JP2006285326A - Content delivery control system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To register access control information to a policy server before delivery of a content to a user only by transmitting the content to a management server without access to the policy server by a content developer. <P>SOLUTION: In this content delivery control system 10, when a content with disclosure object person designation information is transmitted from a PC 12 of a developer α, a content management server 18 transmits this content to a Web server 22, and when a delivery request from a PC 16 of the user is received, the Web server 22 transmits disclosure object person designation information with a file name to the policy server 20. The policy server 20 registers the access control information transmitted from the Web server 22 in a DB42. When a file name of content and a user ID are transmitted from the Web server 22, whether this user corresponds to a disclosure object person or not is determined, and when he/she corresponds to the disclosure object person, delivery permission information is transmitted to the Web server 22. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to a content distribution control system, and in particular, only when a digital content such as an HTML file created by a content developer is distributed to a user's client terminal only for a user having a preset access authority. The present invention relates to a technique for controlling content to be distributed.

Currently, many companies are developing a large amount of Web contents (HTML files, etc.) related to product catalogs, company newsletters, press releases, etc. every day, to employees and external users via communication networks such as the Internet and Intranet. Delivered.
FIG. 8 is a schematic diagram for explaining the flow from development to distribution of Web content. A client PC 12 operated by a content developer α inside and outside the company, and a client PC 14 operated by a content approver β. A client PC 16 operated by a user γ such as an employee, a content management server 18, a policy server 20, and a Web server 22 are shown. Each server and each server and each client PC are connected to each other via a LAN, the Internet, or the like.

First, when the content developer α creates Web content, an HTML file and a related image file are transmitted from the client PC 12 to the content management server 18.
Receiving this, the content management server 18 once distributes each file to the client PC 14 of the approver β and requests a check of the contents.
When information indicating approval is transmitted from the client PC 14, the content management server 18 transmits the content file to the Web server 22.
The Web server 22 stores this content file on the hard disk.
When a distribution request is received from the user γ, the corresponding Web content is extracted and distributed to the client PC 16 of the user γ.
As a result, the user γ can browse the target content on the Web browser.

  The content management server 18 described above is a computer that implements a CMS (Contents Management System). In addition to the function of securing approval from the approver β and the function of distributing content files to the target Web server 22, each content The function of managing the version of the system, the function of supporting the collaborative work among the content developers, and the like (see Non-Patent Document 1).

By the way, if the content is intended to be widely disclosed to the public, such as product advertisement information, the above procedure is sufficient. However, content that should be carefully restricted to the public (access authorized person), such as in-house documents. In this case, it is necessary to execute so-called access control.
Specifically, the content developer α accesses the policy server 20 from the client PC 12 and registers in advance the combination information of the content and the person to be disclosed in the internal management database (see Non-Patent Document 2 for the policy server). .
Next, the Web server 22 that has received the content distribution request from the user γ transmits the authentication information of the user to the policy server 20 and inquires whether distribution is possible.
Only when the distributable information is transmitted from the policy server 20, the Web content is distributed from the Web server 22 to the client PC 16 of the user γ.
About Director of Website Promotion / CMS [March 12, 2005 search] Internet URL: http://www.ryoin-takasago.com/html/multi/work/design/cms/05.html SITEMINDER (registered trademark) [Search on March 12, 2005] Internet URL: http://www.tjsys.co.jp/products/web/sminder/

However, when the content developer α manually registers the access control information (file name + publication target designation information) in the policy server 20 as described above, the content file is distributed from the content management server 18 to the Web server 22. There is a risk that a discrepancy is likely to occur between the timing and the timing of registering access control information, and there is a risk that the content will be viewed by unauthorized users even for a short time.
In the first place, forcing the content developer α to register access control information itself has been a drag on improving work efficiency.

  The present invention has been devised in order to solve the above-mentioned problem that occurs when the type of digital content to be disclosed is controlled in accordance with the authority of the user, and registration of access control information related to each digital content is performed. Content distribution control technology that is automatically executed by transmission of a content file from a content developer's PC to a content management server, and that the above registration can be surely completed before it can be distributed to the user. It is aimed at realization.

