JP2017167897A - Information processing device, program, information processing method and information processing system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an information processing device.SOLUTION: The information processing device includes: authentication success detection means 270 for detecting the success of authentication using authentication information to information equipment; time elapse detection means 276 for detecting that a prescribed time elapses after the authentication success detection means 270 detects the success of the latest authentication; and control means 280 for performing control so as to execute notification of confirmation information on the authentication information in response to the detection of the elapse of the prescribed time by the time elapse detection means. In place of the authentication success detection means 270, a clock part 224 can detect that the prescribed time elapses after detecting the success of the latest authentication.SELECTED DRAWING: Figure 5

Description

  The present invention relates to an information processing apparatus, a program, an information processing method, and an information processing system.

  2. Description of the Related Art Conventionally, information devices that can be connected to a network such as a multifunction device are known in which an administrator password can be set. In such an information device, the administrator inputs a dedicated password to access the device, so that security can be improved. However, if the administrator forgets the administrator password, the setting cannot be changed by the administrator. In order to cope with such a forgotten administrator password, a technique for initializing or resetting the administrator password is also known.

  For example, in Japanese Patent No. 4690247 (Patent Document 1), in response to a case where an administrator forgets the administrator password, password authentication of maintenance personnel and switch operation using a physical key stored by the administrator are performed. A technique for initializing an administrator password with a combination of

  However, the countermeasure against the forgotten administrator password in the prior art corresponds to the countermeasure after the forgetting occurs. For this reason, when an emergency administrator operation is required, it takes time to perform the necessary emergency response because of the trouble of initializing and resetting the administrator password.

  Against this background, the administrator can prevent the administrator password from being forgotten, or if the administrator has forgotten the administrator password, this can be done before the above situation occurs. Technology that can be recognized by the administrator, that is, technology that can prevent the occurrence of a situation where the administrator has forgotten the administrator password and cannot be authenticated when needed. It was.

  The present invention has been made in view of the above points, and an object of the present invention is to provide an information processing apparatus capable of notifying timely confirmation information relating to authentication information used when authenticating an information device. And

  In order to solve the above problems, the present invention provides an information processing apparatus having the following characteristics. The information processing apparatus includes an authentication success detection unit that detects success of authentication using authentication information for an information device, a time elapse detection unit that detects that a predetermined time has elapsed since the latest authentication success was detected, And control means for controlling to perform notification of confirmation information related to authentication information in response to detection of passage of a predetermined time.

  With the above-described configuration, confirmation information regarding authentication information used when authenticating an information device can be notified in a timely manner.

The figure which illustrates the network environment where the information processing apparatus by 1 or several embodiment is installed. The block diagram which shows the function structure of the information processing system in embodiment which a multifunctional device alerts alone. The block diagram which shows the function structure of the information processing system in embodiment which a multifunction machine and an apparatus management server cooperate and alert. (A) The figure which illustrates the data structure of the administrator management table managed with the information processing system by one or some embodiment, and (B) the kind of administrator identification information. The block diagram which shows the detailed functional structure of the alerting control part which comprises the information processing system by 1 or several embodiment. (A, B) The figure which illustrates the data structure of the time information managed by the information processing system by specific embodiment based on time comparison, and (C) time expression. The figure which illustrates the alerting notification notified with the information processing system by one or some embodiment. The sequence diagram which shows the exchange between each function part in the information processing system by specific embodiment based on a time comparison. The flowchart which shows alerting control in the information processing system by specific embodiment based on time comparison. The sequence diagram which shows the exchange between each function part in the information processing system by specific embodiment based on a timer interruption setting. The figure which shows the data structure of the time information managed with the information processing system by other embodiment based on time comparison. The sequence diagram which shows the exchange between each functional block in the information processing system by other embodiment based on time comparison. The flowchart which shows alerting control in the information processing system by other embodiment based on time comparison. The sequence diagram which shows the exchange between each function part in the information processing system by other embodiment based on a timer interruption setting. The figure which shows the hardware constitutions of the apparatus which comprises the information processing system by one or some embodiment.

  Hereinafter, although this embodiment is described, the embodiment is not limited to the embodiment described below. In the embodiment described below, the multifunction device 110 or the device management server 150 connected to the multifunction device 110 via a network will be described as an example of the information processing device.

  FIG. 1 illustrates a network environment 100 in which a multifunction peripheral 110 or a device management server 150 as an information processing apparatus according to one or more embodiments is installed. A network environment 100 shown in FIG. 1 includes one or more multifunction peripherals 110, a device management server 150, and an administrator terminal 180 that are connected to each other via a wired or wireless network 102 such as a local area network. And an authentication server 190.

  The multifunction device 110 is an information device that provides various image processing functions such as copying, printing, scanning, and facsimile to a user. In the embodiment to be described, the multifunction peripheral 110 is an information device protected by an administrator password. In a specific embodiment, the MFP 110 may have a function of authenticating a user or an administrator of the MFP 110 by itself. In another embodiment, the multifunction device 110 may authenticate a user or administrator of the multifunction device 110 in cooperation with an external authentication server 190. Note that whether the multi-function peripheral 110 has a single authentication function or an authentication function in cooperation with an external authentication server 190 is not particularly limited and is arbitrary.

  In one or a plurality of embodiments, the multifunction peripheral 110 constitutes an information processing apparatus that provides an alert function that alerts the administrator of the multifunction peripheral 110 so as not to forget the password.

  The device management server 150 provides an alert function that alerts an administrator of one or more multifunction peripherals 110 so as not to forget the password. The device management server 150 is used when the multi-function device 110 is not provided with a warning function. In this case, the device management server 150 can alert one or more administrator passwords with one or more multifunction peripherals 110 as management targets. In one or a plurality of embodiments, the device management server 150 constitutes an information processing device or a device management device that provides an alerting function.

  The administrator terminal 180 is a terminal device such as a personal computer, a tablet computer, or a smartphone used by the administrator. The administrator can log in as a predetermined administrator to the specific multifunction device 110 via the operation panel of the multifunction device 110 or from the administrator terminal 180 via the network 102. The administrator can access protected functions and settings of the multifunction peripheral 110 by logging in as an administrator. The administrator may be an administrator who has all management authority for a specific multifunction peripheral 110, or a manager who has specific management authority, such as a device administrator, a document administrator, a network administrator, or a user administrator. It may be a person.

  The authentication server 190 is a server that provides an authentication service. The authentication server 190 includes one or a plurality of multifunction devices when the multifunction device 110 does not have a single authentication function, or when the multifunction device 110 has a single authentication function and wants to be managed by a plurality of multifunction devices 110. 110 provides an authentication function. When the authentication function of the MFP 110 alone is used, the authentication server 190 is not provided.

