JP2018028875A - Information processing apparatus - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a technology that prevents in advance a power supply of an information processing apparatus from being turned on through an unauthorized operation.SOLUTION: An information processing apparatus comprises: a power supply; operation means for performing an ON operation/OFF operation of the power supply; recording means that records the details of the operation performed by the operation means; control means that performs ON/OFF control of the power supply on the basis of the operation performed by the operation means; and determination means that, on the basis of the ON operation subsequent to the OFF operation of the power supply performed by the operation means, determines whether the details of the operation performed by the operation means is a normal operation based on a predetermined operation condition or an unauthorized operation not based on the predetermined operation condition. When the OFF operation or the ON operation is determined to be the unauthorized operation by the determination means, the information processing apparatus inhibits the ON control of the power supply through the control means.SELECTED DRAWING: Figure 2

Description

  The present invention relates to an information processing apparatus having a power source such as a battery, and relates to a portable information processing apparatus such as a handy terminal.

  In recent years, with respect to data protection and access control in information terminals, awareness of information leakage prevention has increased, and as a countermeasure, information terminal authentication using a security program, a wireless tag, and the like have become widespread.

  Especially for information terminals such as personal computers and mobile phones, a control method that requires the user to authenticate a password or the like prior to the use of the terminal and permits the use of the terminal upon successful authentication is standardly adopted. Yes.

  In the case of a mobile device such as a mobile phone, since the frequency of use is high at the place of going out, authentication is becoming an indispensable function in order to prevent information leakage due to loss or theft of an information terminal.

  Here, Patent Document 1 discloses a method for reliably preventing leakage of memory contents by determining that there is a high possibility that the terminal has been stolen when user-specific identification information is repeatedly mistaken. Has been. Patent Document 2 discloses a technique in which a password input is required prior to use of a terminal device, and a predetermined security process is executed when authentication using a password fails.

JP 2004-295386 A JP 2001-117661 A

  For example, in a conventional authentication method in a personal computer or the like, an authentication request is made unconditionally when the power is turned on (including when returning from a suspend or sleep state). For this reason, if a malicious user repeats authentication operations and exceeds the maximum number of authentications of the information terminal, the operation of the information terminal is prohibited, a password reset is required, or the internal information of the information terminal Automatic deletion may be performed.

  Further, since the power-on operation itself can be executed at any time without requiring authentication, even if a malicious user forcibly terminates the terminal by an unauthorized operation, the authentication process is started as long as the power is turned on.

  That is, in the conventional authentication process, there is no determination as to whether the power-off process or the power-on process itself has been performed in the correct manner. For this reason, even if the power is normally turned on or illegal power off and on, the processing is performed without distinction, and the authentication processing after the power is turned on is executed.

  Furthermore, if the password is obtained, the information terminal is forcibly terminated, and if the power is turned on, the password authentication is canceled and the use of the terminal is permitted.

  In addition, since the power-on button of the information terminal is affected by chattering and noise, it is necessary to implement a countermeasure to prevent the power-on at an unintended timing by mounting a circuit for preventing them by hardware.

  The present invention provides a technique for preventing a power source from being turned on by an unauthorized operation.

  The information processing apparatus according to the present invention includes a power source, an operating unit for performing an ON / OFF operation of the power source, a recording unit for recording operation contents of the operating unit, and the power source based on the operation of the operating unit. Based on the control means for ON / OFF control and the ON operation that follows the power OFF operation by the operation means, whether the operation content of the operation means is a normal operation based on a predetermined operation condition, or the predetermined operation condition Determining means for determining whether the operation is an unauthorized operation that is not based on the control, and when the determination means determines that the OFF operation or the ON operation is the normal operation, the control means controls the power ON On the other hand, if the determination unit determines that the OFF operation or the ON operation is the unauthorized operation, the control unit prohibits the power ON control. The features.

  According to the present invention, it is possible to realize an information processing apparatus that can prevent a power source from being turned on by an unauthorized operation.

