JP2012133540A - Security control device - Google Patents

Abstract

PROBLEM TO BE SOLVED: To prevent leakage of confidential information even in a room which is not physically partitioned.SOLUTION: A security control device grasps the number of workers present in each monitoring area based on area IDs and worker IDs contained in RF tag response signals and detects monitoring areas with the number of workers which does not correspond to a total number of moving bodies detected by a human-size moving body entrance detection part 10. It also detects monitoring areas in which no worker having an access authority is present by collating the worker IDs with worker IDs recorded in a worker control DB 3. It controls a shutdown control agent 1a of a terminal device 1 installed in each detected monitoring area so as to put confidential information into a state in which it is not displayed.

Description

  The present invention relates to a security management device that prevents leakage of confidential information.

In Patent Document 1 below, signal detection means for detecting a signal transmitted from a portable medium that can be carried by a worker who is a worker (a plurality of signal detection means are installed in a room at a predetermined interval) and In addition, a security system (security management device) is disclosed that includes setting means for setting an area where entry is permitted when a signal is detected by the signal detection means.
Thereby, even if it does not physically partition the room by an architectural method, it is possible to limit the entrance of the room occupant to the area set by the setting means.

The following Patent Document 2 discloses a method that limits the usable range of a user.
That is, when the user who owns the wireless communication device performs a predetermined work using the information processing apparatus, the installation environment identification means reads the work group identification information from the work group ID storage means, and the work group identification By collating the information with the user ID collected by the communication means, it is checked whether there are work group members around.
Then, from the result of the investigation, it is identified whether the installation environment of the information processing apparatus is an environment where the work can be performed safely, and according to the identification result, the use restriction means restricts the usable range of the user. Yes.

Patent Document 3 below discloses a method for easily and reliably performing simultaneous authentication of a plurality of specific persons.
That is, an authentication server that stores authentication condition information for each device ID and usage authority information for each personal ID, and an authentication device that includes a reader that reads the personal ID recorded in the IC tag are communication networks. It is connected.
Then, the IC tag information receiving unit of the authentication device receives a plurality of personal IDs read by the reader at a predetermined cycle, and the authentication condition determining unit of the authentication device is received by the IC tag information receiving unit. A plurality of personal IDs, reception times of the plurality of personal IDs, authentication condition information corresponding to the device ID of the management target acquired from the authentication server, use authority information corresponding to the plurality of personal IDs acquired from the authentication server, Based on the above, simultaneous authentication of a plurality of specific persons is easily and surely performed by determining whether to permit / deny the operation on the management target.

JP 2006-225899 A (paragraph number [0008]) WO2008 / 032405 (paragraph number [0012]) JP 2009-25945 A (paragraph number [0009])

  Since the conventional security management device is configured as described above, it is assumed that all workers carry the RF tag. If the RF tag is carried, a room (that is not physically partitioned) ( It is allowed to enter the confidential information handling area. However, if an operator leaves an RF tag in the vicinity of the confidential information handling area, an operator who is not permitted to browse confidential information can enter the area, and confidential information There was a problem that sometimes leaked.

  The present invention has been made to solve the above-described problems, and an object of the present invention is to provide a security management device capable of preventing leakage of confidential information even in a room that is not physically partitioned.

  The security management device according to the present invention is installed in at least one or more monitoring areas, handles a terminal device that handles confidential information, and an access authority recording unit that records a worker ID for identifying a worker having access authority. An RF tag detection signal transmitting means that is installed in each monitoring area and that includes an RF ID detection signal including an area ID for identifying the monitoring area is within the range of the monitoring area; When the RF tag detection signal transmitted from the RF tag detection signal transmitting means installed in the monitoring area is received, the area ID included in the RF tag detection signal and the worker are changed. An RF tag that transmits an RF tag response signal including a worker ID to be identified, and an RF tag response signal reception that receives an RF tag response signal transmitted from the RF tag. Means, total number detecting means for detecting the total number of human-sized moving bodies existing in each monitoring area, area ID and work included in the RF tag response signal received by the RF tag response signal receiving means Ascertaining the number of workers present in each monitoring area from the worker ID, and detecting a monitoring area where the number of workers does not match the total number of moving bodies detected by the total number detecting means, The terminal ID is provided with a monitoring area detecting unit for comparing the worker ID and the worker ID recorded in the access authority recording unit to detect a monitoring area where no worker having the access authority exists. The confidential information handled by the terminal device installed in the monitoring area detected by the monitoring area detecting means is controlled so as not to be displayed.