In order to achieve the above object, the content distribution control system according to claim 1 is configured such that when a content file into which disclosure target designation information is inserted is transmitted from a terminal operated by a content developer, the content file is transmitted. Is stored in a predetermined storage unit, and disclosure target person designation information is extracted from the content file, and access control information including a combination of identification information of the content file and disclosure target person designation information is stored in the access control information storage unit. When the content file distribution request is transmitted from the storage means, the terminal operated by the user, the access control information storage means is referred to, the means for specifying the person to whom the content file is disclosed, and the transmission from the terminal Based on the identified user identification information, the user falls under the above public audience And determining accessibility determination means whether or not Luke, when the user corresponds to the public subject is characterized in that a means for distributing the content files in the terminal.
The “disclosure person designation information” includes, for example, a combination of a user's group (department) and the user's position (title) in the group. In this case, when determining whether or not the user corresponds to a disclosure target person, first, a database that defines the correspondence between each user's identification information and the group to which the user belongs and the position is referred to. After identifying the associated group and position, it is determined whether or not this matches the disclosure target person designation information (the same applies hereinafter).

  The content distribution control system according to claim 2 is the system according to claim 1, and further includes a state in which the disclosure target designation information is encrypted in the content file transmitted from the terminal operated by the content developer. And is provided with a means for decrypting the encrypted disclosure subject person designation information.

  The content distribution control system according to claim 3, when a content file and a disclosure subject designation information associated with the content file are transmitted from a terminal operated by the content developer, the disclosure subject designation information is transmitted to the content file. Means for inserting the content file in a predetermined storage means, extracting the disclosure target person designation information from the content file, and accessing the combination of the identification information of the content file and the disclosure person designation information When the content file distribution request is transmitted from the means for storing the control information in the access control information storage means and the terminal operated by the user, the access control information storage means is referred to, and the disclosure target person of the content file is determined. The identification means and the user identification information sent from the terminal And means for determining whether or not the user corresponds to the disclosure target person and means for distributing the content file to the terminal when the user corresponds to the disclosure target person. It is characterized by.

  The content distribution control system according to claim 4 is a content distribution control system including a content management server, a policy server, and a web server, and the content management server is disclosed from a terminal operated by a content developer. When a content file into which the user-specified information is inserted is transmitted, the content server is provided with means for distributing the content file to the Web server, and the Web server sends a specific content file distribution request from a terminal operated by the user. Means for extracting disclosure subject designation information from the corresponding content file, and transmitting access control information comprising a combination of the identification information of the content file and disclosure subject designation information to the policy server. , Identification information of the content file and user identification information Means for transmitting the content file to the policy server and inquiring whether or not distribution is possible, and means for distributing the content file to the terminal operated by the user when the policy server transmits information indicating that the distribution is permitted. The above policy server includes a means for registering access control information transmitted from a web server in an access control information storage means, and when content file identification information and user identification information are transmitted from the web server, Means for determining whether or not the user corresponds to the above disclosure target person based on the identification information of the user, and information that permits distribution of the content file when the user corresponds to the disclosure target person And a means for transmitting the message to a Web server.

  The content distribution control system according to claim 5 is the system according to claim 4, wherein the disclosure target person designation information is further encrypted in the content file transmitted from the terminal operated by the content developer. The Web server or the policy server includes a means for decrypting the encrypted disclosure subject designation information.

  The content distribution control system according to claim 6 is a content distribution control system including a content management server, a policy server, and a Web server, wherein the content management server is configured to transmit a content file from a terminal operated by a content developer. And a means for inserting the person to be disclosed designation information associated therewith, a means for inserting the person to be designated person for publication into a content file, and a means for delivering the content file to the web server. When a delivery request for a specific content file is transmitted from the terminal operated by the user, the Web server extracts the disclosure target person designation information from the corresponding content file, and the identification information of the content file and the disclosure person designation information Access control information consisting of a combination of When the information to permit the distribution is transmitted from the policy server, the means for transmitting the content file identification information and the user identification information to the policy server and inquiring whether the distribution is possible And a means for delivering the content file to the terminal operated by the user, wherein the policy server is configured to register the access control information transmitted from the Web server in the access control information storage means, and from the Web server. Means for determining whether or not the user falls under the above-mentioned disclosure target person based on the identification information of the user when the identification information of the content file and the identification information of the user are transmitted; And a means for transmitting to the Web server information indicating that distribution of the content file is permitted. It is set to.

