JP2003044381A - File synchronization system and file managing server - Google Patents

Abstract

PROBLEM TO BE SOLVED: To easily provide a file synchronization system with high security by using a pubic network such as the Internet. SOLUTION: The file synchronization client process 4 of a server device 2 in a company requests account information from the server device 3 of a provider, stores it and causes the provider to transmit the electronic mail of the mail mi of a use permitted person by HTTPS. The deletion list of the use permitted person of a company A is requested by HTTPS at every 10 minutes and the mail applied to the deletion list from the provider is deleted. The file synchronization server process 15 of the server device 3 of the provider stores the electronic mail from the company A in a file 16, and transmits it to a portable terminal by HTTPS. It transmits deletion data stored in the deletion list 18 by HTTPS when a deletion request is given and deletes deletion data when a response is given with respect to deletion from the server device of the company A.

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention connects an information providing device and a client device via a network, and when a file stored in the client device is sent to the information providing device, it is sent and stored in HTTPS to store the file. The present invention relates to a file synchronization system and a file management server in which an information providing apparatus and a client apparatus delete files from each other after transmitting the HTTP to an external terminal by HTTPS.

[0002]

2. Description of the Related Art With the spread of the Internet, the exchange of information by electronic mail is increasing.

[0003] For example, in a company, an e-mail from the other party is filed in a server in the company and LA is stored.
The employee operates the terminal (client) connected to N to transfer the email from the server, and the employee views the content of the email.

On the other hand, the server and client are HTML
(Hyper Text Markup Langau
The language described in "age" is HTTP (Hyper T
extTransfer Protocol).

[0005] Further, the exchange of electronic mail is carried out by SMTP.
(Simple Mail Transfer Pro
tocol). This SMTP is simply a protocol for sending mail to the other party, and the security of the text is not compensated.

That is, SMTP cannot prevent falsification, eavesdropping, and spoofing of electronic mail.

Therefore, SSL (Secure Sockets) for encryption / decryption to improve security.
It is common to use a layer).

That is, the firewall is shown in FIG.
As shown in, TCP / IP (Transmissio
n control Protocol / Intern
The available communication is limited by the structure in which the SSL layer and the HTTP layer are placed on the (etProtocol) layer.

However, in business enterprises, sales employees have come to own terminals such as mobile phones and personal computers, and when they are out or on holidays, they access their own servers via the Internet from their homes. There is a request to transfer an e-mail addressed to a mobile phone or a personal computer.

In order to confirm the e-mail of the server in the company by the mobile phone, (a) a method of directly transferring to the e-mail account of the mobile phone, and (b) a method of utilizing the web browsing function of the mobile phone is there.

Since the method (a) uses SMTP, the message will flow to the Internet in plain text, and therefore many companies prohibit transfer and use.

In the method (b), an internal Webmail server is constructed or an external Webmail server compatible with mobile phones is used.

Further, security may be secured by a protocol including SSL and a proprietary protocol, regardless of the methods (a) and (b).

In such a case, the firewall has been modified so that it can pass through even if communication is made from the client using the protocol consisting of SSL and the original protocol.

Also, at the transfer destination, a protocol in which SSL and a unique protocol are combined is prepared and realized.

[0016]

However, there is an increasing demand for accessing e-mail addressed to oneself to a mobile phone or a personal computer by accessing the server of the own company from the home via the Internet while away from home or on holidays. It tends to strengthen.

(B) In the method of utilizing the web browsing function of the mobile phone, it is necessary to construct a web mail server or use an external web mail server compatible with the mobile phone, which is costly for a company. There was a problem that the burden was heavy.

In order to secure the security of electronic mails via the Internet and transfer them to external terminals via a protocol consisting of SSL and proprietary protocols, the firewall must be modified and SSL and proprietary protocols must be used at the transfer destination. I have to prepare a protocol that
There was a problem of high cost.

On the other hand, in a company, it is preferable to manage the electronic mail transmitted from the server via the Internet by performing file synchronization between the mobile phone or the mobile terminal and the server.

However, in order to secure security when sending an e-mail, it is sent by a protocol consisting of SSL and an original protocol, so that it is necessary to modify the firewall or the like, so that the file synchronization of the e-mail can be easily performed. There was a problem that could not be realized.

On the other hand, the firewall is shown in FIG.
As shown in FIG. 7, it is provided with SSL and HTTP, and S
The combination of SL and HTTP can be passed.

That is, for file transfer using a public network such as the Internet, it is desirable to easily realize high-security communication and file synchronization by using HTTPS.

On the other hand, while maintaining high security,
As a way to browse files and emails from home,
There is a method of dialing up to connect to your company's server from a personal computer at home. According to this method, since the connection from the personal computer at home to the own company does not go through the server and the communication network operated by a third party, there is little risk of data interception and falsification.

However, in order for the server of the own company to accept a connection from home, the server of the own company must be provided with a dial-up server, and in order to further enhance security, it is necessary to have a function such as a callback. .
Further, since the personal computer at home is connected to the server of the company, it may be damaged by a virus, and it is necessary to check the virus. Therefore, this method imposes a heavy burden on the company in terms of cost and operation.

Therefore, an object of the present invention is to provide a file synchronization system and a file management server capable of managing files in a company from an arbitrary terminal.

[0026]

The first feature of the present invention is to:
A client apparatus that communicates by passing information of Internet protocols, HTTP, and SSL protocols, and an information providing apparatus that communicates by passing only information of the same protocol as the client apparatus are connected to a network, and mutually connected. It is a file synchronization system that synchronizes files and provides the files required by an SSL-compatible external terminal to the external terminal.

The client device, when transmitting information from the device to the information providing device via the network, has means for transmitting by HTTP after passing through SSL, and when receiving information from the information providing device. , H
It has means for receiving by TTP and passing through SSL.

When the information providing apparatus transmits information from the information providing apparatus via the network, the SS
A means to send by HTTP after passing through L, and when receiving information from the network, use HTTP to send SS
The gist of the present invention is to include means for passing through L and means for accepting access from an external terminal via the network and transmitting the file requested by the external terminal.

A second feature of the present invention is a file management server connected to a communication network for managing files, and a file synchronization server that manages the same files as those managed by the file management server. In a file management server used in a file synchronization system that manages files while synchronizing with each other, a file database in which files are stored and a file update request received from a terminal connected to the file management server And updating the file for which the update request has been made from the file database, and further creating the first update list of the file for which the update request has been made.
File updating means, and a protocol converting means for encrypting the first update list and then transmitting it to the file synchronization server via the communication network.

Further, the protocol converting means further includes second file updating means for decoding the encrypted second update list received from the file synchronization server and updating the file database according to the second update list. It is preferable to further provide.

Further, the first file updating means is a thread that mediates the connection with the file database, and is connected to the file database using one of the plurality of database connection threads provided in advance. , And requesting an update to the database connection thread,
It is preferable to include a database connection management unit that maintains a connection with the file database, and a command processing unit that processes an update command requested by the first file updating unit.

[0032]

DESCRIPTION OF THE PREFERRED EMBODIMENTS <First Preferred Embodiment> FIG. 1 is a conceptual diagram of a file synchronization system using a public network according to the first preferred embodiment.

As shown in FIG. 1, the basic of this system is that a server device 2 of a company A and a server device 3 of a provider are connected to a network 1 (WAN, Internet, etc.), and mutual communication uses HTTPS. File synchronization.

