WO2013035141A1 - Information processing device, startup control method for same, startup control program for same and external device - Google Patents

Information processing device, startup control method for same, startup control program for same and external device Download PDF

Info

Publication number
WO2013035141A1
WO2013035141A1 PCT/JP2011/070121 JP2011070121W WO2013035141A1 WO 2013035141 A1 WO2013035141 A1 WO 2013035141A1 JP 2011070121 W JP2011070121 W JP 2011070121W WO 2013035141 A1 WO2013035141 A1 WO 2013035141A1
Authority
WO
WIPO (PCT)
Prior art keywords
memory
information processing
operating system
operating environment
processing apparatus
Prior art date
Application number
PCT/JP2011/070121
Other languages
French (fr)
Japanese (ja)
Inventor
杉中順子
Original Assignee
Suginaka Junko
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Suginaka Junko filed Critical Suginaka Junko
Priority to PCT/JP2011/070121 priority Critical patent/WO2013035141A1/en
Publication of WO2013035141A1 publication Critical patent/WO2013035141A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • G06F9/4406Loading of operating system
    • G06F9/441Multiboot arrangements, i.e. selecting an operating system to be loaded

Definitions

  • the present invention relates to a technology for starting a CPU (Central Processing Unit) of an information processing apparatus.
  • CPU Central Processing Unit
  • Patent Document 1 a portable information terminal equipped with two operating systems (OS1 and OS2) can be selectively switched between a public network of the Internet and a private network consisting of a dedicated line, and the private network can be connected.
  • OS1 and OS2 operating systems
  • a system has been proposed in which electronic transactions can be performed only when connected to the Internet.
  • This system starts the Microsoft (registered trademark) Windows (registered trademark) operating system, which is OS1, connects the portable information terminal to the ISP server via a wireless modem, etc., and communicates with other terminals via the Internet network. Enables exchange of information.
  • a wireless modem which is a PCMCIA card
  • the client device 102 When electronic trading is desired, a wireless modem, which is a PCMCIA card, is connected to the client device 102 to read out the access engine application to the processor and activate the Linux operating system, which is OS2.
  • Electronic transaction processing between a portable information terminal and a remote server equipped with a program for electronic transactions via a wireless modem, an ISP server, and a connection server directly connected by a dedicated line (or omitting the connection server) Is possible.
  • the connection between the portable information terminal and the Internet which is highly likely to be infected by spyware or malware, is cut off, and the connection between the wireless modem portion and the private network is established. In this way, more secure electronic transaction processing is realized.
  • Patent Documents 2 and 3 describe a multi-boot computer that selectively activates different OSes with one CPU.
  • Patent Document 1 discloses an OS that uses a built-in processor to switch between a Microsoft (registered trademark) Windows (registered trademark) operating system (OS1) and a Linux operating system (OS2) for electronic transactions as necessary.
  • OS1 Microsoft (registered trademark) Windows (registered trademark) operating system
  • OS2 Linux operating system
  • Patent Documents 2 and 3 when switching between OSs, a certain amount of time is required as a result of restarting, so switching between OS1 and OS2 is an operation. It is not enough in terms of sex and convenience.
  • An information processing terminal is managed in an information processing apparatus that, when activated, expands a first operating system stored in a first memory to a work memory and sets a CPU as a first operating environment.
  • the management CPU receives the start and the first operating system is in the work memory
  • the first evacuation means for evacuating the contents expanded in the work memory to the first storage memory and the evacuation processing by the first evacuation means are stored in the second memory.
  • a second operating system that expands the second operating system in the work memory and sets the CPU in a second operating environment; and the additional starting unit
  • a second saving unit that saves the contents expanded in the work memory to a second storage memory after the dynamic processing, and after saving processing by the second saving unit, the contents are saved in the first storage memory
  • re-expanding means for re-expanding the contents in the work memory.
  • the present invention provides a startup control method for an information processing apparatus in which a first operating system stored in a first memory is expanded in a work memory and a CPU is set in a first operating environment at startup.
  • a management CPU receives the start and the first operating system After being expanded in the memory, the contents stored in the work memory are stored in the second memory after the first saving step for saving the contents expanded in the first storage memory and the saving process by the first saving step.
  • An additional starting step of expanding the second operating system in the work memory and setting the CPU in a second operating environment and A second saving step for saving the contents expanded in the work memory to a second storage memory after the start processing by the operation step, and saving to the first storage memory after the saving processing by the second saving step
  • a re-expanding step for re-expanding the stored contents in the work memory.
  • the present invention also provides a management for managing an operating environment after the first operating system stored in the first memory is expanded in the work memory and the computer is set to the first operating environment at startup.
  • a boot control program for an information processing apparatus for setting a second operating environment by a second operating system stored in a second memory by a computer to an operation standby state, the first operating system receiving the booting Is expanded in the work memory, the first saving means for saving the contents expanded in the work memory to a first storage memory, and after the saving processing by the first saving means,
  • the stored second operating system is expanded in the work memory, and the CPU is set in the second operating environment.
  • the second evacuation unit for evacuating the contents expanded in the work memory to the second storage memory
  • the management computer is caused to function as re-expansion means for re-expanding the contents saved in the storage memory to the work memory.
  • the information processing apparatus when the information processing apparatus is activated, the first operating system stored in the first memory is expanded in the work memory, whereby the CPU is the first operating system.
  • the first operating environment is set.
  • the information processing apparatus further includes a management CPU, a second memory in which a second operating system is stored, and first and second storage memories. Then, the following processing is performed by the management CPU. First, after being activated, the first operating system is expanded in the work memory, and then the content expanded in the work memory is saved in the first storage memory. Next, after the saving, the second operating system stored in the second memory is expanded in the work memory, thereby setting the CPU in the second operating environment. Further, the contents expanded in the work memory are saved in the second storage memory. After the saving, the contents saved in the first storage memory are re-expanded in the work memory.
  • the first application that is set in the first operating environment in which the CPU (or computer) operates in the first operating system with the activation of the information processing apparatus and can be operated in the first operating system at any time.
  • the second storage memory is in a standby state in which the second operating system is stored.
  • the CPU (or computer) is switched to the second operating environment that operates in the second application.
  • the second application that can be operated by the second application can be used. Accordingly, the CPU (or computer) does not restart from the BIOS, and the second operating environment in the standby state is set by the switching operation. Therefore, the time required for switching is shortened (speeded up), and the switching is performed.
  • the operability and convenience for the are improved.
  • the first operating environment and the second operating environment are different from each other in the operation content, and preferably have a difference in security level.
  • switching between the first and second operating environments can be quickly performed, and an information processing technology with high operability and convenience can be provided.
  • FIG. 1 is a schematic configuration diagram of a network communication system including an information processing terminal according to the present invention. It is the external view which looked at an example of the external appearance of an information processing terminal from the front side and a little upper direction.
  • It is a hardware block diagram of an information processing terminal. It is a block diagram which shows an example of the function block diagram centering on CPU of an information processing terminal. It is a block diagram which shows an example of management CPU. It is a flowchart which shows an example of the starting procedure performed by CPU. It is a flowchart which shows an example of the parallel starting procedure performed by management CPU. It is a flowchart which shows an example of the process of CPU after starting performed by CPU. It is a flowchart which shows an example of the process of CPU after starting performed by CPU.
  • FIG. 1 is a schematic configuration diagram of a network communication system including an information processing terminal according to the present invention.
  • the network communication system shown in FIG. 1 includes a network 1 such as the Internet, which is an information transmission path.
  • a plurality of Internet service providers 2 (ISP: Internet Service Provider) are installed in the network 1.
  • the ISP 2 is connected to a relay unit 3 as a mechanism for performing transmission / reception of files by e-mail, as required, and can communicate with the information processing terminal 4 by wireless communication.
  • ISP Internet Service Provider
  • the relay unit 3 includes a mail system 30 and a wireless communication unit 31.
  • the mail system 30 functions as an information transmission system, and is connected to the network 1 via the ISP 2.
  • the mail system 30 includes a mail gateway 301 that performs conversion between the format and protocol of a file transmitted / received by the information processing terminal 4 and the format and protocol of a file transmitted by electronic mail on the network 1.
  • a general-purpose mail server 302 equivalent to a conventional mail server that controls temporary storage and transmission / reception of files in the mode, and a specific mail reception notification server 303 for notifying whether there is an incoming file in the specific mode described later.
  • the specific mail reception notification server 303 is related to a specific mail server 63 that controls temporary storage and transmission / reception of e-mails in a specific mode and an incoming call notification described later, as will be described later.
  • the wireless communication unit 31 includes a required number of antennas, and includes a transmission / reception unit that transmits and receives radio waves to and from the information processing terminal 4.
  • the transmission / reception unit is provided in various places.
  • the wireless communication unit 31 can employ Wi-Fi (wireless fidelity), which is a wireless device using the IEEE 802.11 series communication standard.
  • Wi-Fi wireless fidelity
  • the wireless communication unit 31 may be a wireless communication network such as a code division multiple access (CDMA) based network as an intra-area wireless communication means.
  • CDMA code division multiple access
  • the information processing terminal 4 is preferably portable if it is assumed that near field communication is performed with the cash register terminal 7 of the store SH as in the present embodiment.
  • a portable information terminal a cellular phone, a mobile phone, a smartphone, or a pager can be applied.
  • Internet home appliances including a portable personal computer, an information terminal, a laptop computer, a digital television capable of bidirectional communication if portable can be applied.
  • the electronic transaction with the cash register terminal 7 is an example, and when paying attention to the activation of the CPU and the switching of the setting operation environment in the present invention, it is not necessarily required to be portable.
  • the information processing terminal 4 can make a call with another mobile phone or a fixed telephone (not shown) via the relay unit 3, and other information processing terminals via the relay unit 3, ISP 2, and network 1. 4 can send and receive files by e-mail, and browse or acquire desired image information by browsing various websites 5 installed (connected) on the network 1. Is possible.
  • a general-purpose operating environment that is, a general-purpose AP (application) that operates under the operating environment of a general-purpose OS (Operating System).
  • a member who desires authority to receive provision of a predetermined service obtains the information processing terminal 4 by receiving membership registration through a predetermined procedure, or hardware having a function corresponding to the information processing terminal 4 (Typically, an external device 4a (shown by a broken line in FIG. 1)) or software is attached.
  • the predetermined service is provided by a specific AP (application) that operates in an operating environment (specific mode) of a specific OS (Operating System) described later.
  • AP application
  • OS Operating System
  • the information obtained at the time of member registration for example, name (name), identification information for identifying (identifying) the information processing terminal 4 scheduled to be used (phone number or email address, or SIM card (Subscriber Identity) Module card) information), financial institutions established as necessary, and their account numbers.
  • information excluding the password may be stored (registered) using a predetermined memory area of the external device 4a, and necessary information may be read out every time authentication processing is required. Alternatively, such information may be stored in the memory area of the information processing terminal 4 or the SIM card so as to be readable as described above.
  • the owner (store manager) of the cash register terminal 7, its financial institution, and its account number are stored.
  • the electronic transaction server 61 and the certification authority server 62 obtain information from the authentication server 6 regarding the corresponding member, cash register terminal, financial institution server, and the like.
  • the external device 4a information for identifying the external device 4a is also registered in the authentication server 6.
  • a memory card such as an SD (Secure Digital) memory card as a flash memory, a device having a USB interface, PCI (Peripheral Component Interconnect), or the like is applicable.
  • the information processing terminal 4 is capable of executing electronic transactions as one of the specific APs.
  • an authentication server 6 that performs member authentication in accordance with processing of a specific AP.
  • the authentication server 6 is connected to an electronic transaction server 61 and a certification authority server 62 that provide an environment executed by a specific AP, for example.
  • the electronic transaction server 61 performs electronic transaction processing, electronic transaction history management for each member, and electronic payment management.
  • the network 1 when a member conducts an electronic transaction via the information processing terminal 4, for example, one or a required number of cash register terminals 7 provided in the store SH, and further for executing an electronic transaction settlement
  • One or a plurality of financial institution servers 8 are connected.
  • the member information mainly includes name, date of birth information for identifying an individual, necessary identification information and password for authentication, and the registered information processing terminal 4 (phone number, e-mail address or SIM card). Information), necessary identification information, financial institution information and account number information, etc., and authentication is performed using any of these information or combination information obtained by combining a plurality of predetermined information.
  • the cash register terminal 7 includes a known short-range communication unit that can perform short-range communication with the information processing terminal 4.
  • the certificate authority server 62 is installed in, for example, a local government that issues various documents such as a certificate requested by a member (certificate issuing service).
  • the certification authority server 62 creates, for example, personal information, and stores and manages it, for example, an organization that is a public or quasi-public (including private sector) organization (country (ministry), local government, association, It can be used as an example applied to information communication with the information processing terminal 4.
  • information processing terminal 4 As an example applied to information communication, in addition to the issuance of various certificates by the above-mentioned local governments, it is assumed that various application forms are sent out, guidance documents, notification documents (for example, utility charges) are received, and the like.
  • the certification authority server 62 for example, when a member issues an electronic certificate (for example, a seal certificate) from the information processing terminal 4 of the person to the government office (after receiving the authentication). Can be considered. Then, after receiving the seal certificate, the member may transmit (electronically submit) the seal certificate to the corresponding financial institution server 8. Or what is necessary is just to make it transmit to apparatuses (other terminals, a server, etc.) outside a figure.
  • the electronic transaction server 61 and the certification authority server 62 are connected to the network 1 through the authentication server 6, but may be in a mode in which transmission / reception of information with the information processing terminal 4 is permitted on the condition of authentication. For example, a form directly connected to the network 1 may be used.
  • the specific mail server 63 receives and temporarily stores the file created in the specific mode on condition that the authentication server 6 authenticates.
  • the specific mail server 63 extracts at least transmission destination information from the file, and transmits a file arrival notification signal to the specific mail reception notification server 303 together with the transmission destination information.
  • the specific mail reception notification server 303 has an authentication processing function for member authentication information included in a request signal, which will be described later, from the information processing terminal 4, and through this authentication processing, there is an incoming file to the transmission source of the request signal Search for the presence of a notification signal.
  • the specific mail reception notification server 303 replies with this incoming notification signal or a signal to that effect.
  • FIG. 2 is an external view of an example of the external appearance of the information processing terminal viewed from the front side and slightly above.
  • a smartphone is employed as the information processing terminal 4.
  • a smartphone is a mobile phone that has a built-in computer and has a data processing function in addition to a telephone call.
  • the smartphone can be connected to the Internet to execute the functions of an e-mail and a web browser.
  • the information processing terminal 4 has a rectangular parallelepiped housing 40, in which a circuit board and an electronic circuit (both not shown) are arranged.
  • a display unit 41 having a required size is disposed on substantially the entire front surface.
  • the display unit 41 displays an image, and a liquid crystal panel, a plasma display, or an organic EL (Electro-Luminescence) element can be used.
  • a transparent or translucent touch panel 42 is stacked on the upper surface of the display unit 41.
  • the touch panel 42 is configured to output contact with the panel surface as a coordinate signal of the contact position.
  • the touch panel 42 may be a capacitance type, an ultrasonic type, a photoelectric type, or the like in addition to a configuration using a known resistive film type as a detection mechanism.
  • a plurality of icons 41a having codes or figures associated with various application (AP) programs are displayed at the set display coordinate positions.
  • the icon 41a is for selectively specifying any one of the general-purpose APs from a plurality of general-purpose APs.
  • the corresponding general purpose AP is activated.
  • the telephone function icon 41a is designated, the screen is switched to a destination telephone number input screen or a telephone number list screen.
  • the destination telephone number is designated and confirmed on the screen, the call state is entered. It is like that.
  • an icon 41b that indicates a specific AP that is preferably performed in a secure state is provided.
  • One specific AP may be used, but in the present embodiment, a plurality of applications, that is, as described above, two applications of electronic transaction processing and certificate issuance processing are assumed to be three or more including further types of processing. Also good.
  • icons 41b corresponding to the specific APs are provided (displayed on the display unit 41). The specific AP is not necessarily limited to the secure state, and this aspect will be described later.
  • a power switch 43 for starting and stopping the information processing terminal 4 and a microphone 44 for calling are provided below the display unit 41.
  • a speaker 45 for calling and a short-range communication unit 46 for performing short-range communication with the cash register terminal 7 via the short-range communication unit of the cash register terminal 7 are provided.
  • Short-range communication is performed using infrared rays, ultrasonic waves, or electromagnetic waves.
  • the housing 40 includes an antenna unit (see FIG. 4, wireless communication unit 47) that can communicate with the wireless communication unit 31, and receives other members, such as GPS (Global Positioning System), for performing other functions.
  • GPS Global Positioning System
  • the loading part structure 48 (it shows with a broken line in the figure) in which this external device 4a can be loaded is formed in the suitable place of the housing
  • FIG. 3 is a hardware configuration diagram of the information processing terminal 4.
  • the information processing terminal 4 includes a central processing unit (CPU) 400 that centrally controls the operation of the information processing terminal 4, a boot ROM 4001 that stores a basic input / output system (BIOS) that is a startup program, and the CPU 400.
  • RAM 4002 functioning as a work memory for temporarily storing the contents processed by the above.
  • the contents temporarily stored in the RAM 4002 include at least the contents of processing of the CPU 400 itself, the developed program, and the contents of the chip set indicating the operation state.
  • the chip set is a main component constituting a mother board (not shown), and includes various flags that control the exchange of data between all components connected to the motherboard, such as the CPU 400, the RAM 4002, and other memories. .
  • the information processing terminal 4 includes a management CPU 14 as a management chip.
  • the management CPU 14 functions as a management control unit for switching the operating environment (mode) of the CPU 400.
  • the management CPU 14 is connected to the boot ROM 4001 and the RAM 4002.
  • the information processing terminal 4 includes a memory unit 4003 for general-purpose mode and a memory unit 4004 for specific mode.
  • the memory units 4003 and 4004 are connected to the CPU 400 via the management CPU 14.
  • the memory units 4003 and 4004 may be hard disks (HDD), for example.
  • the general-purpose mode memory unit 4003 includes a program memory 40031 formed of a ROM or a flash ROM, and a storage memory 40032 formed of a RAM or a flash ROM, for saving data.
  • the specific mode memory unit 4004 includes a program memory 40041 composed of a ROM or a flash ROM, and a storage memory 40042 composed of a RAM or a flash ROM, for saving data.
  • the program memory 40031 is a program for setting the CPU 400 to the general-purpose mode operating environment, that is, a general-purpose MBR (Master Boot Recorder) area in which a master boot program for the general-purpose mode is written, and for example, Windows (registered trademark) or the like.
  • the management CPU 14 can quickly resume the selected general-purpose AP by re-deploying the stored contents in the RAM 4002 without starting the BIOS. The allowance is made possible.
  • the program memory 40041 is a program for setting the CPU 400 to an operating environment of a specific mode, that is, a specific MBR (Master Boot Recorder) area in which a master boot program for a specific mode is written, and for example, Windows (registered trademark) or the like.
  • a specific MBR Master Boot Recorder
  • the area in which the operating program (specific OS) is written, and various application programs (specific AP) that operate on the specific OS such as electronic transactions, certificate issuance processing, encoding and decryption processing for created files, and mailers are written.
  • the contents of the RAM 4002 are temporarily stored in the storage memory 40042 by the management CPU 14.
  • the management CPU 14 can quickly resume the selected specific AP by re-deploying the stored contents to the RAM 4002 without starting the BIOS. The allowance is made possible. The operation of the management CPU 14 will be described later with reference to FIG.
  • FIG. 4 is a block diagram showing an example of a functional configuration diagram centering on the CPU of the information processing terminal.
  • a display unit 41 to a wireless communication unit 47 are connected to the CPU 400 of the information processing terminal 4.
  • the CPU 400 functions as an activation processing unit 401 that starts an activation process when the power is turned on by executing a program stored in the boot ROM 4001 and the memory units 4003 and 4004 and expanded in the RAM 4002. Further, the CPU 400 executes a program stored in the memory units 4003 and 4004 and developed in the RAM 4002 to control a process related to the general-purpose AP, a general-purpose OS execution environment, and a specific OS execution environment.
  • Mode switching instruction unit 403 for instructing switching between the authentication processing unit, an authentication processing unit 404 for executing authentication for the information processing terminal 4 and the member (external device 4a, etc.) when executing the specific AP, and a specific AP for controlling processing related to the specific AP
  • the mail reception in the general-purpose mode may be executed by generating a request signal for the general-purpose mode and transmitting it to the general-purpose mail server 302, as is well known, although explanation is omitted.
  • the activation processing unit 401 starts activation by reading the BIOS program from the boot ROM 4001 to the RAM 4002. That is, the BIOS program read into the RAM 4002 checks the memory and peripheral devices, and reads the general-purpose MBR into the RAM 4002 with priority given to the memory unit 4003 as the de facto of the memory units 4003 and 4004, and executes it. .
  • the general-purpose MBR reads the general-purpose loader into the RAM 4002, and then the general-purpose loader reads the general-purpose OS into the RAM 4002 by the general-purpose loader and displays the initial screen on which the icons 41 a and 41 b are displayed. Read out.
  • the image display processing unit 406 displays an initial screen on which various icons 41a and unique icons 41b are arranged. In accordance with a designated AP, the screen of the lower layer, and An image corresponding to the operation is displayed. Note that the image display processing unit 406 performs drawing processing of various images displayed on the display unit 41 in addition to displaying an initial screen and the like.
  • the general-purpose AP processing unit 402 includes a general-purpose AP selection determination unit 4021 and a general-purpose AP execution processing unit 4022 that executes the selected general-purpose AP.
  • the general-purpose AP selection determination unit 4021 determines which icon has been selected from the display coordinate information of each icon 41a and the coordinate signal of the position of the touch panel 42 that the member has contacted (or contacted).
  • the general-purpose AP execution processing unit 4022 expands the general-purpose AP corresponding to the selected icon from the memory unit 4003 to the RAM 4002 and executes the general-purpose AP.
  • the mode switching instruction unit 403 monitors the operation mode of the CPU 400. When the icon 41b corresponding to one of the specific APs is selected while the CPU 400 is in the general-purpose mode, the selection information is output to the management CPU 14. To do. Further, when the CPU 41 is in the specific mode and the icon 41a corresponding to any of the general-purpose APs is selected, the mode switching instruction unit 403 outputs such selection information to the management CPU 14. When the selection information is input from the CPU 400, the management CPU 14 executes a mode switching process as will be described later.
  • the authentication processing unit 404 is executed when the mode switching instruction unit 403 instructs to switch to a specific OS.
  • the authentication processing unit 404 is input via the information processing terminal 4 from the information processing terminal 4 and the identification information and other information of the member (external device 4a, etc.) necessary for the authentication process executed by the authentication server 6 (for example, from the member.
  • a signal including a password is transmitted to the authentication server 6 as an authentication request signal, and an authentication result is received from the authentication server 6. If the authentication is affirmed, the authentication processing unit 404 permits the mode switching to the specific mode, and if the authentication is denied, the authentication processing unit 404 prohibits the mode switching.
  • a reply is sent to the requesting information processing terminal 4.
  • the authentication process in the authentication server 6 may be performed when switching to a specific AP, but every time information is transmitted from the information processing terminal 4 to the electronic transaction server 61 or the certification authority server 62, the authentication server 6 performs the authentication process. May be executed.
  • the specific AP processing unit 405 includes a specific AP selection determination unit 4051 and a specific AP execution processing unit 4052 for executing the selected specific AP.
  • the specific AP selection determination unit 4051 determines which icon has been selected from the display coordinate information of the icon 41b and the coordinate signal of the position of the touch panel 42 in contact (or contact) with the member.
  • the specific AP execution processing unit 4052 expands the specific AP corresponding to the selected icon from the memory unit 4004 to the RAM 4002, and executes the specific AP.
  • the near field communication processing unit 407 performs communication within the near field range with the cash register terminal 7 via the near field communication unit 46.
  • the short-range communication is performed using infrared rays, ultrasonic waves, or electromagnetic waves, and the short-range communication unit 46 is a transmission / reception unit thereof.
  • the communication processing unit 408 performs communication with the ISP 2 via the wireless communication unit 47 having a transmission / reception antenna and the relay unit 3.
  • the request processing unit 409 determines whether or not an external file created in the specific mode operating environment is received by the specific mail server 63 when the information processing terminal 4 is in the general mode or specific mode operating environment. Is generated at a predetermined cycle, and the specific mail reception notification server 303 is accessed (transmitted). The specific mail reception notification server 303 responds to the request signal when the above-mentioned incoming notification signal (addressed to itself) from the specific mail server 63 is written in the storage area corresponding to the mail address that issued the request signal. Then, an incoming call notification signal is returned to the information processing terminal 4 that is the transmission source.
  • the request processing unit 409 When the request processing unit 409 receives the incoming call notification signal, the request processing unit 409 issues an instruction to the image display processing unit 406 to display the notification, and the speaker 45 performs voice synthesis or a prepared notification voice as necessary. (Buzzer sound or “Incoming call” etc.) More specifically, the request processing unit 409, for example, a timing unit provided in the RAM 4002 measures a predetermined time, for example, a period of several seconds to 1 minute, and generates a request signal every time the predetermined time is reached. Like to do.
  • a predetermined number is set between the cash register terminal 7 and the authentication server 6, and between the information processing terminal 4 and the authentication server 6, the electronic transaction server 61, and the certification authority server 62.
  • the information file is transmitted and received by a packet formed in accordance with the protocol of the above, typically TCP / IP (transmission control protocol / internet protocol).
  • TCP / IP transmission control protocol / internet protocol.
  • ISO / IEC18092 ECMA-340
  • ISO / IEC21481 ECMA-342
  • ISO / IEC14443 ISO / IEC14443
  • ISO / IEC15693 JISX6319-4
  • the information processing terminal 4 determines whether the address information indicating the transmission destination added to a predetermined position (header area) of each packet as a transmission signal or a reception signal is a global IP address based on the Internet protocol, It is different from the global IP address assignment method (a global IP address is an identifiable form), for example, a predetermined local IP address (MAC address) according to Ethernet (registered trademark) or the like. Address information (routing table or arp (Address Resolution Protocol) table) for identification is set. The packet is checked against the table and transmitted only to the route with the matching address, whereby the transmission path can be switched between the Internet and the dedicated network.
  • the authentication server 6 including the electronic transaction server 61 and the certification authority server 62
  • the cash register terminal 7 are connected to a dedicated network.
  • special information is transmitted / received between the information processing terminal 4, the authentication server 6 (including the electronic transaction server 61 and the certification authority server 62), the cash register terminal 7, and the financial institution server 8. You may make it perform the process of.
  • the special processing for the transmission information may be encryption or encoding (embedding processing in an image signal or the like) different from the processing used in the general-purpose mode. Even in this method, the network is switched by software as compared with the general-purpose mode.
  • the specific AP selection determination unit 4051 determines which icon 41b is selected from the display coordinate information of the icons 41a and 41b and the contact position coordinate signal to the touch panel 42.
  • the specific AP execution processing unit 4052 executes processing according to the member's operation according to the selected specific AP.
  • information is exchanged between the cashier terminal 4 and the electronic transaction server 61.
  • certificate issuance is selected as the specific AP, information is exchanged with the certification authority server 62.
  • an example of the processing procedure of each specific AP will be briefly described.
  • the cash register terminal 7 includes an operation unit having various operation keys such as a numeric keypad and addition / subtraction as provided in a general cash register (cash register).
  • the cash register terminal 7 sequentially receives the value of the purchased product or the provided service via the operation unit, and accumulates the value with a cumulative key or the like to calculate the total transaction amount.
  • the information processing terminal 4 receives the balance information as electronic money from the information processing terminal 4 to the cashier terminal 7 on the condition that the signal indicating that the pre-verification has been affirmed is received from the electronic transaction server 61. Sent by near field communication. At the cash register terminal 7, the total transaction amount is subtracted from the received balance information, and a new balance is calculated.
  • the cash register terminal 7 transmits the total transaction amount and the new balance information to the electronic transaction server 61 and transmits the new balance information to the information processing terminal 4 by short-range communication.
  • the information processing terminal 4 transmits the new balance information received from the cash register terminal 7 to the electronic transaction server 61.
  • the electronic transaction server 61 performs a post-verification of both new balance information transmitted from the cashier terminal 7 and the information processing terminal 4. If the result of the post-matching matches, the balance information is updated and stored in the internal memory as new balance information, and an instruction to store the balance information is transmitted to the information processing terminal 4. Thereafter, a settlement instruction is transmitted from the electronic transaction server 61 to the financial institution server 8. In response to this instruction, the financial institution transfers the transaction amount from the member account to the account of the store trader such as the owner of the cash register terminal 7, thereby completing the settlement. The financial institution server 8 receives the completion of the settlement and transmits a message to that effect to the electronic transaction server 61. When receiving the notification, the electronic transaction server 61 updates the electronic transaction history of the corresponding member.
  • the electronic money is replenished to the electronic transaction server 61 for each member, for example, if necessary (e.g., according to an instruction from the member), the indicated amount is transferred from the account of the member to the electronic transaction server 61. What is necessary is just to carry out by transferring (that is, remittance) as electronic money to the internal memory of the member concerned. Further, when a mismatch occurs in one of the pre-verification and the post-verification, the transaction processing is stopped and re-operation is guided as necessary.
  • the certification authority server 62 extracts the resident's card of the corresponding member from the resident's card which is a kind of member information of all the members stored in advance, and the certifier registered in advance and its electronic seal, Provide date information and create an electronic resident card.
  • the certification authority server 62 transmits the created electronic resident card to the information processing terminal 4 that has issued the issue request.
  • the information processing terminal 4 prints out the received resident's card for the purpose of handing it to the other party, or transmits it to the other party as electronic information.
  • guidance documents or the like are transmitted regularly or irregularly, and in some cases, it is necessary to respond to them.
  • FIG. 5 is a block diagram showing an example of the management CPU.
  • the management CPU 14 is connected to a processing program storage unit 1401 that stores processing programs and a RAM 1402 that functions as a work area.
  • the management CPU 14 develops the program stored in the processing program storage unit 1401 in the RAM 1402 and executes it to additionally start up the operating environment of the specific OS in addition to the general-purpose OS at startup. It functions as a parallel activation control unit 141 for preparation, a mode switching I processing unit 142 that switches the general mode to the specific mode after startup, and a mode switching II processing unit 143 that switches the specific mode to the general mode after startup.
  • the parallel activation control unit 141 includes a first save processing unit 1411 for saving the contents of the RAM 4002 to the management memory 40032, an additional startup processing unit 1412 for reading the contents of the program memory 40041 to the RAM 4002, and starting the contents, and the contents of the RAM 4002 for the management memory 40042.
  • the first save processing unit 1411 saves the contents currently written in the RAM 4002 (that is, the contents set in the operation environment of the general-purpose mode just started up) in the storage memory 40032 and stores them.
  • the parallel activation control unit 141 resets the RAM 4002 as necessary (functions as a reset unit).
  • the additional activation processing unit 1412 sequentially expands the specific MBR, the specific loader, and the specific OS from the program memory 40041 to the RAM and operates them.
  • the second save processing unit 1413 saves the contents actually written in the RAM 4002 (that is, contents set in the operation environment of the specific mode) in the storage memory 40042.
  • the redeployment processing unit 1414 expands the contents of the storage memory 40032 to the RAM 4002 in a state where the RAM 4002 is reset by the reset unit of the parallel activation control unit 141 as necessary.
  • the information processing terminal 4 is set to the general-purpose mode operating environment, and the specific mode is once read out and is in the evacuation state (or standby state). Therefore, it is possible to switch modes quickly and improve operability and convenience.
  • the reset process for the RAM 4002 may be a process for writing predetermined data, for example, data “0” at a high speed.
  • the mode switching I processing unit 142 When switching the general-purpose mode to the specific mode, the mode switching I processing unit 142 saves (updates) the contents of the current general-purpose mode RAM 4002 in the storage memory 40032 and stores them in the storage memory 40042. Content, that is, the content of the specific mode is read out to the RAM 4002. Note that the RAM 4002 may be reset once between the saving and the reading.
  • the mode switching II processing unit 143 saves the contents of the RAM 4002 in the current specific mode in the storage memory 40042 and stores it (updated), while storing it in the storage memory 40032. Contents, that is, the contents of the general-purpose mode are read out to the RAM 4002. Note that the RAM 4002 may be reset once between the saving and the reading.
  • the mode switching I processing unit 142 and the mode switching II processing unit 143 change the mode from the mode switching instruction unit 403 when the icons 41a and 41b are newly selected under the operating environment of the general-purpose OS or the specific OS. Accordingly, the switching process is executed only when the mode is changed. Further, since the mode can be switched by rewriting the OS by the switching process, the convenience is high. Further, since the contents of the RAM 4002 are saved only in the corresponding storage memories 40032 and 40042, malware infection between the memory units 4003 and 4004 can be prevented. Further, since the contents of the RAM 4002 are once reset, it becomes more secure.
  • FIG. 6 is a flowchart illustrating an example of a startup procedure executed by the CPU 400.
  • activation of the CPU 400 upon power-on is started by instructing execution of a BIOS program (command) (step S1).
  • the BIOS program first checks the CPU, memory, and other peripheral devices as usual.
  • the CPU 400 reads the general-purpose MBR written at the head position of the program memory 40031 as a de facto into the RAM 4002 by the OS start routine of the last part of the BIOS program.
  • the master boot program (bootstrap loader) of the general-purpose MBR is read into the RAM 4002 by the BIOS startup routine, and thereafter, control is passed to the master boot program.
  • the master boot program checks the partition table in the program memory 40031, searches for an active basic partition, and reads the partition boot sector (PBS) at the head position of the partition.
  • the partition boot sector is created at the time of formatting by the general-purpose OS, and stores a boot program (initial program loader: IPL) for starting the general-purpose OS installed in the partition and its partition information.
  • the master boot program reads the IPL of the active primary partition into the memory, and thereafter passes control to the IPL.
  • the IPL searches the first basic partition of the program memory 40031 for a general purpose loader for starting the general purpose OS, reads it into the RAM 4002, and passes control to the general purpose loader (step S3).
  • the general-purpose loader loads the general-purpose OS from the program memory 40031 into the RAM 4002 (step S5), and then initializes the kernel of the general-purpose OS (step S7).
  • a general purpose AP for setting an initial screen is read into the RAM 4002 by the general purpose OS (step S9).
  • a chip set having various flags indicating the operation state of the CPU 400 is set.
  • FIG. 7 is a flowchart showing an example of a parallel activation procedure executed by the management CPU 14.
  • step Q1 it is determined whether or not the start-up operation from the BIOS accompanying power-on has been completed.
  • the determination of the end of the activation operation may be made based on a predetermined situation, for example, whether or not a general-purpose AP for setting an initial screen has been read into the RAM 4002.
  • the content currently written in the RAM 4002 (that is, the content set in the general-purpose mode operating environment) is saved in the storage memory 40032 and stored (step Q3).
  • step Q5 the RAM 4002 is reset (step Q5).
  • the specific MBR is read from the program memory 40041 into the RAM 1402 and the specific loader is further read by the additional activation process of the management CPU 14 (step Q7).
  • the specific loader is activated (step Q9), and the specific OS is sequentially read into the RAM 4002 (step Q11).
  • the kernel of the specific OS is initialized (step Q13).
  • a specific AP that needs to be started up at the time of activation is read into the RAM 4002 by the specific OS (step Q15).
  • the contents currently written in the RAM 4002 (that is, contents set in the operating environment of the specific mode) are saved in the storage memory 40042 and stored (step Q17). Then, after the RAM 4002 is reset as necessary, the contents of the storage memory 40032 are redeployed in the RAM 4002 (step Q19). With this processing, the CPU 400 is set to the general-purpose mode operating environment, and the specific-mode operating environment is waited in the storage memory 40042. Therefore, the operation mode of the CPU 400 can be quickly switched only by rewriting the contents of the RAM 4002 with the contents of one of the storage memories 40032 and 40042.
  • FIG. 8 and 9 are flowcharts illustrating an example of processing of the CPU after startup, which is executed by the CPU 400.
  • FIG. First, for example, an interruption is permitted (step S21). This interruption is for request processing and mode switching processing described later.
  • step S23 it is determined whether or not the icons 41a and 41b are selected (step S23). If any icon 41a of the general-purpose AP is selected (YES in step S25), execution of the selected general-purpose AP is started (step S27), and execution processing of the general-purpose AP is performed (step S29). . On the other hand, if the general-purpose AP has not been selected (assuming that the specific AP has been selected), the process proceeds to step S37.
  • step S31 it is determined whether or not the execution of the general-purpose AP has been completed. If not, the process proceeds to step S29 and the current general-purpose AP is continuously executed.
  • the end of various APs is generally accepted by touching an icon indicating “End” or an icon indicating “Cancel” displayed at an appropriate position on the display unit 41 during AP operation.
  • step S33 it is determined whether or not the power is off. If the power is off, this flow is terminated. On the other hand, if the power is not turned off, the process returns to step S23 and the same processing is repeated.
  • step S25 if a specific AP is selected in step S25, the mode switching I process is instructed to the management CPU 14 in step S35. Next, it is determined whether or not the mode switching I has been completed, that is, the input of a return signal (step S37). When the return signal is input, the selected specific AP is read into the RAM 4002 (step S39).
  • step S41 it is determined whether or not there is an instruction to import an incoming file that can be captured only in the operating environment of the specific OS (step S41). If there is an instruction to read the incoming file, a file fetch process is executed (step S43). Specifically, it accesses its own mailbox of the specific mail server 303 and takes in the incoming file. Then, the fetched file is decrypted by a decryption unit (not shown) or the like, and the content of the decrypted file is displayed on the display unit 41, for example (step S45). Next, the specific AP is executed (step S47). Then, it is determined whether or not the processing of the specific AP is completed (including forced termination in the middle of execution) (step S49). If not completed, the process returns to step S47 and the execution of the specific AP is continued. On the other hand, if the specific AP has ended, the process proceeds to step S55.
  • step S51 If there is no instruction to read the incoming file in step S41, the specific AP selected in step S25 is executed (step S51). Then, it is determined whether or not the process of the specific AP has been completed by selecting the icon 41b indicating “end” or the like (step S53). If not, the process returns to step S51 and the execution of the specific AP is continued. The On the other hand, if the specific AP has ended, the process proceeds to step S55.
  • step S55 it is determined whether or not the icons 41a and 41b have been selected. If any of the general-purpose AP icons 41a has been selected (step S57), the management CPU 14 is instructed to perform mode switching II processing. (Step S59). Next, it is determined whether or not the mode switching II has ended, that is, the input of a return signal (step S61). When a return signal is input, the selected general purpose AP is read into the RAM 4002 (step S63), the process returns to step S27, and execution of the general purpose AP is started.
  • step S57 if neither of the icons 41a and 41b is selected in step S57, the process returns to step S33 to enter a standby state for selecting the icons 41a and 41b until the power is turned off. If the icon 41a corresponding to the general-purpose AP is not selected in step S57, the process proceeds to step S39, and the selected specific AP is read into the RAM 4002.
  • FIG. 10 is a flowchart showing an example of an interrupt I process (request signal transmission) executed by the CPU 400.
  • a request signal transmission instruction is issued (step S81), and then a request signal transmission process to the specific mail reception notification server 303 is executed (step S83).
  • FIG. 11 is a flowchart illustrating an example of an interrupt II process (notification of presence of an incoming file) executed by the CPU 400.
  • the reply signal is a file arrival notification signal (step S93)
  • an incoming call notification is performed (step S95).
  • the incoming call notification may be displayed in a suitable position on the display unit 41 in the form of a superimpose such as “There is an incoming file” or may be displayed with a predetermined symbol. Moreover, you may alert
  • the interrupt II process may be configured to interrupt for notification only when there is an incoming file.
  • the aspect processed integrally with interruption I process may be sufficient.
  • FIG. 12 is a flowchart illustrating an example of a request signal generation process executed by the CPU 400.
  • step S101 it is determined whether the power is on. If the power is on, a request signal transmission instruction is output (step S103). In response to the request signal transmission instruction, an interrupt I is generated and the above-described step S81 is executed.
  • step S105 a timer formed in software in the RAM 4002 is reset and started (step S105), and counted up every unit time (mainly 1 second) (step S107). Then, it is determined whether or not a predetermined time (predetermined count value) has been reached (step S109). If the predetermined time has not been reached, the process returns to step S107 and the count operation is continued. On the other hand, whenever the predetermined time is reached, the process returns to step S103 and a request signal transmission instruction is output. Note that the process of step S101 may be performed immediately after step S109. Further, this flowchart automatically ends when the power is turned off.
  • FIG. 13 is a flowchart showing an example of the mode switching I process executed by the management CPU 14.
  • the contents of the RAM 4002, which is the work memory of the CPU 400, that is, the general-purpose OS, the initial setting program, and the like are saved in the storage memory 40032 and stored (step Q31).
  • the RAM 4002 that is a work area is reset (step Q33), and the contents of the specific OS and the like stored in the storage memory 40042 are read into the RAM 4002 after the reset (step Q35).
  • a return signal is output to CPU 400 (step Q37).
  • FIG. 14 is a flowchart showing an example of the mode switching II process executed by the management CPU 14.
  • the contents of the RAM 4002, which is the work memory of the CPU 400, that is, the specific OS and the initial setting program are saved in the storage memory 40042 and stored (step Q51).
  • the RAM 4002 as the work area is reset (step Q53), and the general-purpose OS and the initial setting program stored in the storage memory 40032 are read into the RAM 4002 after the reset (step Q55).
  • a return signal is output to CPU 400 (step Q57).
  • the management CPU 14 supervises switching from the general-mode operation environment to the specific-mode operation environment or vice versa. In this case, the management CPU 14 instructs to switch to a specific mode by instructing mode switching for monitoring.
  • authentication is performed when the specific mode is selected, but various other methods can be used for the authentication processing. In the present invention, authentication is not necessarily required, and high security can be ensured by pre-collation and post-collation, and by encryption and encoding (embedding in an image) of a transmission / reception file. Furthermore, in this embodiment, when the icon 41b is selected and switching to the specific mode is activated, the authentication process is performed. Instead, the information processing terminal 4 sends the electronic transaction server 61, the certification authority, and so on. A mode may be adopted in which authentication is performed through the management server 6 each time a file is transmitted to the server 62.
  • an icon is used as an operation unit for mode switching or AP selection.
  • keys, buttons, and other operation input members for example, voice recognition
  • technology provided in advance in an information processing terminal to which the present invention can be applied.
  • the information processing terminal 4 since it is possible to switch to the specific mode on condition that the external device 4a is loaded in the information processing terminal 4, the information processing terminal 4 itself is generally used. It may be a device.
  • the Internet is exemplified as the network 1, and the files in the specific mode are encrypted and encoded peculiar to the members different from the general-purpose mode, and different networks in software are adopted.
  • a mode in which a physically different network may be adopted as a dedicated network in which the file transmission path in the specific mode is provided separately from the Internet.
  • an icon corresponding to each specific AP is provided (displayed on the display unit 41).
  • the icon 41b is switched to the operating environment of the specific OS.
  • an icon corresponding to each specific AP in the lower layer may be displayed so as to be selectable.
  • the mode switching instruction unit 403 in the CPU 400 of the information processing terminal 4 performs the monitoring or instruction of mode switching. Instead, the mode switching instruction unit 403 monitors the mode switching instruction unit 403.
  • the mode switching I processing unit 142 and the mode switching II processing unit 143 of the management CPU 14 may be provided with a switching instruction function.
  • the parallel activation process may employ a method of starting from a specific MBR in addition to a method of starting from a general-purpose MBR.
  • the specific mode is not limited to this.
  • it can be used as an information management mode for updating own information or specific information.
  • it can be applied as a HEMS (Home Energy Management System) mode in which a remote instruction for home appliance operation control is given from the outside.
  • HEMS Home Energy Management System
  • the information management mode it is applied as follows. That is, the information such as self is stored in a predetermined data server on the network in association with member information of a member having update authority. Then, when the member instructs the icon of the corresponding mode of the information processing terminal 4, an update instruction and member information are transmitted, and the information can be updated through verification of the member information and the like by the predetermined data server. 41. By doing so, only the corresponding member can update the information, and for other members, for example, browsing of the information can be stopped.
  • the home server In the case of the HEMS mode, it is applied via a home server that controls the operation of each home appliance in the residence.
  • the home server outputs a signal for controlling the power supply to each home appliance, and has an operating state monitoring function and is connected to a network such as the Internet.
  • the home server typically stores in advance pairing information for identifying each information processing terminal 1 possessed by a resident (one person or a plurality including a family member) of the residence, and is received via the network. Whether or not the information processing terminal 4 is an information processing terminal associated with a resident can be identified through pairing information.
  • the home server has information for identifying each home appliance, and can specify the home appliance designated by the information processing terminal 4.
  • the home server passes the verification that it is the information processing terminal 4 of the member, and In accordance with the operation instruction, power supply control is performed on the household electrical appliance that has been instructed.
  • the network is not limited to the Internet or the like that enables the operation of home appliances from outside, but is equipped with short-range communication means while staying indoors with Bluetooth (Bluetooth) or other short-range communication means of the information processing terminal 4 A mode in which the home server is relayed and an operation instruction is given to each home appliance may be employed.
  • Bluetooth Bluetooth
  • Such processing includes FEMS (Factory Energy Management System), building air conditioners, and lighting devices when the control target is a power device such as a manufacturing robot on a production line in a factory. It can also be applied to BEMS (building Energy Management System) in certain cases.
  • the present invention can also be applied to a DR (Demand Response) method in which the power provider side controls the power consumption on the customer side according to the demand of the power system.
  • the specific mode is also applied to a crime prevention mode that allows a specific member (specific information processing terminal 4) on the go to view a surveillance image of a security sensor (for example, a surveillance camera) installed in a home via the Internet or the like. Is possible.
  • the present invention provides an information processing apparatus that develops the first operating system stored in the first memory in the work memory and sets the CPU as the first operating environment at the time of startup.
  • a management CPU ; a second memory storing a second operating system; and a first storage memory and a second storage memory.
  • the management CPU receives the start and the first operating system After being expanded in the memory, the contents saved in the work memory are saved in the second memory after being saved by the first saving means for saving the contents saved in the first storage memory and the first saving means.
  • a second operating system that expands the second operating system in the work memory and sets the CPU in a second operating environment; and After the startup process, a second saving unit that saves the contents expanded in the work memory to a second storage memory, and after saving processing by the second saving unit, the contents are saved in the first storage memory Re-expanding means for re-expanding the contents to the work memory.
  • the first operating environment set in the CPU at the time of startup can be switched from the standby state to the second operating environment without restarting from the BIOS.
  • the operability and convenience for switching are improved.
  • the first memory stores one or more first application programs that operate in the operating environment of the first operating system
  • the second memory stores the operating environment of the second operating system. It is preferable that one or a plurality of second application programs operating in the above are stored. According to this configuration, one or more application programs can operate in a special second operating environment different from the first operating environment set at the time of startup.
  • the first application program includes a first program that transmits a file to another device connected to the Internet, and the second application program is connected to a dedicated network different from the Internet. It is preferable to include a second program that transmits a file to another information processing apparatus. According to this configuration, transmission of a file is performed by a transmission path using the Internet and a transmission path using a dedicated network physically different from the Internet.
  • the first application program includes a first program that transmits / receives a file to / from another information processing apparatus connected to the Internet, and the second application program is a predetermined program for a file to be transmitted. It is preferable to include a processing program that applies the processing method and a second program that transmits the processed file to another information processing apparatus connected to the Internet. According to this configuration, transmission of a file is performed through a transmission path using the Internet and a transmission path using a network that is different from the Internet in terms of software.
  • the difference in software means that the processing method (for example, encryption / encoding, presence / absence of embedding in an image) for a file to be transmitted is different although the transmission paths are the same.
  • the first and second memories are preferably individual disk memories. According to this configuration, even if the first memory is contaminated with malware, the second memory is not always immediately contaminated.
  • an operation unit for instructing activation of the first and second application programs is provided in the operating environment of the first operating system. According to this configuration, even in the operating environment of the first operating system, it is possible to instruct the activation of the second application program from the operation unit.
  • the operation unit preferably includes a display unit that displays icons for instructing activation of the first and second application programs, and selection processing means for selectively instructing the displayed icons. . According to this configuration, selection can be performed by a simple operation such as pressing the display position of the icon displayed on the display unit, and the corresponding application program is activated.
  • first mode switching means for expanding the contents saved in the second storage memory to the work memory is provided. According to this configuration, when switching from the first operating system to the second application program, the contents of the work memory are saved in the first storage memory, so that activation of the first operating system is instructed later In addition, it is possible to quickly set the work memory to the first operating environment without starting up the BIOS.
  • the contents of the work memory are saved in a second storage memory in response to the instruction, and after the saving, the contents are saved. It is preferable to include a second mode switching unit that expands the contents saved in the first storage memory to the work memory. According to this configuration, when switching from the second operating system to the first application program, the contents of the work memory are saved in the second storage memory, so that the activation of the second operating system is instructed later In addition, it is possible to quickly set the work memory to the second operating environment without starting up the BIOS.
  • a reset means for temporarily resetting the work memory is provided between the saving process of the stored contents in the work memory and the expansion process. According to this configuration, since the work memory is once cleared, even if malware or the like is hidden, it can be erased.
  • the management CPU, the second memory, and the second storage memory are mounted on an external device that can be attached to and detached from the apparatus main body. According to this configuration, there is a convenience that a general or existing information processing apparatus can be used and the second operating environment can be set by loading an external device inside the information processing apparatus.
  • an external device that can be loaded into the information processing apparatus and includes the management CPU, the second memory, and the second storage memory. According to this, a general thing can be adopted as an information processor.
  • a first operating system that operates in the first operating environment is stored.
  • 1 storage memory a second storage memory for storing a second operating system operated in the second operating environment, and a management CPU for switching the operating environment of the work memory in accordance with a selective instruction.
  • the management CPU stores the first operating system and processing contents expanded in the work memory in the first storage memory.
  • the second operation stored in the second storage memory is then stored in the second storage memory. It is preferable that deploying a system and process content in the work memory.
  • the CPU does not restart from the BIOS every time the operating environment is selectively switched. That is, storage in the corresponding storage memory, that is, the contents related to the first operating environment which is the current operating environment is saved in the first storage memory and updated and stored, and then the other operating environment in the standby state, That is, since the contents related to the second operating environment are expanded in the work memory, switching to the second operating environment is performed, so that the time required for switching is shortened (speeded up), and the operability for switching, Convenience is improved.
  • the current operating environment is the content related to the second operating environment saved in the second storage memory and updated, and then the other operating environment in the standby state, that is, the first operating environment. The same effect can be expected even when switching to the first operating environment is performed by expanding the contents related to.
  • the management CPU and the second storage memory are provided. It is preferable to employ an external device. According to this, a general thing can be adopted as an information processor.

