JP2018180640A - INFORMATION PROCESSING TERMINAL, INFORMATION PROCESSING METHOD, AND PROGRAM - Google Patents

Abstract

[Problem] To easily perform authentication processing for access to records stored in a shared database without degrading performance. [Solution] An access key assignment unit 102 assigns to a user a first access key capable of uniquely identifying the user. Also, to a role, a second access key capable of uniquely identifying the role is assigned. Also, to an organization, a third access key capable of uniquely identifying the organization is assigned. Also, a first access key, a second access key, and the third access key are assigned to a record. When a user accesses the database, a determination unit 104 determines whether or not at least one of the first access key, the second access key, and the third access key assigned to the user matches any one of the first access key, the second access key, and the third access key assigned to the record. [Selected Figure] Figure 4

Description

  The present invention relates to an information processing terminal, an information processing method, and a program.

  Conventionally, a technology for performing access control in row units for each user of a database has been disclosed (for example, Patent Document 1).

JP 2005-031862 A

However, in the case where one database is shared in a company, the browsing authority can not be determined for each record in units of users, in units of roles of users, and in units of organizations to which the users belong. This is because a large amount of records are stored in the database, while the organization in the company has a hierarchical structure, and each user has a different role, so the overhead involved in the search becomes large, and the performance Is deteriorated.
For this reason, for example, maintenance of security for access to the database has been achieved by means of dividing the database into organizational units.

  The present invention has been made in view of such circumstances, and facilitates authentication processing of access to records stored in a database shared between different organizations and between different roles without degrading the performance. The purpose is to

In order to achieve the above object, an information processing apparatus according to an aspect of the present invention is
First access key giving means for giving a first access key capable of uniquely identifying each of the one or more users to each of the one or more users;
A second access key granting means for granting a second access key capable of uniquely identifying each of the one or more roles to each of the one or more roles;
Third access key granting means for granting, to each of one or more organizations, a third access key capable of uniquely identifying each of the one or more organizations;
For a predetermined unit of record created by the user, at least the first access key given to the user, the second access key given to the role of the user, and the user A record access key giving means for giving the third access key given to the organization to which
When there is an access requesting disclosure of the record from any one of the one or more users, the first access key given to the user and the role of the user are given At least one of the second access key and the third access key assigned to the organization to which the user belongs, the first access key assigned to the record and the first access key A determination unit that determines whether any one of the first access key is matched;
An authentication unit that authenticates the disclosure of the record to the user who has made the access based on the result of the determination by the determination unit;
Equipped with

Further, the record access key giving means
The first access key, the second access key, and the third access key can be assigned to a predetermined unit of record created by the user based on the user's request.

  An information processing method and program according to an aspect of the present invention correspond to the processing method and program corresponding to the information processing terminal according to the aspect of the present invention described above.

  According to the present invention, authentication processing of access to records stored in databases shared between different organizations and different roles can be easily performed without degrading the performance.

It is a block diagram of the information processing system containing the server concerning one embodiment of the information processing device of the present invention. It is an image figure which shows the specific example of the various access keys which the server of FIG. 1 manages. It is a block diagram which shows the hardware constitutions of the server which comprises the information processing system of FIG. It is a functional block diagram which shows an example of a functional structure of the server of FIG. It is a flowchart explaining the various processes which the server of FIG. 3 performs. It is an image figure which shows the specific example of the authentication process which the server of FIG. 5 performs. It is an image figure which shows the specific example of the authentication process which the server of FIG. 5 performs. It is an image figure which shows the specific example of the authentication process which the server of FIG. 5 performs.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.
FIG. 1 is a block diagram of an information processing system including a server 1 according to an embodiment of the information processing apparatus of the present invention.

In the information processing system shown in FIG. 1, the server 1 and each of the user terminals 2-1 to 2-n (n is an arbitrary integer value of 1 or more) are mutually connected via a predetermined network N such as the Internet. It is configured by being connected to
The server 1 manages a database shared by organizations G1 to Gp (p is an arbitrary integer value of 1 or more) (hereinafter referred to as “shared database”), and records C1 to Cr (stored in the shared database) The information processing apparatus performs management of access from the users U1 to Un with respect to each of one or more arbitrary integer values r).
Each of the user terminals 2-1 to 2-n is an information processing terminal operated by each of n users U1 to Un, and is configured of, for example, a personal computer, a smartphone or the like. In the following, when it is not necessary to distinguish the users U1 to Un individually, these are collectively referred to as "user U". Similarly, when it is not necessary to individually distinguish each of the user terminals 2-1 to 2-n, the organizations G1 to Gp, and the records C1 to Cr, these are collectively referred to as "user terminal 2", "organization G", Call each of "Record C".

