JP2021047901A - Called party leadership based communication method, communication system, and electronic settlement system - Google Patents

Abstract

To effectively utilize communication resources and additional devices by controlling a communication device as intended by an owner of the communication device, and to achieve an efficient routing guide service system and a secure and convenient electronic settlement and moving body charge collection system by eliminating nuisance communication, reducing useless communication traffics, and utilizing supervision, anonymous communication and other additional devices of the communication device.SOLUTION: A ruler player of a communication device issues an instruction to an electronic secretary interposed between the communication device and a network beforehand. There are provided a plurality of handling methods from rejection to control permission for the electronic secretary to respond to each communication request from a caller after identifying the caller or communication content in accordance with instruction content of the ruler player, in order to process communication requests arriving from the inside and the outside.SELECTED DRAWING: Figure 1

Description

The present invention relates to communication using an electronic device on a communication network, and particularly to ensuring communication security with respect to a stage of establishing a communication connection. Concerning the integration of communication and remote control functions that determine all operations according to the will of the called party or the party controlling the called party communication equipment.

Telecommunications has become widespread. Various information technology services utilizing the Internet have rapidly penetrated the general public, high-speed, large-capacity, always-on communication has become widespread in ordinary households, and caller ID notification has also become common. The caller is now in control of the communication.
However, unsolicited communications against the will of the called party, fraudulent identity of the caller, emails that adversely affect youth, "attacks" by frequent mass transmission of emails, and infection just by looking at the screen of the received email. The virus and "one-ring" incomplete calls have caused serious damage to telecommunications carriers' networks, causing widespread paralysis of telephone lines for long periods of time. In addition, negative problems such as paralysis and functional deterioration of communication infrastructure and drowning of normal communication have emerged. It induces more illegal or legitimate acts due to the weaknesses of the existing public communication system.
Some conventional nuisance communication prevention technologies are divided into alert levels. However, there is nothing that can handle various situations at the same time. For example, "designation refusal" rejects reception to a designated party, but there is a problem that all the unspecified number of parties cannot be designated. In "designated reception", reception is performed only from a designated party, but it becomes "isolated" (see, for example, Patent Document 1, Non-Patent Documents 1 and 2). In the method of Patent Document 6, the convenience when registering / canceling the refusal number can be enhanced. Reception is rejected according to the reception conditions specified by the recipient, and the e-mail sender determines whether or not the e-mail can be forwarded. However, there is also a problem that the conditions themselves are difficult to determine and cannot be specified (for example, patent documents). See a few). There is also a method of recording unopened mail in the received junk mail and back-charging the sender (see, for example, Patent Document 4). In some cases, the sender's identification information is extracted from the received e-mail (see, for example, Patent Document 5).

However, these technologies (a) how to deal with at least one unsolicited communication after one occurrence (see, for example, Patent Document 6), and laws and regulations such as the opt-out method are all subject to the individual parties. It is forced to respond to the caller, and has little effect, especially in the case of email. The reason is: 1. The number of callers is huge. It is annoying to make a single call, and it is not realistic to reject and reply to each one. Even if the registration is rejected, the storage area for the number of records that can be registered is limited and cannot be increased infinitely. The above-mentioned laws and regulations cannot be resolved, for example, how to regulate the content of transmission in a foreign language, the existence of a country that does not have a legal system for transmission regulation, or if the caller is an individual rather than an organization to prosecute a violator. Not realistic. 2. I can't deal with one-ring junk communication. 3. 3. It is not possible to deal with criminal acts such as "Oreore fraud" by disguising the caller's identity, and the problem that home confirmation telephones are used by burglar criminals.
(B) Perfect reception conditions cannot be set. With the "designated reception" technology, there is a good chance that important communications will not be received. Strict laws and regulations and an opt-in method that allows transmission only to registrants hinder freedom of expression and business. As a concept of junk e-mail, there is no common standard that which content of e-mail corresponds to junk e-mail cannot be determined without the subjective factors of individual recipients. Techniques such as filtering by a known method such as an unsolicited e-mail sender database cannot reflect the subjectivity of the called party at all, and there is a clear limit to the current situation where the sender address is constantly changing.

(C) In general, conventional communication systems are premised on the concept that the communicating parties know each other's identities. For example, an individual's telephone number serves as an individual's identity. For this reason, if the telephone number is easily disclosed to an unknown party, there is some danger. On the other hand, if anonymous communication is required from the beginning to the end in activities such as individual-to-individual, individual-to-company transactions, dating, job hunting, etc. for the general public on the network, once you invite the other party, your e-mail address or phone number will be the other party. Because it is disclosed to the other party, you cannot easily break the relationship with the other party when you want to get rid of yourself. Patent Document 10 describes a method of establishing a communication channel that requires two steps for anonymous communication and removes the identity information of both parties from the communication contents through a dedicated anonymous communication center.
(D) With the progress of technology, small mobile communication devices have become multifunctional. Utilization of attached functions such as attached cameras and attached location information devices of communication equipment, children, blurred elderly people, unmanned and safe, can be used as a means of communication and for custody, and the potential needs are not satisfied. For example, regarding the utilization of position information, some are provided with a control means for setting a traveling route, but the amount of calculation is large and it is not suitable for a small device such as a mobile phone (see, for example, Patent Documents 7 and 8). Some mobile phones are provided with means for receiving radio waves from GPS satellites, but there is no means for preventing unwanted communication (see, for example, Patent Document 9).
Patent Documents 19 to 20 and 27 to 29 show techniques for using a mobile device for payment. However, the payment PIN cannot be used safely. Patent Documents 30 to 31 show techniques for making cashless at the time of commercial transactions. However, the liquidity of funds is impaired.
JP-A-5-14488 (Claim 1, Fig. 1-4) JP-A-2002-344524 (Claims 1-15, 1-19) JP 2000-10880 (Claim 1-5, Fig. 1-18) Japanese Patent No. 3283873 (Claims 1-2, 1-3) Japanese Patent No. 30064040 (Claims 1-2, 1-2) JP-A-2002-290566 (full text, Fig. 1-3) Japanese Patent No. 3460033 Japanese Patent Application Laid-Open No. 6-60821 (Claim 1-2, FIG. 1) Japanese Patent No. 3039536 (full text, Fig. 1-7) U.S. Pat. No. 5,884,270 (full text, Figure 1-9) U.S. Pat. No. 6,070,149 U.S. Pat. No. 6,370,235 U.S. Pat. No. 6,691,156 Japanese Unexamined Patent Publication No. 2001-148094 (full text, Fig. 1-7) Japanese Unexamined Patent Publication No. 10-307993 Japanese Unexamined Patent Publication No. 9-22497 Japanese Patent No. 3488192 Japanese Patent No. 3028796 Japanese Unexamined Patent Publication No. 8-339407 Japanese Unexamined Patent Publication No. 2001-338250 Japanese Unexamined Patent Publication No. 2003-141043 Japanese Unexamined Patent Publication No. 2002-374307 Japanese Unexamined Patent Publication No. 2003-36230 Japanese Unexamined Patent Publication No. 2001-217861 Japanese Unexamined Patent Publication No. 2003-333097 Japanese Unexamined Patent Publication No. 2003-216548 Special Table 2004-519022 Japanese Patent No. 3497144 Japanese Patent No. 3339843 Japanese Unexamined Patent Publication No. 2000-242717 Japanese Unexamined Patent Publication No. 2001-306982 Japanese Unexamined Patent Publication No. 2000-48283 JP-A-2002-42273 Japanese Unexamined Patent Publication No. 11-234393 Japanese Unexamined Patent Publication No. 2003-18636 Study Group on How to Deal with Unsolicited Email, "Interim Report", [online], January 24, 2002, Ministry of Internal Affairs and Communications, p. 10, [Search on January 9, 2004], Internet <URL: http://www.soumu.go.jp/s-news/2002/020124_4.html> Study Group on How to Deal with Unsolicited Email, "Report", [online], October 7, 2002, Ministry of Internal Affairs and Communications, p. 3-5 [Searched on January 9, 2004], Internet <URL: http://www.soumu.go.jp/s-news/2002/021007_1.html> Miass (J. Myers), "RFC1939, POP3 (Post Office Protocol --Version 3)", [online], May 1996, IAB (Internet Architecture Boad) Standard Recommendation Document RFC (Request for Comments), p. 11 [Searched on January 12, 2004], Internet <URL: (ftp://ftp.rfc-editor.org/in-notes/rfc1939.txt) J. Klensin, "RFC2821, (Simple Mail Transfer Protocol)", [online], April 2001, IAB (Internet Architecture Boad) Standard Recommendation Document RFC (Request for Comments), p. 32, [Searched on January 14, 2004], Internet <URL: (ftp://ftp.rfc-editor.org/in-notes/rfc2821.txt) P. Resnick, "RFC2822, (Internet Message Format)", [online], April 2001, IAB (Internet Architecture Boad) Standard Recommendation Document RFC (Request for Comments), p. 26 [Searched on January 20, 2004], Internet <URL: (ftp://ftp.rfc-editor.org/in-notes/rfc2822.txt)

All of these are the intentions of the administrator of electronic devices (hereinafter referred to as communication devices) equipped with communication functions and functions related to communication, that is, the intention of others to prevent the operation of the devices such as unsolicited communication, and the devices from their own will It is about the intention to control. The problem with the prior art is that this intention cannot be satisfied. It is an object of the present invention to solve this problem and satisfy the intentions of the parties concerned. Specifically, it is an object of the present invention to efficiently utilize communication resources with peace of mind as the parties concerned intend. Communication, function to control communication equipment, eliminate unwanted communication without impairing conventional communication function normally and openly, reduce unnecessary communication volume, custody, emergency communication, anonymous communication, efficient mobile device It is an object of the present invention to utilize an accessory device of a communication device such as a location information service. It is also an object of the present invention to provide a route guidance service, to grasp traffic conditions without providing dedicated equipment, and to realize a safe and convenient electronic payment and mobile toll collection system.

In order to solve the above problems, as shown in FIG. 1, in the present invention, the administrator of the communication device gives an instruction to an electronic secretary intervening between the communication device and the network in advance, and the electronic secretary gives an instruction of the administrator. According to the content, a plurality of methods for treating a communication request arriving from the inside or the outside (communication device or network) are provided, and when the communication request is received, one is selected from the plurality of treatment methods. The communication request is treated; the method of the treatment is referred to as "treatment" in the present specification, and means a method of taking a specific treatment for a specific communication request determined by an administrator.
Communication of the conventional concept is usually led by the caller, and it has been considered that it is natural for the other party to receive a call, for example. The response method is also simple, so there is no need to describe it in special terms. The present invention has various response methods, and there is no appropriate technical term to express it concisely. Therefore, the word "treatment" is used to express the relationship between the parties.
The reception refusal treatment is an expression of intention to completely reject the caller, the communication permission treatment is a conventional communication need, the control permission treatment is a potential need, and the intention is to give the caller control of the communication device. is there.
As used herein, the term "control authorization" is an administrator's intention to put a communication facility under control, execute a caller's command, or activate a specified function or program. Represents. For example, when the caller can remotely activate the camera attached to the communication device to monitor the called party and receive a communication request for confirmation of electronic payment, the personal authentication program is activated.
The idea of the present invention begins after all caller communications have prior permission. If an unknown caller makes a call without permission, first ask for the caller's name, determine the caller's identity, and decide whether or not to communicate. This is called application acceptance. This flow can be likened to the example of a receptionist or secretary. Instruct the secretary in advance of the prescribed rules, and when the instructed visitor comes, the secretary will treat it in the instructed way, and if an unknown visitor comes, ask for the name and requirements, Decide whether or not to let the visitor pass based on the rules taught by your boss. For example, if the boss is interested in the visitor's requirements, let him know. If you find out that your boss is an old acquaintance, let him pass. A wise secretary will remember the visitor and quickly decide whether to treat the second visitor kindly or pay in advance.

If the boss himself comes, follow the order. This is because the boss has control. This is likened to remote control of a communication machine.
In the present invention, the parties give instructions to the electronic secretary who realizes the role of the secretary in advance, and the electronic secretary processes the communication request according to the instructions of the parties. The electronic secretary is taught the first rule consisting of the caller ID and the treatment to be given, and the communication request is first treated based on the first rule. Also, teach the electronic secretary the second rule consisting of questions, correct answers and treatment, and if you do not know the treatment method according to the first rule, ask the caller and treat the correct answer based on the second rule. Then, the caller's ID and treatment are stored as the first rule. Also, instruct the electronic secretary how to deal with the caller who did not get the correct answer.
The second rule may include the personal information of the parties. For example, if it is specified as a rule to know the name of the party, the caller who does not know the name of the called party can be rejected. It is also possible to judge family members and relatives by passwords and passwords. In the case of telephone communication, voice recognition and voiceprint recognition can also be used.
The types of treatment include reception refusal and communication permission for communication requests arriving from the outside, and transmission refusal and transmission permission for communication requests originating from the inside. A virtual account (described later) will be introduced for payment.

(A) Prevention of unsolicited emails and unsolicited calls. The greatest feature of the present invention is that the occurrence of unsolicited communication is logically prevented even once before it occurs. 1. 1. Communication is not allowed unless the pair of caller ID and caller ID matches. Even if the caller ID can be forged, it cannot be matched with the recipient ID pair. If the caller ID cannot be forged, such as by callinger ID notification, give the unknown caller a limited number of application opportunities, and then unconditionally reject it to prevent the program from attempting automatic unsolicited communication. it can. 2. Sanctions can be given to a person who intends to make a one-ring call because the application procedure automatically starts and the sender is charged with the communication charge. 3. 3. Since it is automatically confirmed by the specified procedure for the person who was not registered, it is possible to deal with the "Oreore fraud" in which old people are inadvertently deceived.
(B) At the same time, in the case of a person who can answer the callee's question accurately, for example, when the callee's name can be answered, the communication function is not impaired in a normal and open manner, which is almost the same as in the conventional case. The freedom of the caller is not restricted. When you want to sell or advertise something, it is in the interest of both parties only if the other party is interested. The present invention provides a means for expressing interest to the called party in advance, and does not refuse communication that benefits both parties.
(C) When the present invention is operated on a receiving server, it can be blocked at the time of transmitting a communication request for unsolicited communication. It is possible to reduce the amount of communication due to a large amount of useless e-mail on the public network, effectively use the equipment, and save the telecommunications company's nuisance communication compensation. Even if it is not operated on the receiving server, it is possible to reduce the social burden of changing communication contracts and enforcing legislation, and saving the time required for manual judgment and deletion of unsolicited e-mail. By eliminating unsolicited communications, the use of communication means will expand as a result.
(D) Simple anonymous communication and one-way communication that allows only one side to make a call are possible. You will be able to carry out dating, job hunting, etc. more safely and comfortably via the public communication network.
(E) The other party is automatically identified according to the subjective consciousness of each party, and even if the other party obtains an illegal communication permission due to a problem of automatic processing, the permission can be revoked.
(F) The communication device and the communication accessory device can be efficiently used with peace of mind as the ruler of the callee communication machine intends. Custody, crime prevention, emergency communication, and vehicle driving guidance functions can be integrated. For this reason, new uses and new needs are born.
In addition, problems, means, and effects will be described for each example.

As used herein, "communication request" means the content of a communication that arrives at an electronic secretary before the caller's original purpose of communication is achieved, for example, a connection request or a callee. A communication request is an email or data received by an electronic secretary or a request for consent before it is received.-A "rule" is a pair of search conditions for a processing object and definition information of actions when the search conditions are satisfied. It means the knowledge used to control the processing expressed in. ・ The "first rule" is the condition part that has the applicable conditions for the caller ID (caller's identifier) and the action corresponding to the treatment. It is a rule having an execution unit that instructs execution, and "when actually receiving a communication request from a caller, the ID of the caller detected from the communication request (hereinafter referred to as" fact caller ID ") is If it matches the caller ID of the condition unit, the communication request is processed based on the treatment. ”・ The“ first rule set ”is a set of the first rules, and the present In the specification, creating the first rule and adding it to the first rule set gives treatment to the caller.-The "second rule" is a condition part that has applicable conditions regarding the expected application content. , It is a rule that has an execution unit that instructs the execution of actions corresponding to the treatment, and the matter that "if the expected application content is detected from the communication request, the communication request is processed based on the treatment". The "third rule" is a rule having a condition part having an applicable condition regarding a caller ID and a reception time, and an execution part instructing the execution of an action corresponding to the treatment. If the fact caller ID detected from the communication request matches the caller ID in the condition unit and a predetermined time has not elapsed from the reception time, the communication request is processed based on the treatment. The "fourth rule" is a rule that has a question to be presented to the caller, a condition part that has applicable conditions for the correct answer of the question, and an action part for scoring. Yes, it means that "if the answer to the question from the caller is correct, the score is recorded and the total score is totaled".-The "fifth rule" is the called party. It is a rule having a condition part having an applicable condition regarding an ID and a call time, and an execution part instructing the execution of an action corresponding to the treatment. It matches the ID and the predetermined time has not passed since the transmission time. If so, it represents the matter of "treating the outgoing request based on the treatment".-"Caller" means one selected from a group consisting of a party and equipment requesting the start of communication. However, ・ "Treatment information" is information on the called party ID and the first rule set, but when there is only one called party ID, it means the first rule set, and ・ "ID" means communication. It means the identifier provided by the service provider to the party using the communication service, and it is possible to provide multiple identifiers to one party. ・ "Communication permission" conveys the communication request to the called party. This means that the electronic secretary determines that communication can be permitted, transmits the communication request to the called party, makes it the same state as when receiving the communication request of the conventional communication means, and whether or not the called party communicates. "Receiving client" means a device that can collect the mail of the called party stored on the server, for example, a mobile phone that receives the mail, and is issued by IAB (Internet Architecture Boad). This applies to hosts that are trying to use services that comply with POP3 (Post Office Protocol --Version 3) specified in the standard recommendation document RFC (Request for Comments). It means a device, for example, a client terminal that sends an email, an ISP server that sends an email, and "server" means a service provider, and a telephone exchange corresponds to a server. "Server" means a device that provides a service for receiving and storing mail and passing the saved mail to the called person when the called person accesses, for example, a mail center of a mobile phone company and a POP3 service. Applicable to the host who is doing the following: ・ "Communication" means transmitting information and control signals, ・ "Mail" means e-mail, and ・ "Advance application" means that the parties have their own ID. It means disclosing information including (identifier), having the caller apply for permission to communicate, and applying for permission to communicate with the parties before the caller issues a communication request. "Registration" specifies a party who uses the communication service by an ID, and the provider of the communication service provides the ID to the party and is selected from a group consisting of the provider of the communication service and a third party. Means that the thing registers the identity verification information of the party・ "Hearing permission" means to allow the caller to acquire the voice signal acquired by the transmitter of the called party communication device, and ・ "Monitoring permission" means to allow the caller to acquire the voice signal through the called party communication device. , Means to have the image signal acquired by the image pickup device installed on the called party side. ・ "Position acquisition permission" means that the caller is allowed to acquire the position installed on the called party side through the called party communication device. It means that the position information to be acquired by means is acquired. ・ "Caution permission" means that the caller is made to output information through the communication device on the called party side to call the caller's attention. "Information transfer permission" means to have the caller transfer information to the called party communication device.- "First expected treatment" is preset to be applied when the treatment cannot be determined by the rule set to be applied. "Subject" means informational fields that have the purpose of having the content of information contained in the mail header, and "sender's e-mail address" means the sender. It means the destination email address to send an email to the sender including the reply destination email address specified by himself. ・ "Treatment application" means to apply for communication permission, and the conventional sending act is also one of the treatment applications. It can be considered as a form. ・ "Treatment relationship" is a relationship built by the treatment given to each other by both parties. ・ "Treatment set" means a set of multiple treatments. ・ "Application content" is It means the content to apply for permission of communication. ・ "Expected application content" means the application content expected by the called party. For example, when asking the other party for the name of the called party, the exact name is expected. It is the application content, that is, the application content that the correct answer of the question is expected, or it can be specified as a topic of interest, a keyword, or an expected application content. It means that the communication device is allowed to execute the program, and the communication device is provided with means for executing the program such as a CPU.

