JP2007243815A - System for certifying mail transmission contents utilizing shadow mail - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a system for certifying mail transmission contents utilizing shadow mail in which both a transmitter and a recipient can surely obtain the time, sender, recipient, contents of mail text and a certification requirement. <P>SOLUTION: The mail transmission content certification system includes a pre-registration process S1 by a transmitter side 10, a regular mail transmission process S2 by the transmitter side 10, a certification request and shadow mail transmission request process S3 by the transmitter side 10, a shadow mail sending process S4 by a certificate authority 20, a final result report and retransmission request process S5 by a recipient side 30, and a final result report and retransmission request process S6 by the certificate authority 20, a content certification status is contained in header information of the shadow mail and transmission is processed so as to issue a certificate. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to a transmission content proof system capable of verifying the contents of a mail transmission. More specifically, proof processing is possible including general content proof and delivery proof. This is related to an e-mail content verification system using shadow e-mail that enables verification of the authenticity of the e-mail. It is intended to provide an e-mail transmission content proof system using shadow e-mail that allows both senders and receivers to reliably grasp the e-mail.

In a conventional electronic signature method or the like, a mail delivery unit that guarantees originality is realized. However, depending on the software used by the other terminal, there may be a situation where it does not function, there are problems in usability, and the usage fee is expensive.
In addition, there was no means for confirming both transmission and reception, such as when an email was missing during communication.
Further, since the conventional mail means only displays the sender's mail address and title, there is no means for accurately and surely knowing the sender of the mail before opening the mail. For this reason, as a result of deleting unnecessary mail that was not confirmed, it was later confirmed that it was an important mail by an inquiry, and as a result, this important mail was missed.

For this reason, the current situation is that a cautious person takes measures by confirming with the sender by telephone inquiry. At present, some of the customers still use email, so the number of inquiries can be dealt with quantitatively, but if all customers will respond to emails in the future, Since it becomes enormous, it is expected that inquiries by telephone will be inundated, and it is expected that it will take a great deal of cost and time to deal with it.
In addition, recent virus emails have been reported to be infected with viruses just by opening them. As an example of recent Internet banking crime prevention, small password generators have been distributed as a preventive measure against theft of keys such as personal identification numbers, and defense means using disposable passwords have been provided (January 24, 2006) Fuji Sankei Business i morning edition). This also has problems such as means for distributing to all users, time, cost, operability for elderly people, etc. and if the password generator is stolen, it is not perfect.

Furthermore, a provider prevents contract users from receiving e-mails with attachments to prevent viruses. In such a case, there is a problem that transmission cannot be performed for attachment mail transmission / reception, and there is a problem that a delivery certificate using an electronic signature does not function.
Conventionally, in a general digital signature system, the sender has different keys individually, so the receiver needs a key for each sender, and must manage multiple keys individually. Therefore, the key management on the receiver side is complicated and there is a problem.
In addition, since Windows (registered trademark) is the mainstream in recent years, there is a problem that the storage location of the key is easily found and stolen by virus software or the like.
On the other hand, in the present invention, since the key for decrypting the text used by the one-time password PW1T is enclosed in the shadow mail, the receiving side does not need any key for decryption. Therefore, it is possible to eliminate the management of keys necessary for each partner.

Means for sending a regular mail with mail header information to a user by a registered company, and a mail having a mail header information and a hashed text by encoding to a certificate authority by the applicant; Means for sending a shadow mail based on the mail sent from the registered company to the user by the certificate authority, and for the regular mail and the shadow mail received by the proxy POP server, the one-time password PW1T check, For preventing phishing, characterized in that at least one check of hash value check and Message-ID check is executed, and if at least one of them is normal as a result of the check, it is determined to be OK. Email verification apparatus (Japanese Patent Application No. 2005-182098; ) Referred to as "the invention of the prior application".
This “prior invention” provides a mail verification system that uses shadow mail in mail distribution. In such an email verification system, the company delivering the email further wants evidence of when it arrived at the other party, what it delivered based on the original certificate, for example, proof of contents and delivery record, and allows only the person to view it. On the other hand, the user also wants the proof of the person who sent it (whether it is sent from a real partner), the sender's proof, or registration There is now a need to check if an email is sent with a key.

  In addition, there is an electronic content certification mail service. According to this, the content certification document sent on the web is temporarily printed at the nearest post office, a certificate and date stamp are inserted, and a copy is sent to the sender. A service is provided to deliver the original to the recipient. However, there was still a problem with this service.

Japanese Patent Application No. 2005-182098 (Http://internet.watch.impress.co.jp/www/article/2000/0118/mpt.htm) (January 24, 2006 Fuji Sankei Business Eye Morning Edition)

In order to solve the above-mentioned problems, the present invention provides an e-mail delivery company that provides evidence of when the e-mail is delivered to the other party and what is delivered based on the original certificate, such as content certification and delivery. While there is a desire to have a record, to have only the person browse, and to see the proof of browsing, on the user side, proof of who is the other party (sent from the real party), sender certification It is an object of the present invention to provide an e-mail transmission content proof system using shadow e-mails that can satisfy the detailed request of confirming whether e-mails are sent with a registration key.
E-mail delivery means that guarantees the originality can also be realized at the other terminal, can be provided at a low usage fee, can be confirmed if the e-mail is missing during communication, and who the e-mail is You can be sure of the email before opening the email, which can reduce the number of inquiries by telephone and reduce unnecessary labor, and also eliminate virus emails. Software can be easily distributed in a short time and can be provided at low cost, and the operability of software functions can be simplified for elderly people, eliminating the need for cumbersome keys such as password generators It is possible to ensure safety in mail transmission / reception.
This application is different from the proof of contents (http://internet.watch.impress.co.jp/www/article/2000/0118/mpt.html) currently being implemented by the Ministry of Posts and Telecommunications. At the same time, proof of contents and record of delivery at the time of contract are realized.