  Note that when the multifunction device 110 has a function of calling up the above-mentioned attention alone, the multifunction device 110 alone constitutes an information processing system according to one or a plurality of embodiments. When the multifunction device 110 has a function of calling up the above-mentioned alert in cooperation with the device management server 150, a system including the multifunction device 110 and the device management server 150 constitutes an information processing system according to one or more embodiments. Will do.

  In addition, as an example of the information device, FIG. 1 illustrates the multifunction device 110, but the information device is not particularly limited. In another embodiment, the information equipment includes an image forming apparatus such as a laser printer, an image reading apparatus such as a scanner, an image communication apparatus such as a facsimile, a video projection apparatus such as a projector, a video display apparatus, a server apparatus, and an electronic conference terminal. , Electronic blackboards, personal digital assistants, imaging devices, vending machines, medical equipment, power supply devices, air conditioning systems, metering devices such as gas, water and electricity, network household appliances such as refrigerators and washing machines, administrator passwords, etc. Any information device that can be protected by the authentication information.

  FIG. 2 is a functional block diagram of the information processing system 200 in an embodiment in which the multifunction peripheral 110 has a single alert function. Note that in FIG. 2, the external configuration of the information processing system 200 is shown separated by a broken line. The information processing system 200 shown in FIG. 2 includes, as functional blocks, an input unit 212, a communication unit 214, an output unit 216, an administrator authentication processing unit 218, an administrator authentication information storage unit 220, and an alert control unit. 222 and a timer 224.

  The input unit 212 receives an input operation performed on an input device included in the operation panel of the multifunction machine 110. In the embodiment to be described, the input unit 212 receives an administrator authentication operation via an input device on the operation panel from the administrator. The communication unit 214 handles communication performed via the network interface of the multifunction machine 110. In the embodiment to be described, the communication unit 214 receives an administrator authentication operation via the network 102 from the administrator.

  The output unit 216 performs screen display on a display device provided in the operation panel of the multifunction device 110, lighting control of a lamp provided in the operation panel, and sound output to a speaker provided in the multifunction device 110. The timer unit 224 is a part that manages the system clock of the multifunction machine 110, and returns the current time in response to a time acquisition request. The timer unit 224 is configured to be able to set a timer interrupt. When the timer interrupt is set, the timer 224 detects the timer interrupt in response to arrival of the set time.

  The administrator authentication request via the input unit 212 and the communication unit 214 is passed to the administrator authentication processing unit 218. The manager authentication request includes manager information including zero or more manager identification information and a manager password. The number of administrator identification information depends on the system implementation. For example, when there is no administrator identification information, a login name, a combination of a login name and a group name, or a combination of a login name and a server name may be used, but there is no particular limitation.

  The administrator authentication information storage unit 220 stores administrator authentication information such as administrator identification information and an administrator password necessary for authenticating the administrator in association with each other. The administrator authentication information storage unit 220 may be included in the multifunction device 110 or may not be included in the multifunction device 110.

  FIG. 4A shows the data structure of an administrator management table managed by the information processing system 200 when the login name is administrator identification information. As shown in FIG. 4A, the information processing system 200 manages and stores the administrator identification information and the administrator password in association with each other. When the administrator authentication information storage unit 220 is included in the MFP 110, the administrator management table is stored in the administrator authentication information storage unit 220. In an embodiment in which the MFP 110 does not include an administrator authentication information storage unit, the administrator management table is stored in the authentication server 190. As shown in FIG. 4A, one or a plurality of administrators can be set in the multi-function peripheral 110.

  FIG. 4B illustrates the types of administrator identification information. In order from the top of the table in FIG. 4B, (1) an example in which there is no administrator identification information, and (2) a case in which an administrator is specified by a login name among one or more administrators and identified. Example: (3) Example of specifying a domain by domain name from one or more domains and specifying an administrator by login name from one or more administrators belonging to that domain (4) In the case of an implementation in which password verification is requested to one or more authentication servers 190, an example in which a server name is used to specify a request destination authentication server and a login name is used to identify an administrator, (5 ) An example of using both the server name and the domain name in the same case is shown. In the above example (1) where there is no administrator identification information, it means that anyone who knows the administrator password is an administrator without distinction.

  Refer to FIG. 2 again. When performing authentication using the administrator authentication information storage unit 220, the administrator authentication processing unit 218 includes the administrator information passed with the administrator authentication request and the administrator stored in the administrator authentication information storage unit 220. Check against information. When using the external authentication server 190, the administrator authentication processing unit 218 includes the passed administrator information, and the external authentication server 190 set in advance or the authentication server specified by the server name The inquiry result is inquired to 190 to obtain the inquiry result.

  When the administrator authentication is successful, the administrator authentication processing unit 218 notifies the alert control unit 222 that the administrator authentication is successful. The notification of the success of the administrator authentication may be accompanied by the time when the administrator authentication acquired from the timer unit 224 on the administrator authentication processing unit 218 side is successful. The administrator authentication processing unit 218 further notifies the administrator of the result of verification success or failure as the administrator authentication result via the output unit 216 or the communication unit 214. The output unit 216 displays, for example, a result indicating that the collation has succeeded or failed on the screen. For example, the communication unit 214 transmits the result of the verification success or failure to the requesting administrator terminal 180 via the network 102, and in this case, the result indicating that the MFP 110 has succeeded or failed in the verification. Is displayed on the screen.

  Note that FIG. 2 illustrates an information processing system 200 configured by the multifunction peripheral 110 alone. Configurations other than the input unit 212, the communication unit 214, and the output unit 216 illustrated in FIG. 2 may be provided as parts of the multifunction device 110 and incorporated in the multifunction device 110, for example. In that case, an authentication request and an authentication result are exchanged via a signal transmission path in the apparatus. In other embodiments, configurations other than the input unit 212, the communication unit 214, and the output unit 216 illustrated in FIG. 2 may be provided as another external device connected to the multifunction peripheral 110. In that case, an authentication request and an authentication result are exchanged between the multifunction peripheral and the external device via an interface to a communication path between the devices.

  The alerting control unit 222 receives a notification that the administrator authentication has been successful. When the alert controller 222 uses the timer 224 for a specific administrator to detect that a predetermined time (for example, one week) has elapsed since the latest authentication time, the alert controller 222 forgets the administrator password. Implement alert notices to alert you. In a specific embodiment, the alert control unit 222 detects that the predetermined time has elapsed since the latest authentication time, the time attached to the notification of the success of the administrator authentication, and the fact that the administrator authentication has been successful. The time acquired from the time measuring unit 224 in response to the notification, or the time obtained by adding a predetermined time (for example, one week) to these times can be recorded. In addition, the alert control unit 222 can set a timer interrupt for the time measuring unit 224. Details of the alerting control unit 222 will be described later with reference to FIG.