E-mail related term concept explanation. The flow of sending mail is generally from the sender terminal (sending client) to the sending mail server (receiving server), from the sending mail server (sending client) to the receiving server, and from the receiving server to the called terminal (receiving client). The outgoing mail server has two roles, a receiving server and an outgoing client.
Hereinafter, embodiments of the present invention will be described with reference to the drawings.
FIG. 1 is a diagram showing a schematic configuration example of an embodiment of the present invention. The party terminal 101 communicates on the network 104 via the electronic secretary 102, and the electronic secretary may be incorporated on the party terminal side or the server side that provides the communication service, or in the case of telephone communication, on the telephone side or the exchange side. ..
When incorporating it on the server side, connect it to the terminal of the party through the communication channel. The instruction file 103 may be incorporated into the electronic secretary or independent of the electronic secretary. The administrator may enter the data directly into the instruction file (not shown). The instruction file is stored in the data storage device. As long as it is a storage device obtained by achieving the object of the present invention, for example, an optical storage medium or the like can be adopted in addition to an electronic memory circuit such as a magnetic storage device, RAM, or ROM. A desirable implementation of instruction files is a database that organizes and integrates interrelated data, including multimedia information, and is easy to search. Hereinafter, the same reference numerals are used for common or similar components in each drawing.
FIG. 2B is a layout diagram of records showing the contents of a data database (hereinafter referred to as R1DB) that records a first rule set regarding items and treatment. There can be multiple items. For example, there are two items, a calling number and a command, in the condition section of the "communication confirmation" treatment described later.

The table contains all the data in the database. A table is a collection of columns. The data is organized in row and column format. Each row represents a record and each column represents a field on that record. The record layout consists of information organized by "field names" (on the left side of the table shown) and "field features" (on the right side of the table shown). The rows match each field. A primary key is a column that contains a value that uniquely identifies each row in the table. A foreign key is a column for setting a link between data in two tables.
R1DB has fields for caller ID and treatment ID.
FIG. 2A is a layout diagram of records showing the contents of a data database (hereinafter referred to as TDB) that records an embodiment of a treatment set. The specific realization of each treatment differs depending on the communication device, and the total number of treatment types that can be realized differs depending on the communication device. The treatment set can be expanded and simplified according to the individual needs of the parties concerned. The treatment ID is used to identify the processing method (function) to be called inside the program, and the text is used to display the content of the function to the user.
FIG. 2C is a layout diagram of a record showing the contents of a data database (hereinafter referred to as GDB) that records an embodiment of the presented information. When the presented information includes a question to be presented to the caller, it may be in the format shown in FIG. 2F.
FIG. 2D is a layout diagram of a record showing the contents of a data database (hereinafter referred to as R2DB) that records an embodiment of the second rule set regarding expected application contents and treatment.
FIG. 2E is a layout diagram of a record showing the contents of a data database (hereinafter referred to as R3DB) that records an embodiment of the third rule set regarding the caller, reception time, and treatment.

FIG. 2F is a layout diagram of a record showing the contents of a data database (hereinafter referred to as R4DB) that records a question presented to a caller, a correct answer to the question, and an embodiment of a fourth rule set relating to a score. The question and the presentation information stored in the GDB include those selected from the group consisting of text, voice, and images.
FIG. 2G is a layout diagram of a record showing the contents of a data database (hereinafter referred to as R5DB) that records an embodiment of the fifth rule set relating to the called party ID, the outgoing time, and the treatment.
FIG. 2H is a layout diagram of a record showing the contents of a data database (hereinafter referred to as TRDB) that records an embodiment of the treatment-related master.
FIG. 4 is a flowchart of an embodiment of the present invention.
This is a method of performing communication via an electronic secretary system (hereinafter referred to as "electronic secretary") that supports communication in a telecommunications network. The administrator gives an instruction to the electronic secretary in advance, and the electronic secretary communicates with a communication device. Installed between the networks, the electronic secretary processes communication requests from the inside (communication device) or outside (telecommunications network) according to the instructions of the administrator, and the method is (a) to the electronic secretary. A step for inputting data to construct an instruction file for instructing work, a condition part having applicable conditions for items that the instruction file has the following, and an execution part for instructing the execution of actions corresponding to treatment. The first set of rules (referred to as the "first rule set" in the present specification) and (the first rule is referred to as "when the communication request from the caller is actually received, if the communication request is actually received from the caller". The present specification represents the matter that "if the item detected from the communication request (hereinafter referred to as" fact item ") matches the item in the condition unit, the communication request is processed based on the treatment." In the above, creating the first rule and adding it to the first rule set gives treatment to the caller), and (b) a step of communicating using the electronic secretary capable of the following operations. A method characterized by having,. (1) The item is detected from the communication request from the caller, (2) the instruction file is accessed, and (3) the applicable conditions are satisfied for all the rules in the first rule set. Finding a rule that exists and executing the execution part of the rule (hereinafter, simply referred to as applying a predetermined set of rules), (4) Communicating the communication request to the called party for each communication request. (Hereinafter referred to as "communication permission") and a plurality of treatment methods including (hereinafter referred to as "treatment set") are provided, and when the communication request is received, one is selected from the plurality of treatment methods. , The communication request is processed.
When a communication request from a caller inside or outside the country is received, the item, that is, the fact item is detected from the communication request (401), the instruction file is read (402), and the first rule set is applied in the following first rule set application procedure. To apply. That is, for all the rules in the first rule set regarding items and treatment, find out the rules for which the applicable conditions are satisfied, and search R1DB (see FIG. 2B) under the conditions that the items and the fact items match (see FIG. 2B). 403), it is determined whether or not the record is found (404), and when the record is detected, that is, when a rule for which the applicable conditions are satisfied is found, the treatment given to the caller can be extracted from the treatment ID field. .. Then, the execution part of the rule is executed (406). If it is not found, the communication request is processed based on a predetermined treatment method, that is, the initial expected treatment (405).

A rule set is a description of processing control by data having a structure. That is, there are multiple different data in the same ruleset. Different data in the same ruleset are used to control similar processes. In the case of the same rule set described by different data, this specification is called a rule set for what.
First, a case where a communication request from the outside is processed and treatment is given to each caller will be described. In the first rule set, the item is a caller ID (identifier of a caller), the treatment of rejecting the communication request is called "rejection of reception", and the treatment of accepting the communication request is called "acceptance of application".
Acceptance of an application means that the caller permits the callee to express his or her desire to communicate, which can convey a communication requirement, including information for identifying the caller, to the electronic secretary. Moreover, after the presented information is presented to the caller, the caller's original communication purpose cannot be achieved before the caller's reaction is received and it is determined that the communication request can be permitted based on the reaction.
The term "communication requirement" is a communication requesting communication with a callee who has reached the electronic secretary by establishing a communication connection between the caller and the electronic secretary before achieving the original communication purpose of the caller. Means the content. For example, in the case of telephone communication, the caller's name, telephone number, and message are recorded and communicated to the recipient, and the electronic secretary sends a voice guidance and receives the caller's reply, but the reply is judged to be correct. Do not allow conversations with recipients before. Repeated questions and answers are possible. It is possible to make an immediate judgment and make a subsequent judgment after the callee. The reply can be received by dialing number or voice recognition.
For the purposes of the present invention, the term "application acceptance" refers to any interaction that facilitates the ongoing cycle of presentation of guidance messages and receipt of responses.

In the case of e-mail communication, the e-mail address, subject, etc. are received, but they are not given to the recipient before the content is judged to be correct, and the electronic secretary replies the presented information, and the sender's reply is made according to the presented information. Do not give to the recipient before the content is determined to be correct.
The presented information can be freely determined by the called party. For example, you can ask the caller for personal information such as the name of the called party.
Some conventional telephone technologies have the function of being away from home. The present invention is different from confirming the other party only when the caller is unknown, enabling communication when the caller is confirmed, and calling or rejecting the call when the caller is known.
FIG. 5 is a flowchart of another embodiment of the present invention. The instruction file includes presentation information to be presented to the caller, and the electronic secretary can perform an operation of presenting the presentation information to the caller. The instruction file is a set of second rules described by a rule having a condition part having applicable conditions regarding the expected application contents and an execution part instructing the execution of an action corresponding to the treatment (in the present specification, "" (Referred to as "second rule set") and (the second rule represents the matter that "if the expected application content is detected from the communication request, the communication request is processed based on the treatment"). The application acceptance includes the following operations, (a) detecting the expected application content from the communication request, and (b) applying the second rule set. ID detection (501), reading the instruction file (502), applying the first rule set (503), judging the result (504), and accepting the application is the second rule set regarding the expected application content and treatment. For all of the rules, find the rule that meets the applicable conditions (505), determine whether it was found (506), and if not found, use the predetermined treatment method, that is, the first expected treatment. Take action based on.

For example, after presenting the presented information to the sender, reception is rejected. Or reject the reception without presenting the guidance. It is desirable to decide by the parties. It is desirable that the initial treatment be selected from the treatment set excluding the application acceptance treatment (507), and when a rule that satisfies the applicable conditions of the first rule set is not found, whether or not to execute the application acceptance treatment is used. You can let the person choose.
When a rule for which the applicable conditions are satisfied is found, the communication request is processed based on the given treatment, that is, the treatment described in the execution part of the rule (508). The above treatment includes communication permission and reception refusal, and the communication equipment controls various treatments, that is, various treatment methods depending on the performance of the communication equipment on the receiving side, such as partially permitting communication and recording the caller's message. It is possible to specify according to the will of the person. For example, when the communication equipment has only basic communication functions, the communication contents are passed so that the implementation of the communication permission treatment of the electronic secretary does not interfere, and if the communication is not permitted, all the communication contents are simply blocked.
The communication equipment incorporating one embodiment of the present invention has a basic communication function and a control function. After instructing the communication equipment to be in a controlled state for the implementation of the control permission treatment of the electronic secretary, the communication content including the command of the caller is passed. Furthermore, various controlled states such as information transfer permission, attention alert permission, position acquisition permission, hearing permission, and monitoring permission can be realized.
Phishing (sender identity forgery) fraud can be prevented by issuing a password to the sender using the second rule set.
The second rule set can be used to allow communication based on the communication content. Freedom of transmission is not restricted. It is possible to carry out mail-order sales and advertisements that benefit both telecommunications.

Similar to the mechanism for processing communication requests from the outside, communication requests from the inside can be processed. For example, a first rule set for outgoing calls can be used in which the item is a called party ID (callee's identifier). You can use the treatment of rejecting the communication request called "call refusal", the treatment of permitting the communication request of "calling permission", and the treatment of "calling authentication". The outgoing authentication treatment activates an authentication program and permits outgoing calls when authentication by password verification or the like is successful. For example, in the case of a company, the present invention can be used to manage outgoing calls such as international calls.
In the present specification, giving treatment to a certain communication request means taking a specific measure for the communication request of a specific communication content.
FIG. 6 is a flowchart of another embodiment of the present invention described in the description of FIG. The communication is an e-mail communication, the caller ID is the sender's e-mail address (reply destination), the presented information includes an explanation of conditions for receiving the e-mail, and the communication permission treatment is the e-mail. The reception is to be received, the presentation is to reply to the caller, and when the communication request arrives, the electronic secretary first applies the first rule set, and the application conditions are satisfied. If the rule is not found, the application is accepted, and in the step of accepting the application, when the second rule set is applied, the rule for which the applicable conditions are satisfied cannot be found, that is, the treatment cannot be determined. In that case, the communication request is rejected after the presented information is presented to the sender.
Detect the sender's email address (601), read the instruction file (602), apply the first rule set (603), determine the result (604), apply the second rule set (605), Judging the result (606), the presented information includes an explanation of the conditions for receiving the mail, and the treatment of the communication permission is to receive the mail. That is, the electronic secretary passes the mail, and the called party receives the mail. The reception refusal treatment does not receive the mail (608), and presenting the presented information to the sender means returning the presented information to the sender (607).
FIG. 7 is a diagram showing a configuration of another embodiment of the present invention described in the description of FIG. The electronic secretary and the instruction files R1DB, GDB, and R2DB are incorporated in the receiving client side user terminal 701. Reference numeral 702 indicates a receiving server of ISP (Internet Service Provider).

FIG. 8 is a flowchart of another embodiment of the present invention described in the description of FIG. When the electronic secretary is installed on the receiving client side and rejects the communication request, it sends a deletion command to the receiving server to delete the e-mail from the receiving server, and the communication presented to the caller. The way to apply for permission is to include the application in the subject line of the email. The presented information includes at least content prompting the subject of the email to include the content of the application, for example, presenting a question and prompting the subject to include the answer.
Then, the user logs in to the receiving server (801) and detects the sender's ID, that is, the sender's email address from the header of the email (802). For example, by sending the command "TOP 10" described in POP3 (Non-Patent Document 3), which is a general mail reception protocol, and receiving and analyzing the header of the first mail from the POP3 server, the sender electronic E-mail address can be detected.
Then, when the instruction file is read (803), the first rule set is applied in the first rule set application procedure (804, 805, 809), and the rule for which the application condition is satisfied cannot be found from the first rule set. , The second rule set is applied in the following exemplary procedure (806, 807). First, for all the records of R4DB, the correct answer contents are extracted one by one (see FIG. 2F), and based on the extracted contents, the corresponding contents are searched from the subject included in the header of the mail and graded. ..
Then, when a record matching the score value is detected for all the records of R2DB, that is, when a rule for which the applicable condition is satisfied is found, the treatment ID can be extracted from the treatment ID field. .. Then, the execution part of the rule is executed (809). Handle initial treatment (808).

There is also an invention of extracting the sender's identification information from the arrived e-mail (Patent Document 5). The present invention differs in extracting the caller ID from the header of the arriving email. The present invention can achieve the object without opening the main body of the mail. Therefore, as compared with the invention of opening the main body of the mail, the communication amount of the billing portion of the communication with the server such as a mobile phone can be significantly reduced.
FIG. 9 is a diagram showing a configuration of another embodiment of the present invention described in the description of FIG. The electronic secretary and instruction files R1DB, GDB, and R2DB are incorporated on the receiving server 901 side. Reference numeral 902 indicates a receiving client. Reference numeral 903 indicates a mail sending client.
FIG. 10 is a flowchart of another embodiment of the present invention described in the description of FIG. The way to apply for permission to communicate with the caller is to include the application in the subject line of the email. The presented information includes at least the content prompting the subject of the email to include the application content, and the electronic secretary is installed on the receiving server side to reject the communication request to the sending client of the email. Communication is stopped after notifying the occurrence of an error, receiving up to the envelope (1001), detecting the sender's e-mail address, reading the instruction file (1002), and applying the first rule set. The first rule set is applied in the procedure (1003, 1004, 1009). If no rule that satisfies the applicable conditions is found in the first rule set, the subject of the email is received, so that the header including the subject of the email is also received (1005), and the procedure for applying the second rule set. Apply the second rule set in (1006, 1007, 1009). Handle initial treatment (1008).

FIG. 11 is a partial flowchart of an early determination process of another embodiment of the present invention described in the description of FIG. The early decision means that the reception of the mail is decided to be rejected and executed before the reception of the mail body is completed. The present invention can determine to reject the reception of the mail body by determining the subject content of the mail. However, prior art SMTP-compliant email senders have the step of checking for authorization after sending the email envelope and before sending the content, but once they start sending the email content, before sending the body, There is no step to check whether it is approved (see Non-Patent Document 4). Therefore, a sending client that is forcibly stopped (that is, early decision) by closing the content sending communication channel is implemented by the mail sender to ignore the error code returned when it is terminated and resend it. May exist. INDUSTRIAL APPLICABILITY The present invention can realize an early determination that can prevent the generation of wasteful communication volume even when receiving from such a conventional sender.
The early determination process starts from the time when the rule for which the application condition of the step of applying the first rule set (FIGS. 10, 1004) is satisfied is not found. The third rule set is applied in the following procedure for applying the third rule set. That is, the R3DB is searched based on the conditions that the caller ID (the mail address of the caller in this embodiment) matches and that a predetermined time has not elapsed from the reception time to the search time (1101). When the result is judged (1102) and the record is detected, that is, a rule for which the applicable condition is satisfied is found, the treatment can be extracted from the treatment ID field. Then, the execution part of the rule is executed (1110). If no rule that meets the applicable conditions is found, the header containing the subject of the email is received (1103), and the second rule set is applied in the second rule set application procedure (1104, 1105, 1112). , Process the first expected treatment (1106). However, if reception refusal is included in the treatment and initial expectation treatment of the second rule set execution unit (judgment: 1107), the third rule is applied based on the fact caller ID, reception time, and reception refusal treatment. Created and added to the third rule set (1108) to process the communication request based on the treatment, but the reception refusal during the treatment returns a temporary error state to the sending client and then forcibly suspends the communication (1108). 1109), otherwise treat the communication request based on the treatment given (1112). The purpose of executing the third rule is to stop the conventional SMTP-compliant sender before the header is received. Since it only needs to be executed once, when the execution part of the third rule is executed, the corresponding rule is deleted (1111).

