JP2004178565A - Server for communication management, communication method and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To securely and efficiently transmit and receive a file by a simple operation. <P>SOLUTION: The license number information of a user and the scramble code information allocated for every client are stored in this server 1 for communication management for performing the transmission/reception of the file between a user terminal 2 and a client terminal 3 via a communication network, an installation instruction of a communication program is issued to the respective terminals based on these pieces of information, the communication program is authenticated by using a MAC address as well after installation and the file is transferred between both terminals by an icon operation. <P>COPYRIGHT: (C)2004,JPO

Description

  The present invention relates to a communication management server, a communication method, and a program that improve security against eavesdropping on a network and impersonation by an unauthorized person in a communication system that transmits and receives files via a communication network.

  In recent years, with the expansion of the use of the Internet, improvement of security for data performed through the network has become an important problem.

  In particular, the method of sending and receiving e-mail on the World Wide Web (hereinafter referred to as WWW) is capable of storing e-mail and attached files on a server, and transmitting and receiving e-mail at the convenience of the user. , Is widely used because of its simplicity. On the other hand, in order to deal with the problem of wiretapping on a network, it is necessary to improve security when handling e-mail.

For this reason, conventionally, a method of transmitting and receiving electronic mail safely has been proposed.
For example, in “E-mail encryption method and encryption system” described in Japanese Patent Application Laid-Open No. 8-251156, each user of a communication network creates key information, discloses only a public key, A technique has been proposed in which a sender and a receiver of an email encrypt and decrypt an email based on their own private key and the public key of the other party, respectively.
Japanese Patent Application Laid-Open No. 11-272594 discloses a "method and apparatus for document delivery on an electronic network" in which a file is transmitted from a transmission computer to a dedicated server using a transmission client application, and the dedicated server stores the file. In addition, a method has been proposed in which an electronic notification is sent to a receiving device, and a file is downloaded from a dedicated server using a receiving client application based on the notification.
JP-A-8-251156 JP-A-11-272594

  However, in the above-described conventional method of transmitting and receiving an encrypted e-mail, management of key information becomes complicated. When files are exchanged using a dedicated application program (hereinafter, simply referred to as an application), ease of use and security are problems. Further, as with the leakage of the key information, there is a problem of impersonating an unauthorized user of the application.

  The present invention has been made in view of the above circumstances, and has as its object to provide a communication management server, a communication method, and a program capable of safely and efficiently transmitting and receiving files with a simple operation. .

  In order to achieve the above object, a communication management server according to the present invention provides a user license number to a communication management server for transmitting and receiving files between a user terminal and a client terminal via a communication network. License information registration means for storing information and scramble code information assigned to each client in a storage unit, and license number information sent from a user terminal via a communication network, and storing the license number information and the storage unit in the storage unit Is compared with the license number information of the user, and if they match, the user information including the MAC address of the user terminal is stored in the storage unit, and a command to permit installation of the communication program is output to the user terminal. User information registration means, Input the scramble code information sent from the client terminal, and compares the scramble code information with the scramble code information for the client stored in the storage unit. If they match, the MAC address of the client terminal Client information registering means for storing client information including the following in a storage unit and outputting an installation permission command for a communication program; scrambling a received file with a scramble code corresponding to the client relating to the file; File transmission processing means for storing in the storage unit in association with the MAC address information of the terminal and transmitting a message indicating that the file has been transmitted to the transmission destination; and when there is a request to receive the file stored in the storage unit Is at least File reception processing means for inputting a MAC address of a terminal to which a reception request has been issued, and transmitting a file associated with the MAC address when the MAC address matches the MAC address stored in the storage unit. And

  Further, the communication method according to the present invention is a communication method for transmitting and receiving a file between a user terminal and a client terminal using a communication management server, comprising: a user license number information and a scramble code assigned to each client. Storing the information in the storage unit of the server; and inputting the license number information sent from the user terminal via the communication network, and entering the license number information and the license number for the user stored in the storage unit. Comparing and, if they match, storing user information including the MAC address of the user terminal in the storage unit and outputting a communication program installation permission command to the user terminal; and a client terminal via the communication network. Scramble code information sent from And compares the scramble code information with the scramble code information for the client stored in the storage unit, and when they match, stores the client information including the MAC address of the client terminal in the storage unit and performs communication. Outputting a program installation permission command; scrambling the received file with a scramble code corresponding to the client relating to the file; storing the file in the storage unit in association with the MAC address information of the destination terminal; A step of transmitting a message indicating that the file has been transmitted earlier, and, when a request for receiving the file stored in the storage unit has been made, input at least the MAC address of the terminal that has issued the reception request, MAC address stored in the storage unit When matching is characterized by comprising a step of sending a file associated with that MAC address.

  In the present invention, terminal authentication is performed using a MAC address in addition to a normal user ID and password. Further, since the file is transmitted and received by performing scramble processing using the scramble code assigned to each client, it is effective against eavesdropping and the like.

Here, the “user” is a direct customer of a company that provides a communication service using the communication management server, and the “client” means a party with which the user communicates. The user communicates with one or more of the clients registered in the communication management server.
The “communication program” is a program executed on the terminal, but may be the same for the user and the client, or may be different.

The “installation permission command” includes a case where a part of the program is installed in advance and the remaining programs are permitted to be installed, in addition to the installation permission for the entire communication program. If the installation permission command is not output, the installation of the communication program is interrupted.
“Scramble processing” may be performed by a communication program on the transmission side or may be performed on the server side. It is more convenient to perform scramble processing in the server, since the sender can transmit from any terminal regardless of terminal.
“Sending” or “receiving” is intended to include the case where data is exchanged between the server and the browser.
The “client relating to the file” refers to a client that is a transmission destination or transmission source regarding transmission of a file between the user and the client.

  The communication management server according to the present invention further displays, on the Web screen of the user terminal, the icon of the client whose registration has been completed by the client information registration means, and when the client requests a file transmission, the server responds to the client. Display output means for identifying the icon to be displayed.

As a result, it is possible to easily recognize a client that has requested transmission.
Here, the “identification display” means that the display is performed so as to be distinguished from the others, such as a color change or a change in the outer shape.

In the communication management server according to the present invention, the user information registration unit stores a plurality of user terminal information including a plurality of MAC addresses in the storage unit, and the file transmission processing unit or the reception processing unit stores the MAC address of the MAC address. In the authentication, when one of the plurality of MAC addresses stored in the storage unit matches one MAC address, the one MAC address is used. Further, the client information registration unit stores a plurality of client terminal information including a plurality of MAC addresses in the storage unit, and the file transmission processing unit or the reception processing unit is stored in the storage unit in MAC address authentication. When one of the plurality of MAC addresses matches, the one MAC address is used.
A plurality of terminals are registered in advance, and communication is performed with one of the terminals. Therefore, for example, a file can be transmitted and received with high security even from home or office.