The present application is based on the previous patent application (Japanese Patent Application No. 2005-182098 “Mail validation system for preventing phishing fraud”), which is the applicant of the present application. The content certification system that enables email verification by email has the following configuration.
In the invention of this application, a mail is directly transmitted from the sender side 10 to the receiver side 30 via the Internet, and the sender side 10 is interposed via a certificate authority 20 connected via the Internet therebetween. In the system that indirectly sends mail to the receiver side 30 and enables the proof of the contents of the mail transmission based on the reception of the twin mail on the receiver side, the sender side 10 installs the program DW1 installed in the sender side terminal. Thus, the pre-registration process S1 for sending the pre-registration contents that can include the basic registration information 21 and, if necessary, additional information 22 for the shadow mail process to the certificate authority 20, and the sender side 10 the pre-registration process S1 Following the above, the program DW1 causes the regular mail transmission process S2 to transmit the regular mail M1 to the receiver side 30, and the sender side 10 sends the certificate request content certification process to the certificate authority 20. Shadow mail transmission request processing S3 including a certification request and the like, which can transmit shadow mail information M2 in which the status is set and can transmit shadow mail additional registration information 22 by the time of the shadow mail information transmission at the latest, and a certificate authority 20 receives shadow mail information M2 and the like from the sender side 10 by the main program DW2 installed in the corporate domain information center, and has a key paired with a regular mail as a password and a shadow mail M3 including a content certification status Shadow mail sending process S4 to be sent to the recipient side 30 and a final result notification in which the recipient side 30 notifies the certificate authority of the final result after checking the received mail by the program DW3 installed in the recipient side terminal. The retransmission request process S5 and the certificate authority 20 communicate the final result from the receiver side 30 by the main program DW2. Providing shadow mail utilization mailing content certification system comprising a final result connection and retransmission request processing S6 by the certificate authority to send to the sender the information records the request information.
In the invention of this application, when the hash value mail M2 is received from the sender and the registered company check 202 by the header information check CK1 of the received mail is “YES”, the shadow mail can be transmitted to the user side. ”, A mail transmission content proof system using shadow mail is provided, in which the mail is discarded, the fake fact is notified to the registered company, and the mail retransmission request 205 is executed.

In the invention of this application, the check of received mail by the program DW3 of the receiver side terminal is executed for the regular mail M1 and the decrypted shadow mail M3, and it is checked whether the regular mail M1 is received including a one-time password. 32 and the shadow mail M3 include a received mail header information check CK2 for executing a check 33 to check whether or not the received mail includes a key paired with the one-time password. In the password check 32 of the regular mail M1, the regular mail M1 is a one-time password. When the regular mail M1 includes a one-time password, the process proceeds to the password check 33 of the next shadow mail M3, and the shadow mail M3 is checked by the password check 33 of the shadow mail M3. Does not include a one-time password and paired key For example, when the shadow mail M3 does not include a key paired with the one-time password, it can wait for the shadow mail M3 to be received within a predetermined elapsed time. Provided is a shadow mail-based e-mail transmission content proof system characterized by executing e-mail discard and re-sending e-mail to a registered company when the elapsed time is exceeded.
In the invention of this application, in the regular mail password check 32 and the shadow mail password check 34, the header information check 321 other than the one-time password of the regular mail is executed following the check 32, and the shadow mail is followed by the check 33. The header information check 331 other than the one-time password and the key pair is executed. At this time, when each header information check 321 and 331 other than the password is “NO”, the email is discarded and the registered company is notified of the forgery fact and Provided is a shadow mail-based mail transmission content certification system characterized by executing processing 205 including a mail resending request.

In the invention of this application, the one-time password is issued in the pre-registration process S1, and the shadow mail information M2 in the shadow mail information transmission process S3 includes the one-time password, the Message-ID of the mail to the user, the hashed text, Status at the time of content certification 1; content certification, 2; delivery record, 3; transmission from the sender, shadow email in shadow email sending processing S4 is a key paired with the one-time password and Message-ID of the email to the user And hashed text and status 1 at the time of content certification; content certification, 2; delivery record, 3; sender transmission, and the hash value mail received by the certificate authority in the shadow mail sending process S4 is appropriate for the registered company If the result of each check of password confirmation, one-time password, SMTP server, and From address is “YES”, it is set as shadow mail M3 Provided is an e-mail transmission content proof system using shadow e-mail, characterized in that the e-mail can be transmitted and the transmission content is recorded.
The invention of this application performs an additional process of a mail reception confirmation check CK3 when receiving mail on the user side. The mail reception confirmation check CK3 includes an incoming mail check 40, a received mail shadow mail check 41, If it is a shadow mail, a regular mail arrival check 42 is provided, and if it is a shadow mail even if the regular mail has not been reached, it is provided with a feedback process that waits for an incoming regular mail 44 within the elapsed time. At this time, the regular mail resending request 45 is executed to the registered company without discarding the mail or discarding the mail. Provided is an e-mail transmission content certification system using shadow e-mail, which is characterized by proceeding to information check CK2.

In the invention of this application, when the final result notification S5 is made by the receiver, the final decision that the delivery completion or rejection information or the retransmission request is made is attached to the head information of the shadow mail M3 transmitted from the certification authority. Provided is a shadow mail-based mail transmission content certification system characterized by being classified according to status type and displaying different messages for each content certification status type on a user terminal.
In the invention of this application, the type of the content certification status attached to the head information of the shadow mail M3 transmitted from the certificate authority is as follows: content certification status 1 is content certification, content certification status 2 is delivery record, and content certification status 3 is Provided is a shadow mail-based mail transmission content certification system which is a sender certification and is processed by this sorting.
In the invention of this application, when the content certification status message 1 is the content certification transmission message D1 display 341 to the user terminal, or when the content certification status 1 is “NO” and the content certification status is 2, the delivery record is transmitted to the user terminal. When the message D2 display 351 is “YES” in the subsequent reception acceptance / rejection check 342, each delivery completion notification 343 of the contents certification or delivery record is executed and delivered to the normal mailer 35, whereas the contents certification or delivery record The transmission contents are returned to the certification authority, and the certification authority records the transmission contents of the returned contents proof and executes a transmission completion notification 344 to the transmission source, thereby enabling the transmission source to be confirmed. Providing a system for proving mail contents using shadow mail.