  According to the present invention, a terminal device that is installed in at least one monitoring area and handles confidential information, an access authority recording unit that records a worker ID for identifying a worker having access authority, and a monitoring area An RF tag detection signal transmitting means that is installed every time and includes an RF ID detection signal including an area ID for identifying the monitoring area, and an operator enters one of the monitoring areas. Thus, when the RF tag detection signal transmitted from the RF tag detection signal transmission means installed in the monitoring area is received, the work for identifying the area ID and the worker included in the RF tag detection signal An RF tag for transmitting an RF tag response signal including a person ID, an RF tag response signal receiving means for receiving an RF tag response signal transmitted from the RF tag, and From the total number detecting means for detecting the total number of human-sized moving bodies existing in the viewing area, each of the area ID and the worker ID included in the RF tag response signal received by the RF tag response signal receiving means. The number of workers present in the monitoring area is grasped, and a monitoring area in which the number of workers does not match the total number of moving bodies detected by the total number detection means is detected, and the worker ID And a monitoring area detecting means for detecting a monitoring area where there is no worker having an access authority by comparing the worker ID recorded in the access authority recording means, and the terminal control means is a monitoring area detecting means Because it is configured to control so that confidential information handled by the terminal device installed in the monitoring area detected by is not displayed, it is not physically partitioned In the inner, there is an effect that it is possible to prevent leakage of confidential information.

It is a block diagram which shows the confidential management apparatus by Embodiment 1 of this invention. It is explanatory drawing which shows the monitoring area by the security management apparatus of FIG. It is explanatory drawing which shows the record content (A set of worker ID, confidential information access right, and confidential information classification) of worker management DB3. It is explanatory drawing which shows the recording content (A set of area ID and handling confidential information classification) of area management DB4. It is explanatory drawing which shows the RF tag detection signal which RF tag 7 receives, and the RF tag response signal which RF tag 7 transmits. It is a block diagram which shows the security management apparatus by Embodiment 2 of this invention. It is a block diagram which shows the security management apparatus by Embodiment 3 of this invention. It is a block diagram which shows the security management apparatus by Embodiment 4 of this invention.

Embodiment 1 FIG.
FIG. 1 is a block diagram showing a security management device according to Embodiment 1 of the present invention, and FIG. 2 is an explanatory diagram showing a monitoring area by the security management device of FIG.
FIG. 2 shows an example in which there are three monitoring areas that are not physically partitioned, but this is only an example, and there may be four or more monitoring areas, or one monitoring area. Or two places may be sufficient.
1 and 2, a terminal device 1 is a terminal that handles confidential information, and is installed for each monitoring area.
A display device 2 is connected to the terminal device 1, and confidential information is displayed on the display device 2 in a state where security is ensured. The terminal device 1 is equipped with a shutdown control agent 1a, and the terminal device 1 is shifted to a shutdown or standby state by the shutdown control agent 1a under the control of the device operation control unit 11 described later.

The worker management DB 3 is composed of a storage device such as a hard disk or RAM, for example, and records a worker ID for identifying a worker having access authority and a type of confidential information that can be browsed by the worker. The worker management DB 3 constitutes an access authority recording unit.
The area management DB 4 is composed of a storage device such as a hard disk or RAM, and records the type of confidential information handled by each monitoring area. The area management DB 4 constitutes area management means.
The DB information input unit 5 is composed of, for example, a man-machine interface such as a keyboard and a mouse, and performs processing for accepting addition or update of recorded contents in the worker management DB 3 and area management DB 4. The DB information input unit 5 constitutes a receiving unit.