Preferably, when an icon on the Web screen is designated and a deletion request is issued from the user or the client, the communication management server identifies and displays the icon on both Web screens, and transmits the icon to the file transmission processing means. It is preferable to provide an account deletion unit that outputs a save prohibition command for a new file and deletes the icon that is identified and displayed by inputting consent information from a user or a client that has received a deletion request.
This is because, when deleting an icon, an identification display of the icon, an instruction to prohibit file storage, and a request for consent from the other party are required, so that it is possible to prevent the occurrence of a problem at the time of deletion.

Further, it is desirable that the Web screen is a key account display screen capable of displaying an icon capable of specifying a communicable partner based on correspondence information between the user and the client.
Here, the “key account” is physically an access right and an area of the communication management server that enables the user to communicate with the client, and is symbolically presented on the Web screen. Communication icons or icons, and include both. The key accounts can be displayed hierarchically by organizing them by folders. The hierarchical display is called a key explorer.

More preferably, upon input of the terminal change request, the communication management server executes the license stop process, identifies and displays the icon related to the terminal change on the user terminal, and executes the license stop process when the registration of the new terminal is completed. It is preferable to provide a terminal change processing unit that cancels the operation and returns the icon display to the operation state.
As a result, when changing the terminal, the license is stopped, the icon is identified and displayed, and after the terminal registration is completed, the icon display is returned to the operating state, so that it is possible to prevent the occurrence of a problem when changing the terminal Because it can be.

  Further, the communication method according to the present invention is a communication method for transmitting and receiving a file between a user terminal and a client terminal using a communication management server, wherein the server assigns the license number information of the user and the license number for each client. Storing the received scramble code information in the storage unit, and inputting the license number information sent from the user terminal via the communication network, and obtaining the license number information and the license number for the user stored in the storage unit. And, if they match, storing the user information including the MAC address of the user terminal in the storage unit and outputting a communication program installation permission command to the user terminal; and Scramble code information sent from the terminal The user inputs and compares the scramble code information with the scramble code information for the client stored in the storage unit, and when they match, stores the client information including the MAC address of the client terminal in the storage unit and performs communication. Outputting a program installation permission command, receiving the file when a user terminal or a client terminal requests transmission of the file, and responding to the client relating to the file with respect to the file received by the server. Transmitting a message indicating that a file has been transmitted to the destination while storing the file in the storage unit in association with the MAC address information of the destination terminal, and a file stored in the storage unit. Request to receive Inputting at least the MAC address of the terminal from which the reception request has been issued, and transmitting a file associated with the MAC address when the MAC address matches the MAC address stored in the storage unit. Transmitting the license number information and the MAC address information to the server, receiving the communication program installation permission command transmitted from the server, and installing the program, and transmitting a file addressed to the client to the server. Transmitting, receiving a file from the client; and decoding the received file with a scramble code corresponding to the client. The client terminal transmits the scramble code information and the MAC address information to the server. Transmitting, receiving a communication program installation permission command sent from the server and installing the program, transmitting a file addressed to the user to the server, and receiving a file from the user. Decoding the received file with a scramble code corresponding to the client.

  With this, when installing a communication program by a user or a client, the MAC address is registered after authentication using the license number or the scramble code, so that impersonation at the time of registration can be prevented.

Preferably, in the step of receiving the file when there is a file transmission request from the user terminal or the client terminal, the MAC address of the sender's terminal is obtained, and the MAC address and the MAC address stored in the storage unit are obtained. May be compared with each other, and if they match, it may be stored in the server.
Seamless security is achieved by a combination of authentication using the MAC address at the time of transmission, storage of the file after encryption using a client-specific scramble code, and terminal authentication using the MAC address at the time of reception, followed by decryption processing. This is because it is possible to realize and to save the trouble of performing the compounding process on the client side.

More preferably, the server displays the icon of the client whose registration has been completed on the Web screen of the user terminal, and, when a file transmission request is issued from the client, identifies and displays the icon corresponding to the client; When an icon on the screen is specified and a deletion request is issued from the user or the client, the icon is identified and displayed on both Web screens, saving of a new file is prohibited, and the user or the client who receives the deletion request is displayed. When the consent information is input from the client, the icon that is identified and displayed may be deleted.
As a result, the icons can be used effectively, so that human errors can be prevented and operability can be improved.

  More preferably, the server further comprises: a use flag set upon completion of both the user registration and the client registration; a user-side deletion flag set by a deletion request or a deletion response from the user; and a deletion response from the client-side. Alternatively, a client-side deletion flag set in response to a deletion request is provided for each client, and when the use flag is set, an icon corresponding to the client is displayed on a Web screen on the user terminal, and the user-side deletion is performed. When one of the flag and the client-side deletion flag is set, an icon corresponding to the client on the user terminal is identified during the deletion request, and both the user-side deletion flag and the client-side deletion flag are set. And reset the usage flag, The icon corresponding to Ianto good practice to clean the Web screen of the user terminal.

  By linking three types of flags, a use flag, a user-side delete flag, and a client-side delete flag, to identify icons, register clients, and manage unregistered, erroneous transmission during client registration and deletion procedures This is because it can be prevented.

Note that the Web screen is a key account display screen that can display an icon that can specify a communicable partner based on correspondence information between a user and a client. It is better to do it.
This is because the use flag can control the deletion of the icon and execute the billing process, thereby preventing the problem of the billing when the use is stopped or the like.

Also, the server stores login information necessary for accessing the website, and when a request for access to the website is made from the user terminal and / or the client terminal, the login information is used for the website. The content information of the site may be acquired, and only the content information may be displayed on the user terminal and / or the client terminal together with a file transmission / reception screen.
Thereby, confidentiality such as login information when accessing the Web site is ensured. Here, "display only the content information" means that the address information of the Web site such as the URL is not displayed. The “Web site” also includes a Web site provided by the server according to the present invention.

  Further, the program according to the present invention is a program that is executed on a user terminal and transfers files to and from a client via a communication management server, and transmits license number information and MAC address information to the server. Receiving the communication program installation permission command sent from the server and installing the program; registering a file addressed to the client in the server; receiving a file from the client; And decoding the file with a scramble code corresponding to the client.

  Further, the program according to the present invention is a program executed on a client terminal for transferring files to and from a user via a communication management server, and a process for transmitting scramble code information and MAC address information to the server. Receiving the communication program installation permission command sent from the server and installing the program; registering a file addressed to the user in the server; receiving a file from the user; And decoding the file with a scramble code corresponding to the client.

  According to the present invention, it is not necessary to manage key information such as a public key and a secret key, and a file can be transmitted and received safely and efficiently by a simple operation.

  Hereinafter, embodiments of the present invention will be described. FIG. 1 is a functional block diagram of a communication management server according to the first embodiment of the present invention, and a user terminal and a client terminal that communicate using the server. In FIG. 1, a communication management server 1 is connected to a user terminal 2 and a client terminal 3 via a communication network 4 such as the Internet. Here, the user terminal 2 is a direct customer of a business entity that provides a communication service using the communication management server 1, and is a terminal of a contract target person or an employee of the business entity. The client terminal 3 is a partner terminal that communicates with the user using this communication service. The management server 1 is a server for realizing a logical one-to-one communication between the user terminal 2 and the client terminal 3.