In the invention of this application, when the content acceptance transmission message 341 display or the delivery acceptance / rejection check 342 following the display of the delivery record transmission message 351 is “NO”, the certificate authority is notified 360 of the rejection of the content certification or delivery record reception, Further, the certificate authority records the received refusal received or the non-delivery contents of the recipient inconsistency, and notifies the sender of the refusal of receiving the contents certification or delivery record 361, whereby the sender sends the contents certification or the delivery record mail. Provided is a shadow mail-based mail transmission content certification system characterized in that reception refusal and non-delivery due to mismatch of recipient authentication information can be confirmed 362.
In the invention of this application, when the reception acceptance / rejection check 342 is set to “YES”, a receiver authentication information check S4 is added subsequently, and in the receiver authentication information check S4 processing, the terminal input of the receiver authentication information is performed. 370 is requested, and the consistency of the recipient authentication information is checked 371 by the terminal input of the requested recipient authentication information. When the recipient authentication information matches, the process proceeds to notification S5 of the final result by the recipient. And providing a shadow mail-based mail transmission contents certification system characterized in that the contents certification or delivery record is usually delivered to a mailer.

In the invention of this application, when the recipient authentication information coincidence check 371 does not match, the result is notified to the certificate authority, and the certificate authority records the rejected contents of the reception refusal or the receiver mismatch and the contents certification to the sender. Alternatively, each processing 361 for reporting delivery record reception refusal is executed, and accordingly, the sender can confirm 362 refusal of receiving contents certification or delivery record mail or non-delivery due to mismatch of recipient authentication information. A system for proving e-mail contents using shadow e-mail is provided.
In the invention of this application, when the content certification status check is not the content certification status 1 or the content certification status 2 but the sender certification of the content certification status 3, the source transmission message D3 is displayed 352 on the user terminal, Next, a mail transmission content proof system using shadow mail, which is characterized by being handed over to a normal mailer 35, is provided.

The invention of this application enables (A) mail transmission / reception and received mail check via the Internet between a sender side, a receiver side, and a certificate authority by a program incorporated in each terminal or corporate domain center. A network is established, and (B) the sender side program enables the sender side to send and receive basic registration information including sender attribute information for pre-registration and a one-time password with the certificate authority, To the certificate authority, the delivery certificate status is added to the header information, and the shadowed mail information that has been hashed can be sent. To the certificate authority, the certificate request and the shadow mail transmission request can be sent, and at the same time the shadow mail additional information Can be sent to the recipient side, and regular mail can be sent to the recipient. (C) By the main program of the certificate authority, the certificate authority registers the basic registration information including the sender attribute information from the sender side and the one-time password, One-time password can be issued, the sender can send shadow mail additional information to be sent in advance, and the sender can receive a certification request and a shadow mail send request to send a shadow mail to the receiver. , Receiving the notification of the final result from the receiver side, recording this, and enabling the notification of the final result to the sender side, the final result from the receiver side is the content certificate transmission from the sender side, When it is a proof request for delivery record transmission, it is possible to issue a certificate. (D) By the program on the receiver side, the receiver side can receive regular mail from the sender side and receive shadow mail from the certificate authority. Shi Shadow mail can be decrypted, and by checking each received regular mail and mail header information of decrypted shadow mail, it is possible to discard the mail, notify the sender, and request a resend, content proof, delivery record In the sender certification process, it is possible to notify delivery completion, refusal information, and re-transmission request under the message reception acceptance / rejection check by the set content certification status check. Providing a system for proving e-mail transmission contents using shadow e-mail that enables proof.
The invention of this application is based on a program on the receiver side, and on the basis of the additional processing of the receiver authentication information check, the receiver side responds to a request for terminal input of the receiver authentication information with the name, password, pet dog name, Provided is a shadow mail-based e-mail transmission content certification system that enables input of fingerprints, ecology recognition, etc., and allows the input recipient authentication information to be recorded by a certificate authority program.

The pre-registration items of the certificate authority (enterprise domain information registration center) can include basic registration information 21 and additional registration information 22 for shadow mail processing, as shown in FIG. Here, the basic registration information 21 includes a management number, a company name, a domain name, a representative name, an address, etc. Further, the additional registration information 22 for shadow mail processing is the case of a company. It includes the management number, company name A, title, name, “sender / destination” email address, recipient authentication information, and in the case of individuals, the management number, personal name, domain name, email address , Including recipient authentication information. The sending of the additional registration information 22 for shadow mail processing is shown as a pre-registration item, but it must be executed before the shadow mail transmission request to the certificate authority at the latest, as shown by the dotted line It may be sent at the same time as the shadow mail transmission request.
This additional registration information 22 for shadow mail processing includes information that can be changed in a short period of time, such as title, name, “sender / destination” mail address, and recipient authentication information.
Therefore, it can be said that the pre-registration items of the certificate authority (company domain information registration center) include at least the management number, company name A, title, name, domain name, mail address, and the like described in FIG.
If attribute information such as postal code, address, telephone number, fax number, etc. is registered in detail, it will be more reliable by checking in detail when sending and receiving e-mails and notifying sender details in detail. It is even better because it can be judged. Registration is also possible for individuals. For example, when an important e-mail is transmitted, it may be faxed at the same time by attaching a message informing that the e-mail has been sent from the sender to the destination or a document proving the sender. Needless to say, simultaneous FAX transmission is possible with known techniques.

In order to solve these problems, according to the inventions described in claims 1 to 10, it is ensured that the data is received by the other party, the operation is simple and the cost can be greatly reduced, the originality can be guaranteed, and from whom Whether or not the mail has been sent can be selected by arbitrarily selecting sender attribute information such as company name, address, sender name, etc. from the certificate authority registration attribute information and displaying it to the recipient. Further, the certificate authority and the transmission source can confirm and record whether or not the present invention has notified and received that the transmission destination has transmitted the mail as a proof of contents or a delivery record. Furthermore, the certificate authority and the sender can know when the mail is received and who has received the original.
Therefore, it is possible to realize content certification, delivery record, and sender certification by sending and receiving a pair mail of this mail and shadow mail with a content certification status, and a key for decrypting the text using the one-time password PW1T Is included in the shadow mail, so the receiving side does not need a decryption key at all, and does not know, so it can provide an invention that does not stick to the terminal software, can solve the above problems, and is safe Internet mail means can be provided.