Here, the record C is data stored in the shared database. The content of the record C is not particularly limited. Record C contains any data that can be stored in the shared database. For example, various files such as PDF (Portable Document Format) files created by any of the users U1 to Un and stored in the shared database are also included in the record C.
However, one or more records C stored in the shared database naturally include many items for which confidentiality is required. For this reason, the contents of one or more records C stored in the shared database can not be disclosed without limitation to all the users U1 to Un.
Therefore, one or more records C stored in the shared database must be managed in a secure environment and should be accessible only by the user U who has valid browsing authority.
Here, a method may be considered in which all the records C stored in the shared database have an authentication function of determining the viewing authority of the user U. If this method is used, the record C itself performs an authentication process in response to the access from the user U to the record C, so that only the user U who has a valid browsing right can access the record C. .
However, an internal organization such as a company which generally holds a shared database has a complex hierarchical structure including, for example, a department, a department, a staff, a team and the like. In addition, roles R1 to Rm (m is an arbitrary integer of 1 or more) of the user U in the organization also exist in large numbers, for example, a president, a managing director, a department manager, a department manager, a chief manager, a team. For this reason, in the method of providing the authentication function for each record C, the overhead involved in the search becomes large, which causes a problem that the performance is deteriorated.
In order to avoid such problems, there has been no alternative but to maintain security for access to records by a method of dividing a shared database into organizational units. However, if the database is different for each department in a company, records C can not be collectively managed in the company.

Therefore, the server 1 assigns three types of access keys to each record C, and authenticates the user U using the three types of access keys.
For example, it is assumed that the user U1 tries to access to read the record C1.
In this case, if one of the access keys given among the access keys given to the user U1 and one of the access keys given among the access keys given to the record C1 matches, the server 1 will Authorize browsing. The number of access keys assigned to each record C is not limited. Also, the number of access keys that each user U can hold is not limited.

That is, the server 1 assigns each of the first access codes assigned to each of the users U1 to U10 to the record C1 so that all ten users U1 to U10 can view the record C1. You can also
Further, in this case, when all ten users U1 to U10 belong to the organization G1 (for example, the personnel department), the third access code given to the organization G1 is given to the record C1. In this case, since all the users U1 to U10 have the third access code assigned to the organization G1, the record C1 can be browsed.
Also, if all ten roles R of users U1 to U10 are role R1 (for example, a project team developing product A), the second access code given to role R1 is given to record C1. Ru. In this case, since all of the users U1 to U10 have the second access code assigned to the role R1, the record C1 can be browsed.
Furthermore, when the user U1 is a section manager and the subordinates of the user U1 are users U2 to U10, the user U1 holds all of the first access keys given to each of the users U2 to U10. . Therefore, the user U1 can browse all of the records C that can be browsed by each of the users U2 to U10.
With such a configuration, it is possible to easily perform an authentication process for access to the record C stored in a database shared between different organizations and between different roles without degrading the performance.

Here, specific examples of the various access keys configured as described above will be described.
FIG. 2 is an image diagram showing a specific example of various access keys managed by the server 1 of FIG.

As described above, the server 1 gives each of the users U1 to Un at a predetermined timing a first access key that can uniquely identify each of the users U1 to Un.
Specifically, as shown in FIG. 2A, the server 1 stores the first access key in association with the user U. For example, “ABCDF” is linked to the user U1 as the first access key. Further, "STUVWX" is linked to the user U2 as a first access key.
Another specific example of the first access key assigned to the users U1 to Un is as shown in FIG. 2A.

In addition, the server 1 gives each of the roles R1 to Rm a second access key that can uniquely identify each of the roles R1 to Rm at a predetermined timing.
Specifically, as shown in FIG. 2B, the server 1 stores the second access key in association with the role R1. For example, “GHIJKL” is linked to the role R1 as a second access key. Further, "YZABCD" is linked to the role R2 as a second access key.
Note that another specific example of the second access key given to the roles R1 to Rm is as shown in FIG. 2B.

