JP6048543B2 - Information processing apparatus, information processing method, and program - Google Patents

Description

  The present invention relates to encryption of e-mails and files attached to e-mails.

  In recent years, in an electronic mail system, an electronic mail is transmitted / received between client terminals via a network, and is used as a very convenient tool for exchanging information with a distant place.

  However, there are many cases in which highly confidential information is included in e-mails and exchanged with the other party, such as in an emergency.

  In this case, there is a risk that in the process in which the transmitted e-mail is transmitted to the other party's mail server, eavesdropping, tampering, etc. are performed, and highly confidential information cannot be transmitted safely. .

  Thus, several methods for encrypting an e-mail have been proposed. For example, methods such as PGP (Pretty Good Privacy) and S / MIME (Secure / Multipurpose Internet Mail Extensions) have been proposed.

  These methods avoid the risks described above by performing encryption and decryption on both the transmitting and receiving sides.

For example, Patent Document 1 discloses a mechanism for encrypting and transmitting a file attached to an e-mail to prevent information leakage.
JP 2010-21746 A

  In a system for encrypting a file attached to an electronic mail as described in Patent Document 1, it is necessary to notify a transmission destination of a password for decrypting the file.

  Here, in many cases, a plurality of transmission destinations are set for one e-mail, and in such a case, it is necessary to notify a password to all the transmission destinations.

  In particular, when different passwords are applied to each destination, the person who notifies the applied password (e-mail sender, etc.) must determine who should be notified which password. Is required and the load is high.

In view of the above problems, an object of the present invention is to improve the efficiency of the task of notifying a password set in an attached file of an e-mail.

The present invention relates to a storage means for storing a predetermined password set in an attached file of an e-mail in association with a transmission destination, a password generating means for generating a password set in the e-mail, and attached to the e-mail For a file attached to the e-mail, first password setting means for setting a predetermined password corresponding to the transmission destination set in the e-mail stored in the storage means for the file, A second password setting means for setting a password generated by the password generation means, and an e-mail attached with a file in which a password is set by the first password setting means or the second password setting means. Settings for sending means and files attached to e-mails sent by the sending means Notification means for identifying and notifying which password is a predetermined password set by the first password setting means or a password set by the second password setting means; , An information processing apparatus characterized by comprising:

The present invention is an information processing method in an information processing apparatus for storing a predetermined password set in an attached file of an e-mail in association with a transmission destination, and the information processing apparatus includes a password generation unit of the information processing apparatus A password generating step for generating a password to be set in the e-mail, and a first password setting means of the information processing apparatus is set in the stored e-mail for the file attached to the e-mail A first password setting step for setting a predetermined password corresponding to the transmitted destination, and a second password setting unit of the information processing apparatus for generating the password for the file attached to the e-mail A second password setting step for setting the password generated by the information processing apparatus, and a transmission unit of the information processing apparatus. A sending step of sending an e-mail attached with a file in which a password has been set in the password setting step or the second password setting step, and a notification means of the information processing apparatus, in the e-mail sent in the sending step The password set for the attached file is a predetermined password set by the first password setting step or a password set by the second password setting step. And a notification step of identifying and notifying the information processing method.

The present invention is a program executed in an information processing apparatus that stores a predetermined password set in an attached file of an e-mail in association with a transmission destination, and the password for setting the information processing apparatus in an e-mail A password generating means for generating; a first password setting means for setting a predetermined password corresponding to a destination set in the stored e-mail for the file attached to the e-mail; A password is set by the second password setting means for setting the password generated by the password generation means and the first password setting means or the second password setting means for the file attached to the e-mail. Sending means for sending an e-mail with the attached file, and sending by the sending means The password set for the file attached to the e-mail is either a predetermined password set by the first password setting means or a password set by the second password setting means It is a program characterized by functioning as notifying means for identifying and notifying whether it is a password.

ADVANTAGE OF THE INVENTION According to this invention, it becomes possible to aim at the efficiency of the task | work which notifies the password set to the attached file of an email.

It is a lineblock diagram showing a schematic structure of an information processing system concerning an embodiment of the present invention. It is a block diagram which shows schematic structure of the hardware of the various terminals which concern on embodiment of this invention. It is a block diagram which shows the function structure in the information processing system which concerns on embodiment of this invention. It is a flowchart which shows the password setting and notification process of the email in the information system which concerns on embodiment of this invention. It is a figure which shows an example of the creation screen of an email in the client terminal which concerns on embodiment of this invention. It is a figure which shows an example of the screen where the password notification mail in the client terminal which concerns on embodiment of this invention was displayed. It is a figure which shows an example of the creation screen of an email in the client terminal which concerns on embodiment of this invention. It is a figure which shows an example of the screen where the password notification mail in the client terminal which concerns on embodiment of this invention was displayed. It is a figure which shows an example of the creation screen of an email in the client terminal which concerns on embodiment of this invention. It is a figure which shows an example of the screen where the password notification mail in the client terminal which concerns on embodiment of this invention was displayed. It is a block diagram which shows the structure of the table used by the password notification process of the email in the information processing system which concerns on embodiment of this invention. It is a block diagram which shows the structure of the table used by the password notification process of the email in the information processing system which concerns on embodiment of this invention. It is a figure for demonstrating the outline | summary of an envelope division | segmentation. It is a flowchart which shows the password setting and notification process of the email in the information system which concerns on the 2nd Embodiment of this invention. It is an example of a screen for setting criteria for whether or not to use the same password It is a figure which shows an example of the password notification mail in the 2nd Embodiment of this invention.

Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.
[First Embodiment]

  FIG. 1 is a diagram illustrating an example of a system configuration in an information processing system according to an embodiment of the present invention. Note that the configurations of the various terminals shown in FIG. 1 are merely examples, and it goes without saying that there are various configuration examples depending on the purpose and application.

  As shown in FIG. 1, an information processing system 100 according to the present embodiment includes a client terminal 101, an administrator client terminal 102 used by a system administrator, and an internal mail server 104. They are connected to each other via a local area network (LAN) 103 so as to communicate with each other, and are constructed as an internal system.

  The client terminal 101 is connected to at least one or more external mail servers 106 via the wide area network 105 so that they can communicate with each other. A firewall device (not shown) is installed between the LAN 103 and the wide area network 105, and communication control processing is performed according to a predetermined rule.

  The internal mail server 104 is a server device for relaying electronic mail by the client terminal 101. The internal mail server 104 specifies the SMTP communication content of the client terminal 101 and performs various processes described later according to the communication content.

  The administrator client terminal 102 sets and manages the internal mail server 104.

  Next, the hardware configuration of various terminals of the internal mail server 104 shown in FIG. 1 will be described with reference to FIG. Note that the client terminal 101 and the administrator client terminal 102 have the same configuration, and a description thereof will be omitted.

  The CPU 201 comprehensively controls each device and controller connected to the system bus 204. In addition, the ROM 202 or the external memory 211 is configured to realize a BIOS (Basic Input / Output System) or an operating system program (hereinafter referred to as an OS), which is a control program of the CPU 201, or a function executed by each server or each client device. Various necessary programs to be described later are stored.

  The RAM 203 functions as a main memory, work area, and the like for the CPU 201. The CPU 201 implements various operations by loading a program necessary for execution of processing into the RAM 203 and executing the program.

  An input controller (input C) 205 controls input from an input unit 209 indicating a pointing device such as a keyboard or a mouse (not shown). A video controller (VC) 206 controls display on a display device such as a CRT display (CRT) 210. The display device may be a liquid crystal display as well as a CRT.

  The memory controller (MC) 207 is stored in a hard disk (HD), a floppy (registered trademark) disk or a PCMCIA card slot for storing a boot program, browser software, various applications, font data, user files, editing files, various data, and the like. Controls access to an external memory 211 such as a compact flash (registered trademark) memory connected via an adapter.

  A communication I / F controller (communication I / FC) 208 is connected to and communicates with an external device via a network, and executes communication control processing in the network. For example, Internet communication using TCP / IP is possible.

  Note that the CPU 201 enables display on the display device 210 by executing outline font rasterization processing on a display information area in the RAM 203, for example. Further, the CPU 201 enables a user instruction with a mouse cursor (not shown) on the display device 210.

  A program or the like for executing a password notification mail transmission process for realizing the present invention is stored in the external memory 211 and is executed by the CPU 201 by being loaded into the RAM 203 as necessary.

  Definition information and various information tables used in the password notification mail transmission process according to the present invention are also stored in the external memory 211. Detailed description thereof will be described later.

  FIG. 3 is a schematic diagram illustrating a functional configuration according to the information processing system 100, and an outline of each function will be described. The contents of each function will be described in conjunction with the flowchart shown in FIG.

  As illustrated in FIG. 3, the client terminal 101 includes a client mail transmission unit 301, and the client mail transmission unit 301 is connected to the internal mail server 104 via the LAN 103.

  The client mail transmission unit 301 has a function realized by software for instructing transmission of an electronic mail. For example, the client mail transmission unit 301 displays a mail creation screen 500 shown in FIG. 209, a destination 501 indicating an e-mail transmission destination address, a CC (Carbon Copy) 502, a subject 503 indicating an e-mail title, an e-mail body 504, and an attachment indicating a file attached to the e-mail Input or attach to the file 505 or the like.

  When the user transmits an e-mail, the user presses a send button 506 provided on the e-mail creation screen 500 to send the e-mail created using the input unit 209 to the destination 501 and CC 502 set. Send to the destination address.