In the unlikely event that a content proof is required, the content proof, delivery record, and the fact that the person has browsed it can be proved and dealt with.
With regard to the problem of the password generator in the above-mentioned problem, since only the use of the present invention does not require a password generator, it is simple, low-cost, and is a software means. The problem can also be solved. For example, “Because all of our emails are sent with the sender's certificate displaying their name each time they are sent, do not proceed with emails that do not display our name when receiving emails” Sentences are displayed. In addition, a text such as “You can only receive an email if you enter your authentication information to verify your identity and you can receive an e-mail. It is possible to prevent fraud damage by notifying in advance, etc.
Furthermore, the present invention displays the sender attribute and requests the recipient authentication information when the mail arrives at the destination, and matches the entered recipient authentication information with the recipient authentication information included in the outgoing mail. Check sex. The authentication information here is not captured by a personal identification number associated with the account. A dog's name is enough. Of course, it goes without saying that the authentication information of the recipient needs to be registered with the sender in advance.
When combined with a mechanism that can receive mail only when they match, the invention can be provided that enables more sophisticated authenticity determination.
By doing so, fraud applications that respond inadvertently to spoofed emails can be more strictly prevented. In addition to the confirmation of the sender, it can be proved that the receiver is surely the person. Furthermore, in combination with Japanese Patent Application No. 2005-182098 already filed by the present inventor, phishing scams and farming scams can be detected by authenticity determination at the browser stage, and phishing scams and farming scams can be detected at the mail reception stage. In addition to preventing detection, phishing scams, and farming scams, the invention of the present application can ensure the security of both the company side and the user side by confirming both transmission and reception, so that the best means of preventing online scams can be provided. It goes without saying that it will also be.
Since the key for decrypting the text using the one-time password PW1T is enclosed in the shadow mail, the receiver does not need a key for decryption at all. Key management is unnecessary.

FIG. 1 is a schematic diagram of a mail transmission content certification system using shadow mail according to the present invention.
The mail transmission content certification system V4 of the present invention will be outlined below.
The mail transmission content certification system V4 is implemented to verify the consistency between the regular mail M1 and the shadow mail M3 exchanged between the sender side 10, the certificate authority 20, and the user receiver side 30.
The sender side 10 includes companies and individuals. Here, as will be described later, the “registered company” will be referred to as a “registered company” for the sake of convenience for the individual or company registered with the certificate authority and who has acquired the one-time password PW1T. It means the company before application / acquisition. The receiver side may be referred to as “user side”.
First, prior to sending a predetermined mail, a company needs to secure a one-time password PW1T for identity verification. For this reason, a company applies for a one-time password PW1T from a certificate authority, and the certificate authority requests the one-time password PW1T. It is premised that the acquisition S1 is performed by issuing
Next, the company 10 that has acquired the one-time password PW1T sends two types of mails, the regular mail M1 and the shadow mail information M2, to the user 30 and the certificate authority 20 individually. In this case, the regular mail M1 is sent S2 to one user 30, and the shadow mail information M2 is sent S3 to the other certificate authority 20. Here, the shadow mail information as the mail addressed to the certificate authority includes the one-time password PW1T, the “Message-ID” of the mail to the user, and the mail in which the body of the regular mail is encoded (hash value) (hash value mail and Furthermore, it includes a set of statuses 1, 2, and 3 at the time of content certification.
The status 1, 2, 3 at the time of content certification, as will be described later, indicates the type of content certification to be requested (a form of different certification content) when the sender requests content certification, The content certification status 1 represents designation of “content certification”, the content certification status 2 represents designation of delivery record, and the content certification status 3 represents a number instructing designation of “sender certification”. Therefore, when the sender requests content certification at a later date, the content certification processing is executed according to the status 1, 2, and 3 at the time of content certification attached to the shadow mail.

Therefore, the certificate authority 20 that has received the shadow mail information M2 attaches a key that is paired with the one-time password PW1T to the shadow mail information M2, and sends the one-time password PW1T to the pair of keys and the user. A mail “Message-ID”, a hashed mail, and a shadow mail M3 including a set of statuses 1, 2, and 3 at the time of content certification are sent to the user 30 S4. At this time, in the case of transmission from the registered company 10, the one-time password PW1T and the key to be paired therewith, the “Message-ID” of the mail, the hash value mail, and the status 1 and 2 at the time of content certification The shadow mail M3 is transmitted to the user 30 as including 3 sets.
The user 30 receives the regular mail M1 from the registered company 10 and receives the shadow mail M3 from the certificate authority 20. The user 30 confirms both the regular mail M1 and the shadow mail M3 by checking the matching of the one-time password PW1T and the key associated with it, the “Message-ID” of the mail, and the hash value mail. Can be secured.
When checking both the regular mail M1 and the shadow mail M3 arriving at the server at the terminal 30T of the user 30, since the regular mail M1 and the shadow mail M3 have paired information as described above, the regular mail M1 is received. Even so, it is set that it cannot be delivered to a normal mailer until the shadow mail M3 arrives. Further, after receiving the regular mail M1 and the shadow mail M3, a one-time password PW1T check, a “Message-ID” check of the mail, and a hash value check are executed between them, and at least one is normal by these checks. In some cases. The determination is based on the information DB provided from the certificate authority by a USB memory or the like and stored in the terminal 30T.
The information provided as the information DB of the user 30 by USB memory, CD-ROM, or download data is the search information database 21 stored in the certificate authority 20, and has a key paired with the one-time password PW1T. It includes random number table information to be searched, function software for converting the mail text into a hash value, SMTP and From address information of a registered company, and SMTP and From address information of a certificate authority.
Details are described in a patent application (Japanese Patent Application No. 2005-182098).
In the present invention, since the content certification statuses 1, 2, and 3 are set in the shadow mail M3, the content certification content and the like are transmitted to the certification authority 20 S5, and based on the content certification statuses 1, 2, and 3, The contents are displayed on the user terminal 30T. The user 30 makes a delivery, refusal, or resend request according to the contents displayed on the user terminal 30T, and upon reception, further processing for checking the consistency of the recipient authentication information is performed. To be handed over. The contents certification contents are recorded in the certificate authority 20 and a transmission completion report is made to the registered company 10. As a result, the registered company 10 can confirm the completion of the content certification mail transmission.

