JP2007065362A - Information communication device and information communication method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an information communication device and an information communication method capable of preventing peep, falsification, or leakage of input information transmitted from a user terminal device. <P>SOLUTION: A communication means 110b of a Web server 100 encrypts Web page information corresponding to information identification information contained in an information transmission request signal transmitted from a communication means 311a of the user terminal device 310 by using a common key for information communication, and transmits the encryption information to the communication means 311a. The communication means 311a decrypts the received encryption information by using the common key for information communication, and displays the decryption information on a display device 312. Also, the communication means 311a encrypts the input information input from an input device 313 by using the common key for information communication, and transmits the encryption information to the communication means 110b. The communication means 110b decrypts the received encryption information by using the common key for information communication. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to information communication technology, and more particularly to technology for communicating input information input by a user in response to information received from a Web server.

In recent years, with the widespread use of the Internet, input information such as user member information and questionnaire information is communicated between user terminal devices and Web servers.
In general, as shown in FIG. 8, a user terminal device and a Web server that does not have an encryption function are used as the information communication device. In the information communication apparatus shown in FIG. 8, in response to the information transmission request signal from the user terminal apparatus, the Web server stores the Web page information corresponding to the Web page address included in the information transmission request signal in the storage device. It is read from the Web page information database and transmitted to the user terminal device. Here, when the member information input screen or the questionnaire information input screen is displayed on the display device of the user terminal device by the Web page information, the user inputs input information such as member information and questionnaire response information. Thereafter, the input information that has been input is transmitted from the user terminal device to the Web server and stored in the storage device of the Web server. In this case, since the Web server does not have an encryption function, there is a possibility that a third party may view it or tamper with it while the input information is transmitted from the user terminal device to the Web server.
Thus, an information communication apparatus using a Web server having an SSL (Secure Socket Layer) function, which is one method of an encryption function, has been proposed as a Web server.
In this information communication device, when Web page information is transmitted from the Web server to the user terminal device, the SSL communication means of the Web server transmits the Web page information after encrypting it using an encryption key. The SSL communication means of the device decrypts the received encrypted information using the decryption key. On the other hand, when the input information input by the user is transmitted from the user terminal device to the Wsb server, the SSL communication means of the user terminal device encrypts the input information using the encryption key and transmits it to the Web server. The SSL communication means of the Web server decrypts the received encrypted information using the decryption key, and stores the decrypted information in the storage device. (See Non-Patent Document 1)
"Nikkei NETWORK" (Nikkei BP, 2005, August issue, p90-p105)

In a conventional information communication device, input information is encrypted and transmitted from the user terminal device to the Web server. For this reason, there is no possibility that the input information is intercepted or falsified while being transmitted from the user terminal device to the Web server.
However, the input information is stored in an unencrypted state in the storage device of the Web server. For this reason, there is a possibility that input information may be falsified or leaked due to unauthorized access to the storage device of the Web server.
The present invention was devised in view of the above points, and provides an information communication technology that can reliably prevent the stealing, falsification, and leakage of input information input by a user terminal device. With the goal.

A first aspect of the present invention is an information communication device as set forth in claim 1.
The present invention includes a user terminal device, an information management device, and an information provider terminal device.
The user terminal device includes user side communication means, input means, display means, and user side storage means. The information management apparatus includes information management side communication means, encryption means, mail transmission means, and information management side storage means. The information provider terminal device has mail receiving means, decryption means, and information provider side storage means.
As the user terminal device or the information provider terminal device, a personal computer, a portable terminal device, or the like is typically used. Moreover, as an information management apparatus, a Web server is typically used. As the input means, a touch key, a touch sensor, or the like is used.
The user-side storage means stores an information communication encryption key and an information communication decryption key.
The information management side storage means stores an information communication encryption key and an information communication decryption key, and information transmitted to the user terminal device, an e-mail address, and an e-mail encryption key are information identifications indicating the information. Stored in correspondence with the information.
The encryption key for information communication and the decryption key for information communication are keys for encrypting or decrypting information transmitted from the information management device to the user terminal device and input information transmitted from the user terminal device to the information management device. Yes, the encrypted information encrypted with the information communication encryption key cannot be decrypted without using the information communication decryption key. From the viewpoint of shortening the processing time, it is preferable to use a common key for information communication as the encryption key for information communication and the decryption key for information communication. The encrypted information encrypted with the information communication common key can be decrypted using the information communication common key.
As the information communication encryption key and information communication decryption key (or information communication common key) stored in the user side storage means or the information management side storage means, a predetermined key may be used, You may use what the user side communication means and the information management side communication means determined jointly. The information communication encryption key and the information communication decryption key (or information communication common key) may be determined in common for a plurality of user terminal devices, or may be used for each user terminal device. You may use what was determined.
As information to be transmitted to the user terminal device, for example, Web page information is used, and as information identification information, for example, a Web page address where the Web page information is formed is used.
The information provider storage means stores a mail address and a mail decryption key.
For the mail stored in the information provider storage means in which the mail encryption key stored in correspondence with the information identification information and the mail address corresponding to the information identification information are stored in the information management side storage means The decryption key corresponds. That is, the mail encryption information encrypted using the mail encryption key can be decrypted only using the mail decryption key.
When the information identification information is input by the input unit, the user side communication unit transmits an information transmission request signal including the input information identification information.
When the information management side communication means receives an information transmission request signal including information identification information indicating information stored in the information management side storage means, the information management side communication means corresponds to the information identification information included in the received information transmission request signal. Information is read from the information management side storage means. Then, the read information is encrypted using the information communication encryption key stored in the information management side storage means to obtain the encrypted information, and the received encrypted information is transmitted to the received information transmission request signal To the user-side communication means.
When the user side communication means receives the encrypted information transmitted from the information management side communication means, the user side communication means decrypts the received encrypted information using the information communication decryption key stored in the user side storage means. To obtain decryption information (information). And the acquired decoding information is displayed on a display means.
Here, when the decrypted information is screen information for inputting member information and questionnaire response information, the user inputs the member information and questionnaire response information using the input means. The user side communication means encrypts the input information input using the input means using the information communication encryption key stored in the user side storage means, and obtains encrypted information. Then, the acquired encrypted information is transmitted to the information management side communication means.
When the information management side communication means receives the encrypted information transmitted from the user side communication means, the information management side communication means decrypts the received encrypted information using the information communication decryption key stored in the information management side storage means. To obtain decryption information (input information).
The encryption unit stores the input information acquired by the information management side communication unit as it is (without storing it in the storage unit) and is stored in the information management side storage unit, from the information management side communication unit to the user side communication unit Encrypted by using the mail encryption key corresponding to the information transmitted to the e-mail, to obtain the encrypted information for mail.
The encryption means may use the mail encryption key read directly from the information management side storage means by the encryption means, or other means, for example, the mail encryption key read from the information management side storage means by the management means. A key may be used.
Further, the mail transmission means reads the mail address corresponding to the information transmitted from the information management side communication means to the user side communication means (that is, corresponding to the information identification information indicating the information) from the information management side storage means, The mail containing the encryption information for mail acquired by the converting means is transmitted to the read mail address.
The mail transmission means may send the mail to the mail address directly read from the information management side storage means by the mail transmission means, or send the mail to the mail address read by other means, for example, the management means May be.
In the configuration of “decrypted information (input information) as it is (without storing it in the storage means) and encrypted using a mail encryption key and transmitted by mail”, the process of encrypting the decrypted information In addition, the process of temporarily storing the decryption information in the storage means in order to execute the process of transmitting by mail is not included.
The mail receiving means receives mail addressed to a mail address that matches the mail address stored in the information provider side storage means.
The decrypting means decrypts the mail encryption information included in the mail received by the mail receiving means, using the mail decryption key stored in the information provider storage means.
The mail decryption information (input information) acquired by the decryption means is stored in the information provider storage means.
In the present invention, the input information is transmitted from the user terminal device to the information management device in an encrypted state. Thereby, there is no possibility that the input information is seen or falsified while being transmitted from the user terminal device to the information management device.
Further, the information management device transmits the input information received from the user terminal device as it is (without storing it in the storage means) to the information provider terminal device in the form of mail. This prevents leakage due to unauthorized access when it is stored in the storage means of the information management apparatus.
Further, the input information received by the information management apparatus is encrypted and transmitted by mail. Thereby, there is no possibility that the input information is stolen or tampered with while being transmitted from the information management device to the information provider terminal device.
Therefore, it is possible to reliably protect the input information communicated by the information communication device.