The RF tag detection signal transmission unit 6 includes, for example, a radio wave transmitter (or antenna) that transmits radio waves that can be detected by the RF tag 7, and the RF tag detection signal transmission unit 6 is provided for each monitoring area. An area ID that is installed and identifies the monitoring area is stored therein (the area ID recorded in the area management DB 4 is set).
The RF tag detection signal transmission unit 6 periodically performs processing for transmitting an RF tag detection signal (radio wave) including an area ID. The range in which the RF tag detection signal transmitted from the RF tag detection signal transmission unit 6 reaches is within the range of the monitoring area where the RF tag detection signal transmission unit 6 is installed.
The RF tag detection signal transmitter 6 constitutes an RF tag detection signal transmitter.

The RF tag 7 includes a radio wave transmitter / receiver that receives a radio wave transmitted from the RF tag detection signal transmission unit 6 and transmits a radio wave that can be detected by the RF tag response signal reception unit 8. In the field, a worker ID for identifying a worker carrying the RF tag 7 is recorded.
The RF tag 7 receives an RF tag detection signal transmitted from the RF tag detection signal transmission unit 6 installed in the monitoring area when an operator having the RF tag 7 enters one of the monitoring areas. When received, processing for transmitting an RF tag response signal (radio wave) including the area ID included in the RF tag detection signal and the worker ID recorded therein is performed.

The RF tag response signal receiving unit 8 is composed of a radio wave receiver (or an antenna) that can receive radio waves transmitted from the RF tag 7, and receives the RF tag response signal transmitted from the RF tag 7. Perform the process to receive. The RF tag response signal receiver 8 constitutes an RF tag response signal receiver.
In order to reliably receive an RF tag response signal transmitted from an RF tag 7 existing in a room that is not physically partitioned, one or a plurality of signals are considered in consideration of the reach of radio waves of the RF tag 7 A number of RF tag response signal receivers 8 are installed.

The monitoring device 9 is installed on a ceiling or the like of a monitoring area that is not physically partitioned, and monitors the monitoring area and shows monitoring results (for example, video monitoring information, infrared monitoring information, ultrasonic monitoring information, etc.) Is output to the large human body moving body detection unit 10. When only one monitoring device 9 cannot monitor all monitoring areas, a plurality of monitoring devices 9 are installed.
The large human body moving body detection unit 10 is composed of, for example, a semiconductor integrated circuit on which a CPU is mounted or a one-chip microcomputer, and each monitoring area is analyzed by analyzing monitoring information output from the monitoring device 9. A process of detecting the total number of human-sized moving objects existing in the inside is performed.
Note that the monitoring device 9 and the large human body approach detection unit 10 constitute total number detection means.

The device operation control unit 11 is composed of, for example, a semiconductor integrated circuit mounted with a CPU or a one-chip microcomputer, and is an area included in the RF tag response signal received by the RF tag response signal receiving unit 8. The number of workers existing in each monitoring area is grasped from the ID and worker ID, and the number of workers matches the total number of moving objects detected by the large human body approach detection unit 10. In addition to detecting a monitoring area that does not exist, the worker ID is collated with the worker ID recorded in the worker management DB 3 to perform a process of detecting a monitoring area in which no worker having access authority exists. .
In addition, when the device operation control unit 11 detects a monitoring area that does not match the total number of moving objects or a monitoring area in which an operator having access authority does not exist, the terminal device 1 installed in those monitoring areas. The shutdown control agent 1a is controlled to execute a process for setting the confidential information to a state where it is not displayed on the display device 2.
The device operation control unit 11 constitutes a monitoring area detection unit and a terminal control unit.