In addition, the server 1 gives each of the organizations G1 to Gp a third access key that can uniquely identify each of the organizations G1 to Gp at a predetermined timing.
Specifically, as shown in FIG. 2C, the server 1 stores the third access key in association with the organization G1. For example, “MNOPQR” is linked to the organization G1 as a third access key. In addition, “EFGHIJ” is linked to the organization G2 as a third access key.
Note that another specific example of the third access key assigned to the tissues G1 to Gp is as shown in FIG. 2C.

Then, the server 1 can access three types of access keys (a first access key, a second access key, and a second access key) that allow each of the records C1 to Cr to be browsed with respect to each of the records C1 to Cr at a predetermined timing. 3) Give each access key).
Specifically, as shown in FIG. 2D, the record C1 is assigned with "ABCDEF", which is the first access key of the user U1, as the first access key. Thereby, the user U1 can browse the record C1.
Further, "GHIJKL", which is the second access key of the role R1, is given to the record C1 as the second access key. Thereby, the one or more users U who are role R1 can browse the record C1.
Further, "MNOPQR" which is a third access key of the organization G1 is given to the record C1 as a third access key. Thereby, one or more users U belonging to the organization G1 can browse the record C1.

Further, “STUVWX” which is a first access key of the user U2 is given to the record C2 as a first access key. Thereby, the user U2 can browse the record C2.
Further, "YZABCD", which is the second access key of the role R2, is assigned to the record C2 as the second access key. Thereby, one or more users U who are role R2 can browse record C2.
Further, "EFGHIJ", which is the third access key of the organization G2, is given to the record C2 as the third access key. Thereby, one or more users U belonging to the organization G3 can browse the record C3.
Another specific example of the first access key, the second access key, and the third access key assigned to the record C is as shown in FIG. 2D.
Here, in the example of FIG. 2D, although only one access key is described for each type for each record C, this is described in a simplified manner for the sake of explanation. A plurality of access keys can be assigned to each type. A specific example of the record C to which a plurality of access keys are assigned for each type will be described later with reference to FIGS.

Next, the hardware configuration of the server 1 of FIG. 1 will be described.
FIG. 3 is a block diagram showing the hardware configuration of the server 1.

  The server 1 includes a central processing unit (CPU) 11, a read only memory (ROM) 12, a random access memory (RAM) 13, a bus 14, an input / output interface 15, an output unit 16, and an input unit 17. , Storage unit 18, communication unit 19, and drive 20.

The CPU 11 executes various processes in accordance with a program stored in the ROM 12 or a program loaded from the storage unit 18 into the RAM 13.
Data and the like necessary for the CPU 11 to execute various processes are also stored in the RAM 13 as appropriate.

  The CPU 11, the ROM 12 and the RAM 13 are connected to one another via a bus 14. An input / output interface 15 is also connected to the bus 14. An output unit 16, an input unit 17, a storage unit 18, a communication unit 19 and a drive 20 are connected to the input / output interface 15.

The output unit 16 includes a display, a speaker, and the like, and outputs various information as an image and a sound.
The input unit 17 includes a keyboard, a mouse, and the like, and inputs various information.

The storage unit 18 is configured by a hard disk, a dynamic random access memory (DRAM), or the like, and stores various data.
The communication unit 19 communicates with other devices (user terminals 2-1 to 2-n in the example of FIG. 1) via the network N including the Internet.

A removable medium 30 made of a magnetic disk, an optical disk, a magneto-optical disk, a semiconductor memory or the like is appropriately attached to the drive 20. The program read from the removable media 30 by the drive 20 is installed in the storage unit 18 as necessary.
The removable media 30 can also store various data stored in the storage unit 18 in the same manner as the storage unit 18.

  Although not shown, in the information processing system of FIG. 1, the user terminal 2 also has the hardware configuration shown in FIG.

Next, details of various processes executed by the server 1 of FIG. 3 will be described.
FIG. 4 is a functional block diagram showing an example of a functional configuration of the server 1 of FIG.
In FIG. 4, the user terminal 2-s (s is an arbitrary integer of 1 or more) is a user who registers the record C in the shared database or tries to update the record C stored in the shared database. Also, the user terminal 2-t (t is an arbitrary integer of 1 or more) is a user who accesses the shared database for disclosure of the record C stored in the shared database.