A second invention of the present invention is an information communication apparatus as described in claim 2.
The present invention includes a user terminal device, an information management device, and an information provider terminal device.
The user terminal device has user side communication means, input means, and display means. The information management apparatus includes information communication side communication means, encryption means, mail transmission means, and information management side storage means. The information provider terminal device has mail receiving means, decryption means, and information provider side storage means.
In the information management side storage means, information to be transmitted to the user terminal device, a mail address and a mail encryption key are stored in correspondence with information identification information indicating the information. The information provider storage means stores a mail address and a mail decryption key.
The information management device storage means of the information management device stores the mail encryption key stored in correspondence with the information identification information and the information provider storage means in which the mail address corresponding to the information identification information is stored. The corresponding decryption key for mail is compatible.
When the information identification information is input by the input unit, the user side communication unit transmits an information transmission request signal including the input information identification information. When the information management side communication means receives the information transmission request signal including the information identification information indicating the information stored in the information management side storage means, the information management side communication means determines the key to the user side communication means that transmitted the received information transmission request signal. A processing request signal is transmitted. Thereby, the user side communication means and the information management side communication means jointly determine the information communication encryption key and the information communication decryption key.
The statement that “the user side communication means and the information management side communication means jointly determine the encryption key for information communication and the decryption key for information communication” is a discussion between the user side communication means and the information management side communication means. And a mode in which one is determined and notified to the other.
As the key determination processing request signal, for example, an encryption method list transmission request signal for requesting transmission of a list of encryption methods that can be used by the user terminal device is used. Various methods can be used as a method in which the user side communication means and the information management side communication means jointly determine the information communication encryption key and the information communication decryption key. For example, a method for determining an encryption key and a decryption key for SSL communication can be used. As the information communication encryption key and the information communication decryption key, it is preferable to use a common key for information communication from the viewpoint of shortening the processing time.
After determining the information communication encryption key and the information communication decryption key, the information management side communication means determines the information corresponding to the information identification information included in the received information transmission request signal as the determined information communication encryption key. Encrypt using to get the encrypted information. Then, the acquired encrypted information is transmitted to the user side communication means that transmitted the received information transmission request signal.
When the user side communication means receives the encrypted information transmitted from the information management side communication means, the user side communication means decrypts the received encrypted information using the previously determined information communication decryption key, and decrypts the decrypted information (information Information corresponding to the identification information) is acquired. And the acquired decoding information is displayed on a display means.
Here, when the user inputs member information and questionnaire response information using the input means, the user side communication means encrypts the input information entered using the previously determined information communication encryption key. Get the encryption information. Then, the acquired encrypted information is transmitted to the information management side communication means.
When the information management side communication means receives the encrypted information transmitted from the user side communication means, the information management side communication means decrypts the received encrypted information using the previously determined information communication decryption key, and decrypts the decrypted information (input). Information).
The encryption means corresponds to the information sent by the information management side communication means to the user side communication means as it is (without storing in the storage means) the decryption information (input information) acquired by the information management side communication means. Encrypt using the email encryption key to obtain email encryption information.
The mail transmission means corresponds to the information transmitted by the information management side communication means to the user side communication means, including the mail encryption information acquired by the encryption means (that is, information identification information indicating information). Send to an email address (corresponding to).
The mail receiving means receives mail addressed to a mail address that matches the mail address stored in the information provider side storage means.
The decrypting means decrypts the mail encryption information included in the mail received by the mail receiving means using the mail decryption key stored in the information provider side storage means, and decrypts the mail decryption information. Get (input information).
The mail decryption information (input information) acquired by the decryption means is stored in the information provider storage means.
The present invention has the same effect as the first invention.
Moreover, in this invention, whenever the information management apparatus receives the information transmission request signal containing the information identification information which shows the information managed by the information management apparatus, the user terminal device which transmitted the received information transmission request signal The communication key for information communication and the decryption key for information communication (or the common key for information communication) are determined. Thereby, the input information communicated by the information communication apparatus can be protected more reliably.

The third invention is an information communication apparatus as set forth in claim 3.
In the present invention, the information management side communication means and the user side communication means determine the information communication common key as the information communication encryption key and the information communication decryption key.
In the present invention, since the information communication common key is used as the information communication encryption key and the information communication decryption key, the processing load for encryption and decryption is reduced. Thereby, processing time can be shortened.

A fourth invention is an information communication apparatus as set forth in claim 4.
In the present invention, the information management side storage means stores an encryption key for key determination processing and a decryption key for key determination processing. Upon receiving the information transmission request signal, the information management side communication means transmits the received information transmission request signal with the key determination processing request signal and the key determination processing encryption key stored in the information management side storage means. To the user-side communication means.
Upon receiving the key determination processing request signal and the key determination processing encryption key transmitted from the information management side communication unit, the user side communication unit determines the information communication common key. Then, the determined information communication common key is encrypted using the received key determination processing encryption key to obtain the common key encryption information, and the acquired common key encryption information is transmitted to the information management side communication means. Send.
Upon receiving the common key encryption information transmitted from the user side communication means, the information management side communication means reads the key determination processing decryption key from the information management side storage means, and receives the received common key encryption information. The information communication common key (common key) is obtained by decrypting using the read key determination processing decryption key.
In the present invention, the information communication common key is transmitted and received using the key determination encryption key and the key determination decryption key. Thereby, input information can be protected more reliably.

A fifth aspect of the present invention is an information communication apparatus as set forth in the fifth aspect.
The present invention includes a user terminal device, a first information management device, a second information management device, and an information provider terminal device.
The user terminal device includes user side communication means, input means, display means, and user side storage means. The first information management device includes first information management side communication means and first information management side storage means. The second information management device includes second information management side communication means, encryption means, mail transmission means, and second information management side storage means. The information provider terminal device has mail receiving means, decryption means, and information provider side storage means. As the first information management side communication means, a communication means having no encryption function is used, and as the second information management side communication means, a communication means having an encryption function is used. As the use side communication means, a communication means that does not have an encryption function and a communication means that has an encryption function may be used, or a single communication means that has both functions may be used.
As the user terminal device or the information provider terminal device, a personal computer, a portable terminal device, or the like is typically used. In addition, typically, a Web server is used as the first information management device or the second information management device.
The user-side storage means stores an information communication encryption key and an information communication decryption key.
In the first information management side storage means, information to be transmitted to the user terminal device is stored in correspondence with information identification information indicating the information.
The information communication encryption key and the information communication decryption key are stored in the second information storage means, and information to be transmitted to the user terminal device, an e-mail address, and an e-mail encryption key are information indicating the information. It is stored corresponding to the identification information.
The information communication encryption key and the information communication decryption key encrypt or decrypt information transmitted from the second information management apparatus to the user terminal apparatus and input information transmitted from the user terminal apparatus to the second information management apparatus. It is the key to make it. From the viewpoint of shortening the processing time, it is preferable to use a common key for information communication as the encryption key for information communication and the decryption key for information communication.
As the information communication encryption key and the information communication decryption key (or information communication common key) stored in the user side storage means or the first information management side storage means, a predetermined key may be used. It is also possible to use the one determined jointly by the user side communication means and the information management side communication means. The information communication encryption key and the information communication decryption key (or information communication common key) may be determined in common for a plurality of user terminal devices, or may be used for each user terminal device. You may use what was determined.
As information to be transmitted to the user terminal device, for example, Web page information is used, and as information identification information, for example, a Web page address where the Web page information is formed is used.
The information provider storage means stores a mail address and a mail decryption key.
At least one of the information stored in the first information management side storage means includes information identification information indicating the information stored in the second information management side storage means. As a method of “including information identification information indicating the second information”, for example, a method of inserting link information including a Web page address into Web page information is used.
The information provider storage means stores a mail address and a mail decryption key.
As the mail encryption key and the mail decryption key, the same ones as in the first invention can be used.
When the information identification information is input by the input unit, the user side communication unit transmits an information transmission request signal including the input information identification information.
When the first information management side communication means receives the information transmission request signal including the information identification information corresponding to the information stored in the first information management side storage means, the information contained in the information transmission request signal Information corresponding to the identification information is transmitted to the user terminal device that transmitted the received information transmission request signal. In this case, the information is not encrypted.
When the user side communication means receives the information transmitted from the first information management side communication means, the user side communication means displays the received information on the display means.
Here, the information identification displayed on the display means by the input means in a state where the information identification information indicating the information stored in the second information management apparatus is inserted in the display means of the user terminal device When information is input, the user side communication means transmits an information transmission request signal including the input information identification information.
When the second information management side communication means receives the information transmission request signal including the information identification information indicating the information stored in the second information management side storage means, the second information management side communication means is included in the received information transmission request signal. The information corresponding to the information identification information is encrypted by using the information communication encryption key stored in the second information management side storage means to obtain the encrypted information. Then, the acquired encrypted information is transmitted to the user side communication means that transmitted the received information transmission request signal.
When the user side communication means receives the encrypted information transmitted from the second information management side communication means, the user side communication means uses the received encrypted information using the information communication decryption key stored in the user side storage means. To obtain decrypted information (information corresponding to the information identification information). And the acquired decoding information is displayed on a display means.
Here, when the user inputs member information and questionnaire response information using the input means, the user-side communication means uses the input communication information stored in the user-side storage means for information communication encryption. Encrypt using the key to obtain the encrypted information. Then, the acquired encrypted information is transmitted to the second information management communication means.
When the second information management side communication unit receives the encrypted information transmitted from the user side communication unit, the second information management side communication unit decrypts the received encrypted information stored in the second information management side storage unit. Decryption is performed using the key, and decryption information (input information) is obtained.
The encryption means uses the decryption information (input information) acquired by the second information management side communication means as it is (without storing it in the storage means), and the second information management side communication means performs the user side communication means. Is encrypted using a mail encryption key corresponding to the information transmitted to (i.e., corresponding to the information identification information indicating the information) to obtain mail encryption information.
The mail transmission means transmits the mail including the encrypted information for mail acquired by the encryption means to the mail address corresponding to the information transmitted from the second information management side communication means to the user side communication means.
The mail receiving means receives mail addressed to a mail address that matches the mail address stored in the information provider side storage means.
The decrypting means decrypts the mail encryption information included in the mail received by the mail receiving means using the mail decryption key stored in the information provider side storage means, and decrypts the mail decryption information. Get (input information).
The mail decryption information (input information) acquired by the decryption means is stored in the information provider storage means.
In the present invention, even when the first information management device does not have the encryption function, the input information by the user is stored in the second information management side storage means of the second information management device having the encryption function. Information identifying the information that needs to be input and indicating the information stored in the second information management side storage means in the information stored in the first information management side storage means of the first information management device By storing information (by inserting link information), a communication device that protects input information can be configured. As a result, an information communication device that does not have an encryption function can be easily changed to an information communication device that can reliably protect input information.