FIG. 3 is an explanatory diagram showing the contents recorded in the worker management DB 3 (a set of worker ID, confidential information access right, and confidential information type).
For example, the worker whose worker ID is “AB00012” has an access right as a confidential information manager, and the types of confidential information that can be viewed are “A” and “B”.
The worker whose worker ID is “BD01010” has the access right as the confidential information manager and the confidential information worker, and the type of confidential information that can be viewed from the standpoint of the confidential information manager is “C”, From the standpoint of a confidential information worker, the types of confidential information that can be viewed are “A” and “B”.
Further, it is indicated that the worker whose worker ID is “LX24129” does not have the access right and there is no confidential information that can be browsed.

FIG. 4 is an explanatory diagram showing the recorded contents of the area management DB 4 (a set of area ID and handling confidential information type).
For example, the monitoring area with the area ID “3F001” indicates that there is no confidential information being handled.
The monitoring area with the area ID “3F002” indicates that the type of confidential information handled is “C”.

Next, the operation will be described.
First, at the initial setting of the security management device, for example, the administrator of the security management device operates the DB information input unit 5 to operate the worker ID of the worker who performs work in the monitoring area, the security information access right. And a set of confidential information types are registered in the worker management DB 3.
In addition, the administrator of the security management apparatus registers a set of area ID and handling confidential information type of each monitoring area in the area management DB 4.

For the worker ID of a worker who does not handle confidential information and the worker ID temporarily given to an external visitor, leave the confidential information access right column blank as shown in FIG. And register in the worker management DB 3.
It is assumed that worker IDs temporarily given to visitors from outside are prepared and registered with a sufficient number for the number of visitors.
However, the recorded contents in the worker management DB 3 and the area management DB 4 are not fixed. For example, the administrator of the security management device operates the DB information input unit 5 to add, change, or change the recorded contents. It can be deleted.

At the initial setting of the security management device, the area ID registered in the area management DB 4 is set for the RF tag detection signal transmission unit 6 installed in each monitoring area.
In addition, the worker ID registered in the worker management DB 3 is set for the RF tag 7 possessed by each worker.

When the initial setting of the security management device is completed, the RF tag detection signal transmission unit 6 installed in each monitoring area periodically transmits an RF tag detection signal (radio wave) including an area ID as shown in FIG. To do.
When an operator enters one of the monitoring areas, the RF tag 7 possessed by the operator receives an RF tag detection signal transmitted from the RF tag detection signal transmission unit 6 installed in the monitoring area. Receive.
When the RF tag 7 receives the RF tag detection signal transmitted from the RF tag detection signal transmission unit 6, as shown in FIG. 5, it is recorded inside the area ID included in the RF tag detection signal. An RF tag response signal including the worker ID is transmitted.
The RF tag response signal receiving unit 8 receives the RF tag response signal transmitted from the RF tag 7 and outputs the area ID and worker ID included in the RF tag response signal to the apparatus operation control unit 11.

The monitoring device 9 monitors a monitoring area that is not physically partitioned, and outputs monitoring information indicating the monitoring result to the large human body approach detection unit 10.
For example, when the monitoring device 9 is composed of a monitoring camera, the video image of the monitoring area is output to the large human body approach detection unit 10 as monitoring information.
Further, when the monitoring device 9 is composed of an infrared camera, the infrared image of the monitoring area is output as monitoring information to the large human body approach detection unit 10.
When the monitoring device 9 is composed of an ultrasonic detector, the ultrasonic detection result in the monitoring area is output as monitoring information to the large human body approach detection unit 10.
The monitoring method of the monitoring device 9 may be any method as long as the large human body approach detection unit 10 can determine the total number of human large moving bodies.