In the CPU 11 of the server 1, the record reception unit 101, the access key assignment unit 102, the range specification reception unit 103, the determination unit 104, the authentication unit 105, and the record disclosure unit 106 function.
In one area of the storage unit 18, a record DB 401, a first access key DB 402, a second access key DB 403, and a third access key DB 404 are provided.

  The record accepting unit 101 accepts the registration of the record C transmitted from the user terminal 2. Also, the record accepting unit 101 accepts the update of the record C transmitted from the user terminal 2.

The access key assignment unit 102 assigns a first access key that can uniquely identify each of the users U1 to Un to each of the users U1 to Un at a predetermined timing.
Here, the predetermined timing to which the first access key is given refers to, for example, the timing when the user U logs in to the information processing system, the timing when the role of the user U, or the organization to which the user U changes. Say.
Further, the access key assignment unit 102 assigns a second access key capable of uniquely identifying each of the roles R1 to Rm to each of the roles R1 to Rm at a predetermined timing.
Here, the predetermined timing at which the second access key is granted means, for example, the timing at which the role R is newly established.
In addition, the access key assignment unit 102 assigns a third access key that can uniquely identify each of the tissues G1 to Gp to each of the tissues G1 to Gp at a predetermined timing.
The predetermined timing at which the third access key is given means, for example, the timing at which the organization G is newly established.
Also, the access key assignment unit 102 assigns at least the user Us to a predetermined unit of record created when the user Us (s is an arbitrary integer of 1 or more) operates the user terminal 2-s. The first access key, the second access key given to the role R of the user Us, and the third access key given to the organization G to which the user Us belongs are given.

  The range specification receiving unit 103 receives the specification of the range of disclosure of the predetermined unit C of records by the user Us who has created the predetermined unit C of records. Specifically, the range specification receiving unit 103 transmits the first access key and the second access key to be added to the predetermined unit of record C transmitted from the user terminal 2-s operated by the user Us. Accept the third access key.

  The determination unit 104 determines as follows when there is access from the user terminal 2-t operated by the user Ut (t is an arbitrary integer of 1 or more) to request disclosure of the record C of a predetermined unit. I do. That is, among the first access key given to the user Ut, the second access key given to the role R of the user Ut, and the third access key given to the organization G to which the user Ut belongs. It is determined whether at least one matches any one of the first access key, the second access key, and the third access key assigned to the predetermined unit of record C.

The authentication unit 105 authenticates the predetermined unit of record C disclosure for the user U who has made access based on the result of the determination by the determination unit 104.
This makes it possible to easily perform an authentication process for access to the record C stored in a database shared between different organizations and different roles without degrading the performance.

  When the disclosure of the predetermined one unit of record C is authenticated by the authentication unit 105, the record disclosing unit 106 discloses the predetermined one unit of record C to the user U who has made the access.

Next, the flow of various processes performed by the server 1 will be described.
FIG. 5 is a flowchart for explaining various processes performed by the server 1.

First, a series of processes from when the server 1 receives the record C sent for registration or update from the user terminal 2 to when various access keys are given (hereinafter referred to as "access key giving process") Will be explained.
FIG. 5A is a flowchart illustrating the access key assignment process performed by the server 1.

In step S1, the record receiving unit 101 receives the record C transmitted from the user terminal 2. Also, the record accepting unit 101 accepts the update of the record C transmitted from the user terminal 2.
In step S2, the range specification receiving unit 103 receives specification of the range of disclosure of the record C from the user terminal 2 operated by the user U who created the record C for which registration or update was received in step S1. Specifically, the range specification receiving unit 103 transmits the contents of the first access key, the second access key, and the third access key to be assigned to the record C, transmitted from the user terminal 2 operated by the user U. Accept the designation.
In step S 3, with respect to the record C created by the user U, the Ask-Se-key granting unit 102 applies the first access key assigned to the user U and the second access granted to the role of the user U. The key and the third access key given to the organization G to which the user U belongs are given. Also, based on the designation received in step S2, the first access key, the second access key, and the third access key are assigned to the record C. The process ends here.

Next, a series of processes (hereinafter referred to as “authentication process”) from when the server 1 receives an access key owned by the user U operating the user terminal 2 until the request for disclosure of the record C by the user U is authenticated. Will be described.
FIG. 4B is a flowchart illustrating an authentication process performed by the server 1.