A sixth aspect of the present invention is an information communication device as set forth in the sixth aspect.
The present invention includes a user terminal device, a first information management device, a second information management device, and an information provider terminal device.
The user terminal device has user side communication means, input means, and display means. The first information management device includes first information management side communication means and first information management side storage means. The second information management device includes second information management side communication means, encryption means, mail transmission means, and second information management side storage means. The information provider terminal device has mail receiving means, decryption means, and information provider side storage means.
In the first information management side storage means, information to be transmitted to the user terminal device is stored in correspondence with information identification information indicating the information. The second information management side storage means stores information to be transmitted to the user terminal device, a mail address, and a mail encryption key corresponding to the information identification information indicating the information. At least one of the information stored in the first information management side storage means includes information identification information indicating the information stored in the second information management side storage means.
The information provider storage means stores a mail address and a mail decryption key.
When the information identification information is input by the input unit, the user side communication unit transmits an information transmission request signal including the input information identification information.
When the first information management side communication means receives the information transmission request signal including the information identification information indicating the information stored in the first information management side storage means, the information identification included in the information transmission request signal Information corresponding to the information is transmitted to the user terminal device that transmitted the received information transmission request signal.
When receiving the information transmitted from the first information management communication means, the user terminal device displays the received information on the display means.
Here, in the state where the information identification information indicating the information stored in the second information management side storage unit is displayed on the display unit of the user terminal device, the information is displayed on the display unit by the input unit. When the information identification information is input, the user-side communication means transmits an information transmission request signal including the input information identification information.
When the second information management side communication means receives the information transmission request signal including the information identification information indicating the information stored in the second information management side storage means, the user who has transmitted the received information transmission request signal A key determination processing request signal is transmitted to the side communication means. Thereby, the user side communication means and the second information management side communication means jointly determine the information communication encryption key and the information communication decryption key.
After determining the encryption key for information communication and the decryption key for information communication, the second information management side communication means determines the information corresponding to the information identification information included in the received information transmission request signal to the determined information communication Encryption information is obtained by encrypting using the encryption key. Then, the acquired encrypted information is transmitted to the user side communication means that transmitted the received information transmission request signal.
When the user-side communication means receives the encrypted information transmitted from the second information management-side communication means, the user-side communication means decrypts the received encrypted information using the previously determined information communication decryption key and decrypts it. Information (information corresponding to information identification information) is acquired. And the acquired decoding information is displayed on a display means.
Here, when the user inputs member information and questionnaire response information using the input means, the user side communication means encrypts the input information entered using the previously determined information communication encryption key. Get the encryption information. Then, the acquired encrypted information is transmitted to the second information management communication means.
When the second information management side communication means receives the encrypted information transmitted from the user side communication means, the second information management side communication means decrypts the received encrypted information using the previously determined information communication decryption key, and decrypts it. Get information (input information).
The encryption means uses the decryption information (input information) acquired by the second information management side communication means as it is (without storing it in the storage means), and the second information management side communication means performs the user side communication means. Encrypted using the mail encryption key corresponding to the information sent to, and obtain mail encryption information.
The mail transmission means transmits the mail including the encrypted information for mail acquired by the encryption means to the mail address corresponding to the information transmitted from the second information management side communication means to the user side communication means.
The mail receiving means receives mail addressed to a mail address that matches the mail address stored in the information provider side storage means.
The decrypting means decrypts the mail encryption information included in the mail received by the mail receiving means using the mail decryption key stored in the information provider side storage means, and decrypts the mail decryption information. Get (input information).
The mail decryption information (input information) acquired by the decryption means is stored in the information provider storage means.
The present invention has the same effect as the fifth invention.
Moreover, in this invention, whenever the information management apparatus receives the information transmission request signal containing the information identification information which shows the information managed by the information management apparatus, the user terminal device which transmitted the received information transmission request signal The communication key for information communication and the decryption key for information communication (or the common key for information communication) are determined. Thereby, the input information communicated by the information communication apparatus can be protected more reliably.

A seventh aspect of the present invention is an information communication method as set forth in claim 7.
The present invention includes a user terminal device, an information management device, and an information provider terminal device, and performs communication according to the following steps.
When information identification information is input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted from the user terminal device.
When the information management apparatus receives an information transmission request signal including information identification information indicating information managed by the information management apparatus, information corresponding to the information identification information included in the received information transmission request signal is Encryption is acquired by using the encryption key for information communication stored in the information management apparatus, and the acquired encrypted information is transmitted to the user terminal apparatus that has transmitted the received information transmission request signal.
When the encrypted information transmitted from the information management device is received by the user terminal device, the received encrypted information is decrypted using the decryption key for information communication stored in the user terminal device, and decrypted information ( Information corresponding to the information identification information) is acquired, and the acquired decryption information (information) is displayed on the display means of the user terminal device.
When input information is input by the input means of the user terminal device in a state where the information is displayed on the display means of the user terminal device, the input information is stored in the user terminal device. The encrypted information is obtained by encryption using the communication encryption key, and the obtained encrypted information is transmitted to the information management apparatus.
When the encrypted information transmitted from the user terminal device is received by the information management device, the received encrypted information is decrypted using the decryption key for information communication stored in the information management device, and the decrypted information (input) Information).
The acquired input information is encrypted using the mail encryption key corresponding to the information transmitted from the information management apparatus to the user terminal device, and the mail encryption information is acquired.
A mail including the acquired encrypted information for mail is transmitted to the mail address corresponding to the information transmitted from the information management apparatus to the user terminal apparatus.
The email sent from the information management device is received by the information provider terminal device in which the email address that matches the email address of the email is stored, and the email encryption information included in the received email is Decryption is performed using the mail decryption key stored in the information provider terminal device to obtain decryption information (input information).
As the information communication encryption key and the information communication decryption key, it is preferable to use a common key for information communication from the viewpoint of shortening the processing time. As the information communication encryption key and the information communication decryption key, those determined in advance may be used, or those determined jointly by the user terminal device and the information management device may be used. Furthermore, the information communication post-plan key and the information communication decryption key may be common to a plurality of user terminal devices, or may be determined for each user terminal device.
The present invention has the same effect as the first invention.

An eighth aspect of the present invention is an information communication method as set forth in the eighth aspect.
The present invention includes a user terminal device, an information management device, and an information provider terminal device, and performs communication according to the following steps.
When information identification information is input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted from the user terminal device.
When the information management device receives the information transmission request signal including the information identification information indicating the information managed by the information management device, the user terminal device and the information management device jointly perform the information communication encryption key and the information communication. Determine the decryption key.
When the information communication encryption key and the information communication decryption key are determined, the information management apparatus uses the determined information communication encryption key to determine information corresponding to the information identification information included in the received information transmission request signal. Encryption is performed to obtain encrypted information, and the obtained encrypted information is transmitted to the user terminal device that transmitted the received information transmission request signal.
When the encrypted information transmitted from the information management device is received by the user terminal device, the received encrypted information is decrypted using the previously determined information communication decryption key to obtain the decrypted information (information). The obtained decryption information (information) is displayed on the display means of the user side terminal device.
When the input information is input using the input means while the decryption information is displayed on the display means of the user terminal device, the input communication information is determined using the previously determined information communication encryption key. The encrypted information is obtained by encryption, and the obtained encrypted information is transmitted to the information management apparatus.
When the information management device receives the encrypted information transmitted from the user terminal device, the received encrypted information is decrypted using the previously determined information communication decryption key, and the decrypted information (input information) is obtained. get.
The acquired input information is encrypted using the mail encryption key corresponding to the information transmitted from the information management apparatus to the user terminal device, and the mail encryption information is acquired.
A mail including the acquired encrypted information for mail is transmitted to the mail address corresponding to the information transmitted from the information management apparatus to the user terminal apparatus.
Email sent from the information management device is received by the information provider terminal device in which the email address matching the email address of the email is stored, and the encrypted information for email stored in the information provider terminal device Is used to decrypt the encrypted information for mail included in the received mail, and obtain the decrypted information (input information).
As a method of “the user terminal device and the information management device jointly determine the encryption key for information communication and the decryption key for information communication”, for example, the user terminal device and the information management device make a meeting and determine A method or a method in which one is determined and notified to the other is used. As the information communication encryption key and the information communication decryption key, it is preferable to use a common key for information communication from the viewpoint of shortening the processing time.
The present invention has the same effect as the second invention.

A ninth aspect of the present invention is an information communication method as set forth in the ninth aspect.
The present invention includes a user terminal device, a first information management device, a second information management device, and an information provider terminal device, and performs communication according to the following steps.
When information identification information indicating information managed by the first information management device is input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted from the user terminal device. Send.
When the first information management apparatus receives an information transmission request signal including information identification information indicating information managed by the first information management apparatus, it corresponds to the information identification information included in the received information transmission request signal The information to be transmitted is transmitted to the user terminal device that has transmitted the received information transmission request signal.
When the user terminal device receives the information transmitted from the first information management device, the received information is displayed on the display means of the user terminal device.
The information identification information displayed on the display means of the user terminal device is displayed in a state where the information identification information indicating the information managed by the second information management device is displayed on the display means of the user terminal device. When input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted from the user terminal device.
As a method of displaying information identification information indicating information managed by the second information management device on the display means of the user terminal device, for example, Web page information managed by the first information management device can be used. A method of inserting a Web page address (information identification information) indicating information managed by the second information management apparatus as link information is used.
When the second information management apparatus receives an information transmission request signal including information identification information indicating information managed by the second information management apparatus, it corresponds to the information identification information included in the received information transmission request signal The information to be encrypted is encrypted using the information communication encryption key stored in the second information management device to obtain the encrypted information, and the obtained encrypted information is used to transmit the received information transmission request signal To the user terminal device.
When the encrypted information transmitted from the second information management device is received by the user terminal device, the received encrypted information is decrypted using the information communication decryption key stored in the user terminal device. Information (information corresponding to identification information) is acquired, and the acquired decryption information (information corresponding to identification information) is displayed on the display means of the user terminal device.
The input information input from the input means of the user terminal device is encrypted using the information communication encryption key stored in the user terminal device to obtain the encrypted information. To the information management device.
When the second information management device receives the encrypted information transmitted from the user terminal device, the received encrypted information is decrypted using the information communication decryption key stored in the second information management device. To obtain decryption information (input information).
The obtained decrypted information is encrypted using the mail encryption key corresponding to the information transmitted from the second information management apparatus to the user terminal device, and the mail encrypted information is obtained.
A mail including the acquired encrypted information for mail is transmitted to the mail address corresponding to the information transmitted from the second information management apparatus to the user terminal apparatus.
When the email transmitted from the second information management device is received by the information provider terminal device in which the email address that matches the email address of the email is stored, the encrypted information for the email included in the received email Is decrypted using the decryption information for mail stored in the information provider terminal device to obtain decryption information (input information).
The present invention has the same effect as the fifth invention.