  The mail creation screen 500 also includes an attachment button 507, and the user designates a file existing in the client terminal 101 by pressing the attachment button 507 when attaching the attachment file 505 to the e-mail. A display screen (not shown) is displayed on the display device 210, and a file to be attached is attached to an e-mail by selecting and specifying from the file displayed on the screen using the input unit 209.

  The client terminal 101 includes client mail receiving means 302, and the client mail receiving means 302 is connected to the internal mail server 104 via the network 103.

  The client mail receiving unit 302 receives an e-mail from the client terminal 101 existing in the internal system or a client terminal existing in an external system other than the internal system via the internal mail server 104.

  The received mail is displayed on the display device 210 including items such as the address 501, CC 502, subject 503, e-mail text 504, and attached file 505 of the mail creation screen 500 shown in FIG. Check the contents of the received e-mail.

  The internal mail server 104 includes server mail receiving means 303, and the server mail receiving means 303 is connected to at least one or more external mail servers 106 via the client terminal 101 or the wide area network 105.

  The server mail receiving unit 303 receives an e-mail from the client terminal 101 existing in the internal system or a client terminal existing in an external system other than the internal system.

  The internal mail server 104 includes a password setting determination unit 304, a password storage unit 305, a mail generation unit 306, a server mail transmission unit 307, a password notification mail generation unit 308, and a password notification mail transmission unit 309.

  The password setting determination unit 304 is connected to the server mail reception unit 303, the password storage unit 305, the mail generation unit 306, and the password notification mail generation unit 308.

  When the server mail receiving unit 303 receives the notification that the e-mail has been received, the password setting determining unit 304 analyzes the content of the e-mail. As an outline of the analysis content, if an email has an attached file, the email destination (CC may be included) is extracted, and a predetermined password corresponding to this email is specified, or automatic Generate a random password with. Here, the randomly generated password is a password such as a so-called one-time password.

  In the present embodiment, the password is set for the attached file. However, not only the attached file but the entire electronic mail may be encrypted.

  In other words, for a destination set as a destination, if a password is used for an attached file using a predetermined password, a predetermined password for setting the attached file is used. Identify the password.

  If an operation using a predetermined password is not performed, a password is automatically and randomly generated every time an e-mail is transmitted (password generation means).

  Passwords to be set according to such destinations are stored in advance in a table constituting the password storage unit 305, and an example of the configuration of this table is a password table 1100 shown in FIG.

  The password table 1100 transmits an e-mail address 1101 indicating a destination to be a target for setting a predetermined password in an attached file, an attachment file password 1102 indicating a predetermined password, and an e-mail notifying the password set in the attached file. It has a configuration including a use date and time 1103 indicating the date when the date is set.

  The password setting determination unit 304 determines whether or not a predetermined password corresponding to the extracted destination exists in the password storage unit 305 (password table 1100). If it does not exist, the password is automatically generated at random.

  Or, even if it exists, you can use an automatically generated password every time you send an e-mail to each other. In this case, the attached file password 1102 in the password table 1100 may be set with information to automatically and randomly generate a password.

  The password setting determination unit 304 notifies the mail generation unit 306 of the password and the analysis end result when the password corresponding to the extracted destination exists in the password storage unit 305 after analyzing the email. If not, the mail generation means 306 is notified of the analysis end result.

  In addition, when a predetermined password corresponding to the extracted destination exists in the password storage unit 305, the password notification mail generation unit 308 is notified of the extracted destination, the password, and the like together with the analysis end result. Not only the item but also the item can be notified as long as the contents (to be described later) to be notified to the transmission destination can be specified from the e-mail.

  The mail generation unit 306 is also connected to the server mail transmission unit 307. When the password setting determination unit 304 receives a notification of the password and the analysis end result, the mail generation unit 306 receives the attached file of the email received by the server mail reception unit 303. Is extracted, the notified password is set for the attached file, the attached file with the password set is attached to the e-mail again, and output to the server mail transmitting means 307.

  When the password setting determination unit 304 receives the notification of the analysis end result, the password received by the server mail receiving unit 303 is output to the server mail transmitting unit 307.

  The server mail transmission unit 307 is connected to at least one or more external mail servers 106 via the client terminal 101 or the wide area network 105.

  When the server mail transmission unit 307 receives the output of the e-mail from the mail generation unit 306, the server mail transmission unit 307 transmits the e-mail to the client terminal 101 existing in the internal system or the client terminal existing in the external system other than the internal system. Do.

  The password notification mail generation unit 308 is connected to the password notification mail transmission unit 309, and when the notification of the extracted destination, password, etc. is received from the password setting determination unit 304 together with the analysis end result, the password notification mail generation unit 308 is set in the attached file. Generate an email to notify you of the password.

  As an example of an e-mail for notifying a password set in an attached file, there is a password notification screen 600 shown in FIG. 6. The password notification screen 600 includes a destination 601 indicating an e-mail destination address, CC (Carbon Copy). 602, a subject 603 indicating the title of the e-mail, and an e-mail body 604.