In step S11, the determination unit 104 receives an access key held by the user U who requests the disclosure of the predetermined one-unit record C.
In step S12, the determination unit 104 determines whether the one or more access keys accepted in step S11 are the first access key, the second access key, and the third access key assigned to the predetermined record C of one unit. It is determined whether or not any one of the access keys is matched.
At this time, when none of the one or more access keys matches any of the first access key, the second access key, and the third access key attached to the predetermined one unit of record C, In step S12, it is determined that the result is NO, and the process ends.
On the other hand, any one or more of the one or more access keys accepted in step S11 is any one of the first access key, the second access key, and the third access key attached to the predetermined one unit of record C. If they match, it is determined as YES in step S12, and the process proceeds to step S13.
In step S13, the authentication unit 105 authenticates the access to the record C by the user U based on the determination result in step S12. The process ends here.
In this way, authentication processing of access to the record C stored in the shared database can be easily performed without degrading the performance.

Next, a specific example of the authentication process of FIG. 5B performed by the server 1 will be described with reference to FIGS.
FIG. 6 is an image diagram showing a specific example of the authentication process of FIG. 5B performed by the server 1.

On the left side of FIG. 6, the first access key assigned to the user U1 and the second and third access keys held by the user U1 are shown.
For example, the first access key K1 is assigned to the user U1 by the server 1.
Further, since the user U1 belongs to the organization G1, the user U1 holds the organization G1 and the third access keys K2 to K4 assigned to the organizations G11 and G12 respectively.
Further, the user U1 holds the second access keys K8 and K11 assigned to the roles R1 and R2, respectively, since the user U1 has the roles R1 and R2.
Here, the user U1 also has a role of role R3, but as shown in FIG. 6, the second access key is not given to the role R3. This is because the role R3 is a "guest" role. Thus, since it may not be appropriate to assign the second access key to the role R, it is possible to give the option of not granting the second access key in the process of the server 1.

On the right side of FIG. 6, various access keys assigned to the records C1 to C3 are shown.
For example, access keys K4 to K7 are given to records C1 created by the users U2 to U4. At this time, the third access key K4 assigned to the organization G12 matches the third access key K4 assigned to the record C1. Therefore, the user U1 who holds the third access key K4 is authenticated by the server 1 when accessing the record C1.

  Further, for example, access keys K1, K8 to K10 are assigned to the records C2 created by the users U5 and U6. At this time, the first access key K1 assigned to the user U1 matches the first access key K1 assigned to the record C2. Further, the second access key K8 assigned to the role R1 matches the second access key K8 assigned to the record C2. Therefore, the first access key K1 is given, and the user U1 who holds the second access key K8 is authenticated by the server 1 when the record C2 is accessed.

  Further, for example, access keys K12 and K13 are assigned to the record C3 created by the user U7. At this time, the user U1 has neither assigned nor held the access keys (K12 and K13) assigned to the record C3. Therefore, even if the user U1 accesses the record C3, the user U1 can not receive authentication by the server 1.

FIG. 7 is an image diagram showing a specific example of the authentication process of FIG. 5B performed by the server 1.
In FIG. 7, the start point side of the arrow indicates the lower tissue G and the like, and the end point side of the arrow indicates the upper tissue G and the like.

As shown in FIG. 7, the user U1 can obtain the black access key K but can not obtain the white access key K.
This is because, since the user U1 belongs to the organization G5, the user U1 can acquire the third access key provided to each of the organizations G6 to G8 which are subordinate organizations of the organization G5. For example, if the user U1 belongs to the personnel department, then the user U1 can view the record C created by the organization G at the lower part of the personnel department (for example, the personnel department or personnel clerk) It is.

  In addition, the user U1 can acquire the second access key assigned to the roles R5 to R7 belonging to G3 and G1 which are upper organizations of the organization G5 to which the user U1 belongs. For example, if the user U1 belongs to the accountant, the common role R (for example, accounting information management or all departmental profit and loss management) given to the accounting department, which is the upper organization of the accountant, and the entire accounting department. It is possible to browse the records C permitted to be browsed.

FIG. 8 is an image diagram showing a specific example of the authentication process of FIG. 5B performed by the server 1.
In FIG. 8 as well as FIG. 7, the start point side of the arrow indicates the lower tissue G or the like, and the end point side of the arrow indicates the upper tissue G or the like.