When receiving the monitoring information from the monitoring device 9, the large human body approach detection unit 10 analyzes the monitoring information to detect the total number of large human moving bodies present in each monitoring area.
For example, when the video of the monitoring area is received as the monitoring information, the size of the object is within a preset size range among the one or more objects existing in the video, and The total number of moving bodies of human size is detected by selecting objects whose object shapes are close to those set in advance.

The apparatus operation control unit 11 detects a monitoring area in which the display of confidential information is stopped when the human large moving body entry detection unit 10 detects the total number of human large moving objects present in each monitoring area.
That is, the apparatus operation control unit 11 grasps the number of workers existing in each monitoring area from the area ID and worker ID output from the RF tag response signal receiving unit 8.
Then, for each monitoring area, the number of workers present in the monitoring area is compared with the total number of moving bodies detected by the large human body approach detection unit 10, and the two are not matched. Detect an area (a monitoring area that stops displaying confidential information).
In addition, the apparatus operation control unit 11 collates the worker ID output from the RF tag response signal receiving unit 8 with the worker ID recorded in the worker management DB 3, and there is a worker having access authority. Detect a monitoring area that is not displayed (a monitoring area that stops displaying confidential information).

The general detection process of the monitoring area in the apparatus operation control unit 11 is as described above. Specifically, the monitoring area where the display of confidential information is stopped is detected as follows.
The apparatus operation control unit 11 receives the confidential information access right and the confidential information type (hereinafter referred to as “worker information”) corresponding to the worker ID output from the RF tag response signal receiving unit 8 from the worker management DB 3. get.
Further, the handling confidential information type (hereinafter referred to as “area information”) corresponding to the area ID output from the RF tag response signal receiving unit 8 is acquired from the area management DB 4.

After extracting the worker information and the area information, the device operation control unit 11 extracts the confidential information manager in the monitoring area from the worker information and the area information for each type of the confidential information handling monitoring area and the confidential information. The number β, the number γ of confidential information workers, and the number δ of workers or visitors who do not have the confidential information access right are extracted.
Next, the device operation control unit 11 outputs the total number α of mobile bodies in the monitoring area, the number β of confidential information managers, and the number γ of confidential information workers output from the large human body approach detection unit 10. Then, the number of workers or visitors δ who do not have the right to access confidential information is substituted into the following conditional expression to determine whether or not the following conditional expression is satisfied.
(α == β + γ + δ) &&((β> = 1) || (γ> = S)) && (δ == 0)
In the conditional expression, S is a threshold value. In the first embodiment, display of confidential information is permitted when the number of confidential information workers equal to or greater than the threshold value S exists in the confidential information handling monitoring area.
Also, “==” is equal, “> =” is the above, “&&” is a logical product, and “||” is a symbol representing a logical sum.

The device operation control unit 11 controls the shutdown control agent 1a of the terminal device 1 installed in the monitoring area that does not satisfy the conditional expression, and sets the confidential information not to be displayed on the display device 2. .
That is, the device operation control unit 11 outputs a confidential information handling permission signal to the shutdown control agent 1a of the terminal device 1 installed in the monitoring area that satisfies the above conditional expression. The confidential information handling permission signal is not output to the shutdown control agent 1a of the terminal device 1 installed in the monitoring area that does not satisfy the conditional expression.
In the above conditional expression, there is (α == β + γ + δ). Therefore, when there is even one worker who does not have the RF tag 7 in the confidential information handling monitoring area, the monitoring is performed. A confidential information handling permission signal is not output to the shutdown control agent 1a of the terminal device 1 installed in the area.

If the confidential information handling permission signal is not output from the device operation control unit 11, the shutdown control agent 1 a of the terminal device 1 always keeps the terminal device 1 in the shutdown state or the standby state and permits the confidential information handling from the device operation control unit 11. When the signal is output, the terminal device 1 is activated.
This makes it impossible to view confidential information in a monitoring area that does not satisfy the conditional expression.