  The alerting notification can be performed using one or both of the communication unit 214 and the output unit 216. As an alert notification, an e-mail is sent to the relevant administrator via the communication unit 214, an instant message is sent to the relevant administrator, a short message is sent to the relevant administrator, and the relevant administrator. You can make a call to, and post on the bulletin board. Further, the alerting notification includes screen display on the display device of the operation panel via the output unit 216, sound output to the speaker included in the multifunction device 110, and lighting of a warning light included in the operation panel. Can do. The communication unit 214 and the output unit 216 constitute notification means in one or a plurality of embodiments.

  FIG. 3 is a functional block diagram of the information processing system 200 in the embodiment in which the multifunction peripheral 110 and the device management server 150 cooperate to provide an alert function. In FIG. 3, the information processing system 200 includes a multifunction peripheral 110 and a device management server 150 that are connected via a network 102. In the embodiment shown in FIG. 3, the functional configuration 210 on the multifunction peripheral 110 side including the administrator authentication processing unit 218 and the functional configuration 250 on the device management server 150 side including the alerting control unit 252 are mainly divided. .

  The functional configuration 210 on the MFP 110 side includes an input unit 212, a communication unit 214, an output unit 216, an administrator authentication processing unit 218, an administrator authentication information storage unit 220, and a time measuring unit 224. . 2 and 3, blocks having the same functions on the multifunction peripheral 110 are denoted by the same reference numerals, and detailed description thereof is omitted unless there is a significant difference. The timer unit 224 may not be provided on the multifunction machine 110 side. Further, the administrator authentication information storage unit 220 may be included in the multi-function device 110 or may not be included in the multi-function device 110, as in the embodiment shown in FIG.

  As in the embodiment shown in FIG. 2, the administrator authentication processing unit 218 collates the administrator information passed with the administrator authentication request with the administrator information stored in the administrator authentication information storage unit 220. be able to. Alternatively, the administrator authentication processing unit 218 can inquire the inquiry result from the external authentication server 190 including the passed administrator information, and acquire the inquiry result.

  When the administrator authentication is successful, the administrator authentication processing unit 218 notifies the device management server 150 side that the administrator authentication is successful via the communication unit 214. When the timer unit 224 is provided, time information indicating the time when the administrator authentication is successful may be attached to the notification of the success of the administrator authentication. Further, as in the embodiment shown in FIG. 2, the administrator authentication processing unit 218 notifies the administrator of the result of the verification success or failure as the administrator authentication result via the output unit 216 or the communication unit 214. be able to. For example, the output unit 216 displays the result of successful or unsuccessful collation on the screen. For example, the communication unit 214 transmits the result of successful or unsuccessful verification to the requesting administrator terminal 180 via the network 102.

  On the other hand, the functional configuration 250 on the device management server 150 side includes an alerting control unit 252, a timer unit 254, an output unit 256, and a communication unit 258. The time measuring unit 254 is similar to the embodiment shown in FIG. 2, but can manage the system clock on the device management server 150 side and return the current time in response to the time acquisition request. The timer unit 254 is configured to be able to set a timer interrupt. When the timer interrupt is set, the timer unit 254 can detect the timer interrupt in response to the arrival of the set time.

  The output unit 256 performs screen output to the display device of the device management server 150, sound output to a speaker included in the device management server 150, and lighting control of a lamp included in the device management server 150. The communication unit 258 handles communication performed via the network interface of the device management server 150. In the particularly described embodiment, the communication unit 214 receives a notification of the success of the administrator authentication from the multifunction peripheral 110 via the network 102 and passes it to the alert control unit 252.

  The alerting control unit 252 receives the notification of the success of the administrator authentication from the multifunction device 110 via the communication unit 258. When the alerting control unit 252 detects that a predetermined time has elapsed from the latest authentication time using the timing unit 254, the alerting control unit 252 performs an alerting notice for alerting the administrator password forgetfulness. In a specific embodiment, the alerting control unit 252 determines the time attached to the notification of the success of the administrator authentication from the multifunction peripheral 110 in order to detect that a predetermined time has elapsed from the latest authentication time, the administrator The time acquired from the time measuring unit 254 in response to the notification that the authentication was successful, or the time obtained by adding a predetermined time (for example, one week) to these times can be recorded. The alert control unit 252 can also set a timer interrupt for the time measuring unit 254. Details of the alert control unit 252 will be described later with reference to FIG.

  The above-described alerting notification is implemented using one or both of the communication unit 258 and the output unit 256. As an alert notification, an e-mail is sent to the relevant administrator via the communication unit 258, an instant message is sent to the relevant administrator, a short message is sent to the relevant administrator, and the relevant administrator. You can make a call to, and post on the bulletin board. Further, as the alert notification, the screen display on the display device of the device management server 150 via the output unit 256, the sound output to the speaker provided in the device management server 150, and the lighting control of the warning light by the device management server 150 And so on. Furthermore, as an alert notification, a command is sent to the multi-function device 110 via the communication unit 258, so that the screen display on the display device of the operation panel provided in the multi-function device 110 from the output unit 256 on the multi-function device 110 side For example, sound output to a speaker included in the multifunction device 110 and lighting of a warning light included in the operation panel can be given. The communication unit 258 and the output unit 256 constitute notification means in one or a plurality of embodiments.

  FIG. 3 is a block diagram of an information processing system 200 including one multifunction device 110 and one device management server 150, but is not particularly limited. In another embodiment, an information processing system including a plurality of multifunction peripherals and one device management server can be used, or a plurality of multifunction peripherals and a plurality of device management servers are included. It can also be an information processing system. In this case, each device management server can perform alerting control for each multifunction device including the administrator authentication processing unit or for each group in which a plurality of multifunction devices are combined into one group.

  FIG. 5 is a block diagram illustrating a detailed functional configuration of the alerting control units 222 and 252 constituting the information processing system 200 according to one or more embodiments. Hereinafter, although the alerting control unit 222 will be described as a representative, the alerting control unit 252 may have the same configuration.

  More specifically, the alert control unit 222 shown in FIG. 5 includes an authentication success detection unit 270, a time information recording unit 272, a time information 274, a time comparison unit 276, an interrupt timer setting unit 278, and an alert. And a notification control unit 280.

  The authentication success detection unit 270 receives a notification of the success of the administrator authentication from the administrator authentication processing unit 218 (in the case of FIG. 3, from the multifunction device 110 including the administrator authentication processing unit 218). The success of authentication using the administrator password for 110 is detected. The authentication success detection unit 270 constitutes authentication success detection means according to one or more embodiments.