FIG. 2 shows an overall system schematic diagram of certification processing such as content certification, delivery record, and sender certification using shadow mail.
In FIG. 2, as a system for performing content certification processing using shadow mail, on the sender side 10, this sender side includes individuals and companies as exemplified by company A and person 1. The “DocWall program” DW1 is introduced into these terminals 10T, and transmission S2 of the regular mail M1 to the recipient side 30 and transmission S3 of the shadow mail information M2 to the certificate authority can be executed.
On the receiver side 30, the “Doc Wall program” DW 3 is introduced to the user terminal 30 T, so that the regular mail M 1 can be received from the sender side 10 and the shadow mail M 3 can be received from the certification authority 20. Is possible.
On the other hand, basic registration information 21 and additional registration information 22 for shadow mail processing are registered in the corporate domain information registration center 20T of the certificate authority 20 as pre-registration contents. Note that the additional registration information 22 for shadow mail processing needs to be sent before the shadow mail transmission request to the certificate authority at the latest, as described above. It doesn't matter.
In the above, the basic registration information 21 includes a management number, a domain name, a company name, a representative, an address, and the like, and additional registration information for shadow mail processing includes a management number, a company name, The title, name, “sender / destination” mail address, and recipient authentication information are included. In the case of an individual, the management number, personal name, domain name, mail address, and receiver authentication information are included.

The corporate domain information registration center 20 also incorporates a “DocWall main program” DW2 related to content certification, delivery records, and sender certification, and in accordance with the content certification request 24 from the sender, A certificate issuance 25 is possible based on the content certification, delivery record, and delivery completion information registered and stored in the information registration center.
Here, the details of the “content certification, delivery record, delivery completion information” 23 are composed of transmission destination information, transmission side information, and certification authority transmission shadow mail information as the “content certification information” 23a. 23b includes information including transmission destination information and transmission side information. More specifically, the destination information of the “content certification information” 23a includes an email address, delivery completion date / time, certification number, email text, recipient authentication information, and other delivery completion and rejection information statuses. The transmission side information of the “content certification information” 23a includes a transmission mail address, a transmission source mail address, a transmission time, a management number, and the like. Further, the certificate authority transmission shadow mail information of the “content certification information” 23a includes , Destination email address, transmission time, body hash value, etc. are included. On the other hand, the transmission destination information of the “delivery record information” 23b includes an e-mail address, a delivery completion date / time, a certification number, other delivery completion / rejection information status, and the like. The information includes a transmission mail address, a transmission source mail address, a transmission time, a management number, and others.

As described above, the program processing procedure executed between the sender side, the receiver side, and the certificate authority in which each predetermined program is incorporated is the procedure of each process S1, S2, S3, S4, S5, and S6 shown in FIG. The processing contents will be outlined.
First, in the pre-registration process S1, the sender 10 uses the DW program DW1 and pre-registration is performed with the basic registration information 21 as content in the corporate domain information registration center 20T of the certificate authority 20 via the Internet. As pre-registration contents, shadow mail additional information registration 22 to be described later may be pre-registered.
Therefore, in the regular mail transmission process S2, the sender side 10 uses the DW program DW1 to transmit the regular mail M1 to the user terminal 30T on the receiver side 30 via the Internet.
Next, by the certification request and shadow mail transmission request processing S3, the sender 10 uses the DW program DW1 and sends the content certification, delivery record, and sender to the corporate domain information registration center 20T of the certification authority 20 via the Internet. Request the proof work necessary for proof or request shadow mail transmission. At that time, the shadow mail additional registration information 22 can be transmitted at the same time.
Subsequently, after the certification authority 20 executes registration of additional registration information, creates a shadow mail M3 by operating the DW main program DW2, and executes necessary certification work for content certification, delivery record, and sender certification. By the shadow mail transmission process S4, the created shadow mail M3 is transmitted to the user terminal 30T on the receiver side via the Internet based on the certification request from the sender side 10.
After that, the recipient side 30 receives the regular mail M1 and the shadow mail M3, and operates the DW main program DW2 to notify the completion of the delivery of the content certification and the rejection of the mail through the final result notification process S5 including the resend request. In addition, the certificate authority is notified of a mail resending request.
Finally, by the final result recording / notification process S6 by the certificate authority, the final result including the re-transmission request from the receiver side 30 is sent to the corporate domain information registration center of the certificate authority 20 for content certification, delivery record and delivery completion information As a final result including these re-transmission requests, the content proof delivery completion information, e-mail reception refusal information, or e-mail re-transmission request information is transmitted to the sender terminal 10T.
The certificate authority 20 issues a certificate 25 when there is a certificate request 24 for content certificate transmission and delivery certificate transmission from the transmission source side.
Note that the processing order of the regular mail transmission process S2, the certification request / shadow mail additional information registration process S3, and the shadow mail transmission process S4 may be changed.

  Next, referring to FIG. 3, a verification flow for content certification by the mail transmission content certification system V4 will be described.

In the regular mail transmission process S2, the regular mail M1 sent by the registered company 10 to the user 30 includes header information H1 and a body text c. As the header information, the one-time password “X-hogehoge” information issued by the certificate authority is transmitted. It includes “To” information indicating the destination user address, SMTP server information of the server registered in the certificate authority, “From address” and “Message-ID” of the address registered in the certificate authority.
In the certification request and shadow mail transmission request processing S3, the registered company 10 sends a hash value mail to be transmitted to the registration company domain information registration center 20T of the certificate authority 20 in order to request a certification request and shadow mail transmission. M2 includes, as header information H2, the one-time password “X-hogehoge” information a issued by the certificate authority, the destination user address “To” information, the SMTP server information of the server registered in the certificate authority, and the address registered in the certificate authority It includes “From address” information, “Message-ID” information of regular mail, content (c) in which the text of the regular mail is converted into a hash value, and further includes set information d of content certification status. The content certification status means “1” for content certification, “2” for delivery record, and “3” for sender certification ”.

When the certification authority 20 receives the certification request and the shadow mail transmission request from the registered company 10 and receives 201 the hash value mail M2 from the registered company 10 at the registered company domain information center 20T, the header of the received mail is received. Proceed to information check CK1. Here, first, it is determined whether or not it is “registered registered company” by executing the consistency check 202 based on the one-time password PW1T, the SMTP server information, and the “From address” information. As a result of the above-described matching check 202, if “YES” is found, “X-hogehoge2” as a key paired with the unique key is added to the shadow mail header information H3 as the shadow mail M3 of the certificate authority. ”Information (a), destination user address“ To ”information, SMTP information as SMTP of the certificate authority,“ From address ”information of the address registered in the certificate authority,“ Message-ID ”information of regular mail, The hash value content (c) and the content certification status d are transmitted 203 to the user 30. At that time, the certificate authority 20 records the transmission contents such as the transmission source, transmission destination, due date, time, text, etc. 204 and creates a database.
On the other hand, if the result of the consistency check 202 is a mismatch “NO”, the received mail is discarded, and at the same time, the registered company is notified of the forgery and each process 205 including a request for resending the mail. Is executed and the process ends.