  In the addresses 601 and CC 602, the addresses (address 501 of the mail creation screen 500) and CC (CC 502 of the mail creation screen 500) notified from the password setting determination unit 304 are set in the description order in the description order. The contents (for example, password notification) indicating that the e-mail is an e-mail notifying the password set in the attached file are set.

  The e-mail body 604 outputs the name corresponding to the destination and the password notified from the password setting determination unit 304. However, as described above, the information notified from the password setting determination unit 304 includes information that can be extracted from the e-mail received by the server mail receiving unit 303, for example, an attached file such as a title set in the subject 503. It is also possible to output information that makes it easy to specify the e-mail to be sent.

  When the generation of the e-mail for notifying the password set in the attached file is completed, the password notification mail generation unit 308 notifies the password notification mail transmission unit 309 of the completion of generation.

  The password notification mail transmission unit 309 is connected to at least one or more external mail servers 106 via the client terminal 101 or the wide area network 105.

  Upon receiving the generation completion notification from the password notification mail generation unit 308, the password notification mail transmission unit 309 sets the attached file to the client terminal 101 existing in the internal system or a client terminal existing in the external system other than the internal system. Send an e-mail notifying you of your password.

  The administrator client terminal 102 includes password setting means 310, which is connected to the internal mail server 104 and displays a screen (not shown) for setting a password according to the destination. The information is displayed on the apparatus 210 and the administrator is made to input.

  The password input by the password setting unit 310 is transmitted to the internal mail server 104 via the network 103 and stored in the password storage unit 305 (password table 800).

  That is, a screen (not shown) for setting a password according to the destination in the password setting unit 310 can input each item (at least the items of the email address 801 and the attached file password 802) in the password table 800. It has.

  Next, FIG. 4 shows a flowchart representing a password notification mail transmission process in the information processing system according to the embodiment of the present invention. In addition, about the process performed by each step, a process is performed under control of CPU201 of the internal mail server 104. FIG.

  In step S <b> 101, the server mail receiving unit 303 receives the electronic mail transmitted by the client mail transmitting unit 301 of the client terminal 101.

  In step S102, the password setting determination unit 304 determines whether an attached file exists in the email received in step S101.

  If it is determined that an attached file exists (step S102: YES), the process proceeds to step S103.

  If it is determined that the attached file does not exist (step S102: NO), the process proceeds to step S119, and the electronic mail is transmitted to the transmission destination set in the electronic mail.

  Here, in this embodiment, the presence or absence of an attached file is determined in step S102. This is a process in the case of adopting a configuration in which a password is set for an attached file in an electronic mail. Therefore, in the case of a configuration in which not only the attached file but also the entire e-mail is encrypted (password setting), the process of step S102 is unnecessary.

  Similarly, the processes in steps S106, S108, S113, and S115, which will be described later, are also necessary when only the attached file is encrypted, and thus are not necessary when the entire electronic mail is encrypted.

  In step S <b> 103, the password setting determination unit 304 acquires information regarding the destination (transmission destination) from the electronic mail.

  In step S104, the password setting determination unit 304 acquires the attached file password 1102 corresponding to the mail address 1101 of the password table 1100 corresponding to the transmission destination acquired in step S103, and specifies the password corresponding to the transmission destination. To do.

  When the mail address 1101 corresponding to the destination does not exist in the password table 1100, it is specified that there is no password corresponding to the destination.

  When a plurality of transmission destinations (To, CC, BCC) are set in the electronic mail acquired in step S101, the processes in steps S103 and S104 are executed for each transmission destination.

  In step S105, the password setting determination unit 304 determines whether all of the transmission destinations set in the e-mail acquired in step S101 are transmission destinations using a predetermined password as a result of specifying the password in step S104. Determine whether.

  When it is determined that all the transmission destinations are transmission destinations using a predetermined password (step S105: YES), the process proceeds to step S106.

  If at least one destination that does not use a predetermined password is included (step S105: NO), the process proceeds to step S112.

  As a determination method in step S105, in the case of a configuration in which a predetermined password is set in the attached file password 1102, and a password that is not present in the password table 1100 is automatically generated at random, “attached file password 1102” is set. Whether or not there is a predetermined password corresponding to the destination ”.

  As another determination method, in a case where a predetermined password or information for automatically generating a password is randomly set in the attached file password 1102, the “information set in the attached file password 1102” is set. Whether or not is a predetermined password.

  When using this different determination method, although not shown in the flowchart, when the destination does not exist in the password table 1100, the e-mail may be transmitted without setting a password in the attached file.

  In step S106, the mail generation unit 306 extracts the attached file of the electronic mail received in step S101.

  In step S107, the mail generation unit 306 sets the password specified in step S104 for the attached file extracted in step S106.

  In step S108, the mail generation unit 306 attaches the attached file for which the password is set in step S107 to the electronic mail again.