A tenth aspect of the present invention is an information communication method as set forth in the tenth aspect.
The present invention includes a user terminal device, a first information management device, a second information management device, and an information provider terminal device, and performs communication according to the following steps.
When information identification information indicating information managed by the first information management device is input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted from the user terminal device. Send.
When the first information management apparatus receives an information transmission request signal including information identification information indicating information managed by the first information management apparatus, it corresponds to the information identification information included in the received information transmission request signal The information to be transmitted is transmitted to the user terminal device that transmitted the received information transmission request signal.
When the user terminal device receives the information transmitted from the first information management device, the received information is displayed on the display means of the user terminal device.
In the state where the information identification information indicating the information managed by the second information management device is displayed on the display means of the user terminal device, the information identification information displayed on the display means is the information of the user terminal device. When input by the input means, an information transmission request signal including the input information identification information is transmitted from the user terminal device.
When the second information management device receives the information transmission request signal including the information identification information indicating the information managed by the second information management device, the second information management device and the user terminal device jointly An encryption key for information communication and a decryption key for information communication are determined.
When the information communication encryption key and the information communication decryption key are determined, the second information management apparatus determines the information corresponding to the information identification information included in the received information transmission request signal as the determined information communication encryption key. Is used to obtain encrypted information, and the obtained encrypted information is transmitted to the user terminal device that transmitted the received information transmission request signal.
When the encrypted information transmitted from the second information management device is received by the user terminal device, the received encrypted information is decrypted using the previously determined information communication decryption key, and decrypted information (information) And the obtained decryption information (information) is displayed on the display means of the user terminal device.
When input information is input from the input means of the user terminal device, the input information is encrypted using the previously determined information communication encryption key to obtain encrypted information, and the acquired encrypted information Is transmitted to the second information management apparatus.
When the second information management device receives the encrypted information transmitted from the user terminal device, the received encrypted information is decrypted using the previously determined information communication decryption key, and decrypted information (input information) ) To get.
The obtained decrypted information (input information) is encrypted using the mail encryption key corresponding to the information transmitted from the second information management apparatus to the user terminal apparatus, and the mail encrypted information is acquired.
A mail including the acquired encrypted information for mail is transmitted to the mail address corresponding to the information transmitted from the second information management apparatus to the user terminal apparatus.
When the e-mail transmitted from the second information management device is received by the information provider terminal device in which the e-mail address that matches the e-mail address of the e-mail is stored, the encrypted information for e-mail included in the received e-mail Is decrypted using the mail decryption key stored in the information provider terminal device to obtain decrypted information (input information).
The present invention has the same effect as the sixth invention.

  By using the information communication device of the first to sixth inventions and the information communication method of the seventh to tenth inventions, it is possible to reliably prevent the stealing, falsification, and leakage of the input information input by the user terminal device. Information communication technology can be provided.

Embodiments of the present invention will be described below with reference to the drawings.
A schematic configuration diagram of a first embodiment of the present invention is shown in FIG. In this embodiment, a user accesses a Web page (Web site) on which an information provider posts Web page information using a user terminal device, and inputs information such as member information and questionnaire response information. It is a thing when inputting.
The information communication apparatus according to the present embodiment includes a Web server 100, an administrator terminal apparatus 200, user terminal apparatuses 310, 320, and 330, and information provider terminal apparatuses 410 and 420.

The Web server 100 includes a processing device 110 and a storage device 120. The Web server 100 may be provided with other devices such as an input device and a display device.
The processing device 110 includes a management unit 110a, an SSL communication unit 110b, an encryption unit 110c, and a mail transmission unit 110d.
In the present embodiment, the Web server 100 corresponds to the “information management apparatus” of the present invention. The SSL communication unit 110b corresponds to the “information management side communication unit” of the present invention.
The management unit 110 a controls the writing and deletion of various types of information to the storage device 120 by the administrator terminal device 200 and the overall operation of the Web server 100.
The SSL communication unit 110b cooperates with the SSL communication units 311a, 321a, and 331a of the user terminal devices 310, 320, and 330 to transmit web page information between the Web server 100 and the user terminal devices 310, 320, and 330. In order to prevent the input information from being seen or falsified, the Web page information and the input information are encrypted and transmitted. The SSL communication means 110b and 311a, 321a, 331a determine an information communication encryption key and an information communication decryption key each time they are connected, as will be described in detail later.
The mail transmission unit 110d receives the input information transmitted from the user terminal devices 310, 320, and 330 to the Web server 100 using the SSL communication unit 110b and 311a, 321a, and 331a as it is (to the storage device 120 of the Web server 100). (Without storing) to the information provider terminal devices 410 and 420. By transmitting the input information received by the Web server 100 to the information provider terminal devices 410 and 420 as they are, leakage of input information due to unauthorized access to the storage device 120 of the Web server 100 can be prevented. The operation of storing the input information received by the SSL communication unit in the storage device in order to execute the encryption process by the encryption unit 110c or the mail transmission process by the mail transmission unit 110d is excluded.
The encryption unit 110c encrypts the input information to prevent the input information included in the mail from being seen or altered while the mail is being transmitted from the Web server 100 to the information provider terminal devices 410 and 420. Turn into.

The storage device 120 is provided with a Web page information database 120a, a certification information database 120b, a key information database 120c, and an information provider information database 120d.
In the present embodiment, the storage device 120 corresponds to the “information management storage unit” of the present invention.
The web page information database 120a stores web page information provided by each information provider, which is posted on each web page (web site). An example of the web page information database 120a is shown in FIG. In the Web page information database shown in FIG. 2, Web page information and an information provider who provides the Web page information are stored in correspondence with the Web page address of the Web page on which the Web page information is posted. As information identification information indicating Web page information, a Web page address is generally used, but an information provider, a Web page title, or the like can also be used.
The certification information database 120b stores certification information for certifying that the Web server 100 is a server authenticated by a regular certification authority. As certification information, the certification authority ID, server ID, and the like are used. It is done. By using this certification information, information leakage due to impersonation can be prevented.
The key information database 120c includes Web page information and input information between the Web server 100 and the user terminal devices 310, 320, and 330 (specifically, between the SSL communication unit 110b and 311a, 321a, and 331a). Key used for transmitting / receiving key determination processing information for determining an encryption key (information communication encryption key) and a decryption key (information communication decryption key) used when transmitting / receiving a key (key determination processing encryption key) ) And a decryption key (decryption key for key determination processing).
In this embodiment, a public key is used as the encryption key for key determination processing, and a secret key is used as a decryption key for key determination processing (anyone can perform encryption using the public key, but the private key Only the person who owns can decrypt.) Thereby, when the information transmission request signal is transmitted from the user terminal devices 310, 320, 330, the public key may be transmitted to the user terminal devices 310, 320, 330 that transmitted the information transmission request signal. Since it is not necessary to generate an encryption key for key determination processing, the processing load on the Web server is reduced and the key determination processing can be executed in a short time. On the other hand, since the decryption key for key determination processing uses a secret key, there is no possibility that key determination processing information transmitted and received in the key determination processing is leaked.
In this embodiment, a common key is used as the information communication encryption key and the information communication decryption key (information encrypted with the common key can be decrypted using the common key). When a common key is used, it is not necessary to create both an encryption key and a decryption key, so the processing burden is reduced. In addition, since the information communication encryption key and the information communication decryption key are determined each time the information transmission request signal is output from the user terminal devices 310, 320, and 330, there is no risk of leakage even if a common key is used. Almost no.
The information provider information database 120d stores information of an information providing apparatus that provides information to be posted on a web page, which is stored in the web page information database 120a. An example of the information provider information database 120a is shown in FIG. In the information provider information database shown in FIG. 2, when an e-mail including user input information (for example, member information input at the time of enrollment or questionnaire response information) for information provided by the information provider is transmitted. An encryption key for encrypting input information (email encryption key) and a mail address as a mail transmission destination are stored in association with the information provider.
In this embodiment, a public key is used as the mail encryption key. Thereby, the processing load of the Web server 100 is reduced.

The administrator terminal device 200 includes a processing device 211 and a storage device 212. The administrator terminal device 200 is used when information stored in the storage circuit 120 of the Web server 100 is rewritten, added, deleted, or the like.
The processing device 211 has an SSL communication unit 211a. The SSL communication unit 211a has the same configuration as the SSL communication unit of the user terminal devices 310, 320, and 330. Thereby, rewrite information and the like are encrypted and transmitted from the administrator terminal device 200 to the Web server 100.
The storage circuit 212 is provided with a certification information database 212a. In the certification information database 212a, information for proving that the administrator terminal device 200 is a server authenticated by a regular certification authority is stored. As certification information, the certification authority ID, the terminal device ID, etc. Is used. By using this certification information, it is possible to prevent various information stored in the storage device 120 of the Web server 100 from being rewritten by impersonation.

The user terminal devices 310, 320, and 330 include processing devices 311, 321, and 331, display devices 312, 322, and 332, and input devices 313, 323, and 333. The user terminal devices 310, 320, and 330 may be provided with other devices.
The processing devices 311, 321, and 331 are provided with SSL communication units 311 a, 321 a, and 331 a. The SSL communication units 311a, 321a, and 331a cooperate with the SSL communication unit 110b of the Web server 100 to transmit Web page information transmitted from the Web server 100 to the user terminal devices 310, 320, and 330, and the user terminal devices 310 and 320. 330, the input information transmitted to the Web server 100 is encrypted.
The display devices 312, 322, and 332 are configured by, for example, a liquid crystal display and display various display screens.
The input devices 313, 323, and 333 include, for example, a keyboard, a touch display screen, a mouse, and the like, and can input information identification information and input information.
In the present embodiment, the SSL communication means 311a, 321a, 331a corresponds to the “user side communication means” of the present invention, the display devices 312, 322, 332 correspond to the “display means” of the present invention, and the input device. Reference numerals 313, 323, and 333 correspond to "input means" of the present invention.