  The communication management server 1 includes a transmission / reception unit 11 for transmitting / receiving data via the communication network 4, a central processing unit 12 for processing data received from the transmission / reception unit 11, and a storage unit 13 for storing data. And an input unit 14 for inputting and outputting data to and from the central processing unit 12 and a display unit 15.

  Further, the central processing unit 12 includes a transmission / reception processing unit (function) 41 for transmitting / receiving data to / from the transmission / reception unit 11, an input / output unit (function) 42 for transmitting / receiving data to / from the input unit 14 or the display unit 15, A license information registration unit (function) 43 for registering the license information of the user input via the input unit 14, a user information registration unit (registering the user information and outputting a communication program installation permission command to the user terminal 2 ( Function) 44; client terminal registration means (function) 45 for registering client information and outputting a communication program installation permission command to the client terminal 3; file transmission processing means (function) 46 for performing electronic file transmission processing; A file for processing a file reception request from the terminal 2 or the client terminal 3. Reception processing means (function) 47, display output means (function) 48 for identifying and displaying the icon corresponding to the sender, account deletion means (function) 49 for deleting the icon corresponding to the user or the client, and the user Or, it is constituted by a terminal change processing means (function) 50 for executing a process based on a client terminal change.

  The user terminal 2 also includes a transmitting / receiving unit 21 for transmitting / receiving data via the communication network 4, a central processing unit 22 for processing data from the transmitting / receiving unit 21, and data input / output between the central processing unit 22 and the central processing unit 22. It comprises an input unit 23 for outputting and a display unit 24.

The client terminal 3 transmits and receives data to and from the transmitting and receiving unit 31 that transmits and receives data via the communication network 4, the central processing unit 32 that processes data from the transmitting and receiving unit 31, and the central processing unit 32. An input unit 33 and a display unit 34 are provided.
The physical configuration of the communication management server may be realized by a single server as shown in FIG. 1, or may be a web server that integrates Web functions as shown in FIG. For example, a database server for storing various data, a file server for storing files, an smtp server for sending e-mails, and the like may be implemented in a distributed manner. The communication management server 1 includes a case where the communication management server 1 includes a plurality of servers by function distribution.

Hereinafter, the contents of the communication service and the operation of the communication management server 1 will be described.
The communication service provided by the present invention usually takes the form of an ASP (application service provider). Therefore, the user can receive a service by purchasing a license and registering the license in the communication management server 1. At this time, there are several methods for managing the license, but a method in which a corporation etc. collectively purchases the license and installs the user application from a CD-ROM received by a user belonging to the corporation is considered. An example will be described.

(User license registration processing to the server)
In the case of the ASP service, it is necessary to register the ASP service in the communication management server 1 with the issuance of the license. As an example, consider a case where Company A purchases 10 licenses and provides 10 key disks per license. Here, the key disk is a flexible disk storing a client application that can be identified by a unique scramble code.
With respect to the registration processing of the user license, a flow of a procedure between the user, the service provider, and the communication management server 1 will be described with reference to FIG.
First, the business operator sets a license on the server after the contract with the company A is established. Specifically, registration of company codes, company attributes, and ten user accounts in the database is performed. Further, ten unique scramble codes are generated for each user, and the scramble codes are written on ten key disks together with an installation application to create a key disk. The number of user accounts and the number of key disks for each user can be changed by setting.

  After the above work is completed, a CD-ROM containing the installation application, ten license numbers, a total of 100 key disks classified by user, instructions, etc. are mailed to Company A.

Hereinafter, the operation of the license information registration unit 43 in the user license registration process will be described in detail with reference to FIG.
First, data such as the aforementioned company code is input via the input unit 14. This data is stored in the company master table 61 of the storage unit 13 by the license information registration unit 43 through the input / output unit 42. FIG. 4 is an example of the company master table 61. In this table, a company code is assigned to each contracted company, and company attribute information such as a company name is stored. In addition, by setting input of ten user account issuance from the input unit 14, ten user master tables 62 are created in the storage unit 13 in association with the company master table 61. FIG. 5 is an example of the user master table 62. The company code is linked to the company master table 61, and a unique user code is written for each table. Then, the number of flexible disks to be issued for each user is input from the input unit 14, and a client master table 63 of that number is created. FIG. 6 shows an example of the client master table 63. In this table, a company code and a user code are linked to the company master table 61 and the user master table 62, and a unique client code is written for each table.

  The user's CD-ROM stores the user's installation program and the data stored in the user master table 62 and, if necessary, the company master table 61.

  The key disk for the client includes an installation program for the client, a scramble code created based on random numbers when the key disk is created as shown in FIG. 7, and a client master table 63 or a company master table through a link if necessary. 61, contents of the user master table 62 are stored. The scramble code of the key disk is the same as that stored in the corresponding client master table 63.

(User application installation process)
The user who has purchased the license can receive the electronic file transfer service by registering the Internet terminal used by the user and the user information in the management server 1 using the application provided on the CD-ROM.
Hereinafter, the procedure of the user application installation will be described with reference to the flowchart shown in FIG.

  When the installer provided on the CD-ROM is started on the user terminal 2, the browser of the user terminal starts, and the transmission / reception processing means 41 secures encrypted communication with the server by SSL (Security Socket Layer) (S301). Then, the user information registration means 44 is activated and the initial registration screen is displayed (S302). FIG. 8 is an example of a screen displayed in this manner. The user inputs user attribute information such as a user code, an address and a telephone number, and user identification information such as a name. The user information registration unit 44 checks the input information against the already registered license information, that is, the company code, the user code, and the like of the user master table 62 stored in the storage unit 13 (S303). If the registered information does not match the license information, the registration operation is stopped, the connection is released, and the process ends.

If the license information matches, the URL information unique to the user is transmitted to the user terminal 2 (S304), while the MAC address, login information, and the like are obtained from the user terminal by the user application from the user terminal 2, and the server 1 And stored in the user master table 62 of the storage unit 13 (S305).
When the initial registration is completed, the installation application of the user terminal 2 creates an application for accessing the user-specific URL on the user terminal 2 based on the instruction from the user information registration unit 44, and ends the installation process.

(User My Page Display Processing)
By activating the application created on the user terminal 2, a page unique to the user (hereinafter, user my page) is accessed.
By starting the application on the user terminal 2, the MAC address and user information encrypted and transmitted to the server are checked against the user master table 62 of the communication management server 1, and if correct, the server 1 informs the user. Present my page.

  FIG. 10 is an example of a Web screen (hereinafter, a key explorer screen) configured using a CGI (Common Gateway Interface) as a user-specific page. In this figure, in the initial state, no icons are displayed in the registration key window in the key explorer because all ten key disks have not been registered. That is, the icon corresponding to the client on the key explorer screen is displayed with reference to the client master table 63 of the server 1. If the use flag of this table is set, the icon is displayed in the registration key window. If the use flag is not set, an icon is displayed in the unregistered key window. Immediately after installing the application on the user terminal 2, no icon is displayed in the registration key window because the use flag of the client master table 63 corresponding to this key disk is not set.

(Distribution of client application)
The user hands the unregistered key disk to the client who wants to communicate. In addition, various methods such as mailing, transmitting the contents stored on the key disk, copying to other media such as CD-RW and sending it, or asking the business operator, etc. Can send the client application. This step is not particularly premised on using the Internet.