  Here, the processing of step S106 to step S108 is executed by dividing the envelope of the target electronic mail into envelopes for each destination.

  It should be noted that the envelope division process is not performed when envelope division has already been performed or when only one transmission destination is set. FIG. 13 shows an image of the envelope division of e-mail.

  FIG. 13 is a diagram showing an image of envelope division of an e-mail. The e-mail before the envelope division in FIG. 13 has a plurality of destinations (A, B, C) set in the envelope of the e-mail.

When envelope division is performed on such e-mail data, the result becomes after envelope division. That is, a plurality of electronic mails (divided mails) in which each transmission destination is individually set in the envelope are created (divided mail generating means). As can be seen from the e-mail after the envelope division in FIG. 13, an e-mail is created in which one destination (A, B, C) set in the envelope of the original e-mail is set.
This completes the explanation of the envelope division of the email.

  In step S109, the password notification mail generation unit 308 creates a mail (password notification mail) for notifying the password set in step S107 to the sender of the email acquired in step S101.

  6 and 8 are examples of the password notification mail created in step S109.

  In step S110, the server mail transmission unit 307 transmits the email generated in step S108.

In step S111, the server mail transmission unit 307 transmits the password notification mail generated in step S109 to the transmission source of the email acquired in step S101.
Then, the process shown in this flowchart is terminated.

  Next, a process when it is determined in step S105 that a transmission destination using a random password is included will be described.

  In step S112, password generation means (not shown) generates a random password such as a one-time password.

  In step S113, the mail generation unit 306 extracts the attached file of the electronic mail received in step S101.

  In step S114, the mail generation unit 306 sets the password generated in step S112 for the attached file extracted in step S119.

  In step S115, the mail generation unit 306 attaches the attached file for which the password has been set in step S107 to the electronic mail again.

  Here, the processing of step S113 to step S115 is executed by dividing the envelope of the target electronic mail into envelopes for each destination.

  In step S114, the same password is set for the mail attachment to any destination.

  The description of the envelope division is the same as the processing in steps S106 to S108 described above.

  In step S116, the password notification mail generation unit 308 generates an e-mail notifying the password set in the attached file using the destination acquired in step S103 and the password generated in step S112. As described above, one example of this e-mail has the configuration shown in FIG.

  In step S117, the server mail transmission unit 307 transmits the electronic mail generated in step S115 to the destination (including CC).

  In step S118, the password notification mail transmission unit 309 transmits the password notification mail generated in step S116 to the transmission source of the email acquired in step S101.

  FIG. 5 is a diagram illustrating an example of an electronic mail transmitted from the transmission source “aaa@example.co.jp” to the transmission destination “abcdef@ppp.co.jp”. Two files are attached as the attached file 505.

  FIG. 6 is an example of a password notification mail corresponding to the electronic mail of FIG. “Aaa@example.co.jp”, which is the transmission destination of the e-mail shown in FIG.

  Also, “2012yamada0101”, which is a password corresponding to “abcdef@ppp.co.jp”, is described as the password (604).

  This password is an attached file password acquired from the password table 1100 shown in FIG. 11 based on the mail address.

  FIG. 7 shows an example of an e-mail sent to three destinations of “abcdef@ppp.co.jp”, “zzzzaa@ppp.co.jp”, and “bbbbdd@ppp.co.jp”. FIG. Similar to FIG. 5, there is an attached file.

  FIG. 8 is a diagram showing an example of a password notification mail corresponding to the electronic mail shown in FIG.

  The e-mail transmission destination shown in FIG. 7 is a transmission destination using a predetermined password. Therefore, the password described in the password notification mail is a password corresponding to each transmission destination (password registered in the password table in FIG. 11).

  FIG. 9 shows an example of an e-mail transmitted to three destinations “abcdef@ppp.co.jp”, “xyz@abc.co.jp”, and “12345@xyz.co.jp”. FIG. Similar to FIG. 5, there is an attached file.

  FIG. 10 is a diagram illustrating an example of a password notification mail corresponding to the electronic mail illustrated in FIG.

  Among the transmission destinations shown in FIG. 9, “abcdef@ppp.co.jp” is registered in the password table (FIG. 11), and thus is determined to be a transmission destination using a predetermined password.

  On the other hand, since “xyz@abc.co.jp” and “12345@xyz.co.jp” are not registered in the password table, they are transmission destinations using random passwords.

  In this way, when there is a mixture of destinations that use a predetermined password for the same e-mail and destinations that use a random password, use a random password for the destination that uses the predetermined password. become.

For this reason, the password notification mail shown in FIG. 10 describes the same password randomly generated for all transmission destinations.
[Second Embodiment]

  Next, a second embodiment of the present invention will be described with reference to FIG. Note that the description of the same processing as that of the flowchart of FIG. 4 described in the first embodiment is omitted here.