  As described above, the alert control unit 222 has a function of detecting that a predetermined time has elapsed from the latest authentication time for a specific administrator. In the embodiment to be described, the alerting control unit 222 is roughly divided into (1) recording a time in response to detecting the success of the administrator authentication, and comparing the recorded time with the current time; (2) A timer interrupt is set in response to detecting the success of the administrator authentication, and a predetermined time has elapsed from the latest authentication time for a specific administrator by detecting the occurrence of the timer interrupt. Can be detected. The time information recording unit 272, the time information 274, and the time comparison unit 276 are configured to correspond to detection based on (1) time comparison. On the other hand, the interrupt timer setting unit 278 has a configuration corresponding to (2) detection based on timer interrupt setting.

  Hereinafter, first, (1) a configuration corresponding to detection based on time comparison will be described. The time information recording unit 272 records the time in the time information 274 in response to the authentication success detection unit 270 detecting the success of the administrator authentication. The time information 274 holds the time recorded by the time information recording unit 272. The time comparison unit 276 compares the current time with the time recorded in the time information 274 to detect that a predetermined time has elapsed since the authentication success detection unit 270 detected the latest successful authentication. , The alert notification control unit 280 is called. The time comparison unit 276 can perform time comparison periodically or irregularly at the time of activation and attempt to detect that a predetermined time has elapsed. The time information recording unit 272 and the time comparison unit 276 constitute recording means and time passage detection means in one or more embodiments.

  (1) Configuration corresponding to detection based on time comparison is further recorded: (1a) Configuration corresponding to detection based on comparison between current time and recorded latest authentication time; and (1b) Current time. It can be divided into the configuration corresponding to the detection based on the comparison with the scheduled alerting time.

  In the configuration of (1a), the time information recording unit 272 performs the alert notification described later after a predetermined time (for example, one week) has elapsed from the recorded time. In response to detecting success, the authentication success time is recorded in the time information 274. The authentication success time may be acquired by the administrator authentication processing unit 218 from the timing unit 224 and passed along with a notification of the success of the administrator authentication. It may be the current time acquired from the clock unit 224 (in the case of FIG. 3, the clock unit 254) when the notification of success is received.

  In the configuration of (1a), the time information 274 can hold the latest authentication time recorded by the time information recording unit 272. FIG. 6A illustrates the data structure of time information managed by the information processing system 200 according to the specific embodiment when the configuration of (1a) is adopted. As shown in FIG. 6A, the time information 274 stores the administrator identification information and the latest authentication time when the corresponding administrator last successfully authenticated in association with each other. In this example, the latest authentication time is expressed as a difference in milliseconds from the reference time, with the reference time being January 1, 2000, 00:00:00 on Coordinated Universal Time. The latest authentication time recorded in the time information 274 is updated with the latest time every time the same administrator succeeds in the administrator authentication. FIG. 6C is a diagram illustrating a time expression. In addition to the difference from the reference time, the time may be expressed as a character string such as local standard time or Coordinated Universal Time. The example shown in FIG. 6C shows the difference from the reference time, three Japanese standard time expressions, and one coordinated universal time expression in order from the top.

  The time information 274 can preferably have an alerted flag in association with the administrator identification information. The attention-raised flag is recorded for determining whether or not the attention-notification has been performed so that the attention-raising is not performed many times unnecessarily. Note that the alerted flag need not be stored in association with the latest authentication time, and may be recorded in association with the administrator identification information separately from the latest authentication time.

  In the configuration of (1a), the time comparison unit 276 compares the current authentication time with the latest authentication time by comparing the current time with a time after a predetermined time with the latest authentication time recorded in the time information 274. It is possible to detect that a predetermined time has elapsed since the success of. When the time comparison unit 276 detects that a time obtained by adding a predetermined time to the latest authentication time has arrived, the time comparison unit 276 calls the alert notification control unit 280.

  As described above, the latest authentication time held in the time information 274 is updated every time when the administrator authentication is successful. Therefore, the fact that a predetermined time has passed since the latest authentication succeeds Means that there is no success.

  On the other hand, in the configuration of (1b), the time information recording unit 272 executes the alert notification after the recorded time, and succeeds in the authentication in response to detecting the success of the administrator authentication. Is recorded in the time information 274 after a predetermined time (for example, one week) defined in advance.

  In the configuration of (1b), the time information 274 can hold the scheduled alerting time recorded by the time information recording unit 272. FIG. 6B illustrates a data structure of time information managed by the information processing system 200 according to the specific embodiment when the configuration of (1b) is adopted. As shown in FIG. 6 (B), the time information 274 includes administrator identification information and a reminder scheduled time calculated as a predetermined time after the latest authentication time when the corresponding administrator last successfully authenticated. Store in association with each other. In this case as well, the time information 274 can further include a warning flag in association with the administrator identification information.

  In the configuration of (1b), the time comparison unit 276 can detect that a predetermined time has elapsed by comparing the current time with the scheduled alerting time recorded in the time information 274. When the time comparison unit 276 detects that the scheduled alerting time has arrived, it calls the alerting notification control unit 280.

  Note that the scheduled reminder time stored in the time information 274 is updated every time the administrator authentication is successful. Therefore, the fact that the scheduled reminder time has passed for a specific administrator means that authentication has succeeded during that time. Means not.

  Hereinafter, (2) the configuration corresponding to the detection based on the timer interrupt setting will be described. The interrupt timer setting unit 278 corresponds to a configuration that detects that a predetermined time has elapsed from the latest authentication time by setting a timer interrupt without performing time comparison.

  In response to the fact that the authentication success detection unit 270 has detected the success of the administrator authentication, the interrupt timer setting unit 278 measures the timer 224 (in the case of FIG. 3) to generate a timer interrupt after a predetermined time from the time of successful authentication. Sets a timer in the timer 254). When the set predetermined time is reached, a timer interrupt is generated, and it is detected that a predetermined time has elapsed due to the occurrence of this timer interrupt, and the alert notification control unit 280 is directly called. In this specific embodiment, the time measuring unit 254 constitutes a time passage detection unit in the specific embodiment that detects a timer interruption.

  The alert notification control unit 280 is called in response to the time comparison unit 276 detecting the passage of a predetermined time or in response to the occurrence of a timer interruption, and maintains the storage of the administrator password. Control to implement a reminder notice. Note that the alert notification constitutes a notification of confirmation information regarding authentication information in the present embodiment. The alert notification control unit 280 controls the alert notification to be performed via the communication unit 214 and the output unit 216 (in the case of FIG. 3, the output unit 256 and the communication unit 258). The alert notification control unit 280 constitutes control means in one or a plurality of embodiments.

  FIG. 7 illustrates an alert notification notified by the information processing system 200 according to one or more embodiments. FIG. 7A shows an example of making a call by specifying a partner, and FIG. 7B shows an example of making a call to an unspecified party. In a specific embodiment, an e-mail including a message as shown in FIG. 7 (A) or 7 (B), a screen display, and a bulletin board posting are performed. In the example illustrated in FIG. 7A, a message for calling attention to the administrator password forgetting to a specific administrator “Administrator1” is illustrated. In the example shown in FIG. 7B, a message for calling attention to the possibility that the destination is unspecified and a specific administrator “Administrator 1” has forgotten the administrator password is shown.