In the case of the content distribution control system according to claims 1 and 3, the content developer only needs to insert or associate the publication target designation information with the content file created by the content developer, and the access control information is registered on the system side. Since it is executed automatically, it is freed from troublesome registration work of access control information.
In addition, when a content file distribution request is transmitted from the user's terminal, whether or not distribution is possible is determined by referring to the above access control information. Can be prevented.

In the case of the content distribution control system according to claims 4 and 6, the content developer only needs to insert or associate with the content file created by himself / herself and transmit the information to be disclosed, and the access control information is registered in the content management server. Since it is automatically executed by the cooperation of the Web server and policy server, it is freed from troublesome registration of access control information.
Also, when a content file distribution request is sent from the user's terminal to the Web server, the Web server inquires whether the distribution is possible or not, and the policy server refers to the above access control information for distribution. Therefore, it is possible to effectively prevent erroneous delivery to an unauthorized user.
In addition, when a content file delivery request is sent from the user's terminal to the Web server, the Web server extracts the target person specification information from the target content file and sends it to the policy server together with the identification information of the file. Because of this mechanism, it is possible to always determine whether delivery is possible based on the latest access control information.

  In the content distribution control system according to claims 2 and 5, since the disclosure target person designation information inserted into the content file is encrypted, it is not recognized by the user who acquired the content file.

  As shown in FIG. 1, a content distribution control system 10 according to the present invention includes a client PC 12 operated by an internal / external content developer α, a client PC 14 operated by a content approver β, and a user γ such as an employee. A client PC 16 to be operated, a content management server 18, a policy server 20, and a Web server 22 are provided, and each server and each server and each client PC are network-connected by a LAN, the Internet, or the like.

Each of the client PCs 12, 14, 16 is set up with an OS and a general-purpose web browser program.
In addition, the client PC 12 includes a disclosure target person designation information insertion unit 23 realized by setting up a dedicated application program.
In addition, the client PC 14 includes a disclosure target person designation information extraction unit 24 realized by setting up a dedicated application program.

The content management server 18 includes a content registration unit 30, a content storage unit 32, an approval processing unit 34, and a content distribution unit 36.
The content registration unit 30, the approval processing unit 34, and the content distribution unit 36 are realized by the CPU of the content management server 18 executing necessary processes according to the OS and application programs.
The content storage unit 32 is provided in the hard disk of the server 18.

The policy server 20 includes an organization information distribution unit 38, an access control information registration unit 40, an access control information DB 42, a distribution availability determination unit 44, and an organization information DB 46.
The organization information distribution unit 38, the access control information registration unit 40, and the distribution availability determination unit 44 are realized by the CPU of the policy server 20 executing necessary processes according to the OS and application programs.
The access control information DB 42 and the organization information DB 46 are provided in the hard disk of the server 20.
FIG. 2 shows an example of registration in the organization information DB 46, which includes data items of employee ID, department, and post.

The Web server 22 includes a content registration unit 50, a content storage unit 52, and a content distribution unit 54.
The content registration unit 50 and the content distribution unit 54 described above are realized by the CPU of the Web server 22 executing necessary processes according to the OS and application programs.
The content storage unit 52 is provided in the hard disk of the server 22.
Further, the Web server 22 includes a disclosure subject designation information extraction unit 56 realized by setting up a dedicated application program.

Next, a processing procedure in the system 10 will be described with reference to the flowcharts of FIGS.
First, the content developer α who has created Web content such as an HTML file or related image file accesses the Web site of the policy server 20 from the Web browser of the client PC 12 and requests setting of an access policy.
Upon receiving this, the organization information distribution unit 38 of the policy server 20 (S10 in FIG. 3) generates an access policy setting screen reflecting the organization information in the organization information DB 46 and transmits it to the client PC 12 (S12).
As a result, an access policy setting screen 60 is displayed on the Web browser of the client PC 12 as shown in FIG.

The content developer α sets publishing person designation information (access policy) for each Web content on the access policy setting screen 60.
First, when the content developer α clicks the file selection button 61, a content selection screen is displayed on the display of the client PC 12 (not shown).
When the content developer α selects Web content stored in a predetermined directory in the client PC 12 through this selection screen, the file name of the Web content is displayed in the file name display field 62 of the screen 60.

