公开(公告)号：GB2498142A

公开(公告)日：2013-07-03

申请号：GB201306470

申请日：2011-07-01

Applicant: IBM

Inventor： FURUICHI SANEHIRO ,  ARATSU TAKU ,  TADA MASAMI

IPC: G06F21/55 ,  G06F21/10

Abstract: Provided is means for preventing information leakage from a data distribution destination. A data distribution server (20) of the present invention includes: a database (130) which stores access control implementation modules (132 to 138), which implement, upon a client, an access control mechanism which controls access to a resource by a process according to an imparted policy corresponding to the environment of the client and a deployment unit for deployment into a storage area in which distributed data included in a distributed package is protected; a database (120), which stores distributed data (124) and a security policy (122) specified for the distributed data (124); an environment detection unit (144) for detecting the environment of a client (30B) which requests receipt of the distributed data; and a transmission unit (150) for transmitting a distributed package (160) which includes distributed data (162), a security policy (164), and an access control-implemented module (166) corresponding to the environment of the client (30B).

公开(公告)号：GB2492448A

公开(公告)日：2013-01-02

申请号：GB201209077

申请日：2012-05-24

Applicant: IBM

Inventor： FURUICHI SANEHIRO ,  TAKU ARATSU ,  TADA MASAMI

IPC: G06F9/445

Abstract: After installing a program in which means for selectively masking a window screen of a virtual machine and a security function are integrated onto a host OS of a user terminal under the authority of an administrator, a program in which a security function that the administrator wants to be introduced into the virtual machine and means for releasing the mask are integrated is provided for a user. When such a situation is created by the administrator, the user who wants to use a virtualized environment cannot but accept to install the security function the installation of which is desired by the administrator, onto the virtual machine. This is achieved using rendering instruction hooking with a first mode for hooking virtual machine application rendering and a second mode for instructions issued by an application. A common key cryptographic system process the screen rendering instructions. A random key may be used as a secret key transmitted via a named pipe.

公开(公告)号：JP2012068833A

公开(公告)日：2012-04-05

申请号：JP2010212392

申请日：2010-09-22

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： ARATSU TAKU ,  KIRIYAMA HAYATO ,  FURUICHI SANEHIRO ,  TADA MASAMI ,  ICHINOMIYA HIDEO

IPC: G06F21/24

CPC classification number: G06F21/6218 ,  G06F21/604 ,  G06F21/6245 ,  H04L63/105 ,  H04L63/107

Abstract: PROBLEM TO BE SOLVED: To provide a method, a computer program, an apparatus and a system capable of determining a confidential label of document information in real time.SOLUTION: A label determination apparatus 3 includes: an operation detection section 341 for detecting a predetermined operation on document information; a content extraction section 342 for extracting contents contained in the document information in response to the detection of the predetermined operation; a policy information acquisition section 343 for acquiring policy information indicating a relation between the contents and the confidential label from a policy server 1; and a determination section 344 for determining the confidential label of the document information by determining the confidential label corresponding to the contents on the basis of the policy information acquired by the policy information acquisition section 343 in response to the extraction of the contents by the content extraction section 342.

Abstract translation: 要解决的问题：提供能够实时确定文档信息的机密标签的方法，计算机程序，装置和系统。 标签确定装置3包括：检测对文档信息的预定操作的操作检测部分341; 内容提取部分342，用于响应于预定操作的检测来提取包含在文档信息中的内容; 策略信息获取部分343，用于从策略服务器1获取指示内容与机密标签之间关系的策略信息; 以及确定部分344，用于通过基于由策略信息获取部分343获取的策略信息来响应于通过内容提取来提取内容来确定对应于内容的机密标签来确定文档信息的机密标签 版权所有（C）2012，JPO＆INPIT

公开(公告)号：JP2010152790A

公开(公告)日：2010-07-08

申请号：JP2008332201

申请日：2008-12-26

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： TADA MASAMI

IPC: G06F13/00

CPC classification number: G06Q10/107

Abstract: PROBLEM TO BE SOLVED: To provide a device, a method and a computer program for supporting creation of reply mail, which efficiently retrieves past e-mail to be quoted as desired reply mail and reduces the complexity of creation of reply mail even when e-mail is exchanged among a plurality of users.
SOLUTION: When e-mail that has been stored most recently is extracted from history information, and when an instruction indicating that the body part of the e-mail is necessary is accepted, the body part of the e-mail is temporarily stored. When the second latest e-mail is extracted from the history information, and when information on a sender at the header part of the e-mail does not match information on the creator of reply mail, the address of the sender is set to the address of the recipient of the reply mail, the temporarily stored body part is added to the reply mail, and history information on the second latest and preceding e-mail is added.
COPYRIGHT: (C)2010,JPO&INPIT