  In the preferred embodiment, the alert notification control unit 280 performs the alert notification and then changes the alert flag shown in FIG. 6 (A) and FIG. 6 (B) to the implementation “completed”. Notification implementation can be recorded. In that case, the alert notification control unit 280 can perform the alert notification in response to the passage of the predetermined time being detected only when the notification is not recorded.

  FIG. 8 is a sequence diagram showing exchanges between functional units in the information processing system according to the specific embodiment based on time comparison. In addition, the sequence diagram shown in FIG. 8 illustrates the case of a preferred embodiment using the alerted flag with the configuration of (1) above.

  The process shown in FIG. 8 is started from step S101 in response to the administrator authentication processing unit 218 determining that the authentication by the administrator is successful. In step S <b> 102, the administrator authentication processing unit 218 transmits an authentication success notification to the alerting control unit 222. Although the authentication time may be attached to the authentication success notification, here, it is assumed that only the authentication success notification is notified. Receiving the authentication success notification, the alerting control unit 222 acquires the current time from the time measuring unit 224 in step S103, and updates the time information and the flag in step S104. As described above, (1a) final authentication time or (1b) scheduled alert time is recorded as the time information. The attention aroused flag is set to not yet implemented (“not yet”).

  Thereafter, when time elapses and the timing for performing time comparison comes, the alerting control unit 222 acquires the current time in step S105. In step S106, the alert control unit 222 compares the current time with the recorded time or a time obtained by adding a predetermined time to the recorded time, and for a predetermined time (threshold in FIG. 8) after the last successful authentication. It is determined whether or not the time has elapsed. In the configuration (1a) in which the latest authentication time is recorded, if the difference between the current time and the latest authentication time is equal to or greater than a threshold time, it is determined that a predetermined time has elapsed. In the configuration (1b) in which the scheduled alerting time is recorded, it is determined that the current time has passed if it is after the scheduled alerting time. In step S106 shown in FIG. 8, since a predetermined time or more has not elapsed since the last authentication, no alert is given here.

  When the time further elapses and the timing for performing the next time comparison comes, the alerting control unit 222 acquires the current time in step S107. In step S108, the alert control unit 222 compares the current time with the recorded time or a time obtained by adding a predetermined time to the recorded time, and a predetermined time (threshold time) has elapsed since the last authentication. It is determined whether or not. Here, it is assumed that a predetermined time has passed without succeeding in further authentication, and it is determined in step S108 that a predetermined time or more has passed since the last successful authentication. For this reason, in step S109, the alerting control unit 222 instructs the output unit 216 or the communication unit 214 to execute the alerting notification. In step S <b> 110, the output unit 216 or the communication unit 214 that has received the command performs an alerting notification. In step S111, the alerting control unit 222 changes the alerting flag to “completed” (“completed”), and ends the process.

  Since the alerted flag is changed to “Done” in step S111, even if it is determined that a predetermined time or more has passed since the timing for the next time comparison has come and the last successful authentication, The notice of alert is not implemented. On the other hand, in step S104, when the authentication is successful, the alerted flag is changed to not performed (“not yet”). For this reason, even if an alert is issued once, if it is determined that more than a predetermined time has passed since the last successful authentication after successful authentication, a reminder notification is performed again. The

  FIG. 9 is a flowchart showing alerting control in the information processing system according to the specific embodiment based on time comparison. In addition, the flowchart shown in FIG. 9 illustrates the case of a preferred embodiment using the alerted flag with the configuration of (1) above. Further, the alerting control illustrated in FIG. 9 is a control executed by the multifunction peripheral 110 including the alerting control unit 222. The following description is based on the configuration shown in FIG. 2, but the configuration shown in FIG. 3 is the same except that the device management server 150 executes the configuration.

  The process shown in FIG. 9 is started from step S200 in response to the occurrence of an event serving as a trigger for starting the time comparison determination. The trigger for starting the time comparison determination is not particularly limited, but includes a startup process of the multifunction peripheral 110 (in the case of FIG. 3, the device management server 150), a periodic or irregular timer interruption, and the like. Can be mentioned. If the administrator authentication is successful before the trigger occurs, the latest authentication time is updated. Further, the control shown in FIG. 9 can be performed for each administrator.

  In step S <b> 201, the multifunction peripheral 110 acquires the current time from the time measuring unit 224 by the time comparison unit 276. In step S <b> 202, the multifunction peripheral 110 determines whether or not a notice of alerting has not been executed by referring to the alerted flag using the time comparison unit 276. If it is determined in step S202 that the alert notification has not been performed (YES), the process proceeds to step S203.

  In step S <b> 203, the multi-function device 110 further determines whether or not a predetermined time has elapsed since the latest authentication succeeded by the time comparison unit 276. In the configuration of (1a) above, the latest authentication time is recorded as the time information 274. Therefore, the determination in step S203 depends on whether or not the time difference between the current time and the recorded latest authentication time is equal to or greater than the threshold time. Is done. On the other hand, in the configuration of (1b) above, the scheduled reminder time is recorded as the time information 274. Therefore, the determination in step S203 is performed depending on whether or not the current time is greater than or equal to the recorded scheduled reminder time. .

  If it is determined in step S203 that a predetermined time has elapsed since the latest successful authentication (YES), the process branches to step S204. In step S <b> 204, the multifunction peripheral 110 performs the alert notification using the output unit 216 or the communication unit 214 by the alert notification control unit 280. In step S <b> 205, the multifunction peripheral 110 changes the alerting flag to “already” by the alerting notification control unit 280, and ends the process in step S <b> 206.

  On the other hand, if it is determined in step S202 that alerting has been performed (NO), the process directly branches to step S206, and the process ends in step S206. Also, if it is determined in step S203 that it has not yet elapsed (NO), the process directly branches to step S206, and this process ends in step S206. Thereafter, in response to the occurrence of an event serving as a trigger for starting the time comparison determination again, the process starts from step S200.

  As shown in FIG. 8 and FIG. 9, in the preferred embodiment, the time comparison is performed only when the alert is not performed, so that the alert is not unnecessarily repeated many times.

  In the embodiment described above, the time comparison is performed only when the alert is not executed by providing the alert flag. However, in other embodiments, the alerted flag may be omitted.