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

In the present invention, with the startup of an information processing device (4), a generic OS is read into work memory (4002), and thereby, a CPU (400) is set to a generic-mode operational environment so that a generic AP is usable at any time, whereas by way of a management CPU (14) that subsequently begins to operate, a standby state of a specific OS is stored into storage memory (40042). Upon selection of a specific AP, without needing to activate the BIOS, a specific OS that is standing by is rapidly deployed into the work memory (4002).

Description

情報処理装置、その起動制御方法、その起動制御プログラム及び外部デバイスInformation processing apparatus, activation control method thereof, activation control program thereof, and external device
 本発明は、情報処理装置のCPU(Central Processing Unit)を起動する技術に関する。 The present invention relates to a technology for starting a CPU (Central Processing Unit) of an information processing apparatus.
 近年、携帯電話機は、通話機能の他、電子メール、情報検索・閲覧、電子マネー等の各種機能が付加されており、これら各機能を実行するための各種の重要情報が記憶されている。例えば、電子メール機能に関しては、相手の電子メールアドレスが含まれ、また、電子マネー処理では各種識別情報や銀行口座情報が含まれる。従って、携帯電話機や使用者の識別情報等がキャプチャー等によって盗まれて他人に不正に使用されると、なりすましの問題や、金銭や個人情報の盗難・盗用といった不正な行為につながることになる。従来、携帯電話機の不正使用を防止するために、電子マネーの使用に当たりパスワードの入力を求めたり、指紋の取得を求めたりして本人認証を行うものが提案されている。 In recent years, mobile phones have various functions such as e-mail, information search / browsing, electronic money, etc. in addition to a call function, and various important information for executing these functions is stored. For example, regarding the electronic mail function, the electronic mail address of the other party is included, and in the electronic money processing, various identification information and bank account information are included. Therefore, if the mobile phone or the user's identification information is stolen by capture or the like and illegally used by another person, it may lead to an impersonation problem or an illegal act such as theft or theft of money or personal information. 2. Description of the Related Art Conventionally, in order to prevent unauthorized use of a mobile phone, there has been proposed an apparatus for authenticating a person by requesting input of a password or requesting acquisition of a fingerprint when using electronic money.
 一方、特許文献1には、2つのオペレーティングシステム(OS1とOS2)を内装する携帯情報端末を、インターネット公衆網と専用線からなる私設網との間で選択的に切り替えて接続可能にし、私設網との接続時にのみ電子取引を行い得るようにしたシステムが提案されている。このシステムは、OS1であるMicrosoft(登録商標)Windows(登録商標)オペレーティングシステムを起動させて、携帯情報端末を無線モデム等を介してISPサーバに接続させ、インターネット網を経由して他の端末と情報の授受等を可能にする。また、電子取引を希望する場合には、PCMCIAカードである無線モデムをクライアント装置102に接続することで、アクセスエンジンアプリケーションをプロセッサに読み出して、OS2であるLinuxオペレーティングシステムを起動させる。そして、携帯情報端末を無線モデム、ISPサーバさらに専用線で直接接続された接続サーバを介して(あるいは接続サーバを省いて)、電子取引用のプログラムを備えたリモートサーバとの間で電子取引処理を可能にするものである。このシステムによれば、電子取引を行う場合には、携帯情報端末と、スパイウエアやマルウエア等による感染の虞が高いインターネットとの接続を遮断し、無線モデム部分と私設網のみとの接続を構築することで、よりセキュアな電子取引処理を実現するものである。 On the other hand, in Patent Document 1, a portable information terminal equipped with two operating systems (OS1 and OS2) can be selectively switched between a public network of the Internet and a private network consisting of a dedicated line, and the private network can be connected. A system has been proposed in which electronic transactions can be performed only when connected to the Internet. This system starts the Microsoft (registered trademark) Windows (registered trademark) operating system, which is OS1, connects the portable information terminal to the ISP server via a wireless modem, etc., and communicates with other terminals via the Internet network. Enables exchange of information. When electronic trading is desired, a wireless modem, which is a PCMCIA card, is connected to the client device 102 to read out the access engine application to the processor and activate the Linux operating system, which is OS2. Electronic transaction processing between a portable information terminal and a remote server equipped with a program for electronic transactions via a wireless modem, an ISP server, and a connection server directly connected by a dedicated line (or omitting the connection server) Is possible. According to this system, when performing electronic transactions, the connection between the portable information terminal and the Internet, which is highly likely to be infected by spyware or malware, is cut off, and the connection between the wireless modem portion and the private network is established. In this way, more secure electronic transaction processing is realized.
 なお、特許文献2,3には、1個のCPUで異なるOSを選択的に起動させるマルチブートコンピュータが記載されている。 Note that Patent Documents 2 and 3 describe a multi-boot computer that selectively activates different OSes with one CPU.
WO2007/109671WO2007 / 109671 特開2008-16030号公報JP 2008-16030 A 特開2006-201919号公報JP 2006-201919 A
 特許文献1には、内蔵のプロセッサを用いて、Microsoft(登録商標)Windows(登録商標)オペレーティングシステム(OS1)と、電子取引用としてのLinuxオペレーティングシステム(OS2)とを必要に応じて切り替えるというOSの切り替えが作用的に記載されている程度で、切り替えのための具体的な構成や動作は記載されていない。また、特許文献2,3に記載されているように、OSを切り替える場合には、再起動を実行する結果、ある程度の時間を要することになることから、OS1とOS2との間の切り替えは操作性や利便性の点で十分ではない。 Patent Document 1 discloses an OS that uses a built-in processor to switch between a Microsoft (registered trademark) Windows (registered trademark) operating system (OS1) and a Linux operating system (OS2) for electronic transactions as necessary. However, the specific configuration and operation for switching are not described. Also, as described in Patent Documents 2 and 3, when switching between OSs, a certain amount of time is required as a result of restarting, so switching between OS1 and OS2 is an operation. It is not enough in terms of sex and convenience.
 本発明の目的は、CPUが第1のオペレーティングシステムの動作環境に設定されている状態で第2のオペレーティングシステムを待機状態にして、第1、第2のオペレーティングシステム間の切り替えを迅速かつ高い操作性及び利便性で行い得る情報処理技術を提供するものである。 It is an object of the present invention to place a second operating system in a standby state in a state where the CPU is set in the operating environment of the first operating system, and to perform a quick and high operation for switching between the first and second operating systems. It is intended to provide information processing technology that can be performed with ease and convenience.
 本発明に係る情報処理端末は、起動時に、第1のメモリに記憶されている第1のオペレーティングシステムをワークメモリに展開して、CPUを第1の動作環境に設定する情報処理装置において、管理CPUと、第2のオペレーティングシステムが記憶された第2のメモリと、第1、第2の保管メモリとを備え、前記管理CPUは、前記起動を受けて前記第1のオペレーティングシステムが前記ワークメモリに展開された後、前記ワークメモリに展開された内容を第1の保管メモリに退避させる第1の退避手段と、前記第1の退避手段による退避処理後、前記第2のメモリに記憶されている第2のオペレーティングシステムを前記ワークメモリに展開して、前記CPUを第2の動作環境に設定する追加起動手段と、前記追加起動手段による起動処理後、前記ワークメモリに展開された内容を第2の保管メモリに退避させる第2の退避手段と、前記第2の退避手段による退避処理後、前記第1の保管メモリに退避されている内容を前記ワークメモリに再展開する再展開手段とを備えたことを特徴とするものである。 An information processing terminal according to the present invention is managed in an information processing apparatus that, when activated, expands a first operating system stored in a first memory to a work memory and sets a CPU as a first operating environment. A CPU; a second memory in which a second operating system is stored; and a first storage memory and a second storage memory. The management CPU receives the start and the first operating system is in the work memory The first evacuation means for evacuating the contents expanded in the work memory to the first storage memory and the evacuation processing by the first evacuation means are stored in the second memory. A second operating system that expands the second operating system in the work memory and sets the CPU in a second operating environment; and the additional starting unit A second saving unit that saves the contents expanded in the work memory to a second storage memory after the dynamic processing, and after saving processing by the second saving unit, the contents are saved in the first storage memory And re-expanding means for re-expanding the contents in the work memory.
 また、本発明は、起動時に、第1のメモリに記憶されている第1のオペレーティングシステムをワークメモリに展開して、CPUを第1の動作環境に設定する情報処理装置の起動制御方法において、管理CPUと、第2のオペレーティングシステムが記憶された第2のメモリと、第1、第2の保管メモリとを備え、前記管理CPUは、前記起動を受けて前記第1のオペレーティングシステムが前記ワークメモリに展開された後、前記ワークメモリに展開された内容を第1の保管メモリに退避させる第1の退避ステップと、前記第1の退避ステップによる退避処理後、前記第2のメモリに記憶されている第2のオペレーティングシステムを前記ワークメモリに展開して、前記CPUを第2の動作環境に設定する追加起動ステップと、前記追加起動ステップによる起動処理後、前記ワークメモリに展開された内容を第2の保管メモリに退避させる第2の退避ステップと、前記第2の退避ステップによる退避処理後、前記第1の保管メモリに退避されている内容を前記ワークメモリに再展開する再展開ステップとを備えたことを特徴とするものである。 In addition, the present invention provides a startup control method for an information processing apparatus in which a first operating system stored in a first memory is expanded in a work memory and a CPU is set in a first operating environment at startup. A management CPU; a second memory storing a second operating system; and a first storage memory and a second storage memory. The management CPU receives the start and the first operating system After being expanded in the memory, the contents stored in the work memory are stored in the second memory after the first saving step for saving the contents expanded in the first storage memory and the saving process by the first saving step. An additional starting step of expanding the second operating system in the work memory and setting the CPU in a second operating environment; and A second saving step for saving the contents expanded in the work memory to a second storage memory after the start processing by the operation step, and saving to the first storage memory after the saving processing by the second saving step And a re-expanding step for re-expanding the stored contents in the work memory.
 また、本発明は、起動時に、第1のメモリに記憶されている第1のオペレーティングシステムをワークメモリに展開して、コンピュータが第1の動作環境に設定された後、動作環境を管理する管理コンピュータによって第2のメモリに記憶されている第2のオペレーティングシステムによる第2の動作環境を動作待機状態にする情報処理装置の起動制御プログラムであって、前記起動を受けて前記第1のオペレーティングシステムが前記ワークメモリに展開された後、前記ワークメモリに展開された内容を第1の保管メモリに退避させる第1の退避手段、前記第1の退避手段による退避処理後、前記第2のメモリに記憶されている第2のオペレーティングシステムを前記ワークメモリに展開して、前記CPUを第2の動作環境に設定する追加起動手段、前記追加起動手段による起動処理後、前記ワークメモリに展開された内容を第2の保管メモリに退避させる第2の退避手段、前記第2の退避手段による退避処理後、前記第1の保管メモリに退避されている内容を前記ワークメモリに再展開する再展開手段、として前記管理コンピュータを機能させるものである。 The present invention also provides a management for managing an operating environment after the first operating system stored in the first memory is expanded in the work memory and the computer is set to the first operating environment at startup. A boot control program for an information processing apparatus for setting a second operating environment by a second operating system stored in a second memory by a computer to an operation standby state, the first operating system receiving the booting Is expanded in the work memory, the first saving means for saving the contents expanded in the work memory to a first storage memory, and after the saving processing by the first saving means, The stored second operating system is expanded in the work memory, and the CPU is set in the second operating environment. After the activation process by the activation unit and the additional activation unit, the second evacuation unit for evacuating the contents expanded in the work memory to the second storage memory, and after the evacuation process by the second evacuation unit, The management computer is caused to function as re-expansion means for re-expanding the contents saved in the storage memory to the work memory.
 これらの発明によれば、一般的に、情報処理装置の起動時には、第1のメモリに記憶されている第1のオペレーティングシステムがワークメモリに展開され、これによりCPUが、第1のオペレーティングシステムで動作する第1の動作環境に設定される。この情報処理装置はさらに、管理CPUと、第2のオペレーティングシステムが記憶された第2のメモリと、第1、第2の保管メモリとを備えている。そして、管理CPUによって以下の処理が行われる。まず、起動を受けて前記第1のオペレーティングシステムが前記ワークメモリに展開された後、前記ワークメモリに展開された内容が第1の保管メモリに退避される。次いで、前記退避の後、前記第2のメモリに記憶されている第2のオペレーティングシステムが前記ワークメモリに展開され、これによって前記CPUが第2の動作環境に設定される。さらに、前記ワークメモリに展開されている内容が第2の保管メモリに退避される。そして、前記退避の後、前記第1の保管メモリに退避されている内容が前記ワークメモリに再展開される。 According to these inventions, generally, when the information processing apparatus is activated, the first operating system stored in the first memory is expanded in the work memory, whereby the CPU is the first operating system. The first operating environment is set. The information processing apparatus further includes a management CPU, a second memory in which a second operating system is stored, and first and second storage memories. Then, the following processing is performed by the management CPU. First, after being activated, the first operating system is expanded in the work memory, and then the content expanded in the work memory is saved in the first storage memory. Next, after the saving, the second operating system stored in the second memory is expanded in the work memory, thereby setting the CPU in the second operating environment. Further, the contents expanded in the work memory are saved in the second storage memory. After the saving, the contents saved in the first storage memory are re-expanded in the work memory.
 このように、情報処理装置の起動に伴って、CPU(乃至はコンピュータ)が第1のオペレーティングシステムで動作する第1の動作環境に設定され、いつでも第1のオペレーティングシステムで稼働できる第1のアプリケーションが使用可能になる。一方、第2の保管メモリには、第2のオペレーティングシステムが保管された待機状態とされる。この第2の保管メモリの内容がワークメモリに展開されると、CPU(乃至はコンピュータ)は第2のアプリケーションで動作する第2の動作環境に切り替えられる。そして、第2のアプリケーションで稼働できる第2のアプリケーションが使用可能になる。従って、CPU(乃至はコンピュータ)は、BIOSから再起動することなく、切替動作によって待機状態の第2の動作環境が設定されるため、切り替えに要する時間が短縮(迅速化)され、また、切り替えに対する操作性、利便性が向上する。第1の動作環境と第2の動作環境とは、動作内容が異なる等の他、好ましくはセキュリティレベルに差を設けたものである。 In this way, the first application that is set in the first operating environment in which the CPU (or computer) operates in the first operating system with the activation of the information processing apparatus and can be operated in the first operating system at any time. Becomes available. On the other hand, the second storage memory is in a standby state in which the second operating system is stored. When the contents of the second storage memory are expanded in the work memory, the CPU (or computer) is switched to the second operating environment that operates in the second application. Then, the second application that can be operated by the second application can be used. Accordingly, the CPU (or computer) does not restart from the BIOS, and the second operating environment in the standby state is set by the switching operation. Therefore, the time required for switching is shortened (speeded up), and the switching is performed. The operability and convenience for the are improved. The first operating environment and the second operating environment are different from each other in the operation content, and preferably have a difference in security level.
 本発明によれば、第1、第2の動作環境間の切り替えが迅速になり、操作性及び利便性の高い情報処理技術が提供できる。 According to the present invention, switching between the first and second operating environments can be quickly performed, and an information processing technology with high operability and convenience can be provided.
本発明に係る情報処理端末を含むネットワーク通信システムの概略構成図である。1 is a schematic configuration diagram of a network communication system including an information processing terminal according to the present invention. 情報処理端末の外観の一例を正面側やや上方から観た外観図である。It is the external view which looked at an example of the external appearance of an information processing terminal from the front side and a little upper direction. 情報処理端末のハードウエア構成図である。It is a hardware block diagram of an information processing terminal. 情報処理端末のCPUを中心にした機能構成図の一例を示すブロック図である。It is a block diagram which shows an example of the function block diagram centering on CPU of an information processing terminal. 管理CPUの一例を示すブロック図である。It is a block diagram which shows an example of management CPU. CPUによって実行される起動手順の一例を示すフローチャートである。It is a flowchart which shows an example of the starting procedure performed by CPU. 管理CPUによって実行される並列起動手順の一例を示すフローチャートである。It is a flowchart which shows an example of the parallel starting procedure performed by management CPU. CPUによって実行される、起動後のCPUの処理の一例を示すフローチャートである。It is a flowchart which shows an example of the process of CPU after starting performed by CPU. CPUによって実行される、起動後のCPUの処理の一例を示すフローチャートである。It is a flowchart which shows an example of the process of CPU after starting performed by CPU. CPUによって実行される、割込I処理(リクエスト信号の送信)の一例を示すフローチャートである。It is a flowchart which shows an example of the interruption I process (transmission of a request signal) performed by CPU. CPUによって実行される、割込II処理(着信有りの報知)の一例を示すフローチャートである。It is a flowchart which shows an example of the interruption II process (notification | reporting with an incoming call) performed by CPU. CPUによって実行される、リクエスト信号生成処理の一例を示すフローチャートである。It is a flowchart which shows an example of the request signal generation process performed by CPU. 管理CPUによって実行されるモード切替I処理の一例を示すフローチャートである。It is a flowchart which shows an example of the mode switching I process performed by management CPU. 管理CPUによって実行されるモード切替II処理の一例を示すフローチャートである。It is a flowchart which shows an example of the mode switching II process performed by management CPU.
 図1は、本発明に係る情報処理端末を含むネットワーク通信システムの概略構成図である。図1に示すネットワーク通信システムは、情報の伝送路であるインターネット等のネットワーク1を備える。ネットワーク1には、複数のインターネットサービスプロバイダ2(ISP:Internet ServiceProvider)が設置されている。ISP2には、必要に応じて、電子メールによるファイルの送受信を行うための仕組みとしての中継部3が接続され、無線通信によって情報処理端末4との間で通信が可能にされている。 FIG. 1 is a schematic configuration diagram of a network communication system including an information processing terminal according to the present invention. The network communication system shown in FIG. 1 includes a network 1 such as the Internet, which is an information transmission path. A plurality of Internet service providers 2 (ISP: Internet Service Provider) are installed in the network 1. The ISP 2 is connected to a relay unit 3 as a mechanism for performing transmission / reception of files by e-mail, as required, and can communicate with the information processing terminal 4 by wireless communication.
 中継部3は、メールシステム30と無線通信部31とを備えている。メールシステム30は、情報伝送系として機能するもので、ISP2を介してネットワーク1に接続されている。メールシステム30は、情報処理端末4で送受信されるファイルのフォーマット及びプロトコルとネットワーク1上を電子メールで伝送されるファイルのフォーマット及びプロトコルとの間でそれぞれの変換を行うメールゲートウェイ301、後述する汎用モードでのファイルの一時保管及び送受信を制御する従来のメールサーバと同等の汎用メールサーバ302、及び後述する特定モードでのファイルの着信の有無を通知するための特定メール受信通知サーバ303を有する。特定メール受信通知サーバ303は、後述するような、特定モードでの電子メールの一時保管、送受信及び後述する着信有り通知を制御する特定メールサーバ63と関連している。 The relay unit 3 includes a mail system 30 and a wireless communication unit 31. The mail system 30 functions as an information transmission system, and is connected to the network 1 via the ISP 2. The mail system 30 includes a mail gateway 301 that performs conversion between the format and protocol of a file transmitted / received by the information processing terminal 4 and the format and protocol of a file transmitted by electronic mail on the network 1. A general-purpose mail server 302 equivalent to a conventional mail server that controls temporary storage and transmission / reception of files in the mode, and a specific mail reception notification server 303 for notifying whether there is an incoming file in the specific mode described later. The specific mail reception notification server 303 is related to a specific mail server 63 that controls temporary storage and transmission / reception of e-mails in a specific mode and an incoming call notification described later, as will be described later.
 無線通信部31は、所要数のアンテナを含み、それぞれ情報処理端末4との間で電波の送受信を行う送受信部を備えている。送受信部は種々の場所に設けられている。無線通信部31は、通信規格であるIEEE 802.11シリーズを利用した無線機器であるWi-Fi(wirelessfidelity)が採用可能である。無線通信部31は、例えば、大型の店舗SH内の配置を想定した場合、所定箇所から乃至はいずれの箇所からも万遍なくISP2との間で通信を可能とするために必要な個数のアンテナを分散配置することで構築される。また、無線通信部31を、エリア内無線通信手段としての、符号分割多元接続(CDMA:Wideband Code Division MultipleAccess)ベースのネットワークといった無線通信ネットワークを用いてもよい。なお、公知のように、通話の場合の音声信号は、無線通信部31及び図外の公衆電話回線網を介して他の情報処理端末4に伝送される。 The wireless communication unit 31 includes a required number of antennas, and includes a transmission / reception unit that transmits and receives radio waves to and from the information processing terminal 4. The transmission / reception unit is provided in various places. The wireless communication unit 31 can employ Wi-Fi (wireless fidelity), which is a wireless device using the IEEE 802.11 series communication standard. For example, when the wireless communication unit 31 is assumed to be placed in a large store SH, the number of antennas necessary to enable communication with the ISP 2 from a predetermined location or from any location. It is constructed by disposing distributed. Alternatively, the wireless communication unit 31 may be a wireless communication network such as a code division multiple access (CDMA) based network as an intra-area wireless communication means. As is well known, an audio signal in the case of a call is transmitted to another information processing terminal 4 via the wireless communication unit 31 and a public telephone line network not shown.
 情報処理端末4は、本実施形態のように店舗SHのレジ端末7との近距離通信を行うことを想定すれば、携帯型であることが好ましい。情報処理端末4としては、携帯情報端末、セルラ電話機、移動電話機、スマートフォン、ページャが適用可能である。また、情報処理端末4として、持ち運び可能なパーソナルコンピュータ、情報端末、ラップトップコンピュータ、持ち運び可能であれば双方向通信が可能なデジタルテレビジョン等を含むインターネット家電も適用可能である。なお、レジ端末7との電子取引は一例であり、本発明におけるCPUの起動及び設定動作環境の切替に着目する場合には、必ずしも携帯型である必要はない。 The information processing terminal 4 is preferably portable if it is assumed that near field communication is performed with the cash register terminal 7 of the store SH as in the present embodiment. As the information processing terminal 4, a portable information terminal, a cellular phone, a mobile phone, a smartphone, or a pager can be applied. Further, as the information processing terminal 4, Internet home appliances including a portable personal computer, an information terminal, a laptop computer, a digital television capable of bidirectional communication if portable can be applied. The electronic transaction with the cash register terminal 7 is an example, and when paying attention to the activation of the CPU and the switching of the setting operation environment in the present invention, it is not necessarily required to be portable.
 情報処理端末4は、中継部3を介して他の携帯電話機や図外の固定電話機との間で通話が可能であると共に、中継部3、ISP2及びネットワーク1を経由して他の情報処理端末4との間で電子メールによるファイルの送受信が可能であり、さらにネットワーク1上に設置(接続)された各種のウエブサイト5をブラウズして所望する画像情報を閲覧したり、取得したりすることを可能にしている。かかる公知のサービスは、ここでは汎用の動作環境(汎用モード)、すなわち汎用OS(Operating System)の動作環境下で稼働される汎用AP(アプリケーション)によって提供される。 The information processing terminal 4 can make a call with another mobile phone or a fixed telephone (not shown) via the relay unit 3, and other information processing terminals via the relay unit 3, ISP 2, and network 1. 4 can send and receive files by e-mail, and browse or acquire desired image information by browsing various websites 5 installed (connected) on the network 1. Is possible. Such a known service is provided here by a general-purpose operating environment (general-purpose mode), that is, a general-purpose AP (application) that operates under the operating environment of a general-purpose OS (Operating System).
