JP2007201883A - Security ensuring method and device for mobile terminal - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To appropriately ensure security in a security ensuring method for a mobile terminal to which an address holding part is attachably/detachably attached and a device therefor. <P>SOLUTION: The security ensuring method has: a request input step of inputting a request of security ensuring processing in which a set of terminal identification information (SN1) of the mobile terminal and an address (TN1) held by the address holding part attached to the mobile terminal is specified; a first determination step of determining whether or not the specified set of the terminal identification information (SN1) and the address (TN1) actually exists; and a security ensuring step of. when the specified set of the terminal identification information (SN1) and the address (TN1) actually exists, performing the security ensuring processing to the mobile terminal (a) in which the set of the terminal identification information (SN1) and the address (TN1) actually exists. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to a mobile terminal safety ensuring method and a mobile terminal safety ensuring apparatus. Here, ensuring security is, for example, disabling at least a part of functions of the mobile terminal or deleting at least a part of data of the mobile terminal.

  While mobile phones are rich in portability, they are likely to be lost. Once a mobile phone is lost, it may be used without permission by a third party. In addition, various data (for example, address book data, e-mail data, image data, etc.) stored in the memory built into the lost mobile phone or in the installed memory may be displayed by a third party without permission. May be used.

Therefore, the subscriber who has lost the mobile phone must take measures to ensure the safety of the lost mobile phone by using another mobile phone registered in advance and using the mobile operator's system. There is a technique that can be used (for example, see Non-Patent Document 1).
"Security function, remote lock" [online], search on January 11, 2006, Internet <URL: https://www.nttdocomo.co.jp/service/function/security/index.html>

  By the way, USIM (Subscriber Identity Module) cards are used in third-generation mobile phones such as W-CDMA, which have become widespread in recent years. The USIM card is detachably attached to the main body of the mobile phone. The USIM card stores at least a telephone number unique to the subscriber. Therefore, by removing the USIM card that has been attached to a certain mobile phone and attaching it to another mobile phone, it becomes possible to use the other mobile phone with the same telephone number. .

  Considering the possibility of attaching / detaching the USIM card as described above, various security problems occur when the security processing is simply performed on the telephone number stored in the USIM card. It can also violate rights.

  Accordingly, an object of the present invention is to appropriately ensure safety in a method and apparatus for securing a mobile terminal to which an address holding unit is detachably mounted.

  According to the present invention, in a method for ensuring the safety of a mobile terminal to which an address holding unit is detachably attached, a request for safety ensuring processing is held by the terminal identification information of the mobile terminal and the address holding unit attached thereto. A request input step for inputting a request specifying a pair with an address; a first determination step for determining whether or not a set of specified terminal identification information and an address exists; a specified terminal identification information; A first security ensuring step for performing a safety ensuring process on the mobile terminal in which the pair of the terminal identification information and the address actually exists when the pair with the address exists. A method of ensuring safety is provided.

  Further, in the above safety ensuring method, a second determination step for determining whether or not a set of the address and other terminal identification information in the set of the specified terminal identification information and address actually exists, and the specified When a pair of the terminal identification information and the address and the other terminal identification information exist, the combination of the specified terminal identification information and the address and the other terminal identification information exists. You may make it further provide the 2nd safety ensuring step which performs safety ensuring processing with respect to a mobile terminal.

  Furthermore, in the above-described safety ensuring method, the second determination step includes an operation information table generated based on a set of terminal identification information and an address that are actually transmitted from each mobile terminal. You may make it carry out by referring.

  Further, in the security ensuring method described above, both or one of the terminal identification information and the address in the set of the terminal identification information and the address actually existing in the mobile terminal sent from each mobile terminal is already in the operation information table. Even if the information is recorded in the operation information table, the set of the terminal identification information and the address actually transmitted from each mobile terminal, together with the recording date and time, is sent from each mobile terminal. As described above, the operation information table has been created, and in the second determination step, the terminal identification information of the set of the specified terminal identification information and address is specified in the operation information table. Latest record among records having at least one of terminal identification information and address in a set of information and address If there is no record, the set of the addresses and other terminal identification information in the set of the specified terminal identification information and the address may be determined to exist.

  Furthermore, in the safety ensuring method described above, whether or not the second safety ensuring step is prohibited when a set of the address and other terminal identification information in the specified set of terminal identification information and address exists. A prohibition determining step for determining whether or not the second safety ensuring step may be canceled if the second safety ensuring step is prohibited.

  Furthermore, in the above safety ensuring method, a third determination step for determining whether a set of terminal identification information and another address in the set of specified terminal identification information and address actually exists, When a set of terminal identification information and another address in a set of terminal identification information and address exists, a set of terminal identification information and another address in a set of specified terminal identification information and address exists. You may make it further provide the 3rd safety ensuring step which performs safety ensuring processing with respect to a mobile terminal.

  Furthermore, in the above-described safety ensuring method, the third determining step includes an operation information table generated based on a set of terminal identification information and address that are actually transmitted from each mobile terminal. You may make it carry out by referring.