The information provider terminal devices 410 and 420 are terminal devices that transmit input information input by the user to the Web page information transmitted from the Web server 100 to the user terminal devices 310, 320, and 330. Specified by the information provider who provided
The information provider terminal devices 410 and 420 include processing devices 411 and 421 and storage devices 412 and 422. The information provider terminal devices 410 and 420 may be provided with other devices.
The processing devices 411 and 421 have mail receiving means 411a and 421a and decryption means 411b and 421b. The mail receiving units 411a and 421a are configured to be able to receive mail transmitted from the mail transmitting unit 110d of the Web server 100 and extract the encryption information included in the received mail.
The decrypting means 411b and 421b decrypt the encrypted information included in the mail received by the mail receiving means 411a and 421a, and acquire the input information.
In the storage devices 412, 422, information provider information databases 412a, 422a are provided. An example of the information provider information databases 412a and 422a is shown in FIG. In the information provider information databases 412a and 422a shown in FIG. 3, mail addresses set in the information provider terminal devices 410 and 420 and a decryption key (mail decryption key) are stored. The decryption keys (mail decryption keys) stored in the information provider information databases 412a and 422a are stored in the information provider database stored in the information provider information database 120d of the storage device 120 of the Web server 100. This corresponds to an encryption key (e-mail encryption key) (see FIG. 2) corresponding to the mail address. For example, in the encrypted information encrypted using the mail encryption key [A001] corresponding to the information provider [AAAAA] (mail address [aaa @ 111]), the mail address [aaa @ 111] is stored. Decryption is possible only by using the decryption key (mail decryption key) [a001] stored in the information provider information database 422a of the storage device 422 of the information provider terminal device 420.
In the present embodiment, a secret key is used as the mail decryption key.
In the present embodiment, the storage devices 412 and 422 correspond to the “information provider storage unit” of the present invention.

Next, the operation of the present embodiment will be described based on the operation diagram shown in FIG.
[Step (1)]
The user inputs information identification information indicating information desired to be received by the input device of the user terminal device. For example, using the input device 313 of the user terminal device 310, the address (URL) [http: // aaa] of the Web page on which the information provided by the information provider [AAAA] is posted is input, and the transmission key To operate. As a result, the SSL communication unit 311a of the user terminal device 310 transmits an information transmission request signal including the input Web page address [http: // aaa] to the Internet line.
[Step (2)]
When the SSL communication unit 110b of the Web server 100 receives the information identification information including the Web page address where the Web page information stored in the Web page information database 120a is received from the Internet line, the SSL communication unit 110b cooperates with the SSL communication unit 311a. The user terminal device 310 that transmitted the received information transmission request signal to the key determination processing request signal for executing the key determination processing for determining the information communication encryption key and the information communication decryption key (in detail, To the SSL communication means 311a). For example, an encryption method list transmission request signal is transmitted to the SSL communication means 311 a of the user terminal device 310.
In the “encryption method list”, usable encryption methods (for example, the number of bits of the encryption key and the decryption key) differ depending on the software of the SSL communication unit that transmitted the information transmission request signal. Therefore, by transmitting the “encryption method list” transmission request signal to the SSL communication means of the user terminal device, it is possible to know the encryption method that can be used by the SSL communication means of the user terminal device.
[Step (3)]
Upon receiving the encryption method list transmission request signal transmitted from the SSL communication unit 110b, the SSL communication unit 311a of the user terminal device 310 transmits the usable encryption method list to the communication unit 110b.
[Step 4]
The SSL communication unit 110b determines an encryption method based on the encryption list received from the SSL communication unit 311a, and designates the encryption method in the SSL communication unit 311a.

[Step 5]
Next, the SSL communication unit 110b reads the certificate information from the certificate information database 120b, reads the key determination processing encryption key (public key) from the key information database 120c, and reads the read certificate information and the key determination processing. The encryption key is transmitted to the SSL communication means 311a of the user terminal device 310.
[Step 6]
The SSL communication unit 311a confirms whether the Web server 100 is authenticated by a regular certificate authority based on the certificate information received from the SSL communication unit 110b. As a method for confirming whether the Web server 100 is authenticated by a regular certificate authority based on the certificate information, a known method can be used. For example, a method for making an inquiry to a certificate authority can be used.
The SSL communication unit 311a stores the key determination processing encryption key received from the SSL communication unit 110b.

[Step 7]
Next, the SSL communication unit 110b determines an information communication encryption key and an information communication decryption key. In the present embodiment, a common key is used as the information communication encryption key and the information communication decryption key (the encrypted information encrypted with the common key can be decrypted with the common key), so the SSL communication The means 110b determines a common key for information communication. As a method for determining the information communication common key (information communication encryption key and information communication decryption key), various methods can be used. For example, a method of determining from the encryption method received in step (4) and the ID of the user terminal device 310 or the Web server 100 can be used.
[Step 8]
Then, the SSL communication unit 311a encrypts the information communication common key determined in step (7) using the key determination processing encryption key received in step (5), and acquires encrypted information. The encrypted information is transmitted to the SSL communication unit 110b.
[Step 9]
When the SSL communication unit 110b receives the encryption information transmitted from the SSL communication unit 311a, the SSL communication unit 110b reads the key determination processing decryption key (secret key) from the key information database 120c, and reads the received encryption information. The decryption information is obtained by using the decryption key for decryption. Then, the obtained decrypted information is stored as a common key for information communication.
Through the above steps (2) to (9), the key determination processing for determining the information communication encryption key and the information communication decryption key (in this embodiment, the information communication common key) is executed. Further, for example, transmission of the transmission request signal of the encryption method list corresponds to the “key determination processing request signal” of the present invention.
This key determination process is executed each time an information transmission request signal is transmitted from the user terminal device.

[Step 10]
Next, the SSL communication unit 110b reads information corresponding to the information identification information included in the information transmission request signal received in step (1) from the Web page information database 120a. For example, the Web page information posted at the Web page address indicated by the information identification information is read from the Web page information database 120a. Then, the read web page information is encrypted using the information communication common key received in step (9) to obtain the encrypted information, and the obtained encrypted information is transmitted to the information transmitted in step (1). The request signal is transmitted to the SSL communication means 311a of the user terminal device 310 that has transmitted the request signal.
[Step 11]
When the SSL communication unit 311a of the user terminal device 310 receives the encrypted information transmitted from the SSL communication unit 110b of the Web server 100, the received communication information is used as the information communication common key determined in step (7). To obtain decrypted information (Web page information). Then, the obtained decryption information (Web page information) is displayed on the display device 312 of the user terminal device 310.

[Step 12]
When the received Web page information is a member information input screen for inputting member information or a questionnaire information input screen for inputting questionnaire response information, the user inputs input information using the input device 313. For example, when the received Web page information is a questionnaire information input screen as shown in FIG. 5, the user inputs input information as in the questionnaire response screen shown in FIG.
When the input of the input information is completed (for example, when the “transmission” portion displayed on the display screen displaying the Web page information is selected), the SSL communication unit 311a converts the input information into the step (7 The encrypted information is obtained by performing encryption using the information communication common key determined in (1). Then, the acquired encrypted information is transmitted to the SSL communication unit 110b of the Web server 100.
Note that the information to be encrypted only needs to include at least the encrypted information. Only the input information may be encrypted, or the display screen information to which the input information is input may be encrypted.
[Step 13]
When the communication unit 110b of the Web server 100 receives the encrypted information transmitted from the SSL communication unit 311a of the user terminal apparatus 310, the communication unit 110b uses the received encryption information as the information communication common key received in step (9). Decryption is used to obtain decryption information (input information).

[Step 14]
When the decryption information (input information) is acquired by the SSL communication unit 110b, the Web page information indicated by the information identification information included in the information transmission request signal received in step (1) or the SSL communication unit in step (10). An encryption key (e-mail encryption key) corresponding to the Web page information transmitted to 311a (or corresponding to the information provider providing the Web page information) and an e-mail address are read from the information provider information database 120d. In addition, when the Web page information corresponds to the information provider and an e-mail address is set corresponding to the information provider, the e-mail address corresponds to the Web page information. it can.
The encryption unit 110c encrypts the decryption information acquired in step (13) by using the mail encryption key read from the information provider information database 120d, and acquires the encryption information (mail encryption information). . The encryption unit 110c may use a mail encryption key read by the encryption unit 110c, or may use a mail encryption key read by another means (for example, the management unit 110a). In either case, it is included in the concept that “the encryption means performs encryption using the read mail encryption key”.
Then, the mail transmission unit 110d transmits a mail including the mail encryption information to the mail address read from the information provider information database 120d.
It should be noted that the time when the mail encryption key and the mail address are read from the information provider information database 120d and the means for reading can be obtained by the encryption means, and the mail transmission means 110d can receive the mail. If it can be transmitted to the user's e-mail address corresponding to the information transmitted to the user terminal device, an appropriate time and an appropriate means can be selected. For example, the mail transmission unit 110d may use the mail address read by the mail transmission unit 110d, or may use the mail address read by another unit (for example, the management unit 110a). In any case, it is included in the concept that “the mail transmission means transmits mail to the read mail address”.
In this embodiment, after the decryption information is obtained by the SSL communication unit 110b of the Web server 100, the obtained decryption information is encrypted using the mail encryption key without being stored in the storage unit. Send an email containing encryption information. In this case, the expression “send mail without storing in the storage means” is decrypted to perform encryption processing using the encryption key for mail or to perform transmission processing of mail including encryption information. A mode in which information is temporarily stored in the storage means is excluded.

As described above, in the present embodiment, communication means having an encryption function is used as the communication means of the user terminal device 310 and the Web server 100, and the input information input by the user terminal device 310 is encrypted and Web It is transmitted to the server 100. Thereby, it is possible to prevent the input information from being stolen or tampered with during transmission from the user terminal device 310 to the Web server 100.
Further, the Web server 100 transmits the input information received from the user terminal device 310 to the information provider terminal device 410 as it is (without storing it in the storage means). Thereby, leakage of input information due to unauthorized access to the storage means of the Web server 100 can be prevented. In particular, since the Web server 100 transmits the decrypted information by mail, the input information can be immediately transmitted to the information provider without being stored in the storage unit of the Web server 100.
Further, the input information decrypted by the Web server 100 corresponds to an information provider who provides information related to the input information (for example, an information provider who provided questionnaire information in the case of questionnaire response information). An e-mail including encrypted information encrypted with an encryption key (e-mail encryption key) is transmitted to an e-mail address corresponding to the information provider who provided information related to the input information. As a result, it is possible to prevent snooping or tampering during transmission from the Web server to the information provider terminal device.
Therefore, it is possible to reliably protect the input information input by the user through the user terminal device.