 一方、所定のサービスの提供を受ける権限を希望する会員は、所定の手続を経て会員登録を受けることで、情報処理端末4を取得し、又は情報処理端末4に、対応する機能を備えるハードウエア(代表的には外部デバイス4a(図1に破線で示す。))あるいはソフトウエアを付設される。所定のサービスは、後述する特定OS(Operating System)の動作環境(特定モード)で稼働される特定AP(アプリケーション)によって提供される。なお、情報処理端末4は、後述するように、登録を受ける際に、会員情報、当該情報処理端末4を識別する情報が、後述の認証サーバ6に登録される。より具体的には、会員登録時に入手した情報等で、例えば、氏名(名称)、使用予定の情報処理端末4を識別(特定)する識別情報(電話番号やメールアドレス、あるいはSIMカード(Subscriber Identity Module card)情報)、必要に応じて開設している金融機関、その口座番号等を含む。パスワードを除くこれらの情報は、外部デバイス4aの所定のメモリ領域を利用して格納(登録)され、認証処理を要する都度必要な情報が読み出されるような態様としてもよい。あるいは、これらの情報は、情報処理端末4乃至はSIMカードのメモリエリア内に上述のように読み出し可能に格納する態様でもよい。また、レジ端末7の所有者(店舗経営者)、その金融機関及びその口座番号が記憶されている。電子取引サーバ61や証明局サーバ62は、認証サーバ6によって認証が肯定された場合、認証サーバ6から該当する会員、レジ端末、金融機関サーバ等に関する各情報を入手するようにしている。 On the other hand, a member who desires authority to receive provision of a predetermined service obtains the information processing terminal 4 by receiving membership registration through a predetermined procedure, or hardware having a function corresponding to the information processing terminal 4 (Typically, an external device 4a (shown by a broken line in FIG. 1)) or software is attached. The predetermined service is provided by a specific AP (application) that operates in an operating environment (specific mode) of a specific OS (Operating System) described later. As will be described later, when the information processing terminal 4 receives registration, member information and information for identifying the information processing terminal 4 are registered in the authentication server 6 described later. More specifically, the information obtained at the time of member registration, for example, name (name), identification information for identifying (identifying) the information processing terminal 4 scheduled to be used (phone number or email address, or SIM card (Subscriber Identity) Module card) information), financial institutions established as necessary, and their account numbers. Such information excluding the password may be stored (registered) using a predetermined memory area of the external device 4a, and necessary information may be read out every time authentication processing is required. Alternatively, such information may be stored in the memory area of the information processing terminal 4 or the SIM card so as to be readable as described above. In addition, the owner (store manager) of the cash register terminal 7, its financial institution, and its account number are stored. When authentication is affirmed by the authentication server 6, the electronic transaction server 61 and the certification authority server 62 obtain information from the authentication server 6 regarding the corresponding member, cash register terminal, financial institution server, and the like.
 また、外部デバイス4aを採用する態様では、外部デバイス4aを識別する情報も認証サーバ6に登録される。なお、外部デバイス4aとしては、フラッシュメモリであるSD(Secure Digital)メモリカード等のメモリカード、USBインターフェースを持つデバイス、またPCI(Peripheral Component Interconnect)等が適用可能である。 Further, in the aspect employing the external device 4a, information for identifying the external device 4a is also registered in the authentication server 6. As the external device 4a, a memory card such as an SD (Secure Digital) memory card as a flash memory, a device having a USB interface, PCI (Peripheral Component Interconnect), or the like is applicable.
 本実施形態では、情報処理端末4は、特定APの一つとして電子取引が実行可能にされている。ネットワーク1には、特定APの処理に応じて会員の認証を行う認証サーバ6が接続されている。認証サーバ6には、特定APで実行される環境を提供する、例えば電子取引サーバ61や証明局サーバ62が接続されている。電子取引サーバ61は、電子取引の処理、会員毎の電子取引履歴の管理及び電子決済の管理を行う。また、ネットワーク1には、会員が情報処理端末4を介して電子取引を行う場合、例えば店舗SH内に設けられた1台又は所要台数のレジ端末7、さらに電子取引の決済を実行するための1又は複数の金融機関の金融機関サーバ8が接続されている。会員情報としては、主には、個人を特定する氏名や生年月日情報、認証のための、必要な識別情報やパスワード、登録した情報処理端末4を識別する(電話番号、メールアドレスあるいはSIMカード情報)情報や必要な識別情報、及び金融機関情報とその口座番号情報等があり、認証は、これらのいずれかの情報で、あるいは所定の複数の情報を組み合わせた組合せ情報で行われる。レジ端末7は、情報処理端末4との間で近距離通信を行うことのできる、公知の近距離通信部を備えている。 In the present embodiment, the information processing terminal 4 is capable of executing electronic transactions as one of the specific APs. Connected to the network 1 is an authentication server 6 that performs member authentication in accordance with processing of a specific AP. The authentication server 6 is connected to an electronic transaction server 61 and a certification authority server 62 that provide an environment executed by a specific AP, for example. The electronic transaction server 61 performs electronic transaction processing, electronic transaction history management for each member, and electronic payment management. In addition, in the network 1, when a member conducts an electronic transaction via the information processing terminal 4, for example, one or a required number of cash register terminals 7 provided in the store SH, and further for executing an electronic transaction settlement One or a plurality of financial institution servers 8 are connected. The member information mainly includes name, date of birth information for identifying an individual, necessary identification information and password for authentication, and the registered information processing terminal 4 (phone number, e-mail address or SIM card). Information), necessary identification information, financial institution information and account number information, etc., and authentication is performed using any of these information or combination information obtained by combining a plurality of predetermined information. The cash register terminal 7 includes a known short-range communication unit that can perform short-range communication with the information processing terminal 4.
 証明局サーバ62は、例えば会員が請求する証明書等の各種書類を発行(証明書等発行サービス)する、例えば自治体に設置されたものである。このように、証明局サーバ62は、例えば個人情報等を作成し、保管管理する、例えば公的乃至は準公的(民間含む)な機関である団体組織(国(省庁)、自治体、協会、組合等含む)に設置されたもので、情報処理端末4との間での情報通信に適用する一例とすることができる。情報通信に適用する例としては、前述の自治体による各種証明書の発行の他、各種の申請書の発送、案内書類、(例えば公共料金の)通知書類の受領等が想定される。証明局サーバ62の適用例としては、例えば、会員が、(本人認証を受けた後に)本人の情報処理端末4から役所に対して電子的な証明書、例えば印鑑証明書を発行してもらう場合が考えられる。そして、会員は、印鑑証明書の受領後に、この印鑑証明書を、該当する金融機関サーバ8に送信(電子的に提出)するようにすればよい。あるいは図外の装置(他の端末、サーバ等)に送信するようにすればよい。なお、図1では、電子取引サーバ61、証明局サーバ62は認証サーバ6を介してネットワーク1に接続されているが、認証を条件に情報処理端末4と情報の送受信が許可される態様であれば、ネットワーク1に直接接続される形態であってもよい。 The certificate authority server 62 is installed in, for example, a local government that issues various documents such as a certificate requested by a member (certificate issuing service). In this way, the certification authority server 62 creates, for example, personal information, and stores and manages it, for example, an organization that is a public or quasi-public (including private sector) organization (country (ministry), local government, association, It can be used as an example applied to information communication with the information processing terminal 4. As an example applied to information communication, in addition to the issuance of various certificates by the above-mentioned local governments, it is assumed that various application forms are sent out, guidance documents, notification documents (for example, utility charges) are received, and the like. As an application example of the certification authority server 62, for example, when a member issues an electronic certificate (for example, a seal certificate) from the information processing terminal 4 of the person to the government office (after receiving the authentication). Can be considered. Then, after receiving the seal certificate, the member may transmit (electronically submit) the seal certificate to the corresponding financial institution server 8. Or what is necessary is just to make it transmit to apparatuses (other terminals, a server, etc.) outside a figure. In FIG. 1, the electronic transaction server 61 and the certification authority server 62 are connected to the network 1 through the authentication server 6, but may be in a mode in which transmission / reception of information with the information processing terminal 4 is permitted on the condition of authentication. For example, a form directly connected to the network 1 may be used.
 特定メールサーバ63は、認証サーバ6での認証を条件に、特定モードで作成されたファイルを受信し、一時的に保管する。また、特定メールサーバ63は、ファイルを受信すると、当該ファイル中から少なくとも送信先情報を抽出し、この送信先情報と共にファイルの着信有り通知信号を特定メール受信通知サーバ303に送信する。特定メール受信通知サーバ303は、情報処理端末4からの、後述するリクエスト信号に含まれる会員認証情報に対する認証処理機能を備え、この認証処理を経て、当該リクエスト信号の送信元へのファイルの着信有り通知信号の有無を検索する。そして、特定メール受信通知サーバ303は、着信有り通知信号が記憶されている場合には、この着信有り通知信号、又はその旨の信号の返信を行う。 The specific mail server 63 receives and temporarily stores the file created in the specific mode on condition that the authentication server 6 authenticates. When the specific mail server 63 receives the file, the specific mail server 63 extracts at least transmission destination information from the file, and transmits a file arrival notification signal to the specific mail reception notification server 303 together with the transmission destination information. The specific mail reception notification server 303 has an authentication processing function for member authentication information included in a request signal, which will be described later, from the information processing terminal 4, and through this authentication processing, there is an incoming file to the transmission source of the request signal Search for the presence of a notification signal. When the incoming mail notification signal is stored, the specific mail reception notification server 303 replies with this incoming notification signal or a signal to that effect.
 図2は、情報処理端末の外観の一例を正面側やや上方から観た外観図である。本実施形態では、情報処理端末4としてスマートフォンを採用している。スマートフォンとは、コンピュータを内蔵し、通話以外にデータ処理機能を備えた携帯電話機で、例えばインターネットに接続して電子メールやウエブブラウザの機能を実行させることができるものである。情報処理端末4は、直方体形状をした筐体40を有し、内部には回路基板や電子回路(共に図略)が配設されている。情報処理端末4は、正面側表面の略全面に所要サイズの表示部41が配設されている。表示部41は画像を表示するもので、液晶パネルやプラズマディスプレイあるいは有機EL(Electro-Luminescence)素子が採用可能である。表示部41の上面には透明乃至は半透明のタッチパネル42が積層配置されている。タッチパネル42は、パネル面への接触を、接触位置の座標信号として出力するように構成されている。タッチパネル42は、周知の抵抗膜式を検出機構とした構成の他、静電容量式、超音波式、光電式等によるものが可能である。表示面には、各種のアプリケーション(AP)プログラムに対応付けられた符号乃至は図形を有する複数のアイコン41aが、それぞれ設定された表示座標位置に表示されている。そして、表示部41上のアイコンの表示位置座標と接触位置座標との照合によっていずれのアイコン41aが指示されたかを検出するようにしている。アイコン41aに対応するアプリケーションとしては、例えば電話機能、電子メール機能、ブラウザ機能、音楽配信機能等が少なくとも想定される。アイコン41aは、複数の汎用AP内から、所望するいずれか1つの汎用APを選択的に指定するためのものである。いずれかのアイコン41aが指定されると、対応する汎用APが起動する。例えば電話機能のアイコン41aが指定されると、画面が相手先電話番号の入力画面あるいは電話番号リストの画面に切り替わり、当該画面で相手先電話番号を指定し、確定すると、発呼状態に移行するようになっている。 FIG. 2 is an external view of an example of the external appearance of the information processing terminal viewed from the front side and slightly above. In the present embodiment, a smartphone is employed as the information processing terminal 4. A smartphone is a mobile phone that has a built-in computer and has a data processing function in addition to a telephone call. For example, the smartphone can be connected to the Internet to execute the functions of an e-mail and a web browser. The information processing terminal 4 has a rectangular parallelepiped housing 40, in which a circuit board and an electronic circuit (both not shown) are arranged. In the information processing terminal 4, a display unit 41 having a required size is disposed on substantially the entire front surface. The display unit 41 displays an image, and a liquid crystal panel, a plasma display, or an organic EL (Electro-Luminescence) element can be used. A transparent or translucent touch panel 42 is stacked on the upper surface of the display unit 41. The touch panel 42 is configured to output contact with the panel surface as a coordinate signal of the contact position. The touch panel 42 may be a capacitance type, an ultrasonic type, a photoelectric type, or the like in addition to a configuration using a known resistive film type as a detection mechanism. On the display surface, a plurality of icons 41a having codes or figures associated with various application (AP) programs are displayed at the set display coordinate positions. And it is made to detect which icon 41a was instruct | indicated by collation with the display position coordinate of the icon on the display part 41, and a contact position coordinate. As an application corresponding to the icon 41a, for example, at least a telephone function, an e-mail function, a browser function, a music distribution function, and the like are assumed. The icon 41a is for selectively specifying any one of the general-purpose APs from a plurality of general-purpose APs. When any icon 41a is designated, the corresponding general purpose AP is activated. For example, when the telephone function icon 41a is designated, the screen is switched to a destination telephone number input screen or a telephone number list screen. When the destination telephone number is designated and confirmed on the screen, the call state is entered. It is like that.
 また、複数のアイコンの内には、好ましくはセキュア状態で行われる特定APを指示するアイコン41bが設けられている。特定APは、1つでもよいが、本実施形態では、複数、すなわち前述したように電子取引処理と証明書等発行処理の2つのアプリケーションが、さらに別の種類の処理を含めて3つ以上としてもよい。特定APが複数種類設けてある場合、本実施形態では、各特定APに対応するアイコン41bをそれぞれ設ける(表示部41に表示する)ようにしている。なお、特定APは必ずしもセキュア状態に限られず、かかる態様に関しては後述する。 In addition, among the plurality of icons, an icon 41b that indicates a specific AP that is preferably performed in a secure state is provided. One specific AP may be used, but in the present embodiment, a plurality of applications, that is, as described above, two applications of electronic transaction processing and certificate issuance processing are assumed to be three or more including further types of processing. Also good. When a plurality of types of specific APs are provided, in this embodiment, icons 41b corresponding to the specific APs are provided (displayed on the display unit 41). The specific AP is not necessarily limited to the secure state, and this aspect will be described later.
 このように、アイコン41a、41bが配列表示される状態、そしてそれらの択一的な選択が受け付け可能にされた状態は、情報処理端末4の起動後における初期設定アプリケーションプログラムによって行われる。 In this way, the state in which the icons 41a and 41b are arranged and displayed and the state in which the alternative selection can be accepted are performed by the initial setting application program after the information processing terminal 4 is activated.
 表示部41の下部には、情報処理端末4の起動と停止を行わせる電源スイッチ43と、通話のためのマイク44とが設けられている。表示部41の上部には、通話のためのスピーカ45と、レジ端末7の近距離通信部を介してレジ端末7と近距離通信を行うための近距離通信部46とが設けられている。近距離通信は、赤外線、超音波又は電磁波を用いて行われる。なお、筐体40は、無線通信部31と通信可能なアンテナ部(図4参照、無線通信部47)を備え、また、その他の機能を実行するための部材、例えばGPS(Global Positioning System)受信器(図略)が内装されていてもよい。また、プログラムやデータが格納された外部デバイス4aを採用する態様では、筐体40の適所に、この外部デバイス4aが装填可能な装填部構造48(図中、破線で示す)が形成されていることが好ましい。そして、情報処理端末4は、外部デバイス4aが装填部構造48に装填されると、図略のポートを介して両者間で通信するようにしておけばよい。 A power switch 43 for starting and stopping the information processing terminal 4 and a microphone 44 for calling are provided below the display unit 41. Above the display unit 41, a speaker 45 for calling and a short-range communication unit 46 for performing short-range communication with the cash register terminal 7 via the short-range communication unit of the cash register terminal 7 are provided. Short-range communication is performed using infrared rays, ultrasonic waves, or electromagnetic waves. The housing 40 includes an antenna unit (see FIG. 4, wireless communication unit 47) that can communicate with the wireless communication unit 31, and receives other members, such as GPS (Global Positioning System), for performing other functions. A vessel (not shown) may be provided. Moreover, in the aspect which employ | adopts the external device 4a in which the program and data were employ | adopted, the loading part structure 48 (it shows with a broken line in the figure) in which this external device 4a can be loaded is formed in the suitable place of the housing | casing 40. It is preferable. Then, when the external device 4a is loaded in the loading unit structure 48, the information processing terminal 4 only needs to communicate with each other via a port (not shown).
 図3は、情報処理端末4のハードウエア構成図である。情報処理端末4は、情報処理端末4の動作を統括的に制御するCPU(Central Processing Unit)400、起動のためのプログラムであるBIOS(Basic Input/Output System)が格納されたブートROM4001、及びCPU400によって処理される内容を一時的に格納するワークメモリとして機能するRAM4002を備えている。RAM4002に一時的に格納される内容には、CPU400の処理内容そのもの、展開されたプログラム、動作状態を示すチップセットの内容が少なくとも含まれる。なお、チップセットとは、図略のマザーボードを構成する主要部品で、CPU400やRAM4002その他のメモリ等、マザーボードに繋がっているあらゆる部品間のデータのやり取りをコントロールする各種フラグを備えているものである。 FIG. 3 is a hardware configuration diagram of the information processing terminal 4. The information processing terminal 4 includes a central processing unit (CPU) 400 that centrally controls the operation of the information processing terminal 4, a boot ROM 4001 that stores a basic input / output system (BIOS) that is a startup program, and the CPU 400. RAM 4002 functioning as a work memory for temporarily storing the contents processed by the above. The contents temporarily stored in the RAM 4002 include at least the contents of processing of the CPU 400 itself, the developed program, and the contents of the chip set indicating the operation state. The chip set is a main component constituting a mother board (not shown), and includes various flags that control the exchange of data between all components connected to the motherboard, such as the CPU 400, the RAM 4002, and other memories. .
 また、情報処理端末4は、管理チップとしての管理CPU14を備えている。管理CPU14は、CPU400の動作環境(モード)を切り替えるための管理制御部として機能するものである。管理CPU14は、ブートROM4001,RAM4002と接続されている。 The information processing terminal 4 includes a management CPU 14 as a management chip. The management CPU 14 functions as a management control unit for switching the operating environment (mode) of the CPU 400. The management CPU 14 is connected to the boot ROM 4001 and the RAM 4002.
 さらに、情報処理端末4は、汎用モード用のメモリ部4003と特定モード用のメモリ部4004とを備えている。メモリ部4003,4004は、管理CPU14を介してCPU400と接続されている。メモリ部4003,4004は、例えばハードディスク(HDD)であってもよい。汎用モード用のメモリ部4003は、ROM又はフラッシュROMからなるプログラムメモリ40031と、RAM又はフラッシュROM等からなり、データ退避のための保管メモリ40032とを備えている。また、特定モード用のメモリ部4004は、ROM又はフラッシュROMからなるプログラムメモリ40041と、RAM又はフラッシュROM等からなり、データ退避のための保管メモリ40042とを備えている。 Furthermore, the information processing terminal 4 includes a memory unit 4003 for general-purpose mode and a memory unit 4004 for specific mode. The memory units 4003 and 4004 are connected to the CPU 400 via the management CPU 14. The memory units 4003 and 4004 may be hard disks (HDD), for example. The general-purpose mode memory unit 4003 includes a program memory 40031 formed of a ROM or a flash ROM, and a storage memory 40032 formed of a RAM or a flash ROM, for saving data. The specific mode memory unit 4004 includes a program memory 40041 composed of a ROM or a flash ROM, and a storage memory 40042 composed of a RAM or a flash ROM, for saving data.
 プログラムメモリ40031は、CPU400を汎用モードの動作環境に設定するためのプログラム、すなわち、汎用モード用のマスターブートプログラムが書き込まれた汎用MBR(Master Boot Recorder)領域と、例えばWindows(登録商標)等のオペレーティングシステムプログラム(汎用OS)が書き込まれた領域と、通話用、文書作成用、ブラウザ、メーラ(電子メールの通信制御プログラム)等の汎用OSで稼働できる各種アプリケーションプログラム(汎用AP)が書き込まれた領域とを含む。保管メモリ40032には、汎用OSの動作環境下で特定APが選択された場合に、管理CPU14によって、RAM4002の内容が一時的に保管される。また、管理CPU14は、後に、動作環境が汎用OSに戻された場合に、BIOSの起動を経るまでもなく、保管内容をRAM4002に再展開することで、選択された汎用APの迅速な再開が可能となるように手当するものである。 The program memory 40031 is a program for setting the CPU 400 to the general-purpose mode operating environment, that is, a general-purpose MBR (Master Boot Recorder) area in which a master boot program for the general-purpose mode is written, and for example, Windows (registered trademark) or the like. An area in which the operating system program (general-purpose OS) is written, and various application programs (general-purpose AP) that can run on a general-purpose OS such as a phone call, document creation, browser, mailer (e-mail communication control program) Area. In the storage memory 40032, when a specific AP is selected under the operating environment of the general-purpose OS, the contents of the RAM 4002 are temporarily stored by the management CPU 14. In addition, when the operating environment is later returned to the general-purpose OS, the management CPU 14 can quickly resume the selected general-purpose AP by re-deploying the stored contents in the RAM 4002 without starting the BIOS. The allowance is made possible.
 プログラムメモリ40041は、CPU400を特定モードの動作環境に設定するためのプログラム、すなわち、特定モード用のマスターブートプログラムが書き込まれた特定MBR(Master Boot Recorder)領域と、例えばWindows(登録商標)等のオペレーティングプログラム(特定OS)が書き込まれた領域と、電子取引、証明書発行処理、また作成ファイルに対する符号化や復号化処理、メーラ等の特定OSで動作する各種アプリケーションプログラム(特定AP)が書き込まれた領域を含む。保管メモリ40042には、特定OSの動作環境下で汎用APが選択された場合に、管理CPU14によって、RAM4002の内容が一時的に保管される。また、管理CPU14は、後に、動作環境が特定OSに戻された場合に、BIOSの起動を経るまでもなく、保管内容をRAM4002に再展開することで、選択された特定APの迅速な再開が可能となるように手当するものである。なお、管理CPU14の動作については、図5を用いて後述する。 The program memory 40041 is a program for setting the CPU 400 to an operating environment of a specific mode, that is, a specific MBR (Master Boot Recorder) area in which a master boot program for a specific mode is written, and for example, Windows (registered trademark) or the like. The area in which the operating program (specific OS) is written, and various application programs (specific AP) that operate on the specific OS such as electronic transactions, certificate issuance processing, encoding and decryption processing for created files, and mailers are written. Including When the general-purpose AP is selected under the operating environment of the specific OS, the contents of the RAM 4002 are temporarily stored in the storage memory 40042 by the management CPU 14. In addition, when the operating environment is later returned to the specific OS, the management CPU 14 can quickly resume the selected specific AP by re-deploying the stored contents to the RAM 4002 without starting the BIOS. The allowance is made possible. The operation of the management CPU 14 will be described later with reference to FIG.
 図4は、情報処理端末のCPUを中心にした機能構成図の一例を示すブロック図である。図4において、情報処理端末4のCPU400には、表示部41~無線通信部47が接続されている。CPU400は、ブートROM4001、メモリ部4003,4004に格納され、RAM4002に展開されたプログラムを実行することによって、電源オンで起動処理を開始する起動処理部401として機能する。また、CPU400は、メモリ部4003,4004に格納され、RAM4002に展開されたプログラムを実行することによって、汎用APに関する処理を制御する汎用AP処理部402、汎用OSの実行環境と特定OSの実行環境との間の切り替えを指示するモード切替指示部403、特定APの実行に際して情報処理端末4及び会員(外部デバイス4a等)に対する認証を実行する認証処理部404、特定APに関する処理を制御する特定AP処理部405、表示部41への画像表示を行う画像表示処理部406、レジ端末7と近距離通信を行う近距離通信処理部407、中継部3との間で通信を行う通信処理部408、及びメール等の着信の有無を確認するためのリクエスト信号を周期的に生成し、特定モードにおける特定メール受信通知サーバ63に送信するリクエスト処理部409として機能する。なお、汎用モードにおけるメール受信に対しては、説明は省略するが、公知のように汎用モード用のリクエスト信号を生成して汎用メールサーバ302に送信することで実行すればよい。 FIG. 4 is a block diagram showing an example of a functional configuration diagram centering on the CPU of the information processing terminal. In FIG. 4, a display unit 41 to a wireless communication unit 47 are connected to the CPU 400 of the information processing terminal 4. The CPU 400 functions as an activation processing unit 401 that starts an activation process when the power is turned on by executing a program stored in the boot ROM 4001 and the memory units 4003 and 4004 and expanded in the RAM 4002. Further, the CPU 400 executes a program stored in the memory units 4003 and 4004 and developed in the RAM 4002 to control a process related to the general-purpose AP, a general-purpose OS execution environment, and a specific OS execution environment. Mode switching instruction unit 403 for instructing switching between the authentication processing unit, an authentication processing unit 404 for executing authentication for the information processing terminal 4 and the member (external device 4a, etc.) when executing the specific AP, and a specific AP for controlling processing related to the specific AP A processing unit 405, an image display processing unit 406 that displays an image on the display unit 41, a short-range communication processing unit 407 that performs near-field communication with the cash register terminal 7, a communication processing unit 408 that performs communication with the relay unit 3, And periodically generate a request signal to confirm the presence of incoming mail, etc. Functions as the request processing unit 409 to be transmitted to the notification server 63. It should be noted that the mail reception in the general-purpose mode may be executed by generating a request signal for the general-purpose mode and transmitting it to the general-purpose mail server 302, as is well known, although explanation is omitted.