  Further, in the security ensuring method described above, both or one of the terminal identification information and the address in the set of the terminal identification information and the address actually existing in the mobile terminal sent from each mobile terminal is already in the operation information table. Even if the information is recorded in the operation information table, the set of the terminal identification information and the address actually transmitted from each mobile terminal, together with the recording date and time, is sent from each mobile terminal. As described above, the operation information table is created, and in the second determination step, the address of the set of the specified terminal identification information and the address is the terminal identification information specified in the operation information table and Of the records having at least one of the terminal identification information and the address in the set with the address, the latest record When not in over-de, a set of terminal identification information and the other address in the set of the specified terminal identification information and the address may be determined to exist.

  Further, in the above safety ensuring method, whether or not the third safety ensuring step is prohibited when a set of terminal identification information and another address in the specified set of terminal identification information and address exists. The third safety ensuring step may be canceled when it is prohibited, further including a prohibition determining step for determining whether or not the third safety ensuring step is prohibited.

  Furthermore, in the above-described safety ensuring method, the first determination step includes an operation information table generated based on a set of terminal identification information and address that are actually transmitted from each mobile terminal. You may make it carry out by referring.

  Further, in the security ensuring method described above, both or one of the terminal identification information and the address in the set of the terminal identification information and the address actually existing in the mobile terminal sent from each mobile terminal is already in the operation information table. Even if the information is recorded in the operation information table, the set of the terminal identification information and the address actually transmitted from each mobile terminal, together with the recording date and time, is sent from each mobile terminal. As described above, the operation information table is created, and in the first determination step, the set of the specified terminal identification information and address is the set of the specified terminal identification information and address in the operation information table. In the latest record among records having at least one of terminal identification information and address , A set of the specified terminal identification information and the address may be determined to exist.

  Further, in the security ensuring method described above, both or one of the terminal identification information and the address in the set of the terminal identification information and the address actually existing in the mobile terminal sent from each mobile terminal is already in the operation information table. If the record is deleted from the operation information table, the set of terminal identification information and address that is actually sent from the mobile terminal is sent to the operation information table. The operation information table is created so as to be recorded as a record, and in the first determination step, a set of the specified terminal identification information and address is specified in the operation information table. If there is a record that has a set of address and address, the specified set of terminal identification information and address actually exists It may be determined that.

  Furthermore, in the above-described safety ensuring method, the safety ensuring means disabling at least part of the function of the mobile terminal and / or erasing at least part of data of the mobile terminal. It may be included.

  According to the present invention, it is possible to find a set of actual terminal identification information and an address and switch the safety ensuring process accordingly.

  The best mode for carrying out the present invention will be described below in detail with reference to the drawings.

[Embodiment 1]
FIG. 1 is a block diagram showing the configuration of a system according to an embodiment of the present invention.

  Referring to FIG. 1, this system includes a customer management system 101, a customer information database 103, a mobile terminal management system 105, an operation database 107, mobile terminals 109-1 to 109-N, and a mobile terminal network 111.

  The customer management system 101 includes a database management system that manages the customer information database 103.

  The customer information database 103 includes a registration information table. The customer information database 103 may include other tables, but the other tables are omitted because they are irrelevant to the present invention. The registration information table includes a terminal identification information field, an address field, and a registration date / time field. The registration information table may include other fields, but the other fields are omitted because they are irrelevant to the present invention.

  The mobile terminal management system 105 includes a database management system that manages the operation database 107.

  The operation database 107 includes an operation information table. The operation database 107 may include other tables, but the other tables are omitted because they are irrelevant to the present invention. The operation table includes a terminal identification information field, an address field, and a registration date / time field. The operation table may include other fields, but the other fields are omitted because they are irrelevant to the present invention.

  The customer management system 101 is connected to the mobile terminal management system 105 via a communication carrier dedicated line or the like.

  The mobile terminal management system 105 is connected to the mobile terminals 109-1 to 109-N via the mobile terminal network 111.

  The customer management system 101 can be realized by hardware, software, or a combination thereof. When software is included in the configuration of the customer management system 101, a program for causing the computer to function as the customer management system 101 is read from the computer and executed. The mobile terminal management system 105 can also be realized by hardware, software, or a combination thereof. When software is included in the configuration of the mobile terminal management system 105, a program for causing the computer to function as the mobile terminal management system 105 is read from the computer and executed.

  FIG. 2 is a block diagram showing the mobile terminal 109 and the address holding unit 123 detachably connected thereto.

  Although the part normally provided in the mobile terminal 109 is not illustrated, the mobile terminal includes such a part. The mobile terminal 109 stores terminal identification information 121 in a memory of the main body. The terminal identification information includes, for example, the manufacturer name, model name, serial number, etc. of the mobile terminal 109 and is used to identify each mobile terminal.

  When the mobile terminal 109 is a third generation mobile phone, the address holding unit 123 is, for example, a USIM card, and the address is the phone number of the mobile phone. The USIM card can store the telephone number of the contact destination in addition to the telephone number of the mobile phone. When the mobile terminal 109 is a personal computer, the address holding unit 123 is a network interface card, and the address is a MAC (Media Access Control) address of the network interface card.

  In the following description, it is assumed that the mobile terminal 109 is a mobile phone.

  FIG. 3 is a diagram illustrating a combination of the mobile terminal 109 and the address holding unit 123.

