, when an application for this social network service is installed in a terminal and starts to be used, the application accesses personal information data such as a telephone number without the user's awareness. May end up. This is because the personal information data stored in the terminal is used when the friendship is established by the social network service.

  In actuality, when the application is installed in the terminal, the application starts to operate after obtaining consent from the user to access personal information. However, the user may run the application without being aware of this consent. As a result, there is a problem that the personal information stored in the terminal leaks outside without the user's intention.

  Furthermore, in the case of a terminal used in business, information such as a trade secret may be included as a corporation in addition to the personal information as described above, and it is necessary to manage data transmission / reception itself regarding the application. Therefore, it is desirable that application policies can be individually or collectively set for a plurality of terminals to be used based on the rules of the company to be managed.

  In view of these problems, an object of the present invention is to provide a terminal data management server, a terminal data management method, and a terminal data management server program for managing an application that prevents data leakage unintended by a user. To do.

  The present invention provides the following solutions.

The invention according to the first feature is a terminal data management server that is communicably connected to a management target terminal,
Policy input accepting means for accepting an input of a policy permitting operation in the managed terminal;
Application data receiving means for receiving data relating to an application newly installed in the managed terminal from the managed terminal;
Application judging means for judging whether or not an application newly installed in the management target terminal is an application corresponding to the policy based on the policy;
When the application is in compliance with the policy, an instruction to register the setting for not outputting a warning display regarding the policy that is output when the application operates on the management target terminal is transmitted to the management target terminal. Warning non-transmission transmission means;
A terminal data management server is provided.

  According to the first aspect of the invention, the terminal data management server receives an input of a policy permitting operation at the management target terminal, and receives data related to the application newly installed in the management target terminal from the management target terminal. Based on the policy, the application that is received and newly installed on the managed terminal is judged whether it is an application that corresponds to the policy, and if the application complies with the policy, the application is managed An instruction to register in a setting not to output a warning display related to the policy that is output when operating on the target terminal is transmitted to the management target terminal.

  The invention according to the first feature is a server category, but even a method and a program have the same operations and effects according to the category.

In the invention according to the second feature, the policy input receiving means further receives an input of a policy permitting transmission / reception of personal information data stored in the managed terminal,
The application determination unit determines whether an application newly installed in the managed terminal is an application that may transmit / receive personal information data stored in the managed terminal based on the policy. A terminal data management server is provided.

  According to the invention according to the second feature, the invention according to the first feature further accepts an input of a policy permitting transmission / reception of personal information data stored in the management target terminal, and newly installs in the management target terminal Based on the policy, it is determined whether the received application is an application that may transmit / receive personal information data stored in the management target terminal.

  The invention according to the third feature further includes an uninstall instruction for transmitting an instruction to uninstall the application to the managed terminal when the application determining unit determines that the application cannot comply with the policy. A terminal data management server comprising means is provided.

  According to the third aspect of the invention, the invention according to the first or second aspect further manages an instruction to uninstall the application when it is determined that the application cannot comply with the policy. Send to the target terminal.

  In the invention according to the fourth aspect, the application data judging means judges whether or not the application is likely to access personal information data by determining whether or not there is access to data related to the address book. Provide a server.

The invention according to the fifth aspect further relates to the policy input receiving means transmitting an application installed in the managed terminal to the outside via a public line, data stored in the managed terminal. Accept policy input,
The application determination unit may cause an application installed in the managed terminal based on the policy to transmit data stored in the managed terminal based on the policy to the outside through a public line. A terminal data management server for determining whether or not an application is present is provided.

  According to the invention according to the fifth feature, the invention according to the first feature relates to an application installed in a managed terminal transmitting data stored in the managed terminal to the outside via a public line. Whether an application that accepts policy input and that is installed on a managed terminal based on the policy may send data stored on the managed terminal to the outside via a public line based on the policy Determine whether.

  ADVANTAGE OF THE INVENTION According to this invention, it becomes possible to provide the terminal data management server, the terminal data management method, and the program for terminal data management servers for managing the application which prevents the data leakage which the user does not intend.

FIG. 1 is an overall configuration diagram of a terminal data management system 1 and a functional block diagram of each device. FIG. 2 is a flowchart showing terminal data management processing executed by the management target terminal 10 and the terminal data management server 100. FIG. 3 is a diagram showing a policy data table. FIG. 4 is an example of a screen image (warning display) displayed on the management target terminal 10. FIG. 5 is an example of a screen image (setting management) displayed on the management target terminal 10.

  Hereinafter, the best mode for carrying out the present invention will be described with reference to the drawings. This is merely an example, and the technical scope of the present invention is not limited to this.