  As shown in FIGS. 8A and 8B, the user U1 is given a first access key K18. Further, since the user U1 has the role R4, the user U1 holds the second access key K23 assigned to the role R4. In addition, since the user U1 belongs to the organization G1, the user U1 holds the third access key K6 assigned to the organization G1. Further, since the organization G1 includes the sub-organizations G2 to G9, the user U1 can acquire the third access key given to each of the organizations G2 to G9.

  Further, the first access key K17 is given to the user U2. Further, since the user U2 belongs to the organization G6 in the same manner as the user U1, the user U2 holds the third access key K11 assigned to the organization G6. Further, since the tissue G6 includes the upper tissues G1 and G5, the user U2 is respectively given the common role R1 given to the tissue G1 and the common role R2 given to the tissue G5. The second access keys K24 and K21 can be acquired.

Further, the first access key K16 is given to the user U3. Further, since the user U3 belongs to the organization G10, the user U3 holds the third access key K3 assigned to the organization G10. Further, since the upper organization G11 is present in the organization G10, the user U3 holds the second access key 19 assigned to the common role R3 given to the organization G11.
In this manner, by matching the access key K acquired by the user U with the access key K assigned to the record C, the performance of authentication processing for access to the record C stored in the shared database is degraded. Can be done easily.

  As mentioned above, although one Embodiment of this invention was described, this invention is not limited to the above-mentioned embodiment, A deformation | transformation in the range which can achieve the objective of this invention, improvement, etc. are included in this invention It is.

  For example, the hardware configuration shown in FIG. 3 is merely an example for achieving the object of the present invention, and is not particularly limited.

  Further, the functional block diagram shown in FIG. 4 is merely an example and is not particularly limited. That is, it is sufficient if the information processing terminal is equipped with a function capable of executing the above-described series of processes as a whole, and what functional block is used to realize this function is not particularly limited to the example of FIG. .

Also, the location of the functional block is not limited to that in FIG. 4 and may be arbitrary.
Further, one functional block may be configured by hardware alone, may be configured by software alone, or may be configured by a combination of them.

When the process of each functional block is to be executed by software, a program constituting the software is installed on a computer or the like from a network or a recording medium.
The computer may be a computer incorporated in dedicated hardware. In addition, the computer may be a computer capable of executing various functions by installing various programs, such as a general-purpose smartphone or personal computer other than a server.

  A recording medium including such a program is distributed not only by a removable medium separately from the apparatus main body to provide the program to each user, but is configured not only by removable media but also by each user while being incorporated in the apparatus main body. It comprises the provided recording medium and the like.

  In the present specification, in the step of describing the program to be recorded on the recording medium, the processing performed chronologically according to the order is, of course, parallel or individually not necessarily necessarily chronologically processing. It also includes the processing to be performed.

  In addition, in the present specification, the term "system" refers to an overall device composed of a plurality of devices, a plurality of means, and the like.

  Further, the items provided in each of the first access key DB 402, the second access key DB 403, and the third access key DB 404 in the above-described embodiment are examples, and the items are not limited to the items shown in FIG.

  In the above embodiment, the shared database in the company is described, but the present invention is not limited to this, and the information processing apparatus of the present invention is applied to all types of organizations including a plurality of organizations and roles such as government agencies. It can be done.

In summary, the information processing apparatus to which the present invention is applied only needs to have the following configuration, and various various embodiments can be taken.
That is, the information processing apparatus to which the present invention is applied is
First access key granting means (for example, FIG. 4) for granting a first access key capable of uniquely identifying each of the one or more users to each of one or more users (for example, users U1 to Un in FIG. 1). An access key giving unit 102),
Second access key giving means (for example, the access key giving unit 102 in FIG. 4) for giving a second access key capable of uniquely identifying each of the one or more roles to each of one or more roles (for example, role R). )When,
Third access key giving means (for example, the access key giving unit 102 in FIG. 4) for giving a third access key capable of uniquely specifying each of the one or more organizations to each of one or more organizations (for example, the organization G). )When,
For a predetermined unit of record created by the user, at least the first access key given to the user, the second access key given to the role of the user, and the user A record access key giving unit (for example, the access key giving unit 102 in FIG. 4) for giving the third access key given to the organization to which
When there is an access requesting disclosure of the record from any one of the one or more users, the first access key given to the user and the role of the user are given At least one of the second access key and the third access key assigned to the organization to which the user belongs, the first access key assigned to the record and the first access key A determination unit (for example, the determination unit 104 in FIG. 4) that determines whether or not any one of the first access key is matched;
An authentication unit (for example, an authentication unit 105 in FIG. 4) for authenticating the disclosure of the record to the user who has made the access based on the result of the determination by the determination unit;
Equipped with
Thereby, the authentication process of the access to the record stored in the shared database can be easily performed without degrading the performance.