The block diagram of the information processing terminal which concerns on Embodiment 1 of this invention. 5 is a flowchart showing the operation of the information processing terminal according to the first embodiment of the present invention. The figure which shows the outline | summary of the power-off and on time recording in the information processing terminal which concerns on Embodiment 1 of this invention. The flowchart which shows operation | movement of the information processing terminal which concerns on Embodiment 2 of this invention. The figure which shows the outline | summary of the power-off and on method recording in the information processing apparatus which concerns on Embodiment 2 of this invention. The flowchart which shows operation | movement of the information processing apparatus which concerns on Embodiment 3 of this invention.

Hereinafter, the present invention will be described in detail based on embodiments.
<Embodiment 1>
FIG. 1 shows a block diagram of an information terminal of the present invention. Specifically, it is a handy terminal such as a payment terminal, a meter-reading terminal, a personal computer, a mobile phone (smart phone), a tablet terminal, and the like, and all information terminals that are turned on and off are targeted.

  Reference numeral 101 denotes a CPU (central processing unit) that executes an unauthorized activation prevention program incorporated in the information apparatus of the present invention.

  Reference numeral 102 denotes a RAM used as a work area when executing the unauthorized start prevention program of the present invention.

  Reference numeral 103 denotes an external storage area in which an unauthorized activation prevention program, an OS, an application program, and data used in the information terminal of the present invention are stored.

  The external storage area may be of any type as long as it is a non-volatile storage medium such as a hard disk drive (HDD) or flash ROM.

  Reference numeral 104 denotes an LCDC (liquid crystal display controller) for controlling the LCD panel 106 used as a display device of the information terminal of the present invention. When the display source data to be displayed on the LCD panel 106 is stored in the display memory 105 by the CPU 101. Display source data to be displayed on the LCD panel 106 is generated.

  Reference numeral 110 denotes a system bus, and data access between the CPU 101 and each peripheral module is performed via the system bus 110.

  An I / O control unit 109 controls input devices such as a touch panel 108 and a keyboard 107. The input device 108 is an example of an operation unit that turns on or off the power supply 114. Reference numeral 111 denotes a communication control unit, which has a communication function on a public line via a communication via a WLAN (Wireless Local Area Network) controller or a modem.

  111 enables the information terminal to perform data communication with other computers via the network. Reference numeral 112 denotes an RTC (real time clock), which records date and time information.

  Reference numeral 113 denotes a power controller that controls power-off, on, power-saving setting, charging, and the like of the information terminal based on the operation of the input device 108. Reference numeral 114 denotes a power supply that supplies power to the information terminal. The above is the description of the block diagram of the information terminal in the present invention.

  The actual processing procedure will be described in detail with reference to the flowchart of FIG. In the information terminal according to the present invention, the power-off process is started by pressing the off button of the information terminal (actually, the power-off button displayed on the touch panel as the input device 108) (step S1).

  In addition to pressing the off button, the power-off process is an automatic power-off associated with a no-operation state for a certain period of time using the power management function, or the opening / closing detection of a terminal using a hall sensor, etc., that is used in folding mobile phones. There are several methods such as powering off.

  During the power-off process, the time when the information terminal is turned off is recorded by the unauthorized activation prevention program (step S2), and the state shifts to the power-off state (step S3). This power-off time is recorded and managed as log information.

  Recording of power-off and power-on time, which will be described later, can be performed by any recording method, such as an electronic file or an OS setting information management area, as long as the unauthorized activation prevention program can be identified. FIG. 3 shows an outline of power-off and on-time recording by the unauthorized activation prevention program.

  From the power-off state, the power-on process is started by pressing the power-on button (power-on operation) displayed on the touch panel as the input device 108 (step S4). In addition to pressing the power-on button, the power-on process can be started by starting the power-on process for a specified time using the alarm function, or by detecting the opening / closing of the terminal using a hall sensor, etc. used in folding mobile phones. There are several ways to turn it on.