 起動処理部401は、情報処理端末4が電源オンされて起動されると、BIOSプログラムをブートROM4001からRAM4002に読み出すことで起動を開始させる。すなわち、RAM4002に読み出されたBIOSプログラムは、メモリや周辺機器をチェックし、メモリ部4003,4004のうち、デファクトとしてのメモリ部4003を優先して汎用MBRをRAM4002に読み込み、実行させるものである。汎用MBRは、汎用ローダをRAM4002に読み出し、次いで、汎用ローダによって汎用OSがRAM4002に読み出され、アイコン41a、41bが表示された初期画面を表示する等の初期設定動作を司る汎用APがRAM4002に読み出される。他の汎用APは、対応するアイコン41aの選択に応じて適宜RAM4002に読み出されるようにしておけばよい。なお、初期設定動作を司る汎用APのRAM4002への読み出しに引き続いて、図5で説明するように管理CPU14が追加の起動処理を行う。 When the information processing terminal 4 is powered on and activated, the activation processing unit 401 starts activation by reading the BIOS program from the boot ROM 4001 to the RAM 4002. That is, the BIOS program read into the RAM 4002 checks the memory and peripheral devices, and reads the general-purpose MBR into the RAM 4002 with priority given to the memory unit 4003 as the de facto of the memory units 4003 and 4004, and executes it. . The general-purpose MBR reads the general-purpose loader into the RAM 4002, and then the general-purpose loader reads the general-purpose OS into the RAM 4002 by the general-purpose loader and displays the initial screen on which the icons 41 a and 41 b are displayed. Read out. Other general-purpose APs may be appropriately read into the RAM 4002 in accordance with the selection of the corresponding icon 41a. Note that the management CPU 14 performs additional activation processing as described in FIG. 5 following reading of the general-purpose AP that performs the initial setting operation into the RAM 4002.
 画像表示処理部406は、図2に示すように各種のアイコン41a及び特有のアイコン41bが配列された初期画面を表示するもので、指定されたAPに応じて、順次、下層レイヤの画面、及び操作に応じた画像を表示するものである。なお、画像表示処理部406は、初期画面等の表示の他、表示部41に表示する各種の画像の描画処理を行うものである。 As shown in FIG. 2, the image display processing unit 406 displays an initial screen on which various icons 41a and unique icons 41b are arranged. In accordance with a designated AP, the screen of the lower layer, and An image corresponding to the operation is displayed. Note that the image display processing unit 406 performs drawing processing of various images displayed on the display unit 41 in addition to displaying an initial screen and the like.
 汎用AP処理部402は、汎用AP選択判定部4021及び選択された汎用APを実行する汎用AP実行処理部4022を備えている。汎用AP選択判定部4021は、各アイコン41aの表示座標情報と会員が接触(あるいは当接)したタッチパネル42の位置の座標信号とから、いずれのアイコンが選択されたかを判定するものである。汎用AP実行処理部4022は、選択されたアイコンに対応する汎用APをメモリ部4003からRAM4002に展開し、当該汎用APを実行させるものである。 The general-purpose AP processing unit 402 includes a general-purpose AP selection determination unit 4021 and a general-purpose AP execution processing unit 4022 that executes the selected general-purpose AP. The general-purpose AP selection determination unit 4021 determines which icon has been selected from the display coordinate information of each icon 41a and the coordinate signal of the position of the touch panel 42 that the member has contacted (or contacted). The general-purpose AP execution processing unit 4022 expands the general-purpose AP corresponding to the selected icon from the memory unit 4003 to the RAM 4002 and executes the general-purpose AP.
 モード切替指示部403は、CPU400の動作モードを監視しており、CPU400が汎用モードにある状態で、特定APのいずれかに対応するアイコン41bが選択されると、かかる選択情報を管理CPU14に出力する。また、モード切替指示部403は、CPU400が特定モードにある状態で、汎用APのいずれかに対応するアイコン41aが選択されると、かかる選択情報を管理CPU14に出力する。なお、管理CPU14は、CPU400から前記選択情報が入力されると、後述するようにモード切替処理を実行する。 The mode switching instruction unit 403 monitors the operation mode of the CPU 400. When the icon 41b corresponding to one of the specific APs is selected while the CPU 400 is in the general-purpose mode, the selection information is output to the management CPU 14. To do. Further, when the CPU 41 is in the specific mode and the icon 41a corresponding to any of the general-purpose APs is selected, the mode switching instruction unit 403 outputs such selection information to the management CPU 14. When the selection information is input from the CPU 400, the management CPU 14 executes a mode switching process as will be described later.
 認証処理部404は、モード切替指示部403によって特定OSへの切り替えが指示された場合に実行される。認証処理部404は、認証サーバ6で実行される認証処理に必要な情報処理端末4及び会員(外部デバイス4a等)の各識別情報その他の情報(例えば会員から情報処理端末4を介して入力されたパスワード)等を含む信号を、認証要求信号として認証サーバ6に送信すると共に、認証サーバ6から認証結果を受信するものである。認証処理部404は、認証が肯定された場合には、特定モードへのモード切替を許可し、認証が否定された場合には、モード切替を禁止し、その旨乃至は再操作の案内を認証要求元の情報処理端末4に返信する。なお、認証サーバ6における認証処理は特定APに切り替わる際に実行する態様でもよいが、情報処理端末4から電子取引サーバ61や証明局サーバ62に情報を送信する都度、認証サーバ6にて認証処理が実行される態様としてもよい。 The authentication processing unit 404 is executed when the mode switching instruction unit 403 instructs to switch to a specific OS. The authentication processing unit 404 is input via the information processing terminal 4 from the information processing terminal 4 and the identification information and other information of the member (external device 4a, etc.) necessary for the authentication process executed by the authentication server 6 (for example, from the member. A signal including a password is transmitted to the authentication server 6 as an authentication request signal, and an authentication result is received from the authentication server 6. If the authentication is affirmed, the authentication processing unit 404 permits the mode switching to the specific mode, and if the authentication is denied, the authentication processing unit 404 prohibits the mode switching. A reply is sent to the requesting information processing terminal 4. The authentication process in the authentication server 6 may be performed when switching to a specific AP, but every time information is transmitted from the information processing terminal 4 to the electronic transaction server 61 or the certification authority server 62, the authentication server 6 performs the authentication process. May be executed.
 特定AP処理部405は、特定AP選択判定部4051及び選択された特定APを実行する特定AP実行処理部4052を備えている。特定AP選択判定部4051は、アイコン41bの表示座標情報と会員が接触(あるいは当接)したタッチパネル42の位置の座標信号とから、いずれのアイコンが選択されたかを判定するものである。特定AP実行処理部4052は、選択されたアイコンに対応する特定APをメモリ部4004からRAM4002に展開し、当該特定APを実行させるものである。 The specific AP processing unit 405 includes a specific AP selection determination unit 4051 and a specific AP execution processing unit 4052 for executing the selected specific AP. The specific AP selection determination unit 4051 determines which icon has been selected from the display coordinate information of the icon 41b and the coordinate signal of the position of the touch panel 42 in contact (or contact) with the member. The specific AP execution processing unit 4052 expands the specific AP corresponding to the selected icon from the memory unit 4004 to the RAM 4002, and executes the specific AP.
 近距離通信処理部407は、近距離通信部46を介してレジ端末7との間で近距離範囲内での通信を行わせるものである。近距離通信は、前述したように赤外線、超音波又は電磁波を用いて行うものであり、近距離通信部46はその送受信部である。通信処理部408は、送受信用のアンテナを有する無線通信部47及び中継部3を介してISP2との間で通信を行わせるものである。 The near field communication processing unit 407 performs communication within the near field range with the cash register terminal 7 via the near field communication unit 46. As described above, the short-range communication is performed using infrared rays, ultrasonic waves, or electromagnetic waves, and the short-range communication unit 46 is a transmission / reception unit thereof. The communication processing unit 408 performs communication with the ISP 2 via the wireless communication unit 47 having a transmission / reception antenna and the relay unit 3.
 リクエスト処理部409は、情報処理端末4が汎用モードや特定モードの動作環境にある場合に、特定モードの動作環境で作成された、外部からのファイルが特定メールサーバ63に着信しているか否かを監視するリクエスト信号を所定周期で生成し、特定メール受信通知サーバ303にアクセス(送信)するものである。特定メール受信通知サーバ303は、リクエスト信号を発したメールアドレスに対応する記憶領域に特定メールサーバ63からの前述した(自己宛ての)着信有り通知信号が書き込まれていると、当該リクエスト信号に応答して着信有り通知信号を送信元である情報処理端末4に返信する。リクエスト処理部409は、着信有り通知信号を受信した場合、画像表示処理部406にその旨の表示を行う指示を発し、また、必要に応じてスピーカ45に音声合成乃至は予め準備された報知音声(ブザー音とか「着信があります」等の音声)を発する処理を指示する。より具体的には、リクエスト処理部409は、例えばRAM4002内に設けられた計時部が、所定時間、例えば数秒乃至は1分程度の周期で計時を行い、所定時間に達する毎にリクエスト信号を生成するようにしている。 The request processing unit 409 determines whether or not an external file created in the specific mode operating environment is received by the specific mail server 63 when the information processing terminal 4 is in the general mode or specific mode operating environment. Is generated at a predetermined cycle, and the specific mail reception notification server 303 is accessed (transmitted). The specific mail reception notification server 303 responds to the request signal when the above-mentioned incoming notification signal (addressed to itself) from the specific mail server 63 is written in the storage area corresponding to the mail address that issued the request signal. Then, an incoming call notification signal is returned to the information processing terminal 4 that is the transmission source. When the request processing unit 409 receives the incoming call notification signal, the request processing unit 409 issues an instruction to the image display processing unit 406 to display the notification, and the speaker 45 performs voice synthesis or a prepared notification voice as necessary. (Buzzer sound or “Incoming call” etc.) More specifically, the request processing unit 409, for example, a timing unit provided in the RAM 4002 measures a predetermined time, for example, a period of several seconds to 1 minute, and generates a request signal every time the predetermined time is reached. Like to do.
 なお、汎用モード及び特定モードの動作環境においては、レジ端末7と認証サーバ6との間、情報処理端末4と認証サーバ6、電子取引サーバ61及び証明局サーバ62との間で、いずれも所定のプロトコル、代表的にはTCP/IP(transmission control protocol/internet protocol)規約に沿って形成されたパケットによって情報ファイルの送受信が行われる。また、情報処理端末4とレジ端末7との間の近距離通信については、ISO/IEC18092(ECMA-340)、ISO/IEC21481(ECMA-342)、ISO/IEC14443、ISO/IEC15693、JISX6319-4(Felica)等のプロトコルが使用可能である。 Note that, in the general-purpose mode and the specific-mode operating environment, a predetermined number is set between the cash register terminal 7 and the authentication server 6, and between the information processing terminal 4 and the authentication server 6, the electronic transaction server 61, and the certification authority server 62. The information file is transmitted and received by a packet formed in accordance with the protocol of the above, typically TCP / IP (transmission control protocol / internet protocol). For short-range communication between the information processing terminal 4 and the cash register terminal 7, ISO / IEC18092 (ECMA-340), ISO / IEC21481 (ECMA-342), ISO / IEC14443, ISO / IEC15693, JISX6319-4 ( A protocol such as Felica) can be used.
 情報処理端末4は、例えば、送信信号乃至は受信信号としての各パケットの所定位置(ヘッダー領域)に付加されている送信先を示すアドレス情報が、インターネット用の規約に基づくグローバルIPアドレスか、このグローバルIPアドレスの付し方とは異なる(グローバルIPアドレスとは識別可能な形態である)専用ネットワーク用の、例えばイーサネット(登録商標)用等に準じた所定のローカルIPアドレス(MACアドレス)かを識別するためのアドレス情報(ルーティングテーブルやarp(Address Resolution Protocol)テーブル)の設定を行うものである。パケットは、テーブルと照合されて、アドレスの一致したルートへのみ送信され、これにより伝送路をインターネット経由か専用ネットワークかに切り換えることができる。ここでは、認証サーバ6(電子取引サーバ61及び証明局サーバ62を含む)及びレジ端末7は専用ネットワークに接続されている。 For example, the information processing terminal 4 determines whether the address information indicating the transmission destination added to a predetermined position (header area) of each packet as a transmission signal or a reception signal is a global IP address based on the Internet protocol, It is different from the global IP address assignment method (a global IP address is an identifiable form), for example, a predetermined local IP address (MAC address) according to Ethernet (registered trademark) or the like. Address information (routing table or arp (Address Resolution Protocol) table) for identification is set. The packet is checked against the table and transmitted only to the route with the matching address, whereby the transmission path can be switched between the Internet and the dedicated network. Here, the authentication server 6 (including the electronic transaction server 61 and the certification authority server 62) and the cash register terminal 7 are connected to a dedicated network.
 なお、かかる方式に代えて、特定モードにおいて、情報処理端末4、認証サーバ6(電子取引サーバ61及び証明局サーバ62を含む)、レジ端末7、金融機関サーバ8間で送受信される情報に特別の処理を施すようにしてもよい。送信情報に対する特別の処理とは、汎用モードで使用される処理とは異なる暗号化や符号化(画像信号への埋込処理等)でもよい。この方式でも、汎用モードの場合に比して、ネットワークをソフトウエア的に切り換えた態様となる。 Instead of such a method, in the specific mode, special information is transmitted / received between the information processing terminal 4, the authentication server 6 (including the electronic transaction server 61 and the certification authority server 62), the cash register terminal 7, and the financial institution server 8. You may make it perform the process of. The special processing for the transmission information may be encryption or encoding (embedding processing in an image signal or the like) different from the processing used in the general-purpose mode. Even in this method, the network is switched by software as compared with the general-purpose mode.
 特定AP選択判定部4051は、アイコン41a、アイコン41bの表示座標情報とタッチパネル42への当接位置座標信号とから、いずれのアイコン41bが選択されたかを判定するものである。 The specific AP selection determination unit 4051 determines which icon 41b is selected from the display coordinate information of the icons 41a and 41b and the contact position coordinate signal to the touch panel 42.
 特定AP実行処理部4052は、選択された特定APに従って会員の操作に応じた処理を実行するものである。特定APとして電子取引が選択された場合には、レジ端末4及び電子取引サーバ61間で情報の授受が実行される。特定APとして証明書発行が選択された場合には、証明局サーバ62との間で情報の授受が実行される。ここで、各特定APの処理手順の一例について簡単に説明する。 The specific AP execution processing unit 4052 executes processing according to the member's operation according to the selected specific AP. When electronic transaction is selected as the specific AP, information is exchanged between the cashier terminal 4 and the electronic transaction server 61. When certificate issuance is selected as the specific AP, information is exchanged with the certification authority server 62. Here, an example of the processing procedure of each specific AP will be briefly described.
(1)電子取引APの場合
 ここでは、店舗SH内のレジ端末7において、情報処理端末4を用いて支払いを行う場合を想定している。電子取引サーバ61は、情報処理端末4から電子取引処理の要求があると、内部メモリに更新的に記憶している現在の残高情報を、情報処理端末4に送信する。情報処理端末4自身も、フラッシュメモリ等に残高を記憶しており、内部メモリの残高情報と電子取引サーバ61に送信された残高情報とを事前照合する。事前照合の結果が一致であれば、情報の不正な改竄等が無いと判断すると共に、一致した旨の信号及び電子マネーとしての残高情報を情報処理端末4に送信する。 (1) Case of Electronic Transaction AP Here, it is assumed that payment is performed using the information processing terminal 4 at the cash register terminal 7 in the store SH. When there is a request for electronic transaction processing from the information processing terminal 4, the electronic transaction server 61 transmits the current balance information stored in the internal memory to the information processing terminal 4. The information processing terminal 4 itself also stores the balance in a flash memory or the like, and collates in advance the balance information in the internal memory and the balance information transmitted to the electronic transaction server 61. If the result of the prior collation is coincident, it is determined that there is no illegal falsification or the like of the information, and a signal indicating the coincidence and balance information as electronic money are transmitted to the information processing terminal 4.
 一方、レジ端末7は、一般的な現金登録機(キャッシュレジスタ)に設けられているようなテンキーや加算減算等の各種演算キーを有する操作部を備えている。レジ端末7は、操作部を介して、購入した商品あるいは提供されたサービスの対価が順次入力され、累計キー等によって累計されて、合計の取引額が算出される。そして、情報処理端末4は、電子取引サーバ61から前記事前照合が肯定された旨の信号が受信されていることを条件に、情報処理端末4から電子マネーとしての残高情報がレジ端末7に近距離通信によって送信される。レジ端末7では、受信した残高情報から合計の取引額が減算されて、新たな残高が算出される。なお、残金不足の場合は、例えば現金で決済し、電子取引を中止すればよい。レジ端末7は、合計の取引額及び新たな残高情報を電子取引サーバ61に送信すると共に、新たな残高情報を近距離通信で情報処理端末4に送信する。情報処理端末4は、レジ端末7から受信した新たな残高情報を電子取引サーバ61に送信する。 On the other hand, the cash register terminal 7 includes an operation unit having various operation keys such as a numeric keypad and addition / subtraction as provided in a general cash register (cash register). The cash register terminal 7 sequentially receives the value of the purchased product or the provided service via the operation unit, and accumulates the value with a cumulative key or the like to calculate the total transaction amount. The information processing terminal 4 receives the balance information as electronic money from the information processing terminal 4 to the cashier terminal 7 on the condition that the signal indicating that the pre-verification has been affirmed is received from the electronic transaction server 61. Sent by near field communication. At the cash register terminal 7, the total transaction amount is subtracted from the received balance information, and a new balance is calculated. In addition, when there is a shortage of the balance, for example, settlement may be made with cash and the electronic transaction may be stopped. The cash register terminal 7 transmits the total transaction amount and the new balance information to the electronic transaction server 61 and transmits the new balance information to the information processing terminal 4 by short-range communication. The information processing terminal 4 transmits the new balance information received from the cash register terminal 7 to the electronic transaction server 61.
 電子取引サーバ61は、レジ端末7及び情報処理端末4から送信されてきた両方の新たな残高情報の事後照合を行う。事後照合の結果が一致であれば、この残高情報を新たな残高情報として前記内部メモリに更新記憶すると共に、情報処理端末4に、かかる残高情報を記憶する指示を送信する。この後、電子取引サーバ61から金融機関サーバ8に対して決済指示が送信される。この指示に応じて、金融機関は、会員口座からレジ端末7の所有者等の店舗業者の口座へ取引額分が振り込まれ、これによって決済が完了する。金融機関サーバ8は、決済完了を受けて、電子取引サーバ61にその旨を送信する。電子取引サーバ61は、その旨を受信すると、該当する会員の電子取引履歴を更新する。なお、電子取引サーバ61への会員毎の電子マネーの補充は、例えば、必要に応じて(当該会員からの指示に応じるなどして)指示された金額が当該会員の口座から電子取引サーバ61の当該会員の内部メモリに電子マネーとして移送(すなわち送金)されるようにして行えばよい。また、事前照合及び事後照合の一方で不一致が発生した場合は、取引処理は停止され、必要に応じて再操作がガイドされる。 The electronic transaction server 61 performs a post-verification of both new balance information transmitted from the cashier terminal 7 and the information processing terminal 4. If the result of the post-matching matches, the balance information is updated and stored in the internal memory as new balance information, and an instruction to store the balance information is transmitted to the information processing terminal 4. Thereafter, a settlement instruction is transmitted from the electronic transaction server 61 to the financial institution server 8. In response to this instruction, the financial institution transfers the transaction amount from the member account to the account of the store trader such as the owner of the cash register terminal 7, thereby completing the settlement. The financial institution server 8 receives the completion of the settlement and transmits a message to that effect to the electronic transaction server 61. When receiving the notification, the electronic transaction server 61 updates the electronic transaction history of the corresponding member. In addition, the electronic money is replenished to the electronic transaction server 61 for each member, for example, if necessary (e.g., according to an instruction from the member), the indicated amount is transferred from the account of the member to the electronic transaction server 61. What is necessary is just to carry out by transferring (that is, remittance) as electronic money to the internal memory of the member concerned. Further, when a mismatch occurs in one of the pre-verification and the post-verification, the transaction processing is stopped and re-operation is guided as necessary.
(2)証明書発行APの場合
 証明書として、例えば住民票を電子的に発行する場合を想定する。まず、情報処理端末4から住民票の発行要求情報が証明局サーバ62に送信される。証明局サーバ62は、発行要求情報を受信すると、住民票発行のための手数料の支払いに関する情報を送信元の情報処理端末4に返信する。情報処理端末4は返信された手数料支払いに応答して、金融機関サーバ8に対して、手数料分の振込を指示する情報を送信する。証明局サーバ62は、金融機関サーバ8から振込終了の情報を受信すると、以下の処理を開始する。すなわち、証明局サーバ62は、予め記憶している全会員の会員情報の一種である住民票の中から該当する会員の住民票を抽出し、予め登録されている証明者やその電子印影、さらに日付情報を付与して、電子的な住民票を作成する。証明局サーバ62は、作成された電子的な住民票を発行要求の発信元の情報処理端末4に送信する。情報処理端末4は、受信した住民票を、相手方に手渡しする目的でプリントアウトし、あるいは電子情報のまま相手先に送信する。なお、住民票以外にも、手数料の支払いを確認して要求された書類を作成し、送信することが考えられる。さらに、定期的乃至は不定期で案内書類等が送信され、場合によってはそれに応答する必要があることも考えられる。 (2) In the case of a certificate issuing AP Assume that a certificate is issued electronically, for example. First, resident's card issue request information is transmitted from the information processing terminal 4 to the certification authority server 62. Upon receiving the issuance request information, the certification authority server 62 returns information regarding payment of a fee for issuing a resident card to the information processing terminal 4 that is the transmission source. In response to the returned fee payment, the information processing terminal 4 transmits information instructing the transfer of the fee to the financial institution server 8. When the certification authority server 62 receives the transfer completion information from the financial institution server 8, it starts the following processing. That is, the certification authority server 62 extracts the resident's card of the corresponding member from the resident's card which is a kind of member information of all the members stored in advance, and the certifier registered in advance and its electronic seal, Provide date information and create an electronic resident card. The certification authority server 62 transmits the created electronic resident card to the information processing terminal 4 that has issued the issue request. The information processing terminal 4 prints out the received resident's card for the purpose of handing it to the other party, or transmits it to the other party as electronic information. In addition to the resident card, it may be possible to confirm the payment of the fee and prepare and send the requested document. Furthermore, it is conceivable that guidance documents or the like are transmitted regularly or irregularly, and in some cases, it is necessary to respond to them.
 かかる(1)(2)における特定モードの動作環境で処理するべき情報が、情報処理端末4が汎用モードの動作環境中に送信されてくることが考えられる。そこで、特定OSの動作環境で作成されたファイルは、一旦、特定メールサーバ63に一時的に保管され、情報処理端末4を特定OSの動作環境に切り替えて読み込まれるようにしている。このようにすることでセキュティの維持が図れる。 It is conceivable that information to be processed in the operating environment of the specific mode in (1) and (2) is transmitted to the information processing terminal 4 during the operating environment of the general-purpose mode. Therefore, the file created in the operating environment of the specific OS is temporarily stored in the specific mail server 63, and is read by switching the information processing terminal 4 to the operating environment of the specific OS. By doing so, security can be maintained.
 図5は、管理CPUの一例を示すブロック図である。管理CPU14は、処理プログラムが記憶された処理プログラム記憶部1401及びワークエリアとして機能するRAM1402に接続されている。管理CPU14は、処理プログラム記憶部1401に記憶されているプログラムを、RAM1402に展開して実行することによって、起動時に汎用OSに加えて特定OSの動作環境までも追加的に立ち上げて、両者を準備するための並列起動制御部141、起動後に汎用モードを特定モードに切り替えるモード切替I処理部142、及び起動後に特定モードを汎用モードに切り替えるモード切替II処理部143として機能する。 FIG. 5 is a block diagram showing an example of the management CPU. The management CPU 14 is connected to a processing program storage unit 1401 that stores processing programs and a RAM 1402 that functions as a work area. The management CPU 14 develops the program stored in the processing program storage unit 1401 in the RAM 1402 and executes it to additionally start up the operating environment of the specific OS in addition to the general-purpose OS at startup. It functions as a parallel activation control unit 141 for preparation, a mode switching I processing unit 142 that switches the general mode to the specific mode after startup, and a mode switching II processing unit 143 that switches the specific mode to the general mode after startup.
 並列起動制御部141は、RAM4002の内容を管理メモリ40032に退避させる第1の退避処理部1411、プログラムメモリ40041の内容をRAM4002に読み出して起動させる追加起動処理部1412、RAM4002の内容を管理メモリ40042に退避させる第2の退避処理部1413、及び管理メモリ40032の内容をRAM4002に読み出す再展開処理部1414を備えている。 The parallel activation control unit 141 includes a first save processing unit 1411 for saving the contents of the RAM 4002 to the management memory 40032, an additional startup processing unit 1412 for reading the contents of the program memory 40041 to the RAM 4002, and starting the contents, and the contents of the RAM 4002 for the management memory 40042. A second save processing unit 1413 for saving data to the RAM 4002 and a redeployment processing unit 1414 for reading the contents of the management memory 40032 into the RAM 4002.