[System configuration of terminal data management system 1]
FIG. 1 is a configuration diagram of the entire system of a terminal data management system 1 which is a preferred embodiment of the present invention, and a functional block diagram of each device. Here, the terminal data management server 100 is communicably connected to the management target terminal 10 and the management terminal 50 via a public line network and a LAN (local area network).

  The terminal data management server 100 may be a normal computer server. The control unit 101 includes a CPU (Central Processing Unit), a RAM (Random Access Memory), a ROM (Read Only Memory), etc., and the communication unit 102 can be connected to a public line network such as the Internet through a wired LAN connection. It may be. The storage unit 103 may include a hard disk or the like alone, or may be connected so as to be able to communicate with a database or the like.

  In the terminal data management server 100, the control unit 101 reads a predetermined program, so that the application data reception module 110, the policy input reception module 120, the uninstallation instruction module 130, and the warning non-display transmission are cooperated with the communication unit 102. The module 140 is realized. In addition, the terminal data management server 100 implements the application determination module 150 in cooperation with the storage unit 103 when the control unit 101 reads a predetermined program. Data relating to the policy is stored in the storage unit 103, and various tables shown in FIG. 3 to be described later are stored.

  The managed terminal 10 may be a general information device or electronic device having functions described later in addition to an input / output function including a touch panel and a call / communication function. The management target terminal 10 is, for example, a mobile phone, a smartphone, a tablet terminal, a wearable terminal, a television, a computer, a telephone, a netbook terminal, a slate terminal, an electronic book terminal, an electronic dictionary terminal, a portable music player, a portable type It may be a general information appliance such as a content playback / recording player.

  The management target terminal 10 includes a CPU (Central Processing Unit), a RAM (Random Access Memory), a ROM (Read Only Memory), and the like as the control unit 11, and a communication unit 12, for example, WiFi (compliant with IEEE 802.11). A device compatible with Wireless Fidelity, or a wireless device such as LTE (Long Term Evolution), 3rd, 4th generation mobile communication system, or the like (may be wired LAN connection).

  The storage unit 13 of the management target terminal 10 stores address book data including name, address, e-mail address, telephone number, affiliation and the like as personal information data. The personal information data may be confidential information for a corporation and may include corporate trade secret information (such as contact information or technical information of business contacts).

  An arbitrary application is installed in the management target terminal 10 in accordance with a user instruction. The application is installed by using an application download service provided by a Web server or the like. Here, the address book application is an application that handles address book data stored in the management target terminal 10. A general application can obtain personal information data by obtaining permission to access the address book application. The application is uninstalled by designating the application to be uninstalled from the setting screen of the management target terminal 10 by the user.

  The management terminal 50 is a terminal for an administrator to input a policy to the terminal data management server 100. The management terminal 50 is a computer operated by an administrator who manages the management target terminal 10, and the policy input here can be reflected on the plurality of management target terminals 10.

[Terminal data management processing]
FIG. 2 is a flowchart of terminal data management processing executed by the terminal data management server 100 and the management target terminal 10. Processing performed by the modules of each computer described above will be described together with this processing.

  First, the policy input reception module 120 of the terminal data management server 100 receives the policy input from the management terminal 50 and stores the policy (step S01). Here, the specific policy is the policy data table shown in FIG. The policy data table includes the name of the policy and the name of the application permitted by the administrator for the policy.

  For example, the policy name “address access” is a name of a policy that permits access to the address book of the management target terminal 10. In FIG. 3, as applications that allow the applications A, B, and C, the administrator Is specified. The policy name “external data transmission” is a name of a policy that permits the managed terminal 10 to transmit data to the outside via the public line network. In FIG. 3, the applications A, X, and Z are permitted. The application is specified by the administrator.

  Next, the managed terminal 10 detects that the user has installed a new application, and makes a policy inquiry for the newly installed application (step S02). Specifically, the name of the newly installed application is transmitted to the terminal data management server 100. The application data receiving module 110 of the terminal data management server 100 receives the inquiry and determines whether or not the application determination module 150 is an application that observes the policy with reference to the policy data table (step S04).

  For example, when the newly installed application is the application A, referring to the policy data table, the application is in the policy: address access white list. Therefore, it is determined that the application complies with the policy (step S04: “YES”), and the process proceeds to step S05. On the other hand, if the newly installed application is application F, referring to the policy data table, it is determined that the application does not comply with the policy because it is not in the policy: address access white list (step S04: "NO"), and the process proceeds to step S07.

  In step S05, the warning non-display transmission module 140 transmits a warning non-display flag to the management target terminal 10 (step S05). The warning non-display flag is a warning display 15 (FIG. 4) is a flag for determining whether or not to display.