  When handing over a key disk, for the purpose of managing keys, right-clicking on an unregistered key that has been handed over and filling in information about the person who has handed over the memo may be performed. The information thus entered can be confirmed by right-clicking-property-memo even after the client registers. Notes can be used to store other information about the client.

(Client application installation process)
The client sets the key disk sent from the user on the terminal 3 used by the user and starts installation of the client application by activating the installer.

Hereinafter, the operation of the client information registration unit 45 will be described with reference to FIG.
When the installer is started, the browser of the client terminal is started, the encrypted communication with the server is secured by the transmission / reception processing unit 41 by SSL (S401), and the client information registration unit 45 is started. Then, it receives information such as a unique scramble number and a client code embedded in the key disk and sent from the client terminal 2 (S402), and stores these information in the license information stored in the storage unit 13, That is, the information is compared with the information in the client master table 63 (S403), and if they do not match, the registration work is stopped, the connection is released, and the processing is terminated.

  If they match, a client registration screen is displayed (S404). FIG. 12 is an example of the screen displayed in this manner. The client inputs client attribute information such as a company name, a department name, a name, a position, and a commonly used e-mail address. On the other hand, URL information unique to the client is transmitted to the client terminal 3 (S405).

The client information sent from the client terminal 3 is stored in the client master table 63 of the storage unit 13 together with the MAC address and login information obtained and transmitted by the client application. At this time, the use flag of the client master table 63 is set (S406).
When the client information registration process is completed, the installation application of the client terminal 3 creates an application for accessing the client-specific URL on the client terminal 3 based on the instruction from the client information registration unit 45, and executes the installation process. finish.

(Display of key status)
By starting a user application from the user terminal 2, the user accesses a user my page (a page unique to the user). At this time, terminal authentication is performed by checking the MAC address and the Cookie.

FIG. 13 is a view showing a screen on which the registration status of the client is displayed in an explorer format based on the license information for each user.
The registration key displayed in the explorer is an icon corresponding to each client terminal, and the partner can be recognized based on the attribute information registered by the client. FIG. 14 shows the property information when the icon of the registration key is right-clicked. The property information displayed here indicates client attribute information registered when the client installs from the key disk.

(Processing from user file transmission to client reception)
Next, a procedure in which the user transmits a file will be described with reference to FIG. 15, and a procedure in which the client receives the file will be described with reference to FIG.

[File transmission from user to client]
First, by accessing the server 1 from the user terminal 2, communication by SSL is secured by the transmission / reception processing means 41 (S501), terminal authentication is performed (S502), and when authentication is OK, the page of the user is displayed. (S503).
When the user double-clicks on the icon indicating the party to be transmitted from the registration key window in the key explorer, the file transmission processing means 46 is activated and the transmission processing is started.

  FIG. 17 is an example of a transmission screen presented from the server 1. In this example, a message window for writing a message and an attached file window for uploading an attached file are shown (S504). These pages are encrypted by SSL, displayed, input, uploaded, and the like, and the confidentiality between the server 1 and the user terminal 2 is ensured. After finishing inputting a message, uploading a file, and the like, the user clicks a normal transmission button to end the user's work. The server 1 refers to the client master table 63 in the storage unit 13 and performs the following encryption processing using the scramble code (S505), saves the file (S506), and sends the file to the POP server of the client from the user. Is transmitted, and the transmission data file 64 shown in FIG. 18 is created, and the transmission process ends (S507).

[Sending file virus check process]
At work, if the file to the client contains a virus, it is often a huge problem. When uploading a transmission file, the server can perform a virus check service. When this virus check is performed, the status of the transmission data file 64 becomes virus checked (1).

[Encryption processing of sent file]
Until the file transmitted from the user is received by the client, the file is encrypted using the scramble code corresponding to the client, and is temporarily stored in the file server. That is, the file transmission processing unit 46 extracts the scramble code from the client master table 63 corresponding to the client of the transmission destination, and encrypts the file requested to be uploaded to the server 1 through the user terminal 2 using the scramble code. After that, save the file.

[Client file reception processing]
A mail notifying that the user has sent the mail arrives at the POP server of the client, and the client confirming this accesses the reception screen by activating the client application. As a result, the file reception processing unit 47 is activated, and the MAC address and the Cookie information sent from the client terminal 3 are collated with each information of the client master table 63 stored in the storage unit 13 to perform terminal authentication. (S508, S509).

As the screen accessed in this way, a screen similar to the communication screen is presented. The file reception processing means causes the client terminal 3 to display a message to be transmitted to the client based on the transmission destination address (to address) of the transmission data file 64 (S510). The client reads the message written in the message window, selects the file shown in the attached file window, and makes a download request. The file reception processing unit 45 refers to the client master table 63 to decode the file using the client's scramble code (S511), and transmits the file to the client terminal 3, thereby completing the file transfer process from the user to the client. (S512).
Normally, a process for deleting a file stored in the server 1 after confirming that the download has been completed normally is included.

(Processing from client file transmission to user reception)
The process of transmitting a file from a client to a user is basically the same as the process of transmitting a file from a user to a client.

[Process of sending file from client to user]
When the client activates the client application on the client terminal 3, the transmission / reception processing unit 41 secures the encrypted communication by SSL, the file transmission processing unit 46 is activated, and the transmission operation to the user is started. At this time, the terminal authentication is performed using the MAC address and the Coolie, as described above.

  When transmitting a file from the client to the user, the same transmission / reception screen as shown in FIG. 17 is presented. The file is encrypted with a scramble code corresponding to the client based on the client master table 63 and stored in the storage unit 13. In addition, the transmission operation, the notification to the POP mail, and the creation of the transmission data file 64 are the same as when the user transmits to the client.

[User file reception processing]
An email notifying that the client has sent the message arrives at the user's POP server, and the user who confirms this starts the user application and double-clicks the icon indicating the client sent from the key explorer to receive it. Move to the screen. When there is a file that has not been received, the icon is changed so that the user can easily recognize the file. That is, the file reception processing means 47 extracts the transmission data file 64 in which the user accessing the reception screen is the transmission destination address (to address) and transmits the transmission data whose status is unopened (0 or 1). An icon corresponding to the client code of the transmission source (from address) of the data file 64 is identified and displayed. Further, by identifying and displaying the icon of the attached file of the transmission data file 64, the user can easily access the unreceived file.

Thereafter, the user's receiving process is similarly operated from the screen shown in FIG.
The above-described series of operations realizes a one-to-one correspondence between the icon indicating the client presented on the key explorer in the user My Page and the icon indicating the user displayed on the application displayed on the client terminal. . In addition, since the terminal authentication is performed, the operability as if the user terminal and the client terminal are connected by a facsimile is given as a result. FIG. 19 is a representation of the relationship between the icons and the terminals realized as described above.

