| 发明名称 |
DEVICE AND MANAGEMENT MODULE |
| 摘要 |
A device holding control target data includes a management unit configured to manage the present life cycle state of the device; an authentication unit configured to authenticate a user and indicate a role of the user; a control unit configured to acquire a present life cycle state when a request to access the control target data is received, authenticate the user and acquire the role, acquire access possibility information based on the present life cycle state and the role, and control the access based on the access possibility information; and a prohibiting unit configured to compare a position/time allowed in operation plan information with a present position/time, and prohibit the access when these information items do not match, based on the operation plan information in which life cycle states are associated with positions and times that are allowed for state transitions of the life cycle states. |
| 申请公布号 |
US2016078235(A1) |
申请公布日期 |
2016.03.17 |
| 申请号 |
US201514844242 |
申请日期 |
2015.09.03 |
| 申请人 |
MORITA Naoya;NAMIKI Hitoshi |
发明人 |
MORITA Naoya;NAMIKI Hitoshi |
| 分类号 |
G06F21/60;G06F21/31 |
主分类号 |
G06F21/60 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A device holding control target data inside the device, the device comprising:
a state management unit configured to manage a life cycle state that the device is presently in; a user authentication unit configured to receive authentication data, authenticate a user, and give a response indicating a role of the user; an access control unit configured to
acquire a present life cycle state from the state management unit when an access request to access the control target data is received,authenticate the user by the user authentication unit and acquire the role of the authenticated user,acquire access possibility information based on the present life cycle state and the role of the user who has made the access request, the access possibility information being acquired from a state access control policy associated with the control target data, andcontrol access to the control target data based on the access possibility information; and an access prohibiting unit configured to perform a process of comparing at least one of a position and a time allowed in operation plan information with at least one of a present position and a present time at a predetermined timing, and prohibiting access to the control target data when at least one of the position and the time allowed in the operation plan information does not match at least one of the present position and the present time, based on the operation plan information in which life cycle states are associated with at least one of positions and times that are allowed for state transitions of the life cycle states. |
| 地址 |
Kanagawa JP |