Issuing a socket disconnect command (close) for the TCP protocol is an embodiment of the forced cancellation. An SMTP-compliant sender uses the third rule set as a rejection history if a transmission retry occurs after a certain period of time. If the history can detect a aborted sender retry, the system rejects the content transmission by the standard SMTP method. If no retries occur, delete the old deny history. In this way, it is possible to realize an early decision that can prevent the occurrence of wasteful communication volume. The third rule set for this purpose is called the third rule set for cancellation.
The embodiments shown in FIGS. 30 and 31 are proposed as extended functions of the conventional SMTP. When the sender implementing this function and the invention shown in FIG. 10 are used at the same time, the electronic secretary of the receiver does not need to deal with the retry, and the means for forcibly stopping by the command of the TCP layer located in a layer different from the SMTP. It is possible to further reduce the amount of traffic on the public network and the processing of the connected mail server for unsolicited e-mail without having to rely on.
If a predetermined time is set longer than the retry interval (see Non-Patent Document 4) in the third rule, the re-execution transmission is surely caught (YES in 1102), the sender is abandoned, and the undesired repetitive re-execution is performed. Execution can be blocked.
In step 1109, a failure response may be returned to the sending client instead of the temporary error condition. If a part or all of the content is received instead of the header and then the correct answer to the question or the expected keyword is not detected or detected, it may be determined that the e-mail is unsolicited.
FIG. 12 is a flowchart of another embodiment of the present invention described in the description of FIG. The presented information presented to the caller causes an application for permission to communicate, the presented information includes at least a content prompting the e-mail to describe the application content, and the electronic secretary is installed on the receiving server side. Rejecting the communication request means notifying the sending client of the e-mail of the occurrence of an error and then stopping the communication, and when the communication request arrives, the electronic secretary first notifies the fact originator ID. Is received up to the envelope of the e-mail containing the above, the first rule set is applied, and if a rule that satisfies the applicable conditions is not found, the content of the e-mail is received. , Accept the application. It receives up to the envelope (1201), detects the sender's email address, reads the instruction file (1202), and applies the first rule set in the first rule set application procedure (1203, 1204, 1209). ). If no rule satisfying the applicable conditions is found in the first rule set, the content is received (1205), and the second rule set is applied in the second rule set application procedure (1206, 1207, 1209). .. Handle initial treatment (1208).

FIG. 13 is a flowchart of another embodiment of the present invention described in the description of FIG. When applying the second rule set, if a second rule for which the applicable conditions are satisfied is found, the caller is given the treatment of the execution unit of the found second rule. ID is detected (1301), the instruction file is read (1302), the first rule set is applied (1303), the result is judged (1304), the second rule set is applied (1305), and the result is judged (1305). 1306), processing the first expected treatment (1307). The difference from FIG. 5 is that when the second rule for which the applicable condition is satisfied is found, the storage condition is further determined (1310), and when the condition is satisfied, the electronic secretary finds the second rule. It is to give the caller the treatment of the rule execution department. That is, a first rule is created based on the caller's ID and the treatment, and the communication request is processed based on the treatment (1309) in addition to the first rule set (1309). Normally, one of the preservation conditions is that the treatment of the execution part of the second rule found is not acceptance of the application. The storage conditions can be specified or changed by the parties.
This process is called automatic examination. If you answer the question specified by the recipient correctly, this method will automatically remember all the parties who contacted the recipient even once in the first rule, and the same question will be asked the second time. Not done. Application acceptance treatment is usually not given to a specific person. When the treatment is demoted to the person who has been given the communication permission treatment and the application acceptance treatment is given, it is useful as a record of communication with the other party.
Step 1307 is treated based on the initial expected treatment. The first expected treatment of this example is to present the presented information to the sender and then reject the reception. If the caller is unknown, it is necessary to present the presented information in order for the caller to apply for permission to communicate. If the presentation information is not presented in the exchange of application acceptance, it can be presented at this step. It is possible not to present it at the will of the parties.
FIG. 14 is a flowchart of a part of another embodiment of the present invention described in the description of FIG. The processing of this part is included in the processing block of the first expected treatment (FIGS. 5, 507). That is, when the treatment is not determined according to the first and second rules, the third rule set is applied in the third rule set application procedure (1401, 1402, 1405). Once applied, the relevant rule is deleted from the third rule set (1406), a first rule is created based on the caller ID and predetermined treatment, and the rule is added to the first rule set (1407). If a rule that satisfies the applicable conditions is not found, a third rule is created based on the caller ID, the reception time, and the predetermined treatment, and is added to the third rule set (1403). The electronic secretary carries out the original first expectation (1404).

When the caller is unknown, the present invention automatically replies to the caller and confirms the identity of the caller. However, most spam email replies are currently forged. If you reply automatically, you may create a new spam email. The present invention corresponds to the case where, when the second mail is received from the reply destination address and the information that can confirm the predetermined identity is not included, the parties disregard the predetermined treatment, for example, and specify the reception refusal. Ignore the address and give the reception refusal treatment, and then reject the reception without automatic reply.
Similar to the third rule, the time element may be incorporated into the condition part of the first rule. For example, the first rule with refusal treatment is deleted after one month or more. Then, the rejected caller can return to the initial expected treatment again, and it is possible to prevent the first rule set from becoming enormous. Immediately reject forged non-replyable addresses.
In the case of telephone, the invention can prevent aggression due to repeated applications. The present invention provides a finite number of application opportunities to the other party, and responds to repeated applications by a machine or the like. It can be realized by putting the number of times in the execution condition or giving a finite number of application treatments. Please note that the purpose of use of the third rule set is different from the purpose of use for forced cancellation.
FIG. 15 is a diagram showing a configuration of another embodiment of the present invention described in the description of FIG. The electronic secretary and the instruction files R1DB, GDB, and R2DB are incorporated in the party terminal side 1501. Provide a means of communicating through real-time interactions. The party terminal 1502 having the control right can communicate with the incoming party terminal 1501 without the intervention of the called party, and can send the control command 1510 to the terminal 1501. The party terminal 1503 that has been given the communication permission treatment can perform normal two-way communication 1520 with the terminal 1501. Communication and control can coexist.
FIG. 16 is a flowchart of another embodiment of the present invention described in the description of FIG. The communication is telephone communication, the presented information includes a description of the conditions for receiving the communication, and when a communication request arrives, the electronic secretary first applies the first rule set, and the applicable conditions are satisfied. If is not found, the application is accepted, and in the step of accepting the application, the presented information is presented to the caller, the reaction of the caller is received, and the second rule set is applied and applied. If no rule that satisfies the conditions is found, that is, if the treatment cannot be determined, the communication request is processed based on the initial expected treatment. ID is detected (1601), the instruction file is read (1602), the result of applying the first rule set is judged (1603, 1604), and if the rule that satisfies the condition is not found, the presentation information is transmitted. After presenting to the person, the reaction of the caller is received (1605), the second rule set is applied to judge the result (1606, 1607), and the communication request is processed based on the initial expected treatment or the given treatment depending on the result. (1608, 1609).

FIG. 17 is a flowchart of another embodiment of the present invention described in the description of FIG. The presented information includes a question to be presented to the caller, the expected application content is the answer to the question with a predetermined total score, and the instruction file is the question to be presented to the caller and the question. A fourth set of rules (hereinafter referred to as "fourth rule set") described by a rule having an application condition for the correct answer and an action execution part for scoring (the fourth rule is ". If the answer to the question from the caller is correct, the score is recorded and the total score is totaled. ”), And the electronic secretary can further perform the following operations. Is. (A) present the question to the caller, (b) receive the caller's answer to the question, (c) apply the fourth set of rules.
The processing of this part exemplifies the procedure of presenting a repetitive guidance message, receiving a reaction, and determining the accuracy of the reaction. It corresponds to the processing block (FIGS. 16, 1605) of FIG. 16 “presenting the presented information to the caller and receiving the reaction of the caller”. It is determined from R4DB that the processing of the data record of the rule is completed (1701), extracted (1702), the question is presented to the caller, and the answer of the caller is received (1704). A question may have multiple correct answers. For example, when confirming an identification number, there are a plurality of identification numbers. In this embodiment, the mechanism for confirming a plurality of correct answers (1705) does not ask the same question, but verifies whether the answer received at the time of the previous question is the next correct answer. Judgment is made by adding a question presentation unnecessary sign to R4DB or leaving the question field blank (1703). In some cases it is not necessary to ask all the questions. For example, there are cases where the identity of the other party can be determined by the first question. This embodiment has a mechanism for early termination of questions and answers when the total score (1706) exceeds a predetermined score (1707). The system that carries out the processing of this part includes means for receiving the reaction of the caller according to the type of presented information. For example, when an answer is obtained by pressing a dialed number on a telephone, a means for recognizing the pressed number is provided.

In the case of telephone, the caller is identified by the calling telephone number. According to the present invention, the caller can be identified by the identification number or password issued by the parties. Communication is possible from an unspecified calling terminal using the identification number.
FIG. 18 is a diagram showing a configuration of an embodiment according to the present invention. The electronic secretary and the instruction file are incorporated on the communication service providing server 1801 side. It has an instruction file for each party and can be used by multiple parties. The entitlement party inputs data to construct his or her instruction file from any terminal 1803 or telephone (1820). A communication request or control command for the caller terminal 1802 is sent via the electronic secretary server (1810).
FIG. 19 is a diagram showing a configuration of an embodiment according to the present invention. The electronic secretary has a means of accessing the instruction file (1930) through the network, and one ruler utilizes multiple electronic secretaries (1901, 1904). The plurality of electronic secretaries access one instruction file 103. Reference numeral 1940 indicates a mail via the server 1904. The fifth rule set (FIG. 2G, R5DB) created by the electronic secretary is also saved in the instruction file 103 (not shown in FIG. 19).
FIG. 20 is a transmission processing partial flowchart of another embodiment of the present invention described in the description of FIG.
The instruction file is a set of a fifth rule described by a rule having a condition part having an applicable condition regarding a callee ID and an outgoing time, and an execution part instructing the execution of an action corresponding to the treatment. A method comprising the "fifth rule set"), wherein the electronic secretary can further perform the following operations. (A) Apply the fifth rule set, (b) Send a communication request to the called party and receive treatment, (c) Create the fifth rule and add it to the fifth rule set.

For all the rules in the 5th rule set regarding the recipient ID, outgoing time, and treatment, find out the rules for which the applicable conditions are satisfied, judge the result (2001, 2002), and the applicable conditions are satisfied. If a rule is found, the outgoing request is processed based on the given treatment (2004). If the rule is not found, a communication request is sent to the called party and treatment is received (2003). In the case of the electronic secretary of the present invention, the receiving party determines the treatment received by the predetermined return code and communicates (2005, 2006). When the recipient of the incoming call uses the conventional technology, for example, when it is a conventional mail receiving server, it is desirable to consider it as a reception refusal when a permanent error code is received.
If the received treatment is "cannot communicate immediately", a fifth rule is created based on the callee ID, outgoing time, and treatment, and added to the fifth rule set (2007). A main object of the present invention is to prevent unwanted communication at the source. Preferably, it is operated by a server as shown in FIGS. 18 and 19, and the caller cannot prevent the R5DB from inputting "immediate communication" treatment including reception refusal treatment (2007). If the treatment given to the other party is reception refusal, repeated transmissions are prevented within a predetermined time. It is desirable that the administrator of the server sets the predetermined time. For example, if treatment such as "Please call again after one hour" is given, it can be implemented on the transmission server side. If R5DB is not cleared, the number of R5DB records of the sender of mass junk communication will increase indiscriminately. Depending on the number of R5DB records, the server administrator can manage the transmission efficiency of the caller, such as lowering or warning.
For communication requests transmitted from the inside, treatment can be implemented by the first rule set for transmission set by the administrator of the communication device. Keep in mind that the first and fifth rulesets for outgoing calls have different purposes.

FIG. 21 shows a system for anonymous communication between electronic secretary users. The first and second parties are users of the electronic secretary of the present invention. As shown in FIG. 1, the electronic secretary operates between the terminal and the communication network, and is incorporated in the terminal side of the party or the server side that provides the communication service (not shown in FIG. 21). The first and second data are the personal information of the first and second parties, respectively. This information is shown in FIG. 3A describing the PDDB, and includes a party ID such as a telephone number, a name, a pseudonym, an address, an educational background, a work history, and the like. The server system 2103 stores the personal information PDDB and VDB of the party who desires anonymous communication, and provides services such as searching for a communication partner in order to start anonymous communication.
This form relates to anonymous communication between two or more parties. See Patent Document 10 for contrasting background techniques. The challenge is to realize easy and easy anonymous communication. The main means is the creation of communication channels between the parties through control permission treatment.
FIG. 3A is a layout diagram of a record showing the contents of the party data database (hereinafter referred to as PDDB) of one embodiment regarding the party data.
FIG. 3B is a layout diagram of records showing the contents of a confirmation data database (hereinafter referred to as VDB) of an embodiment regarding data for recording a confirmation request.
FIG. 3C is a layout diagram of a record showing the contents of the witness data database (hereinafter referred to as VRDB) of one embodiment regarding the data for recording the witness information.
FIG. 22 is a partial flowchart of the processing of the first party. FIG. 23 is a partial flowchart of the processing of the second party. FIG. 24 is a flowchart of the server search, data transmission, and treatment exchange processing portion.
The present invention can be used simultaneously by two or more parties. In the following description, the treatment given by the first party to the data disclosure partner is input to the PDDB, the server is given the treatment of proxy permission (2202), and the second party sends the search request to the server (2302). And.
In addition to PDDB, see Example 4 for another embodiment relating to party data.

Parties 2101, 2102 enter the first and second data, at least one party rule for disclosing the data, and server 2103 to give the server communication permission treatment (2110, 2111, 2201, 2301). ). The server receives the party data and the party rules and stores them in the PDDB (2401). The party rules include the profile of candidates who disclose information and do not disclose it, whether confirmation is required before disclosing the information, and information on what information will be disclosed to what candidate, and disclosure of PDDB. Save to authorization profile. The second party sends a search request containing the search criteria (2112, 2302), the server receives it and searches the PDDB (2402). Search results, such as the number of records that meet the criteria, are sent to the second party (2303, 2403). It is determined whether the first data meets the search criteria (2404), and if there is a first data that meets the search criteria, it is determined whether the first party rule is satisfied (2405) and if it is satisfied. , Send the first data to the second party (2113, 2303, 2406). When the first party gives the server permission treatment and the treatment given to the second party to be disclosed the first data is input to the PDDB, the server acts on behalf of the operation of the first party. The second party is given the treatment given to the subject to be disclosed contained in the first data (2113, 2407). It is determined whether the second party rule is satisfied (2408), and if so, the second data of the second party is sent to the first party (2114, 2203, 2409).
Identity verification can be included as a requirement in the party rules before disclosing information. It is possible to specify in the party rules provided that the information about the parties has been confirmed.
It is possible to ask the server to confirm information about the parties. The confirmation information is stored in the confirmation database VDB, and the witness information is stored in the witness data database VRDB.

When the instruction file of the parties is saved on a server in the network, log in to the server based on the access permission information (ID, password) and enter data in the instruction file. The proxy permission is entered in the instruction file based on the access permission information entered by the requester. When the instruction file is saved locally, the execution of proxy permission is realized by giving the server information transfer permission treatment and inputting it into the local instruction file.
Whether the server processes the search request, determines whether the first data meets the search criteria, and whether it meets the first (second) party rule that discloses the first (second) data. The implementation of the determination process is known in Patent Document 10. There are many search techniques you can use, including keywords, fuzzy logic and natural language search tools.
According to the present invention, since the called party holds the key to the success or failure of communication, the connection between the party ID such as a telephone number and the identity can be disconnected. Only connect to personal phones and emails that you can easily trust. The effect is similar to that of a dedicated network in the public network. In the present invention, even if the public network communication ID used by the other party is known to the other party, the communication of the other party can be refused later. Therefore, unless the other party's identity is disclosed by himself / herself, he / she can easily use a normal number while maintaining anonymity. , Anonymous communication that can use all communication functions can be realized. For example, the present invention does not require the intervention of a dedicated central controller that removes the identity from the communication content. There is no need to create a special communication channel.
The present invention easily realizes anonymous communication and easy data exchange as compared with the anonymous communication technology (see Patent Document 10) that requires two steps for data exchange between the parties via a dedicated central controller. Can be done.
A communication service provider provides an ID to a party who uses the communication service, and a method selected from a group consisting of the communication service provider and a third party registers the identification information of the party. It is used to store the identity verification information of the parties on the server. Third parties such as the communication service provider that manages the server or the security service provider that cooperates with it have a statutory information protection obligation. In the case of damage caused by illegal acts, it is possible to check the identity of the other party by legal means, so you can communicate with peace of mind.

If you reset the treatment to the other party to reject reception, the communication relationship will be cut off. If necessary, use an additional ID and make a new contract for a telephone number dedicated to anonymous communication in addition to the telephone number for normal use. For example, Nippon Telegraph and Telephone East Corporation (NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION) can use the additional number service in addition to the original contractor line number, and the additional number can also be used as the caller ID. In the case of email, a new address can be used as an additional ID. If you feel that it is a burden to set the treatment to reject reception when the need for anonymous communication is eliminated, you can abolish the contract for the additional ID. The concept of treatment in ordinary language is a transfer relationship. The term treatment of the present invention is also a transfer relationship, but the “treatment exchange” is not necessarily an exchange at the same time. In the present invention, only one grants communication permission and only the other can communicate.
FIG. 25 is a flowchart of another embodiment to which the control permission treatment is added in the present invention described in the description of FIG. FIG. 26 is a diagram showing a configuration of one embodiment in the present invention described in the description of FIG. 25. The administrator of the terminal A2601 gave the terminal C2603 information transfer permission and program execution permission treatment. When information is transferred from the terminal C to the terminal A, the data is written to the storage device 13 of the terminal A (2610), and the attention alerting permission treatment is given, the information is output to the display unit 18 through the terminal A and the speaker 17 is made to speak. It is possible to draw the attention of nearby parties. Terminal B2602 and terminal A perform normal two-way communication (2620).
When the information requesting confirmation of the electronic payment of the bank is received from the terminal C, the authentication program is activated, the owner of the terminal A inputs the fingerprint through the fingerprint sensor, and the authentication program registers based on the input fingerprint information. The fingerprint information is collated with the fingerprint information, and only when the fingerprint information is matched, the pre-registered password is transmitted to the terminal C to confirm the payment.