Although the above processing and the table configuration make it possible for the user and the client to correspond one-to-one with icons, the complexity increases when the number of clients increases, which may cause erroneous transmission. .
For this reason, the user master table 62 is provided with a layer information field for storing the layer information of the client, so that icons can be folderd in the same manner as a normal file. Thus, for example, clients can be classified and arranged for each company. FIG. 20 is an example of an organized key explorer. This makes it possible to organize folders by giving them a hierarchical structure, to prevent confusion due to the same last name, etc., and to make it possible to perform batch transmission by selecting a folder.

(Key account deletion process)
Users can delete accounts that are no longer needed.
Hereinafter, the operation of the account deletion unit 49 will be described with reference to FIG.
When a key account (client icon) to be deleted is selected on the key explorer through the user terminal 2 and a delete operation is performed, a master delete flag of the client master table 63 is set, and the icon changes to red (S601). An uninstall request mail is sent to the client terminal 3 (S602). When the client performs an uninstallation operation, the client application on the client terminal is deleted, the client-side deletion flag in the client master table 63 of the server 1 is set, and the use flag is set by setting both deletion flags. It is reset (S603), and thereby the client icon in the key explorer is also deleted (S604).

(User terminal change processing / client terminal change processing)
First, when the user wants to change the terminal, the user presses the terminal change button from the communication screen entered by activating the application. As a result, the terminal change processing means 50 is activated, presents a terminal change application form, inputs a license or the like, and performs identity verification.
Upon receiving the terminal change application form, the server administrator performs a license stop operation. When this operation is performed, a stop operation end notification is sent to the POP. After confirming this, the user performs a new installation operation.

  When the client changes the terminal, the scheme is basically the same. In particular, while the client license is stopped on the server, the use flag in the client master table 63 is reset, and the client icon on the key explorer of the user is displayed in red, so that it is possible to inform that the connection is currently unavailable. .

According to the present embodiment, at the time of uploading and downloading, not only security is ensured by the MAC address and SSL authentication, but also a scramble code is provided for each client that communicates with the user, thereby saving the server. Since the file is sometimes encrypted and decrypted when there is a reception request, it is possible to measure the improvement in security including the time when the file is stored in the server. In addition, by installing on a portable storage medium such as a flexible disk in which a user code and a unique scramble code are stored, both the user and the client can transmit files. And high security can be ensured.
The icon can be operated with the icon on the key explorer screen. The icon of the reception target is identified and displayed by using the transmission data file 64. Further, even when the service is stopped, control is performed by using the deletion flag provided in the client master table 63. By doing so, the icon can be identified and displayed, so that the deletion operation can be performed without mistake.

  Next, a second embodiment will be described. Hereinafter, differences from the first embodiment will be described.

(Form of service provision)
In the first embodiment, it is assumed that a license is purchased on a corporate basis and a key disk issued by a business is sent to a user as an unregistered key.
In addition, there is also a method in which the application pack is displayed at a store and the user directly purchases the application pack. Further, the license user can also create the key disk by himself. Further, a key explorer interface similar to the user application is provided to the client application so that the client can conveniently communicate with a plurality of users.

(User license registration to server and application installation process)
The user purchases a commercially available CD-ROM and activates the setup program at the user terminal, thereby securing encrypted communication by the server system and SSL. Next, the user inputs the license number written on the CD-ROM case in a predetermined field on the Web. If the license number is correct, the user information is registered in the server system according to the normal user registration scheme shown in FIG. At this time, the information such as the MAC address of the user terminal and the login is acquired and used for subsequent authentication of the user terminal as described in the first embodiment.
After the license is registered on the server, the user application is installed on the user terminal. By activating the user application from the user terminal, the user can authenticate the terminal based on the MAC address or the like, and can access the user my page.

(Icon setting process)
An icon indicating oneself can be selected or registered so that the user can easily identify the client. The registered icons have the effect of facilitating identification for the client.
FIG. 22 is an example of the key explorer of the user MyPage. At this time, since there is no key disk associated with the user, no unregistered key window is provided.

(Distribution of client application)
In the first embodiment, a case has been described in which a key disk registered in the server is distributed to each user in advance. However, a method of sequentially creating a key disk when it becomes necessary is also possible.

  By setting a flexible disk in the user terminal and activating the key disk creation program, it is possible to generate a scramble code, create a key disk, and register the key disk in the management server. That is, the creation program registers user information and identification information such as a scramble code in the server, and creates the identification information, the client application, and the installer on the flexible disk. FIG. 23 shows an example of this scheme. The feature is that the user terminal generates client identification information such as a scramble code (S704), transmits it to the server 1 and stores it in the client master table 63, and creates a key disk using the client identification information. (S705).

  In the first embodiment, a key disk is created and displayed as an icon as an unregistered key together with the creation of the key disk. However, since the client is determined, the icon with the client name cannot be used in the registration window. A display method is used. FIG. 24 shows a state of the key explorer immediately after the user has created Mr. Tanaka's key disk. Since Tanaka has not yet installed the client application, an icon indicating that a communication path has not been secured is displayed.

  Since the identification information such as the user code and the scramble code is registered in the server 1 in the key disk thus created, the client application can be installed by the process described with reference to FIG.

(Key explorer processing of client application)
In the first embodiment, the client application only displays the icon indicating the user. However, when the number of received key disks increases, the desktop tends to be complicated. In such a case, the client may be able to use the same key explorer as the user application. In such a configuration, the difference between the client and the user can be managed by setting the difference in authority in accessing the server.

(Registration of common files)
For example, in a situation where a user wants a client to use a common template file, an area common to each client is set. The file presented in such an area is displayed on a transmission / reception screen with each client, and the client can freely download and use this file.

  FIG. 25 shows an example in which a common file registration area is provided in a transmission / reception page. The client can freely download and use it from the common file area.

  Next, a third embodiment will be described. In the first embodiment and the second embodiment, both the client terminal and the application terminal are authenticated by the MAC address, and the number is limited to one. However, by registering a plurality of MAC addresses, transmission and reception from a plurality of MAC addresses can be enabled.

  In the installation procedure of the user application shown in FIG. 9 of the first embodiment, by registering a terminal used by the user in a plurality of servers, the user can use a plurality of terminals. FIGS. 26A and 26B are flowcharts when registering a plurality of user terminals. FIG. 26A is a flowchart illustrating a first installation procedure when registering a plurality of terminals, and FIG. 26B is a flowchart illustrating a second installation procedure. The feature is that the user inputs the number of installation terminals in the first installation and saves the number in the storage unit 13 of the server 1 (S801). Then, at the time of the second installation, the server 1 checks the number of installations based on the terminal number information input at step 801 (S802). For example, it transmits the information necessary for installation to the user terminal together with the installation permission.

By using such a procedure, a plurality of MAC addresses to be verified are registered in the management server, and the user is permitted to transmit and receive from a plurality of terminals.
Similarly, by registering a plurality of client terminals in the client, the client can transmit and receive from the plurality of terminals.

  Next, a fourth embodiment will be described. In the first to third embodiments, the transmitting terminal is authenticated by the MAC address in order to ensure sufficient security. However, depending on the application, the transmitting terminal does not require much security, and only the receiving terminal May be limited.