  As shown in FIG. 3A, it is assumed that there is a combination of the mobile terminal 109 having the terminal identification information SN1 and the address holding unit 123 having the address TN1 at a certain time. This combination starts when the subscriber purchases a new mobile terminal or changes the mobile terminal. This combination is also realized when the subscriber loses or steals the mobile terminal on which the combination of FIG. 3A is realized and a third party uses it as it is. Yes.

  The combination shown in FIG. 3B is a combination of the mobile terminal 109 having the terminal identification information SN2 and the address holding unit 123 having the address TN1. This combination starts when the subscriber changes the portable terminal after the combination shown in FIG. Further, the subscriber loses the portable terminal in which the combination of FIG. 3A is realized or is stolen, and then the third party moves the address holding unit 123 having the address TN1 to the terminal identification information SN1. It is also realized when the mobile terminal 109 having the terminal ID is removed and inserted into the mobile terminal 109 having the terminal identification information SN2.

  The combination illustrated in FIG. 3C is a combination of the mobile terminal 109 having the terminal identification information SN1 and the address holding unit 123 having the address TN2. This combination starts when the subscriber changes the address holding unit after the combination shown in FIG. Further, the subscriber loses or is stolen from the mobile terminal in which the combination of FIG. 3A is realized, and then a third party sends the address TN1 from the mobile terminal 109 having the terminal identification information SN1. This is also realized when the address holding unit 123 having the address TN2 is inserted and the address holding unit 123 having the address TN2 is inserted.

  FIG. 4 is a flowchart showing a first safety ensuring method according to the embodiment of the present invention.

  Referring to FIG. 4, first, a subscriber makes a new contract with a communication carrier (step S201).

  Next, at the sales office of the communication carrier, a record relating to the new contract is added to the registration information table 103 (step S203). That is, a record as shown in the first line of FIG. 5A is generated in the registration information table 103. In the record shown in the first line of FIG. 5A, the terminal identification information field, the address field, and the registration date / time field are SN1, TN1, and D1T1, respectively.

  Next, at the sales office of the telecommunications carrier, the USIM card as the address holding unit is attached to the mobile phone as the mobile terminal (step S205). In addition, after performing step S205, step S203 may be performed using the state after performing step S205.

  Next, when the subscriber starts using the mobile phone (step S207), a record as shown in the first line of FIG. 5B is generated in the operation information table (step S209). In the record shown in the first row of FIG. 5B, the terminal identification information field, the address field, and the registration date / time field are SN1, TN1, and D2T2, respectively.

  The terminal identification information and the address of the first record of the registration information table shown in FIG. 5A are the same as the terminal identification information and the address of the first record of the operation information table shown in FIG.

  Next, when the subscriber loses the cellular phone (step S211), the subscriber requests the communication carrier to perform a security ensuring process (step S213). For example, a subscriber uses a homepage provided by a telecommunications carrier to request a telecommunications carrier for a security ensuring process. At the time of this request, the subscriber uses the telephone number (an example of the address stored in the address holding unit 123) of the mobile phone that is desired to be secured, that is, the telephone number TN1 stored in the USIM card. Yes) to the network operator.

  In response to this, the communication carrier performs safety ensuring processing (step S215). Details of the safety ensuring process will be described later.

  FIG. 6 is a flowchart showing a second safety ensuring method according to the embodiment of the present invention.

  Referring to FIG. 6, first, the subscriber makes a new contract with the communication carrier (step S221).

  Next, at the sales office of the telecommunications carrier, a record relating to the new contract is added to the registration information table 103 (step S223). That is, a record as shown in the first line of FIG. 7A is generated in the registration information table 103. In the record shown in the first line of FIG. 7A, the terminal identification information field, the address field, and the registration date / time field are SN1, TN1, and D1T1, respectively.

  Next, at the sales office of the telecommunications carrier, the USIM card as the address holding unit is attached to the mobile phone as the mobile terminal (step S225). In addition, after performing step S225, you may make it perform step S223 using the state after performing step S225.

  Next, when the subscriber starts using the mobile phone (step S227), a record as shown in the first row of FIG. 7B is generated in the operation information table (step S229). In the record shown in the first row of FIG. 7B, the terminal identification information field, the address field, and the registration date / time field are SN1, TN1, and D2T2, respectively.

  The terminal identification information and the address of the first record of the registration information table shown in FIG. 7A are the same as the terminal identification information and the address of the first record of the operation information table shown in FIG.

  Next, the subscriber's mobile phone is stolen by a third party (step S231).

The third party removes the USIM card from the stolen mobile phone and attaches the USIM card to another mobile phone (step S233).
Next, when a third party starts using the mobile phone (step S235), a record as shown in the second row of FIG. 7B is generated in the operation information table (step S237). In the record as shown in the second row of FIG. 7B, the terminal identification information field, the address field, and the registration date / time field are SN2, TN1, and D4T4, respectively. When the first row and the second row in FIG. 7B are compared, the registration date and time are naturally different. Further, since the USIM card is the same, the telephone number TN1 as an address is common. Since the mobile phone is different, the terminal identification information is SN1 in the first row, whereas the terminal identification information is SN2 in the second row.