The terminal 30T on the user side 30 incorporates the DW program DW3 here, receives the mail 31, receives the regular mail M1 from the registered company 10, and receives the shadow mail M3 from the certification authority side 20. Here, the shadow mail M3 is a mail that has undergone a confirmation check that the hash value mail M2 is a mail from a registered company that has been registered as described in the invention relating to the prior patent application. After being executed, the process proceeds to the next check, header information check CK2 of the received mail, and the following check is executed.
Therefore, first, a password check is performed, and a check 33 is performed to determine whether or not the regular mail M1 is received including the one-time password PW1T. As a result of the check 33, when there is no one-time password PW1T, the process is transferred to the normal filter processing 332;
On the other hand, if “YES” is received including the one-time password PW1T, a check 33 for determining “whether the shadow mail has received a key paired with the one-time password PW1T of the regular mail” is executed. . If the result of the check 33 is “YES”, the following certification processing 34 for the next content certification, delivery record, and sender certification is executed. Details of the certification processing 34 for content certification, delivery record, and sender certification will be described later. Further, following each processing 34, an OK flag is set 35 indicating that the delivery is OK to the normal mailer.
In the above description, when the result of the check 33 relating to the shadow mail password check is “NO”, the following processing is executed in consideration of the elapsed time N check 332 within a predetermined range after the shadow mail has not arrived. While the elapsed time is shorter than N seconds, it waits 333 for an incoming shadow mail M3. However, if the elapsed time of N seconds or more has elapsed, the mail is discarded and the mail is resent to the registered company 334 and the process ends 335.
As described above, according to the first embodiment, if the registered company check 202 in the received mail check CK1 at the certificate authority is NO in the elapse of the check processing time, the mail discard, the fake contact, and the mail resend request are executed, and the user In the received mail check CK2 on the side, if the regular mail check 32 is NO, the normal filtering process is performed, and after “YES” in the check 32, “NO” in the check 33, the elapsed time When N seconds or more have elapsed, a mail discard request and a mail resend request are executed. As a result, it is possible to confirm and secure reception of the regular mail M1 and the shadow mail M3 using a one-time password, thereby achieving the original purpose. be able to.
In the above description, the unit of elapsed time is “N seconds”, but it is not limited to a short time in seconds, and may be in minutes, hours, or days.

FIG. 4 shows another example of the mail header information check CK2 on the user side in the flow of FIG. 3 relating to the mail check after the user side receives the regular mail M1 and the shadow mail M3. If each mail M1 and M2 shown in the above is confirmed to be received for each one-time password and one-time password and a pair of keys, if it is “YES”, then each header information check other than the password is added individually. Is.
In FIG. 4, the process of sending the regular mail M1 from the registered company side 10 to the user side 30, the shadow mail information M2 is sent from the registered company side 10 to the certificate authority 20, and the received mail check at the certificate authority 2 is also performed. Since the process of sending the shadow mail M3 to the user side 30 of the subsequent shadow mail M3 is the same as that in the first embodiment, description thereof will be omitted. Further, since the processing for verifying the contents after the mail check performed after receiving the regular mail M1 and the shadow mail on the user side will be described in detail later, the explanation about these will also be omitted.
As shown in FIG. 4, as the mail header information check CK2 after receiving the regular mail M1 and the shadow mail M3 on the user side 30, the presence / absence check 32 of the one-time password PW1T of the regular mail M1 is performed as described above. As a result, in the case of “YES”, the “SMTP server”, “From address check” and “Registered registered company” check 321 related to the regular mail M1 are further executed.
If the result of this check 321 is "NO", the process proceeds to process 205, the received mail is discarded, and at the same time, the forged registered company is contacted to execute each process including a request for mail resending, End 206. This is the same as in the case where “NO” in the above-described check 202.

If the result of the check 321 is “YES”, then a check 33 for determining “whether the shadow mail has received a key paired with the one-time password PW1T of the regular mail” is executed, If this shadow mail password check key presence / absence check 33 is “NO”, the elapsed time N check 332 waits for the shadow mail M3 to arrive 333 for a time shorter than the elapsed time N seconds, and the elapsed time N seconds have passed. In this case, as described above, the mail is discarded, the mail is retransmitted to the registered company, and the process 334 is terminated.
If the result of the check 33 is “YES”, a determination check 331 of “whether the SMTP mail, the From address, the one-time password PW1T, the attached Message-ID, and the hash value information of the shadow mail M3 are correct” is executed. The If the result of this check 331 is “YES”, each proof process 35 such as the above-mentioned content proof is executed, and subsequently, a process 36 for setting an OK flag to display that the delivery is OK to the normal mailer is executed. Is done.
If the result of the check 331 is “NO”, the process proceeds to the process 205 described above, and the received mail is discarded, and at the same time, the forged registered company is contacted, and each process 205 including a request for mail resend is performed. Execute and end 206.

  As described above, in the first embodiment, the mail header information check CK2 for each of the mails M1 and M2 checks the confirmation of the reception of each one-time password and the key paired with the one-time password. Then, each header information check other than the password is added individually after that, and further processing of checks 321 and 331 is added, and the one-time password is included in the check processing progress of the user side. If each check of the regular mail header information check 321 after the regular mail check 32 and the shadow mail header information check 331 after the shadow mail check 33 including the key paired with the one-time password is NO, the mail is discarded and contacted. An email resending request is executed. By adding these check 321 and check 331, a more reliable check can be performed.

  FIG. 4 shows another embodiment in which a mail reception confirmation check CK3 is added as a mail check after receiving the regular mail M1 and the shadow mail M3 on the user side.

In the pair mail transmission of the present application, since the company side normally sends the shadow mail after sending the regular mail, the receiver side 30 usually receives the shadow mail M3 after receiving the regular mail M1, and the above description The process proceeds to the header information check process CK2 of the received mail. However, there is a case where the regular mail M1 is not received for some reason, and if the recipient side 30 receives the shadow mail M3 before receiving the regular mail M1, this process may not proceed. . Therefore, in the present invention, there is also a device for performing supplementary processing so that the processing can proceed smoothly even when the shadow mail M3 is received first. This is the processing loop indicated by dotted lines 40 to 44 in FIG. 4 and the processing line indicated by dotted lines to 45.
As shown in FIG. 4, in the mail reception confirmation check CK3, a mail arrival confirmation check 40 is executed to determine whether the mail has arrived. Is executed. If the “mail is shadow mail” check 41 is “NO”, since the regular mail has been received, the process proceeds to the mail header information check CK2.