In the above, when the Web server receives the information transmission request signal including the Web page address indicating the Web page information stored in the Web page information database, the information communication encryption key and the information are cooperated with the user terminal device. Although the communication decryption key is determined, an information communication encryption key and an information communication decryption key which are determined in advance may be used.
As the information communication encryption key and the information communication decryption key, it is preferable to use a common key for information communication from the viewpoint of shortening the processing time. In addition, the information communication encryption key and the information communication decryption key can be determined for each user terminal device, but when input information is transmitted from an unspecified user terminal device (for example, questionnaire response information In the case of transmission), it is preferable to determine in common for a plurality of user terminal devices. Various methods can be used as a method for determining the information communication encryption key and the information communication decryption key.
When using a predetermined encryption key for information communication and a decryption key for information communication, the storage device (user side storage means) of the user terminal device and the storage device (information management device) of the Web server (information management device) The information storage encryption key and the information communication decryption key which are determined in advance are stored in the storage means). When the encryption process or the decryption process is performed, the information communication encryption key or the information communication decryption key is read from the user side storage means or the information management side storage means.
When a predetermined information communication encryption key or information communication decryption key (or information communication common key) is used, the processing of steps (2) to (9) shown in FIG. 4 may be omitted. it can. In the case of checking the Web server, the Web server certificate transmission process in Step (5) and the Web server check process in Step (6) are executed.
An encryption key for information communication and a decryption key for information communication (or a common key for information communication) are determined in advance, and a storage device (user side storage means) of the user terminal device or a storage device of the web server (information management side storage The information communication encryption key and the information communication decryption key (or information communication key) are received each time the Web server (information management device) receives the information transmission request signal transmitted from the user terminal device. There is no need to determine a communication common key. As a result, the processing load on the user terminal device and the Web server (information management device) is reduced, and the processing time is shortened.

In the first embodiment, in order to protect input information, a communication unit having an encryption function is used as a communication unit of the Web server. Here, when this technology is applied to a Web server that uses a communication means that does not have an encryption function, it is necessary to replace the communication means with a communication means that has an encryption function. Take it.
Therefore, a second embodiment in which a Web server using a communication means that does not have an encryption function can be easily and inexpensively changed to a Web server that can reliably protect input information. This will be described below.

FIG. 7 shows a schematic configuration diagram of the second embodiment.
In this embodiment, the first Web server 500 that does not have an encryption function, the second Web server 600 that has an encryption function (SSL), an administrator terminal device 700, a user terminal device 810, information A provider terminal device 910 is provided.
The configurations of the administrator terminal device 700 and the information provider terminal device 910 are the same as those of the administrator terminal device 200 and the information provider terminal devices 410 and 420 shown in FIG.
The first Web server 500 includes a processing device 511 and a storage device 512.
The processing device 511 includes a management unit 511a and a communication unit 511b. The management unit 511a controls the rewriting of information stored in the storage device 512 and the overall operation of the Web server 500. The communication unit 511b does not have an encryption function.
Web page information database in which storage device 512 stores Web page information and information provider information providing the Web page information corresponding to the Web page address of the Web page on which the Web page information is posted 512a. Further, at least one of the Web page information stored in the Web page information database 512a includes an information identification indicating the Web page information stored in the Web page information database 120a of the storage device 120 of the second Web server 100. Contains information. That is, at least one of the Web page information stored in the Web page information database 512a includes the Web page information stored in the Web page information database 120a of the storage device 120 of the second Web server 100. Link information that links to a Web page address is included.
In the present embodiment, the first Web server 500 corresponds to the “first information management device” of the present invention, and the communication unit 511b corresponds to the “first information management side communication unit” of the present invention. The device 512 corresponds to the “first information management side storage unit” of the present invention.
The user terminal device 810 includes a processing device 811. The processing device 811 includes a communication unit 811a and an SSL communication unit 811b. The communication unit 811a does not have an encryption function. The SSL communication unit 811b has an encryption function (SSL). The communication unit 811a and the SSL communication unit 811b are set so as to be automatically switched by the function of the Web server. Note that one communication unit having the function of the communication unit 811a and the function of the SSL communication unit 811b may be used.
The second web server 600 has the same configuration as the web server 100 shown in FIG.
In the present embodiment, the second Web server 600 corresponds to the “second information management device” of the present invention, and the communication unit 610b corresponds to the “second information management side communication unit” of the present invention. The device 620 corresponds to the “second information management side storage unit” of the present invention.

Next, the operation of the present embodiment will be described.
The information identification information included in the information transmission request signal transmitted from the communication unit 811a of the user terminal device 810 indicates the Web page information stored in the Web page information database 620a of the second Web server 600. If it is, the operation is the same as in the first embodiment. In this case, the SSL communication unit 811b operates.
On the other hand, the information identification information included in the information transmission request signal transmitted from the communication unit 811a of the user terminal device 810 is the Web page information stored in the Web page information database 512a of the first Web server 500. In the case shown, the communication means 511b of the first Web server 500 reads the Web page information indicated by the information identification information included in the information transmission request signal from the Web page information database 512a and uses it. To the communication means 811a of the person terminal device 810.
When the communication unit 811 a receives the Web page information transmitted from the communication unit 511 b of the first Web server 500, the communication unit 811 a displays the received Web page information on the display device 812.

Now, information identification information (for example, Web page address) indicating the Web page information stored in the Web page information database 620a of the second Web server 600 in the Web page information received from the communication means 511b of the first Web server 500. ) And the information identification information is displayed on the display device 812 of the user terminal device 810 together with the Web page information.
In this state, the user uses the input device 813 to display information identification information (Web page information stored in the Web page information database 620a of the second Web server 600 displayed on the display device 812). For example, when a Web page address) is input, the communication unit 811a transmits an information transmission request signal including the information identification information.
In this case, the SSL communication unit 610b of the second Web server 600 receives the information transmission request.
After the SSL communication means 620b of the second Web server 600 receives the information transmission request signal including the information identification information indicating the Web page information stored in the Web page information database 620a, the second Web server 600 The operations of the SSL communication unit 610b, the encryption unit 610c, and the mail transmission unit 610d, and the operations of the mail reception unit 911a and the decryption unit 911b of the information provider terminal device 910 are the same as those in the first embodiment.
When the SSL communication unit 610b operates, the SSL communication unit 811b of the user terminal device 810 operates.

  In the present embodiment, even an information communication device that does not include a Web server having an encryption function is input by a user into the Web page information database of the information communication device that includes a Web server having an encryption function. Web page information for inputting information is stored, and the Web page information stored in the Web page information database of an information communication apparatus including a Web server that does not have an encryption function has an encryption function. By simply writing information identification information (link information) indicating the Web page information stored in the Web page information database of the information communication apparatus provided with the Web server, it is possible to easily protect the input information input by the user at low cost. Can be done reliably.

In the above, when the second Web server receives the information transmission request signal including the Web page address indicating the Web page information stored in the Web page information database, the encryption for information communication is performed in cooperation with the user terminal device. Although the key and the decryption key for information communication are determined, it is also possible to use a predetermined encryption key for information communication and a decryption key for information communication.
As the information communication encryption key and the information communication decryption key, it is preferable to use a common key for information communication from the viewpoint of shortening the processing time. In addition, the information communication encryption key and the information communication decryption key can be determined for each user terminal device, but when input information is transmitted from an unspecified user terminal device (for example, questionnaire response information In the case of transmission), it is preferable to determine in common for a plurality of user terminal devices. Various methods can be used as a method for determining the information communication encryption key and the information communication decryption key.
When using a predetermined encryption key for information communication and a decryption key for information communication, the storage device (user side storage means) of the user terminal device and the second Web server (second information management device) The information communication encryption key and the information communication decryption key determined in advance are stored in the storage device (second information management side storage means). Then, when performing the encryption process or the decryption process, the information communication encryption key or the information communication decryption key is read from the user side storage means or the second information management side storage means.
An encryption key for information communication and a decryption key for information communication (or a common key for information communication) are determined in advance, and the storage device (user side storage means) of the user terminal device or the storage device of the second Web server (first (2 information management side storage means) for storing information communication each time the second Web server (second information management device) receives the information transmission request signal transmitted from the user terminal device. There is no need to determine an encryption key and a decryption key for information communication (or a common key for information communication). As a result, the processing burden on the user terminal device and the second Web server (second information management device) is reduced, and the processing time is shortened.

The present invention is not limited to the configuration described in the embodiment, and various changes, additions, and deletions are possible.
For example, in the present invention, input information input from the user terminal device is transmitted in an encrypted state from the user terminal device to the information management device, and input from the information management device to the information provider terminal device. Transmission of input information received by the information management device to the information provider terminal device without being stored in the information management device is transmitted in the form of an email including encrypted information obtained by encrypting the information. As long as it is configured to be performed immediately, there are various encryption methods between the user terminal device and the information management device and various encryption methods between the information management device and the information provider terminal device. Encryption methods can be used.
Further, the configurations of the information management device, the user terminal device, and the information provider terminal device are not limited to the configurations described in the embodiments.
As a method for transmitting mail, the mail may be transmitted directly from the mail transmitting means to the mail receiving means, or may be transmitted via the mail management device.
In addition, as a mail transmission unit and a mail reception unit, a mail transmission / reception unit can be used.
Further, although the SSL communication means is used as a communication means for communicating information such as Web page information and input information between the user terminal device and the Web server (information management device), the user terminal device and the Web server (information management) are used. If the information communicated with the device can be encrypted, various encrypted communication means other than the SSL communication means can be used.
Further, the present invention is configured to transmit encrypted information in response to reception of an information transmission request signal described in the claims or embodiments, in response to reception of encrypted information, A user terminal device as an information management device comprising a configuration for decrypting encrypted information, a configuration for transmitting a mail containing encrypted information obtained by encrypting the decrypted information, or in response to reception of an information transmission request signal Configuration for determining encryption key for information communication and decryption key for information communication, configuration for transmitting encrypted information, configuration for decrypting encrypted information in response to reception of encrypted information, decryption It can also be configured as an information management device having a configuration for transmitting mail including encrypted information obtained by encrypting information.