FIG. 27 is a conceptual diagram showing the configuration of an embodiment according to the present invention. The ruler of the mobile machine 2701 gave the caller of the terminal A2702 a position acquisition permission treatment. A position information acquisition command 2711 is issued from the terminal A, and the mobile device acquires the position information by the installed position acquisition means according to the command and transfers the acquired position information to the terminal A (2712). The position information is based on the received GPS (Global Positioning System) position signal, the position information converted from the received GPS position signal, the current position information of the PHS (Personal handy phone) terminal, and the mobile phone base station position information. Includes those selected from the group consisting of the provided mobile terminal position information (hereinafter referred to as "concrete position"). The specific positions are the GPS position signal received from the GPS satellite 2704, the position information converted from the received GPS position signal, the current position information provided based on the base station 2705 position information of the PHS terminal, and the mobile phone base station 2706. Includes those selected from the group consisting of mobile terminal location information provided based on location information. When the mobile communication device (hereinafter referred to as "mobile device") issues a communication request to the terminal A having a pre-registered ID, the callee side communication device detects the speed or the position information of the terminal A. (2714), the movement plan information is transferred to the terminal A, and the terminal A is further given the treatment of (a) information transfer permission and (b) alert permission. The terminal A transfers information to the mobile device, causes the information display means of the mobile device to output information, and calls the attention of a nearby party through the attention calling means of the mobile device (2715).
For example, nearby groups wishing to notify each other's position, such as moving vehicles, climbers, etc., can notify and display each other's positions. Similar to the position information acquisition command, the speed of the mobile device can be acquired by the terminal A to which the speed acquisition permission is given. Then, the movement information can be acquired from the mobile device only when the terminal A is required. Patent Document 14 discloses the electrical configuration of the mobile device, the calculation of the moving speed and direction, and the estimation of the traffic condition. Calling the attention includes generating the mobile device what is selected from the group consisting of voice, light, and vibration. The movement plan information includes arrival destination information, and the information to be transferred to the mobile device includes information selected from a group consisting of map information, recommended routes, current routes, forward congestion information, detour information, and weather information. The position information includes a specific position. The terminal B2703 and the mobile device perform normal two-way communication (2713).
A system of custody of the wandering old man appeared several years ago. The present invention is not limited to the elements capable of acquiring (controlling) the position information of the called party. It should be noted that the present invention includes an element capable of making a call.

FIG. 28 is a flowchart of an embodiment of the present invention regarding dynamically route guidance (see FIG. 27). This example is intended to efficiently provide a vehicle traveling guidance function to a mobile terminal having a position information acquisition function, for example, a mobile phone equipped with GPS. When issuing a communication request to the server terminal of a fixed machine having a pre-registered ID, the current location and destination information of the mobile device is transmitted to the server, and the server receives it (2801). After the server searches for the recommended route and sends it to the mobile device (2802), it searches for congestion information on the recommended route at predetermined intervals (2803), determines whether congestion will occur (2804), and if it does occur. , The server given the location acquisition permission treatment acquires the current position of the mobile device, confirms the traveling route (2805), and if congestion occurs in front of the traveling route, searches for a detour (2806, 2807). ), If there is a detour, the server given the information transfer permission and the alert permission treatment transfers the detour information to the mobile device, and then notifies the driver by voice (2808).
Route search requires a large amount of calculation and calculation speed. Searching for dynamic road traffic information from mobile devices is inefficient. The present invention entrusts the server with operations that cannot be performed by an inexpensive portable mobile terminal, communicates with the mobile device only when a traffic jam that may be involved occurs, and notifies the detour information. By giving control permission treatment to the server, it is not necessary for the called driver to perform the operation by himself / herself. The route search and the detour search are known from Patent Documents 7 and 8.
FIG. 29 is a conceptual diagram of a form according to the present invention regarding position information and the like. When the mobile device 2701 detects a position change, it transfers the changed position information to the terminal A2702 having a pre-registered ID (2911). Terminal A gives the mobile device the treatment of information transfer permission and alert permission. Control permission includes hearing permission. It is assumed that the ruler of the mobile device gives the caller of the terminal A permission to listen and to permit monitoring.
A communication request, a hearing command, and a monitoring command are issued from the terminal A (2921). According to the command, the mobile device sends a voice signal acquired by the transmitter installed and an image signal acquired by the image pickup device to the terminal A (2922). This example can be used as a mobile device to custody a child. For example, parents can find out where their children are and listen to their activities such as playing in the park or going to school. The location information changed when the child is at school or on the move is automatically transferred to the parent terminal A. The mobile device preferably uses PHS, and information is transferred by mail, which is packet communication. Terminal A preferably uses a personal computer that is always connected to the Internet via an ADSL line or the like, and displays the whereabouts of a child carrying a mobile device on a map in real time. It can also be used for car crime prevention. Any unplanned vehicle movement will be alerted to the owner and can be tracked. When high position accuracy is required such as taxi and transportation business, it is desirable to use GPS position acquisition means.

Patent Document 9 discloses an image display unit that adds position information of a moving device to map data and displays it on an image.
The first rule set of the present invention is a mechanism led by a callee (administrator), and can give a position acquisition permission treatment to any caller determined by the administrator. Therefore, it is different from the invention shown in Patent Document 9 that the sender can directly acquire the position of the mobile device without relying on the relay of a third party such as a service center fixed to the receiver.
FIG. 30 is a diagram showing a configuration of an email transmission client for operating as a pair with an embodiment of email reception (FIG. 10) of the present invention according to an embodiment of the system according to claim 131. The e-mail 3003 stored in the storage device 13 of the transmission client 3001 is transmitted to the reception server 3002. See SMTP (Non-Patent Document 4, Non-Patent Document 5) of the prior art for an example of the configuration of the e-mail 3003. FIG. 31 is a flowchart of an embodiment of the transmission client of the method of claim 113 used by the system of claim 131. Session initialization, sending client initialization (3101). The envelope transmission is performed by issuing the SMTP compliant command: MAIL command and RCPT command (3102), the sender and recipient email addresses are transmitted to the receiving server, and it is checked whether or not the envelope is accepted (3103). The processing up to this point is the same as SMTP. Since the authorization to send the body is determined by the information contained in the header, the information field included in the header is transmitted (3104), and the information field contains information that allows the recipient to determine the specified reception condition and is authorized. Check if it is (3105). In the present invention, this step is referred to as an "INFO command". Based on the received envelope and the information field, the receiving server can collate with the receiving condition specified by the called party and decide whether or not to approve the transmission of the next body. If approved, it issues the traditional DATA command and sends the content (3106). If it is approved and accepted, the transmitted mail is deleted from the storage device 13 in the normal processing of transmission (3107, 3109). If it is not approved, error processing is performed (3108).

Conventional technology SMTP approves the envelope, and then the content transmits it as one block to check the authorization. When only the commands in the mail forwarding protocol hierarchy are used, the reception of the content cannot be rejected until the reception of the entire content is completed. Therefore, even if it can be determined that reception should be rejected depending on the content, useless communication has already occurred. On the other hand, in the content specification (Non-Patent Document 5) that has already been widely used, the information fields such as Subject, Annotation, and Keyword, which have the purpose of having the content of information that can be read by a person, are called. Can describe information that can determine the specified reception conditions. Existing mail communication software also has a means for describing information in the above field. When the caller does not know the reception condition of the callee first, the receiving server side informs the caller of the reception condition of the callee by the automatic reply means. Furthermore, the e-mail address of the caller who satisfied the reception condition only once was recorded, and the second and subsequent transmissions were the callers who satisfied the previous reception condition, judging from the caller address included in the envelope. If you do not check the information field, let the content pass. As described above, the receiving server can determine whether or not to authorize the transmission of the body based on the received envelope and the information received before receiving the body.
It is desirable to separate the information field from the header and send it before the content as the body feed authorization standard, but in order to make the best use of existing communication software, the information field is extracted from the header and sent first. If approved, the content may be sent without changing the conventional content, that is, by the DATA command for transmitting the conventional content (3106). Alternatively, the header may be sent first and the body may be sent once approved.
As described above, the present invention constructs an efficient mail communication system that can prevent unsolicited mail communication by using the subject field that has already been widely accepted.

When the present invention is operated on the server side, the effect of preventing unsolicited communication and reducing the amount of communication in the entire network can be obtained at the same time. When the control permission function is used at the same time, a multifunctional terminal is realized. A payment system consisting of packet communication connection, treatment based on a virtual account, and authentication by the fingerprint recognition function attached to the mobile phone enables strong and convenient cashless business transactions.

Multi-function telephone (3201)
FIG. 32 is a block diagram showing the configuration. Reference numeral 17 is a microphone and a speaker. 33A to 33D show TDB, R1DB, R2DB, R4DB). The presented information is a question presented to the caller. The question is a pre-recorded audio file. In this example, a blank question field indicates that the question does not need to be presented, the given total score for early completion of the question and answer is 3 (see Figures 17, 1707), and the automatic review is saved. The condition is that if the total score is 5, the caller is automatically treated as the second rule execution unit (see FIGS. 13 and 1310).
FIG. 34 is a schematic flowchart of the process, and the basic part is the same as that of FIG. This embodiment can be realized as the party terminal is a telephone, the party terminal function is incorporated in a personal computer, or an external adapter dedicated to the telephone is used. For the first time, a question message is sent to the person who receives a call from a phone number that the called person does not know, and the person responds by pressing the dial button. Judge the response and decide the treatment.
FIG. 35 is a diagram showing an operation example in which the telephone numbers of related parties are automatically treated to be able to make a normal call by automatic examination.
Various functions can be set from the basic nuisance communication prevention function. The instruction file settings in this example can achieve the following functions. Designated reception (treatment ID = 4), designation refusal (treatment ID = 1) for each other party's phone number, application acceptance is required for unknown parties, so the other party will automatically receive the call immediately without ringing. The side is charged the communication fee. This makes it possible to impose economic sanctions on the caller of an incomplete call (one-ring) call from the machine, and since the caller does not receive an accurate reply, the total score is 0, the treatment ID is 0, and the call is rejected. , The number does not remain in the reception history.
However, the person who gave the permission sounds the same ring tone as usual, and is not charged until the recipient receives the call. If you make a mistake in the recipient's name in the first question, you will be immediately rejected. For other matters, pressing 4 sends a second question, prompting you to press the dial buttons 1, 1 for real estate sales, 2 for English conversation, 3 for daily necessities, and 4 for sports equipment. When each selection is made, the ringtone is automatically sounded according to the score, the call is recorded without ringing, the call is disconnected, the caller ID is not automatically memorized even if the call is made, or the caller ID is automatically memorized. To do. When the security code 5678 is pressed, the call is automatically connected without ringing. This allows you to monitor and listen to your babysitters and children at home. For example, parents can choose to talk or listen to their children's mobile phones.

The first question in this example is simple, but it can be complicated to suit your actual usage. For example, if you divide your first and last name into two questions and present them in order (the first is answered correctly and then the second is presented), and you are presented with five options each, you can answer randomly and get the correct answer. The probability of becoming is reduced to 1/25.
The number set in the correct answer column can have various functions depending on the device. For example, you can use it by calling yourself an extension number, and if you set the guidance question to "Please press the extension number", the call of the person who knows the number will be received regardless of the calling number.
If you give treatment to the calling number of the other party's home phone, when the same party makes a call from a public phone, ask the other party to enter the other party's home number as identification in the guidance message, and collate the entered number with the treatment information. The treatment can be confirmed.
The specific method of examining a treatment application depends on the specific configuration of the equipment of the parties concerned. Various methods can be adopted as long as the method is obtained by achieving the object of the examination stage of the present invention. For example, it is conceivable to utilize voice recognition and image recognition.
Some of the existing technology automatic telephone transactions used in banks, etc., provide voice guidance to the caller, and the caller presses a dial button to operate and confirm the customer's identity with a personal identification number. The present invention differs from the fact that the response method differs for each calling number and that the caller does not need to register a personal identification number or the like in advance.
In this example, the electronic secretary accepts the intention of the parties by rules and points, but it is also possible to accept in natural language. For example, "Receive a call from someone who knows my name.", "Receive a solicitation for used car sales." The electronic secretary can listen to these requests, have the user input the missing information, and formulate the necessary rules by using a known rule-based technique (see, for example, Patent Document 11).
The electronic secretary of the present invention can be installed on the telephone exchange and the related service providing server side by a known technique (see, for example, Patent Document 6).
The symbol 21 is an electric lock control unit, and the symbol 22 is an electric lock of the controlled device. When the number 8765 is pressed, a score = 10, treatment ID = 6, an unlocking signal is output, and the front door is unlocked. As the unlocking communication line, a short-range communication means such as infrared rays may be used other than the telephone line.
The present invention differs from the invention shown in Patent Document 21 in that it includes an element called a second rule set in which the determination of communication availability does not depend on the caller ID. Therefore, the caller can be authenticated from the communication content and can be controlled in real time.

Answering machine (3601)
FIG. 36 is a diagram showing a telephone configuration of this embodiment. 37A-C show a data database (GDB) that records TDB, R1DB, and response guidance (presentation information).
This example exemplifies the concept of the present invention, in which all communications are permitted by a plurality of treatments and provide a means of granting permission to a person without permission. This example records a call made by an unknown party and does not receive it directly. This protects the vulnerable, such as the elderly, from fraudulent crimes. It is suitable for users who have a limited communication range, except when using it for unspecified parties such as business. It is also possible to reject all calls from outsiders without registration, and as the usage time accumulates, the treatment setting will be completed naturally, and the purpose can be achieved without undue burden on the parties.
The first expected treatment to be illustrated is absence, and if the identity can be confirmed by the voice of the other party, the call can be made immediately. It is desirable to devise operational convenience such as being able to easily register the number of the person who made the last call with the touch of a button. If you have an important customer, you can register the other party's number in advance.
The caller can be identified by a group. For example, it can be identified by the area code and the communication permission can be given to the hometown number. This example is simple, easy to use, and low in manufacturing cost. It can be implemented on the external adapter dedicated to the telephone, the exchange, and the server side that provides related services.

In the past, when a communication request was made by paying money, it was natural for the recipient to receive it. However, with the development of communication networks, the cost of issuing communication requests is becoming lower and more and more people can access the communication network, so there is no reason to receive communication requests from anyone. .. At the very least, you should be able to reject calls from people who have nothing to do with you. Conversely, except for public services, the caller is usually acquainted with the person he / she wants to talk to in advance and has a business requirement. Therefore, the permission-based communication of the present invention can prevent nuisance communication without sacrificing the conventional communication function.
It differs from the invention shown in Patent Document 12 in that it is possible to make a one-time call with a callee such as a mail-order salesperson without going against the intention of the recipient due to the absence treatment. Having a call refusal treatment is different from the invention shown in Patent Document 34.

Mail reception client system In this embodiment, an electronic secretary is incorporated in the terminal side of the party. It will be commercialized as a PC (personal computer) application (URL: http://www.netinfotech.co.jp, http://www.Emailship.com) and will be sold publicly soon.
FIG. 38 is a block diagram showing the configuration of the third embodiment. In this figure, reference numeral 10 is an ISP server device. Reference numeral 381 is a mail service party terminal. This embodiment is a client of an ISP mail service server, and reference numeral 11 is a processor, which is composed of a CPU and the like, and controls each part, transfers data, performs various operations, temporarily stores data, and the like. Do it. Reference numeral 12 is an input / output control means, which controls data input from a server connected via a communication line and controls data output to the server. Reference numeral 15 is a communication transfer device, which is connected to the ISP. Reference numeral 16 indicates a keyboard and a display unit, and reference numeral 13 is a storage device.
First, such a program is used in the processor 11, for example, from a program for setting treatment, initial expectation treatment, request confirmation question, correct answer (keyword), treatment given to the correct answer on the display unit, an electronic secretary main body program, and the like. It is composed.
Next, data such as an instruction file is stored in the storage device 13. A magnetic storage medium is used as the storage device. 39A-D show TDB, R1DB, R2DB, GDB. Automatically reply to the caller with questions and presentation information. FIG. 40 is a schematic flowchart of the reception process. The basic part is the same as in FIG.

The processor 11 causes the display unit of the terminal 381 to display a question input screen as shown in FIG. 41, and gives the terminal operator a criterion for determining this treatment, that is, a request confirmation question and a correct answer and a treatment given to the correct answer. Prompt to enter (4101). When an email from an unauthorized sender arrives at the server, the presentation information that guides the permission application and the question are automatically replied to the sender, and the answer to the confirmation question is requested to be entered in the subject of the response email during the application guidance. Most of the unsolicited emails are automatically sent by machines.
For example, if you get the correct answer to the confirmation question such as "How many do you add one?", You know that the caller is not a machine but a human being, and the other party automatically sends an email to such a human partner. Unlike the case of a machine, the called party can decide whether or not he / she wants to receive the mail in the future. Of course, there are many machines that can add, but it should not be profitable to automatically create a machine that can understand the problem sentences that each person has issued.
The present invention can achieve the object without opening the main body of the mail. In particular, the amount of communication between the server such as a mobile phone and the billing part of the connection can be significantly reduced. If the correct answer, such as the name of the recipient or a keyword in the category of interest, is detected in the subject or body of the email, the prescribed treatment will be given. In other words, it is possible to implicitly perform the permission application procedure for the convenience of the caller. When searching from the text, it is desirable to use the form resident on the server side of the present invention.
The processor 11 causes the display unit of the terminal 381 to display a screen as shown in FIG. 42, and urges the terminal operator to select the first expected treatment 4202 from the list 4201. FIG. 39A is a treatment set adopted in this example, and the specific realization of the treatment of the application acceptance type is one treatment of "replying the request confirmation question to the sender and refusing to receive it". If necessary, you can add something like "Reply the request confirmation question to the caller and receive only the subject".