  In step S201, the CPU 201 of the mail server 104 determines whether a predetermined number of transmission destinations to which the random password is applied exist as a result of the password specifying process in step S104.

  That is, it is determined whether the number of e-mail addresses not registered in the password table (FIG. 11) among the transmission destination e-mail addresses set in the e-mail acquired in step S101 is a predetermined number or more.

  If there are a predetermined number or more of destination email addresses to which the random password is applied (step S201: YES), the process proceeds to step S112. And the process from step S112 to S118 is performed. The processes in steps S112 to S118 in FIG. 14 are the same as the processes in steps S112 to S118 described in FIG.

  Here, the setting of the determination criterion in step S201 will be described. The screen shown in FIG. 15 is a screen for setting the number of transmission destinations as a criterion for determining whether or not to apply the same one-time password.

  When a numerical value is input by the user in the input field 1501 shown in FIG. 15 and the registration button 1502 is pressed, the number of transmission destinations as a criterion for determining whether or not to apply the same one-time password is registered.

  When the number of transmission destinations to which the one-time password is applied is equal to or greater than the registered numerical value, the same one-time password is applied to the attached files to all transmission destinations.

  For example, consider a case where “3” is entered in the input field 1501 and the registration button 1502 is pressed. For example, it is assumed that two transmission destinations to which a fixed password is applied and four transmission destinations to which a one-time password is applied are set among the transmission destinations of the e-mail acquired in step S101 (step S201: YES). In this case, because the destination to which the one-time password is applied is greater than or equal to the registered numerical value, for all the destinations to which the fixed password is applied (two) and the destination to which the one-time password is applied (four) Thus, the same one-time password is applied (the processing of steps S112 to S118 in FIG. 14 is executed).

  On the other hand, when the number of transmission destinations to which the one-time password is applied is two (step S201: NO), the process proceeds to step S202. The processing after step S202 will be described later.

  If there is no predetermined number or more of destination email addresses to which the random password is applied (step S201: NO), the process proceeds to step S202.

  In step S202, the CPU 201 of the mail server 104 determines whether all of the destination email addresses set in the email acquired in step S101 are destination email addresses to which a predetermined password is applied.

  If it is determined that all the destination email addresses apply the predetermined password (step S202: YES), the process proceeds to step S106. And the process of step S106-step S111 is performed. The processing in steps S106 to S111 in FIG. 14 is the same as the processing in steps S106 to S111 described in FIG.

  If all the destination e-mail addresses are not destinations to which the predetermined password is applied (at least one destination to which the random password is applied is included), the process proceeds to step S203.

  That is, if the number of transmission destinations to which the random password is applied is smaller than the number of transmission destinations set on the setting screen of FIG. 15, but one or more are included, the processing from step S203 is executed. In the processing after step S203, a fixed password is applied to a destination to which a fixed password (predetermined password) is applied, and a unified random password is applied to a destination to which a random password is applied. It is processing.

  In step S203, the CPU 201 of the mail server 104 generates a random password such as a one-time password.

  In step S204, the CPU 201 of the mail server 104 extracts the file attached to the e-mail acquired in step S101.

  In step S205, the CPU 201 of the mail server 104 sets a password for the file extracted in step S204.

  The password set here applies the fixed password to the file to be transmitted to the transmission destination determined to be the transmission destination to which the fixed password is applied in step S104. On the other hand, the password generated in step S203 is applied to a file to be transmitted to a transmission destination that is determined not to apply a fixed password (a random password such as a one-time password is applied). At this time, if there are a plurality of transmission destinations determined not to apply the fixed password, the same password is applied to each of the transmission destinations.

  In step S206, the CPU 201 of the mail server 104 attaches the file in which the password is set to the e-mail again.

  In step S207, the CPU 201 of the mail server 104 creates a password notification mail.

  FIG. 16 is a diagram showing an example of the password notification mail created in step S207.

  This password notification mail is sent to the sender of the e-mail acquired in step S101, and is a mail notifying which password is applied to which destination.

  In the example shown in FIG. 16, three destinations “abcdef@ppp.co.jp”, “zzzaaa@ppp.co.jp”, and “bbbddd@ppp.co.jp” are set as destinations to which the fixed password is applied. The password notification mail when one of “abcdef@ppp.co.jp” is set as the transmission destination to which the one-time password is applied is shown.

  For “abcdef@ppp.co.jp”, “zzzaaa@ppp.co.jp”, and “bbbddd@ppp.co.jp”, passwords registered in the password table are set.

  On the other hand, since “abcdef@ppp.co.jp” is not registered in the password table, “D41ZJdkG”, which is a one-time password, is set.

  Thus, the transmission destination to which the fixed password is applied and the transmission destination to which the one-time password is applied are mixed. Therefore, in the password notification mail, the destination to which the fixed password is applied and the destination to which the one-time password is applied are described so as to be easily identified. Specifically, in the present embodiment, a destination to which a fixed password is applied is marked with “」 ”, and a destination to which a one-time password is applied is marked with“ ★ ”so that it can be identified.