  Here, the warning display 15 is a message output to the management target terminal 10, and confirmation for obtaining permission from the user when the application performs a predetermined operation such as access to personal information. This is the display to be performed. In FIG. 4, the warning display 15 is a message “App A accesses the address book. Do you want to execute this application?”, And responds to this with a “Yes” or “No” button. To accept input from the user.

  Next, the management target terminal 10 receives the warning non-display flag and performs setting to hide the warning of the management target terminal 10 itself (step S06). As shown in FIG. 5, this setting is normally set by the user for each application, whether or not a warning is displayed, from the setting screen of the management target terminal 10. The managed terminal 10 that has received the warning non-display flag sets “YES” to the selection of not displaying the warning as shown in FIG. For example, when the warning non-display flag is received for the application A, the selection of the application A is set to “YES”.

  In general, the warning display 15 is often annoying for a user who recognizes that a newly installed application is safe. Therefore, as shown in step S05, it is desirable for the user and the administrator that the warning display displayed on the management target terminal 10 can be set to non-display.

  Next, as step S07, the uninstall instruction module 130 of the management target terminal 10 transmits a command for instructing the management target terminal 10 to uninstall as a new application to be uninstalled. The management target terminal 10 receives this command (step S08), and uninstalls the newly installed application (step S09).

  The means and functions described above are realized by a computer (including a CPU, an information processing apparatus, and various terminals) reading and executing a predetermined program. The program is provided in a form recorded on a computer-readable recording medium such as a flexible disk, CD (CD-ROM, etc.), DVD (DVD-ROM, DVD-RAM, etc.), for example. In this case, the computer reads the program from the recording medium, transfers it to the internal storage device or the external storage device, stores it, and executes it. The program may be recorded in advance in a storage device (recording medium) such as a magnetic disk, an optical disk, or a magneto-optical disk, and provided from the storage device to a computer via a communication line.

  As mentioned above, although embodiment of this invention was described, this invention is not limited to these embodiment mentioned above. The effects described in the embodiments of the present invention are only the most preferable effects resulting from the present invention, and the effects of the present invention are limited to those described in the embodiments of the present invention. is not.

  1 terminal data management system, 10 managed terminal, 50 management terminal, 100 terminal data management server

Claims (7)

A terminal data management server connected to a managed terminal so as to be communicable,
Policy input accepting means for accepting an input of a policy permitting operation in the managed terminal;
Application data receiving means for receiving data relating to an application newly installed in the managed terminal from the managed terminal;
Application judging means for judging whether or not an application newly installed in the management target terminal is an application corresponding to the policy based on the policy;
When the application is in compliance with the policy, an instruction to register the setting for not outputting a warning display regarding the policy that is output when the application operates on the management target terminal is transmitted to the management target terminal. Warning non-transmission transmission means;
A terminal data management server comprising: The policy input receiving means receives an input of a policy permitting transmission / reception of personal information data stored in the management target terminal;
The application determination unit determines whether an application newly installed in the managed terminal is an application that may transmit / receive personal information data stored in the managed terminal based on the policy. The terminal data management server according to claim 1.   3. The uninstallation instruction unit according to claim 1, further comprising: an uninstallation instruction unit that transmits an instruction to uninstall the application to the management target terminal when the application determination unit determines that the application does not comply with the policy. Terminal data management server.   4. The terminal data management server according to claim 2, wherein said application determining means determines whether or not an application is likely to access personal information data based on whether or not there is access to data related to an address book. The policy input accepting unit accepts an input of a policy related to an application installed in the managed terminal transmitting data stored in the managed terminal to the outside via a public line,
The application determination unit may cause an application installed in the managed terminal based on the policy to transmit data stored in the managed terminal based on the policy to the outside through a public line. The terminal data management server according to claim 1, wherein it is determined whether the application is a certain application. A terminal data management method executed by a server communicably connected to a managed terminal,
Receiving an input of a policy permitting operation on the managed terminal;
Receiving data relating to the application newly installed in the managed terminal from the managed terminal;
Determining whether an application newly installed in the management target terminal is an application corresponding to the policy based on the policy;
When the application is in compliance with the policy, an instruction to register the setting for not outputting a warning display regarding the policy that is output when the application operates on the management target terminal is transmitted to the management target terminal. A terminal data management method. To a server that is communicably connected to the managed terminal,
Receiving an input of a policy permitting operation at the managed terminal;
Receiving from the management target terminal data related to the application newly installed in the management target terminal;
Determining whether an application newly installed in the managed terminal is an application corresponding to the policy based on the policy;
When the application is in compliance with the policy, an instruction to register the setting for not outputting a warning display regarding the policy that is output when the application operates on the management target terminal is transmitted to the management target terminal. A program for executing a step.