The specific realization of the type of treatment that allows some communication is "receive a limited size, save it in a temporary folder, and notify the called party." Furthermore, it is the treatment of "receive" necessary for manual examination. The treatment of "receive and receive treatment" gives the caller the treatment of receiving after receiving. If it is received from an unknown e-mail address, the request confirmation question will be replied to the sender as the first expectation, and the reception will be refused.
In the initial setting of the product of this embodiment, first, after obtaining the confirmation of the parties, the recipients listed in the address book of the existing mail software are given the reception permission treatment (treatment ID = 4) (Fig. 42, 4203), and then. You can enter the reception permission, reception rejection address, and domain name individually at any time, and you can set and change the treatment for each caller. In addition, it is possible to extract the destination address from the mail sent by the parties and set to automatically give the reception permission treatment.
FIGS. 39A to 39D are examples of the set treatment information, and the following functions can be realized at the same time. That is, designated reception (treatment ID = 4) and designation refusal (treatment ID = 1) for each address or domain.
Reject unwanted emails automatically sent by the machine (treatment ID = 2), receive limited emails sent by unrelated people (1 + 1 = 2 answers) and wait for manual treatment examination (treatment) ID = 3), the caller is given the treatment of receiving the mail sent by a person who knows the name of the callee. Treatment ID = 5).
In this embodiment, the presentation information is processed in multiple languages based on the character code information included in the mail header information and the regional information included in the suffix of the domain name of the sender address.
The present invention differs from Patent Document 21 in that it includes an element called a second rule set in which the determination of communication availability does not depend on the caller ID. Therefore, by issuing a password (FIG. 39C, 5678) to the sender, phishing fraud that forges the sender address can be prevented. It is provided with a means for expressing interest to the sender through the presented information (Fig. 39D), and the answer or keyword of the other party can be searched from the subject or the main body, and communication that benefits both parties becomes possible.

Internet videophone and monitoring system In this embodiment, an electronic secretary operating on the server side and a videophone terminal of a party to communicate with the client side via the electronic secretary are completed.
1: FIG. 43 is a block diagram showing the overall configuration. FIG. 44 is a block diagram showing an internal configuration of the first embodiment. In this figure, reference numeral 430 is a server, which is connected to the Internet via a route control device and a telephone line. Reference numerals 431 to 434, ... Are various terminals, and are connected to the Internet in the same manner as the server 430. Here, the terminals 431, 432, ... Have a function of executing an input unit such as a keyboard, a mouse, a camera, a microphone, and a videophone program together with an output unit such as a CRT, an LCD, and a speaker, respectively.
1-1: Server configuration Next, the detailed configuration of the server 430 will be described. FIG. 44 is a block diagram showing the configurations of the server 430 and the terminal. In this figure, reference numeral 11 is a processor, which is composed of a CPU and the like, and controls each part, transfers data, performs various operations, temporarily stores data, and the like. Reference numeral 12 is an input / output control means, which controls data input from a terminal connected via the Internet and controls data output to the terminal. Reference numeral 15 is a communication transfer device, which connects to the Internet. Reference numerals 13 to 14 are storage devices, and the following files are stored and stored, respectively.
First, the storage device 14 stores the main program. Such a main program is used in the processor 11, for example, a program for displaying a treatment application screen on the display unit of a terminal, a treatment examination program for displaying detailed information of a party who sent a treatment application, and a contact between the parties. It consists of a program for displaying the public name of the party who applied for treatment in the book, displaying the status of other parties, starting a videophone program, and displaying an icon to be sent to the other party.

Next, the storage device 13 stores the party master database table and the treatment relationship master database table. The party master stores the party information record. One party information record is composed of party-specific information such as party ID, password, email address, IP address, self-introduction, etc. (see PDDB for another example of party data).
The party ID of this embodiment is automatically assigned by the processor 11 when newly registering to participate in the service, but the identity registration can be executed at this stage. The password, e-mail address, and self-introduction store information that the parties have registered and sent from terminals 431, 432, and so on.
As the IP address, the address of the terminal transmitted when the videophone communication program of the terminals 431, 432, ... Is started is stored. The treatment relationship master stores the treatment information record. One treatment information record is composed of treatment information and treatment application marking information.
When the present invention is operated on the client side, the treatment given to the other party by R1DB is recorded. When operating on the server side, it is desirable to use the highly efficient treatment-related master TRDB (see FIG. 2H) of this embodiment. The treatment information is composed of the caller's own ID, the caller ID to which the callee has given treatment, and the treatment given above. The treatment information and the treatment application marking information are information input from the user interface of the program for displaying the treatment application screen on the display unit of the terminal, and are information transmitted from the terminals 431, 432, ....
2: The operation will be described. Here, the terminals 431, 432, ... Are each connected to the server 430 to perform communication, and all function as terminals of the videophone parties. However, for convenience of explanation, assuming that the terminal 431 is connected to the server 430, the following Give an explanation. When the terminal 431 is connected to the server 430, the processor 11 detects this connection via the input / output control means 12 and controls the terminal 431 according to the main program. FIG. 45 is a flowchart showing the operation of the main program.

2-1: In order to explain the process of creating a party information record, it is assumed that the terminal operator is a new party. Explain the new registration. In step Sa1 shown in FIG. 45, the processor 11 causes the display unit of the terminal 431 to display the main menu screen as shown in FIG. 46, and causes the terminal operator to "log in" in order to use the service. And "new registration" to select the desired process.
On the main menu screen, the mouse cursor MC is displayed, and various operations can be performed by clicking a predetermined place. For example, if the mouse cursor MC is positioned and clicked in the display area of any of the link buttons 4601 and 4602, the processing indicated in the display area is performed. Here, after the mouse cursor MC is positioned in the display area of the link button 4602, the terminal operator performs a click operation (this operation is simply described as a click below) to perform a "new registration" process. select. Then, the processor 11 that has detected this advances the procedure to step Sa2 shown in FIG. 45, and in this step, the terminal operator is prompted to enter the name, e-mail address, and password.
If it is determined that the entered e-mail address is not used by the party master, the processor 11 automatically assigns a user ID based on the entered information, and the user ID is used as the party's public ID. The process of the next step Sa3 is performed. In step Sa3, the processor 11 controls the terminal 431 to display the contact book screen shown in FIG. 47.
In the following steps Sa4 to Sa7, it is possible to return to the contact book screen and the main menu screen at any time by a predetermined operation. By the way, in the case of a newly registered party, no other party is displayed in the contact book on this contact book screen, but for convenience of explanation, a screen in which several other parties already exist will be used for explanation.

First, the addition of a new partner will be described. In order to communicate with the other party, the present invention first applies for treatment to the other party. Adding a new partner is a specific procedure for applying for treatment. On the screen for adding a new partner, the treatment to be given to the partner is specified at the same time as the treatment application to the partner.
Prompt the terminal operator to add members. The terminal operator clicks the link button 4701. Then, the processor 11 performs the process of the next step Sa4. In step Sa4, the processor 11 controls the terminal 431 to display the member addition screen shown in FIG. 48, and prompts the terminal operator to input the public ID information.
Here, an example of prior application is shown. The public ID is published by the parties themselves on the bulletin board system on the Internet or chat on the communication network, or is directly taught by the other party. On the addition screen of this member, the ID and self-introduction input boxes 4801 and 4802 are shown, and regarding the information disclosure treatment given to the other party, "Publish your email address to this member", "Publish your private email address", "Publish your private email address", " Check buttons 4803-4807 corresponding to "Publish homepage address", "Publish profile address", and "Publish your status to this member" are shown, and correspond to "Call permission" regarding the incoming call permission treatment given to the other party. The selection box 4808 is shown, and the terminal operator is prompted to input and select. The terminal operator inputs the other party's public ID into the 200 and the "identification ID" box, and self-introduction is ". Enter "..." in the "Self-introduction" box, and then click the execute link button 4810.
In the treatment set of this embodiment, there are three types of incoming call permission for the incoming call answering method of the videophone: "automatic reception refusal", "inquiry every time", and "automatic reception". "Automatic reception" is a control permission treatment. The caller-side communication device: Instructs the videophone terminal that the caller has the control right, and can communicate with the caller without the intervention of the callee. Of course, the terminal needs to be in a state where it can always receive.

Regarding the scope of information disclosure to the other party, "Publish your email address to this member", "Publish your private email address", "Publish your homepage address", "Publish your profile address", "Publish your status to this member" There are two types of treatment application, "permitting treatment application" and "rejecting treatment application", and the default initial expected treatment is "inquiry every time", and all information must be disclosed. , "Permission to apply for treatment". This embodiment does not include the function of changing the initial expected treatment.
Now, by such an operation, the procedure performs the next execution process of the treatment application (see FIG. 49). Here, the terminal operator is the party a, the other party to communicate with is the party b, and the public ID of the party b is 200. The processor 11 first searches the already created party master to see if party a already exists in party b's caller list in order to process the treatment application based on the treatment given by party b to party a. Check by (4901), and if it exists, check the treatment given to a by the party b regarding the treatment application (4902), and if the treatment given is "rejection of treatment application", the display unit of the terminal 431 After controlling to display "member addition refused" (Sa8), the procedure is returned to step Sa3 to display the contact book screen again, and the party a does not exist in the caller list of the party b and is given. If the treatment is not "rejection of treatment application", the default initial expected treatment is given to the party a, a new treatment information record consisting of the IDs of b and a, the initial expected treatment, and the treatment application marking information is created, and the treatment relationship is established. Store in the master and return to the contact book screen.
In step Sa3, the processor 11 controls the terminal 431 to display the contact book screen shown in FIG. 47. Prompt the terminal operator to confirm personal settings. The terminal operator clicks the link button 4702. Then, the processor 11 performs the process of the next step Sa7.

In step Sa7, the processor 11 controls the terminal 431 to display the personal setting screen of the party shown in FIG. 50, displays the public ID 5001 to the terminal operator, and writes the public ID display area. It is controlled to be prohibited, and the personal information 5002 is controlled so that it can be changed.
2-2: In login and 2-1 it is assumed that the operator of the terminal 431 is the party a and the treatment application is completed to the party b. Here, it is assumed that the existing party b is operating the terminal 432.
For convenience of explanation, the screens displayed on the terminal 431 in the description of 2-1 and FIGS. 46 and 47 will continue to be used for the explanation as the screens displayed on the terminal 432 of the party b. Assuming that the terminal 432 is connected to the server 430, the following description will be given. When the terminal 432 is connected to the server 430, the processor 11 detects this connection via the input / output control means 12 and controls the terminal 432 according to the main program. FIG. 51 is a flowchart showing the login processing operation of the main program.
By the way, in step Sa1 shown in FIG. 45, the processor 11 causes the display unit of the terminal 432 to display the main menu screen as shown in FIG. 46, so that the terminal operator can use the service. Prompt to select the desired process from "Login" and "New registration". Here, the terminal operator inputs the e-mail address and password in the "e-mail address" input box 4603 and the "password" input box 4604, clicks the link button 4601, and selects the "login" process. Then, the processor 11 that has detected this checks by searching the party master that has already been created based on the input e-mail address and password (FIGS. 51 and 5101).

Here, if the processor 11 determines that the e-mail address and password are incorrect, the procedure proceeds to step Sa7, and the display unit of the terminal 432 is controlled to display "the e-mail address or password is incorrect". After that, the procedure is returned to step Sa1 to display the main menu screen again. On the other hand, if the processor 11 determines that the input e-mail address and password are correct, the processor 11 performs the process of the next step Sa3.
In step Sa3, the processor 11 controls the terminal 432 to display the contact book screen shown in FIG. 47, extracts the party who newly applied for treatment from the treatment relationship master, notifies the party b, and the party b. The party a who applied for treatment is displayed in green and the public name of party a (4705), and the state is disclosed in color and icon according to the information disclosure treatment given to party b by the other party (4705). 4706), the mail composition icon is displayed for the party whose email address is disclosed (4703), the link icon is displayed for the party whose profile address is disclosed (4704), and the detailed information of the corresponding party is displayed by the pencil icon. To control.
When the link button (4707) is clicked, the processor 11 performs the process of the next step Sa5. In step Sa5, the processor 11 controls the terminal 432 to display the item edit screen of the friend list shown in FIG. 52, performs the treatment examination and the treatment change on this screen, and sends the treatment application to the party b. The detailed information 5203 of the party a is displayed, and the treatment 5201 given to the party a is controlled to be edited. By this, the party b examines the treatment application of the party a, decides the treatment given to the party a, and decides the treatment to be given to the party a. Prompt to select. In addition to examining the treatment application, the treatment given to the existing partner can be changed using this friend list item edit screen.

Now, the party b selects each treatment content and clicks the link button 5204. Then, the processor 11 updates the treatment information record based on the selected treatment content and stores it in the treatment relationship master. When the relationship with the other party is cut off, the link button 5202 is clicked to execute the deletion of the other party. Then, the processor 11 performs the process of step Sa6. In step Sa6, the processor 11 controls the terminal 432 to display the treatment application qualification designation screen shown in FIG. 53, and if "treatment application refusal" is selected for the treatment application qualification 5301, the other party will contact the terminal 432 in the future. Cut off the contact. Party b clicks the link button update 5302. Then, the processor 11 updates the treatment information record based on the selected treatment content and stores it in the treatment relationship master.
This example illustrates the implementation of the anonymous communication function portion of the present invention. As long as the parties do not disclose their identities themselves, it is possible to easily realize anonymous communication that can use all communication functions by using a normal number (ID) while maintaining anonymity. The server here is not a dedicated central controller that removes the identity from the communication content, and there is no need to create a special communication channel. In order to prevent crime, it is sufficient to firmly register the identity at the stage of acquiring the ID.
2-3: From the videophone communication, the processing explained in 2-1 and 2-2, it is assumed that the party a and the party b have established a treatment relationship, and the terminal 431 of the party a and the terminal 432 of the party b are connected to the server 430. Suppose it was done. FIG. 54 is a flowchart showing the operation of the videophone communication program. In step Sa3, the processor 11 controls to display the contact book screen shown in FIG. 47, and the party b clicks the link button “Launch program” (4708). Then, the processor 11 activates the videophone communication program on the terminal of the party b, and passes "-" as an activation parameter. When the videophone communication program is started, the IP address of the own terminal is sent to the server (5401), and then it is determined whether the activation parameter is an IP address (5402). If it is determined that the parameter is not an IP address, The connection standby screen is displayed and the connection standby is performed (Sb3: connection standby screen, FIG. 55). Check the waiting connection request (5405). The processor 11 updates the information record of the party b based on the IP address information sent by the terminal videophone communication program of the party b and stores it in the party master.

Then, the state display icon (FIGS. 47, 4709) of the party b is displayed on the camera icon on the contact book screen of the party a. Party a clicks on the camera icon 4709 of party b. Then, the processor 11 extracts the IP address of the party b from the party master, activates the videophone communication program of the terminal 431 of the party a, passes the IP address as a parameter (5403), and notifies the caller ID. Request a connection to the destination IP address, that is, make a call to party b and receive the response of the callee b's videophone communication program (5404).
When the connection request is received, the videophone communication program of the called party b inquires the processor 11 using the caller ID as an inquiry parameter, and the processor 11 that receives the inquiry receives the treatment information from the treatment relationship master of the server 430 based on the caller ID. (5406), and the treatment given to the calling party a is returned to the videophone communication program as a result of the inquiry.
When the treatment given to the caller party a is "automatic reception" (5407, YES), the electronic secretary instructs the callee side communication device TV telephone terminal that the caller has control, and receives this. The videophone communication program of the called party b does not ring the bell, does not display the input request screen and does not go through the input request, permits the communication request, sends a connection approval response, automatically connects, and acquires it by the camera. When the other party acquires the image signal, that is, sends the image signal and simultaneously receives the image signal sent by the other party, it is displayed on the screen and the videophone communication in progress screen (Sb2: videophone communication in progress screen, FIG. 56) is displayed. Let me.
On the other hand, the videophone communication program of the calling party a receives an approval response, and after 5404, 5409 steps, the received image signal is displayed on the screen during videophone communication, and communication or monitoring is performed (Sb2). If the treatment given to the calling party a is "inquiry every time" (Fig. 54, 5408, YES), the videophone communication program of the called party b rings the bell and the input request screen (Sb4: approval inquiry screen: "party". "I got a call from a. Do you want to receive a call?" Is displayed) and asks the party b of the called party whether or not to connect.

At the same time, the caller's videophone communication program displays the other party's approval waiting screen (Sb1: Approval waiting screen: "Waiting for the other party's approval ..." is displayed). When the callee b approves the connection (FIGS. 54, 5410, YES), the videophone communication program displays the videophone communication in progress screen and responds to the videophone communication program of the calling party a that the connection is approved. The videophone communication program running on the terminal of the calling party a determines this response (5409, YES), displays the videophone communication in progress screen, and communicates.
When the called party b does not approve the connection (FIGS. 54, 5410, NO), the videophone communication program displays the connection waiting (status display: 5501) screen and refuses to connect to the videophone communication program of the calling party a. Then, the videophone communication program running on the terminal of the calling party a judges this response (5409, NO), and the terminal display of the party a "access is denied" ( After displaying the connection result as shown in FIGS. 55, 5502, 54, and 5411), the connection waiting screen is displayed and the connection standby is performed (Sb3: connection waiting screen, FIG. 55). When the treatment given to the calling party a is "automatic reception refusal" (FIG. 54, 5408, NO), the same processing as when the called party b does not approve the connection is performed.
3: Outline explanation of the flow Next, FIG. 57 shows a flow of establishing a treatment relationship with the called party via the public ID. In order to receive the communication service of the present invention, the party a first logs in to the server 5702 via the Internet using the terminal 5701, and uses the public ID: 200 published by the other party b to use the other party. A treatment application will be submitted to b to express his / her intention to communicate (1).
The party a who applies for treatment inputs the public ID: 200 of the called party b (FIGS. 48,4801), and at the same time, the party a himself gives the party b "inquiry every time" (4808) treatment. The server saves the treatment "every inquiry" given by the party a to the designated party b in the treatment relationship master (5703), and if the party a does not exist in the caller list of the party b, the first expected treatment of the party b "reception automatic""Rejection" is given to the party a (5704), and in this state, the party b can transmit and communicate with the party a. Cannot communicate in the opposite direction. The called party takes the initiative. Notify party a that the server has accepted the application (3), (4). When the party b logs in to the server using the terminal 5705, the party who newly applied for the treatment is extracted from the treatment relationship master and notified to the party b (5) to (8). The party a who applied for treatment is displayed in green and the public name of party a (4705) in the book, and the state is disclosed in color and icon according to the information disclosure treatment given to party b by the other party (4706). ).