The server device 2 (also referred to as a client device) of the company A has SSL and HTTP on the TCP / IP layer.
Firewall 7 (F / W) to pass through and HT
A TP / HTTPS server process 8, a file control process 9, and a file 10 in which data is stored are already provided. Further, the server device 2 of the company A is already equipped with the personal computer 11 having the browser function.

Further, the file synchronization client process 4 is provided. This file synchronization client process 4 requests the provider for a licensed user (account information) that can receive the service of this system, and checks whether the file data of this licensed user is newly stored in the file 10. When the file control process 9 is inquired and new file data exists,
The file data is transmitted using the HTTP / HTTPS server process 8.

Further, the server apparatus 3 of the provider is periodically inquired about the deletion list of the company A, and the file data matching the file code (company name, file identification header) of the transmitted deletion list is sent from the file 10. It is deleted, and the deletion result is transmitted by HTTPS.

On the other hand, the server device 3 of the provider has an account list 13 in which the user codes (company name, name, etc.) of all the companies permitted to use are stored, and HTTP / HTT.
PS server process 14, file synchronization server process 15, file 16, and file deletion process 17
Delete list 18, TCP / IP, SSL, HTT
And a firewall 19 (F / W) that allows P to pass through.

The file synchronization server process 15 uses the CG
HT, which is a program started by I or server API
When the file data from the company A is transmitted via the TP / HTTPS server process 14, the file data is transmitted to the file 1
Store in 6.

Further, by the file deletion process 17,
It is monitored whether or not the deletion data is stored in the deletion list 18 (deletion is instructed by an external terminal), and when the deletion data is stored, the deletion data is stored in HTTP.
When it is notified by S that the file of company A corresponding to the deleted data has been deleted, the file deletion process 17 deletes the deleted data in the deletion list and the file data of file 16 to synchronize. I take the.

That is, both the company side and the provider side have H
The communication is enabled by TTPS, and the provider responds to the request by the request from the company A and transmits the data in response to the request to the company for file synchronization.

<Second Embodiment> An electronic mail file synchronization based on the above configuration will be described as a second embodiment. FIG. 2 is a schematic configuration diagram of the second embodiment.

As shown in FIG. 2, the network 1 (WA
Mobile phone 21, mobile personal computer 22 (hereinafter collectively referred to as mobile terminal) compatible with SSL on N, Internet, wireless network, etc., computer system 24 of company B, mobile phone 25, and server device 2 of company A. The server device 3 of the provider.

In this embodiment, the server device 2 of the company A
Is a firewall 7 (F / W) that passes TCP / IP, SSL, and HTTP, and HTTP and SSL.
(A protocol combining HTTP and SSL is called HT
An HTTP / HTTPS server process 8 having a TPS), an existing mail server 20a, and a mail spool 20 are already provided.

The mail spool 20 stores the personal computer 11 (browser function) of the company A, the mail (SMTP) from the company B connected to the network 1 or the mail (SMTP) from the mobile phone.

In this embodiment, the file synchronization client process 4 is provided and the company A on the provider side is provided.
I am trying to synchronize files with my email.

This file synchronization client process 4
Requests the authorized person (account information) from the provider who can receive the service of this system,
When the mail mi of the authorized user is stored in the mail spool 20, the mail mi is transmitted to the provider by the existing HTTPS to synchronize (asynchronize).

The file synchronization client process 4
Is, for example, HTTPS every fixed time (for example, every 10 minutes)
Request the deletion list of the authorized user of company A, and send the email address mip and date of the deletion list from the provider.
A mail having a header corresponding to the time is deleted from the mail spool 20, and the deletion (mail address, year / month / day time) is notified to the provider by HTTPS.

On the other hand, the server device 3 of the provider uses the CGI program or N as the file synchronization server process 15.
ZOLAR operating as a DLL module of SAPI
Is used. ZOLAR passes an SQL statement to the database using an HTML template file, which is an extension tag dedicated to ZOLAR, and creates a file having a format for outputting the returned data.

When a request for account information is received from the company A via the HTTP / HTTPS server process 14, the account information of the company A is retrieved from the account list 13 (the mail address and the mobile terminal address are associated with each other). HTTP / HTTPS server process 14
Pass to. Also, the electronic mail from the company A is stored in the file 16.

Further, when a deletion request is made after sending a mail to the portable terminal by HTTPS, the deletion list 1
The deletion data is stored in 8, and the deletion data of the deletion list 18 is transmitted when the deletion data is transmitted by HTTPS in response to the inquiry from the server device of the company A, and the deletion is made from the server device of the company A. The electronic mail corresponding to the deletion data is deleted.

FIG. 3 is a block diagram of the file synchronization client process of the server device 2 of the company A. As shown in FIG. 3, the protocol determination unit 30 and the inquiry processing unit 31.
And a file synchronization processing unit 32.

The protocol determination unit 30 uses HTTP / HT
Make a connection using the TPS server process 8,
The protocol input by the personal computer 11 is decided together with the provider.

The inquiry processing section 31 makes an account request to the provider by HTTPS when the time entered by the personal computer 11 (for example, every day) is reached, and the account information from the provider (used for the company A is used). The email address of the employee who is allowed to) is stored in the account file 33, and this account file 3
The electronic mail (hereinafter simply referred to as mail) corresponding to the account information of No. 3 is acquired and transmitted.

Also, every time the time entered by the personal computer 11 (for example, 10 minutes) is reached, the deletion data (mail address and date / time) are requested from the provider, and the transmitted deletion data is stored in the deletion list file 34. Store and delete the deletion data of the list.

Each time the account information (mail address) is sent from the inquiry processing unit 31, the file synchronization processing unit 32 acquires (POP) a corresponding mail using the mail server 20a, and this is acquired by HTTP / HTTP.
It is passed to the S server process 8 and is sent to the provider by HTTPS.

Also, every time the inquiry processing unit 31 sends the deletion data, the mail in the mail spool 20 is deleted using the mail server 20a, and the deletion result is transmitted to the provider.

The system configured as described above will be described below with reference to the sequences of FIGS. 4 and 5.

It is a sequence diagram for explaining the operation of the system. In the present embodiment, for example, the account information Aki (mail address) of the user of the company A who can use this service is registered in advance in the account list 13 of the server device 3 of the provider, and the account information It is assumed that the file 16 for storing (copying) the mail has been created. The public network is the Internet.

First, as shown in FIG. 4, the server device 2 of the company establishes a connection with the provider using the network 1 to determine the communication protocol before requesting the account information for file synchronization. , HTTP /
It is set in the HTTPS server process 8 (d1). In this embodiment, it is HTTPS.

Next, the server device A of the company requests the information (mail address) of the account that the company A is permitted to use (d2).

As shown in FIG. 4, this request is sent to the transmission / reception server process (which is preferably existing in the company A), passed to SSL and passed to HTTP.
That is, it is sent by the HTTPS protocol. As shown in FIG. 4, this packet is composed of, for example, an IP header (including a provider address), a TCP header, text data, and the like. Also, the destination port number of the TCP header is "44
3 ”.

Then, this packet is sent to the firewall 7 of the company A. Here, the firewall 7 includes TCP / IP, SSL, and H as shown in FIG.
Since it passes TTP, the above-mentioned HTTPS packet passes through as it is and is transmitted to the server device 3 of the provider via the network 1 (d3).