 ここで、汎用モードの起動と特定モードの起動について説明する。前述したように、電源オンを受けてCPU400はBIOSプログラムをRAM4002に読み込んで、起動を開始する。初期設定動作を司る汎用APのRAM4002への読み出しが終了すると、管理CPU14の並列起動制御部141は、この読み出しの終了を検出して、動作を開始する。 Here, start-up of general-purpose mode and start-up of specific mode will be described. As described above, when the power is turned on, the CPU 400 reads the BIOS program into the RAM 4002 and starts activation. When the reading of the general-purpose AP that performs the initial setting operation to the RAM 4002 is completed, the parallel activation control unit 141 of the management CPU 14 detects the completion of the reading and starts the operation.
 第1の退避処理部1411は、現にRAM4002に書き込まれている内容(すなわち立ち上がったばかりの汎用モードの動作環境に設定した内容)を保管メモリ40032に退避して保管する。そして、並列起動制御部141は、必要に応じてRAM4002をリセットする(リセット手段として機能する)。次いで、追加起動処理部1412は、プログラムメモリ40041から特定MBR、特定ローダ、さらに特定OSをRAMに順次展開し、動作させる。さらに、第2の退避処理部1413は、RAM4002に現に書き込んだ内容(すなわち特定モードの動作環境に設定した内容)を保管メモリ40042に退避して保管する。最後に、再展開処理部1414は、必要に応じて並列起動制御部141のリセット手段によってRAM4002がリセットされた状態で、保管メモリ40032の内容をRAM4002に展開する。かかる処理によって、情報処理端末4は汎用モードの動作環境に設定されると共に、特定モードも一旦読み出し、かつ退避状態(乃至は待機状態)としたことで、特定モードを選択する都度、最初から起動させる必要がなくなり、迅速なモード切替が可能で、かつ操作性、利便性が向上する。なお、RAM4002に対するリセット処理は、所定のデータ、例えばデータ“0”を高速で書き込む処理であってもよい。 The first save processing unit 1411 saves the contents currently written in the RAM 4002 (that is, the contents set in the operation environment of the general-purpose mode just started up) in the storage memory 40032 and stores them. The parallel activation control unit 141 resets the RAM 4002 as necessary (functions as a reset unit). Next, the additional activation processing unit 1412 sequentially expands the specific MBR, the specific loader, and the specific OS from the program memory 40041 to the RAM and operates them. Further, the second save processing unit 1413 saves the contents actually written in the RAM 4002 (that is, contents set in the operation environment of the specific mode) in the storage memory 40042. Finally, the redeployment processing unit 1414 expands the contents of the storage memory 40032 to the RAM 4002 in a state where the RAM 4002 is reset by the reset unit of the parallel activation control unit 141 as necessary. With this processing, the information processing terminal 4 is set to the general-purpose mode operating environment, and the specific mode is once read out and is in the evacuation state (or standby state). Therefore, it is possible to switch modes quickly and improve operability and convenience. The reset process for the RAM 4002 may be a process for writing predetermined data, for example, data “0” at a high speed.
 モード切替I処理部142は、汎用モードを特定モードに切り替える場合に、現在の汎用モードのRAM4002の内容を保管メモリ40032に退避し、(更新的に)保管する一方、保管メモリ40042に保管されている内容、すなわち特定モードの内容をRAM4002に読み出すものである。なお、退避後から読み出すまでの間にRAM4002を一旦リセットしてもよい。 When switching the general-purpose mode to the specific mode, the mode switching I processing unit 142 saves (updates) the contents of the current general-purpose mode RAM 4002 in the storage memory 40032 and stores them in the storage memory 40042. Content, that is, the content of the specific mode is read out to the RAM 4002. Note that the RAM 4002 may be reset once between the saving and the reading.
 モード切替II処理部143は、特定モードを汎用モードに切り替える場合に、現在の特定モードのRAM4002の内容を保管メモリ40042に退避し、(更新的に)保管する一方、保管メモリ40032に保管されている内容、すなわち汎用モードの内容をRAM4002に読み出すものである。なお、退避後から読み出すまでの間にRAM4002を一旦リセットしてもよい。 When the specific mode is switched to the general-purpose mode, the mode switching II processing unit 143 saves the contents of the RAM 4002 in the current specific mode in the storage memory 40042 and stores it (updated), while storing it in the storage memory 40032. Contents, that is, the contents of the general-purpose mode are read out to the RAM 4002. Note that the RAM 4002 may be reset once between the saving and the reading.
 モード切替I処理部142、モード切替II処理部143は、汎用OSあるいは特定OSの動作環境下において、新たにアイコン41a、41bが選択された場合に、モード切替指示部403からのモードの変更有りを受けて、モードの変更がある場合のみ、切替処理を実行するようにしている。また、切替処理によって、OSの書き替えでモードの切替ができるので、利便性が高い。また、RAM4002の内容を対応する側の保管メモリ40032,40042にしか退避させないようにしたので、メモリ部4003,4004間のマルウエア感染は阻止できる。また、RAM4002の内容を一旦リセットしたのでよりセキュアとなる。 The mode switching I processing unit 142 and the mode switching II processing unit 143 change the mode from the mode switching instruction unit 403 when the icons 41a and 41b are newly selected under the operating environment of the general-purpose OS or the specific OS. Accordingly, the switching process is executed only when the mode is changed. Further, since the mode can be switched by rewriting the OS by the switching process, the convenience is high. Further, since the contents of the RAM 4002 are saved only in the corresponding storage memories 40032 and 40042, malware infection between the memory units 4003 and 4004 can be prevented. Further, since the contents of the RAM 4002 are once reset, it becomes more secure.
 図6は、CPU400によって実行される起動手順の一例を示すフローチャートである。まず、電源オンに伴うCPU400の起動は、BIOSプログラム(命令)の実行を指示することで開始される(ステップS1)。BIOSプログラムは、通常通り最初にCPUやメモリ、その他の周辺機器のチェックを行う。CPU400は、BIOSプログラムの最後の部分のOS起動ルーチンによって、デファクトとしてプログラムメモリ40031の先頭位置に書き込まれている汎用MBRをRAM4002に読み込む。 FIG. 6 is a flowchart illustrating an example of a startup procedure executed by the CPU 400. First, activation of the CPU 400 upon power-on is started by instructing execution of a BIOS program (command) (step S1). The BIOS program first checks the CPU, memory, and other peripheral devices as usual. The CPU 400 reads the general-purpose MBR written at the head position of the program memory 40031 as a de facto into the RAM 4002 by the OS start routine of the last part of the BIOS program.
 より具体的には、BIOS起動ルーチンによって汎用MBRのマスターブートプログラム(ブートストラップローダ)がRAM4002に読み込まれ、以後、マスターブートプログラムに制御が渡される。この マスターブートプログラムは、プログラムメモリ40031のパーティションテーブルをチェックし、アクティブな基本パーティションを検索し、そのパーティションの先頭位置にあるパーティションブートセクタ(PBS)を読み込む処理を行わせる。パーティションブートセクタは、汎用OSによってフォーマットの際に作成され、そのパーティションにインストールされた汎用OSを起動するためのブートプログラム(イニシャルプログラムローダ:IPL)とそのパーティション情報とが格納されている。マスターブートプログラムはアクティブな基本パーティションのIPLをメモリに読み込み、以後、IPLに制御を渡す。IPLは、プログラムメモリ40031の最初の基本パーティションの中から、汎用OSを起動するための汎用ローダを検索して、RAM4002に読み込み、汎用ローダに制御を渡す(ステップS3)。 More specifically, the master boot program (bootstrap loader) of the general-purpose MBR is read into the RAM 4002 by the BIOS startup routine, and thereafter, control is passed to the master boot program. The master boot program checks the partition table in the program memory 40031, searches for an active basic partition, and reads the partition boot sector (PBS) at the head position of the partition. The partition boot sector is created at the time of formatting by the general-purpose OS, and stores a boot program (initial program loader: IPL) for starting the general-purpose OS installed in the partition and its partition information. The master boot program reads the IPL of the active primary partition into the memory, and thereafter passes control to the IPL. The IPL searches the first basic partition of the program memory 40031 for a general purpose loader for starting the general purpose OS, reads it into the RAM 4002, and passes control to the general purpose loader (step S3).
 汎用ローダは、プログラムメモリ40031から汎用OSをRAM4002に取り込み(ステップS5)、続いて、汎用OSのカーネルを初期化する(ステップS7)。次いで、汎用OSにより、初期画面を設定する等の汎用APがRAM4002に読み込まれる(ステップS9)。なお、同時にCPU400の動作状態を示す各種のフラグを有するチップセットが設定される。 The general-purpose loader loads the general-purpose OS from the program memory 40031 into the RAM 4002 (step S5), and then initializes the kernel of the general-purpose OS (step S7). Next, a general purpose AP for setting an initial screen is read into the RAM 4002 by the general purpose OS (step S9). At the same time, a chip set having various flags indicating the operation state of the CPU 400 is set.
 図7は、管理CPU14によって実行される並列起動手順の一例を示すフローチャートである。先ず、電源オンに伴うBIOSからの起動動作が終了したか否かが判断される(ステップQ1)。起動動作の終了の判断は、所定の状況、例えば初期画面を設定する汎用APがRAM4002に読み込まれたか否かで行えばよい。起動動作が終了したことが判断されると、現にRAM4002に書き込まれている内容(すなわち汎用モードの動作環境に設定した内容)が保管メモリ40032に退避され、保管される(ステップQ3)。次いで、RAM4002がリセットされる(ステップQ5)。この後、管理CPU14の追加起動処理によって、プログラムメモリ40041から特定MBRがRAM1402に読み込まれ、さらに特定ローダが読み込まれる(ステップQ7)。そして、特定ローダが起動されて(ステップQ9)、特定OSがRAM4002に順次読み込まれる(ステップQ11)。続いて、特定OSのカーネルが初期化される(ステップQ13)。次いで、特定OSにより、特定APの内、起動時に立ち上げておく必要がある特定APがRAM4002に読み込まれる(ステップQ15)。 FIG. 7 is a flowchart showing an example of a parallel activation procedure executed by the management CPU 14. First, it is determined whether or not the start-up operation from the BIOS accompanying power-on has been completed (step Q1). The determination of the end of the activation operation may be made based on a predetermined situation, for example, whether or not a general-purpose AP for setting an initial screen has been read into the RAM 4002. When it is determined that the start-up operation is completed, the content currently written in the RAM 4002 (that is, the content set in the general-purpose mode operating environment) is saved in the storage memory 40032 and stored (step Q3). Next, the RAM 4002 is reset (step Q5). Thereafter, the specific MBR is read from the program memory 40041 into the RAM 1402 and the specific loader is further read by the additional activation process of the management CPU 14 (step Q7). Then, the specific loader is activated (step Q9), and the specific OS is sequentially read into the RAM 4002 (step Q11). Subsequently, the kernel of the specific OS is initialized (step Q13). Next, a specific AP that needs to be started up at the time of activation is read into the RAM 4002 by the specific OS (step Q15).
 次いで、RAM4002に現に書き込まれている内容(すなわち特定モードの動作環境に設定した内容)が保管メモリ40042に退避され、保管される(ステップQ17)。そして、必要に応じてRAM4002がリセットされた後、保管メモリ40032の内容がRAM4002に再展開される(ステップQ19)。かかる処理によって、CPU400は汎用モードの動作環境とされ、また、保管メモリ40042に特定モードの動作環境が待機される。従って、RAM4002の内容を保管メモリ40032,40042の一方の内容に書き替えるだけで、CPU400の動作モードを迅速に切り替えることが可能となる。 Next, the contents currently written in the RAM 4002 (that is, contents set in the operating environment of the specific mode) are saved in the storage memory 40042 and stored (step Q17). Then, after the RAM 4002 is reset as necessary, the contents of the storage memory 40032 are redeployed in the RAM 4002 (step Q19). With this processing, the CPU 400 is set to the general-purpose mode operating environment, and the specific-mode operating environment is waited in the storage memory 40042. Therefore, the operation mode of the CPU 400 can be quickly switched only by rewriting the contents of the RAM 4002 with the contents of one of the storage memories 40032 and 40042.
 図8、図9は、CPU400によって実行される、起動後のCPUの処理の一例を示すフローチャートである。まず、例えば割込の許可が行われる(ステップS21)。この割込は、後述するリクエスト処理、モード切替処理に対するものである。次いで、アイコン41a、41bに対する選択の有無が判断される(ステップS23)。汎用APのいずれかのアイコン41aが選択されたのであれば(ステップS25でYES)、選択された汎用APの実行が開始され(ステップS27)、当該汎用APの実行処理が行われる(ステップS29)。一方、汎用APが選択されたのでなければ(特定APが選択されたとして)、ステップS37に移行する。 8 and 9 are flowcharts illustrating an example of processing of the CPU after startup, which is executed by the CPU 400. FIG. First, for example, an interruption is permitted (step S21). This interruption is for request processing and mode switching processing described later. Next, it is determined whether or not the icons 41a and 41b are selected (step S23). If any icon 41a of the general-purpose AP is selected (YES in step S25), execution of the selected general-purpose AP is started (step S27), and execution processing of the general-purpose AP is performed (step S29). . On the other hand, if the general-purpose AP has not been selected (assuming that the specific AP has been selected), the process proceeds to step S37.
 次いで、汎用APの実行が終了したか否かが判断され(ステップS31)、終了していなければ、ステップS29に移行して現在の汎用APの実行が継続される。なお、各種APの終了は、一般的に、AP動作中の表示部41の適所に表示される「終了」を示すアイコンや「取消」を示すアイコンに当接することによって受け付けられる。 Next, it is determined whether or not the execution of the general-purpose AP has been completed (step S31). If not, the process proceeds to step S29 and the current general-purpose AP is continuously executed. The end of various APs is generally accepted by touching an icon indicating “End” or an icon indicating “Cancel” displayed at an appropriate position on the display unit 41 during AP operation.
 一方、汎用APの実行が終了したのであれば、電源オフか否かが判断され(ステップS33)、電源オフであれば本フローを終了する。一方、電源オフでなければ、ステップS23に戻って同様の処理を繰り返す。 On the other hand, if the execution of the general-purpose AP is completed, it is determined whether or not the power is off (step S33). If the power is off, this flow is terminated. On the other hand, if the power is not turned off, the process returns to step S23 and the same processing is repeated.
 一方、ステップS25で特定APが選択された場合、ステップS35で、管理CPU14に対してモード切替Iの処理が指示される。次いで、モード切替Iが終了したか否か、すなわちリターン信号の入力が判断される(ステップS37)。リターン信号が入力されると、選択された特定APがRAM4002に読み込まれる(ステップS39)。 On the other hand, if a specific AP is selected in step S25, the mode switching I process is instructed to the management CPU 14 in step S35. Next, it is determined whether or not the mode switching I has been completed, that is, the input of a return signal (step S37). When the return signal is input, the selected specific AP is read into the RAM 4002 (step S39).
 続いて、特定OSの動作環境のみで取込可能な着信ファイルの取込指示の有無が判断される(ステップS41)。着信ファイルの読み込み指示があれば、ファイルの取込処理が実行される(ステップS43)。具体的には、特定メールサーバ303の自己のメールボックスにアクセスして、着信しているファイルを取り込む。そして、取り込まれたファイルに対して図外の復号化部等で復号化が行われ、復号化されたファイルの内容が、例えば表示部41に表示される(ステップS45)。次いで、特定APが実行処理される(ステップS47)。そして、特定APの処理が終了した(実行途中の強制終了も含む)か否かが判断され(ステップS49)、終了していなければ、ステップS47に戻り、特定APの実行が継続される。一方、特定APが終了していれば、ステップS55に進む。 Subsequently, it is determined whether or not there is an instruction to import an incoming file that can be captured only in the operating environment of the specific OS (step S41). If there is an instruction to read the incoming file, a file fetch process is executed (step S43). Specifically, it accesses its own mailbox of the specific mail server 303 and takes in the incoming file. Then, the fetched file is decrypted by a decryption unit (not shown) or the like, and the content of the decrypted file is displayed on the display unit 41, for example (step S45). Next, the specific AP is executed (step S47). Then, it is determined whether or not the processing of the specific AP is completed (including forced termination in the middle of execution) (step S49). If not completed, the process returns to step S47 and the execution of the specific AP is continued. On the other hand, if the specific AP has ended, the process proceeds to step S55.
 また、ステップS41で、着信ファイルの読み込み指示がなければ、ステップS25で選択された特定APの実行処理が行われる(ステップS51)。そして、特定APの処理が、「終了」等を示すアイコン41bの選択によって終了したか否かが判断され(ステップS53)、終了していなければ、ステップS51に戻り、特定APの実行が継続される。一方、特定APが終了していれば、ステップS55に進む。 If there is no instruction to read the incoming file in step S41, the specific AP selected in step S25 is executed (step S51). Then, it is determined whether or not the process of the specific AP has been completed by selecting the icon 41b indicating “end” or the like (step S53). If not, the process returns to step S51 and the execution of the specific AP is continued. The On the other hand, if the specific AP has ended, the process proceeds to step S55.
 ステップS55では、アイコン41a、41bが選択されたか否かが判断され、汎用APのいずれかのアイコン41aが選択されたのであれば(ステップS57)、管理CPU14に対してモード切替IIの処理が指示される(ステップS59)。次いで、モード切替IIが終了したか否か、すなわちリターン信号の入力が判断される(ステップS61)。リターン信号が入力されると、選択された汎用APがRAM4002に読み込まれて(ステップS63)、ステップS27に戻り、当該汎用APの実行が開始される。 In step S55, it is determined whether or not the icons 41a and 41b have been selected. If any of the general-purpose AP icons 41a has been selected (step S57), the management CPU 14 is instructed to perform mode switching II processing. (Step S59). Next, it is determined whether or not the mode switching II has ended, that is, the input of a return signal (step S61). When a return signal is input, the selected general purpose AP is read into the RAM 4002 (step S63), the process returns to step S27, and execution of the general purpose AP is started.
 一方、ステップS57でアイコン41a、41bのいずれも選択されない場合、ステップS33に戻り、電源オフまでの間、アイコン41a、41bの選択に対する待機状態となる。また、ステップS57で、汎用APに対応するアイコン41aが選択されない場合、ステップS39に進み、選択された特定APがRAM4002に読み込まれる。 On the other hand, if neither of the icons 41a and 41b is selected in step S57, the process returns to step S33 to enter a standby state for selecting the icons 41a and 41b until the power is turned off. If the icon 41a corresponding to the general-purpose AP is not selected in step S57, the process proceeds to step S39, and the selected specific AP is read into the RAM 4002.
 図10は、CPU400によって実行される、割込I処理(リクエスト信号の送信)の一例を示すフローチャートである。まず、割込が発生すると、リクエスト信号の送信指示が行われ(ステップS81)、次いで、リクエスト信号の特定メール受信通知サーバ303への送信処理が実行される(ステップS83)。 FIG. 10 is a flowchart showing an example of an interrupt I process (request signal transmission) executed by the CPU 400. First, when an interrupt occurs, a request signal transmission instruction is issued (step S81), and then a request signal transmission process to the specific mail reception notification server 303 is executed (step S83).
 図11は、CPU400によって実行される、割込II処理(着信ファイル有りの報知)の一例を示すフローチャートである。まず、リクエスト信号の送信に対する返信があったか否かが判断され(ステップS91)、返信信号がファイル着信有り通知信号であれば(ステップS93)、着信報知が行われる(ステップS95)。着信報知は、表示部41の適所にスーパーインポーズの形で「着信ファイル有り」等と表示されてもよいし、所定の記号で表示されてもよい。また、音声で報知してもよい。一方、ファイル着信が無い場合は本フローチャートを抜ける。なお、割込II処理は、着信ファイル有りの場合にのみ、報知のために割込を行う態様としてもよい。また、割込I処理と一体で処理する態様でもよい。 FIG. 11 is a flowchart illustrating an example of an interrupt II process (notification of presence of an incoming file) executed by the CPU 400. First, it is determined whether or not there has been a reply to the transmission of the request signal (step S91). If the reply signal is a file arrival notification signal (step S93), an incoming call notification is performed (step S95). The incoming call notification may be displayed in a suitable position on the display unit 41 in the form of a superimpose such as “There is an incoming file” or may be displayed with a predetermined symbol. Moreover, you may alert | report by an audio | voice. On the other hand, if there is no incoming file, this flowchart is exited. Note that the interrupt II process may be configured to interrupt for notification only when there is an incoming file. Moreover, the aspect processed integrally with interruption I process may be sufficient.
 図12は、CPU400によって実行される、リクエスト信号生成処理の一例を示すフローチャートである。まず、電源オンか否かが判断される(ステップS101)。電源オンであると、リクエスト信号の送信指示が出力される(ステップS103)。このリクエスト信号の送信指示を受けて、割込Iが発生して前述したステップS81が実行される。 FIG. 12 is a flowchart illustrating an example of a request signal generation process executed by the CPU 400. First, it is determined whether the power is on (step S101). If the power is on, a request signal transmission instruction is output (step S103). In response to the request signal transmission instruction, an interrupt I is generated and the above-described step S81 is executed.
 次いで、RAM4002内にソフトウエア的に形成されたタイマがリセットスタートされ(ステップS105)、単位時間(主として1秒)毎にカウントアップされる(ステップS107)。そして、所定時間(所定のカウント値)に達したか否かが判断され(ステップS109)、所定時間に達していなければ、ステップS107に戻ってカウント動作が継続される。一方、所定時間に達すると、その都度、ステップS103に戻って、リクエスト信号の送信指示が出力される。なお、ステップS101の処理は、ステップS109の直後で行うようにしてもよい。また、本フローチャートは電源オフによって自動的に終了する。 Next, a timer formed in software in the RAM 4002 is reset and started (step S105), and counted up every unit time (mainly 1 second) (step S107). Then, it is determined whether or not a predetermined time (predetermined count value) has been reached (step S109). If the predetermined time has not been reached, the process returns to step S107 and the count operation is continued. On the other hand, whenever the predetermined time is reached, the process returns to step S103 and a request signal transmission instruction is output. Note that the process of step S101 may be performed immediately after step S109. Further, this flowchart automatically ends when the power is turned off.
 図13は、管理CPU14によって実行されるモード切替I処理の一例を示すフローチャートである。まず、CPU400のワークメモリであるRAM4002の内容、すなわち汎用OSや初期設定のプログラム等が保管メモリ40032に退避されて、保管される(ステップQ31)。次いで、ワークエリアであるRAM4002がリセットされて(ステップQ33)、リセット後のRAM4002に保管メモリ40042に保管されている特定OS等の内容が読み出される(ステップQ35)。この処理が終了すると、リターン信号がCPU400に出力される(ステップQ37)。 FIG. 13 is a flowchart showing an example of the mode switching I process executed by the management CPU 14. First, the contents of the RAM 4002, which is the work memory of the CPU 400, that is, the general-purpose OS, the initial setting program, and the like are saved in the storage memory 40032 and stored (step Q31). Next, the RAM 4002 that is a work area is reset (step Q33), and the contents of the specific OS and the like stored in the storage memory 40042 are read into the RAM 4002 after the reset (step Q35). When this process ends, a return signal is output to CPU 400 (step Q37).
 図14は、管理CPU14によって実行されるモード切替II処理の一例を示すフローチャートである。まず、CPU400のワークメモリであるRAM4002の内容、すなわち特定OSや初期設定のプログラムが保管メモリ40042に退避されて、保管される(ステップQ51)。次いで、ワークエリアであるRAM4002がリセットされて(ステップQ53)、リセット後のRAM4002に保管メモリ40032に保管されている汎用OSや初期設定のプログラム等が読み出される(ステップQ55)。この処理が終了すると、リターン信号がCPU400に出力される(ステップQ57)。 FIG. 14 is a flowchart showing an example of the mode switching II process executed by the management CPU 14. First, the contents of the RAM 4002, which is the work memory of the CPU 400, that is, the specific OS and the initial setting program are saved in the storage memory 40042 and stored (step Q51). Next, the RAM 4002 as the work area is reset (step Q53), and the general-purpose OS and the initial setting program stored in the storage memory 40032 are read into the RAM 4002 after the reset (step Q55). When this process ends, a return signal is output to CPU 400 (step Q57).
 かかるモード切替I処理、モード切替II処理が実行されることで、情報処理端末4の動作モードを汎用モードと特定モードとの間で切り替える際に、アイコンの選択操作のみで済み、かつその都度BIOSまで戻って行う必要がなくなるのでモード切替がより迅速、利便となる。また、電源オン後では、汎用モードの動作環境から特定モードの動作環境への切り替え、あるいはその逆のモード切り替えは、管理CPU14が統括する。これは、管理CPU14を、監視用としてモード切替を指示することで特定モードへの切り替え処置をよりセキュアに行うようにしたものである。 By executing the mode switching I process and the mode switching II process, it is only necessary to select an icon when the operation mode of the information processing terminal 4 is switched between the general-purpose mode and the specific mode. Mode switching is quicker and more convenient because there is no need to go back to the previous step. In addition, after the power is turned on, the management CPU 14 supervises switching from the general-mode operation environment to the specific-mode operation environment or vice versa. In this case, the management CPU 14 instructs to switch to a specific mode by instructing mode switching for monitoring.
 なお、本発明は以下の種々の態様を採用することが可能である。 It should be noted that the present invention can employ the following various aspects.
(1)本実施形態における電子取引では、店舗のレジ端末で説明したが、店舗に限定されず、種々の商品を購買したり種々のサービスの提供を受けたりした場合の対価の支払いを行う場所全般に適用可能である。 (1) Although the electronic transaction in the present embodiment has been described with reference to a cash register terminal in a store, the place is not limited to a store, and a place for paying consideration when purchasing various products or receiving various services. Applicable in general.