Abstract translation: 要解决的问题：提供一种用于支持创建回复邮件的设备，方法和计算机程序，其有效地检索作为所需回复邮件被引用的过去电子邮件，并且甚至降低创建回复邮件的复杂性，甚至 当在多个用户之间交换电子邮件时。 解决方案：从历史信息中提取最近存储的电子邮件，当接收到指示电子邮件的正文部分的指示被接受时，电子邮件的正文部分暂时 存储。 当从历史信息中提取第二最新电子邮件时，当电子邮件的标题部分的发送者的信息与回复邮件的创建者的信息不匹配时，发送者的地址被设置为地址 的回复邮件的收件人，临时存储的身体部分被添加到回复邮件，并且添加关于第二最新和先前电子邮件的历史信息。 版权所有（C）2010，JPO＆INPIT

公开(公告)号：JP2010020550A

公开(公告)日：2010-01-28

申请号：JP2008180537

申请日：2008-07-10

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： TADA MASAMI ,  SATO KEIJI

IPC: G06K17/00 ,  B41J29/00 ,  B41J29/38 ,  G06F3/12

CPC classification number: G06Q10/087

Abstract: PROBLEM TO BE SOLVED: To provide a server system, a medium management system, a medium management method and a computer program for managing a printable medium having an electronic tag, which assign a plurality of destinations to a plurality of printed matters. SOLUTION: The server system includes:a first receiver that, when information is printed on a medium, receives an electronic tag ID of an electronic tag in the printed medium and a plurality of recipient IDs specified by a user; a second receiver that, when the printed medium is stored in a repository, receives, from the repository, the electronic tag ID and a repository ID; and an associating unit that, when the electronic tag ID sent from the printing apparatus agrees with the electronic tag ID sent from the repository, associates a recipient ID corresponding to the repository ID sent from the repository, out of the plurality of recipient IDs sent from the printing apparatus, with the agreed electronic tag ID. COPYRIGHT: (C)2010,JPO&INPIT

Abstract translation: 要解决的问题：提供一种服务器系统，介质管理系统，介质管理方法和用于管理具有电子标签的可打印介质的计算机程序，其将多个目的地分配给多个打印物。 服务器系统包括：第一接收器，当在介质上打印信息时，在打印介质中接收电子标签的电子标签ID和由用户指定的多个接收者ID; 第二接收器，当打印介质存储在存储库中时，从存储库接收电子标签ID和存储库ID; 以及关联单元，当从打印设备发送的电子标签ID与从存储库发送的电子标签ID一致时，将从存储库发送的存储库ID对应的接收者ID与从 打印设备，具有商定的电子标签ID。 版权所有（C）2010，JPO＆INPIT

公开(公告)号：JP2009043201A

公开(公告)日：2009-02-26

申请号：JP2007210541

申请日：2007-08-10

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： TAKEUCHI SHIGEKI ,  TOMOTA DAISUKE ,  KAJIMA HIROAKI ,  UENOHARA YUTO ,  TADA MASAMI ,  YAMAUCHI YUKO

IPC: G06F13/00 ,  H04M11/00

CPC classification number: H04L51/04 ,  H04L51/14

Abstract: PROBLEM TO BE SOLVED: To send the transfer destination of a message to a desirable computer or mobile device in an instant messaging system. SOLUTION: This method is provided, for distributing an instant message in a server connected to two or more computers through a network. The two or more computers include a groupware client where a user can uses one and the same user ID to simultaneously log in and which can respectively set statuses that can be different. The method includes a step for authenticating a user of a groupware client that tries to log in by using the user ID, a step for recording the user ID and status information associated with an instant messaging user ID, a step for receiving an instant message to the user ID, and a step for determining to which of the two or more client computers the instant message should be distributed on the basis of the status information. COPYRIGHT: (C)2009,JPO&INPIT