  Next, the subscriber who notices that the mobile phone has been stolen including the USIM requests the communication carrier to perform a security ensuring process (step S239). For example, a subscriber uses a homepage provided by a telecommunications carrier to request a telecommunications carrier for a security ensuring process. At the time of this request, the subscriber uses the telephone number (an example of the address stored in the address holding unit 123) of the mobile phone that is desired to be secured, that is, the telephone number TN1 stored in the USIM card. Yes) to the network operator.

  In response to this, the communication carrier performs safety ensuring processing (step S215). Details of the safety ensuring process will be described later.

  FIG. 8 is a flowchart showing a third safety ensuring method according to the embodiment of the present invention.

  Referring to FIG. 8, first, the subscriber makes a new contract with the communication carrier (step S251).

  Next, at the sales office of the communication carrier, a record relating to the new contract is added to the registration information table 103 (step S253). That is, a record as shown in the first line of FIG. 9A is generated in the registration information table 103. In the record shown in the first line of FIG. 9A, the terminal identification information field, the address field, and the registration date and time field are SN1, TN1, and D1T1, respectively.

  Next, in the sales office of the communication carrier, the USIM card as the address holding unit is attached to the mobile phone as the mobile terminal (step S255). In addition, after performing step S255, you may make it perform step S253 using the state after performing step S255.

  Next, when the subscriber starts using the mobile phone (step S257), a record as shown in the first row of FIG. 9B is generated in the operation information table (step S259). In the record shown in the first row of FIG. 9B, the terminal identification information field, the address field, and the registration date field are SN1, TN1, and D2T2, respectively.

  The terminal identification information and the address of the first record of the registration information table shown in FIG. 9A are the same as the terminal identification information and the address of the first record of the operation information table shown in FIG.

  Next, the subscriber's mobile phone is stolen by a third party (step S261).

  The third party removes the USIM card from the stolen mobile phone and attaches another USIM card to the mobile phone (step S263).

  Next, when a third party starts using the mobile phone (step S265), a record as shown in the second row of FIG. 9B is generated in the operation information table (step S267). In the record shown in the second row of FIG. 9B, the terminal identification information field, the address field, and the registration date / time field are SN1, TN2, and D5T5, respectively. When comparing the first row and the second row in FIG. 9B, the registration date and time are naturally different. Further, since the mobile phones are the same, the terminal identification information SN1 is common. In the first line, the telephone number that is an address is TN1, whereas in the second line, the telephone number that is an address is TN2.

  Next, the subscriber who notices that the mobile phone has been stolen including the USIM makes a request for a security ensuring process to the communication carrier (step S269). For example, a subscriber uses a homepage provided by a telecommunications carrier to request a telecommunications carrier for a security ensuring process. At the time of this request, the subscriber uses the telephone number (an example of the address stored in the address holding unit 123) of the mobile phone that is desired to be secured, that is, the telephone number TN1 stored in the USIM card. Yes) to the network operator.

  In response to this, the communication carrier performs safety ensuring processing (step S215). Details of the safety ensuring process will be described later.

  Next, details of the safety ensuring process 215 will be described with reference to FIG.

  Referring to FIG. 10, first, the customer management system 101 searches for a corresponding record from the registration information table using the telephone number included in the security processing request received from the subscriber as a key. Here, the corresponding record is the latest record including the telephone number that is the address included in the security processing request received from the subscriber. This record includes the latest terminal identification information and address of the subscriber as known by the communication carrier. In the examples of FIG. 5, FIG. 7, and FIG. 9, the latest terminal identification information and address are SN1 and TN1, respectively (step S215-1).

  Next, the customer management system 101 passes the terminal identification information and address obtained in step S215-1 to the mobile terminal management system 105, and further requests the continuation of processing.

  The mobile terminal management system 105 performs the repetition process of step S215-3 on the operation information table in the retroactive order. Here, “retroactively” refers to the order from the smallest value in the registration date field of the operation information table.

  In the repetition of step S215-3, the following processing is performed.

  The terminal identification information of the record currently being investigated matches the terminal identification information obtained in step S215-1, and the address of the record currently being investigated is the address obtained in step S215-1. It is determined whether at least one of the matching is satisfied (step S215-5).

  If not (NO in step S215-5), the record is moved to the oldest record.

  If so (YES in step S215-5), it is determined whether or not the terminal identification information of the record currently being investigated matches the terminal identification information obtained in step S215-1. Step S215-7).

  If not (NO in step S215-7), it means that only that the address of the record currently being examined matches the address obtained in step S215-1 is satisfied. This corresponds to the case of the method described with reference to FIGS. In this case, the process proceeds to case 2 (step S215-9). This will be described later.

  If the terminal identification information of the record currently being investigated matches the terminal identification information obtained in step S215-1, (YES in step S215-7), the address of the record currently being investigated is It is determined whether or not it matches the address obtained in step S215-1 (step S215-11).

  If not (NO in step S215-11), it is only satisfied that the terminal identification information of the record currently being investigated matches the terminal identification information obtained in step S215-1. means. This corresponds to the method described with reference to FIGS. In this case, the process proceeds to case 3 (step S215-13). This will be described later.