If this “mail is a shadow mail” check 41 is “YES”, a check 42 of “contains regular mail” is executed, whereby the received shadow mail is either a shadow mail alone or a regular mail. It is checked whether it is a shadow mail together. If it is a shadow mail M3 received together with the regular mail M1, “YES” is determined, and the process proceeds to a mail header information check CK2. If the shadow mail M3 is alone, the regular mail M1 is awaited. In this case, since the elapsed time check 43 is executed as to whether the elapsed time is N seconds, the regular mail arrival waiting time is limited to a time region in which the elapsed time is smaller than N seconds.
If the elapsed time exceeds N seconds, the mail is discarded and the registered company 10 is requested to resend the mail. It is also possible to request retransmission of regular mail without discarding the mail.

As described above, even if the normal mail M1 is not received for some reason and the shadow mail M3 is received first, the normal mail M1 paired with the shadow mail M3 is awaited until the predetermined elapsed time is reached. Also, when the specified elapsed time is reached, the email is discarded and the request to resend the email to the registered company is executed, so the first shadow email is processed after receiving the regular email by waiting for an incoming call or sending a resend request. Therefore, it is possible to proceed to the next header information check CK2 with certainty.
According to the third embodiment, it is possible to further reliably receive the correct regular mail M1.

In FIG. 3 and FIG. 4, as the mail header information check C2, the shadow mail check 33 including the key paired with the one-time password or the subsequent check of the shadow mail header information check 331 is followed by “ If “YES”, a “content proof / delivery record / sender proof process” (hereinafter abbreviated as “content proof process”) indicated by reference numeral 34 is executed.
Hereinafter, the details of the processing flow of the “content certification processing” 34 will be described together with the processing content with reference to FIGS. 5A and 5B.

  As shown in FIG. 5A, when the content certification processing 34 is started, first, the type of content certification status, “content certification status 1” 340, and if it is not content certification status 1, “content certification status 2” 350, if it is not the content certification status 2, the sorting judgment of “content certification status 3” 352 is executed.

(If the content certification status is 1: Content certification processing)
In the content certification status check, when the first “content certification status 1” check 340 is YES and the content certification status is 1, first, a content certification transmission message as shown in FIG. 5B (a) is sent to the user terminal 30T. Is displayed as a terminal display 341. This message display D1 is, for example, “This e-mail has been sent as a content certificate from the address 2-3-1 Yatamachi, Shinjuku-ku, Tokyo. Certificate authority: Corporate domain information registration center Certificate No: 123456 "Content certificate" is a message indicating that the "content certificate" is transmitted from the specific sender of the specific address with the certification number of the specific certification authority.
Next, a check 342 of whether or not to receive the content certificate of the displayed message display D1 is requested.
If “YES” is determined in this determination, a final result notification S5 is processed by the receiver side, and specifically, a content certification / delivery record delivery completion notification 343 is executed. The transmission contents such as “date, time, certification number, mail text, recipient authentication information” are returned to the certificate authority 20 and the mail is delivered to the normal mailer 35.
Next, the final result recording and notification S6 by the certificate authority is processed. Specifically, the certificate authority 20 records the received transmission content and executes a transmission completion notification 344 to the transmission source. These transmission contents and notification of transmission completion to the transmission source are made into a database.
Finally, based on the transmission completion notification 344 from the certificate authority 20 to the transmission source, the transmission source confirms 345 the completion of transmission of the content certification and delivery record mail, and ends 346.

Usually, when a content certification request is requested from the sender at a later date, the format example of the certificate of the requested content certification request is a content certification transmission certificate 25 as shown in FIG. "This certificate is sent without being altered in the course of transmission, and it is proved that the certificate has been received" and the date and time of transmission xxxx year xx Month xx Day xx Hour xx Minutes Sender xxxxxxxxxxxx xxxxxxx Co., Ltd. Name xxxxxxxx Destination xxxxxxxx xxxxxxxx xxxx Authenticator Company Domain Information Registration Center Representative Director Katsuka Nagashima Date XX Month xx Prove to a specific sender that an email with the text of the attachment was sent and received between specific senders and receivers To be included.
As described above, the content certification process when “YES” is determined in the content certificate reception acceptance / rejection determination check 342 in the above message display is completed.

On the other hand, if the content certificate reception acceptance / rejection determination check 342 is “NO”, a notification 360 of rejection of content certificate reception to the certificate authority 20 is returned. The reply contents include information such as “transmission destination address, completion date, time, certification number, reception refusal”.
The certificate authority that received the information including the reception refusal records the non-delivery contents of the reception refusal or the recipient information mismatch such as “transmission destination address, completion date, time, certification number, reception refusal”. In addition, each processing 361 for reporting the rejection of the content certification mail to the transmission source is executed.
The contents of refusal of receiving, non-delivery contents of inconsistent recipient information, and the fact of refusal of receiving contents certification mail to the sender are made into a database in the certificate authority.
The transmission source that has received the report from the certificate authority confirms the rejection of the content certification mail and confirms the non-delivery due to the mismatch of the recipient information 362. As described above, the processing in the case where “NO” is determined in the content certificate reception desire determination ends.