It is a schematic block diagram of the 1st Embodiment of this invention. It is a figure which shows an example of the web page information database memorize | stored in the memory | storage device of a web server, and an information provider information database. It is a figure which shows an example of the information provider information database memorize | stored in the memory | storage device of an information provider terminal device. It is a figure explaining operation | movement of this Embodiment. It is a figure which shows an example of Web page information. It is a figure which shows an example of input information. It is a schematic block diagram of the 2nd Embodiment of this invention. It is a figure which shows a prior art example. It is a figure which shows a prior art example.

Explanation of symbols

100, 600 Web server 110, 211, 311, 321, 331, 411, 421 Processing device 120, storage device 200 Administrator terminal device 211 Processing device 212 storage device 310, 320, 330 User terminal device 311, 321, 331 processing Device 312, 322, 332 Display device 313, 323, 333 Input device

Claims (10)

An information communication device comprising a user terminal device, an information management device, and an information provider terminal device,
The user terminal device has a user-side communication means, an input means, a display means, and a user-side storage means,
The information management apparatus includes information management side communication means, encryption means, mail transmission means, and information management side storage means,
The information provider terminal device has mail receiving means, decryption means, and information provider side storage means,
The user-side storage means stores an information communication encryption key and an information communication decryption key,
The information management side storage means stores an information communication encryption key and an information communication decryption key, and information transmitted to the user terminal device, an e-mail address, and an e-mail encryption key are information identifications indicating the information. Stored in correspondence with the information,
The information provider side storage means stores an e-mail address and e-mail decryption key,
User side communication means
When information identification information is input by the input means, an information transmission request signal including the input information identification information is transmitted,
After that, when the encrypted information transmitted from the information management side communication means is received, the received encrypted information is decrypted using the information communication decryption key stored in the user side storage means to obtain information. , Display the acquired information on the display means,
When the input information is input by the input means, the input information is encrypted using the information communication encryption key stored in the user-side storage means to obtain the encrypted information, and the acquired encryption Send the information to the information management communication means,
Information management side communication means
When an information transmission request signal including information identification information indicating information stored in the information management side storage means is received, information corresponding to the information identification information included in the received information transmission request signal is stored in the information management side storage means The read information is encrypted using the information communication encryption key stored in the information management side storage means to obtain the encrypted information, and the received encrypted information is sent to the received information transmission request signal. Send to the user communication means that sent,
Upon receiving the encrypted information transmitted from the user side communication means, the received encrypted information is decrypted using the information communication decryption key stored in the information management side storage means to obtain input information,
The encryption means stores the input information acquired by the information management side communication means, the mail encryption key corresponding to the information stored in the information management side storage means and transmitted from the information management side communication means to the user side communication means. Encrypt using e-mail to obtain email encryption information,
The mail transmission means reads the mail address corresponding to the information transmitted from the information management side communication means to the user side communication means from the information management side storage means, and sends the mail including the encrypted information for mail acquired by the encryption means, Send it to the email address you read,
The mail receiving means receives mail addressed to the mail address that matches the mail address stored in the information provider storage means,
The decrypting means decrypts the mail encryption information included in the mail received by the mail receiving means, using the mail decryption key stored in the information provider side storage means.
An information communication device. An information communication device comprising a user terminal device, an information management device, and an information provider terminal device,
The user terminal device has a user side communication means, an input means, and a display means,
The information management apparatus includes information management side communication means, encryption means, mail transmission means, and information management side storage means,
The information provider terminal device has mail receiving means, decryption means, and information provider side storage means,
In the information management side storage means, information to be transmitted to the user terminal device, a mail address and a mail encryption key are stored in correspondence with information identification information indicating the information,
The information provider side storage means stores an e-mail address and e-mail decryption key,
User side communication means
When information identification information is input by the input means, an information transmission request signal including the input information identification information is transmitted,
After that, upon receiving the key determination processing request signal transmitted from the information management side communication means, the information management side communication means and the information communication encryption key and the information communication decryption key are determined in cooperation with the information management side communication means,
When the encrypted information transmitted from the information management side communication means is received, the received encrypted information is decrypted using the determined information communication decryption key to obtain information, and the obtained information is displayed on the display means. ,
When input information is input by the input means, the input information is encrypted using the determined information communication encryption key to obtain the encrypted information, and the acquired encrypted information is transmitted to the information management communication means. Send
Information management side communication means
When an information transmission request signal including information identification information indicating information stored in the information management side storage means is received, a key determination processing request signal is transmitted to the user side communication means that transmitted the received information transmission request signal, Determine the information communication encryption key and the information communication decryption key in cooperation with the user side communication means,
Reads information corresponding to the information identification information contained in the received information transmission request signal from the information management side storage means, and encrypts the read information using the determined information communication encryption key to obtain the encrypted information Then, the acquired encrypted information is transmitted to the user side communication means that transmitted the received information transmission request signal,
When the encrypted information transmitted from the user-side communication means is received, the received encrypted information is decrypted using the determined information communication decryption key to obtain input information,
The encryption means stores the input information acquired by the information management side communication means, the mail encryption key corresponding to the information stored in the information management side storage means and transmitted from the information management side communication means to the user side communication means. Encrypt using e-mail to obtain email encryption information,
The mail transmission means reads the mail address corresponding to the information transmitted from the information management side communication means to the user side communication means from the information management side storage means, and sends the mail including the encrypted information for mail acquired by the encryption means, Send it to the email address you read,
The mail receiving means receives mail addressed to the mail address that matches the mail address stored in the information provider storage means,
The decryption means decrypts the mail encryption information included in the mail received by the mail reception means using the mail decryption key stored in the information provider side storage means, and acquires input information. ,
An information communication device. The information communication device according to claim 2,
The information management side communication means and the user side communication means determine an information communication common key as an information communication encryption key and an information communication decryption key.
An information communication device. The information communication apparatus according to claim 3,
The information management side storage means stores an encryption key for key determination processing and a decryption key for key determination processing,
When the user side communication means receives the key determination processing encryption key transmitted from the information management side communication means, the user side communication means determines the information communication common key, and the determined information communication common key is used for the received key determination processing. Encrypt using the encryption key to obtain the common key encryption information, send the obtained common key encryption information to the information management side communication means,
The information management side communication means reads the key determination processing request signal from the information management side storage means after transmitting the key determination processing request signal to the user side communication means that transmitted the received information transmission request signal, and reads the read key When the encryption key for decision processing is transmitted to the user side communication means that has transmitted the received information transmission request signal, and the common key encryption information transmitted from the user side communication means is received, the information management side storage means Read the key determination processing decryption key, and decrypt the received common key encryption information using the read key determination processing decryption key to obtain the information communication common key.
An information communication device. An information communication device comprising a user terminal device, a first information management device, a second information management device, and an information provider terminal device,
The user terminal device has a user-side communication means, an input means, a display means, and a user-side storage means,
The first information management device includes a first information management side communication unit and a first information management side storage unit,
The second information management device has second information management side communication means, encryption means, mail transmission means, and second information management side storage means,
The information provider terminal device has mail receiving means, decryption means, and information provider side storage means,
The user-side storage means stores an information communication encryption key and an information communication decryption key,
In the first information management side storage means, information to be transmitted to the user terminal device is stored in correspondence with information identification information indicating the information,
The second information management side storage means stores an information communication encryption key and an information communication decryption key, and information to be transmitted to the user terminal device, an e-mail address, and an e-mail encryption key store the information. Stored in correspondence with the information identification information shown,
The information provider side storage means stores an e-mail address and e-mail decryption key,
At least one of the information stored in the first information management side storage means includes information identification information corresponding to the information stored in the second information management side storage means,
User side communication means
When information identification information is input by the input means, an information transmission request signal including the input information identification information is transmitted,
Then, when the information transmitted from the first information management side communication means is received, the received information is displayed on the display means,
When information identification information included in the information displayed on the display means is input by the input means, an information transmission request signal including the input information identification information is transmitted,
Thereafter, when the encrypted information transmitted from the second information management side communication means is received, the received encrypted information is decrypted using the information communication decryption key stored in the user side storage means, and the information is received. , Display the acquired information on the display means,
When the input information is input by the input means, the input information is encrypted using the information communication encryption key stored in the user-side storage means to obtain the encrypted information, and the acquired encryption Send the information to the second information management communication means,
When the first information management side communication means receives the information transmission request signal including the information identification information corresponding to the information stored in the first information management side storage means, the first information management side communication means is included in the received information transmission request signal. Information corresponding to the information identification information is read from the first information management side storage means, the read information is transmitted to the user side communication means that transmitted the received information transmission request signal,
The second information management side communication means is:
When an information transmission request signal including information identification information indicating information stored in the second information management side storage means is received, information corresponding to the information identification information included in the received information transmission request signal is Information is read from the information management side storage means, the read information is encrypted using the information communication encryption key stored in the second information management side storage means, and the encrypted information is obtained. To the user side communication means that sent the received information transmission request signal,
When the encrypted information transmitted from the user side communication means is received, the received encrypted information is decrypted using the information communication decryption key stored in the second information management side storage means, and the input information is obtained. Acquired,
The encryption means transmits the input information acquired by the second information management side communication means from the second information management side communication means stored in the second information management side storage means to the user side communication means. Encrypted using the email encryption key corresponding to the information obtained to obtain the email encryption information,
The mail transmission means reads the mail address corresponding to the information transmitted from the second information management side communication means to the user side communication means from the second information management side storage means, and encrypts the mail obtained by the encryption means Send an email containing information to the email address you read,
The mail receiving means receives mail addressed to the mail address that matches the mail address stored in the information provider storage means,
The decryption means decrypts the mail encryption information included in the mail received by the mail reception means using the mail decryption key stored in the information provider side storage means, and acquires input information. ,
An information communication device. An information communication device comprising a user terminal device, a first information management device, a second information management device, and an information provider terminal device,
The user terminal device has a user side communication means, an input means, and a display means,
The first information management device includes a first information management side communication unit and a first information management side storage unit,
The second information management device has second information management side communication means, encryption means, mail transmission means, and second information management side storage means,
The information provider terminal device has mail receiving means, decryption means, and information provider side storage means,
