Patent Application
20240111977
This application claims priority from Japanese Patent Application No. 2022-155768 filed on Sep. 29, 2022. The entire content of the priority application is incorporated herein by reference.
Printing devices capable of executing processes according to Printer Job Language (PJL) commands are known in the art.
The object of this disclosure is to improve the security of printing devices capable of executing processes according to PJL commands.
In order to attain the above and other objects, according to one aspect, the present disclosure provides a printing device. The printing device includes a first communication interface, a second communication interface, and a computer. The computer is configured to perform: on a first condition including that a printer job language (PJL) command is received via the first communication interface that is a LAN interface, prohibiting execution of the PJL command when the PJL command is classified into a first command type; and executing the PJL command when the PJL command is classified into a second command type different from the first command type; and on a second condition including that the PJL command is received via the second communication interface different from the LAN interface, executing the PJL command regardless of whether the PJL command is classified into the first command type or the second command type.
According to another aspect, the present disclosure provides a printing device. The printing device includes a first communication interface. a computer. The computer is configured to perform: on a first condition including that a printer job language (PJL) command is received via the first communication interface that is a LAN interface according to a first protocol, executing the PJL command regardless of whether the PJL command is classified into a first command type or a second command type different from the first command type; on a second condition including that the PJL command is received via the first communication interface that is the LAN interface according to a second protocol different from the first protocol, prohibiting execution of the PJL command when the PJL command is classified into the first command type; and executing the PJL command when the PJL command is classified into the second command type.
In the above structure, restriction of execution of the PJL command is varied on the basis of the path through which the PJL command is transmitted. Accordingly, security of the printing device, which can execute the PJL command, can be improved.
The embodiment of the present disclosure will be described while referring to the accompanied drawings. The embodiment is just an example and may be modified without departing from the scope of the invention. The order of processes or steps described later may be modified without departing from the scope of the invention.
The printer 10 is primarily provided with a Central Processing Unit (CPU) 12 as an example of the computer, a memory 14, a Liquid Crystal Display (LCD) 16, an input interface 18, a reading member 20, a recording member 22, and a communication interface 26. These components are capable of communicating with each other via a bus 28.
The printer 10 can communicate with the output device 50 via the communication interface 26. The communication interface 26 is provided with a local area network (LAN) interface 30 (an example of the first communication interface and the LAN interface), and a Universal Serial Bus (USB) interface 31 (an example of the second communication interface). The LAN interface 30 is used for communication via a local area network (LAN) and a wide area network (WAN). The USB interface 31 is used for inputting data from and outputting data to devices (USB devices) according to the USB standard. The USB interface 31 is provided with a connector for connecting a USB cable, and a connector for connecting a USB device such as USB memory.
The CPU 12 executes processes in accordance with a control program 32 stored in the memory 14. The memory 14 is also provided with a data storage area 34. The data storage area 34 stores data required for executing the control program 32 and the like. The memory 14 includes a nonvolatile memory 36, such as ROM or flash memory, and a volatile memory 38, such as RAM.
The memory 14 may include any storage medium that can be read by a computer. A computer-readable storage medium is a non-transitory medium. In addition to the above examples, non-transitory media include CD-ROM and DVD-ROM. A non-transitory medium is also a tangible medium. On the other hand, electric signals that convey programs downloaded from a server or the like on the Internet are a computer-readable signal medium, which is one type of computer-readable medium but is not considered a non-transitory computer-readable storage medium.
The LCD 16 displays various information on the printer 10. The display in this disclosure is not limited to a liquid crystal display but may be a display configured of another system such as an organic light-emitting diode (OLED) display. The input interface 18 is a touchscreen integrally configured with the display, for example. The input interface 18 receives user operations through icons, buttons, and the like displayed on the display. In addition to the touchscreen, the input interface 18 may include hard keys and the like.
The reading member 20 is provided with an image sensor. The reading member 20 executes scanning operations to read images with the image sensor. The recording member 22 is an electrophotographic printing mechanism, for example. Alternatively, the recording member 22 may be an inkjet printing mechanism. The recording member 22 may be a print engine and include a print head to form an image on a sheet.
In the following description, actions such as “determine,” “extract,” “select,” “calculate,” “decide,” “identify,” “acquire,” “receive,” “control,” “set,” and the like represent processes performed by the CPU 12. Processes performed by the CPU 12 include processes that control hardware through APIs provided in the OS. Hereinafter, the expressions such as “using the OS” are omitted when operations of programs are described. For example, the phrase “the program B controls the hardware C” may signify that the program B controls the hardware C using an API provided in the OS. A process executed by the CPU 12 according to instructions described in a program may be described using abbreviated expressions, such as “the CPU 12 executes,” and “the program B executes.”