On the other hand, the firewall 1 of the provider
9 is TCP / IP, SSL, HT, as shown in FIG.
Since the TP is passed, the above-mentioned HTTPS packet is passed as it is, and is passed to the HTTP / HTTPS server process 14 of the server device 3 of the provider via the Internet (d4). That is, the HTTPS having the destination port number “443” is activated.

Then, the requested contents of the packet are decrypted and passed to the file synchronization server process 15 of the provider (d5).

The file synchronization server process 15 performs the processing described below. 6 and 7 are flowcharts for explaining the operation of the file synchronization server process 15.

The file synchronization server process 15 uses the HT
Received data (company name Ki, command) from the TP / HTTPS server process 14 is read (S1).

Next, it is determined whether or not this received data indicates a request for account information (S2).

When it is determined in step S2 that the account information is requested, the company name Ki that requested the account information is read from the received data (S3).

Next, the mail address Aki having the company name Ki is extracted from the account file (S4), and HT
E-mail address A extracted by specifying TPS "443"
Ki is passed to the HTTP / HTTPS server process 14 (S5, d6 in FIG. 4).

That is, a packet of the HTTPS protocol passes from the provider through the firewall 19 and the account information (authorized user) managed by the provider is sent to the server device 2 of the company A through the network 1. (D7 in FIG. 4).

The firewall 7 of the company A is TCP
/ IP, SSL, and HTTP are passed, the HTTPS packet from the above-mentioned provider passes through as it is, and HTTP / HTT of the server device 2 is passed.
Passed to PS server process 8 (d8 in FIG. 4), HTT
PS (HTTP, SSL) starts.

Upon receipt of the account information from the provider, the inquiry processing unit 31 of the file synchronization client process 4 of the server device 2 of the company A receives a file (account information permitted to the company A: hereinafter referred to as an account file of the company A). And memorize it (d9).

Next, the inquiry processing section 31 reads the account information Aki (mail address) in the account file 33 of the company A one by one, and the account information Aki (mail address) is read every time the reading is performed.
Pass to. Every time the file synchronization processing unit 32 receives the account information Aki (mail address) of a user permitted by the company A, is there mail in the mail spool 20 of the account information Aki (mail address) in the mail server 20a? Inquire about (d1
0).

Each time there is an inquiry, the mail server 20a sends a mail corresponding to the account information Aki (mail address) to the POP (Post Office Prot).
ocol), and delivers it to the file synchronization processing unit 32 (d11).

Next, the file synchronization processing section 32 sends the mail a corresponding to the account information Aki (mail address).
Every time i is passed, HTTP / H is specified by specifying HHTPS.
It is passed to the TTPS server process 8 (d13). That is,
It is sent to the firewall 7 by the HTTPS protocol (destination port number of TCP header is “443”).

Here, as shown in FIG. 4, the firewall 7 has a structure that allows SSL and HTTP to pass over TCP / IP. The packet is transmitted via 1 to the server device 3 of the provider (d14).

The provider firewall 19 is
As shown in Figure 4, SSL / HTT on top of TCP / IP
Since P is passed, HTTP is passed to the server device 3
/ Passed to the HTTPS server process 14 (d1
5). That is, the HTT with the destination port number "443"
PS will start.

Then, the requested content of the packet is decrypted and passed to the file synchronization server process 15 of the provider (d16).

Next, the file synchronization server process 15 of the provider performs the processing described in FIG. That is,
As shown in FIG. 6, when the received data is read, it is determined in step S2 that the request is not for the account information Aki.

Next, when it is determined in step S2 that the request is not for account information Aki, it is determined whether or not a mail is transmitted (S6).

When it is determined that the mail is sent, the mail a
Read the mail address mi added to i (S
7).

Next, the mail file Fi corresponding to this mail address mi is assigned (S8), and the mail ai sent from the company side is stored in the mail file (S9).

That is, the provider has the same mail as the mail of the employee having the mail address mi on the company side.

For example, as shown in FIG. 8, a mail of a company employee consisting of a header and a body is stored as a file. FIG. 8 shows that there are two types of mail addressed to “h-yamamoto” (different in time) ((a) of FIG. 8 and (b) of FIG. 8).

Then, as shown in FIG. 5, the employee a of the company A accesses the provider via the network 1 using the portable terminal (SSL compatible) to open the home page,
The email of the employee a is requested on this screen (d20). This e-mail request is made by HTTPS.

Next, the server device 3 of the provider, which has received the mail request from the portable terminal, operates the firewall 19
Is passed to the HTTP / HTTPS server process 14 via the Internet (d21), and communication is performed by the HTTPS protocol there, and the file synchronization server process 15 (ZOL
AR) (d22).

File synchronization server process 15 (ZOL
AR) performs the processing described in FIG. As shown in FIG. 6, when the received data is read, it is determined in step S2 that the request is not for account information Aki,
In step S6, it is determined that the mail ai is not transmitted from the company side.

Next, when it is determined in step S6 that the mail ai is not sent from the company side, it is determined whether the mail request is from the portable terminal (S10).

If it is determined in step S10 that the mail request is from the mobile terminal, the address mp of the mobile terminal is displayed.
Is read (S11) and compared with the account information Aki (terminal address) in the account list 13 to determine whether the user can provide the service (S12).

When it is determined in step S12 that the user is a user, it is determined whether or not there is a mail corresponding to the mail address of the address mp in the file 16 (S13).

If it is determined in step S13 that the requested mail exists in the file 16, the mail and the delete icon are sent to the HTTPS server process 1
Then, the process is returned to step S1 (S14).

That is, from the HTTP / HTTPS server process 14, the TCP header with the destination port number set to "443" and the mail body are firewalls 19.
Is sent to the employee a of the company A via the network 1.
To the mobile terminal (d23, d24, d2 in FIG. 5)
5). Therefore, the security is maintained even through the network 1 and the mail is transferred to the employee a of the company A.

If it is determined in step S12 that the mail address mp is not an available user, a message indicating that it cannot be used is passed to the HTTPS server process 14 for transmission (S15).

Further, when it is determined in step S13 that the mail ai corresponding to the mail address mp does not exist, a message indicating that the mail has not been received is passed to the HTTPS server process 14 for transmission (S).
16).

If the employee a of the company A selects the delete icon after confirming the mail addressed to himself on the screen of the mobile terminal (d26), the delete request is sent to the provider via the network 1 via HTTPS. Done (d2
7).

Since this deletion request is HTTPS, it passes through the firewall 19 and is passed to the HTTP / HTTPS server process 14 (d28), and the file synchronization server process 15 passes the deletion request (d2).
9). Then, the processing described in FIG. 7 is performed.

As shown in FIG. 7, deletion list generation processing of the file synchronization server process 15 (not shown in FIG. 2)
Monitors whether there is a mail deletion request from the mobile terminal (S20).

If it is determined in step S20 that the request is a mail deletion request, deletion data in which the mail address mp from the mobile terminal and the deletion command are paired is generated and stored as a list (S21). For example, employee a of company A
8 (a) email was sent to the mobile terminal of
When the deletion request is transmitted from the mobile terminal, as shown in FIG. 9, a deletion list in which a mail address and a header (year / month / day / time) are associated with each other is generated.

On the other hand, the file synchronization client process 4 of the company A requests the deletion list of the company A, for example, every 10 minutes (d30).

The request for the deletion list is HTTP / HTT.
The data is passed to the PS server process 8, passed through SSL and HTTP (d31), passed through the firewall 7 and transmitted to the provider (d32).