In the first information management side storage means, information to be transmitted to the user terminal device is stored in correspondence with information identification information indicating the information,
In the second information management side storage means, information to be transmitted to the user terminal device, a mail address and a mail encryption key are stored in correspondence with information identification information indicating the information,
The information provider side storage means stores an e-mail address and e-mail decryption key,
At least one of the information stored in the first information management side storage means includes information identification information corresponding to the information stored in the second information management side storage means,
User side communication means
When information identification information is input by the input means, an information transmission request signal including the input information identification information is transmitted,
Then, when the information transmitted from the first information management side communication means is received, the received information is displayed on the display means,
When information identification information included in the information displayed on the display means is input by the input means, an information transmission request signal including the input information identification information is transmitted,
Thereafter, upon receiving the key determination processing request signal transmitted from the second information management side communication means, the information communication encryption key and the information communication decryption key are determined in cooperation with the second information management side communication means,
When the encrypted information transmitted from the second information management side communication means is received, the received encrypted information is decrypted using the determined information communication decryption key to obtain information, and the obtained information is displayed. Displayed on the
When the input information is input by the input unit, the input information is encrypted using the determined information communication encryption key to acquire the encrypted information, and the acquired encrypted information is stored on the second information management side. To the communication means,
When the first information management side communication means receives the information transmission request signal including the information identification information corresponding to the information stored in the first information management side storage means, the first information management side communication means is included in the received information transmission request signal. Information corresponding to the information identification information is read from the first information management side storage means, the read information is transmitted to the user side communication means that transmitted the received information transmission request signal,
The second information management side communication means is:
When an information transmission request signal including information identification information indicating information stored in the second information management side storage means is received, a key determination processing request signal is sent to the user side communication means that has transmitted the received information transmission request signal. Transmit, determine the information communication encryption key and the information communication decryption key in cooperation with the user side communication means,
The information corresponding to the information identification information included in the received information transmission request signal is read from the second information management side storage means, and the read information is encrypted using the determined information communication encryption key and encrypted. Information is acquired, and the acquired encrypted information is transmitted to the communication means on the user side that transmitted the received information transmission request signal.
When the encrypted information transmitted from the user-side communication means is received, the received encrypted information is decrypted using the determined information communication decryption key to obtain input information,
The encryption means transmits the input information acquired by the second information management side communication means from the second information management side communication means stored in the second information management side storage means to the user side communication means. Encrypted using the email encryption key corresponding to the information obtained to obtain the email encryption information,
The mail transmission means reads the mail address corresponding to the information transmitted from the second information management side communication means to the user side communication means from the second information management side storage means, and encrypts the mail obtained by the encryption means Send an email containing information to the email address you read,
The mail receiving means receives mail addressed to the mail address that matches the mail address stored in the information provider storage means,
The decryption means reads the mail decryption key from the information provider side storage means, decrypts the mail encryption information included in the mail received by the mail reception means, using the read mail decryption key. Get input information,
An information communication device. An information communication method in an information communication device comprising a user terminal device, an information management device, and an information provider terminal device,
When information identification information is input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted from the user terminal device,
When the information management apparatus receives an information transmission request signal including information identification information indicating information managed by the information management apparatus, information corresponding to the information identification information included in the received information transmission request signal is Encrypt using the information communication encryption key to obtain the encrypted information, send the obtained encrypted information to the user terminal device that transmitted the received information transmission request signal,
When the encrypted information transmitted from the information management device is received by the user terminal device, the received encrypted information is decrypted using the decryption key for information communication to acquire the information, and the acquired information is acquired by the user terminal device. Displayed on the display means,
The input information input by the input means of the user terminal device is encrypted using the information communication encryption key to obtain the encrypted information, and the acquired encrypted information is transmitted to the information management device,
The encrypted information transmitted from the user terminal device is received by the information management device, the received encrypted information is decrypted using the decryption key for information communication, and the input information is obtained.
The acquired input information is encrypted using an email encryption key corresponding to the information transmitted to the user terminal device to obtain email encryption information,
Send the obtained email encryption information to the email address corresponding to the information sent to the user terminal,
The email sent from the information management device is received by the information provider terminal device in which the email address that matches the email address of the email is stored, and the email encryption information included in the received email is Decrypting using the mail decryption key stored in the information provider terminal device to obtain input information;
An information communication method characterized by the above. An information communication method in an information communication device comprising a user terminal device, an information management device, and an information provider terminal device,
When information identification information is input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted from the user terminal device,
When the information management device receives the information transmission request signal including the information identification information indicating the information managed by the information management device, the user terminal device and the information management device jointly perform the information communication encryption key and the information communication. Determine the decryption key for
The information corresponding to the information identification information included in the information transmission request signal received by the information management device is encrypted using the determined information communication encryption key to obtain the encrypted information, and the obtained encrypted information is , Transmit the information transmission request signal received by the information management device to the user terminal device that transmitted,
The encrypted information transmitted from the information management device is received by the user terminal device, the received encrypted information is decrypted using the determined decryption key for information communication, and the information is acquired. Displayed on the display means of the terminal device,
The input information input by the input means of the user terminal device is encrypted using the determined information communication encryption key to obtain the encrypted information, and the acquired encrypted information is transmitted to the information management device,
The encrypted information transmitted from the user terminal device is received by the information management device, the received encrypted information is decrypted using the determined information communication decryption key, and the input information is obtained,
The acquired input information is encrypted using an email encryption key corresponding to the information transmitted to the user terminal device to obtain email encryption information,
Send the obtained email encryption information to the email address corresponding to the information sent to the user terminal,
The email sent from the information management device is received by the information provider terminal device in which the email address that matches the email address of the email is stored, and the email encryption information included in the received email is Decrypting using the mail decryption key stored in the information provider terminal device to obtain input information;
An information communication method characterized by the above. An information communication method in an information communication device comprising a user terminal device, a first information management device, a second information management device, and an information provider terminal device,
When information identification information corresponding to information managed by the first information management device is input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted to the user terminal device. Send from
When the first information management apparatus receives an information transmission request signal including information identification information corresponding to information managed by the first information management apparatus, the information identification information included in the received information transmission request signal To the user terminal device that sent the received information transmission request signal,
The information transmitted from the first information management device is received by the user terminal device, the received information is displayed on the display means of the user terminal device,
When information identification information corresponding to information managed by the second information management device, which is included in the information displayed on the display device of the user terminal device, is input by the input device of the user terminal device. , Transmitting an information transmission request signal including the input information identification information from the user terminal device,
When the second information management device receives the information transmission request signal including the information identification information corresponding to the information managed by the second information management device, the information identification information included in the received information transmission request signal The information corresponding to is encrypted using an information communication encryption key to obtain encrypted information, and the obtained encrypted information is transmitted to the user terminal device that transmitted the received information transmission request signal.
The encrypted information transmitted from the second information management device is received by the user terminal device, the received encrypted information is decrypted using the decryption key for information communication, the information is obtained, and the obtained information is used. Display on the display means of the person terminal device,
The input information input from the input means of the user terminal device is encrypted using the information communication encryption key to obtain the encrypted information, and the acquired encrypted information is transmitted to the second information management device,
The encrypted information transmitted from the user terminal device is received by the second information management device, the received encrypted information is decrypted using the information communication decryption key, and the input information is obtained,
The acquired input information is encrypted using an email encryption key corresponding to the information transmitted to the user terminal device to obtain email encryption information,
Send the obtained email encryption information to the email address corresponding to the information sent to the user terminal,
The mail transmitted from the second information management device is received by the information provider terminal device in which the mail address matching the mail address of the mail is stored, and the mail encryption information included in the received mail Is decrypted using the mail decryption key stored in the information provider terminal device to obtain input information.
An information communication method characterized by the above. An information communication method in an information communication device comprising a user terminal device, a first information management device, a second information management device, and an information provider terminal device,
When information identification information corresponding to information managed by the first information management device is input by the input means of the user terminal device, an information transmission request signal including the input information identification information is transmitted to the user terminal device. Send from
When the first information management apparatus receives an information transmission request signal including information identification information corresponding to information managed by the first information management apparatus, the information identification information included in the received information transmission request signal To the user terminal device that sent the received information transmission request signal,
The information transmitted from the first information management device is received by the user terminal device, the received information is displayed on the display means of the user terminal device,
When information identification information corresponding to information managed by the second information management device, which is included in the information displayed on the display device of the user terminal device, is input by the input device of the user terminal device. , Transmitting an information transmission request signal including the input information identification information from the user terminal device,
When the second information management device receives the information transmission request signal including the report identification information corresponding to the information managed by the second information management device, the user terminal device and the second information management device cooperate with each other. Determine the encryption key for information communication and the decryption key for information communication,
The information corresponding to the information identification information contained in the information transmission request signal received by the second information management device is encrypted using the determined information communication encryption key to obtain encrypted information, and the obtained encryption Send information to the user terminal device that sent the received information transmission request signal,
The encrypted information transmitted from the second information management device is received by the user terminal device, the received encrypted information is decrypted using the determined decryption key for information communication, and the information is acquired. Is displayed on the display means of the user terminal device,
The input information input from the input means of the user terminal device is encrypted using the determined information communication encryption key to obtain the encrypted information, and the acquired encrypted information is transmitted to the second information management device. ,
The encrypted information transmitted from the user terminal device is received by the second information management device, the received encrypted information is decrypted using the determined information communication decryption key, and input information is obtained,
The acquired input information is encrypted using an email encryption key corresponding to the information transmitted to the user terminal device to obtain email encryption information,
Send the obtained email encryption information to the email address corresponding to the information sent to the user terminal,
The mail transmitted from the second information management device is received by the information provider terminal device in which the mail address matching the mail address of the mail is stored, and the mail encryption information included in the received mail Is decrypted using the mail decryption key stored in the information provider terminal device to obtain input information.
An information management method characterized by that.

Images