  If so (YES in step S215-11), the terminal identification information of the record currently being investigated matches the terminal identification information obtained in step S215-1, and the current investigation is performed. It means that both of the addresses of the existing records match the addresses obtained in step S215-1 are satisfied. This corresponds to the case of the method described with reference to FIGS. In this case, the process proceeds to case 1 (step S215-15). This will be described later.

  Next, details of processing in cases 1, 2 and 3 will be described with reference to FIGS. 11 (a), 11 (b) and 11 (c).

  As described above, the process of case 1 is a process that arrives at step S215 in the method described with reference to FIGS. In the second security ensuring method according to the embodiment of the present invention, the address holding unit 123 is not separated from the mobile terminal 109. The connection relationship between the address holding unit 123 and the mobile terminal 109 is as shown in FIG. Therefore, in such a case, the security ensuring process is performed as requested by the subscriber. For this purpose, a message (for example, SMS (short message)) is transmitted to the address (step S215-15-1 in FIG. 11A). The security ensuring process may be, for example, a function stop such as a call function stop, a mail function stop, a key operation invalidation, a camera function stop, or a WEB browsing stop. Further, the security ensuring process may be a deletion process such as deletion of address book data, deletion of mail data, deletion of image data or voice data, deletion of URL bookmarks, or the like. The content of the message is changed according to the content of the safety ensuring process.

  As described above, the process of case 2 is a process that arrives at step S215 in the method described with reference to FIGS. In the second security ensuring method of the embodiment of the present invention, the address holding unit 123 is separated from the mobile terminal 109. The connection relationship between the address holding unit 123 and the mobile terminal 109 is as shown in FIG.

  Such a connection relationship is realized when the USIM card stolen by the thief is attached to another mobile phone as shown in FIG. In such a case, if the data is deleted as a security ensuring process as requested by the subscriber, the data of the cellular phone possessed by the thief will be deleted. Since this will take away the property of others, it must be avoided as a telecommunications carrier. Therefore, when the policy A1 taking this into consideration is taken (YES in step S215-9-1 in FIG. 11B), a message for the security ensuring process is not transmitted to the address. If policy A1 that takes this into account is not taken (when policy A2 is taken) (NO in step S215-9-1 in FIG. 11B), a message for safety ensuring processing is sent to the address. (Step S215-9-3 in FIG. 11B). Also, in the case of a function stop, the same determination (determination in step S215-9-1 in FIG. 11B) may be performed, but may not be performed.

  As described above, the process of case 3 is a process that arrives at step S215 in the method described with reference to FIGS. In the third security ensuring method according to the embodiment of the present invention, the address holding unit 123 is separated from the mobile terminal 109. The connection relationship between the address holding unit 123 and the mobile terminal 109 is as shown in FIG.

  Such a connection relationship is realized when another USIM card is attached to a cellular phone stolen by a thief, as shown in FIG. In such a case, safety should be processed as requested by the subscriber. However, it may be necessary to avoid it due to special circumstances. When the policy B1 taking such special circumstances into consideration is adopted (YES in step S215-13-1 in FIG. 11C), a message for safety ensuring processing is not transmitted to the address. If policy B1 that takes this into account is not taken (when policy B2 is taken) (NO in step S215-13-1 in FIG. 11C), a message for safety ensuring processing is sent to the address. (Step S215-13-3 in FIG. 11C).

  Note that instead of determining whether to execute or cancel the safety ensuring process according to the policy, such a determination may be made according to other conditions.

  Next, it will be described that the present invention operates normally when the model is changed.

  FIG. 12 is a flowchart showing a first safety ensuring method when the model of the embodiment of the present invention is changed.

  Referring to FIG. 12, first, the subscriber makes a new contract with the communication carrier (step S281).

  Next, at the sales office of the communication carrier, a record relating to the new contract is added to the registration information table 103 (step S283). That is, a record as shown in the first line of FIG. 13A is generated in the registration information table 103. In the record shown in the first row of FIG. 13A, the terminal identification information field, the address field, and the registration date / time field are SN1, TN1, and D1T1, respectively.

  Next, in the sales office of the telecommunications carrier, the USIM card that is the address holding unit is attached to the mobile phone that is the mobile terminal (step S285). In addition, after performing step S285, you may make it perform step S283 using the state after performing step S285.

  Next, when the subscriber starts using the mobile phone (step S287), a record as shown in the first row of FIG. 13B is generated in the operation information table (step S289). In the record as shown in the first row of FIG. 13B, the terminal identification information field, the address field, and the registration date / time field are SN1, TN1, and D2T2, respectively.

  Next, the subscriber makes a contract for model change with the communication carrier (step S291).

  Next, at the business office of the communication carrier, a record relating to the new contract is added to the registration information table 103 (step S293). That is, a record as shown in the second row of FIG. 13A is generated in the registration information table 103. In the record shown in the second row of FIG. 13A, the terminal identification information field, the address field, and the registration date / time field are SN2, TN2, and D3T3, respectively.

  Next, at the sales office of the communication carrier, the USIM card as the address holding unit is attached to the mobile phone as the mobile terminal (step S295). In addition, after performing step S295, you may make it perform step S293 using the state after performing step S295.