  That is, in another embodiment, the time comparison unit 276 performs time comparison in response to the occurrence of an event regardless of whether the alert notification is not performed or has been performed, and the alert notification control unit 280 In response to the detection of the passage of the predetermined time, the alerting notice can be implemented. In this case, after the elapse of the predetermined time is once detected, the alerting notification is repeated regularly or irregularly at each activation process in accordance with the timing of the time comparison. For this reason, when omitting the alert flag, it is preferable to generate the timing of the time comparison by the time comparison unit 276 at an appropriate frequency. Although there is a concern that it will not be noticed or ignored in one alert, the alert can be performed more reliably by repeating the alert.

  In yet another embodiment, in step S205 shown in FIG. 9, instead of setting the alerted flag, in response to performing the alert notification, a new alert time is set after a predetermined time from the implementation. It can also be recorded as a scheduled time. In this case, every time the recorded time arrives, a notice of alerting is performed again. Thus, at the time of performing alerting, the alerting can be repeated at appropriate intervals by updating the time after a predetermined time as a new scheduled alerting time. It should be noted that the predetermined time added to perform the first alerting notification after successful authentication may be the same as or different from the predetermined time added after the alerting is performed in order to alert again. By repeating the alert at appropriate intervals, the alert can be more reliably performed while avoiding the trouble of the administrator.

  FIG. 10 is a sequence diagram showing exchanges between the functional units in the information processing system according to the specific embodiment based on the timer interrupt setting. In addition, the sequence diagram shown in FIG. 10 illustrates the case of the embodiment having the configuration (2).

  The process illustrated in FIG. 10 is started from step S301 in response to the administrator authentication processing unit 218 determining that the authentication by the administrator is successful. In step S <b> 302, the administrator authentication processing unit 218 transmits an authentication success notification to the alerting control unit 222. In step S303, the alerting control unit 222 that has received the authentication success notification sets the timer so that the timer unit 224 generates a timer interrupt after a predetermined time has elapsed from the current time. In the case of a system premised on a plurality of managers, the timer is set for each manager. If a timer for the same manager has already been set, in step S303, the timer may be set after first canceling the timer.

  If the set time is reached, the occurrence of a timer interrupt is detected in step S304. In this case, it means that the administrator authentication has not succeeded between the time when the timer is set and the time when the interruption occurs. In step S305, the alerting control unit 222 instructs the output unit 216 or the communication unit 214 to execute the alerting notification. In step S <b> 306, the output unit 216 or the communication unit 214 that has received the instruction performs an alerting notice and ends the process.

  Note that the embodiment based on the timer interrupt setting shown in FIG. 10 is simpler to implement than the time comparison shown in FIGS. 8 and 9, and the load on the computational resources is small. On the other hand, it is also assumed that the multifunction device 110 is turned off at the time when the timer interrupt should occur. For this reason, it is more preferable to use the time comparison shown in FIGS. 8 and 9 triggered by an activation process or the like.

  Hereinafter, with reference to FIGS. 11 to 13, another embodiment that is the case of (1a) above and can repeat the alert notification at an appropriate interval by recording the alert execution time will be described. To do.

  FIG. 11 illustrates a data structure of time information managed by the information processing system 200 according to another embodiment based on time comparison. As illustrated in FIG. 11, the time information 274 stores the administrator identification information, the latest authentication time, and the alert execution time in association with each other.

  FIG. 12 is a sequence diagram showing exchanges between functional units in the information processing system 200 according to another embodiment based on time comparison. In addition, the sequence diagram shown in FIG. 12 illustrates the case of the embodiment in which the alert execution time is further recorded with the configuration (1a).

  The process shown in FIG. 12 is started from step S401 in response to the administrator authentication processing unit 218 determining that the authentication by the administrator is successful. In step S <b> 402, the administrator authentication processing unit 218 transmits an authentication success notification to the alerting control unit 222. Receiving the authentication success notification, the alerting control unit 222 acquires the current time from the timing unit 224 in step S403, updates the final authentication time in step S404, and updates the alerting execution time to “not yet”.

  Thereafter, when time elapses and the timing for performing the next time comparison comes, the alerting control unit 222 acquires the current time in step S405. In step S406, the alert control unit 222 compares the current time with a time obtained by adding a predetermined time to the recorded latest authentication time, and for a predetermined time after the last authentication (in FIG. 12, from the latest authentication time). It is determined whether or not (threshold time) has elapsed. Here, it is assumed that a predetermined time has passed without further authentication, and it is determined in step S406 that a predetermined time has passed since the last authentication. For this reason, in step S407, the alerting control unit 222 instructs the output unit 216 or the communication unit 214 to execute the alerting notification. In step S <b> 408, the output unit 216 or the communication unit 214 that has received the instruction performs an alerting notice. In step S409, the alerting control unit 222 updates the current time as the alerting execution time, and ends the process.

  When the time elapses thereafter and the timing for performing the next time comparison comes, the alert control unit 222 acquires the current time in step S410, and performs the time comparison in step S411. In the time comparison in step S411, the alert execution time is recorded, and it can be determined that the alert notification has already been performed. For this reason, here, the present time is compared with the time obtained by adding a predetermined time to the recorded alerting execution time, and after the previous alerting notification is performed, the predetermined time (in FIG. It is determined whether or not (threshold time) has elapsed. In step S410 shown in FIG. 12, since a predetermined time or more has not elapsed since the previous notice of alerting, the reminder is not repeated here.

  When further time elapses and the timing for performing the next time comparison comes, the alerting control unit 222 acquires the current time in step S412, and performs time comparison in step S413. In the time comparison in step S413, since the alert execution time is recorded, here, the current time is compared with the time obtained by adding a predetermined time to the recorded alert execution time. Here, it is assumed that a predetermined time has passed without further authentication, and it is determined in step S413 that a predetermined time or more has elapsed since the previous alert notification was performed. For this reason, in step S414, the alerting control unit 222 instructs the output unit 216 or the communication unit 214 to execute the alerting notification. In step S415, the output unit 216 or the communication unit 214 that has received the instruction performs an alerting notice. In step S416, the alerting control unit 222 updates the alerting execution time with the current time, and ends the process.

  FIG. 13 is a flowchart showing alerting control in an information processing system according to another embodiment based on time comparison. In addition, the flowchart shown in FIG. 13 illustrates the case of the embodiment in which the alert execution time is recorded in the configuration (1a). Further, the alerting control illustrated in FIG. 13 is a control executed by the multifunction peripheral 110 including the alerting control unit 222. The following description is based on the configuration shown in FIG. 2, but the configuration shown in FIG. 3 is the same except that the device management server 150 executes the configuration.

  The process shown in FIG. 13 is started from step S500 in response to the occurrence of an event serving as a trigger for starting the time comparison determination. In step S <b> 501, the multifunction peripheral 110 acquires the current time from the time measuring unit 224 by the time comparison unit 276. In step S <b> 502, the multifunction peripheral 110 determines whether or not the alert notification has not been performed, with the time comparison unit 276 referring to the alert execution time.