  As is apparent from the above, according to the first embodiment, the RF tag detection signal transmission range including the area ID that is installed for each monitoring area and identifies the monitoring area is within the range of the monitoring area. When receiving the RF tag detection signal transmitted from the RF tag detection signal transmission unit 6 installed in the monitoring area by the tag detection signal transmission unit 6 and the worker entering one of the monitoring areas, An RF tag 7 that transmits an RF tag response signal including the area ID and worker ID included in the RF tag detection signal, and an RF tag response signal receiver that receives the RF tag response signal transmitted from the RF tag 7 8, the large human body approach detection unit 10 that detects the total number of large human bodies present in each monitoring area, and the RF tag response signal received by the RF tag response signal reception unit 8. The number of workers existing in each monitoring area is grasped from the included area ID and worker ID, and the number of workers detected by the large human body moving detector 10 is detected. A monitoring area that does not match the total number is detected, and the above worker ID is compared with the worker ID recorded in the worker management DB 3 to detect a monitoring area in which no worker having access authority exists. And the apparatus operation control unit 11 controls the shutdown control agent 1a of the terminal apparatus 1 installed in the detected monitoring area so that confidential information is not displayed. As a result, it is possible to prevent leakage of confidential information even in a room that is not physically partitioned.

  Further, according to the first embodiment, when the device operation control unit 11 detects a monitoring area where there is no worker having access authority, the access authority is determined by referring to the recorded contents of the area management DB 4. The type of confidential information handled by the monitoring area where the worker is present is grasped, and the type of the confidential information matches the type of confidential information that can be browsed by the worker recorded in the worker management DB 3. If not, since the monitoring area is authorized as a monitoring area where there is no worker having access authority, even if the type of confidential information handled differs for each monitoring area, The effect which can prevent a leak is produced.

Embodiment 2. FIG.
6 is a block diagram showing a security management apparatus according to Embodiment 2 of the present invention. In the figure, the same reference numerals as those in FIG.
Similar to the device operation control unit 11 in FIG. 1, the device operation control unit 12 performs a process of detecting a monitoring area where display of confidential information is stopped.
However, when the device operation control unit 12 detects a monitoring area in which the display of confidential information is stopped, unlike the device operation control unit 11 in FIG. 1, the display device connected to the terminal device 1 installed in the monitoring area. The power supply control agent 2a of 2 is controlled, and the process which turns off the power supply of the display apparatus 2 is implemented.
The device operation control unit 12 constitutes a monitoring area detection unit and a terminal control unit.

  In the first embodiment, when the device operation control unit 11 detects a monitoring area in which the display of confidential information is stopped, the terminal device is controlled by controlling the shutdown control agent 1a of the terminal device 1 installed in the monitoring area. 1 is shown in which the device operation control unit 12 detects a monitoring area that stops displaying confidential information, but is connected to the terminal device 1 installed in the monitoring area. The power control agent 2a of the display device 2 may be controlled to turn off the power of the display device 2.

  That is, the device operation control unit 12 handles confidential information for the power control agent 2a of the display device 2 connected to the terminal device 1 installed in the monitoring area that satisfies the above conditional expression. Although the permission signal is output, the confidential information handling permission signal is output to the power control agent 2a of the display device 2 connected to the terminal device 1 installed in the monitoring area that does not satisfy the conditional expression. Is not output.

If the confidential information handling permission signal is not output from the device operation control unit 12, the power control agent 2a of the display device 2 connected to the terminal device 1 keeps the power of the display device 2 off, and the device operation control unit 12 When the confidential information handling permission signal is output from the display device 2, the display device 2 is turned on.
This makes it impossible to view confidential information in a monitoring area that does not satisfy the conditional expression.