Note that the term “acquire” in this specification is used as a concept that does not necessarily require a request. In other words, a process by which the CPU 12 receives data without requesting that data is included in the concept of “the CPU 12 acquires data.” The term “data” described herein is expressed as bit strings that can be read by a computer. Data of different formats are treated as the same data when the content of the data is essentially the same. The same holds true for “information” in this specification. An “instruction,” a “request,” or the like is processed by communicating information indicating the “instruction,” or the “request.” The terms “instruction” and “request” may also be used to describe information indicating an “instruction” or a “request.”
Further, a process performed by the CPU 12 to determine whether information A indicates circumstance B may be described conceptually as “determining whether circumstance B based on information A.” A process in which the CPU 12 determines whether information A indicates circumstance B or circumstance C may be described conceptually as “determining whether circumstance B or circumstance C based on information A.”
When the printer 10 receives a PJL file outputted from the output device 50, the CPU 12 of the printer 10 executes the control program 32 to perform a process in accordance with the PJL file. Here, processes executed on the printer 10 will be described in detail with reference to the sequence charts in
The printer 10 may receive PJL files outputted from the output device 50 via the LAN interface 30 or the USB interface 31 of the communication interface 26. When receiving PJL files via the LAN interface 30, the printer 10 may accept PJL files according to the Hyper Text Transfer Protocol Secure (HTTPS) (an example of the first protocol) protocol or may accept PJL files according to specific communication protocols (examples of the second protocol). Here, the specific communication protocol is a protocol that does not require a process to authenticate a transmission device and permit the transmission device to transmit data under a condition that the authentication of the transmission device is successful. Because the HTTPS protocol requires authentication of the transmission device, the specific communication protocol is different from the HTTPS protocol. For example, the specific communication protocol is Hyper Text Transfer Protocol (HTTP), File Transfer Protocol (FTP), or Line Printer Daemon Protocol (LPR). Another example of the specific communication protocol is a protocol used by the Standard TCP/IP port monitor provided by Windows (U.S. trademark of Microsoft Corporation). Hereinafter, the protocol used by the Standard TCP/IP port monitor is simply referred to as “Standard TCP/IP port monitor” or “Standard TCP/IP port”. The Standard TCP/IP port monitor is a protocol that uses, as a default port, port 9100 of TCP/IP to communicate according to the RAW protocol. The Standard TCP/IP port monitor may use port 515 to communicate according to the LPR protocol. The specific communication protocol that uses port 9100 may be abbreviated as “PORT 9100” protocol.
First, a process in which the printer 10 receives a PJL file according to a specific communication protocol other than HTTPS will be described by referring to
Next, a process in which the printer 10 receives a PJL file according to HTTPS will be described by referring to
After receiving the authentication request, in S114 the printer 10 authenticates the output device 50 with the password included in the authentication request. In other words, an authentication password has been set on the printer 10 in advance, and the printer 10 confirms whether the password included in the authentication request matches the authentication password set on the printer 10. When the password in the authentication request matches the authentication password preset on the printer 10, in S116 the printer 10 returns an authentication successful response to the output device 50. After receiving the authentication successful response, in S118 the output device 50 transmits a PJL file to the printer 10 according to HTTPS, while specifying 443 as the receiving port number. Accordingly, in S120 the printer 10 receives the PJL file via the LAN interface 30 according to HTTPS. After receiving a PJL file in this way, the printer 10 executes the PJL reception process in S104. In S106 the printer 10 returns the results of the processes executed in S104 to the output device 50 as a response. The details of S106 will be described later.
Next, a process in which the printer 10 receives a PJL file via the USB interface 31 will be described. The output device 50 outputting the PJL file is a USB device, such as USB memory. Thus, when the USB memory or other USB device is connected to the printer 10, in S130 of
Next, the PJL reception process of S104 will be described in greater detail with reference to
The PJL security setting is set in a settings screen 100 shown in
When the PJL security setting is set to “disabled” (S202: NO), in S208 the control program 32 performs a process according to each PJL command identified in S200 and subsequently ends the PJL reception process. When the PJL security setting is set to “enabled” (S202: YES), in S204 the control program 32 determines whether the printer 10 received the PJL file via the USB interface 31.
When the printer 10 received the PJL file according to a communication protocol other than HTTPS, as shown in
When the PJL file is transmitted, the PJL file may be included in a network packet defined by the communication protocol. Specifically, the network packet includes the PJL file as a payload and information other than the payload. In such cases, the information other than the payload includes information on the used communication protocol for transmitting the PJL file. The control program 32 may determines the communication protocol used for transmitting the PJL file on the basis of the information other than the payload in the network packet.