  In addition, since it is necessary to notify the transmission destination of the password to the transmission destination to which the one-time password is applied, there is also a statement urging that effect.

  In step S208, the CPU 201 of the mail server 104 transmits the e-mail attached with the file in step S206 to the transmission destination.

In step S209, the CPU 201 of the mail server 104 transmits the password notification mail created in step S207 to the transmission source of the email acquired in step S101.
And the process of this flowchart is complete | finished.

  With the above processing, in the case of “only the destination to which the fixed password is applied”, it is possible to transmit an e-mail to which the password registered in advance is applied to each destination. As a result, the recipient of the e-mail can decrypt the password using the password that is always used, which reduces the burden of searching for the password. Since it is not necessary for the sender of the e-mail to notify the password, the burden can be reduced.

  In addition, if "the destination to which the one-time password is applied and the destination to which the fixed password is applied is mixed and the number of destinations to which the one-time password is applied exceeds the predetermined number," It is possible to send an e-mail with the same one-time password. As a result, the sender of the e-mail only needs to notify the same password to all the destinations uniformly, so it is necessary to notify the destination of the password, and to which destination the password is notified. Therefore, it is not necessary to determine whether the password is unnecessary, and the burden of password notification can be reduced.

  In addition, apply a fixed password when “the destination to which the one-time password is applied and the destination to which the fixed password is applied are mixed and the number of destinations to which the one-time password is applied is less than the predetermined number”. An e-mail to which a fixed password registered in advance is transmitted to a destination, and an e-mail to which a one-time password is applied can be transmitted to a destination to which no fixed password is registered.

  As a result, a recipient who normally uses a fixed password can decrypt it with the same password as usual, so it is possible to reduce the burden of searching for the password without any trouble.

Moreover, since the number of notification destinations for notifying passwords is reduced in the sender of the mail, the burden is reduced. Here, the email sender needs to determine the destination that needs to be notified of the password (the destination to which the one-time password is applied) and the destination that does not need to be notified (the destination to which the fixed password is applied). However, it is possible to further reduce the burden by notifying that the transmission destination to which the one-time password is applied and the transmission destination to which the fixed password is applied in the password notification mail.
[Third Embodiment]

  Next, the third embodiment will be described. Since the configuration and processing are substantially the same as those of the first embodiment, the same configuration and processing will be described below using the same reference numerals.

  In the first embodiment, the password to be used is determined according to the address of the e-mail transmission destination. On the other hand, in the third embodiment, a password to be used is determined according to both e-mail addresses of the e-mail transmission source and the transmission destination.

  As a difference from the first embodiment, first, the password table 1100 shown in FIG. 11 has one mail address, but in this embodiment, a mail address is further added (FIG. 12_1201). .

  Using this password table 1200, a password for the attached file is set.

  Specifically, in step S103, the transmission source and transmission destination of the electronic mail acquired in step S101 are acquired. In step S104, a password is determined from the table of FIG. 12 using the combination of the source address and the destination address acquired in step S103.

  In the processing after step S107, processing is performed using the password corresponding to the combination of the transmission destination and the transmission source specified in step S104.

  As described above, according to the present invention, a predetermined password or a unified password for all transmission destinations is set in an attached file of an e-mail.

  Therefore, when notifying the set password to the transmission destination, the person who gives the notification does not get confused about which transmission destination should be notified of which password, which can contribute to convenience.

  Further, the present invention can take an embodiment as a method, a program, a storage medium, or the like.

  In this case, the program itself read from the recording medium realizes the novel function of the present invention, and the recording medium storing the program constitutes the present invention. As a recording medium for supplying the program, for example, a flexible disk, hard disk, optical disk, magneto-optical disk, CD-ROM, CD-R, DVD-ROM, magnetic tape, nonvolatile memory card, ROM, EEPROM, silicon A disk or the like can be used.

  Further, by executing the program read by the computer, not only the functions of the above-described embodiments are realized, but also an OS or the like operating on the computer based on an instruction of the program is a part of the actual processing or It goes without saying that the case where the functions of the above-described embodiments are realized by performing all of the above processing is also included.

  Furthermore, after the program read from the recording medium is written to the memory provided in the function expansion board inserted into the computer or the function expansion unit connected to the computer, the function expansion board is based on the instructions of the program code. It goes without saying that the case where the CPU or the like provided in the function expansion unit performs part or all of the actual processing and the functions of the above-described embodiments are realized by the processing.

  Needless to say, the present invention can be applied to a case where the present invention is achieved by supplying a program to a system or apparatus. In this case, by reading a recording medium storing a program for achieving the present invention into the system or apparatus, the system or apparatus can enjoy the effects of the present invention.