(2)本実施形態では、特定モードが選択されると、認証を行うようにしたが、認証処理は他の種々の方法が採用可能である。また、本発明においては、認証は必ずしも必要ではなく、事前照合及び事後照合によって、また送受信ファイルの暗号化、符号化(画像への埋込)によって、高いセキュリティを確保することができる。さらに、本実施形態では、アイコン41bが選択されて特定モードへの切替が起動した時に、認証処理を行うようにしているが、これに代えて、情報処理端末4から電子取引サーバ61、証明局サーバ62へのファイル送信の都度、管理サーバ6を経由させる等して認証を行わせる態様としてもよい。 (2) In the present embodiment, authentication is performed when the specific mode is selected, but various other methods can be used for the authentication processing. In the present invention, authentication is not necessarily required, and high security can be ensured by pre-collation and post-collation, and by encryption and encoding (embedding in an image) of a transmission / reception file. Furthermore, in this embodiment, when the icon 41b is selected and switching to the specific mode is activated, the authentication process is performed. Instead, the information processing terminal 4 sends the electronic transaction server 61, the certification authority, and so on. A mode may be adopted in which authentication is performed through the management server 6 each time a file is transmitted to the server 62.
(3)本実施形態では、モード切替やAP選択の操作部としてアイコンを用いたが、本発明が適用可能な情報処理端末に予め備えられているキーやボタンその他の操作入力部材(例えば音声認識技術)を用いてもよい。 (3) In this embodiment, an icon is used as an operation unit for mode switching or AP selection. However, keys, buttons, and other operation input members (for example, voice recognition) provided in advance in an information processing terminal to which the present invention can be applied. Technology).
(4)外部デバイス4aを採用する態様において、外部デバイス4aが情報処理端末4に装填されていることを条件に、特定モードへの切替が可能となるので、情報処理端末4自体は一般的な装置であってもよい。 (4) In an aspect in which the external device 4a is adopted, since it is possible to switch to the specific mode on condition that the external device 4a is loaded in the information processing terminal 4, the information processing terminal 4 itself is generally used. It may be a device.
(5)本実施形態では、ネットワーク1としてインターネットを例示し、特定モードにおけるファイルに汎用モードとは異なる会員間に特有の暗号化、符号化を施して、ソフトウエア的に異なるネットワークを採用するものとしたが、特定モードでのファイルの送信路をインターネットとは別個に設けられた専用ネットワークとして、物理的に異なるネットワークを採用する態様でもよい。 (5) In the present embodiment, the Internet is exemplified as the network 1, and the files in the specific mode are encrypted and encoded peculiar to the members different from the general-purpose mode, and different networks in software are adopted. However, a mode in which a physically different network may be adopted as a dedicated network in which the file transmission path in the specific mode is provided separately from the Internet.
(6)本実施形態では、各特定APに対応するアイコンをそれぞれ設ける(表示部41に表示する)態様としたが、これに代えて、例えば、アイコン41bを、特定OSの動作環境に切り替える起動用のアイコンとして表示し、このアイコンが選択されると、その下層の各特定APに対応するアイコンがそれぞれ選択可能に表示されるようにしてもよい。 (6) In the present embodiment, an icon corresponding to each specific AP is provided (displayed on the display unit 41). Instead, for example, the icon 41b is switched to the operating environment of the specific OS. When this icon is selected, an icon corresponding to each specific AP in the lower layer may be displayed so as to be selectable.
(7)本実施形態では、モードの切替の監視乃至指示を、情報処理端末4のCPU400内のモード切替指示部403が行うようにしたが、これに代えて、かかるモード切替指示部403の監視及び切替指示機能を管理CPU14のモード切替I処理部142、モード切替II処理部143に持たせるようにしてもよい。 (7) In this embodiment, the mode switching instruction unit 403 in the CPU 400 of the information processing terminal 4 performs the monitoring or instruction of mode switching. Instead, the mode switching instruction unit 403 monitors the mode switching instruction unit 403. In addition, the mode switching I processing unit 142 and the mode switching II processing unit 143 of the management CPU 14 may be provided with a switching instruction function.
(8)並列起動処理は、汎用MBRから起動させる方法の他、特定MBRから起動させる方法を採用してもよい。 (8) The parallel activation process may employ a method of starting from a specific MBR in addition to a method of starting from a general-purpose MBR.
(9)本実施形態では特定モードの適用例として電子取引処理や証明書発行処理を挙げたが、特定モードとしては、これに限定されない。例えば、自己の情報乃至は特定の情報を更新する情報管理モードとして利用することもできる。あるいは、外出先から、家庭の電気機器の稼働制御の遠隔指示を行うHEMS(Home Energy Management System)モードとして適用することもできる。 (9) In the present embodiment, electronic transaction processing and certificate issuance processing are cited as application examples of the specific mode, but the specific mode is not limited to this. For example, it can be used as an information management mode for updating own information or specific information. Alternatively, it can be applied as a HEMS (Home Energy Management System) mode in which a remote instruction for home appliance operation control is given from the outside.
 前記情報管理モードでは以下のようにして適用される。すなわち、前記自己等の情報はネットワーク上の所定のデータサーバに、更新権限を有する会員の会員情報等と対応付けて保管されている。そして、会員が情報処理端末4の該当するモードのアイコンを指示すると、更新指示と会員情報とが送信され、前記所定のデータサーバで会員情報等の照合を経て、当該情報が更新可能に表示部41に表示される。このようにすることで、該当する会員のみが情報を更新でき、他の会員については、例えばその情報の閲覧に止めるようにすることができる。 In the information management mode, it is applied as follows. That is, the information such as self is stored in a predetermined data server on the network in association with member information of a member having update authority. Then, when the member instructs the icon of the corresponding mode of the information processing terminal 4, an update instruction and member information are transmitted, and the information can be updated through verification of the member information and the like by the predetermined data server. 41. By doing so, only the corresponding member can update the information, and for other members, for example, browsing of the information can be stopped.
 また、HEMSモードの場合、住居内の各家電製品の稼働を制御するホームサーバを介して適用される。ホームサーバは、各家電製品への電力供給を制御する信号を出力するもので、稼働状態の監視機能を有すると共にインターネット等のネットワークに接続されている。ホームサーバは、典型的には当該住居の住人(1人あるいは家族を含めた複数)の所持する各情報処理端末1を識別するペアリング情報を予め記憶しており、ネットワークを介して受信された情報処理端末4が住人に対応付けられた情報処理端末か否かをペアリング情報を介して識別可能にしている。また、ホームサーバは各家電製品を識別する情報を有しており、情報処理端末4が指定する家電製品を特定可能にしている。このようにすることで、住人に対応付けられた情報処理端末4からいずれかの家電製品に対して稼働指示があると、ホームサーバは、会員の情報処理端末4であることの照合を経て当該稼働指示に従って、指示のあった家電製品に電力供給制御を行うようにしている。 In the case of the HEMS mode, it is applied via a home server that controls the operation of each home appliance in the residence. The home server outputs a signal for controlling the power supply to each home appliance, and has an operating state monitoring function and is connected to a network such as the Internet. The home server typically stores in advance pairing information for identifying each information processing terminal 1 possessed by a resident (one person or a plurality including a family member) of the residence, and is received via the network. Whether or not the information processing terminal 4 is an information processing terminal associated with a resident can be identified through pairing information. The home server has information for identifying each home appliance, and can specify the home appliance designated by the information processing terminal 4. By doing in this way, when there is an operation instruction for any home appliance from the information processing terminal 4 associated with the resident, the home server passes the verification that it is the information processing terminal 4 of the member, and In accordance with the operation instruction, power supply control is performed on the household electrical appliance that has been instructed.
 なお、ネットワークとしては屋外から家電製品の稼働指示を可能にするインターネット等に限定されず、情報処理端末4のブルーツース(Bluetooth)その他の近距離通信手段によって屋内に居ながら、近距離通信手段が装備されたホームサーバを中継して各家電製品に稼働指示を行う態様でもよい。 In addition, the network is not limited to the Internet or the like that enables the operation of home appliances from outside, but is equipped with short-range communication means while staying indoors with Bluetooth (Bluetooth) or other short-range communication means of the information processing terminal 4 A mode in which the home server is relayed and an operation instruction is given to each home appliance may be employed.
 かかる処理は、制御対象が、工場の例えば生産ライン上の製造ロボット等の電力機器である場合におけるFEMS(Factory Energy Management System)、ビルの空調装置、照明機器であって、それらの節電対応等である場合におけるBEMS(building Energy Management System)にも適用可能となる。電力系統の需要に応じて、電力事業者側で需要家側の電力消費を制御するDR(Demand Response)方式にも適用可能である。 Such processing includes FEMS (Factory Energy Management System), building air conditioners, and lighting devices when the control target is a power device such as a manufacturing robot on a production line in a factory. It can also be applied to BEMS (building Energy Management System) in certain cases. The present invention can also be applied to a DR (Demand Response) method in which the power provider side controls the power consumption on the customer side according to the demand of the power system.
 なお、電化製品、電気乃至は電力機器に限らず、電動式の錠に対する施錠指示等であってもよい。また、特定モードは、家庭に設置された防犯センサ(たとえば監視カメラ)の監視画像をインターネット等を通して外出先の特定会員(特定の情報処理端末4)が閲覧できるようにする防犯モード等にも適用可能である。 In addition, it is not limited to electrical appliances, electricity or electric power equipment, but may be a locking instruction for an electric lock. The specific mode is also applied to a crime prevention mode that allows a specific member (specific information processing terminal 4) on the go to view a surveillance image of a security sensor (for example, a surveillance camera) installed in a home via the Internet or the like. Is possible.
 以上説明したように、本発明は、起動時に、第1のメモリに記憶されている第1のオペレーティングシステムをワークメモリに展開して、CPUを第1の動作環境に設定する情報処理装置において、管理CPUと、第2のオペレーティングシステムが記憶された第2のメモリと、第1、第2の保管メモリとを備え、前記管理CPUは、前記起動を受けて前記第1のオペレーティングシステムが前記ワークメモリに展開された後、前記ワークメモリに展開された内容を第1の保管メモリに退避させる第1の退避手段と、前記第1の退避手段による退避処理後、前記第2のメモリに記憶されている第2のオペレーティングシステムを前記ワークメモリに展開して、前記CPUを第2の動作環境に設定する追加起動手段と、前記追加起動手段による起動処理後、前記ワークメモリに展開された内容を第2の保管メモリに退避させる第2の退避手段と、前記第2の退避手段による退避処理後、前記第1の保管メモリに退避されている内容を前記ワークメモリに再展開する再展開手段とを備えたことを特徴とする。 As described above, the present invention provides an information processing apparatus that develops the first operating system stored in the first memory in the work memory and sets the CPU as the first operating environment at the time of startup. A management CPU; a second memory storing a second operating system; and a first storage memory and a second storage memory. The management CPU receives the start and the first operating system After being expanded in the memory, the contents saved in the work memory are saved in the second memory after being saved by the first saving means for saving the contents saved in the first storage memory and the first saving means. A second operating system that expands the second operating system in the work memory and sets the CPU in a second operating environment; and After the startup process, a second saving unit that saves the contents expanded in the work memory to a second storage memory, and after saving processing by the second saving unit, the contents are saved in the first storage memory Re-expanding means for re-expanding the contents to the work memory.
 この発明によれば、起動時にCPUに設定された第1の動作環境は、BIOSから再起動することなく、待機状態から第2の動作環境に切り替えられるため、切り替えに要する時間が短縮(迅速化)され、また、切り替えに対する操作性、利便性が向上する。 According to the present invention, the first operating environment set in the CPU at the time of startup can be switched from the standby state to the second operating environment without restarting from the BIOS. In addition, the operability and convenience for switching are improved.
 また、前記第1のメモリには、第1のオペレーティングシステムの動作環境で動作する1又は複数の第1のアプリケーションプログラムが記憶され、前記第2のメモリには、第2のオペレーティングシステムの動作環境で動作する1又は複数の第2のアプリケーションプログラムが記憶されていることが好ましい。この構成によれば、起動時に設定される第1の動作環境とは異なる特別な第2の動作環境で1以上のアプリケーションプログラムが動作可能となる。 The first memory stores one or more first application programs that operate in the operating environment of the first operating system, and the second memory stores the operating environment of the second operating system. It is preferable that one or a plurality of second application programs operating in the above are stored. According to this configuration, one or more application programs can operate in a special second operating environment different from the first operating environment set at the time of startup.
 また、前記第1のアプリケーションプログラムは、インターネットに接続されている他の装置にファイルを送信する第1のプログラムを含み、前記第2のアプリケーションプログラムは、前記インターネットとは異なる専用ネットワークに接続されている他の情報処理装置にファイルを送信する第2のプログラムを含むことが好ましい。この構成によれば、ファイルの送信は、インターネットによる伝送路と、このインターネットとは物理的に異なる専用ネットワークによる伝送路で行われる。 The first application program includes a first program that transmits a file to another device connected to the Internet, and the second application program is connected to a dedicated network different from the Internet. It is preferable to include a second program that transmits a file to another information processing apparatus. According to this configuration, transmission of a file is performed by a transmission path using the Internet and a transmission path using a dedicated network physically different from the Internet.
 また、前記第1のアプリケーションプログラムは、ファイルをインターネットに接続されている他の情報処理装置と送受信する第1のプログラムを含み、前記第2のアプリケーションプログラムは、送信対象のファイルに対して所定の加工方法を適用する加工プログラムと、加工されたファイルを前記インターネットに接続されている他の情報処理装置に送信する第2のプログラムとを含むことが好ましい。この構成によれば、ファイルの送信は、インターネットによる伝送路と、このインターネットとはソフトウエア的に異なるネットワークによる伝送路で行われる。なお、ソフトウエア的に異なるとは、同一の伝送路でありながら、送信対象のファイルに対する加工方法(例えば暗号化、符号化、画像への埋込の有無)が相違することをいう。 The first application program includes a first program that transmits / receives a file to / from another information processing apparatus connected to the Internet, and the second application program is a predetermined program for a file to be transmitted. It is preferable to include a processing program that applies the processing method and a second program that transmits the processed file to another information processing apparatus connected to the Internet. According to this configuration, transmission of a file is performed through a transmission path using the Internet and a transmission path using a network that is different from the Internet in terms of software. The difference in software means that the processing method (for example, encryption / encoding, presence / absence of embedding in an image) for a file to be transmitted is different although the transmission paths are the same.
 また、前記第1、第2のメモリは、個々のディスクメモリであることが好ましい。この構成によれば、仮に第1のメモリがマルウエアに汚染されても、直ちに第2のメモリが汚染されるとは限らない。 The first and second memories are preferably individual disk memories. According to this configuration, even if the first memory is contaminated with malware, the second memory is not always immediately contaminated.
 また、前記第1のオペレーティングシステムでの動作環境において、前記第1、第2のアプリケーションプログラムの起動を指示する操作部を備えることが好ましい。この構成によれば、第1のオペレーティングシステムでの動作環境にあっても、第2のアプリケーションプログラムの起動が操作部から指示可能となる。 Further, it is preferable that an operation unit for instructing activation of the first and second application programs is provided in the operating environment of the first operating system. According to this configuration, even in the operating environment of the first operating system, it is possible to instruct the activation of the second application program from the operation unit.
 また、前記操作部は、前記第1、第2のアプリケーションプログラムの起動を指示する各アイコンを表示する表示部と、表示された各アイコンを選択的に指示する選択処理手段とを備えることが好ましい。この構成によれば、表示部に表示されたアイコンの表示位置を押圧する等の簡易な操作で選択ができ、該当するアプリケーションプログラムが起動される。 The operation unit preferably includes a display unit that displays icons for instructing activation of the first and second application programs, and selection processing means for selectively instructing the displayed icons. . According to this configuration, selection can be performed by a simple operation such as pressing the display position of the icon displayed on the display unit, and the corresponding application program is activated.
 また、前記第1のオペレーティングシステムの動作環境において、前記第2のアプリケーションプログラムの起動が指示された場合、前記指示を受けて前記ワークメモリの内容を前記第1の保管メモリに退避させ、退避後に前記第2の保管メモリに退避されている内容を前記ワークメモリに展開する第1のモード切替手段を備えることが好ましい。この構成によれば、第1のオペレーティングシステムから第2のアプリケーションプログラムに切り替える場合、ワークメモリの内容が第1の保管メモリに退避されるので、後に第1のオペレーティングシステムの起動が指示された場合に、BIOSを起動させるまでもなく、迅速にワークメモリを第1の動作環境に設定することが可能となる。 Further, in the operating environment of the first operating system, when the activation of the second application program is instructed, the contents of the work memory are saved in the first storage memory in response to the instruction, and after the saving It is preferable that first mode switching means for expanding the contents saved in the second storage memory to the work memory is provided. According to this configuration, when switching from the first operating system to the second application program, the contents of the work memory are saved in the first storage memory, so that activation of the first operating system is instructed later In addition, it is possible to quickly set the work memory to the first operating environment without starting up the BIOS.
 また、前記第2のオペレーティングシステムの動作環境において、前記第1のアプリケーションプログラムの起動が指示された場合、前記指示を受けて前記ワークメモリの内容を第2の保管メモリに退避させ、退避後に前記第1の保管メモリに退避されている内容を前記ワークメモリに展開する第2のモード切替手段を備えることが好ましい。この構成によれば、第2のオペレーティングシステムから第1のアプリケーションプログラムに切り替える場合、ワークメモリの内容が第2の保管メモリに退避されるので、後に第2のオペレーティングシステムの起動が指示された場合に、BIOSを起動させるまでもなく、迅速にワークメモリを第2の動作環境に設定することが可能となる。 Further, in the operating environment of the second operating system, when an instruction to start the first application program is given, the contents of the work memory are saved in a second storage memory in response to the instruction, and after the saving, the contents are saved. It is preferable to include a second mode switching unit that expands the contents saved in the first storage memory to the work memory. According to this configuration, when switching from the second operating system to the first application program, the contents of the work memory are saved in the second storage memory, so that the activation of the second operating system is instructed later In addition, it is possible to quickly set the work memory to the second operating environment without starting up the BIOS.
 また、前記ワークメモリに対する記憶内容の退避処理から展開処理までの間に、当該ワークメモリを一旦リセットするリセット手段を備えることが好ましい。この構成によれば、ワークメモリを一旦クリアするので、仮にマルウエア等が潜伏していたとしても消去することが可能となる。 Further, it is preferable that a reset means for temporarily resetting the work memory is provided between the saving process of the stored contents in the work memory and the expansion process. According to this configuration, since the work memory is once cleared, even if malware or the like is hidden, it can be erased.
 また、前記管理CPU、前記第2のメモリ及び前記第2の保管メモリは、装置本体に装着脱可能な外部デバイスに搭載されていることが好ましい。この構成によれば、情報処理装置として一般乃至は既存の物が使用でき、かつ、その内部に外部デバイスを装填することで、第2の動作環境を設定可能となるという利便性がある。 Further, it is preferable that the management CPU, the second memory, and the second storage memory are mounted on an external device that can be attached to and detached from the apparatus main body. According to this configuration, there is a convenience that a general or existing information processing apparatus can be used and the second operating environment can be set by loading an external device inside the information processing apparatus.
 また、情報処理装置に装填可能にされ、前記管理CPU、前記第2のメモリ及び前記第2の保管メモリを備えた外部デバイスを採用することが好ましい。これによれば、情報処理装置としては一般的な物を採用することが可能となる。 Further, it is preferable to employ an external device that can be loaded into the information processing apparatus and includes the management CPU, the second memory, and the second storage memory. According to this, a general thing can be adopted as an information processor.
 また、本発明は、ワークメモリに展開されているオペレーティングシステムの動作環境でCPUが対応する処理を実行する情報処理装置において、第1の動作環境で動作される第1のオペレーティングシステムを保管する第1の保管メモリと、第2の動作環境で動作される第2のオペレーティングシステムを保管する第2の保管メモリと、選択的な指示に応じて前記ワークメモリの動作環境を切り替える管理CPUとを備え、前記管理CPUは、前記第1の動作環境を前記第2の動作環境に切り替える指示に応じて、前記ワークメモリに展開されている前記第1のオペレーティングシステム及び処理内容を前記第1の保管メモリに退避して更新的に保管し、次いで前記第2の保管メモリに更新的に保管されている前記第2のオペレーティングシステム及び処理内容を前記ワークメモリに展開するものであることが好ましい。この発明によれば、CPUは動作環境の選択的な切り替えの都度、BIOSから再起動することがなくなる。すなわち、対応する保管メモリに保管、すなわち現状の動作環境である第1の動作環境に関する内容が第1の保管メモリに退避されて更新的に保管され、次いで待機状態にある他方側の動作環境、すなわち第2の動作環境に関する内容がワークメモリに展開されることで、第2の動作環境への切り替えが行われるため、切り替えに要する時間が短縮(迅速化)され、また、切り替えに対する操作性、利便性が向上する。また、同様に、現状の動作環境が第2の動作環境に関する内容が第2の保管メモリに退避されて更新的に保管され、次いで待機状態にある他方側の動作環境、すなわち第1の動作環境に関する内容が展開されることで、第1の動作環境への切り替えが行われる場合も、同様な効果が期待できる。 According to the present invention, in an information processing apparatus that executes processing corresponding to a CPU in an operating environment of an operating system deployed in a work memory, a first operating system that operates in the first operating environment is stored. 1 storage memory, a second storage memory for storing a second operating system operated in the second operating environment, and a management CPU for switching the operating environment of the work memory in accordance with a selective instruction. In response to an instruction to switch the first operating environment to the second operating environment, the management CPU stores the first operating system and processing contents expanded in the work memory in the first storage memory. The second operation stored in the second storage memory is then stored in the second storage memory. It is preferable that deploying a system and process content in the work memory. According to the present invention, the CPU does not restart from the BIOS every time the operating environment is selectively switched. That is, storage in the corresponding storage memory, that is, the contents related to the first operating environment which is the current operating environment is saved in the first storage memory and updated and stored, and then the other operating environment in the standby state, That is, since the contents related to the second operating environment are expanded in the work memory, switching to the second operating environment is performed, so that the time required for switching is shortened (speeded up), and the operability for switching, Convenience is improved. Similarly, the current operating environment is the content related to the second operating environment saved in the second storage memory and updated, and then the other operating environment in the standby state, that is, the first operating environment. The same effect can be expected even when switching to the first operating environment is performed by expanding the contents related to.
 また、前記情報処理装置に装填可能にされ、前記第1の動作環境が汎用モードであり、前記第2の動作環境が特定モードである場合に、前記管理CPU及び前記第2の保管メモリを備えた外部デバイスを採用することが好ましい。これによれば、情報処理装置としては一般的な物を採用することが可能となる。 When the first operating environment is a general-purpose mode and the second operating environment is a specific mode, the management CPU and the second storage memory are provided. It is preferable to employ an external device. According to this, a general thing can be adopted as an information processor.
1 ネットワーク(インターネット)
302 汎用メールサーバ
303 特定メール受信通知サーバ
4 情報処理端末(情報処理装置)
4a 外部デバイス
41 表示部(操作部の一部)
41a、41b アイコン(操作部の一部)
42 タッチパネル
43 電源スイッチ
400 CPU
401 起動処理部
402 汎用AP処理部
403 モード切替指示部
405 特定AP処理部
406 画像表示処理部
409 リクエスト処理部
4002 RAM
4003,4004 メモリ部
40031,40041 プログラムメモリ(第1、第2のメモリ)
40032,40042 保管メモリ(第1、第2の保管メモリ)
14 管理CPU
141 並列起動制御部(リセット手段)
1411 第1の退避処理部(第1の退避手段)
1412 追加起動処理部(追加起動手段)
1413 第2の退避処理部(第2の退避手段)
1414 再展開処理部(再展開手段)
142 モード切替I処理部(第1のモード切替手段)
143 モード切替II処理部(第2のモード切替手段)
63 特定メールサーバ 1 Network (Internet)
302 General-purpose mail server 303 Specific mail reception notification server 4 Information processing terminal (information processing apparatus)
4a External device 41 Display unit (part of operation unit)
41a, 41b icon (part of the operation unit)
42 Touch Panel 43 Power Switch 400 CPU
401 activation processing unit 402 general-purpose AP processing unit 403 mode switching instruction unit 405 specific AP processing unit 406 image display processing unit 409 request processing unit 4002 RAM
4003, 4004 Memory units 40031, 40041 Program memory (first and second memories)
40032, 40042 Storage memory (first and second storage memory)
14 Management CPU
141 Parallel activation control unit (reset means)
1411 First evacuation processing unit (first evacuation means)
1412 Additional activation processing unit (additional activation means)
1413 Second save processing unit (second save means)
1414 Redeployment processing unit (redeployment means)
142 Mode switching I processing section (first mode switching means)
143 Mode switching II processing unit (second mode switching means)
63 Specific mail server