FIG. 52 displays the detailed information of the party a who sent the treatment application to the party b. Party b examines the application for treatment and decides the treatment to be given to partner a (Fig. 52, 5201). The treatment "every inquiry" given to the other party a is replaced with the treatment "automatic reception refusal" stored in the server (10). As a result, the parties a and b can mutually send a connection request to the other party of the videophone.
In this embodiment, control permission treatment can be given to any one or more callers, the caller can directly control the receiving side equipment, the receiving side TV communication program can be started, and the receiving side and data can be started. Can be sent and received. Instead of controlling the camera of the videophone of this embodiment, it can be performed to control the GPS receiver of the mobile phone. The point that any caller who has been given control permission treatment can directly acquire and display the position information of the receiver is shown in Patent Document 9 in which only a fixed position information center can acquire the position information at the product design stage. It is different from the conventional technology. Since there is no need for a third-party location information center, a remarkable effect can be obtained that significantly reduces the operating costs of hardware equipment and users. A model having a means for displaying the position information of its own device on a mobile phone can acquire the original data for display from the other party's mobile phone and display it by the display means of its own device.

The mail server system FIG. 58 is a block diagram showing the configuration of the present embodiment, and illustrates that the electronic secretary 5801 of the present invention is operated on the mail server side of the ISP 5812. The electronic secretary is independent of the existing mail server and forwards to the conventional mail server 5802 after receiving the permitted mail. The transmission of mail from the ISP5812 client is processed directly via the electronic secretary.
When handling the business contact address of a public institution that provides services to unspecified callers or a product sales company, the electronic secretary 5801 communicates in advance by describing the business scope or keywords related to the service in the guidance information. When a request to send an e-mail without permission treatment arrives, the guidance information is presented (replied) to the sender if a specific keyword is not detected from the header of the e-mail according to the second rule, and the e-mail reception is refused.
For example, the inquiry e-mail address related to the registration of applicants of the Japan Patent Office is PA1670@jpo.go.jp (abbreviated by "F" in Fig. 58), and the guidance information (Fig. 60) of this address is "This address is Contact information for registration of applicants, etc., Application Support Division, Japan Patent Office. If you are using this service, please write <Inquiries regarding applicant registration> in the subject line of the email and resend it. " The electronic secretary was set to temporarily receive an e-mail containing "inquiries regarding applicant registration" in the set (Fig. 61), but not to give treatment to the caller (ID = 5, Fig. 59, Fig. 61). Consider the case.

The e-mail address of the applicant terminal 5804 is fe1@netinfotech.co.jp (“A” in FIG. 58). The applicant obtains the inquiry e-mail address from the JPO homepage, and preferably the guidance information is also posted on the homepage. Then, the applicant wrote the character string "Inquiries about applicant registration, registration method" in the subject line, and sent an email to the address PA1670@jpo.go.jp (F) (Fig. 58, (a1) To: F, application. Person registration relationship ...) is sent. The electronic secretary is permitted to receive the mail according to the second rule and is forwarded to the mail server 5802. The mail is put in F's mailbox. The reply (a2) from the Application Support Division will be sent via the electronic secretary.
When the applicant sends an e-mail without knowing the keyword for the first time, the electronic secretary will immediately reply automatically and inform the applicant of the guidance information. The applicant can receive the guidance information in a short time even outside the business hours of the JPO. The automatic reply route of the guidance information is: applicant → transmission server 5803 → reception server 5801 → transmission server 5803 → applicant. In the environment of the actual ADSL line, URL: mail.net infotech.co.jp and mail.yahoo.co.jp server, we tested the transmission and reception of sender → sender server → receiver server → receiver. It took less than 5 seconds. Therefore, it can be resent to the applicant according to the guidance with almost no time delay.
When the terminal 5805 that sends an unsolicited e-mail using a robot sends an e-mail (Fig. 58, (b1) To: F, oooxxx ...) to the application support section for product sales, the electronic secretary informs the guidance information. Reject reception after automatic reply (b2). Normally, the robot cannot understand the guidance information and retransmit it according to the guidance.
If a human intentionally follows the guidance information and an email attack occurs, communication rejection can be set manually.
When the mail bomb attacker 5806, which frequently sends a large amount of mail using a robot, sends a mail (Fig. 58, (c1) To: F, oooxxx ...) to the application support section, the electronic secretary provides guidance information. Reject reception after automatic reply (c2) to notify. When the electronic secretary using the method according to claim 9 (see FIG. 14) automatically replies, the third rule is set based on the sender's e-mail address, the reception time, and the predetermined reception refusal treatment (ID = 0). Create and add to the third rule set for attack prevention (Fig. 63). The constants used in this embodiment are shown in FIG. Third rule condition section for attack prevention The predetermined time is set to 60 minutes, and the predetermined treatment does not reply and the reception is rejected. Then, if the attacker's second email (c3) is sent within 60 minutes, the reception refusal treatment without reply is given (Figs. 14, 1407), and subsequent attacks are rejected immediately after seeing the email envelope. ..

A preferred modification of the present invention adds the number of emails that reach the condition part of the third rule. For example, if the attacker's fifth email arrives within 60 minutes, the communication request is processed based on the treatment.
Since the electronic secretary determines the sender based on the envelope or header of the email (claim 5), it is not necessary to receive the main body of the email. The traffic on the public network can be significantly reduced.
In the prior art shown in Patent Document 13, when the sender is unknown, an email is temporarily received, a confirmation email created by the server is automatically returned to the sender, and when confirmed, the received email is passed to the recipient. As described above, the present invention does not generate a large amount of useless communication in the public network, there is no concern that the communication bandwidth is compressed or the server storage area is punctured by an email attack, and the automatic reply is automatically replied by the mechanism of the third rule set for attack prevention. It differs from the above-mentioned prior art in that the subjective intention of each individual recipient can be reflected without the possibility that the mail itself becomes a large number of new spam mails. Further, the present invention has a feature that when the operation is performed on the client side such as a mobile phone, the recipient who is disturbed by the junk mail is not charged further unreasonably.
As described above, it is possible to completely reject wrong e-mails, unsolicited e-mails sent by machines, and attack e-mails while guaranteeing normal business execution.
A preferred modification of the present invention is to store the IP address of the abnormal sender and reject the TCP connection by the IP address.
When the sender uses a conventional mail transmission server (SMTP client), the electronic secretary determines the identity of the sender based on the header of the mail, and the underlying delivery system is used without receiving the body of the mail. Communication is forcibly stopped by closing the connection (claim 6, FIG. 11). Since the sending server whose communication is forcibly stopped will retry, the forcibly stopped state is recorded using a dedicated third rule set, and when the sending server retries, the caller ID in which the electronic secretary is recorded is recorded. Judges the other party and cancels communication normally. FIG. 65 shows the dedicated third rule set (R3DB2). Please note that data different from the attack prevention third rule set (R3DB1) shown in FIG. 63 is recorded.

When the mail transmission server uses the transmission system using claims 99 and 100 instead of the conventional technique, the information field included in the header is included because the authorization to transmit the body is determined by the information contained in the header. (Fig. 31, 3104), the electronic secretary on the receiving server side receives the information field containing the subject, and then applies the second rule set (Fig. 10, 1006, 1007, 1009). It is determined whether or not to approve the transmission, that is, when the communication is permitted, the transmission side is notified and the communication is continued (FIGS. 31, 3106). By using the inventions of claims 99 and 100 and the electronic secretary at the same time, the amount of unnecessary communication is further reduced, and it is not necessary to forcibly stop the communication. Communication control processing becomes clear.
When an e-mail is sent from an electronic secretary, unsolicited communication can be blocked from the source (see claim 26, FIG. 20). D: E-mail bomb attacker (5807) sends an e-mail (Fig. 58, (d1) To: A, oooxxx ...) to A: Applicant, and A uses the electronic secretary 5803 operated on the server side. Suppose you are. Since the electronic secretary 5803 receives (d1) and the sender D does not have permission to receive it, an automatic reply (d2) notifying the applicant's guidance information is sent to the sender to reject the reception. The electronic secretary 5801 that sent (d1) receives the reception refusal treatment from 5803, creates a fifth rule, adds it to the fifth rule set R5DB (FIG. 66), and saves it in the instruction file of the caller D. If D further transmits (d3) within the time (one day) set in the fifth rule condition section, the electronic secretary 5801 applies the fifth rule and rejects the transmission (FIGS. 20, 2004). .. The unsolicited communication as described above is rejected by the first transmitting client before entering the public network 5813. For example, if the caller uses Microsoft Outlook, when he presses the submit button, Outlook immediately reports that it is undeliverable.

While the system is in operation, the third and fifth rules that have passed the predetermined time of the condition section from the created time are deleted.
Companies and organizations that provide services to specific callers have business communications that communicate only to a limited extent. The conventional public telecommunications network can communicate cheaply and quickly. However, since it has an open nature for the public, it does not apply to the above-mentioned business. The present invention provides a closed communication effect for professionals in public telecommunications networks.
For example, the Japan Patent Office currently handles inquiries about the status of patent examinations only by mail. The present invention proposes work by the following e-mail.
The e-mail destination of the inquiry is E (Fig. 58, 5808). In the guidance information of E, "This is the contact information for the status of patent examination start. If you are a first-time user, please enter" Application number: Reference number "in the subject line of the email and resend. Example:" Japanese Patent Application 2003 -70953: 0302-001 ””, and when an e-mail arrives, according to the second rule, the sender who accurately stated the application number and reference number is given communication permission treatment to receive the e-mail, and the given treatment is given. Save to the first rule set.
The "application number: reference number" is the role of the password for obtaining communication permission for the first time. Instead, a password determined by the Patent Office or the applicant can be used. The password notification will be included in the application delivery document.
The predetermined recording conditions of claims 101 and 102 are included in the treatment ID. If the treatment ID determined by the second rule is 6, the treatment is saved. That is, the password is not checked for the second and subsequent emails of the sender.
When the business system has many communication personnel and changes dynamically, it is difficult for some people to maintain the instruction file. This problem is solved by the instruction file input component according to claims 131, 132.

FIG. 67 illustrates the layout of the user interface of the instruction file input component.
FIG. 68 shows data to be passed to the instruction file input component according to the user interface.
Electronic Secretary 5801 runs on a Microsoft Windows®-based computer. (Who) Inputs information with little fluctuation such as constants and guidance information into the instruction file on the web server through the Internet.
Input component moves in Microsoft Windows (registered trademark) -based computer, terminal 5810 extracts the application number and reference number from the data 5811 of Patent Office case in existing pending, passed to the component. Alternatively, at the time of saving in the business data for determining the application number, the data is input to the instruction file by calling the component from the business system. Preferably, the input component stores the authorized caller ID and the related information of the second rule set, and deletes the related information from the instruction file after the application case is no longer pending at the Patent Office.
As described above, even if there are many people involved and it changes dynamically, it is possible to create a communication environment like a dedicated communication network that is secure only for those involved, without having to maintain it dynamically by hand. ..
The electronic secretary 5801 sends an e-mail directly to the Internet 5813, but an e-mail other than the automatic reply may be forwarded via a conventional mail server 5802, for example, 5808 to 5801 to 5802 to 5813 ( Not shown in FIG. 58). Then, since the mail forwarding (5801 to 5802) inside the ISP is fast, the management of the queue of sent mail can be omitted for the electronic secretary, and the functions such as the queue management of the conventional mail server can be fully utilized.
You can use a traditional mail server, such as Sendmail, which runs on a Unix®-based computer.
The present invention may be used as a component of a mail server.

Embodiment, electronic payment system.
FIG. 69 is a block diagram showing a method and a system related to electronic payment.
[Field] Related to a system that enables cashless payments during commercial transactions. In particular, the present invention relates to an electronic payment server, an electronic payment system, an electronic payment method and a program capable of making an immediate payment using a communication terminal such as a mobile phone.
[Background] There is a credit card and debit card (shopping with a cash card) payment system. There are many services for Internet business (e-business) and mobile communication devices such as mobile phones and PHS. However, card data can easily be stolen. It is insecure to enter the PIN when shopping with a debit card, and the PIN can be easily stolen from the movement of the finger. If the terminal is crafted or the line is intercepted, the information to withdraw money from the account can be easily stolen. For this reason, damage is caused by counterfeit cash cards and stolen PINs. Patent Documents 30 and 31 disclose a technique for opening a dedicated account that does not cause a large amount of damage. However, deposit and withdrawal work is required between the ordinary account and the dedicated account, and the liquidity of the ordinary account funds is impaired.
[Issue] A payment method / system that is convenient, secure without causing large damage, and has liquidity of funds.

[Means] To promote electronic payment, any type of financial institution or payment center (hereinafter also referred to as "bank") account (for example, debit card, credit card) owner (hereinafter also referred to as "buyer") and seller (hereinafter also referred to as "buyer") In an electronic payment system and method for processing commercial payments between FIGS. 69,6902), the buyer (Fig. 69,6901) reserves reservation information (Fig. 69) to reserve an electronic payment in order to pay the planned purchase by electronic payment. , A) is sent to the bank (Fig. 69,6903) and the identification ID (Fig. 69, B) is used to purchase the goods (Fig. 69, G).
Table 1 shows a simple example of the reservation information, data, and operation information used in the computer of the bank.

The terms used in this specification are defined as follows.
The "communication ID" means a communication destination when confirming a payment request with the buyer. For example, a mobile phone number, a computer communication address, etc. correspond to this.
"Identification ID" means a user identifier associated with a buyer's bank account. For example, a telephone number, a vehicle identification number, etc. correspond to this.
"Virtual Account" means an assumed account for payment to a planned payee. For example, a railroad, a highway, an automated teller machine (ATM) withdrawal, shopping, an internet store, etc., is an assumed account for paying to a specific seller, institution, or a group of sellers.
The "balance upper limit" means a value that specifies the balance of the virtual account. By making a reservation, the balance of the virtual account is set to the maximum balance.
"Confirmation-free limit" means a payment limit at which confirmation may be omitted.
The "cumulative limit amount that does not require confirmation" means the standard amount that must be confirmed. Omission of confirmation is a cumulative method, and when the cumulative amount of payment without confirmation exceeds the standard amount (hereinafter referred to as "cumulative excess"), confirmation is performed, the cumulative amount is set to zero, and the cumulative amount is accumulated again. do.
"Balance notification amount" means the amount that the balance is low and it is better to make a reservation.
The "automatic recovery days" means the shortest elapsed days for automatically recovering the balance to the maximum balance amount.
The “necessity of confirmation of payment reservation” means a flag that specifies whether or not to reserve the payment request generated at the exit gate to the user when the holder of the identification ID medium passes through the entrance gate of the pay area.

"Confirmation Information" means information used to confirm a payment request. Corresponds to the PIN code of the virtual account.
The information shown in the above terms in Table 1, the balance notification destination, and the password are reservation information.
"Balance" means the balance of a virtual account.
"Communication confirmation" means one type of treatment of the control permission treatment provided. See FIG. 70 for the treatment ID.
The "operation information" means the information to be input to the authentication program activated by the communication confirmation treatment.
Table 1 shows the settlement reservation confirmation necessity flag that is not used for the virtual account with "-".
The seller generates a settlement request (FIG. 69, C) requesting the settlement of the usage amount and sends it to the bank to approve the settlement request. The bank identifies the virtual account from the seller identifier and the like included in the settlement request, and when the balance and the bank account balance (hereinafter referred to as "total balance") are sufficient, the bank confirms the settlement request with the buyer. Present the confirmation request (Fig. 69, D) to the buyer. The buyer confirms the payment request by presenting the confirmation information (Fig. 69, E) to the bank. The bank sends the approval (Fig. 69, F) to the seller and makes the payment only after it has been confirmed by the buyer.
The virtual account is specified by the method specified by the buyer, such as the industry code, seller name, and product type. The bank provides the buyer with available information, such as the seller's identifier, and lets the buyer choose to associate it with a virtual account.
For the data structure and the like related to the settlement process of the present invention, refer to known techniques, for example, Patent Documents 27 to 29.
Unlike conventional dedicated accounts, deposits (frames that cannot be freely withdrawn from the entire account balance), and prepaid cards, virtual accounts can freely withdraw the total balance from a bank account. FIG. 73 schematically shows the balances of the bank account opened by the account owner and the virtual account reserved. The balance of the virtual account may exceed the total balance. The amount that can be settled is less than or equal to both the balance and the total balance. Virtual accounts have the effect of maintaining the liquidity of funds while maintaining the security of payments. If you deposit too much into multiple dedicated accounts, there is no inconvenience that you cannot easily use the funds for other purposes.

The confirmation request asks the buyer to confirm the settlement request, including the cause of the claim and the amount.
Banks are required to process promptly. You may operate your own payment center that acts as a bank.
Any information communication means can be used. Any means such as telephone, e-mail, or the Internet that can achieve the purpose of the present embodiment may be used. A communication means that is always connected to the network may be used. For example, it may be through the mobile Internet Web or chat-like interaction.
The buyer may make a call and obtain a confirmation request from the bank. The electronic secretary analyzes the communication request arriving from the inside and implements the communication confirmation treatment for the communication request for confirming the payment request. For example, when a call to a bank's electronic payment telephone number or an access to a Web page that provides an electronic payment service identified by a URL is detected, an authentication program is activated.
Confirmation criteria may be included in the reservation information. If the confirmation criteria included in the reservation information is satisfied by the data included in the settlement request, the bank may approve the settlement request by omitting the transmission and reception of the confirmation request and the confirmation information. Examples of such confirmation criteria include, but are not limited, seller identifiers, payment limits, settlement dates, settlement times, or combinations thereof, or other criteria that the buyer may find useful.
The bank may confirm the payment request with the buyer through the seller communication module, for example, the cashier terminal. You may choose to send the confirmation request to both the buying and selling devices. Alternatively, you may request confirmation by e-mail and confirm on the Web.
As the identification ID recording medium, any means suitable for the seller's device may be used. For example, display a barcode on a mobile display. Short-range communication means such as a magnetic card, ID tag, IC card, and infrared rays may be used. The identification ID may be manually entered into the seller's device. Furthermore, you may choose to display the usage history, balance, total balance, etc. on the device of the store or print it on the receipt.