  Next, the content developer α clicks a necessary radio button in the disclosure target department setting field 63 to select a disclosure target department. For example, in the case of Web contents that should be disclosed only to the A department of the company, the radio button of the A department is checked. On the other hand, in the case of content to be disclosed to each department other than department C, the radio buttons of the departments A, B, and D are checked. In the case of content that should be disclosed to all departments, check the radio buttons of all departments.

Next, the content developer α clicks the ▼ button 65 in the disclosure subject post setting column 64, and selects a range of titles to be published from the pull-down menu 66 that is expanded.
For example, in the case of Web contents that should be disclosed to all employees, including part-time workers and part-time employees, “all employees” is selected. On the other hand, in the case of important Web content that should be disclosed only to executives, select “over executives”.

When the content developer α who has completed the above settings clicks the setting registration button 67, a file name, a disclosure target department, a disclosure target post, and a registration date and time are displayed in a list in the registration scheduled content column 68.
After confirming the setting contents in this list, when the content developer α clicks the immediate registration button 69, the disclosure target person designation information insertion unit 23 is activated, and the disclosure target person designation information (the disclosure target department and the disclosure target position) is displayed. It is encrypted according to a predetermined algorithm and embedded in the Web content. At this time, the encrypted information is described in a so-called invisible field in which the type attribute of the <input> tag in the HTML file is set to “hidden”.

Next, the Web content is transmitted from the client PC 12 to the content management server 18.
The content registration unit 30 of the content management server 18 that has received the above-mentioned Web content from the client PC 12 of the content developer α (S14), associates it with the content developer α and date / time information and stores it in the content storage unit 32 (S16). ).

Next, when an unapproved content distribution request is transmitted from the client PC 14 of the approver β to the content management server 18, the approval processing unit 34 that has received the request is stored in the content storage unit 32 (S18). New Web content is extracted and transmitted to the client PC 14 (S22).
Upon receipt of this, the disclosure target person specifying information extracting unit 24 of the client PC 14 decrypts the disclosure target person specifying information embedded in each Web content according to a predetermined algorithm, and decrypts the Web content file name and the disclosed disclosure target person. Generate an approval form that displays a list of combinations with specified information.

As a result, as shown in FIG. 6, the approval form 70 is displayed on the Web browser of the client PC 14.
On the other hand, when the approver β clicks a specific file name to request display of Web content, the target Web content is displayed on the Web browser of the client PC 14 (not shown).
The approver β compares the contents of the Web content with the above disclosure target person designation information (the disclosure target department and the disclosure target position), and clicks the approval button 71 in the form 70 if there is no problem.
As a result, the approval information is transmitted from the client PC 14 to the content management server 18.
Upon receiving this approval information, the approval processing unit 34 (S28) adds an approved flag to the corresponding Web content stored in the content storage unit 32 (S30).

Next, the content distribution unit 36 is activated and transmits the Web content to the Web server 22 (S32).
Receiving this, the content registration unit 50 of the Web server 22 stores it in the content storage unit 52 (S34).

Next, when the user γ accesses the Web server 22 from the client PC 16 and requests distribution of Web content, in the Web server 22 that has received the request (S36), the disclosure target person designation information extraction unit 56 performs the content distribution unit 54. The target Web content is received from the Web content, and the disclosure target person designation information encrypted from the Web content is extracted and decrypted according to a predetermined algorithm (S38), and then the policy server 20 together with the file name of the Web content. (S40).
Receiving this, the access control information registration unit 40 of the policy server 20 stores the access control information composed of the file name + publication person designation information in the access control information DB 42 (S42). FIG. 7 shows a registration example of the access control information DB42.

Next, the content distribution unit 54 transmits the combination of the authentication information (employee ID, etc.) transmitted from the client PC 16 and the file name of the Web content to the policy server 20 (S44), and inquires whether distribution is possible.
In response to this, the distribution availability determination unit 44 of the policy server 20 refers to the access control information DB 42 and acquires disclosure target designation information (publication target department + publication title) associated with the Web content (S46). On the other hand, with reference to the organization information DB 46, the department and post associated with the authentication information are acquired (S48).

  Next, the distribution availability determination unit 44 determines whether or not the public person designation information of the Web content matches the department to which the user belongs and the position (S50). A message “Distributable” is transmitted (S52).