  If it is determined in step S502 that the alert notification has not been performed (YES), the process proceeds to step S503. In step S <b> 503, the multifunction device 110 further determines whether or not a predetermined time has elapsed since the latest authentication succeeded by the time comparison unit 276. If it is determined in step S503 that a predetermined time has elapsed since the latest successful authentication (YES), the process branches to step S505. In step S <b> 505, the multifunction peripheral 110 performs the alert notification using the output unit 216 or the communication unit 214 by the alert notification control unit 280. In step S506, the multifunction peripheral 110 updates the alert execution time by the alert notification control unit 280, and ends the process in step S507. If it is determined in step S503 that it has not yet elapsed (NO), the process directly branches to step S507, and the process ends in step S507.

  On the other hand, if it is determined in step S502 that alerting has been performed (NO), the process branches to step S504. In step S <b> 504, the multifunction peripheral 110 further determines whether or not a predetermined time has elapsed since the time comparison unit 276 has performed the previous alerting notification. If it is determined in step S504 that a predetermined time has elapsed since the previous alert notification execution (YES), the process branches to step S505. In step S <b> 505, the multifunction peripheral 110 performs the alert notification again by using the alert notification control unit 280 using the output unit 216 or the communication unit 214. In step S506, the multifunction peripheral 110 updates the alert execution time by the alert notification control unit 280, and ends the process in step S507. If it is determined in step S504 that it has not yet elapsed (NO), the process directly branches to step S507, and the process ends in step S507.

  In the embodiment shown in FIG. 11 to FIG. 13, the time at which the alert notification is performed is recorded, and when the alert execution is recorded, it is further confirmed that a predetermined time has passed since the previous alert execution. The notice of alerting will be re-executed. Thereby, the alerting notice can be repeated at appropriate intervals. Note that the threshold time from the latest authentication time and the threshold time from the previous alert execution time may be the same or different.

  Hereinafter, with reference to FIG. 14, another embodiment that is the case of (2) above and can repeat the alert notification at an appropriate interval will be described. FIG. 14 is a sequence diagram showing exchanges between functional units in the information processing system 200 according to another embodiment based on the timer interrupt setting.

  The process illustrated in FIG. 14 is started from step S601 in response to the administrator authentication processing unit 218 determining that the authentication by the administrator is successful. In step S <b> 602, the administrator authentication processing unit 218 transmits an authentication success notification to the alerting control unit 222. In step S603, the alert control unit 222 that has received the authentication success notification sets the timer so that the timer unit 224 generates a timer interrupt after a predetermined time has elapsed from the current time.

  If the set time is reached, the occurrence of a timer interrupt is detected in step S604. In step S605, the alerting control unit 222 instructs the output unit 216 or the communication unit 214 to execute the alerting notification. In step S <b> 606, the output unit 216 or the communication unit 214 that has received the command performs an alerting notification.

  In step S607, the alerting control unit 222 that has instructed execution of the alerting notification sets the timer so that the timer unit 224 generates a timer interrupt after a predetermined time has elapsed from the current time. Thereafter, in response to the set time being reached, occurrence of a timer interrupt is detected, a notice of alerting is performed, and a timer interrupt is set again in the timer unit 224.

  In the embodiment shown in FIG. 14, the timer interrupt is reset in response to the alerting, so that the alerting notification can be repeated at appropriate intervals. Note that the time for generating the timer interrupt from the latest authentication and the time for generating the timer interrupt from the previous alert execution may be the same or different.

  Hereinafter, the hardware configuration of an apparatus constituting the information processing system according to one or more embodiments will be described with reference to FIG.

  FIG. 15A is a diagram illustrating a hardware configuration of the device management server 150 according to one or more embodiments. The device management server 150 is configured as a general-purpose computer or the like. A device management server 150 shown in FIG. 15A includes a single-core or multi-core CPU (Central Processing Unit) 12, a RAM (Random Access Memory) 14, a ROM (Read Only Memory) 16, and an HDD (Hard Disk Drive). ) 18, input device 20, display device 22, and communication interface device 24.

  The CPU 12 performs overall control including processing inside the device management server 150 and alerting control. The RAM 14 provides a work area for the CPU 12. The ROM 16 stores a BIOS (Basic Input / Output System) and the like. The HDD 18 stores an OS for controlling the computer device, a program for realizing a function unit described later, various system information, and various setting information.

  The input device 20 is an input device such as a mouse, a keyboard, or a touch screen panel. The display device 22 is a display device such as a liquid crystal display device or an organic EL (Electroluminescence) display. The input device 20 and the display device 22 provide a user interface for receiving input of various instructions from the operator. The communication interface device 24 is an interface device that connects a device management server 150 such as a NIC (Network Interface Card) to the network 102.

  The device management server 150 according to the specific embodiment reads the program from the ROM 16 and the HDD 18 and develops the program in the work space provided by the RAM 14, so that each unit and each process on the device management server 150 are controlled under the control of the CPU 12. Realize.

  FIG. 15B shows a hardware configuration of the multifunction machine 110 according to the present embodiment. The multi-function device 110 is configured as an information device having an image forming function and an image reading function. 15B includes a single-core or multi-core CPU 52, a ROM 54, a RAM 56 that provides a work area for the CPU 52, an image memory 58, and a communication interface device 60 on a controller board 50. Prepare. Further, an operation panel 62, a scanner 64, and a plotter 66 are connected to the controller board 50.

  The CPU 52 controls operations such as image processing, authentication processing, and alerting control inside the multifunction peripheral 110. The ROM 54 stores a program for causing the multifunction device 110 to function. The RAM 56 provides a work area for the CPU 52 and executes a program stored in the ROM 54 or the HDD. The image memory 58 provides a work area used for image processing in scanning and printing. The communication interface device 60 is an interface device that connects a multifunction device 110 such as a wireless LAN adapter or NIC conforming to a standard such as IEEE 802.11 to the network 102.

  The operation panel 62 is connected to the controller board 50 and includes a display device such as a liquid crystal panel and an input device such as a touch screen panel. The operation panel 62 displays an authentication screen, accepts input of various instructions from the operator, and provides a user interface for performing screen display. In one or a plurality of embodiments, the operation panel 62 may include a warning light or the like for performing a notice of alerting. The scanner 64 executes an image reading process in response to an image reading execution command from the controller board 50. In response to an image formation execution command from the controller board 50, the plotter 66 executes image formation processing based on print data from the host computer and image read data read by the scanner 64.

  The MFP 110 according to the specific embodiment implements the above-described units and processes on the MFP 110 under the control of the CPU 52 by reading a program from the ROM 54, the HDD, and the like and developing the program in a work space provided by the RAM 56. To do. Note that FIG. 15B illustrates the hardware configuration of the multifunction peripheral 110 as an information device, but addition or deletion can be performed as appropriate depending on a specific function included in the information device.