  In this case, the step of terminal authentication based on the MAC address can be omitted when the transmission terminal accesses the communication management server. For example, if it is made possible to log in to the transmission / reception page using only the login information for authentication, the transmission file can be uploaded by the above-described method for transmission. However, regarding reception, authentication of the terminal is performed by the MAC address, so that the sender can ensure security regarding reception.

  Next, a fifth embodiment will be described. Hereinafter, in comparison with the first embodiment, differences and additional functions will be mainly described.

(Application installation process)
In the first embodiment, a CD-ROM is distributed to a user, and a flexible disk containing a key code (meaning a scramble code) is distributed to a client. The application is downloaded from the server, and the key code for the client and the URL information of the download destination of the application are transmitted to each client by mail as an attached file.

First, a user accesses the communication management server 1, subscribes to the communication service, and downloads and installs an application stored in the server 1.
Then, an application for purchasing a key code is made through the user application. In the communication between the user and the server at this time, the terminal authentication is performed using the information such as the MAC address of the terminal and the WIN login as described in the first embodiment.

At this time, instead of immediately downloading the applied key code, the key code is stored in the server 1 as a temporary purchase state. When the user presses the distribute button to the client, a mailer (e-mail application) set as a standard in the terminal starts up, and the key code is downloaded from the server 1 together with the URL information of the download destination of the client application. It becomes the attached file of the transmission file of the mailer. At this time, standard text such as a brief introduction of the communication service is written as a default in the mail text.
The user opens the mailer's address book, sets a destination mail address, and executes transmission. The transmitted mail is sent to the client terminal via the smtp server 76 and a POP server (not shown).
When the installation process described in the first embodiment is completed on the client side, the provisional purchase state of the key code of the server 1 is changed to the real purchase state, and charging is started.

  By the above processing, the user or the client can install the application only by the communication means, so that the risk of loss or theft of the CD-ROM or the flexible disk can be avoided. Further, since the key code is not immediately downloaded when the key code is purchased, the possibility of the key code being lost or the key code being stolen due to accidental erasure of the user's terminal, failure of the terminal, or the like can be reduced. Furthermore, if a key code is actually generated when a key code is downloaded, useless (not actually used) key codes can be suppressed, and key codes can be issued efficiently. .

(User, client management function)
In the first embodiment, the user application and the client application exist separately, and the user or the client, having learned that the file has been transmitted by POP mail, activates the respective application and downloads the attached file. Was running.
However, users and clients may become congested as the number of subscribers to the communication service increases. That is, a subscriber who is a user may become a client of another user.

  For this reason, in the present embodiment, the determination unit (function) of FIG. 27 is executed at the time of application installation on the terminal side. Hereinafter, processing on the server 1 side when the user A sends a key code to the user B and the client application is installed on the terminal of the user B will be described.

  First, when the client application is started on the installation destination terminal, a link to the server 1 is established, and terminal information such as the MAC address of the terminal is transmitted from the terminal to the server 1 according to a request from the server 1. The server 1 acquires this terminal information (S901). Then, by transmitting the installation information of the user application from the terminal to the installation destination terminal, it is checked whether the user application has been installed (S902). If "N" in the step S902, the client application is installed (S904), and the information of the self (user B) is registered as the client of the client master table of the other party (user A) (S906).

  If “Y” in step S902, it is next checked whether or not a valid user master table with matching terminal information exists in the server (S903). If “N”, step S904 is executed. On the other hand, if “Y” in step S903, that is, if the subscriber has already been registered as a user, the information of the partner user (user A) is registered as a client in the client master table of the user (user B). .

  FIG. 28 is an example of the client master table of the user B (user ID U00002). Here, the client code "C000" is added, the user registration presence / absence flag is set to "1", and the ID U00001 of the user A is stored as the partner user code. Here, the client code “C000” is a code automatically issued on the server side, and means that a file transmission / reception process is performed as a client of the user B, but the client is not under the control of the user B. . Therefore, the user B is not charged.

Then, the information of the user B is registered as the client of the user A in the client master table of the other party (user A) (S906).
FIG. 29 shows an example of the client master table of the user A (user ID U00001). Here, the client identification information “C001” corresponding to the key code is stored in the client code field, the user registration presence / absence flag is set to “1”, and the ID U00002 of the user B is stored. Note that the client code “C001” (a code equal to or greater than C001) is charged to the user A as a client under the management of the user (user A) of the client master file.

  By the above processing, the information of the other user is registered in the client master tables of both the user A and the user B, and the user B can transmit and receive files to and from the user A through the user application. In particular, since the user registration presence / absence flag is provided in association with the client code, it is possible to associate data as a client with data as a user. Further, since the server management code is used as the client code and excluded from the billing target, the billing process can be performed smoothly.

  In the above description, the installation processing of the client application has been described. However, the same processing can be performed when the installation of the user application is executed in a state where the client application is already installed. In this case, the already installed client application is deleted, and a new user application is installed.

(Authentication function using USB key)
The first embodiment has described that information such as a MAC address and a WIN login is acquired and used for authentication. However, the authentication information is acquired using a storage medium (USB key) that can be input through a USB interface. Is also possible. In this case, unless the USB key is inserted into the terminal, communication with the server cannot be performed, so that security is improved. Normally, the above-mentioned authentication information is stored in the registry of the terminal for the first time, and the terminal is authenticated using the authentication information of the registry for the second and subsequent accesses. If a USB key is used, the authentication information is stored in the USB key.
For example, if a user ID and a key code (scramble code) are stored in a USB key, and information such as a MAC address uses information in the terminal, a double security check can be effectively executed. Can be.

Next, a sixth embodiment will be described. FIG. 30 is a functional block diagram of the communication management server 1 and the user terminal 2 according to the present embodiment.
Here, the communication management server 1 has the basic configuration of the transmission / reception unit 11, the central processing unit 12, the storage unit 13, the input unit 14, and the display unit 15, as in the first embodiment.

The central processing unit 12 includes a transmission / reception processing unit (function) 41 for transmitting / receiving data to / from the transmission / reception unit 11, an input / output unit (function) 42 for transmitting / receiving data to / from the input unit 14 or the display unit 15, Web access information registration means (function) 52 for performing registration processing of information necessary for accessing the website, Web information acquisition means (function) 53 for acquiring content information of the website, and a terminal for acquiring the acquired content information. And a Web information providing unit (function) 54 for transmitting the information to the Web server.
Further, the storage unit 13 includes a Web access information database (DB) 65 that stores information necessary for accessing a Web site.

  On the other hand, the central processing unit 22 of the user terminal 2 includes a transmission / reception processing unit (function) 81 for transferring data to / from the transmission / reception unit 21 and a Web information requesting unit (function) for requesting access to a Web site and content information. ) 82, Web information display means 83 for displaying the acquired content information, and user interface means (function) 84 for displaying a screen related to file transmission / reception. Each of the means 81 to 84 is a function provided in the client application program.

  The transmission / reception processing means 41 and 81 are realized as middleware. Although not shown in FIG. 30, it is assumed that the server 1 and the user terminal 2 have the various units described in the first embodiment for sending and receiving mails.