The content distribution unit 54 of the Web server 22 that has received the “distributable” message from the policy server 20 distributes the target Web content to the client PC 16 of the user γ (S54).
As a result, although not shown, the web content is displayed on the web browser of the user γ.
At this time, since the above disclosure target designation information is described in the invisible area of the Web content, the user does not directly recognize it.
In addition, since the disclosure target designation information itself is encrypted, even if the source of the Web content is displayed, the content cannot be understood by the user.

In S50 described above, if it is determined that the Web content disclosure target designation information does not match the user's department and job title, a message “Distributable” is sent from the distribution determination unit 44 to the Web server 22. It is transmitted (S56).
In this case, the content distribution unit 54 of the Web server 22 transmits a “distribution impossible” message to the client PC 16 (S58), and rejects the distribution of the Web content.

  As described above, immediately before distributing the Web content to the client PC 16 of the user γ, the disclosure target person designation information and the file name embedded in the Web content are transmitted from the Web server 22 to the policy server 20, and based on this By configuring the distribution availability determination unit 44 to determine whether distribution is possible, it is possible to always control the distribution availability based on the latest access control information.

In the above, the example in which the encrypted disclosure subject designation information is embedded in the Web content by the disclosure subject designation information insertion unit 23 provided on the client PC 12 side of the content developer α has been described. The present invention is not limited to this.
For example, by setting up a dedicated application program in the content management server 18, the disclosure target person designation sent together with the Web content from the client PC 12 via the publication person designation information insertion unit provided on the content management server 18 side. Information may be configured to be embedded in Web content.

Further, in the above case, the disclosure subject person designation information extraction unit 24 provided on the client PC 14 side of the approver β extracts and decrypts the encrypted disclosure subject person designation information embedded in the Web content. Although an example has been described, the present invention is not limited to this.
For example, by setting up a dedicated application program in the content management server 18, the encrypted disclosure target person embedded in the Web content via the disclosure target designation information extraction unit provided on the content management server 18 side You may comprise so that designation | designated information may be taken out and decoded.
It should be noted that obtaining approval by the approver β prior to the distribution of the Web content is not an essential condition, and it is naturally possible to omit the steps related to this (S18 to S30 above).

In addition, in the above, after the encrypted disclosure target person designation information embedded in the Web content is extracted and decrypted by the disclosure person designation information extraction unit 56 provided on the Web server 22 side, the policy server Although the example of transmitting to 20 has been described, the present invention is not limited to this.
For example, by setting up a dedicated application program in the policy server 20, the encrypted disclosure subject designation information embedded in the Web content via the disclosure subject designation information extraction unit provided on the policy server 20 side May be extracted and decoded.

In the above description, the example in which the disclosure target person designation information is defined by the department to which the user γ belongs and the post has been described. However, the present invention is not limited to this.
For example, by specifying the disclosure target person designation information with each user's identification code (employee ID, etc.), it is also possible to finely set whether or not to distribute Web content for each individual user. .

In the above description, an example in which the system 10 is configured by cooperation of the content management server 18, the policy server 20, and the Web server 22 has been described. However, the present invention is limited to such a hardware configuration. is not.
For example, it is possible to have a single server computer take charge of all the functions that each of the above-described servers has.

It is a block diagram which shows the function structure of the content delivery control system which concerns on this invention. It is explanatory drawing which shows the example of registration of organization information DB. It is a flowchart which shows the process sequence in this content delivery control system. It is a flowchart which shows the process sequence in this content delivery control system. It is a layout figure which shows the structural example of an access policy setting screen. It is a layout figure which shows the structural example of the form for approval. It is explanatory drawing which shows the example of registration of access control information DB. It is a schematic diagram for demonstrating the general flow from development of Web content to distribution.