  Next, when the subscriber starts using the mobile phone (step S297), a record as shown in the second row of FIG. 13B is generated in the operation information table (step S299). In the record as shown in the second row of FIG. 13B, the terminal identification information field, the address field, and the registration date / time field are SN2, TN1, and D4T4, respectively.

  Next, when the subscriber loses the mobile phone after the model change (step S301), the subscriber requests the communication carrier to perform a security ensuring process (step S303). For example, a subscriber uses a homepage provided by a telecommunications carrier to request a telecommunications carrier for a security ensuring process. At the time of this request, the subscriber uses the telephone number (an example of the address stored in the address holding unit 123) of the mobile phone that is desired to be secured, that is, the telephone number TN1 stored in the USIM card. Yes) to the network operator.

  In response to this, the communication carrier performs safety ensuring processing (step S215). Details of the safety ensuring process are as described above.

  Thereafter, if the combination of the mobile phone after the model change and the USIM card cannot be changed, the processing of case 1 is performed.

[Embodiment 2]
In the first embodiment, even when a record including the same terminal identification information as the terminal identification information included in the record to be newly added to the operation information table already exists in the operation information table, such an existence exists. The record was not deleted. In addition, even if a record including the same address as the address included in the record to be newly added to the operation information table already exists in the operation information table, such an existing record is not deleted. . Also, a record to be newly added to the operation information table is to be added. Thereby, case 1, case 2 and case 3 could be divided.

  On the other hand, in the second embodiment, if a record including the same terminal identification information as the terminal identification information included in the record to be newly added to the operation information table already exists in the operation information table, An existing record is deleted. Further, when a record including the same address as the address included in the record to be newly added to the operation information table already exists in the operation information table, such an existing record is deleted. Then, a record to be newly added is added to the operation information table. As a result, only case 1 can be detected, and case 2 and case 3 cannot be detected. However, if the safety ensuring process is performed only in case 1, there is no problem.

  The operation information table that changes as shown in FIG. 7 in the first embodiment changes as shown in FIG. 14 in the second embodiment. The operation information table that changes as shown in FIG. 9 in the first embodiment changes as shown in FIG. 15 in the second embodiment. The operation information table that changes as shown in FIG. 13 in the first embodiment changes as shown in FIG. 16 in the second embodiment.

  Further, the safety ensuring process as shown in FIG. 10 in the first embodiment is changed to the safety ensuring process as shown in FIG. To explain only the difference, step S215-5 is changed to step S215-5B, and steps S215-7, S215-9, S215-11, and S215-13 are deleted.

  In step S215-5 of the embodiment, the terminal identification information of the record currently being investigated matches the terminal identification information obtained in step S215-1, and the address of the record currently being investigated is In step S215-5B of the second embodiment, it is determined whether or not at least one of matching with the address obtained in S215-1 is satisfied. That the terminal identification information matches the terminal identification information obtained in step S215-1, and the address of the record currently being investigated matches the address obtained in step S215-1. Determine whether both are satisfied.

It is a block diagram which shows the structure of the system by embodiment of this invention. It is a block diagram which shows the structure of the mobile terminal shown in FIG. It is a figure which shows the combination of the connection of a mobile terminal and a USIM card. It is a flowchart which shows the 1st safety ensuring method of Embodiment 1 of this invention. It is a figure which shows the record produced in the 1st safety ensuring method of Embodiment 1 of this invention. It is a flowchart which shows the 2nd safety ensuring method of Embodiment 1 of this invention. It is a figure which shows the record produced in the 2nd safety ensuring method of Embodiment 1 of this invention. It is a flowchart which shows the 3rd safety ensuring method of Embodiment 1 of this invention. It is a figure which shows the record produced in the 3rd safety ensuring method of Embodiment 1 of this invention. It is a flowchart which shows the detailed step of the safety ensuring process shown in FIG.4, 6 and 8 in Embodiment 1 of this invention. 11 is a flowchart showing detailed steps of case 1 to case 3 shown in FIG. 10. It is a flowchart which shows the 1st safety ensuring method of embodiment of this invention when a model change is carried out. It is a figure which shows the record produced in the 1st safety ensuring method of embodiment of this invention when a model change is carried out. It is a figure which shows the record produced in the 2nd safety ensuring method of Embodiment 2 of this invention. It is a figure which shows the record produced in the 3rd safety ensuring method of Embodiment 2 of this invention. It is a figure which shows the record produced in the 1st safety ensuring method of Embodiment 2 of this invention when a model change is carried out. It is a flowchart which shows the detailed step of the safety ensuring process shown in FIG.4, 6 and 8 in Embodiment 2 of this invention.