The medium on which the identification ID is recorded can be duplicated and used by a family member or the like. For example, a child can buy juice at a convenience store, present a card with a barcode with an identification ID recorded to the clerk for payment, and a parent can confirm the payment request by mobile phone at home. If the medium is unexpectedly duplicated or dropped, unauthorized use can be easily detected and can be abolished.
All withdrawals can be used for confirmation from the user's bank account. For example, when withdrawing cash from an ATM, the ATM can be regarded as the seller (Fig. 69,6902). The user inputs the account number or unique ID into the ATM through a medium such as a magnetic card, inputs the amount, and the bank withdraws only after it is confirmed that the withdrawal has been made through the user (buyer) communication module. Communication may be confirmed by adding conventional cash card authentication at an ATM.
Furthermore, the bank generates a transaction code for each transaction, transfers it to the mobile phone, inputs the transaction code into the ATM using short-range communication means, collates it, and operates the authentication program with a fingerprint, so that only the person himself / herself can operate it. You can prevent it from trading.
The balance is the payment limit by electronic payment from the virtual account, and the payment deducts the payment amount from the balance. If the balance is insufficient, the settlement request is denied. The amount within the balance can be used with confirmation information different from the PIN. The balance is the maximum loss amount when the identification ID, confirmation information, and the buyer communication device are stolen at the same time.
Immediately notify and confirm attempted payments that exceed the confirmation-free limit. The confirmation-free limit is a cash-like amount that can be used only with the identification ID. If you want to deny a payment request may be frozen the virtual account to disable the confirmation information.
The payment amount without confirmation is accumulated in the cumulative amount, and when a settlement request is made to exceed the confirmation-free cumulative limit, confirmation is always performed, and then the accumulated amount is reset to zero and then accumulated. You can check the payment of a large amount. The confirmation-free cumulative limit is the maximum loss amount when the identification ID and confirmation information are stolen at the same time.

When the balance decreases below the balance notification amount, a notification to that effect is sent to the specified balance notification destination. Furthermore, when certain conditions are met, the balance is automatically restored to the maximum balance (automatic recovery). For example, if the condition that the number of days for automatic recovery has passed since the last reservation or automatic recovery is satisfied, automatic recovery is performed.
The confirmation information has different properties from the authentication information such as the personal identification number. It can be used according to the importance of payment and the usage environment. When using the virtual account for payment in a public environment, it is better to use confirmation information different from the PIN. You may use the same code as your PIN for the confirmation information of the virtual account for the environment that can be safely entered such as in the ATM corner.
The term "communication confirmation" means to call the owner's attention with a ringtone or vibration in response to an arriving communication request, receive the information and present it visually or audibly, and automatically activate the authentication program. Including doing. The authentication program includes a process of collating with the registered operation information based on the input operation information and transmitting the pre-registered registration information to the outside (bank) only when they match. The operation information includes those selected from the group consisting of human physical characteristics (biological information) such as simple button operations, approval codes, voices, passwords, and fingerprints.
Confirmation information is used as the registration information.
If necessary, a plurality of communication confirmation treatments as shown in FIG. 70 can be provided.
Reservations are made via the Internet, telephone, bank counter equipment, etc. based on the identification ID or account number and PIN. Only the window device may be reserved.

Preferably, Ru is used a disposable password (OTP) to the personal identification number (authentication information). Since a different password is used for each communication, communication interception damage can be prevented. For example, the authentication program has a function to realize OTP. Reservations can be made temporarily using public telephones, and a daily usage limit may be set to prevent line eavesdropping damage. Further, OTP may be used for confirmation information.
Preferably, the predetermined virtual account is activated (a state in which payment can be approved) through personal authentication. For example, access the instruction file and give the bank communication confirmation treatment. Alternatively, a predetermined virtual account enable / disable flag is set in the instruction file, and if the flag is set to invalid, the communication confirmation treatment rejects the communication.
The personal authentication uses the personal authentication means attached to the communication device. The buyer registers the personal identification information in the device in advance, and when the personal authentication means is activated, the device identifies the personal identification to the operator. Prompt to enter the information, collate the entered information with the registered personal identification information, and if the collation result matches (authentication success), allow the next operation. The personal identification information includes biological information such as a fingerprint, a password, and the like.
Preferably, after the predetermined virtual account is activated and a predetermined time, for example, 4 hours has passed, the virtual account is invalidated (a state in which payment cannot be approved).
[effect]
If you want the maximum degree of security, before you go shopping, make a reservation for the balance to the planned usage amount, the confirmation-free limit to zero, the communication destination to the mobile phone number, and perform the confirmation operation with your fingerprint.
By making a reservation with the store for the communication destination to remember the identification ID and confirmation information, and manually inputting the identification ID and confirmation information at the store, payment can be made only by memory.

Do not use your PIN during input operations and communications during daily payments. You can use your PIN safely when making a reservation. You can avoid using your PIN at all in your daily life.
You can freely control the outflow rate of money for each purpose from your account, there is no possibility of high damage of card forgery exceeding the outflow rate, and if it is within the planned outflow rate range, there is no need to make a reservation by automatic recovery, and household planning Increases sex.
Detailed explanation Details of the conventional technology used (communication software, command transmission, program execution, IC card, OTP, etc.) will be omitted.
70 and 71 show TDB and R1DB of an embodiment of a mobile telephone having the electronic payment function of the present invention. Block diagram showing the configuration Basically the same as FIG. 26. The R1DB is an example of what is shown in FIG. 2B. Use the calling number for easy explanation. As in the fourth embodiment, communication means such as constant Internet connection and packet communication can be used, and the caller can be identified by an ID such as an e-mail address.
FIG. 74 is a flow chart of transaction processing in the virtual account schematic diagram shown in FIG. 73. FIG. 75 is a flow chart of the approval process shown in FIG. 74.
Next, I will explain the reservation of the virtual account "shopping". Communication ID "090-1234-5678, store", identification ID "045-1234-5678", confirmation information "456", and other reservation information shown in Table 1 are transmitted. The confirmation information and the buyer's fingerprint shown in Table 1 are stored in the instruction file.
The communication ID means that the confirmation request is transmitted to both the mobile phone and the terminal of the store. A barcode recording a home telephone number as an identification ID is attached to the back side of the mobile phone.

The seller reads the identification ID with a bar code reader such as a cash register terminal and sends the identification ID, the seller account number, the store name, the billing amount (A), etc. to the bank to request payment (Fig. 74,7401). If the buyer forgets to carry it, manually enter the home number into the cashier terminal.
The bank searches for the account number from the identification ID, for example, if the initial payment amount A is 500 yen and the total balance (B) is 200,000 yen, B is sufficient and processing continues (7402, YES). If you cannot identify a particular virtual account, select a shopping account (7403). Since A does not exceed the balance of 100,000 yen (7404, YES), approval processing (7405) is performed, and the confirmation-free limit of 1,000 yen is not exceeded (Fig. 75,7501), the bank omits confirmation and immediately requests payment. The payment amount of 500 yen without confirmation is accumulated in the cumulative amount (C) (Fig. 75,7502), C becomes 500 yen, A is deducted from the account and transferred to the seller's account. At the same time, A is deducted from the virtual account, and the new total balance is 200,000-500 = 199,500 yen, and the balance is 100,000-500 = 99,500 yen (7407).
If the payment amount A for the second purchase is 600 yen, C will be 1,100 yen when accumulated in C, which exceeds the confirmation-free cumulative limit (7503, YES), so the bank searches for the mobile number from the identification ID. Then, the payment request is sent to the mobile phone to confirm it, and at the same time, the confirmation request is also displayed on the cashier terminal (7504). The buyer confirms the payment request by entering the confirmation information "456" at the cash register or by entering the fingerprint through the fingerprint sensor in the authentication program activated on the mobile phone. If the payment request is not confirmed (7505, NO), such as when the confirmation information is incorrect, the transaction is rejected (7406). If confirmed, the transaction is approved, and in the case of cumulative excess, the cumulative amount C is set to 0 yen (7506), the new total balance is 200,000-1,100 = 198,900 yen, and the balance is 100,000-1,100 = 98,900 yen. ..

FIG. 72 is a block diagram of yet another form of the present invention relating to a ticket.
[Field] Regarding a toll collection system for toll areas (hereinafter referred to as "roads") such as railroads, buses, highways, city centers, parking lots, and event venues that do not require cash [Means] Electronic payment shown in FIG. 69 is used. The seller (road, Fig. 72,6902) reads the user identification ID at the entrance (Fig. 72,7204) (Fig. 72,1) and reserves the payment including the identification ID and the cause. 2) Send the information to the bank to book the payment. The bank sends a confirmation request (Figs. 72, 3) to the user confirming the reservation. The user confirms the confirmation request and sends confirmation information (Figs. 72, 4) to the bank. The bank will only send the reserved information (Figures 72, 5) to the seller after it has been confirmed by the user. The seller reads the identification ID at the exit (Fig. 72,7205) (Fig. 72,6), settles the usage fee, and sends the settlement request (Fig. 72,7) to the bank. The bank sends a confirmation request (Figs. 72, 8) confirming the payment request to the user. The user confirms the confirmation request and sends confirmation information (Figs. 72, 8) to the bank. The bank sends the approval (Figs. 72, 10) to the seller and makes the payment only after it is confirmed by the user.
When the settlement reservation confirmation necessity flag is reserved as "required", admission control is possible depending on the approval / denial result of the reservation.
Detailed Description In a particular embodiment, the payment of a railroad fare. The identification ID is recorded on the non-contact IC card. For reservation of virtual account "Railway company", communication ID "090-1234-5678", identification ID "IC card number", confirmation information "456", payment reservation confirmation necessity "unnecessary", and other table 1 shows. Reservation information is sent.

The boarding station ticket gate (7204) reads the identification ID and transfers it to the server (installed in Fig. 72,6902, not shown in the figure). The server creates an admission record that records the identification ID, boarding station, and time, sends payment reservation information (different from virtual account reservation information) including the identification ID and boarding station name to the bank, and the payment reservation confirmation necessity flag is "unnecessary". If so, the bank skips the confirmation (Figs. 72,3,4), sends the reserved information to the ticket gate, and is admitted.
The exit station ticket gate setstles the passenger's boarding fee identified by the read identification ID, sends a payment request to the bank, and permits exit when approval is received.
When boarding within the boarding fee range that does not exceed the confirmation-free limit, the bank omits confirmation (Figs. 72, 8 and 9), which has the effect of speeding up the exit decision process.
If the payment reservation confirmation necessity flag is "required", the entrance ticket gate sends the payment reservation to the bank after permitting the entrance if the read identification ID is valid, and the getting-off station receives the reserved information. If you do, you may allow the exit and then send a payment request to the bank. It has the effect of speeding up the entry / exit judgment process.
Further, in order to reduce the cost for high-speed processing and payment request processing, the payment amount without confirmation may be accumulated in the IC card or the server. Accumulation and entry / exit decisions can be approved offline without communicating with the bank. For offline approval, the seller obtains the required buyer-set booking information from the bank.

FIG. 76 is a flow chart of offline approval. When the seller terminal reads the identification ID and determines that the product price does not exceed the confirmation-free limit (Fig. 76,7601), the seller terminal adds the product price to the cumulative amount saved by the seller (7602). In the case of cumulative excess, a settlement request is created using the accumulated accumulated amount as the product price, and approval is requested from the bank according to the procedure shown in FIG. 74 (hereinafter referred to as “online approval”) (7605). If the transaction is approved (7606, YES), reset the cumulative amount to zero (7607). If it is not a cumulative excess, it is to approve the sale transaction without communicating with the bank. In this system, this process is called "offline approval".
The identification ID (IC card, etc.) will be sold at a guaranteed amount, and if payment is refused, the player will be sent off and settled in cash. When requesting the abolition of the identification ID, the amount used may be deducted from the guaranteed amount and refunded. Confirmation-free The cumulative limit and the guarantee amount may be limited to the same amount. It has the effect of guaranteeing the collection of payment. For example, when using an identification ID sold or activated for 1,000 yen, boarding up to 990 yen is permitted, and when boarding the next 120 yen section, 1110 yen including an increase will be charged at the exit. If the settlement is refused, the exit settlement amount is 120 yen, and if the identification ID is requested to be abolished, the refund amount is 10 yen.
For one identification ID, a plurality of sellers can independently store the cumulative amount and approve it offline. For example, the same mobile phone number can be used as an identification ID, which has the effect of being applicable to trains of different railway companies.
In addition, passengers will be given a position acquisition permit treatment to the seller to speed up entry and exit. The boarding ticket gate can determine in advance the validity of the nearby passenger identification ID. The exit ticket gate can be used for provisional payment of the usage fee (payment is made assuming that the passenger gets off at the station closest to the location of the passenger). The location of the mobile phone can be obtained from the system of the telephone company, and it is not necessary to connect directly to the mobile phone.

In the case of processing a ticket for admission to an event venue or the like, the customer orders a ticket from a ticket shop or the like prior to admission, and the admission management server corresponds to a bank and stores ticket information. Ticket information includes data such as venue name, event name, date and time, number of people, seat position, etc., including identification ID. Then, the server sends a call to the mobile phone corresponding to the identification ID read by the entrance ticket gate, authenticates the person, and then permits the entrance.
The seller may operate its own payment center. Instead of public communication means, you may communicate with the ticket gate by non-contact short-range communication means such as infrared rays of mobile phones, DSRC (Dedicated Short Range Communication), Bluetooth (registered trademark), and directly activate the personal identification program of mobile phones. ..
Yet another particular embodiment is road toll collection.
[Background] Japan's automatic toll collection system (ETC system) consists of an ETC on-board unit, an ETC card that stores personal information and contract information or electronic currency, an entrance / exit gate, and a road-to-vehicle high-speed communication (DSRC) device. Will be done. However, it is required to pass through the gate at a speed that allows it to stop at any time. Also, the cost is high. On the other hand, in Singapore, there is a method of taking a picture of the license plate of a passing vehicle with a speed of 180 km / h or less with a camera and charging for ERP. Camera-based billing with existing technology can realize a free-flow tollhouse that can pass at high speed, but it is difficult to separate the car owner and the toll payer.
[Problem] Realize a free flow fee system that does not require cash at low cost.
[Means] The electronic payment shown in FIG. 69 is used. The vehicle registration number is used as the user identification ID. For reservation of virtual account "Expressway", communication ID "090-1234-5678", identification ID "license plate number", confirmation information "456", payment reservation confirmation necessity "required", and other Table 1 shows. Reservation information is sent.

The seller takes a picture of the license plate with a digital camera at the entrance (7204), reads the identification ID by the image recognition means, and sends a payment reservation including the identification ID, the entrance name, etc. to the bank. When the reserved information is received, the exit is permitted, the price is settled based on the admission record, and the settlement request is sent to the bank.
The entry / exit record will include the vehicle type, photos, etc. according to the charge category and will be left as proof of use. If the payment reservation or payment request is rejected, or if the electronic payment is not reserved, the vehicle user (owner) is identified by the identification ID and billed by sending an invoice. You may invoice by adding the administrative fee incurred on the invoice.
If there is an entrance gate, the identification ID is a virtual account settlement, or if the reserved information is received, admission is permitted.
If there is an exit gate, the identification ID is a virtual account settlement, or if the reserved information is received or the approval is received, the exit is permitted.
Preferably, the vehicle is guided by voice to the lightning signal and the mobile phone according to the judgment result. A non-stop lane for electronic payment and a conventional toll gate may be installed side by side.
Furthermore, even if you install a camera at the first-come-first-served position in the entrance / exit lane, or acquire the location information of your mobile phone, you can determine the payment method for vehicles approaching the entrance / exit, make a provisional payment, or make a high-speed judgment at the entrance / exit gate. good.
Preferably, the road usage schedule (period) is specified, and the reservation of the virtual account is deleted when the schedule has passed.
In the case of a method of charging each time a toll area such as the city center passes through the boundary line (hereinafter referred to as “passing charge”), the same processing as the exit may be performed at the boundary line.

A billing method based on mileage (hereinafter referred to as distance billing) can be realized. The user gives the system a position acquisition treatment, and when entering the toll area, the system is made to grasp the position of the mobile phone almost continuously. For example, mobile location information (location cell, GPS information, etc.) may be acquired from a server and tracked. The charge amount is calculated as the travel distance of the mobile phone as the travel distance of the car. If your cell phone's battery runs out or you can't locate it, you can apply a fixed charge.
The camera that reads the vehicle information may be replaced with another vehicle information acquisition means necessary for billing, for example, a license plate provided with a communication function.
[Action] The ETC system instantly recognizes a car traveling at high speed when passing through a gate or boundary line, and instantly needs bidirectional communication with the car and processing of electronic currency movement, so high speed and high speed. Since accuracy and high reliability are required, and security functions such as maintaining the confidentiality of credit card information and preventing data tampering are required, a large amount of processing is required instantly. This is due to the high cost of ETC systems. In the present invention, it is only necessary to photograph the car and read the license plate, and the signal processing technology for that purpose is mature. In addition, since confidential information is not transferred, a large amount of processing at the time of passing through the gate is not required, and an on-board unit and an ETC card are not required, the cost of both the road and the vehicle can be reduced. It also solves problems such as forgery of highway cards. It is also easy to separate the car owner and the payer. Non-stop service at tollhouses can be easily realized. Since no card is used, there is no need to worry about forgery of the card, insufficient balance of electronic currency, or complicated increase.

FIG. 69 is a block diagram showing yet another payment method and system.
In electronic payment systems and methods that process commercial payments between banks and buyers and sellers, buyers use identification IDs (Fig. 69, 1) to purchase goods (Fig. 69, 6) from sellers. The seller generates a settlement request (Fig. 69, 2) requesting the settlement of the usage amount, and sends the settlement request to the bank (Fig. 69,6903) in order to approve the settlement request. The bank presents the buyer with a confirmation request (FIGS. 69, 3) to confirm the settlement request with the buyer. The buyer confirms the payment request by transmitting authentication information such as a personal identification number (Figs. 69, 4) to the bank through the buyer communication module. The bank sends the approval (Figures 69, 5) to the seller only after it has been confirmed by the buyer.
Communication confirmation treatment will be implemented for communication requests to confirm payment requests. The registration information transmitted by the authentication program activated by the communication confirmation treatment includes the authentication information. There is an effect that the input of the authentication information can be avoided in a public place. Preferably, the payment request is confirmed before the electronic payment is disabled. Then, in order to enable electronic payment before each payment, personal authentication is always performed, and there is no risk of damage even if the mobile phone is lost.

Mobile phone key [Field] Use a mobile phone as a key for your home door, safe, car, etc.
[Means] When unlocking, the electric lock control system confirms the unlocking with the user through the communication module. Unlock only after confirmed by the user. The above confirmation is performed by sending authentication information such as a personal identification number to the electric lock control system.
FIG. 32 illustrates the configuration of an electric lock control system. In the first embodiment, the case of unlocking by transmitting from a mobile phone has been described. In this example, the electric lock side of the controlled device is the transmission. When the user unlocks with an unlocking operation means such as an unlocking operation button, the system sends a call to the user. 70 and 71 show an example in which a communication confirmation treatment is given to an unlock confirmation communication request. The system unlocks only after receiving the prescribed credentials.
The unlocking operation may be further collated with the password entered from the numeric keypad.
The unlocking operation may be performed by simply pressing the call push button that also serves as a door phone. You may make a call between the door phone and the mobile phone. Can be unlocked remotely.
[Effect] A lock with strong security can be realized by the result of personal authentication such as biometric authentication without a key or keyhole.