Explanation of symbols

10 Content distribution control system
12 Client PC of content developer α
14 Client PC of Approver β
16 Client PC of user γ
18 Content management server
20 Policy server
22 Web server
23 Disclosure person specified information insertion part
24 Target person extraction information extraction part
30 Content Registration Department
32 Content storage
34 Approval processing department
36 Content Distribution Department
38 Organization Information Distribution Department
40 Access control information registration section
44 Delivery decision section
50 Content Registration Department
52 Content storage
54 Content Distribution Department
56 Target information extraction part
60 Access policy setting screen
61 File selection button
62 File name display field
63 Public department setting field
64 Public job title setting field
65 ▼ button
66 pull-down menu
67 Setting registration button
68 Content to be registered
69 Instant registration button
70 Approval form
71 Approve button α Content developer β Approver γ User

Claims (6)

Means for storing the content file in a predetermined storage means when a content file into which the publication target designation information is inserted is transmitted from a terminal operated by the content developer;
Means for extracting publishing person designation information from the content file, and storing access control information comprising a combination of identification information of the content file and publishing person designation information in the access control information storage means;
Means for identifying a person to be published of the content file by referring to the access control information storage means when a content file distribution request is transmitted from a terminal operated by the user;
Means for determining whether or not the user corresponds to the person to be disclosed based on the identification information of the user transmitted from the terminal;
A means for delivering the content file to the terminal when the user is a public person;
A content distribution control system comprising: In the content file sent from the terminal operated by the content developer, the publishing person designation information is inserted in an encrypted state,
2. The content distribution control system according to claim 1, further comprising means for decrypting the encrypted public person designation information. Means for inserting the publication subject designation information into the content file when the content file and the publication subject designation information associated with the content file are transmitted from the terminal operated by the content developer;
Means for storing the content file in a predetermined storage means;
Means for extracting publishing person designation information from the content file, and storing access control information comprising a combination of identification information of the content file and publishing person designation information in the access control information storage means;
Means for identifying a person to be published of the content file by referring to the access control information storage means when a content file distribution request is transmitted from a terminal operated by the user;
Means for determining whether or not the user corresponds to the person to be disclosed based on the identification information of the user transmitted from the terminal;
A means for delivering the content file to the terminal when the user is a public person;
A content distribution control system comprising: A content delivery control system comprising a content management server, a policy server, and a web server,
The content management server includes means for distributing the content file to the web server when the content file into which the disclosure target person designation information is inserted is transmitted from a terminal operated by the content developer.
When the above-mentioned Web server receives a distribution request for a specific content file from a terminal operated by the user, the Web server extracts the disclosure target person designation information from the corresponding content file, and the identification information of the content file and the disclosure target person Means for transmitting access control information comprising a combination of designated information to the policy server;
Means for transmitting the identification information of the content file and the identification information of the user to the policy server, and inquiring whether or not distribution is possible;
Means for distributing the content file to the terminal operated by the user when information indicating that distribution is permitted is transmitted from the policy server;
The policy server includes means for registering the access control information transmitted from the web server in the access control information storage means;
Means for determining whether or not the user corresponds to the above disclosure target based on the identification information of the user when the identification information of the content file and the identification information of the user are transmitted from the web server;
A content distribution control system comprising: means for transmitting, to a Web server, information indicating that distribution of the content file is permitted when the user corresponds to a disclosure target person. In the content file sent from the terminal operated by the content developer, the publishing person designation information is inserted in an encrypted state,
4. The content distribution control system according to claim 3, wherein the Web server or the policy server is provided with means for decrypting the encrypted public person designation information. A content delivery control system comprising a content management server, a policy server, and a web server,
The content management server, when a content file and a publication target designation information associated with the content file are transmitted from a terminal operated by the content developer, means for inserting the publication target designation information into the content file;
Means for delivering the content file to the web server,
When the above-mentioned Web server receives a distribution request for a specific content file from a terminal operated by the user, the Web server extracts the disclosure target person designation information from the corresponding content file, and the identification information of the content file and the disclosure target person Means for transmitting access control information comprising a combination of designated information to the policy server;
Means for transmitting the identification information of the content file and the identification information of the user to the policy server, and inquiring whether or not distribution is possible;
Means for distributing the content file to the terminal operated by the user when information indicating that distribution is permitted is transmitted from the policy server;
The policy server includes means for registering the access control information transmitted from the web server in the access control information storage means;
Means for determining whether or not the user corresponds to the above disclosure target based on the identification information of the user when the identification information of the content file and the identification information of the user are transmitted from the web server;
A content distribution control system comprising: means for transmitting, to a Web server, information indicating that distribution of the content file is permitted when the user corresponds to a disclosure target person.

Images