Explanation of symbols

101 Customer Management System 103 Customer Information Database 105 Mobile Terminal System 107 Operation Database 109 Mobile Terminal 111 Mobile Terminal Network 121 Terminal Identification Information 123 USIM Card 125 Address

Claims (27)

In the method of ensuring the safety of a mobile terminal to which the address holding unit is detachably attached,
A request input step for inputting a request for specifying a set of the terminal identification information of the mobile terminal and the address held by the address holding unit attached thereto, which is a request for security ensuring processing;
A first determination step of determining whether or not a set of specified terminal identification information and address exists;
A first safety ensuring step of performing a safety ensuring process for a mobile terminal in which the set of the terminal identification information and the address exists when the set of the specified terminal identification information and the address exists;
A method of ensuring the safety of a mobile terminal comprising: In the safety ensuring method of Claim 1,
A second determination step of determining whether or not a set of the address and other terminal identification information in the set of the specified terminal identification information and address exists,
A set of the address and other terminal identification information in the set of the specified terminal identification information and address when a set of the address and the other terminal identification information in the set of the specified terminal identification information and address exists. A second safety ensuring step for performing safety ensuring processing on the mobile terminal in which
A method for ensuring safety, further comprising: In the safety ensuring method of Claim 2,
The second determining step is performed by referring to an operation information table that is sent from each mobile terminal and is generated based on a set of terminal identification information and an address that actually exist in the mobile terminal. How to ensure safety. In the safety ensuring method according to claim 3,
It is a case where both or one of terminal identification information and address in a set of terminal identification information and address that is actually transmitted from each mobile terminal is already recorded in the operation information table. In addition, the operation information table is created such that a set of terminal identification information and an address that are actually transmitted from each mobile terminal is recorded as a record in the operation information table together with the recording date and time. And
In the second determination step, the terminal identification information of the set of the specified terminal identification information and the address is the terminal identification information and the address in the set of the specified terminal identification information and the address in the operation information table. Among the records having at least one of the above, when the latest record does not exist, it is determined that the set of the address and the other terminal identification information in the set of the specified terminal identification information and address exists. How to ensure safety. In the safety ensuring method of Claim 2,
A prohibition determining step of determining whether or not the second security ensuring step is prohibited when a set of the address and other terminal identification information in the set of the specified terminal identification information and address exists. Prepared,
The safety ensuring method according to claim 1, wherein the second safety ensuring step is canceled when it is prohibited. In the safety ensuring method of Claim 1,
A third determination step of determining whether a set of terminal identification information and another address in the set of specified terminal identification information and address exists or not;
A set of terminal identification information and another address in a set of the specified terminal identification information and address when a set of terminal identification information and another address in the set of the specified terminal identification information and address exists. A third safety ensuring step for performing safety ensuring processing on the mobile terminal in which
A method for ensuring safety, further comprising: The safety ensuring method according to claim 6,
The third determining step is performed by referring to an operation information table that is sent from each mobile terminal and is generated based on a set of terminal identification information and an address that actually exist in the mobile terminal. How to ensure safety. In the safety ensuring method of Claim 7,
It is a case where both or one of terminal identification information and address in a set of terminal identification information and address that is actually transmitted from each mobile terminal is already recorded in the operation information table. In addition, the operation information table is created such that a set of terminal identification information and an address that are actually transmitted from each mobile terminal is recorded as a record in the operation information table together with the recording date and time. And
In the second determination step, an address in the set of the specified terminal identification information and address is selected from the terminal identification information and the address in the set of the specified terminal identification information and address in the operation information table. Of the records having at least one of them, when the latest record does not exist, it is determined that the set of the terminal identification information and the other address in the set of the specified terminal identification information and the address actually exists, ensuring safety Method. The safety ensuring method according to claim 6,
A prohibition determining step for determining whether or not the third safety ensuring step is prohibited when a set of terminal identification information and another address in the set of the specified terminal identification information and address exists. Prepared,
The safety ensuring method according to claim 3, wherein the third safety ensuring step is canceled when it is prohibited. In the safety ensuring method of Claim 1,
The first determination step is performed by referring to an operation information table that is sent from each mobile terminal and is generated based on a set of terminal identification information and an address that actually exist in the mobile terminal. How to ensure safety. In the safety ensuring method of Claim 10,
It is a case where both or one of terminal identification information and address in a set of terminal identification information and address that is actually transmitted from each mobile terminal is already recorded in the operation information table. In addition, the operation information table is created such that a set of terminal identification information and an address that are actually transmitted from each mobile terminal is recorded as a record in the operation information table together with the recording date and time. And
In the first determination step, the set of the specified terminal identification information and address has at least one of the terminal identification information and the address in the set of the specified terminal identification information and address in the operation information table. A method for ensuring security, characterized in that, when the record is in the latest record, it is determined that the set of the specified terminal identification information and address exists. In the safety ensuring method of Claim 10,
When both or one of the terminal identification information and the address in the set of the terminal identification information and the address actually existing in the mobile terminal sent from each mobile terminal is already recorded in the operation information table, The record is deleted from the operation information table and sent from each mobile terminal so that a set of terminal identification information and address existing in the mobile terminal is recorded as a record in the operation information table. An information table has been created,
In the first determination step, the specified combination of the terminal identification information and the address is specified when there is a record having the specified combination of the terminal identification information and the address in the operation information table. A method for ensuring safety, comprising determining that a set of terminal identification information and an address exists. In the safety ensuring method of Claim 1,