Abstract translation: 要解决的问题：将消息的传送目的地发送到即时消息系统中期望的计算机或移动设备。 解决方案：提供了这种方法，用于通过网络在连接到两台或多台计算机的服务器中分发即时消息。 两台或多台计算机包括一个组件客户端，用户可以使用同一个用户ID同时登录，并且可以分别设置不同的状态。 该方法包括用于认证尝试通过使用用户ID登录的群件客户端的用户的步骤，用于记录与即时消息收发用户ID相关联的用户ID和状态信息的步骤，用于接收即时消息的步骤 所述用户ID以及用于基于所述状态信息来确定所述两个或多个客户端计算机中的哪一个应该分发即时消息的步骤。 版权所有（C）2009，JPO＆INPIT

公开(公告)号：DE102012210887B4

公开(公告)日：2022-12-15

申请号：DE102012210887

申请日：2012-06-26

Applicant: IBM

Inventor： FURUICHI SANEHIRO ,  TADA MASAMI ,  TAKU ARATSU

IPC: G06F21/53 ,  G06F9/44

Abstract: Computervorrichtung, die mit einer virtualisierten Umgebung ausgestattet ist,in der eine virtuelle Maschine in einem Host-Betriebssystem eingerichtet wird, wobei sich ein erster Sicherheitsagent im Host-Betriebssystem befindet und wobei sich ein zweiter Sicherheitsagent in einem Gast-Betriebssystem der virtuellen Maschine befindet, wobeider erste Sicherheitsagent Folgendes aufweist:einen Zugangskontrollabschnitt zum Steuern des Zugriffs durch eine Anwendung im Host-Betriebssystem;einen ersten Darstellungsbefehl-Hook-Abschnitt zum selektiven Hooken eines von einer Anwendung einer virtuellen Maschine ausgegebenen Bildschirmdarstellungsbefehls; undeinen Verschlüsselungsverarbeitungs-Abschnitt zum Ausführen einer Verschlüsselungsverarbeitung des vom ersten Darstellungsbefehl-Hook-Abschnitt gehookten Bildschirmdarstellungsbefehls mit Hilfe eines Verschlüsselungssystems mit allgemeinem Schlüssel; undwobei der zweite Sicherheitsagent Folgendes aufweist:einen Zugangskontrollabschnitt zum Steuern eines Zugriffs durch eine Anwendung im Gast-Betriebssystem;einen zweiten Darstellungsbefehl-Hook-Abschnitt zum selektiven Hooken eines von einer Anwendung im Gast-Betriebssystem ausgegebenen Bildschirmdarstellungsbefehls; undeinen Verschlüsselungsverarbeitungs-Abschnitt zum Ausführen einer Verschlüsselungsverarbeitung des vom zweiten Darstellungsbefehl-Hook-Abschnitt gehookten Bildschirmdarstellungsbefehls mit Hilfe eines Verschlüsselungssystems mit allgemeinem Schlüssel.

公开(公告)号：JP2012133620A

公开(公告)日：2012-07-12

申请号：JP2010285708

申请日：2010-12-22

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： FURUICHI SANEHIRO ,  TADA MASAMI

IPC: G06F21/24 ,  G06F12/00

CPC classification number: G06F21/6209 ,  G06F9/543 ,  G06F2221/2137 ,  G06F2221/2141

Abstract: PROBLEM TO BE SOLVED: To improve security protection of data duplication using a common storage area.SOLUTION: An information processing apparatus 100 includes a copying operation monitor part 134 on which one or more applications 150a to 150c operate, and the copy-source application 150a acquires copy data commanding copying to a general common memory, sets a lifetime interpreted from an operation pattern passed through an input device (112, 114) for the copy data, and saves the copy data in a storage area (142, 144); a display part 138 which displays a paste candidate selected out of one or more copy data saved in the storage area on a display device; a pasting operation monitor part 136 which passes the paste candidate read in out of the storage area to the paste destination application 150c in response to determination operation performed through the input device; and an erasure part 140 which erases data having an expired lifetime and not permitted to remain from the storage area.