[Field] This embodiment relates to the collection of traffic information and the guidance of a moving body route.
This specification shows a mobile communication terminal device using a mobile phone. The mobile communication terminal device is not limited to a mobile phone, and an electronic information device having a communication function (notebook PC, PDA, electronic organizer, car navigation system, etc.) can also be used.
[Background] Techniques for collecting traffic information from vehicles are known in Patent Documents 14 and 15. A technique for predicting a road usage situation is known in Patent Document 17. The technique shown in Patent Document 16 avoids the occurrence of traffic congestion.
[Problem] It is a cooperative and efficient collection of traffic information by a mobile communication device, prevention and avoidance of traffic congestion, and guidance of a dynamic route of a mobile body.
[Means] A database of information such as traffic information, maps and facility data, and an optimal route calculation function that includes all vehicle elements are integrated in the traffic center, and the traffic center departs from users (pedestrians, cars) via communication lines. Collect travel plans including time and departure / arrival points, and provide users with recommended travel plans and recommended routes.
When the user's mobile communication device acquires the current location information, the traffic center communicates with the mobile to grasp the movement status, and when traffic congestion occurs or is predicted in front of the movement route, a vehicle that can eliminate the traffic congestion Select and transfer to the avoidance route, search only the necessary information when necessary, such as the map in front is newer than the map possessed by the moving object, or the moving object does not possess the map in front, and transfer it to the mobile device. To do.
Every time it communicates with a mobile device, it collects movement information such as position, speed, and direction of travel, and updates the traffic condition database. The traffic center will provide communication methods, including constant connection to mobiles, interval connections, and connections only when an event is detected.
The mobile device measures the position, speed, direction of travel, etc., gives the traffic center the necessary control treatment, such as acquisition of measurement data, transfer of map and voice information, alerting, etc., and the user releases the steering wheel while driving. Exchange the necessary information with the transportation center without doing so.

When a mobile device issues a communication request to the traffic center, it detects information including the position of the mobile device, transfers the request for route search, traffic jam information search, etc. to the traffic center, and sends the route and command from the traffic center. Is received and operated according to a command, the user is guided to the received route, and when the user leaves the route on the way, the traffic center is requested to search the route again.
When there is fog, poor visibility, or an uphill position that causes traffic congestion, an event such as an intersection or a change in vehicle speed is detected, and the traffic center continuously grasps the position of the vehicle and informs the driver of the position of surrounding vehicles. It informs you, recommends speed adjustment, keeps a safe distance between vehicles, and assists in traffic congestion prevention and safe driving.
The danger prevention service is provided by communication between approaching vehicles through the mediation of the transportation center. Cars near you while moving are treated as a group, the traffic center grasps the position of each member of the group, the connection number of each member can be exchanged through the mediation of the traffic center, the vehicles can be directly connected, and information communication between vehicles is possible. The position of other vehicles in the group is displayed on the screen of the mobile vehicle, and when dangers such as approaching vehicles in the rear, front, etc., sudden braking, airbag operation, accidents, etc. are detected, an emergency call is made to the related vehicles. And warn you. It grasps the vehicle positions of all the approaching groups in real time, maintains the inter-vehicle distance, and provides data to the autonomous driving system installed in each vehicle.
When the traffic center lacks information, it collects information using a mobile phone with a position detection device on a moving object such as a car as a mobile monitor, analyzes the received information, creates an information collection command, and displays it on the monitor. I will send it back.
One way to activate the monitor is to automatically send information to the traffic center when the moving speed meets the set conditions such as 20km / h or more. One response or command of the traffic center that received the information returns the transmission interval t. Let t be positively correlated with the monitor density p. That is, t is increased as p increases. As the density increases, the possibility of duplicate information transmission increases, so increasing the transmission interval can suppress unnecessary information transmission. For example, t is obtained by t = a * p + b using constants a and b. In a specific example, if the number of monitors having a radius of 10 km or less and a transmission time difference of 10 minutes or less is 10, and a = 5 and b = 10, t is 60 minutes. That is, the monitor is instructed to transmit the information again after 60 minutes.

The specific definition (calculation) method of p and the values of a and b may differ depending on the importance of the measurement location. For example, when it is necessary to increase the measurement density in the city center than in the suburbs, the values of a and b or the count radius of p may be made smaller than in the suburbs. The center selects and uses a predetermined value according to the current location of the monitor.
In addition, the command may include the following information transmission conditions: Do not transmit during the specified time period. Do not make a call within the specified movement speed range. Do not make a call within the specified geographic range. Make a call only when the speed or moving direction changes.
The operation of the mobile monitor rewards the information provider or releases a mobile phone with a built-in automatic monitor function. Preferably, the reward providing method converts the amount of information provided into reward points and stores it in a storage measure. Provide services such as route guidance in exchange for points accumulated by users.
It is possible to control the traffic flow and signal by emergency vehicles. For example, when the expected position of the vehicle is close to the intersection, the traffic center sends a message, grasps the vehicle position in real time, and does not give an unnecessary red light. If an emergency vehicle or the like transmits its own position information in real time, it is possible to optimize control of the traffic signal ahead. The traffic center can check the position of other vehicles on the route ahead of the emergency vehicle and instruct the vehicle to evacuate.
The traffic center can monitor overspeeding and the behavior of vehicles near intersections, and if it detects the danger of a collision, it immediately warns the drivers and pedestrians involved. The transportation center can provide route guidance services to pedestrians and the like who have mobile terminals. It is possible to guide the last train and avoidance routes for train suspension depending on the travel plan, commuting route, current location, time, etc.

[Action, effect]
While realizing traffic guidance, it has the effect of collecting information for this realization. Feedback can be expected: increase in traffic congestion → increase in service demand → increase in the amount of information that can be collected by the transportation center → guidance based on the collected information → decrease in traffic congestion.
By dynamically guiding the recommended route, the traffic center can realize the optimum traffic system by changing the conventional non-ordered traffic flow in the next order. Accurate, real-time, and personalized information for individual drivers and pedestrians can be provided. It is possible to predict before the occurrence of traffic congestion and to indicate the optimum avoidance route according to the route information of each vehicle, and to fully utilize the transportation capacity of the transportation network without concentrating it on a specific road. Can be done. Compared with the case where the sensor is fixedly installed on the road, the measurement points are not limited, and it is possible to collect traffic condition information evenly and probabilistically evenly on the road or according to the importance.
While moving or driving, you can guide the vehicle to dynamic route guidance and avoidance of traffic jams without operating a mobile phone, which is prohibited by the Traffic Law. In case of a train suspension accident, pedestrians can be informed of detour means.
It will be easier to support safe driving, optimize traffic management, improve road management efficiency, support pedestrians, support the operation of emergency vehicles, alleviate traffic congestion, and prevent traffic congestion.

As described above, the present invention is suitable for a communication method using an electronic device on a communication network.

It is a figure which shows the basic schematic structure example of this invention. It is a layout figure of the record which shows the contents of TDB. It is a layout figure of the record which shows the contents of R1DB. It is a layout diagram of the record which shows the contents of GDB. It is a layout figure of the record which shows the contents of R2DB. It is a layout figure of the record which shows the contents of R3DB. It is a layout diagram of the record which shows the contents of R4DB. It is a layout figure of the record which shows the contents of R5DB. It is a layout figure of the record which shows the contents of TRDB. It is a layout diagram of the record which shows the contents of PDDB. It is a layout figure of the record which shows the contents of a VDB. It is a layout figure of the record which shows the contents of VRDB. It is a flowchart of one Embodiment of this invention. It is a flowchart of another embodiment. It is a flowchart of another embodiment. It is a figure which shows the structure of another embodiment. It is a flowchart of another embodiment. It is a figure which shows another embodiment configuration example. It is a flowchart of another embodiment. It is a partial flowchart of the early determination process of another embodiment. It is a flowchart of another embodiment. It is a flowchart of another embodiment. It is a flowchart of another embodiment. It is a figure which shows another embodiment configuration example. It is a flowchart of another embodiment. It is a flowchart of another embodiment. It is a figure which shows the structure of another embodiment. It is a figure which shows the structure of another embodiment. It is a transmission processing partial flowchart. It is a figure which shows the system configuration about anonymous communication. It is a partial flowchart of the process of the first party. It is a partial flowchart of the process of the second party. It is a flowchart of the treatment exchange processing part. It is a flowchart of another embodiment. It is a figure which shows the structure of one Embodiment. It is a conceptual diagram which shows the structure of the position information system. It is a flowchart of the traveling guidance function for a vehicle. It is a conceptual diagram of the form according to the present invention concerning position information and the like. It is a figure which shows the structure of the mail sending client. It is a mail transmission flowchart. It is a block diagram which shows the structure of a multifunctional telephone. It is a figure which shows the instruction file content of the said telephone. It is a flowchart of the said telephone. It is a figure which shows the example which gives the treatment which can make a normal call to the telephone number of the person concerned by automatic examination automatically. It is a figure which shows the telephone structure of the answering machine embodiment. It is a figure which shows the instruction file content of the said telephone. It is a block diagram which shows the structure of the mail receiving client embodiment. It is a figure which shows the instruction file contents of the said Example. It is a schematic flowchart of a reception process. It is a figure which shows the question input screen. It is a figure which shows the initial treatment selection screen. It is a block diagram which shows the Internet videophone and the monitoring system configuration. It is a block diagram which shows the internal structure of the Example. It is a flowchart which shows the operation of a main program. It is a figure which shows the main menu screen. It is a figure which shows the contact book screen. It is a figure which shows the member addition screen. It is a figure which shows the treatment application processing. It is a figure which shows the personal setting screen. It is a flowchart which shows the login processing operation. It is a figure which shows the friend list edit screen. It is a figure which shows the treatment application qualification designation screen. It is a flowchart which shows the operation of a videophone communication program. It is a figure which shows the connection waiting screen. It is a figure which shows the screen during videophone communication. It is a figure which shows the outline of the flow of building a treatment relationship. It is a block diagram which shows the structure of the mail server system example. It is a figure which shows the treatment information data database. It is a block diagram which shows the guidance information data database (GDB). It is a figure which shows the 2nd rule set. It is a figure which shows the 1st rule set. It is a figure which shows the 3rd rule set for attack prevention. It is a figure which shows the usage constant. It is a figure which shows the 3rd rule set for cancellation. It is a figure which shows the 5th rule set. It is a figure which shows the user interface of an input component. It is a figure which shows the data to pass to an input component. It is a block diagram which shows the method and system about electronic payment. It is a figure which shows the TDB of the electronic payment embodiment. It is a figure which shows the R1DB of the electronic payment embodiment. It is a block diagram of another embodiment regarding a ticket. It is a figure which shows the account and the virtual account schematically. It is a flow chart of transaction processing in a virtual account schematic diagram. It is a flow chart of the approval process. It is a flow chart of offline approval.

11, 111, 211 ... Processor 12, 112, 212 ... Input / output control means 13, 14, 114, 214 ... Storage device 15, 115, 215 ... Communication transfer device 16 ... Keyboard and display unit.
17 …… Microphone, speaker 18 …… Camera, keyboard and display.
19 …… Vibrator 20 …… Fingerprint sensor

Claims (68)

The method performed by the computer
Steps to determine if a transaction request meets the conditions,
The step of transmitting information about the transaction to the terminal of the communication destination specified by the user, and
In the method including
The information includes a code that causes the terminal to operate.
When the terminal receives the code, the operation is performed.
Method. The operation includes a display means of the terminal for displaying information.
The method according to claim 1. The information includes at least one of a content indicating the completion of acceptance of the transaction or a request for approving the transaction.
The method according to claim 2. The information is transmitted to the terminal when the transaction amount of the transaction exceeds the threshold value.
The method according to any one of claims 2 to 3. The operation includes an activation of the notification means of the terminal, and the notification means calls the attention of the parties concerned.
The method according to any one of claims 1 to 4. The notification means includes one that utilizes at least one of visual, auditory, or vibration.
The method according to claim 5. The operation includes an operation of executing a program on the terminal.
The method according to any one of claims 1 to 6. The program includes one that sends user authentication information.
The method according to claim 7. The program includes one that authenticates the user
The method according to any one of claims 7 to 8. The program includes one that authenticates the user based on the password information.
The method according to any one of claims 7 to 9. The program includes a program that authenticates a user based on biometric information.
The method according to any one of claims 7 to 10. The biological information includes fingerprint information.
11. The method of claim 11. The above conditions include a limit
The balance, which is the new limit, is calculated by subtracting the transaction amount of the transaction from the limit.
The method according to any one of claims 1 to 12. When the balance falls below the threshold value, information notifying the communication destination is transmitted.
13. The method of claim 13. Information necessary for determining the conditions including the balance is stored in the recording medium, and the information is stored in the recording medium.
The recording medium is an IC card.
The method according to any one of claims 13 to 14. When the available amount of the financial means used for payment in the transaction is below the threshold value, it is possible to send information notifying the communication destination to that effect.
The method according to any one of claims 1 to 15. The transaction includes withdrawal transactions withdrawing cash,
The method according to any one of claims 1 to 16. The transaction comprises at least one of a debit card transaction, a credit card transaction, a transfer, and an inter-account transfer of funds.
The method according to any one of claims 1 to 16. Including those where the transaction is made between the payer and the payee
The transaction information of the transaction is input by the payee.
The transaction information is selected from a group consisting of an amount and information identifying the payee.
The method according to any one of claims 1 to 16. The transaction is a charge transaction for charging electronic money,
The electronic money is electronic data,
The electronic data is data on the balance amount of monetary value that can be used for settlement.
The charge transaction increases the balance amount.
The method according to any one of claims 1 to 16. The terminal includes a computer,
The method according to any one of claims 1 to 20. The terminal includes a portable electronic device,
The method according to any one of claims 1 to 20. The portable electronic device includes a mobile phone,
22. The method of claim 22. A means of determining whether a transaction request meets the conditions,
A means of transmitting information about the transaction to the terminal of the communication destination designated by the user, and
In a server equipped with
The information includes a code that causes the terminal to operate.
When the terminal receives the code, the operation is performed.
server. The operation includes a display means of the terminal for displaying information.
The server according to claim 24. The information includes at least one of a content indicating the completion of acceptance of the transaction or a request for approving the transaction.
The server according to claim 25. The information is transmitted to the terminal when the transaction amount of the transaction exceeds the threshold value.
The server according to any one of claims 25 to 26. The operation includes an activation of the notification means of the terminal, and the notification means calls the attention of the parties concerned.
The server according to any one of claims 24 to 27. The notification means includes one that utilizes at least one of visual, auditory, or vibration.
28. The server of claim 28. The operation includes an operation of executing a program on the terminal.
The server according to any one of claims 24 to 29. The program includes one that sends user authentication information.
The server according to claim 30. The program includes one that authenticates the user
The server according to any one of claims 30 to 31. The program includes one that authenticates the user based on the password information.
The server according to any one of claims 30 to 32. The program includes a program that authenticates a user based on biometric information.
The server according to any one of claims 30 to 33. The biological information includes fingerprint information.
The server according to claim 34. The above conditions include a limit
The balance, which is the new limit, is calculated by subtracting the transaction amount of the transaction from the limit.
The server according to any one of claims 24 to 35. When the balance falls below the threshold value, information notifying the communication destination is transmitted.
The server according to claim 36. Information necessary for determining the conditions including the balance is stored in the recording medium, and the information is stored in the recording medium.
The recording medium is an IC card.
The server according to any one of claims 36 to 37. When the available amount of the financial means used for payment in the transaction is below the threshold value, it is possible to send information notifying the communication destination to that effect.
The server according to any one of claims 24 to 38. The transaction includes withdrawal transactions withdrawing cash,
The server according to any one of claims 24 to 39. The transaction comprises at least one of a debit card transaction, a credit card transaction, a transfer, and an inter-account transfer of funds.
The server according to any one of claims 24 to 39. Including those where the transaction is made between the payer and the payee
The transaction information of the transaction is input by the payee.
The transaction information is selected from a group consisting of an amount and information identifying the payee.
The server according to any one of claims 24 to 39. The transaction is a charge transaction for charging electronic money,
The electronic money is electronic data,
The electronic data is data on the balance amount of monetary value that can be used for settlement.
The charge transaction increases the balance amount.
The server according to any one of claims 24 to 39. The terminal includes a computer,
The server according to any one of claims 24 to 43. The terminal includes a portable electronic device,
The server according to any one of claims 24 to 43. The portable electronic device includes a mobile phone,
The server according to claim 45. The terminal according to any one of claims 24 to 46. A system comprising the terminal according to claim 47 and the server according to any one of claims 24 to 46. The method performed by the computer
Steps to determine if the conditions, including the limit, are met when receiving a transaction request for an account,
A step to automatically approve the request if the conditions determined based on the authentication information are met.
How to include. The account is a bank account
The method of claim 50. The account is a credit card account
The method of claim 50. The condition includes the other party information of the other party of the user of the transaction.
The method according to any one of claims 49 to 51. The other party information includes at least one of a name and an identification information.
52. The method of claim 52. The condition includes identification information,
The method according to any one of claims 49 to 53. The identification information is assigned to the user of the transaction.
54. The method of claim 54. The identification information includes at least one of a cash card number and an account number.
The method of claim 55. The identification information includes an IC card number.
54. The method of claim 54. The transaction is a charge transaction for charging electronic money,
The electronic money is electronic data,
The electronic data is data on the balance amount of monetary value that can be used for settlement.
The charge transaction increases the balance amount.
The method according to any one of claims 49 to 57. A means of determining whether or not the conditions including the limit amount are met when receiving a request for a transaction related to an account,
A means of automatically approving the request when the conditions determined based on the authentication information are met, and
The server that contains. The account is a bank account
The server according to claim 60. The account is a credit card account
The server according to claim 60. The condition includes the other party information of the other party of the user of the transaction.
The server according to any one of claims 59 to 61. The other party information includes at least one of a name and an identification information.
The server according to claim 62. The condition includes identification information,
The server according to any one of claims 59 to 63. The identification information is assigned to the user of the transaction.
The server according to claim 64. The identification information includes at least one of a cash card number and an account number.
The server according to claim 65. The identification information includes an IC card number.
The server according to claim 64. The transaction is a charge transaction for charging electronic money,
The electronic money is electronic data,
The electronic data is data on the balance amount of monetary value that can be used for settlement.
The charge transaction increases the balance amount.
The server according to any one of claims 59 to 67.

Images