When the PJL file was received by a specific communication protocol other than HTTPS (S206: NO), in S210 the printer 10 reads command information from a table specifying PJL commands that are subject to execution restriction. The table shown in
In other words, the table shown in
For convenience, the table shown in
@Pjl Default/Set “Variable”=“Value”
Here, “variable” is set to a name specifying an environment variable in the commands for “DEFAULT” and “SET”. The variables shown in
In S212 the control program 32 determines whether any of the PJL commands identified in S200 are restricted commands. There are cases in which the PJL file includes a plurality of PJL commands. In such cases, when the PJL file includes at least one PJL command classified into the first command type, the control program 32 may make YES determination in S212 whereas when the PJL file includes no PJL command classified into the first command type, i.e. all the PJL commands included in the PJL file are classified into the second command type, the control program 32 may make NO determination in S212.
When NO determination is made in S212 (S212: NO), in S208 the control program 32 performs processes according to the PJL commands identified in S200 and subsequently ends the PJL reception process. However, when YES determination is made in S212 (S212: YES), the control program 32 ends the PJL reception process without executing processes according to the PJL commands identified in S200.
There may be cases in which the PJL file includes a plurality of groups of PJL commands and each group of PJL commands can be executed independently from the remaining groups of PJL commands. In such cases, after the process of S210, the control program 32 may execute each group in which all the PJL commands are classified into the second command type, but may not execute each group in which at least one PJL command is classified into the second command type.
PJL commands also include commands for instructing the printing of images (hereinafter called “print instruction commands”). Print instruction commands are outputted together with image data for the image targeted by the print instruction. In this case, the print instruction commands and the image data are both included in a print job, and the print job included in the PJL file is outputted. Alternatively, the print commands may be data separate from the print job including the image data, and the print job and the print commands may be separately included in the PJL file. Anyway, there are cases that the PJL file includes both print instruction commands and image data. The print instruction commands include information indicating that the print data includes image data, information specifying the job name of the print data, information specifying the username of the print data, information specifying printing parameters to be used when printing the print data, and a command indicating that the print data is to be printed according to a special method. The special method may be a method of storing the print data in the memory 14 rather than printing the data immediately and then printing the print data in response to an instruction received through an operation on the input interface 18.
The print instruction commands also include information specifying where the image data starts in the print data, and information specifying the format of the image data. Examples of image data formats are Printer Command Language (PCL), PostScript (PS; PostScript is a registered trademark of Adobe inc.), Portable Document Format (PDF), Joint Photographic Experts Group (JPEG), and raw. As shown in
In the PJL reception process shown in
In the PJL reception process shown in
After completing the PJL reception process, in S106 of the respective processes shown in
The embodiment described above obtains the following effects.
When the printer 10 receives a PJL file through a specific communication protocol, the printer 10 does not execute processes according to the PJL commands in the received file when one of the PJL commands is a restricted command whereas the printer 10 executes the processes according to the PJL commands when none of the PJL commands is a restricted command. Here, the commands other than the restricted command are examples of the second type command. When the printer 10 receives a PJL file through HTTPS, the printer 10 executes the processes according to the PJL commands, regardless of whether the commands included in the received PJL file are subject to restriction. This method can improve the security of the printer 10 for executing processes according to PJL commands.
As described above, HTTPS is a communication protocol that includes an authentication procedure when transmitting a PJL file to the printer 10. In other words, the administrator of the communication system 1, the administrator of the printer 10, or the user of the printer 10 (hereinafter referred to as “the administrator or the like”) can set a password for the printer 10 to prevent a malicious user from transmitting a PJL file to the printer 10 by HTTPS. Therefore, when the printer 10 receives a PJL file by HTTPS, the printer 10 executes processes according to the PJL commands included in the received file, regardless of whether the PJL commands are restricted commands. Since specific communication protocols, which are different from HTTPS, do not include an authentication procedure, it is difficult to prevent malicious users from transmitting PJL files to the printer 10 according to a specific communication protocol. When a malicious user were to transmit a restricted command to the printer 10 and the printer 10 were to execute the process according to the restricted command, the settings for the printer 10 could be modified or initialized or the printer 10 could be taken offline, though this action is not the intention of the administrator or the like.
In light of this fact, the printer 10 does not execute any processes according to the PJL commands included in the received PJL file when the printer 10 of the present embodiment receives a PJL file according to a specific communication protocol and the received PJL file includes a command subject to restriction. When none of the PJL commands included in the received PJL file are subject to restriction, the printer 10 executes the processes according to the PJL commands. On the other hand, the administrator or the like can instruct the printer 10 through PJL commands according to a specific communication protocol, as long as the PJL commands are not subject to restriction. This method not only ensures the user's convenience in being able to instruct the printer 10 with PJL files transmitted according to a specific communication protocol but also improves security for the printer 10 by preventing settings in the printer 10 from being modified or initialized or the printer 10 from being taken offline as a result of PJL files transmitted according to a specific communication protocol.