Embodiment 3 FIG.
7 is a block diagram showing a security management apparatus according to Embodiment 3 of the present invention. In the figure, the same reference numerals as those in FIG.
Similarly to the device operation control unit 11 in FIG. 1, the device operation control unit 13 performs a process of detecting a monitoring area where the display of confidential information is stopped.
However, when the device operation control unit 13 detects a monitoring area in which the display of confidential information is stopped, unlike the device operation control unit 11 in FIG. 1, the display device connected to the terminal device 1 installed in the monitoring area. 2, the warning information display agent 2 b is controlled to display the warning information on the display device 2.
The device operation control unit 13 constitutes a monitoring area detection unit and a terminal control unit.

  In the first embodiment, when the device operation control unit 11 detects a monitoring area in which the display of confidential information is stopped, the terminal device is controlled by controlling the shutdown control agent 1a of the terminal device 1 installed in the monitoring area. 1 is shown in which the device operation control unit 13 detects a monitoring area that stops displaying confidential information, but is connected to the terminal device 1 installed in the monitoring area. The warning information display agent 2b of the display device 2 may be controlled to display the warning information on the display device 2.

  That is, the device operation control unit 13 provides confidential information to the warning information display agent 2b of the display device 2 connected to the terminal device 1 installed in the monitoring area that satisfies the above conditional expression. Although the handling permission signal is output, the warning information display agent 2b of the display device 2 connected to the terminal device 1 installed in the monitoring area that does not satisfy the above conditional expression is handled as confidential information. Do not output a permission signal.

The warning information display agent 2b of the display device 2 connected to the terminal device 1 forcibly displays predetermined warning information on the display device 2 unless a confidential information handling permission signal is output from the device operation control unit 13. Thus, the confidential information is not displayed (or the warning information is displayed on the display device 2 to prompt the interruption of the work), but the confidential information handling permission signal is output from the device operation control unit 13. Then, the confidential information is displayed on the display device 2.
This makes it impossible to view confidential information in a monitoring area that does not satisfy the conditional expression.

Embodiment 4 FIG.
FIG. 8 is a block diagram showing a confidentiality management apparatus according to Embodiment 4 of the present invention. In the figure, the same reference numerals as those in FIG.
Similar to the device operation control unit 11 in FIG. 1, the device operation control unit 14 performs a process of detecting a monitoring area where the display of confidential information is stopped.
However, when the device operation control unit 14 detects a monitoring area in which the display of confidential information is stopped, unlike the device operation control unit 11 in FIG. 1, a display device connected to the terminal device 1 installed in the monitoring area. By controlling the second active polarizing filter control agent 2d, the polarization plane of the active polarizing filter 2c is tilted so that it cannot be viewed from the front of the display device 2.
The device operation control unit 14 constitutes a monitoring area detection unit and a terminal control unit.

The active polarizing filter 2c is a filter that is incorporated in the display device 2 and disables screen viewing from other than a specific direction.
The active polarizing filter control agent 2d performs processing for controlling the polarization direction of the active polarizing filter 2c under the control of the apparatus operation control unit 14.

  In the first embodiment, when the device operation control unit 11 detects a monitoring area in which the display of confidential information is stopped, the terminal device is controlled by controlling the shutdown control agent 1a of the terminal device 1 installed in the monitoring area. 1 is shown in which the device operation control unit 14 detects a monitoring area that stops displaying confidential information, but is connected to the terminal device 1 installed in the monitoring area. By controlling the active polarization filter control agent 2d of the display device 2, the polarization plane of the active polarization filter 2c may be tilted so that it cannot be viewed from the front of the display device 2.

  That is, the device operation control unit 14 does not confidentially control the active polarization filter control agent 2d of the display device 2 connected to the terminal device 1 installed in the monitoring area that satisfies the above conditional expression. Although the information handling permission signal is output, the active polarization filter control agent 2d of the display device 2 connected to the terminal device 1 installed in the monitoring area that does not satisfy the conditional expression is confidential. Do not output the information handling permission signal.