Then, the request for the deletion list (the deletion list of the employees who are permitted to use the company A) is issued from the company A through the firewall 19 of the provider and the HTTPS server process 14 to generate the deletion list of the file synchronization server process 15. The process receives (d33).

When it is determined in step S20 that the deletion request is not a mail deletion request from the portable terminal, the deletion list generation process determines whether the deletion list is requested from the company Ki (S22).

If it is determined in step S22 that there is a deletion list request, it is determined whether the deletion list file contains deletion data DS of the company Ki (S2).
3).

In step S23, the deleted data DS
When it is determined that there is a list of all the deletion data DS of the company A at the present time, the HTTPS server process 14
And sends it to company A (S24, d3 in FIG. 5).
4).

This deletion list is transmitted by the company A through the firewall 19 by HTTPS by the HTTP / HTTPS server process 14 (d36).

The firewall 7 on the side of the company A passes the deletion list, the HTTP / HTTPS server process 8 receives it, and passes it to the file synchronization client process 4 (d37).

The inquiry processing unit 31 of the file synchronization client process 4 stores the deletion list from the provider in the deletion list file 34, then sequentially reads the deletion data of the deletion list file 34, and the mail address of the read deletion data. And a delete command are sent to the mail server 20a via the file synchronization processing unit 32 (d38).

The mail server 20a uses the mail spool 2
Delete the email corresponding to the email address from 0 (d3
9), the deletion is notified to the file synchronization processing unit 32 as a result response (d40).

This response is sent by the HTTP / HTTPS server process 8 to the provider via the firewall 7 and the network 1 by HTTPS (d41). This response result (address of deleted mail, date of mail, time of mail) is passed to the HTTP / HTTPS server process 14 via the firewall 19 of the provider and sent to the file deletion process (d42).

In the file deletion process of the provider, as shown in FIG. 7, it is determined whether or not a deletion response is sent from the company (S25).

In step S25, if there is a deletion response, the deletion data corresponding to the response mail address, date, and time is deleted from the deletion list of the provider, and the mail address, date, and date are deleted from the mail file. The mail corresponding to the time is deleted (S26, d43 in FIG. 5).

That is, the mail in the mail file of the provider and the mail on the company side are deleted in synchronization with the mail deletion request from the outside.

Here, the description of the ZOLAR of the above embodiment will be supplemented. A personal computer that has an HTML browser in which a URL for executing a request to ZOLAR is specified and that makes a request to ZOLAR to a Web server connected to network 1 (Internet);
It consists of a Web server compatible with API or Apache and a database, and uses various functions to create a C on the usage environment.
It is possible to obtain GI environment variables and HTTP request header information.

The above-mentioned Web server has a ZOLAR module. This ZOLAR module is NSA
An interface class (NSAPI class 6, Apache class 7) of either PI or Apache is implemented, and these classes are described in the format of any of the above-mentioned classes to acquire an HTTP request header,
It has functions such as acquisition of a received message, setting of an HTTP request header, and transmission of a transmitted message, so that it is possible to determine from which browser and who.

That is, ZOLAR is described in the C ++ language, and in a mechanism of encapsulating one of the features in this object-oriented language, that is, a set of data and procedure, ZOLAR is used in either format of NSAPI or Apache Are offered.

Therefore, ZOLAR CORE9 has
It has a class setting interface for selecting either NSAPI class 6 or Apache class 7.

This class setting is set in advance in consultation with the user. If the user uses NSAPI, it is set to NSAPI, and if it is Apache, it is set to Apache.

That is, by implementing an interface that can easily switch the connection, for example, at the time of shipment, the Apache compatible one and the Netscape S
An interface program that is different from the one that corresponds to ever is a different interface program.

Although the file synchronization of electronic mails has been described in the above embodiment, as shown in FIG. 10, the schedule management table 20b is provided in the server device 2 on the company side, and the schedule of the schedule management table 20b is stored in the server. It may be transmitted to the device 3 and viewed by accessing the terminal (mobile terminal) of the employee of the company A.

In FIG. 10, the company A has schedule management software, and the schedule of each employee is created using this schedule management software and stored in the schedule management table 20b.

The file synchronization client process 4 of the server device 2 stores the new schedule every time it is stored.
The schedule is transmitted to the server device 3 of the provider by HTTPS.

HTTP / H of the server device 3 of the provider
The TTPS server process 14 receives and passes it to the file synchronization server process 15.

The file synchronization server process 15 stores the received schedule in the file 16.

On the other hand, when the schedule browsing request is received from the mobile phone 21, the HTTP / HTTPS server process 14 receives it, and the file synchronization server process 1
Pass to 5.

The file synchronization server process 15 passes the requested schedule to the HTTP / HTTPS server process 14 after determining whether or not the user is an available user (determining using the address number of the mobile phone, etc.).
It is transmitted to the mobile phone 21 by TPS.

Further, in the above embodiment, when the electronic mail is deleted, it is deleted by selecting the delete icon.
It may be automatically deleted when an electronic mail is sent to the mobile terminal side according to a request from the mobile terminal.

<Third Embodiment> In the third embodiment of the present invention, the functions in the server according to the first and second embodiments will be described in detail.

FIG. 11 is a system configuration diagram of a file synchronization system according to the third embodiment of the present invention. The file synchronization system according to the third embodiment of the present invention includes a company server device (file management server) 101 including a synchronization processing unit 111 and a provider server device (file synchronization server) 103 including a synchronization processing unit 151. .
Company server device 101 and provider server device 103
Are connected to the network 1. Here, the network 1 is a communication network such as the Internet, personal computer communication, or VAN.

The company server device 101 and the provider server device 103 can communicate with each other via the network 1 by a common protocol. Furthermore, the synchronization processing units 111 and 1
By 51, the managed files can be synchronized with each other via the network 1.

The company server device 101 is a server of the company LAN provided in the company, and is connected to the company terminals 102a to 102d. Corporate server device 101
Stores files used by the company terminals 102a to 102d. Here, the file may be a plan proposal, a file related to a product, or the like. Further, when the company server device 101 also serves as a mail server, the mail sent to the company may be used. These files are synchronized with the provider server device 103.

To the network 1, client terminals 104a to 104c, which are terminals personally used by users of the corporate LAN, are connected. The user
From the client terminals 104a to 104c, it is possible to connect to the provider server apparatus 103 via the network 1 and obtain a file equivalent to the file held by the company server apparatus 101.

FIG. 12 is a functional block diagram of the company server device 101. The company server device 101 includes an account list 113, a file DB 10 and a communication control device 11.
2, protocol conversion unit 115, account authentication unit 11
6, a file filter unit 117, and a synchronization processing unit 111.

The account list 113 stores the account and password for permitting the connection to the company server device 101 in the company terminals 102a to 102d and the provider server device 103 which can be connected to the company server device 101. It is a device.

The file DB 10 is the company server device 10
1 is a storage device that manages and records files to be synchronized with the provider server device 103.

The communication control device 112 is the company server device 1
Reference numeral 01 is a device for communicating with the corporate LAN and the network 1. Specifically, LAN card, LAN
A board or the like, which may include a modem, a router, a server device of an Internet service provider, or the like depending on the connection form.

