Information processing device, information processing system, and program

摘要

The present invention provides an information processing device, an information processing system, and a program capable of improving security and convenience. An information processing system (1) includes an IC card (30) which stores an encryption key and a registered password and allows the encryption key to be read when the IC card (30) has authenticated the user as an authorized user based on the registered password, and an information processing device (10) which stores folder information in which the folder name, path, and hash value of the encryption key are associated, when a request to save data in the folder has been issued from the user, decides whether or not an encryption key corresponding to the folder is included in the encryption key read from the IC card (30) based on the folder information, encrypts the request target data using the corresponding encryption key when the information processing device (10) has decided “YES”, and stores the encrypted data.

主权项

1. An information processing device comprising:
encryption information storage means for storing encryption information in a database form that associates a folder, in which at least one file is stored in a hierarchical file structure, with identification information of a first encryption key corresponding to the folder; external read means for reading information stored in a portable information storage medium that stores a second encryption key including at least one of a personal key, a group key, and an element of the user's encryption key; encryption key decision means for deciding, when a save request for a file into the folder has been issued from the user, if the first encryption key corresponding to the folder designated as a save destination for a target file of the save request also corresponds to the second encryption key stored in the portable information storage medium, based on the encryption information stored in the encryption information storage means and the encryption information read by the external read means; data encryption means for encrypting the target file of the save request using the first encryption key corresponding to the folder and transmitted to the information processing device when the encryption key decision means has decided “YES”; error processing means for displaying occurrence of an error when the encryption key decision means has decided “NO”; nonvolatile storage means for storing a file to save; write means for writing the target file encrypted by the data encryption means in the nonvolatile storage means; and encryption key deletion means for deleting the first encryption key corresponding to the folder and transmitted to the information processing device when the information processing device enters a log-off-state.