  During the power-on process, the time when the information terminal is turned on is acquired by the unauthorized boot prevention program (step S5). For example, the CPU 101 turns the power on from the power-off time and the on-time. The time required until is calculated and compared with a reference value (an example of determination conditions) (step S6). In other words, the CPU 101 determines that the operation content of the input device 108 is based on a predetermined operation condition (power supply in this embodiment) based on the ON operation that follows the power supply 114 OFF operation by the input device 108 (touch panel in this embodiment). The time required from turning off to turning on the power is within the reference value) or an illegal operation not based on a predetermined operating condition (in this embodiment, the time required from turning off to turning on the power is outside the reference value) It serves as a determination means for determining whether the operation is a certain operation).

  For example, as a result of comparing (determining) whether or not the CPU 101 satisfies the reference value, if the time interval from power-off to on is outside the reference value, it is determined that the on-timing is not appropriate, that is, an unauthorized operation has been performed, The operation of the information terminal is forcibly stopped and the power is turned off (step S7). When the time interval is within the reference value, it is determined that the correct power-on process has been executed, that is, the normal operation has been performed, the subsequent operation is permitted, and the process such as the authentication process is subsequently performed.

  In the information terminal, since it takes a certain time to turn off each hardware module mounted on the terminal during the power-off process, the power-on button is masked (invalidated) during this time, and the power-on process is not executed. Has been.

  Further, as described above, measures are taken in hardware so that the power-on process is not started due to the effects of chattering and noise. In the present invention, based on the time (reference value) from power-off to power-on, the function previously performed by hardware is replaced by software to prevent the start of power-on processing at an unintended timing, and at an improper timing. If it is determined that the information terminal is activated, the information terminal is forcibly turned off.

<Embodiment 2>
In the present embodiment, an example will be described in which the power-off is normally performed by the unauthorized activation prevention program without using the power-off and on times.

  Specifically, in the present embodiment, the configuration of the information terminal is the same as that of the first embodiment, but it is characterized by determining whether to prevent unauthorized activation by inspecting whether the power-off process is normally performed. It is.

  A detailed description of this embodiment will be described in detail with reference to the flowchart of FIG. In the information terminal according to the present invention, the power-off process is started by pressing the off button of the information terminal (step S1).

  In addition to pressing the off button, the power-off process is an automatic power-off associated with a no-operation state for a certain period of time using the power management function, or the opening / closing detection of a terminal using a hall sensor, etc., that is used in folding mobile phones. There are several methods such as powering off.

  In the power-off process, the method of turning off the information terminal is recorded by the unauthorized activation prevention program (step S2), and the process proceeds to the power-off state (step S3).

  The recording method of the power-off method is not limited as long as it can be identified by the unauthorized activation prevention program, such as an electronic file or an OS setting information management area.

  FIG. 5 shows an outline of the recording of the power-off method by the unauthorized activation prevention program. The unauthorized activation prevention program manages all normal power-off methods of the information terminal, and records which method the power is turned off.

  In addition to a normal power-off operation, an illegal power-off operation may be performed due to battery removal, information terminal disassembly, cracking, or the like. In such an unauthorized operation, the correct power-off process of the information terminal managed by the unauthorized activation prevention program is not executed, and therefore the unauthorized activation prevention program does not record the power-off method.

  From the power off state, the power on process is started by pressing the power on button (step S4). In addition to pressing the power-on button, the power-on process can be started by starting the power-on process for a specified time using the alarm function, or by detecting the opening / closing of the terminal using a hall sensor, etc. used in folding mobile phones. There are several ways to turn it on.

  During the power-on process, the unauthorized activation prevention program acquires a method in which the information terminal is powered off (step S5), and checks whether the power-off method is normal (step S6).