The protocol conversion unit 115 converts a protocol, especially in communication with the provider server apparatus 103. The protocol conversion unit 115 includes a data transmission / reception protocol 115a and an encryption protocol 115b. The data transmission / reception protocol 115a is a protocol corresponding to the session layer of the OSI reference model (for example, H
Communication is performed using the TTP protocol. Encryption protocol 1
15b encrypts a file transmitted by the data transmission / reception protocol 115a. For example, SSL may be used for encryption, or another encryption algorithm such as DES or RAS may be used for encryption.

The account authentication section 116 refers to the account list 113 to authenticate the terminal connected to the company server apparatus 101.

The file filter unit 117 performs processing such as virus check and compression on the file input to the company server device 101. By performing the virus check, the corporate server device 101 and the terminals connected to the corporate server device 101 can be protected from the threat of viruses. Also, by performing compression, when exchanging files with the corporate server device 101,
Since the amount of data can be reduced, transfer stress can be reduced.

The synchronization processing section 111 includes a client command processing section 118 and a provider server command processing section 12.
2. A DB connection unit (ZOLAR) 132 is provided.

The client command processing unit 118 sends the command issued from the company terminals 102a to 102d to the file DB 10 to the DB connection thread unit 125.
a, 125b, 125c ... The client command processing unit 118 uses the file reference unit 119,
A file updating unit 120 and a file deleting unit 121 are provided.

The file reference unit 119 is the DB connection unit 13
The file to be referred to is designated from the file DB 10 via 2 to cause the company terminals 102a to 102d to refer to the file.

The file updating unit 120 is the DB connection unit 13
The file to be updated is designated from the file DB 10 via 2 to cause the company terminals 102a to 102d to update the file. Furthermore, an updated list is created for the updated files, and the updated list is transmitted to the provider server apparatus 103 via the protocol conversion unit 115 to synchronize them. At this time, it is preferable that the data is encrypted and transmitted by the encryption protocol 115b. New file is file DB
The same processing is performed when the data is stored in 10.

The file deleting unit 121, like the file updating unit 120, transmits the file D via the DB connecting unit 132.
A file to be deleted is designated from B10 and the file is deleted. A deletion list is created for the deleted files, and the deletion list is transmitted to the provider server apparatus 103 via the protocol conversion unit 115 for synchronization. At this time, all the files may be transmitted, or only the file identifiers may be transmitted. When all the files are transmitted, it is preferable that the files are encrypted and transmitted by the encryption protocol 115b.

As described above, the client command processing unit 118 can synchronize the processing performed on the file DB 10 with the provider server apparatus 103.

Provider server command processing section 122
Performs processing on the file DB 10 via the DB connection unit 132 based on a file synchronization request from the provider server apparatus 103. The provider server command processing unit 122 includes a file updating unit 123 and a file deleting unit 124.

The file updating unit 123, based on the update list transmitted from the provider server apparatus 103, D
The file is updated to the file DB 10 via the B connection unit 132. The update list transmitted from the provider server apparatus 103 is an update list regarding files of the provider server apparatus 103 updated by the client terminals 104a to 104c.

The file deleting unit 124, based on the deletion list transmitted from the provider server apparatus 103, D
The file is deleted from the file DB 10 via the B connection unit 132. The deletion list transmitted from the provider server apparatus 103 is a deletion list regarding files of the provider server apparatus 103 deleted by the client terminals 104a to 104c.

As described above, the provider server command processing unit 122 can synchronize the processing performed on the file DB 10 of the provider server apparatus 103 with the file DB 10.

The DB connection unit (ZOLAR) 132 is a DB
Connection interface unit 131, DB connection thread unit 12
5a, 125b, 125c ... And a setting file 130. The DB connection unit 132 is middleware that mediates processing performed on the file DB 10.

The setting file 130 includes the DB connection unit 132.
Settings relating to DB connection, such as a database to which the user connects, a format of output data, and an error processing method, are recorded in advance.

The DB connection interface unit 131 serves as an interface between the client command processing unit 118, the provider server command processing unit 122, and the DB connection unit 132. When the DB connection interface unit 131 receives an access request for the file DB 10 from the client command processing unit 118 or the provider server command processing unit 122, the client command processing unit 118 or the provider server command processing unit 122.
Command is received from. Further, from the DB connection thread units 125a, 125b, 125c, ..., A thread in a command waiting state is detected, and the received command is transmitted to the detected thread.

DB connection thread sections 125a, 125b,
125c ... Processes (threads) connected to the file DB 10 in order to process commands from the client command processing unit 118 and the provider server command processing unit 122. DB connection thread section 125a,
125b, 125c, etc., are provided with a plurality of threads in advance according to the number of accesses and processing of the corporate server apparatus 101, one process is allocated for each transaction, and a file DB is created for each transaction.
Connect to. The DB connection thread unit 125a uses the setting file 13 that stores the settings assigned to the thread.
The processing is performed by referring to 0.

The DB connection thread unit 125a includes a DB connection management unit 126a, a command processing unit 127a, an output data processing unit 128a, and an error processing unit 129a.

The DB connection management unit 126a maintains a connection with the DB to be connected by referring to the setting file 130. The DB connection thread unit 125a maintains a database connection in advance by the DB connection management unit 126a, and the client command processing unit 118
Also, a transaction start command from the provider server command processing unit 122 is awaited. As a result, when a transaction occurs, the file DB
Since the time required for connection with is reduced, processing can be performed immediately.

The command processing unit 127a processes the file DB 10 according to the commands received from the client command processing unit 118 and the provider server command processing unit 122. Specifically, refer to the file,
Performs processing such as updating and deleting.

The output data processing unit 128a uses the file D
The processing performed on B10 is output in the format described in the setting file 130.

The error processing unit 129a performs appropriate processing for an error that has occurred in the DB connection thread unit 125a. For example, if it is in the middle of updating, it rolls back to the state before updating and sends an error log to the system administrator. The error relating to the file DB 10 of the synchronization processing unit 111 is processed by the DB connection thread unit 125a, so the client command processing unit 118
And in the provider server command processing unit 122,
No error handling is necessary.

When the command processing is completed, the DB connection thread units 125a, 125b, 125c ...
It remains in the command standby state, maintaining the connection with.

Although the DB connection thread section 125a has been described, the DB connection thread sections 125b, 125c, ...
It has the same configuration as the DB connection thread unit 125a.

FIG. 13 is a functional block diagram of the provider server device 103. Provider server device 103
Includes an account list 153, a file DB 16, a communication control device 152, a protocol conversion unit 155, an account authentication unit 156, a file filter unit 157, and a synchronization processing unit 151.

The account list 153 is stored in the client terminals 104a to 104c and the corporate server apparatus 101 which can be connected to the provider server apparatus 103.
It is a storage device in which an account and a password for permitting connection to the provider server device 103 are registered.

The file DB 16 is a storage device which is managed by the provider server device 103 and records files to be synchronized with the company server device 101.

The communication control device 152 is a device for the provider server device 103 to communicate with the network 1. Specifically, it is a LAN card, a LAN board, or the like, and may include a modem, a router, a server device of an Internet service provider, or the like depending on the connection form.

The protocol conversion unit 155 converts the protocol especially in the communication with the company server device 101. The protocol conversion unit 155 includes a data transmission / reception protocol 155a and an encryption protocol 155b. The data transmission / reception protocol 155a is a protocol (for example, HT) corresponding to the session layer of the OSI reference model.
Communication is performed using the TP protocol. Encryption protocol 15
5b encrypts the file transmitted by the data transmission / reception protocol 155a. For example, SSL may be used for encryption, or another encryption algorithm such as DES or RAS may be used for encryption.