The security ensuring includes at least one of disabling at least a part of the function of the mobile terminal and erasing at least a part of the data of the mobile terminal. . In the mobile terminal safety ensuring device in which the address holding unit is detachably mounted,
A request input means for inputting a request for specifying a set of the terminal identification information of the mobile terminal and the address held by the address holding unit attached thereto, which is a request for security ensuring processing;
First determination means for determining whether or not a set of the specified terminal identification information and address exists,
A first security ensuring means for performing security ensuring processing for a mobile terminal in which the set of terminal identification information and address actually exists when the set of the specified terminal identification information and address exists;
A device for ensuring safety of a mobile terminal, comprising: The safety ensuring device according to claim 14,
Second judging means for judging whether or not a set of the address and other terminal identification information in the set of the specified terminal identification information and address exists,
A set of the address and other terminal identification information in the set of the specified terminal identification information and address when a set of the address and the other terminal identification information in the set of the specified terminal identification information and address exists. A second safety ensuring means for performing a safety ensuring process on the mobile terminal in which
A safety ensuring device further comprising: The safety ensuring device according to claim 15,
The second determination means is performed by referring to an operation information table that is sent from each mobile terminal and is generated based on a set of terminal identification information and an address that actually exist in the mobile terminal. To ensure safety. The safety ensuring device according to claim 16,
It is a case where both or one of terminal identification information and address in a set of terminal identification information and address that is actually transmitted from each mobile terminal is already recorded in the operation information table. In addition, the operation information table is created such that a set of terminal identification information and an address that are actually transmitted from each mobile terminal is recorded as a record in the operation information table together with the recording date and time. And
In the second determination means, the terminal identification information in the set of the specified terminal identification information and the address is the terminal identification information and the address in the set of the specified terminal identification information and the address in the operation information table. Among the records having at least one of the above, when the latest record does not exist, it is determined that the set of the address and the other terminal identification information in the set of the specified terminal identification information and address exists. Safety device. The safety ensuring device according to claim 15,
Prohibition determining means for determining whether or not the second security ensuring means is prohibited when a set of the address and other terminal identification information in the set of the specified terminal identification information and address exists. Prepared,
The safety ensuring device is characterized in that the second safety ensuring means is stopped when it is prohibited. The safety ensuring device according to claim 14,
Third determination means for determining whether a set of terminal identification information and another address in the set of specified terminal identification information and address exists,
A set of terminal identification information and another address in a set of the specified terminal identification information and address when a set of terminal identification information and another address in the set of the specified terminal identification information and address exists. A third safety ensuring means for performing a safety ensuring process on the mobile terminal in which
A safety ensuring device further comprising: The safety ensuring device according to claim 19,
The third determination means is performed by referring to an operation information table that is sent from each mobile terminal and is generated based on a set of terminal identification information and an address that actually exist in the mobile terminal. To ensure safety. The safety ensuring device according to claim 20,
It is a case where both or one of the terminal identification information and the address in the set of the terminal identification information and the address that are actually transmitted from each mobile terminal is already recorded in the operation information table. In addition, the operation information table is created so that a set of terminal identification information and address actually transmitted from each mobile terminal is recorded as a record in the operation information table together with the recording date and time. And
In the second determination means, the address of the set of the specified terminal identification information and the address is the terminal identification information and the address in the set of the specified terminal identification information and the address in the operation information table. Of the records having at least one of them, when the latest record does not exist, it is determined that the combination of the terminal identification information and the other address in the combination of the specified terminal identification information and the address is actual, and ensuring safety apparatus. The safety ensuring device according to claim 19,
Prohibition determining means for determining whether or not the third safety ensuring means is prohibited when a set of terminal identification information and another address in the set of specified terminal identification information and address exists. Prepared,
The safety ensuring device is characterized in that the third safety ensuring means is stopped when it is prohibited. The safety ensuring device according to claim 14,
The first determination means is performed by referring to an operation information table that is sent from each mobile terminal and is generated based on a set of terminal identification information and an address that actually exist in the mobile terminal. To ensure safety. The safety ensuring device according to claim 23,
It is a case where both or one of terminal identification information and address in a set of terminal identification information and address that is actually transmitted from each mobile terminal is already recorded in the operation information table. In addition, the operation information table is created such that a set of terminal identification information and an address that are actually transmitted from each mobile terminal is recorded as a record in the operation information table together with the recording date and time. And
In the first determination means, the set of the specified terminal identification information and address has at least one of the terminal identification information and the address in the set of the specified terminal identification information and address in the operation information table. A safety ensuring device characterized by determining that a set of specified terminal identification information and an address actually exists when the record is in the latest record. The safety ensuring device according to claim 23,
When both or one of the terminal identification information and the address in the set of the terminal identification information and the address actually existing in the mobile terminal sent from each mobile terminal is already recorded in the operation information table, The record is deleted from the operation information table and sent from each mobile terminal so that a set of terminal identification information and address existing in the mobile terminal is recorded as a record in the operation information table. An information table has been created,
In the first determination means, a specified pair of terminal identification information and address is specified when there is a record having a set of specified terminal identification information and address in the operation information table. A safety ensuring device characterized by determining that a set of terminal identification information and an address exists. The safety ensuring device according to claim 14,
The security ensuring includes at least one of disabling at least a part of functions of the mobile terminal and erasing at least a part of data of the mobile terminal. .   A program for causing a computer to perform the method according to any one of claims 1 to 13.

Images