Hereinafter, operations of the server 1 and the user terminal 2 according to the present embodiment will be described.
First, the Web access information registration unit 52 of the server 1 stores the URL of a Web site provided to a user or a client, and an ID and a password for logging in to the Web site as necessary. This registration is performed by the communication management service provider from the input unit 14 in response to a notification from the user. It should be noted that the user may register himself / herself via the user terminal 2. Further, the communication management service provider may register the URL as URL information to be provided to the user or the client by himself / herself instead of the user.

  When the user application is started, first, the transmission / reception processing means 81 establishes communication with the server 1. At the time of this establishment, authentication is performed using the MAC address of the terminal and other information as in the first embodiment. When the communication is established, the screen shown in FIG. 31 is displayed by the user interface unit 84. In this figure, the left column has a folder structure for each communication destination by communication management service provider notice, maintenance information, and mail transmission / reception. In addition, a template of the attached file and URL information are displayed. As the URL information, information stored in the Web access information DB 65 of the server 1 is provided via the transmission / reception processing units 41 and 81.

  When the user clicks the URL 1 (Web site of the remote conference system), an access request is sent to the server 1 via the Web information requesting unit 82. When the server 1 receives the request information, the Web information acquisition unit 53 accesses the specified URL to acquire the content information. At this time, if the site is a member site and login processing is necessary, the user enters (fills in) the login ID and password stored in the Web access information DB 65 shown in FIG. To get.

  The acquired content information is sent to the user terminal 2 by the web information providing unit 54, and a display request of the content information is output to the user interface unit 84 by the web information display unit 83. The user interface unit 84 displays and outputs only the content information within a predetermined frame on the screen. Here, only the content information means that the address (URL information) of the Web site is not displayed. FIG. 32 shows an example of this display screen.

Here, the remote conference site screen is content information obtained by clicking URL1 in the left column. This allows the user to hold a remote conference while viewing the camera image with the client on the client terminal side having the same function. In addition, the function provided by the remote conference Web site allows the file displayed on the file display unit to be edited.
The edited file is transmitted by the mail processing unit to the registered destination as an attached file.

  By the above processing, the function of the membership system such as the remote conference Web site is provided after the terminal authentication such as the MAC address is performed, so that the security can be secured. In particular, when displaying the content information, the address of the Web site is not displayed, and the login ID and password for the Web site are managed on the server side, so that the possibility of leakage of such secret information is reduced. Can be. In general, confidential information is likely to be misused when a user or client withdraws from the service. However, according to the present embodiment, the confidentiality of the website access information is ensured. The effect of providing the function is great.

  In the above description, both the mail processing screen and the website screen are displayed as screens displayed by the user interface means. However, one of them may be switched and displayed as necessary.

FIG. 2 is a functional block diagram of a communication management server according to the first embodiment of the present invention, and a user terminal and a client terminal that communicate using the server. It is a block diagram of the server for communication management in another Example of 1st Embodiment of this invention, and the user terminal and client terminal which communicate using this server. FIG. 8 is an explanatory diagram of a user license registration procedure. It is a company master table of FIG. It is a user master table of FIG. It is a client master table of FIG. It is an explanatory view of a data file of a key disk. It is an explanatory view of a user registration screen. 2 is a flowchart showing a procedure of installing a user application including a procedure of a user information registration unit in FIG. 1. It is explanatory drawing of the initial screen of a key explorer. 2 is a flowchart showing a procedure for installing a client application including a procedure of a client information registration unit in FIG. 1. It is an explanatory view of a client information registration screen. FIG. 10 is an explanatory diagram of a display example of a registered key and an unregistered key on a key explorer. FIG. 9 is an explanatory diagram of a display example of property information in a registration key. 3 is a flowchart illustrating a procedure of a file transmission process including a procedure of the file transmission processing unit of FIG. 1. 3 is a flowchart illustrating a procedure of a file reception process including a procedure of the file reception processing unit in FIG. 1. It is an explanatory view of a transmission and reception screen. It is a transmission data file of FIG. It is explanatory drawing of an icon connection image. It is explanatory drawing of the example of a display of the key explorer displayed in order. 3 is a flowchart of an account deletion procedure including a processing procedure of an account deletion unit in FIG. 1. It is an explanatory view of a key explorer display image of a second embodiment of the present invention. It is a flowchart of the preparation procedure of the key disk of the 2nd Embodiment of this invention. FIG. 14 is an explanatory diagram of an example of a key explorer screen immediately after creating a key disk according to the second embodiment of this invention. FIG. 14 is an explanatory diagram of an example of a transmission / reception screen having a common file registration area according to the second embodiment of this invention. A flowchart of a registration procedure of a plurality of terminals including a processing procedure of the terminal change processing unit according to the third embodiment of the present invention, (a) is a flowchart of a first installation procedure, and (b) is a flowchart of an installation procedure of the second and subsequent times. FIG. It is a flowchart of the installation processing procedure of the client application in the fifth embodiment of the present invention. 15 is a client master table of a user B according to the fifth embodiment of the present invention. It is a client master table of user A in the fifth embodiment of the present invention. It is a functional block diagram of server 1 for communication management and user terminal 2 in a 6th embodiment of the present invention. 31 is a screen display example by the user interface unit 84 of FIG. 30. 31 is a screen display example by the user interface unit 84 of FIG. 30. (Example of Web content display) 31 is a data configuration example of a Web access information DB of FIG. 30.

Explanation of reference numerals

REFERENCE SIGNS LIST 1 communication management server 2 user terminal 3 client terminal 4 communication network 11 transmission / reception unit 12 central processing unit 13 storage unit 14 input unit 15 display unit 41 transmission / reception processing unit 42 input / output unit 43 license information registration unit 44 user information registration unit 45 Client information registration means 46 File transmission processing means 47 File reception processing means 48 Display output means 49 Account deletion means 50 Terminal change processing means 61 Company master table 62 User master table 63 Client master table 64 Transmission data file 71 Router 72 Hub 73 Web server 74 database server 75 file server 76 smtp server,
52 Web access information registration means 53 Web information acquisition means 54 Web information provision means 65 Web access information DB
81 Transmission / reception processing means 82 Web information request means 83 Web information display means 84 User interface means

Claims (17)