The active polarization filter control agent 2d of the display device 2 connected to the terminal device 1 directs the polarization direction of the active polarization filter 2c to the front when the confidential information handling permission signal is output from the device operation control unit 14. , Allowing workers to browse confidential information.
On the other hand, if the confidential information handling permission signal is not output from the apparatus operation control unit 14, the operator browses the confidential information by tilting the polarization direction of the active polarizing filter 2c to an angle at which viewing from the front is impossible. I can't do it.
This makes it impossible to view confidential information in a monitoring area that does not satisfy the conditional expression.

  In the present invention, within the scope of the invention, any combination of the embodiments, or any modification of any component in each embodiment, or omission of any component in each embodiment is possible. .

  1 terminal device, 1a shutdown control agent, 2 display device, 2a power control agent, 2b warning information display agent, 2c active polarization filter, 2d active polarization filter control agent, 3 operator management DB (access authority recording means), 4 area Management DB (area management means), 5 DB information input section (reception means), 6 RF tag detection signal transmission section (RF tag detection signal transmission means), 7 RF tag, 8 RF tag response signal reception section (RF tag response signal) Receiving means), 9 monitoring device (total number detecting means), 10 human moving body entry detecting unit (total number detecting means), 11, 12, 13, 14 device operation control unit (monitoring area detecting means, terminal control means).

Claims (7)

  Installed at least in one or more monitoring areas, a terminal device for handling confidential information, an access authority recording means for recording a worker ID for identifying a worker having access authority, and installed in each monitoring area, The RF tag detection signal transmission means in which the transmission range of the RF tag detection signal including the area ID for identifying the monitoring area is within the range of the monitoring area, and when the operator enters one of the monitoring areas, the monitoring is performed. When receiving the RF tag detection signal transmitted from the RF tag detection signal transmitting means installed in the area, the RF tag including the area ID included in the RF tag detection signal and the worker ID for identifying the worker An RF tag for transmitting a response signal, an RF tag response signal receiving means for receiving an RF tag response signal transmitted from the RF tag, and a monitoring area Total number detection means for detecting the total number of human-sized mobile objects present, and the area ID and worker ID contained in the RF tag response signal received by the RF tag response signal receiving means in each monitoring area The number of workers present in the area is detected, a monitoring area in which the number of workers is not equal to the total number of moving bodies detected by the total number detection means is detected, and the worker ID and the above The monitoring area detecting means for collating the worker ID recorded in the access authority recording means to detect a monitoring area where no worker having access authority exists, and the monitoring area detected by the monitoring area detecting means A security management device comprising terminal control means for controlling so that confidential information handled by a terminal device installed therein is not displayed. In addition to the worker ID for identifying the worker having access authority, the type of confidential information that can be browsed by the worker is recorded in the access authority recording means,
Provide an area management means that records the type of confidential information handled by each monitoring area,
When the monitoring area detecting means detects a monitoring area where an operator having access authority does not exist, the monitoring area where the worker having access authority exists is referred to by referring to the recorded contents of the area management means. The type of confidential information to be handled is grasped, and if the type of confidential information does not match the type of confidential information that can be browsed by the worker recorded in the access authority recording means, the monitoring area is accessed. The security management device according to claim 1, wherein an authorized worker is authorized as a monitoring area.   3. The security management apparatus according to claim 2, further comprising a receiving unit configured to receive addition or update of recorded contents in the access authority recording unit and the area management unit.   The terminal control means causes the terminal device installed in the monitoring area detected by the monitoring area detection means to shut down or shift to a standby state. The security management device described.   The terminal control means turns off the power supply of the display device connected to the terminal device installed in the monitoring area detected by the monitoring area detecting means. The security management device according to any one of the above.   The terminal control means displays warning information on a display device connected to a terminal device installed in the monitoring area detected by the monitoring area detection means. The security management device according to any one of the above.   The terminal control means tilts the polarization plane of the active polarization filter of the display device connected to the terminal device installed in the monitoring area detected by the monitoring area detection means so that it cannot be viewed from the front of the display device. The security management device according to claim 1, wherein the security management device is configured as follows.

Images