  As a result of the inspection, if the power-off method is not a normal power-off method, it is determined that the power-off has been executed by an unauthorized method, the operation of the information terminal is forcibly stopped, and the power is turned off (step S7). If the power-off method is normal, it is determined that the correct power-off process has been executed, the subsequent operation is permitted, and then conventional processing such as authentication processing is performed.

<Embodiment 3>
In this embodiment, even if execution of the information terminal unauthorized activation prevention program is hindered, the hardware detects whether the power-off or power-on operation has been performed correctly so that security can be ensured. An example will be described.

  Specifically, the configuration of the information terminal of the present embodiment is the same as that of the first embodiment. However, it is illegal to check whether the power-off process or the power-on process has been normally performed by using hardware. It is characterized by determining activation prevention.

  Here, the detailed description of the present embodiment will be described in detail with reference to the flowchart of FIG. In the information terminal according to the present invention, the power-off process is started by pressing the off button of the information terminal (step S1).

  In addition to pressing the off button, the power-off process is an automatic power-off associated with a no-operation state for a certain period of time using the power management function, or the opening / closing detection of a terminal using a hall sensor, etc., that is used in folding mobile phones. There are several methods such as powering off.

  In the power-off process of this embodiment, it is assumed that a power saving mode such as sleep or suspend is used.

  The power saving mode is a function for setting the information terminal in a standby state with a power saving setting in order to perform the next startup at high speed. In this case, when the power is turned off, hardware, OS, and applications that do not require operation stop operating, but the power supply controller is supplied with power, so that the operation can be continued.

  During the power off process, the power controller records the power off method in a register or the like in the power controller by hardware control (step S2), and shifts to the power off state (step S3).

  The recording of the power-off method is not limited as long as it is a method that can be recorded by hardware, such as register and signal line state setting.

  The power controller detects all normal power-off methods of the information terminal and records which method the power is turned off.

  In addition to a normal power-off operation, an illegal power-off operation may be performed due to battery removal, information terminal disassembly, cracking, or the like.

  In such an unauthorized operation, the power supply controller does not detect the correct power-off process of the information terminal, and therefore does not record the power-off method.

  From the power off state, the power on process is started by pressing the power on button (step S4). In addition to pressing the power-on button, the power-on process can be started by starting the power-on process for a specified time using the alarm function, or by detecting the opening / closing of the terminal using a hall sensor, etc. used in folding mobile phones. There are several ways to turn it on.

  In the power-on process, the power controller acquires the information terminal power-off method (step S5), and checks whether the power-off method is normal (step S6).

  As a result of the inspection, if the power-off method is not a normal power-off method, it is determined that the power-off has been executed by an unauthorized method, the operation of the information terminal is forcibly stopped, and the power is turned off (step S7).

  If the power-off method is normal, it is determined that the correct power-off process has been executed, the subsequent operation is permitted, and the process such as the authentication process is subsequently performed.

  In addition, since the start of normal power-on is performed by the power controller, the power controller can identify and record the on-operation method in the same manner as when the power is off.

  In this case, since it is possible to check that both power off and on are correct methods, unauthorized activation can be prevented with higher security.

  As mentioned above, although this invention was demonstrated in detail based on Embodiment 1-3, this invention is not limited to each Embodiment 1-3 mentioned above. For example, the above-described three embodiments can be implemented by combining any two or all of them, and by using them in combination, the security strength can be increased.

  In the present invention, the information processing terminal has means for determining whether the information processing terminal is turned off or turned on correctly. When the information processing terminal is turned on by an unauthorized operation, the on process is invalidated. It is possible to provide an unauthorized activation prevention program capable of prohibiting the above operation and an information terminal that executes the unauthorized activation prevention program.

  By using such an information processing terminal of the present invention, when an unauthorized power operation is performed, subsequent operations are prohibited, so that data inside the information terminal can be protected from malicious users.