As described above, the printer 10 does not execute the process of S106 when determining that the PJL file includes a PJL command subject to restriction (S212: YES in
When the printer 10 receives a PJL file via the USB interface 31, the printer 10 executes processes according to the PJL commands included in the received PJL file regardless of whether the commands are restricted. In this case, the output device 50 outputting the PJL file to the printer 10 via the USB interface 31 is a USB device such as USB memory. When USB memory or another USB device containing a PJL file is connected to the printer 10, the printer 10 receives the PJL file via the USB interface 31. In other words, a user who can connect a USB device such as USB memory to the printer 10 must be close to the printer 10 and, consequently, only certain users can connect a USB device to the printer 10. Therefore, since it is unlikely that a malicious user can output a PJL file to the printer 10 via the USB interface 31, the printer 10 executes processes according to PJL commands included in PJL files received via the USB interface 31, regardless of whether the PJL commands are restricted.
Note that the printer 10 may also receive PJL files from a client (an output device 50) through a USB cable connected to the USB interface 31 rather than a USB device such as USB memory. Since a USB cable can only be used when the client is placed near the printer 10, a user who can connect the client to the printer 10 must be in proximity to the printer 10, just as with the USB memory. In view of this, it is unlikely that a malicious user would use a USB cable to send a PJL file. Hence, when a PJL file is received via a USB cable connected to the USB interface 31, the printer 10 executes the processes according to the PJL commands included in the received PJL files, regardless of whether the commands are restricted.
When the PJL security setting is disabled, the printer 10 executes processes according to PJL commands, regardless of whether the PJL commands are restricted. For example, in environments or other situations in which the threat of malicious users is low, the administrator or the like can intentionally configure the printer 10 to execute processes according to PJL commands, regardless of whether the commands are restricted.
While the disclosure has been described in detail with reference to specific embodiments thereof, it would be apparent to those skilled in the art that many modifications and variations may be made therein without departing from the spirit of the invention, the scope of which is defined by the attached claims. For example, the commands subject to restriction in the above embodiment are “DEFAULT,” “INITIALIZE,” “RESET,” “SET,” “RDYMSG,” “OPMSG,” and “STMSG,” but any other PJL commands may be set as restricted commands.
In the embodiment described above, certain PJL commands are set as restricted commands, and processes according to PJL commands are only executed when the PJL commands are not restricted commands. As an alternative, certain PJL commands may be set as commands whose processes are not restricted (hereinafter called “non-restricted commands”). For example, a table stored in the nonvolatile memory 36 may define non-restricted commands that are classified into the second command type. In this case, processes according to PJL commands are executed when the commands are non-restricted commands and are not executed when the commands are PJL commands other than the non-restricted commands. For example, when a PJL file includes PJL commands each matching one of the non-restricted commands, the control program 32 may execute all the PJL commands included in the PJL file, whereas when at least one of the PJL commands included in the PJL file does not match the non-restricted command, the control program 32 may prohibit execution of each PJL command included in the PJL file. There may be cases in which the PJL file includes a plurality of groups of PJL commands and each group of PJL commands can be executed independently from the remaining groups of PJL commands. In such cases, after the control program 32 may execute each group of PJL commands that is consist of the non-restricted commands but may not execute each group of PJL commands that includes at least one PJL command not matching the non-restricted command.
In the above embodiment, when the printer 10 receives a PJL command by HTTPS, the printer 10 executes the process according to the PJL command, regardless of whether the PJL command is a restricted command. However, the printer 10 may execute processes according to PJL commands, regardless of whether the PJL commands are restricted, when the printer 10 receives the PJL commands according to a special protocol (an example of the first protocol). In this case, the special protocol may be a protocol that requires an authentication of the output device 50 before the output device 50 transmits a PJL file.
In the above embodiment, when the printer 10 receives a PJL command via the USB interface 31, the printer 10 executes the process according to the PJL command, regardless of whether the PJL command is a restricted command. However, the printer 10 may execute processes according to PJL commands, regardless of whether the PJL commands are restricted, when the printer 10 receives the PJL commands via a special communication interface (an example of the second interface) other than the USB interface 31. In this case, the special communication interface may be an interface that a user must be in proximity to the printer 10 in order to connect the client (the output device) to the printer 10. That is, the special communication interface may an interface that requires a user to be in proximity of the printer 10 so that the user can touch the printer 10.
While port numbers are limited to port 443 and port 9100 in the above embodiment, various port numbers may be employed.
The processes shown in
| Number | Date | Country | Kind |
|---|---|---|---|
| 2022-155768 | Sep 2022 | JP | national |