Claims (16)

  1. 起動時に、第1のメモリに記憶されている第1のオペレーティングシステムをワークメモリに展開して、CPUを第1の動作環境に設定する情報処理装置において、
     管理CPUと、
     第2のオペレーティングシステムが記憶された第2のメモリと、
     第1、第2の保管メモリとを備え、
     前記管理CPUは、
     前記起動を受けて前記第1のオペレーティングシステムが前記ワークメモリに展開された後、前記ワークメモリに展開された内容を第1の保管メモリに退避させる第1の退避手段と、
     前記第1の退避手段による退避処理後、前記第2のメモリに記憶されている第2のオペレーティングシステムを前記ワークメモリに展開して、前記CPUを第2の動作環境に設定する追加起動手段と、
     前記追加起動手段による起動処理後、前記ワークメモリに展開された内容を第2の保管メモリに退避させる第2の退避手段と、
     前記第2の退避手段による退避処理後、前記第1の保管メモリに退避されている内容を前記ワークメモリに再展開する再展開手段とを備えたことを特徴とする情報処理装置。     In an information processing apparatus that expands a first operating system stored in a first memory to a work memory and sets the CPU as a first operating environment at the time of startup,
    A management CPU;
    A second memory storing a second operating system;
    First and second storage memory,
    The management CPU is
    First evacuation means for evacuating the contents expanded in the work memory to the first storage memory after the first operating system is expanded in the work memory in response to the activation;
    An additional activation unit configured to expand the second operating system stored in the second memory to the work memory and set the CPU in the second operating environment after the saving process by the first saving unit; ,
    Second evacuation means for evacuating the contents expanded in the work memory to a second storage memory after the activation process by the additional activation means;
    An information processing apparatus comprising: a re-expansion unit that re-expands the contents saved in the first storage memory to the work memory after the saving process by the second saving unit.
  2. 前記第1のメモリには、第1のオペレーティングシステムの動作環境で動作する1又は複数の第1のアプリケーションプログラムが記憶され、
     前記第2のメモリには、第2のオペレーティングシステムの動作環境で動作する1又は複数の第2のアプリケーションプログラムが記憶されていることを特徴とする請求項1記載の情報処理装置。     The first memory stores one or more first application programs that operate in an operating environment of a first operating system,
    The information processing apparatus according to claim 1, wherein the second memory stores one or more second application programs that operate in an operating environment of a second operating system.
  3. 前記第1のアプリケーションプログラムは、インターネットに接続されている他の装置にファイルを送信する第1のプログラムを含み、
     前記第2のアプリケーションプログラムは、前記インターネットとは異なる専用ネットワークに接続されている他の情報処理装置にファイルを送信する第2のプログラムを含むことを特徴とする請求項1又は2に記載の情報処理装置。     The first application program includes a first program that transmits a file to another device connected to the Internet,
    The information according to claim 1, wherein the second application program includes a second program that transmits a file to another information processing apparatus connected to a dedicated network different from the Internet. Processing equipment.
  4. 前記第1のアプリケーションプログラムは、ファイルをインターネットに接続されている他の情報処理装置と送受信する第1のプログラムを含み、
     前記第2のアプリケーションプログラムは、送信対象のファイルに対して所定の加工方法を適用する加工プログラムと、加工されたファイルを前記インターネットに接続されている他の情報処理装置に送信する第2のプログラムとを含むことを特徴とする請求項1又は2に記載の情報処理装置。     The first application program includes a first program for transmitting / receiving a file to / from another information processing apparatus connected to the Internet,
    The second application program includes a processing program that applies a predetermined processing method to a transmission target file, and a second program that transmits the processed file to another information processing apparatus connected to the Internet. The information processing apparatus according to claim 1, wherein the information processing apparatus includes:
  5. 前記第1、第2のメモリは、個々のディスクメモリであることを特徴とする請求項1~4のいずれかに記載の情報処理装置。 5. The information processing apparatus according to claim 1, wherein the first and second memories are individual disk memories.
  6. 前記第1のオペレーティングシステムでの動作環境において、前記第1、第2のアプリケーションプログラムの起動を指示する操作部を備えたことを特徴とする請求項1~5のいずれかに記載の情報処理装置。 6. The information processing apparatus according to claim 1, further comprising: an operation unit that instructs activation of the first and second application programs in an operating environment of the first operating system. .
  7. 前記操作部は、前記第1、第2のアプリケーションプログラムの起動を指示する各アイコンを表示する表示部と、表示された各アイコンを選択的に指示する選択処理手段とを備えたことを特徴とする請求項6記載の情報処理装置。 The operation unit includes a display unit for displaying each icon for instructing activation of the first and second application programs, and a selection processing unit for selectively instructing each displayed icon. The information processing apparatus according to claim 6.
  8. 前記第1のオペレーティングシステムの動作環境において、前記第2のアプリケーションプログラムの起動が指示された場合、前記指示を受けて前記ワークメモリの内容を前記第1の保管メモリに退避させ、退避後に前記第2の保管メモリに退避されている内容を前記ワークメモリに展開する第1のモード切替手段を備えたことを特徴とする請求項1~7のいずれかに記載の情報処理装置。 When the activation of the second application program is instructed in the operating environment of the first operating system, the contents of the work memory are received in the first storage memory in response to the instruction, and the second memory is stored after the saving. 8. The information processing apparatus according to claim 1, further comprising a first mode switching unit that expands the contents saved in the storage memory in the work memory.
  9. 前記第2のオペレーティングシステムの動作環境において、前記第1のアプリケーションプログラムの起動が指示された場合、前記指示を受けて前記ワークメモリの内容を第2の保管メモリに退避させ、退避後に前記第1の保管メモリに退避されている内容を前記ワークメモリに展開する第2のモード切替手段を備えたことを特徴とする請求項1~8のいずれかに記載の情報処理装置。 In the operating environment of the second operating system, when the activation of the first application program is instructed, the contents of the work memory are saved in a second storage memory in response to the instruction, and the first memory is saved after the saving. 9. The information processing apparatus according to claim 1, further comprising second mode switching means for expanding the contents saved in the storage memory to the work memory.
  10. 前記ワークメモリに対する記憶内容の退避処理から展開処理までの間に、当該ワークメモリを一旦リセットするリセット手段を備えたことを特徴とする請求項1~9のいずれかに記載の情報処理装置。 The information processing apparatus according to any one of claims 1 to 9, further comprising a reset unit that temporarily resets the work memory between a saving process of the storage contents to the work memory and a developing process.
  11. 前記管理CPU、前記第2のメモリ及び前記第2の保管メモリは、装置本体に装着脱可能な外部デバイスに搭載されていることを請求項1~10のいずれかに記載の情報処理装置。 11. The information processing apparatus according to claim 1, wherein the management CPU, the second memory, and the second storage memory are mounted on an external device that can be attached to and detached from the apparatus main body.
  12. 起動時に、第1のメモリに記憶されている第1のオペレーティングシステムをワークメモリに展開して、CPUを第1の動作環境に設定する情報処理装置の起動制御方法において、
     管理CPUと、
     第2のオペレーティングシステムが記憶された第2のメモリと、
     第1、第2の保管メモリとを備え、
     前記管理CPUは、
     前記起動を受けて前記第1のオペレーティングシステムが前記ワークメモリに展開された後、前記ワークメモリに展開された内容を第1の保管メモリに退避させる第1の退避ステップと、
     前記第1の退避ステップによる退避処理後、前記第2のメモリに記憶されている第2のオペレーティングシステムを前記ワークメモリに展開して、前記CPUを第2の動作環境に設定する追加起動ステップと、
     前記追加起動ステップによる起動処理後、前記ワークメモリに展開された内容を第2の保管メモリに退避させる第2の退避ステップと、
     前記第2の退避ステップによる退避処理後、前記第1の保管メモリに退避されている内容を前記ワークメモリに再展開する再展開ステップとを備えたことを特徴とする情報処理装置の起動制御方法。     In a startup control method for an information processing apparatus that, upon startup, expands a first operating system stored in a first memory into a work memory and sets a CPU as a first operating environment.
    A management CPU;
    A second memory storing a second operating system;
    First and second storage memory,
    The management CPU is
    A first evacuation step for evacuating the contents expanded in the work memory to the first storage memory after the first operating system is expanded in the work memory in response to the activation;
    An additional start-up step of expanding the second operating system stored in the second memory to the work memory after the saving process in the first saving step and setting the CPU in the second operating environment; ,
    A second evacuation step for evacuating the contents expanded in the work memory to a second storage memory after the activation process in the additional activation step;
    An information processing apparatus activation control method comprising: a re-deployment step of re-deploying the contents saved in the first storage memory to the work memory after the save process in the second save step .
  13. 起動時に、第1のメモリに記憶されている第1のオペレーティングシステムをワークメモリに展開して、コンピュータが第1の動作環境に設定された後、動作環境を管理する管理コンピュータによって第2のメモリに記憶されている第2のオペレーティングシステムによる第2の動作環境を動作待機状態にする情報処理装置の起動制御プログラムであって、
     前記起動を受けて前記第1のオペレーティングシステムが前記ワークメモリに展開された後、前記ワークメモリに展開された内容を第1の保管メモリに退避させる第1の退避手段、
     前記第1の退避手段による退避処理後、前記第2のメモリに記憶されている第2のオペレーティングシステムを前記ワークメモリに展開して、前記CPUを第2の動作環境に設定する追加起動手段、
     前記追加起動手段による起動処理後、前記ワークメモリに展開された内容を第2の保管メモリに退避させる第2の退避手段、
     前記第2の退避手段による退避処理後、前記第1の保管メモリに退避されている内容を前記ワークメモリに再展開する再展開手段、として前記管理コンピュータを機能させる情報処理装置の起動制御プログラム。     At startup, after the first operating system stored in the first memory is expanded to the work memory and the computer is set to the first operating environment, the second memory is managed by the management computer that manages the operating environment. A boot control program for the information processing apparatus for setting the second operating environment by the second operating system stored in the operation standby state,
    First evacuation means for evacuating the contents expanded in the work memory to a first storage memory after the first operating system is expanded in the work memory in response to the activation;
    After the saving process by the first saving means, an additional starting means for expanding the second operating system stored in the second memory to the work memory and setting the CPU to the second operating environment;
    A second evacuation unit for evacuating the contents expanded in the work memory to a second storage memory after the activation process by the additional activation unit;
    An information processing apparatus activation control program that causes the management computer to function as a re-deployment unit that re-deploys the contents saved in the first storage memory to the work memory after the save process by the second save unit.
  14. 請求項1~10のいずれかに記載の情報処理装置に装填可能にされ、前記管理CPU、前記第2のメモリ及び前記第2の保管メモリを備えた外部デバイス。 11. An external device that can be loaded into the information processing apparatus according to claim 1 and includes the management CPU, the second memory, and the second storage memory.
  15. ワークメモリに展開されているオペレーティングシステムの動作環境でCPUが対応する処理を実行する情報処理装置において、
     第1の動作環境で動作される第1のオペレーティングシステムを保管する第1の保管メモリと、
     第2の動作環境で動作される第2のオペレーティングシステムを保管する第2の保管メモリと、
     選択的な指示に応じて前記ワークメモリの動作環境を切り替える管理CPUとを備え、
     前記管理CPUは、前記第1の動作環境を前記第2の動作環境に切り替える指示に応じて、前記ワークメモリに展開されている前記第1のオペレーティングシステム及び処理内容を前記第1の保管メモリに退避して更新的に保管し、次いで前記第2の保管メモリに更新的に保管されている前記第2のオペレーティングシステム及び処理内容を前記ワークメモリに展開するものであることを特徴とする情報処理装置。     In an information processing apparatus that executes processing corresponding to a CPU in an operating environment of an operating system deployed in a work memory,
    A first storage memory for storing a first operating system operating in a first operating environment;
    A second storage memory for storing a second operating system operating in a second operating environment;
    A management CPU that switches the operating environment of the work memory in response to a selective instruction,
    In response to an instruction to switch the first operating environment to the second operating environment, the management CPU stores the first operating system and processing contents expanded in the work memory in the first storage memory. Information processing characterized in that the second operating system and the processing content stored in the second storage memory are expanded and saved in the work memory after being saved and updated and stored in the second storage memory. apparatus.
  16. 請求項15に記載の情報処理装置に装填可能にされ、前記第1の動作環境が汎用モードであり、前記第2の動作環境が特定モードである場合に、前記管理CPU及び前記第2の保管メモリを備えた外部デバイス。 The management CPU and the second storage when the information processing apparatus according to claim 15 is loadable, the first operating environment is a general-purpose mode, and the second operating environment is a specific mode. An external device with memory.
PCT/JP2011/070121 2011-09-05 2011-09-05 Information processing device, startup control method for same, startup control program for same and external device WO2013035141A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/JP2011/070121 WO2013035141A1 (en) 2011-09-05 2011-09-05 Information processing device, startup control method for same, startup control program for same and external device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2011/070121 WO2013035141A1 (en) 2011-09-05 2011-09-05 Information processing device, startup control method for same, startup control program for same and external device