  A communication management server for transmitting and receiving a file between a user terminal and a client terminal via a communication network, wherein the license stores license number information of a user and scramble code information assigned to each client in a storage unit. The information registration means and the license number information sent from the user terminal via the communication network are input, and the license number information is compared with the license number information for the user stored in the storage unit. The user information including the MAC address of the user terminal is stored in the storage unit, and a user information registration unit that outputs a communication program installation permission command to the user terminal; and a client terminal via the communication network. Scramblerco sent Inputting the scramble code information and comparing the scramble code information with the scramble code information for the client stored in the storage unit, and when they match, the client information including the MAC address of the client terminal is stored in the storage unit And a client information registering means for outputting a communication program installation permission command and scrambling the received file with a scramble code corresponding to the client associated with the file, and associating the received file with the MAC address information of the destination terminal File transmission processing means for storing a message indicating that a file has been transmitted to a destination while storing the file in the storage unit, and when receiving a request for receiving a file stored in the storage unit, MAC of the terminal where the request was made Enter the address, communication management server, wherein when a match with the MAC address stored in the storage unit having a file reception processing means for transmitting the files associated with that MAC address.   A display output unit for displaying, on a Web screen of the user terminal, an icon of the client whose registration has been completed by the client information registration unit, and, when a file transmission request is issued from the client, identifying and displaying the icon corresponding to the client; The communication management server according to claim 1, wherein:   The user information registration unit stores a plurality of user terminal information including a plurality of MAC addresses in the storage unit, and the file transmission processing unit or the reception processing unit is stored in the storage unit in MAC address authentication. The communication management server according to claim 1, wherein when one of the plurality of MAC addresses matches one MAC address, the one MAC address is used.   The client information registration unit stores a plurality of client terminal information including a plurality of MAC addresses in the storage unit, and the file transmission processing unit or the reception processing unit stores the plurality of client terminal information in the storage unit in MAC address authentication. The communication management server according to claim 1, wherein when one of the plurality of MAC addresses matches one MAC address, the one MAC address is used.   When an icon on the Web screen is designated and a deletion request is issued from a user or a client, the icon is identified and displayed on both Web screens, and the file transmission processing means is prohibited from saving a new file. 3. The communication according to claim 2, further comprising an account deletion unit that outputs a command and deletes the icon that is identified and displayed by inputting consent information from a user or a client that has received a deletion request. Management server.   6. The communication management system according to claim 2, wherein the Web screen is a key account display screen capable of displaying an icon capable of specifying a communicable partner based on correspondence information between the user and the client. server.   When the terminal change request is input, the license stop processing is executed and the icon related to the terminal change on the user terminal is identified and displayed. When the registration of the new terminal is completed, the license stop processing is released and the icon display returns to the operation state. The communication management server according to claim 2, further comprising terminal change processing means.   A communication method for transmitting and receiving a file between a user terminal and a client terminal using a communication management server, wherein user license number information and scramble code information assigned to each client are stored in a storage unit of the server. Inputting the license number information transmitted from the user terminal through the step and the communication network, comparing the license number information with the license number for the user stored in the storage unit, and when they match with each other. Storing a user information including a MAC address of the user terminal in the storage unit and outputting a communication program installation permission command to the user terminal; and a scramble code transmitted from the client terminal via the communication network. Enter the information and enter The client code information is compared with the scramble code information for the client stored in the storage unit, and when they match, the client information including the MAC address of the client terminal is stored in the storage unit and the communication program is installed. Outputting a permission command, scrambling the received file with a scramble code corresponding to the client relating to the file, storing the received file in the storage unit in association with the MAC address information of the destination terminal, and sending the file to the destination. Transmitting a message indicating that the file has been transmitted, and when there is a request to receive the file stored in the storage unit, input at least the MAC address of the terminal that has issued the reception request, MAC address stored in the storage unit Communication method characterized by comprising the steps of: transmitting a file associated with the MAC address when they match. A communication method for transmitting and receiving a file between a user terminal and a client terminal using a communication management server, wherein the server stores, in a storage unit, license number information of a user and scramble code information assigned to each client. And the license number information sent from the user terminal via the communication network is input, and the license number information is compared with the license number for the user stored in the storage unit and the license numbers are matched. Storing the user information including the MAC address of the user terminal in the storage unit and outputting a communication program installation permission command to the user terminal; and scrambling the client terminal via the communication network. Enter the code information and enter the The scramble code information is compared with the scramble code information for the client stored in the storage unit, and when they match, the client information including the MAC address of the client terminal is stored in the storage unit and the communication program Outputting an installation permission command; receiving a file when a user terminal or a client terminal requests transmission of the file; and scrambling the file received by the server corresponding to the client with respect to the file. Transmitting a message indicating that a file has been transmitted to the destination while storing the information in the storage unit in association with the MAC address information of the destination terminal and a file stored in the storage unit Received a request When inputs the MAC address of at least the emitted reception requesting terminal, when it matches the MAC address stored in the storage unit and sending the files associated with that MAC address,
The user terminal transmits license number information and MAC address information to the server, receives a communication program installation permission command transmitted from the server, installs the program, and transmits a file addressed to the client. Transmitting to the server, receiving a file from the client, comprising decoding the received file with a scramble code corresponding to the client,
The client terminal transmits scramble code information and MAC address information to the server, receives a communication program installation permission command sent from the server and installs the program, and transmits a file addressed to the user. A communication method, comprising: transmitting to a server; receiving a file from a user; and decoding the received file with a scramble code corresponding to the client.   In the step of receiving the file when there is a file transmission request from the user terminal or the client terminal, the MAC address of the terminal of the sender is obtained, and the MAC address and the MAC address stored in the storage unit are obtained. 10. The communication method according to claim 9, wherein the communication method is collated and stored in the server when they match.   The server displays an icon of the client whose registration has been completed on a Web screen of the user terminal, and when a file transmission request is issued from the client, identifies and displays an icon corresponding to the client. When a certain icon is designated and a deletion request is issued from the user or the client, the icon is identified and displayed on both Web screens, and saving of a new file is prohibited. The communication method according to any one of claims 8 to 10, wherein, when consent information is input, a process of deleting the icon that is identified and displayed is performed.  The server includes: a use flag that is set when both user registration and client registration are completed; a user-side deletion flag that is set by a deletion request or a deletion response from a user; and a deletion response or a deletion request from a client. Is provided for each client, and when the use flag is set, an icon corresponding to the client is displayed on a Web screen on the user terminal, and the user-side deletion flag is set. When one of the flag and the client-side deletion flag is set, the icon corresponding to the client on the user terminal is identified during the deletion request, and both the user-side deletion flag and the client-side deletion flag are displayed. Is set, the use flag is reset. Rutotomoni The communication method according an icon corresponding to the client to any one of claims 8 to 11, characterized in that to erase the Web screen on the user terminal.   13. The communication method according to claim 11, wherein the Web screen is a key account display screen capable of displaying an icon capable of specifying a communicable partner based on correspondence information between a user and a client.   13. The communication method according to claim 12, wherein charging is performed on condition that the use flag is set.   The server stores login information necessary for accessing the Web site, and when the user terminal and / or the client terminal requests access to the Web site, the Web site is used by using the login information. The communication method according to any one of claims 8 to 10, wherein the content information is obtained and only the content information is displayed on the user terminal and / or the client terminal together with a file transmission / reception screen.   A program that is executed on a user terminal and transfers a file to and from a client via a communication management server. The program transmits license number information and MAC address information to the server, and is transmitted from the server. Receiving a communication program installation permission command, installing the program, registering a file addressed to the client in the server, receiving a file from the client, and processing the received file with the client. And a program for causing a computer to execute a process of decoding with a scramble code. A program that is executed on a client terminal and transfers files to and from a user via a communication management server,
A process of transmitting scramble code information and MAC address information to the server, a process of receiving a communication program installation permission command transmitted from the server and installing the program, and registering a file addressed to a user in the server A program for causing a computer to execute a process, a process of receiving a file from a user, and a process of decoding the received file with a scramble code corresponding to the client.