  Furthermore, by downloading and reading a program for achieving the present invention from a server, database, etc. on a network using a communication program, the system or apparatus can enjoy the effects of the present invention. In addition, all the structures which combined each embodiment mentioned above and its modification are also included in this invention.

100 Information Processing System 101 Client Terminal 102 Administrator Client Terminal 103 Local Area Network (LAN)
104 internal mail server 105 wide area network 106 external mail server 201 CPU
202 RAM
203 ROM
204 System Bus 205 Input Controller 206 Video Controller 207 Memory Controller 208 Communication I / F (Interface) Controller 209 Input Unit 210 Display Device 211 External Memory

Claims (10)

Storage means for storing a predetermined password set in the attached file of the e-mail in association with the destination;
Password generation means for generating a password to be set in the e-mail;
First password setting means for setting a predetermined password corresponding to the transmission destination set in the e-mail stored in the storage means for the file attached to the e-mail;
Second password setting means for setting a password generated by the password generation means for the file attached to the e-mail;
Transmitting means for transmitting an e-mail attached with a file in which a password is set by the first password setting means or the second password setting means;
A password set for the file attached to the e-mail transmitted by the transmission means is set by a predetermined password set by the first password setting means or by the second password setting means. A notification means for identifying and notifying which password is a password,
An information processing apparatus comprising: Before Stories second password setting means, to set the generated password by previous SL password generating means for files attached to the e-mail for the destination that is not stored in the previous term memory means The information processing apparatus according to claim 1. The second password setting means, when a plurality of destinations set in the e-mail includes destinations not stored in the storage means, the second password setting means sets the destinations stored in the storage means. The information processing apparatus according to claim 1 , wherein a password generated by the password generation unit is set for a file attached to the e-mail . Before Stories second password setting means, if the previous SL to multiple destinations that are set in the e-mail, the destination that is not stored in the previous term memory means is included only satisfy the number of previously determined, any one of claims 1 to 3, characterized in that to set the password password that will be generated by the generation means to the file also attached to the e-mail to destinations stored in said storage means The information processing apparatus according to item 1 . The e-mail is a divided mail obtained by dividing an e-mail in which a plurality of destinations are set for each destination ,
When the second password setting unit includes a transmission destination in which a password corresponding to the transmission destination is not stored in the storage unit in the plurality of transmission destinations set in the e-mail before the division , either with respect to the destination in the storage means is stored for the relevant partial email files attached to the claims 1 to 4, characterized in that to set a password generated by said password generating means 1 The information processing apparatus according to item . The password is Ru generated password by generating means, the information processing apparatus according to claim 5, characterized in that it is common to set the attached to the divided partial email every destination file. The storage means further includes
A password is stored in association with a set of a sender and a destination of the email,
The first password setting means further includes:
The password corresponding to the set of the source and destination set in said e-mail, according to any one of claims 1 to 6, characterized in that set in the electronic mail to the attached file Information processing device. Server mail receiving means for receiving e-mail;
Sending means for sending the e-mail to a destination set in the e-mail received by the server mail receiving means;
Further comprising
The first password setting means and said second password setting means, according to claim 1 to 7, characterized in that to set a password for the attached to the e-mail received by the server mail receiving means file The information processing apparatus according to any one of claims. An information processing method in an information processing apparatus for storing a predetermined password set in an attached file of an email in association with a transmission destination,
The information processing apparatus includes:
A password generating step of generating a password to be set in the e-mail by the password generating means of the information processing apparatus;
A first password setting unit of the information processing apparatus sets a predetermined password corresponding to a transmission destination set in the stored e-mail for the file attached to the e-mail . Password setting process;
A second password setting step in which the second password setting means of the information processing apparatus sets the password generated by the password generation step with respect to the file attached to the e-mail;
A transmission step in which the transmission unit of the information processing apparatus transmits an e-mail attached with a file in which a password is set in the first password setting step or the second password setting step;
The password set for the file attached to the e-mail sent by the sending step by the notification means of the information processing apparatus is the predetermined password set by the first password setting step, or A notification step of identifying and notifying which of the passwords is set by the second password setting step;
An information processing method comprising : A program executed in an information processing apparatus that stores a predetermined password set in an attached file of an e-mail in association with a transmission destination,
The information processing apparatus;
Password generation means for generating a password to be set in the e-mail;
First password setting means for setting a predetermined password corresponding to the transmission destination set in the stored e-mail for the file attached to the e-mail ;
Second password setting means for setting a password generated by the password generation means for the file attached to the e-mail;
Transmitting means for transmitting an e-mail attached with a file in which a password is set by the first password setting means or the second password setting means;
A password set for the file attached to the e-mail transmitted by the transmission means is set by a predetermined password set by the first password setting means or by the second password setting means. A notification means for identifying and notifying which password is a password,
Program characterized Rukoto to function with.

Images