Further, the record access key giving means
The first access key, the second access key, and the third access key may be assigned to a predetermined unit of record created by the user based on the content specified by the user it can.
Although this increases the number of users who can view the document based on the intention of the user who created the record, the authentication process can be easily performed without degrading the performance.

1 · · · Server 2, 2-1, 2- n · · · User terminal 11 · · · CPU
12 ・ ・ ・ ROM
13 ・ ・ ・ RAM
14 ... bus 15 ... input / output interface 16 ... output section 17 ... input section 18 ... storage section 19 ... communication section 20 ... drive 30 ... removable media 101 · · · -Record reception unit 102 ... Access key assignment unit 103 ... Range designation reception unit 104 ... Determination unit 105 ... Authentication unit 106 ... Record disclosure unit 401 ... Record DB
402 ... 1st access key DB
403 ··· Second access key DB
404 ・ ・ ・ Third access key DB
G: Organization K: Access key N: Network R: Role U: User

Claims (4)

First access key giving means for giving a first access key capable of uniquely identifying each of the one or more users to each of the one or more users;
A second access key granting means for granting a second access key capable of uniquely identifying each of the one or more roles to each of the one or more roles;
Third access key granting means for granting, to each of one or more organizations, a third access key capable of uniquely identifying each of the one or more organizations;
For a predetermined unit of record created by the user, at least the first access key given to the user, the second access key given to the role of the user, and the user A record access key giving means for giving the third access key given to the organization to which
When there is an access requesting disclosure of the record from any one of the one or more users, the first access key given to the user and the role of the user are given At least one of the second access key and the third access key assigned to the organization to which the user belongs, the first access key assigned to the record and the first access key A determination unit that determines whether any one of the first access key is matched;
An authentication unit that authenticates the disclosure of the record to the user who has made the access based on the result of the determination by the determination unit;
An information processing apparatus comprising: The record access key giving means
The first access key, the second access key, and the third access key are assigned to a predetermined unit of record created by the user based on the user's request.
An information processing apparatus according to claim 1. An information processing method executed by an information processing terminal, wherein
A first access key granting step of granting, to each of one or more users, a first access key capable of uniquely identifying each of the one or more users;
A second access key granting step of granting, to each of one or more roles, a second access key that can uniquely identify each of the one or more roles;
A third access key granting step of granting, to each of one or more organizations, a third access key that can uniquely identify each of the one or more organizations;
For a predetermined unit of record created by the user, at least the first access key given to the user, the second access key given to the role of the user, and the user A record access key giving step of giving the third access key given to the organization to which
When there is an access requesting disclosure of the record from any one of the one or more users, the first access key given to the user and the role of the user are given At least one of the second access key and the third access key assigned to the organization to which the user belongs, the first access key assigned to the record and the first access key A determination step of determining whether any one of the first access key is matched;
An authentication step of authenticating the disclosure of the record to the user who has made the access based on the result of the determination in the determination step;
Information processing method including: In a computer that controls an information processing terminal,
A first access key granting step of granting, to each of one or more users, a first access key capable of uniquely identifying each of the one or more users;
A second access key granting step of granting, to each of one or more roles, a second access key that can uniquely identify each of the one or more roles;
A third access key granting step of granting, to each of one or more organizations, a third access key that can uniquely identify each of the one or more organizations;
For a predetermined unit of record created by the user, at least the first access key given to the user, the second access key given to the role of the user, and the user A record access key giving step of giving the third access key given to the organization to which
When there is an access requesting disclosure of the record from any one of the one or more users, the first access key given to the user and the role of the user are given At least one of the second access key and the third access key assigned to the organization to which the user belongs, the first access key assigned to the record and the first access key A determination step of determining whether any one of the first access key is matched;
An authentication step of authenticating the disclosure of the record to the user who has made the access based on the result of the determination in the determination step;
A program that executes control processing including

Images