The account authentication unit 156 refers to the account list 153 and authenticates the terminal connected to the provider server apparatus 103.

The file filter unit 157 performs processing such as virus check and compression on the file input to the provider server device 103. By performing a virus check, the provider server device 103
Can be protected from the threat of viruses. In addition, by performing compression, the amount of data can be reduced when exchanging files with the provider server apparatus 103, so that transfer stress can be reduced.

The synchronization processing unit 151 includes a client command processing unit 118, a company server command processing unit 162, and D.
A B connection portion (ZOLAR) 172 is provided.

The client command processing unit 158 receives the file D from the client terminals 104a to 104c.
The command issued to B16 is processed via the DB connection thread units 165a, 165b, 165c ....
The client command processing unit 158 includes a file reference unit 159, a file update unit 160, and a file deletion unit 161.
Is equipped with.

The file reference unit 159 is the DB connection unit 17
The file to be referred to is designated from the file DB 16 via 2 to cause the client terminals 104a to 104c to refer to the file.

The file update section 160 is connected to the DB connection section 17
The file to be updated is designated from the file DB 16 via 2 to cause the client terminals 104a to 104c to update the file. Furthermore, an updated list is created for the updated files, and the updated list is transmitted to the provider server apparatus 103 via the protocol conversion unit 155 for synchronization. At this time, it is preferable that the data is encrypted by the encryption protocol 155b and then transmitted. Similar processing is performed when a new file is stored in the file DB 16.

Like the file updating unit 160, the file deleting unit 161 sends the file D via the DB connecting unit 172.
The file to be deleted is designated from B16, and the file is deleted. A deletion list is created for the deleted files, and the corporate server device 1 is passed through the protocol conversion unit 155.
01 to synchronize. At this time, all the files may be transmitted, or only the file identifiers may be transmitted. When all the files are transmitted, it is preferable that the files are encrypted and transmitted by the encryption protocol 155b.

As described above, the client command processing unit 158 can synchronize the processing performed on the file DB 16 with the corporate server apparatus 101.

The company server command processing unit 162 processes the file DB 16 via the DB connection unit 172 based on the file synchronization request from the company server apparatus 101. The company server command processing unit 162
A file updating unit 163 and a file deleting unit 164 are provided.

The file update unit 163 updates the file in the file DB 16 via the DB connection unit 172 based on the update list transmitted from the company server device 101. The update list transmitted from the company server device 101 is an update list regarding files of the company server device 101 updated by the company terminals 102a to 102d.

The file deletion unit 164 deletes the file from the file DB 16 via the DB connection unit 172 based on the deletion list transmitted from the company server apparatus 101. The deletion list transmitted from the company server device 101 is a deletion list regarding files of the company server device 101 deleted by the company terminals 102a to 102d.

In this way, the company server command processing unit 1
62, the file DB 10 of the company server device 101
It is possible to synchronize the processing performed with respect to the file DB 16.

The DB connection unit (ZOLAR) 172 is a DB
Connection interface unit 171, DB connection thread unit 16
5a, 165b, 165c ... And a setting file 170. The DB connection unit 172 is middleware that mediates processing performed on the file DB 16.

The setting file 170 has a DB connection section 172.
Settings relating to DB connection, such as a database to which the user connects, a format of output data, and an error processing method, are recorded in advance.

The DB connection interface unit 171 serves as an interface between the client command processing unit 118, the company server command processing unit 162, and the DB connection unit 172. When the DB connection interface unit 171 receives an access request for the file DB 16 from the client command processing unit 118 or the company server command processing unit 162, the DB connection interface unit 171 receives a command from the client command processing unit 118 or the company server command processing unit 162. Furthermore, the DB connection thread units 165a and 165
b, 165c ... Detects the thread in the command waiting state, and transmits the received command to the detected thread.

DB connection thread units 165a and 165b,
165c ... Are processes (threads) connected to the file DB 16 for processing commands from the client command processing unit 158 and the company server command processing unit 162. DB connection thread section 165a, 165
b, 165c, etc., a plurality of threads are provided in advance in accordance with the number of accesses and processing of the corporate server device 101, one process is allocated for each transaction, and the transaction is connected to the file DB. .

The DB connection thread unit 165a has a setting file 17 that stores the settings assigned to the threads.
The processing is performed by referring to 0.

The DB connection thread section 165a includes a DB connection management section 166a, a command processing section 167a, an output data processing section 168a, and an error processing section 169a.

The DB connection management unit 166a maintains a connection with the DB to be connected by referring to the setting file 170. The DB connection thread unit 165a maintains a database connection in advance by the DB connection management unit 166a, and the client command processing unit 158.
It also waits for a transaction start request from the company server command processing unit 162. As a result, when a transaction occurs, the time required to connect to the file DB is reduced, so that the processing can be performed immediately.

The command processing unit 167a includes a client command processing unit 158 and a company server command processing unit 1.
File DB1 according to the command received from 62
6 is processed. Specifically, refer to the file, update,
Perform processing such as deletion.

The output data processing unit 168a uses the file D
The processing performed on B16 is output in the format described in the setting file 170.

The error processing unit 169a performs appropriate processing for an error that has occurred in the DB connection thread unit 165a. For example, if it is in the middle of updating, it rolls back to the state before updating and sends an error log to the system administrator. Regarding the error relating to the file DB 16 of the synchronization processing unit 151, the DB connection thread unit 165a performs error processing, so the client command processing unit 158
The company server command processing unit 162 does not need to perform error processing.

When the command processing is completed, the DB connection thread units 165a, 165b, 165c ...
It remains in the command standby state, maintaining the connection with.

Although the DB connection thread section 165a has been described, the DB connection thread sections 165b, 165c, ...
It has the same configuration as the DB connection thread unit 165a.

FIG. 14 is a flowchart of the synchronization processing unit 111 of the processing of the company server apparatus 101.

First, in step S101, the synchronization processing section 111 checks the connection source connected to the company server apparatus 101. The connection source is the corporate terminals 102a to 1
If it is 02d, the process proceeds to step S102, and if it is the provider server device 103, the process proceeds to step S114.

When the connection source is the corporate terminals 102a to 102d in step S101, the client command processing part 118 of the synchronization processing part 111 calls the DB connection interface part 131 in step S102. Further, the DB connection interface unit 131 calls one of the DB connection thread units 125a, 125b, 125c ....

Next, in step S103, it is determined which command of the client command processing unit 118 has called the thread.

If it is called by the file reference unit 119, in step S104 the command processing unit 1
The file referred to by 27a is acquired from the file DB 10. Further, in step S105, the HTT
The file is transmitted to the requested company terminals 102a to 102d by a data transmission / reception protocol such as P.

If called by the file deletion unit 121, in step S106, the command processing unit 1
The file to be deleted is deleted from the file DB 10 by 27a, and a deletion list is created in step S107. Next, in step S108, the deletion list is encrypted using an algorithm such as SSL, and in step S109, according to the data transmission / reception protocol,
The data is transmitted to the provider server device 103 by a data transmission / reception protocol such as HTTP.

If called by the file update section 120, the command processing section 1 is called in step S110.
The file to be updated is updated in the file DB 10 by 27a, and an update list is created in step S111. Next, in step S112, SSL
The update list is encrypted by using an algorithm such as the above, and in step S113, the update list is transmitted to the provider server apparatus 103 by a data transmission / reception protocol such as HTTP.