  In addition, for example, if it is determined whether the power is turned off and turned on correctly prior to password authentication or the like, unnecessary password authentication is not performed, and internal authentication is performed due to repeated password authentication failures. Occurrence of automatic data erasure can be avoided. Furthermore, since the unauthorized activation prevention method of the present invention can be used in combination with conventional authentication, the security strength higher than the conventional level is ensured.

  In addition, according to the present invention, the hardware function that has been used to prevent erroneous detection of the power-on button so far can be replaced, so that the development cost of the information terminal can be suppressed.

  In addition, by setting the present invention as follows, an information processing apparatus that can prevent the power from being turned on by an unauthorized operation can be obtained.

One aspect of the present invention includes a power source, an operating unit for performing an ON / OFF operation of the power source, a recording unit for recording an operation content of the operating unit, and turning on the power source based on an operation of the operating unit. Based on the control means for performing the / OFF control and the ON operation following the power OFF operation by the operation means, the operation content of the operation means is a normal operation based on a predetermined operation condition or the predetermined operation condition is satisfied. Determining means for determining whether the operation is an unauthorized operation that is not based, and when the determining means determines that the OFF operation or the ON operation is the normal operation, the control means performs ON control of the power supply. On the other hand, if the determination means determines that the OFF operation or the ON operation is the unauthorized operation, the control means prohibits the power ON control. And information processing terminals that.
According to such an aspect of the present invention, the determination whether or not the power OFF operation or the ON operation is an unauthorized operation is performed based on the power ON operation, thereby performing a series of operation processes from power OFF to power ON. Therefore, it is possible to prevent the power from being turned on by an unauthorized operation.

  For example, in one aspect of the present invention, the operation determination is performed when the power ON operation is performed. At that time, the content of either the ON operation or the OFF operation immediately before is determined. Although it may be determined whether one of the operations is an unauthorized operation, both the OFF operation and the ON operation may be determined. In this case, for example, if the OFF operation is a normal operation that satisfies a predetermined operation condition, and the ON operation does not satisfy the predetermined operation and is an illegal operation, it is finally determined as an illegal operation and power ON control is prohibited. You may make it do. If the OFF operation is an unauthorized operation and the ON operation is a normal operation, the final determination may be made as a normal operation and the power ON control may be permitted.

In the present invention, the determination means performs the operation determination based on whether or not the predetermined operation content is within a predetermined time from the drive power OFF operation to the ON operation. May be a feature.
According to this aspect of the present invention, it is possible to prevent the power from being turned on unnecessarily including an erroneous operation by providing a criterion for determining an unauthorized operation through time management.

101 CPU
102 RAM
103 External storage area 104 LCDC (liquid crystal display controller)
105 Display Memory 106 LCD Panel 107 Keyboard 108 Touch Panel 109 I / O Control Unit 110 System Bus 111 Communication Control Unit 112 RTC (Real Time Clock)
113 Power Controller 114 Power Supply 301 Example of Data Structure of Power Off / On Time Recording 302 Power Off Time 303 Power On Time 501 Example of Data Structure of Power Off Method Recording 502 Power Off Method List 503 Power Off Method

Claims (2)

Power supply,
Operating means for performing ON / OFF operation of the power supply;
Recording means for recording the operation content of the operation means;
Control means for ON / OFF control of the power supply based on the operation of the operation means;
Whether the operation content of the operation means is a normal operation based on a predetermined operation condition or an unauthorized operation not based on the predetermined operation condition, based on an ON operation that continues after the power OFF operation by the operation means Determination means for performing determination, and
When the determination means determines that the OFF operation or the ON operation is the normal operation, the control means performs the power ON control, while the determination means determines that the OFF operation or the ON operation is the unauthorized operation. If it is determined that the power is on, the control means prohibits the power ON control.   2. The determination unit according to claim 1, wherein as the predetermined operation content, the operation determination is performed based on whether or not a time from an OFF operation of the drive power source to an ON operation is within a predetermined time. Information processing terminal described in 1.

Images