Abstract translation: 要解决的问题：使用公共存储区域提高数据复制的安全保护。 解决方案：信息处理设备100包括一个或多个应用程序150a至150c在其上操作的复制操作监视器部分134，并且复制源应用程序150a获取命令复制到一般公用存储器的复制数据，设置终身解释 从通过用于复制数据的输入设备（112,114）的操作模式，并将复制数据保存在存储区域（142,144）中; 显示部件138，显示从保存在存储区域中的一个或多个拷贝数据中选出的粘贴候选者; 粘贴操作监视器部分136，其响应于通过输入设备执行的确定操作，将从存储区域读取的粘贴候选者传递到粘贴目标应用150c; 以及擦除部140，其擦除具有期限寿命并且不允许从存储区保留的数据。 版权所有（C）2012，JPO＆INPIT

公开(公告)号：JP2012068699A

公开(公告)日：2012-04-05

申请号：JP2010210581

申请日：2010-09-21

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： FURUICHI SANEHIRO ,  AKIYAMA KAZUTO ,  TADA MASAMI

IPC: G06F3/12 ,  B41J29/38

CPC classification number: G06Q30/0283 ,  G06F3/1218 ,  G06F3/126 ,  G06F3/1288 ,  Y02D10/1592

Abstract: PROBLEM TO BE SOLVED: To provide a system and a method for providing an optimal printer system considering environmental load, a print server used in the system for providing the optimal printer system considering the environmental load, and a computer program executable in the print server.SOLUTION: A print server acquires, in a predetermined timing, unit price calculation base information including information on at least environmental load for printer systems being operated and calculates a print unit price for each of the printer systems on the basis of the acquired unit price calculation base information. The calculated print unit price is stored in association with identification information identifying the printer systems, and the print unit price and the identification information are transmitted to a client. The client receives the print unit price and the identification information, accepts a selection of one identification information item, and generates and transmits a print job which can be executed in the printer system corresponding to the selection accepted identification information.

Abstract translation: 要解决的问题：为了提供一种考虑环境负荷来提供最佳打印机系统的系统和方法，在系统中使用的用于提供考虑到环境负荷的最佳打印机系统的打印服务器，以及可在该 打印服务器。 解决方案：打印服务器在预定的定时中获取包括关于正在操作的打印机系统的至少环境负荷的信息的单价计算基础信息，并且基于获取的打印机系统计算每个打印机系统的打印单价 单价计算基数信息。 计算的打印单价与识别打印机系统的识别信息相关联地存储，并且将打印单价和识别信息发送给客户端。 客户端接收打印单价和识别信息，接受一个识别信息项目的选择，并生成并发送能够在与选择接受的识别信息对应的打印机系统中执行的打印作业。 版权所有（C）2012，JPO＆INPIT

公开(公告)号：JP2009224948A

公开(公告)日：2009-10-01

申请号：JP2008065439

申请日：2008-03-14

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： KATO SHINGO ,  KOMINE HIROAKI ,  TADA MASAMI

IPC: H04M11/00

Abstract: PROBLEM TO BE SOLVED: To enable a user of a wireless communication device to judge whether access to secret information by the third person should be permitted, in a mobile office quickly according to the situation.
SOLUTION: A wireless communication device 101 having managed security can be connected to another wireless communication resource via a network. The wireless communication device includes: an information acquisition part for acquiring data about another wireless communication resource; an information shielding part which, when acquiring data or in accordance with the content of data, shields information being accessed by the wireless communication device; and a selection part for enabling the user of the wireless communication device to select whether the information should be kept shielded after shielding the information. A method and a computer program for managing security of information being accessed by the wireless communication device are provided.
COPYRIGHT: (C)2010,JPO&INPIT

Abstract translation: 要解决的问题：为了使无线通信设备的用户能够根据情况迅速地在移动办公室中判断是否允许第三人访问秘密信息。 具有管理安全性的无线通信设备101可以经由网络连接到另一无线通信资源。 无线通信装置包括：信息获取部，用于获取关于另一无线通信资源的数据; 信息屏蔽部分，当获取数据或根据数据内容屏蔽由无线通信设备访问的信息时; 以及选择部分，用于使无线通信设备的用户能够在屏蔽信息之后选择信息是否应该被屏蔽。 提供了一种用于管理由无线通信设备访问的信息的安全性的方法和计算机程序。 版权所有（C）2010，JPO＆INPIT