When the connection source is the provider server device 103 in step S101, the provider server command processing part 122 of the synchronization processing part 111 calls the DB connection interface part 131 in step S114. Further, the DB connection interface unit 131 calls one of the DB connection thread units 125a, 125b, 125c ....

Next, in step S115, it is determined by which command of the provider server command processing unit 122 the thread has been called.

When called by the file deletion unit 124, in step S116, the corresponding file in the file DB 10 is deleted based on the transmitted deletion list. On the other hand, when called by the file updating unit 123, in step S117, the corresponding file in the file DB 10 is updated based on the transmitted update list. At this time, if the transmitted deletion list or update list is encrypted, the code is decrypted to be plain text.

FIG. 15 is a flowchart of the synchronization processing section 151 of the processing of the provider server apparatus 103.

First, in step S201, the synchronization processing unit 151 checks the connection source connected to the provider server apparatus 103. If the connection source is the client terminals 104a to 104c, go to step S202.
In the case of the corporate server device 101, the process proceeds to step S214.

If the connection source is the client terminals 104a to 104c in step S201, step S201
In 202, the client command processing unit 158 of the synchronization processing unit 151 has the DB connection interface unit 171.
Call. Further, the DB connection interface unit 171 is
One of the DB connection thread units 165a, 165b, 165c ... Is called.

Next, in step S203, which command of the client command processing unit 158 has called the thread is distributed.

If it is called by the file reference unit 159, in step S204 the command processing unit 1
The file referred to by 67a is acquired from the file DB 16. Furthermore, in step S205, the HTT
The file is transmitted to the requested client terminals 104a to 104c by a data transmission / reception protocol such as P. At this time, the client terminals 104a to 104
In 4c, if the encryption protocol is compatible, it may be encrypted and transmitted.

If the file deletion unit 161 calls it, in step S206, the command processing unit 1
67a deletes the file to be deleted from the file DB 16
, And a deletion list is created in step S207. Next, in step S208, the deletion list is encrypted using an algorithm such as SSL, and in step S209, the deletion list is transmitted to the corporate server device 101 by a data transmission / reception protocol such as HTTP.

If called by the file update unit 160, the command processing unit 1 is executed in step S210.
The file to be updated is updated in the file DB 16 by 67a, and an update list is created in step S211. Next, in step S212, SSL
The update list is encrypted by using an algorithm such as the above, and in step S213, the update list is transmitted to the corporate server device 101 by a data transmission / reception protocol such as HTTP.

[0206] In step S201, if the connection source is the corporate server device 101, in step S214,
Company server command processing unit 162 of the synchronization processing unit 151
Calls the DB connection interface unit 171. Further, the DB connection interface unit 171 calls one of the DB connection thread units 165a, 165b, 165c, ....

Next, in step S215, it is determined which command of the company server command processing unit 162 has called the thread.

When called by the file deletion unit 164, in step S216, the corresponding file in the file DB 16 is deleted based on the transmitted deletion list. On the other hand, when called by the file update unit 163, in step S217, the corresponding file in the file DB 16 is updated based on the transmitted update list. At this time, if the transmitted deletion list or update list is encrypted, the code is decrypted to be plain text.

FIG. 16 is a flowchart of the file synchronization system according to the third embodiment of the present invention. Here, for example, from the company terminal 102a to the company server device 101
6 shows a flowchart when a file saved in is deleted. Further, transitions of the file DB 10 connected to the company server apparatus 101 and the file DB 16 connected to the provider server apparatus 103 are also shown.

The states before the file deletion request is issued are shown in the files 10a and 16a. In the file DB 10a connected to the company server device 101,
Two files of FileA and FileB are recorded. Furthermore, the DB connection threads 125a, 125b, 1
Each of 25c establishes a connection with the file DB 10a. Similarly, the provider server device 10
FileA 16 in the file DB 16a connected to
Two files of FileB are recorded. Furthermore,
Each of the DB connection threads 165a, 165b, 165c has a connection with the file DB 16a. In this way, the file DBs 10a and 16a are synchronized.

In step S301, the company terminal 102a makes a file deletion request to the company server apparatus 101.

Next, in step S302, the file connection deletion unit 121 of the company server apparatus 101 causes the DB connection thread unit 125 as shown in the file DB 10b.
Call a. Furthermore, as shown in the file DB 10c, in step S303, the command processing unit 127
The corresponding file (FileA) is deleted from the file DB 10 via a.

Further, in step S304, the file deletion unit 121 creates a deletion list in which FileA is described, and the protocol conversion unit 115 encrypts the deletion list. Furthermore, in step S305, the HTT deletes the deletion list encrypted in step S304.
It is transmitted to the provider server device 103 by a data transmission / reception protocol such as P.

[0214] In step S306, the provider server apparatus 103 receives the encrypted deletion list by the data transmission / reception protocol.

Next, in step S307, the file deletion unit 164 decrypts the encrypted deletion list and converts it into a deciphered deletion list. Further, in step S308, the DB connection thread unit 165a is called as shown in the file DB 16b.

Next, in step S309, the command processing unit 167a of the DB connection thread unit 165a deletes the file (FileA) specified in the deletion list from the file DB 16 as shown in the file DB 16c.

Finally, in step S310, when the work is completed, the enterprise server apparatus 101 is notified that the work is completed.

After these operations are completed, the file DB 10d connected to the company server apparatus 101 is used to fill the file.
eA is deleted, and similarly, the provider server device 103
With FileA deleted from the file DB 16d connected to, the file DBs 10d and 16d are synchronized.

In the flowchart shown in FIG. 16,
If an error occurs on the way, the error processing unit 129a
And 169a, it is preferable to roll back and return to the state before processing. As a result, the company server device 101 and the provider server device 103 can always be synchronized.

In the third embodiment of the present invention, it was described that the files are synchronized in real time. However, as in the first and second embodiments, the inquiry of the deleted file or the updated file is made periodically. , Files may be synchronized.

Also, account management is performed by the company server device 1
01 and the provider server apparatus 103 are described, but the provider server apparatus 103 may manage and the enterprise server apparatus 101 may make an inquiry, or vice versa, as in the first and second embodiments. But good.

As described above, according to the third embodiment of the present invention, the client terminal can refer to the same file as the file stored in the company server device by connecting to the provider server device.

Further, according to the third embodiment of the present invention, the update processing and the deletion processing performed from the client terminal to the file recorded in the provider server apparatus are similarly performed to the enterprise server apparatus. .

Therefore, according to the third embodiment of the present invention,
Files can always be synchronized between the enterprise server device and the provider server device.

[0225]

As described above, according to the present invention, when the client device and the information providing device transmit information, the SS
After passing L, it is transmitted via the network by HTTP.
In other words, since it is transmitted by HTTPS, even if it has a firewall that allows the Internet protocol, SSL, and HTTP to pass, it is possible to pass it as it is. That is, it is transmitted to an external information providing device while maintaining security.

Further, the information providing apparatus accepts the access from the portable terminal compatible with SSL and transmits it to the portable terminal by HTTP after passing through SSL.

In other words, even if the file on the client device side is transmitted over the Internet, the security is maintained and the information is transmitted to the external terminal by HTTPS from the information providing device, so the security is maintained. Has been done.