  As described above, according to the above-described embodiment, it is possible to provide an information processing apparatus, an information processing system, and a program capable of notifying timely confirmation information regarding authentication information used when authenticating an information device. it can. In particular, it is possible to prevent the forgetting of the authentication information itself, or to let the management entity recognize itself when the authentication information has been forgotten, before the situation that requires authentication processing occurs. . For this reason, before urgent administrator operation is required, password initialization and resetting can be performed as necessary. In other words, when the authentication to the information device becomes necessary, the administrator has forgotten the administrator password and can not be authenticated, so it is possible to prevent the occurrence of a situation where the administrator is initialized It becomes.

  The functional unit can be realized by a computer-executable program written in a legacy programming language such as an assembler, C, C ++, C #, Java (registered trademark), an object-oriented programming language, or the like. ROM, EEPROM, EPROM , Stored in a device-readable recording medium such as a flash memory, a flexible disk, a CD-ROM, a CD-RW, a DVD-ROM, a DVD-RAM, a DVD-RW, a Blu-ray disc, an SD card, an MO, or through an electric communication line Can be distributed.

  Although the embodiments of the present invention have been described so far, the embodiments of the present invention are not limited to the above-described embodiments, and those skilled in the art may conceive other embodiments, additions, modifications, deletions, and the like. It can be changed within the range that can be done, and any embodiment is included in the scope of the present invention as long as the effects of the present invention are exhibited.

12, 52 ... CPU, 14,56 ... RAM, 16, 54 ... ROM, 18 ... HDD, 20 ... input device, 22 ... display device, 24,60 ... communication interface device, 50 ... controller board, 58 ... image memory, 62 ... Operation panel, 64 ... Scanner, 66 ... Plotter, 100 ... Network environment, 102 ... Network, 110 ... Multifunction device, 150 ... Device management server, 180 ... Administrator terminal, 190 ... Authentication server, 200 ... Information processing system, 210, 250 ... Functional configuration, 212 ... Input unit, 214, 258 ... Communication unit, 216, 256 ... Output unit, 218 ... Administrator authentication processing unit, 220 ... Administrator authentication information storage unit, 222, 252 ... Alerting control , 224... Timekeeping unit, 224, 254... Timekeeping unit, 270... Authentication success detection unit, 272. Time information, 276 ... time comparison section, 278 ... write timer setting unit, 280 ... alert notification control unit

Japanese Patent No. 4690247

Claims (13)

Authentication success detection means for detecting success of authentication using authentication information for the information device;
A time elapse detection means for detecting that a predetermined time has passed since the latest authentication success was detected by the authentication success detection means;
Control means for controlling to perform notification of confirmation information related to the authentication information in response to the passage of the predetermined time being detected by the time passage detection means.   A record for recording the time of successful authentication as a notification of the confirmation information after the predetermined time has elapsed from the recorded time in response to the successful authentication detection by the authentication success detecting means 2. The apparatus according to claim 1, further comprising: means for detecting that the predetermined time has elapsed by comparing the current time with a time after the predetermined time of the recorded time. Information processing device.   In response to the fact that the authentication success detection means has detected the success of the authentication, a recording means for recording the time after the predetermined time from the success of the authentication as performing the notification of the confirmation information after the recorded time. The information processing apparatus according to claim 1, further comprising: the time elapse detection unit that detects that the predetermined time has elapsed by comparing a current time with a recorded time.   In response to the fact that the authentication success detection means has detected the authentication success, the authentication success detection means further includes a setting means for setting a timer to generate a timer interrupt after a predetermined time from the time of the authentication success, the time passage detection means, The information processing apparatus according to claim 1, wherein the information processing apparatus detects that the predetermined time has elapsed due to occurrence of a timer interruption.   The control unit records the execution of notification of confirmation information related to the authentication information, and the case where the execution of notification of confirmation information related to the authentication information is not recorded and the passage of the predetermined time is detected. The information processing apparatus according to claim 2, wherein notification of confirmation information regarding the authentication information is performed when the authentication information is received.   The control means performs the notification of the confirmation information regarding the authentication information when the elapse of the predetermined time is detected regardless of whether the notification of the confirmation information regarding the authentication information is not performed or has been performed. The information processing apparatus according to claim 2, wherein the information processing apparatus is an information processing apparatus.   The control means records the execution time of the notification of confirmation information related to the authentication information, and even if the execution of the notification of confirmation information related to the authentication information is recorded, from the recorded execution time The information processing apparatus according to claim 2, wherein when a predetermined time has elapsed, notification of confirmation information regarding the authentication information is performed again.   In response to performing notification of confirmation information related to the authentication information, the control means records a time updated to re-execute notification of the confirmation information after the recorded time has arrived, The information processing apparatus according to claim 3.   The information processing apparatus according to claim 4, wherein the control unit sets a timer so as to generate a timer interrupt after a predetermined time in response to performing notification of confirmation information related to the authentication information.   The information processing device is a device management device that is included in or connected to the information device, authentication for the information device is administrator authentication, and the latest successful authentication is managed The confirmation information notification is performed for each administrator, and the confirmation information notification is performed by sending an e-mail to the corresponding administrator, sending an instant message to the corresponding administrator, 10. The method according to claim 1, further comprising at least one of transmission of a short message to the manager of the telephone, calling of the telephone to the manager, posting to a bulletin board, screen display, audio output, and lighting of a warning lamp. The information processing apparatus according to claim 1. Computer
Authentication success detection means for detecting the success of authentication using authentication information for information equipment,
A time elapse detecting means for detecting that a predetermined time has elapsed since the latest authentication success was detected by the authentication success detecting means, and a response to the elapse of the predetermined time being detected by the time elapse detecting means. And a program for functioning as control means for performing control information notification related to the authentication information. An information processing method by a computer in which the program according to claim 11 is installed,
A procedure for detecting a successful authentication using authentication information for an information device;
A procedure for detecting that a predetermined time has elapsed since the latest authentication success was detected by the authentication success detection means;
An information processing method comprising: controlling to perform notification of confirmation information related to the authentication information in response to the passage of the predetermined time being detected by the time passage detection unit. An information processing system for managing authentication of information equipment,
An authentication means for executing an authentication process in response to an authentication request using authentication information for the information device;
An authentication success detection means for detecting that the authentication is successful in the authentication process;
A time elapse detecting means for detecting that a predetermined time has elapsed since the latest successful authentication was detected;
Control means for controlling to perform notification of confirmation information related to the authentication information in response to the passage of the predetermined time being detected by the time passage detection means;
A notification management unit that performs notification of confirmation information related to the authentication information, wherein the authentication success detection unit, the time lapse detection unit, and the control unit are the information device or a device management device connected to the information device. Information processing system included.