Publications (1)

Publication Number Publication Date
WO2013035141A1 true WO2013035141A1 (en) 2013-03-14

Family

ID=47831629

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2011/070121 WO2013035141A1 (en) 2011-09-05 2011-09-05 Information processing device, startup control method for same, startup control program for same and external device

Country Status (1)

Country Link
WO (1) WO2013035141A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2014219947A (en) * 2013-05-11 2014-11-20 レノボ・シンガポール・プライベート・リミテッド Method for constructing secure operating environment for computer, computer program, and computer
CN105993001A (en) * 2014-03-20 2016-10-05 英特尔公司 Techniques for switching between operating systems

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11288366A (en) * 1998-04-01 1999-10-19 Canon Inc Information processing method, device therefor and storage medium
JP2001256066A (en) * 2000-02-29 2001-09-21 Internatl Business Mach Corp <Ibm> Computer system, switching system of operating system, mounting method of operating system, switching method of operating system, storage medium and program transmitter
JP2006201919A (en) * 2005-01-19 2006-08-03 Yoichi Furugaki Multi-boot computer
WO2007109671A2 (en) * 2006-03-21 2007-09-27 Japan Communications, Inc. Systems and methods for providing secure communications for transactions
JP2007336229A (en) * 2006-06-14 2007-12-27 Casio Hitachi Mobile Communications Co Ltd Electronic apparatus and program
JP2008016030A (en) * 2006-07-03 2008-01-24 Lg Electronics Inc System operation control device and method
JP2008052714A (en) * 2006-07-25 2008-03-06 Ntt Docomo Inc Switching control device for multiple operating systems, and computer system

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11288366A (en) * 1998-04-01 1999-10-19 Canon Inc Information processing method, device therefor and storage medium
JP2001256066A (en) * 2000-02-29 2001-09-21 Internatl Business Mach Corp <Ibm> Computer system, switching system of operating system, mounting method of operating system, switching method of operating system, storage medium and program transmitter
JP2006201919A (en) * 2005-01-19 2006-08-03 Yoichi Furugaki Multi-boot computer
WO2007109671A2 (en) * 2006-03-21 2007-09-27 Japan Communications, Inc. Systems and methods for providing secure communications for transactions
JP2007336229A (en) * 2006-06-14 2007-12-27 Casio Hitachi Mobile Communications Co Ltd Electronic apparatus and program
JP2008016030A (en) * 2006-07-03 2008-01-24 Lg Electronics Inc System operation control device and method
JP2008052714A (en) * 2006-07-25 2008-03-06 Ntt Docomo Inc Switching control device for multiple operating systems, and computer system

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2014219947A (en) * 2013-05-11 2014-11-20 レノボ・シンガポール・プライベート・リミテッド Method for constructing secure operating environment for computer, computer program, and computer
CN105993001A (en) * 2014-03-20 2016-10-05 英特尔公司 Techniques for switching between operating systems
JP2017508204A (en) * 2014-03-20 2017-03-23 インテル・コーポレーション Switching technology between operating systems
US11307868B2 (en) 2014-03-20 2022-04-19 Intel Corporation Techniques for switching between operating systems

Similar Documents

Publication Publication Date Title
CN106255984B (en) Apparatus and method for operating a portable electronic device to conduct a mobile payment transaction
US10614212B1 (en) Secure software containers
KR102471289B1 (en) A method for quickly opening an application or application function, and a terminal
US9317689B2 (en) Method and apparatus for secure application execution
CN111542822B (en) Electronic device and method for sharing screen data
US10810811B2 (en) Electronic device and method for managing electronic key thereof
KR20180072389A (en) Method for providing content corresponding to an accessory and electronic device thereof
WO2019129037A1 (en) Equipment authentication method, over-the-air card writing method, and equipment authentication device
US9779232B1 (en) Trusted code generation and verification to prevent fraud from maleficent external devices that capture data
JP5981035B2 (en) Hardware access protection
CN105493097A (en) Protection scheme for remotely-stored data
WO2021135593A1 (en) Device sharing method and electronic device
KR20150017844A (en) Controlling Method For Input Status and Electronic Device supporting the same
WO2020024929A1 (en) Method for upgrading service application range of electronic identity card, and terminal device
EP3531675B1 (en) Method and device for information exchange
EP3764258B1 (en) Constructing common trusted application for a plurality of applications
CN108335105B (en) Data processing method and related equipment
WO2017206833A1 (en) Payment method, payment apparatus, and payment server
WO2021169382A1 (en) Link test method and apparatus, electronic device and storage medium
US20210084137A1 (en) Electronic device for transmitting and receiving message including emoji and method for controlling electronic device
US11250656B2 (en) Electronic apparatus and operating method thereof
CN110941821A (en) Data processing method, device and storage medium
CN107305661B (en) Apparatus and method for performing secure login service
WO2013035141A1 (en) Information processing device, startup control method for same, startup control program for same and external device
CN109547444B (en) Virtual object acquisition method and device and electronic equipment

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11872050

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11872050

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: JP