Therefore, in a company or the like, even if the file of the server device of the company is transmitted over the Internet, the file is transmitted while maintaining security, and the file from the company is also transmitted from the information providing device to the external terminal by HTTPS. Since it is transmitted with, the effect that security is maintained can be obtained.

In particular, in a company or the like, even if an e-mail of the server device of the company is sent on the Internet, the e-mail is sent while maintaining security, and the information providing device sends an electronic mail from the company to the request of the mobile phone. Security is maintained because the email is sent by HTTPS.

Therefore, the effect that the e-mail addressed to oneself, which is stored in the server of the own company, can be safely viewed from the home via the Internet on the go or on the holiday is obtained with the mobile phone or the personal computer. There is.

Further, since the existing protocol (HTTPS) which is a combination of HTTP and SSL is used, it is possible to obtain an effect that the burden on the company is small in terms of cost.

Furthermore, after viewing the electronic mail on the external terminal,
Since the electronic mails of the client device and the information providing device are automatically deleted and managed by file synchronization, it is possible to obtain an effect that the burden of managing the electronic mails on the company side is small.

[Brief description of drawings]

FIG. 1 is a schematic configuration diagram of a file synchronization system according to a first embodiment.

FIG. 2 is a schematic configuration diagram of a file synchronization system according to a second embodiment.

FIG. 3 is a schematic configuration diagram of a server device on the company side according to the present embodiment.

FIG. 4 is a sequence diagram illustrating a file synchronization system according to the second embodiment.

FIG. 5 is a sequence diagram illustrating a file synchronization system according to the second embodiment.

FIG. 6 is a flowchart illustrating a file synchronization process on the provider side according to the second embodiment.

FIG. 7 is a flowchart illustrating a file synchronization process on the provider side according to the second embodiment.

FIG. 8 is an explanatory diagram illustrating a mail stored in a file according to the present embodiment.

FIG. 9 is an explanatory diagram illustrating a deletion list.

FIG. 10 is a schematic configuration diagram for implementing schedule file synchronization.

FIG. 11 is a system configuration diagram of a file synchronization system according to a third embodiment of the present invention.

FIG. 12 is a functional block diagram of a company server device according to the third embodiment of the present invention.

FIG. 13 is a functional block diagram of a provider server device according to the third embodiment of the present invention.

FIG. 14 is a flowchart of a synchronization processing unit of processing of a company server device according to the third embodiment of the present invention.

FIG. 15 is a flowchart of a synchronization processing unit of processing of a provider server device according to the third embodiment of the present invention.

FIG. 16 is a flowchart of a file synchronization system according to the third embodiment of the present invention.

FIG. 17 is an explanatory diagram illustrating a configuration of a firewall.

[Explanation of symbols]

1 ... Network 2, 3 ... Server device 4 ... File synchronization client process 7 ... Firewall 8 ... HTTP / HTTPS server process 9 ... File control process 10, 16 ... File DB 11 ... Personal computer 13 ... Account list 14 ... HTTPS server process 15 File synchronization server process 17 File deletion process 18 Delete list 19 Firewall 20 Mail spool 20a Mail server 20b Schedule management tables 21, 25 Mobile phone 22 Mobile personal computer 24 Computer system 30 Protocol determination unit 31 ... Processing unit 32 ... File synchronization processing unit 33 ... Account file 34 ... Deletion list file 101 ... Corporate server devices 102a to 102d ... Corporate terminal 103 ... Provider server device 10 4a to 104c ... Client terminals 111, 151 ... Synchronous processing units 112, 152 ... Communication control devices 113, 153 ... Account lists 115, 155 ... Protocol conversion units 115a, 155a ... Data transmission / reception protocols 115b, 155b ... Encryption protocols 116, 156 ... Account authentication section 117, 157 ... File filter section 118, 158 ... Client command processing section 119, 159 ... File reference section 120, 160 ... File updating section 121, 161, ... File deleting section 122 ... Provider server command processing section 123, 163 File update units 124, 164 File delete units 125a to 125c, 165a to 165c DB connection thread units 126a, 166a DB connection management units 127a, 167a Command processing unit 128 , 168a ... output data processing unit 129a, 169a ... error processor 130 and 170 ... Configuration files 131 and 171 ... DB connection interface unit 132, 172 ... DB connection portion 162 ... enterprise server command processing unit 164 ... file deletion unit

Claims (8)

[Claims] 1. Internet protocol, HTTP,
A client device that communicates by passing SSL protocol information and an information providing device that communicates by passing only the same protocol information as the client device are connected to a network to synchronize files with each other. ,
And a file synchronization system for providing a file required by an SSL-compatible external terminal to the external terminal, wherein the client device transmits information from the device to the information providing device via the network, HTTP via SSL
And means for sending information from the information providing device by HTTP.
And a means for receiving the information via the SSL and transmitting the information from the providing apparatus via the network, the information providing apparatus transmits the information via HTTP after the SSL and the information from the network. HTTP when receiving
And a means for receiving an access from an external terminal via the network and for transmitting a file requested by the external terminal, the file synchronization system. 2. The information providing device, when the external terminal requests the file, and when the address of the external terminal is an address permitted to be used, is transmitted from the client device in response to the request. 2. A means for transmitting the file to the external terminal, generating a deletion list of the file in accordance with the transmission, and transmitting the deletion list at the request of the client device. File synchronization system. 3. The file is an electronic mail, and the client device sends information to the information providing device requesting a licensed user for the client at regular intervals, and the client device A means for storing the authorized user information, a means for storing the electronic mail transmitted via the network by SMTP, and a means for retrieving the electronic mail by POP, and an electronic mail having the email address of the authorized user name on the client side. A means for taking out a mail and transmitting the e-mail to the information providing apparatus; a means for requesting the information providing apparatus to delete the e-mail at regular intervals; And a means for deleting an electronic mail of the device that matches the electronic mail address of the deletion list, the information providing device Means for storing the authorized user information of the client in advance and transmitting the authorized user information having the domain of the client device to the client device in response to a request from the client device; and an electronic mail from the client device. When you receive
A unit for storing the electronic mail; a unit for generating an electronic mail deletion list after transmitting the electronic mail requested by the external terminal via the network; and the network for the deletion list requested by the client device. 3. The file synchronization system according to claim 2, further comprising means for transmitting to the client device via the. 4. The deletion list comprises an electronic mail address, a date, and a time.
File synchronization system described. 5. The client device and the information providing device, when transmitting information to each other, transmit the destination port number of the TCP header of the packet with “443”, 4. The file synchronization system described in 4. 6. A file management server, which is connected to a communication network and manages files, and a file synchronization server, which manages the same files as those managed by the file management server, synchronizes with each other. While in the file management server used in the file synchronization system for managing the file, a file database in which the file is stored, and an update request for the file received from a terminal connected to the file management server A first file updating means for updating the file requested to be updated from the file database, and further creating a first update list of the file requested to be updated; and the first update list. And then encrypting the file via the communication network A file management server comprising: a protocol conversion means for transmitting to a synchronization server. 7. The protocol conversion means further decrypts the encrypted second update list received from the file synchronization server, and updates the file database according to the second update list. The file management server according to claim 6, further comprising file updating means. 8. The first file updating means is a thread for mediating connection with the file database,
Using one database connection thread among a plurality of database connection threads provided in advance, it is connected to the file database, further requesting an update to the database connection thread, the database connection thread, the file database 8. A database connection management unit for maintaining a connection with the command processing unit, and a command processing unit for processing the update command requested by the first file updating unit. File management server.