(In case of content certification status 2: delivery record processing)
When the determination 340 on the content certification status 1 is “NO”, a check 350 on whether the content certification status is 2 is executed. In the case of “YES” in this check 350, it is positioned as “content certification status 2” and the following processing is executed. First, as shown in FIG. 5B (b), a “delivery record document” from a specific sender of a specific address is attached to the user terminal with a certification number of a specific certification authority. A delivery record transmission message D2 such as “Certification Agency: Company Domain Information Registration Center Certification No: 234567” is displayed 351 from 2-3-1 Yatamachi, City Ichi XXX. Thereafter, the process proceeds to the determination of the “delivery record document” reception acceptance / rejection check 342. Thereafter, the delivery record transmission completion notification 343 as the final result notification S5 by the receiver side, the final result recording by the certification authority, the transmission content record as the notification S6, and the transmission completion notification 344 to the transmission source are described above. The processing flow is the same as the processing flow after the determination of the content certificate reception acceptance / rejection check 343 in the case of “content certification status 1”, and the transmission source notifies the transmission source by the certificate authority 20, and the transmission source Confirm 345 that the mail has been sent and end 346.
“In the case of content certification status 2” is a delivery record document instead of the content certificate in “in the case of content certification status 1”.
On the other hand, in the case of “NO” in the content certificate reception acceptance / rejection determination check 342, a delivery record reception refusal notification 360 is returned to the certificate authority 20. The reply contents include information such as “transmission destination address, completion date, time, certification number, reception refusal”.
The certificate authority that received the information including the reception refusal records the non-delivery contents of the reception refusal or the recipient information mismatch such as “transmission destination address, completion date, time, certification number, reception refusal”. Further, each processing 361 for reporting the rejection of the delivery record mail is executed to the transmission source.
The contents of these rejections and non-delivery details of the recipient information mismatch and the fact that the delivery record mail is rejected to the sender are compiled into a database by the certificate authority.
The transmission source that has received the report from the certificate authority confirms refusal to receive the delivery record mail and confirms 362 non-delivery due to the mismatch of the recipient information. As described above, the processing in the case where “NO” is determined in the content certificate reception desire determination ends.

(If the content certification status is 3: sender certification processing)
If “NO” in the determination 350 on whether or not the content certification status is 2, the content certification status is positioned as “content certification status 3”. In this case, the fact that it is transmitted to the user terminal from the specific sender of the specific address is accompanied by the certification number of the specific certification authority. For example, “This email is address 2-3-1 Yatamachi, Shinjuku-ku, Tokyo XX A transmission source message D3 such as “Certification Authority: Company Domain Information Registration Center Certification No: 345678” is displayed as a message 352. Thereafter, the process 35 is directly transferred to the normal mailer. As described above, it is possible to perform a sender certificate that proves who the sender is.

In the above-described content certification processing 34, even if the determination is “YES” in the check 340 for the content certification status 1 or the determination “NO” in the check 350 for the content certification status 1, the content certification When the determination in the check 351 for status 2 is “YES”, in either of these cases, the process proceeds to the content certificate reception acceptance / rejection check 342 as described above. Subsequent to the certificate reception acceptance / rejection check 342, as shown by a dotted line in FIG. 5A, a recipient authentication information check CK4 is further added. According to the receiver authentication information check CK4, it is possible to include an additional process of performing a terminal input request 370 of the receiver authentication information and a consistency check 371 of the receiver authentication information.
In this case, a check 342 of whether or not to receive the content certificate of the displayed message display is requested, and when this determination is “YES”, the terminal input of the recipient authentication information is requested 370. Is done. When the receiver inputs authentication information, such as a name, password, etc., to the terminal, the information is transmitted to the certificate authority and recorded, and then a consistency check 371 of the receiver authentication information is executed.
When the recipient authentication information matches in the consistency check 371, the final result notification S5 by the receiver and the final result recording by the certificate authority and the notification S6 are executed as described above. . Thereafter, the content proof / delivery record transmission completion notification 343 as the final result notification S5 by the receiver, and the content proof / transmission content record as the final result and notification S6 by the certificate authority and the transmission completion notification to the transmission source 344 is executed. Upon receiving the transmission completion report from the certificate authority 20, the transmission source confirms 345 the completion of transmission of the content certification and delivery record mail.
When the content proof / delivery record delivery completion notification 343 is executed by the receiver, the transmission content is returned to the certificate authority and the mail is delivered to the normal mailer.
In the above, the authentication information when the receiver inputs may be the name of a pet dog, and the accuracy is further improved if it is a fingerprint, biometric authentication or the like.
If there is a mismatch and “NO” in the consistency check 371, both processing of recording the non-delivery contents of the recipient information mismatch to the certificate authority and reporting the rejection of the content certification / delivery record mail to the sender 361 is executed. As a result, the sender performs confirmation of rejection of receipt of the content certification / delivery record mail and confirmation of non-delivery 362 due to mismatch of the recipient information, and the processing ends.
As described above, when the above-mentioned message display content proof and delivery record reception acceptance / rejection determination check 342 is "YES" in this check 342, a terminal input request for a series of recipient authentication information that can be further added. The receiver authentication information check S4 process including the process of 370 and the consistency check 371 of the receiver authentication information is terminated.
In this embodiment, the receiver authentication information terminal input request 374 and then the receiver authentication information check S4 addition process including the receiver authentication information matching check 375 are processes prepared for accuracy. In the case of general mailing, it is possible to use a family seal, so the person who operated the terminal is presumed to be a close relative and may not be required. It can be done.

It is a schematic diagram of the mail transmission content certification system using shadow mail. It is a schematic diagram which shows roughly the procedure of a content certification | authentication etc. process using the shadow mail by the system of FIG. It is a figure which shows each processing content and its positioning in the mail transmission content certification | authentication system using shadow mail, It is a figure which shows the transmission / reception of a content certification status and the received mail check processing in each process before content certification etc. processing. It is a figure which shows the other Example which concerns on the user side received mail header information check etc. in FIG. FIG. 4 is a flowchart showing the details of the “content certification, delivery record, sender certification processing” shown in FIG. 3. In FIG. 5-A, it is a figure which shows the transmission message according to contents certification status 1, 2, and 3 displayed on a user terminal. It is a figure which shows the illustration of certificates, such as content certification.

Explanation of symbols

10 Sender-side 10T Sender-side terminal 20 Certificate authority 20T Corporate domain information registration center
202 Registered company check 205 E-mail discard and contact and e-mail resend request 21 Basic registration information 22 Additional registration information for shadow e-mail processing 23 Content certification, delivery record, delivery completion information 24 Certification request 25 Certificate 30 Receiver side 30T User terminal S1 Pre-registration processing S2 Regular mail transmission processing S3 Certification request and shadow mail transmission request processing S4 Shadow mail transmission processing S5 Final result communication / retransmission request processing by receiver side S6 Final result communication / retransmission request processing by certification authority side
CK1 Received mail header information check by the certificate authority CK2 Received mail header information check by the user CK3 Confirmed mail reception check by the user CK4 Recipient personality check 32 Regular mail password check 321 Regular mail header information check 33 Shadow mail check Key check
331 Shadow mail header information check 334 Mail destruction and mail resending request 34 Content certification, delivery record, sender certification processing 341 Content certification transmission message display 342 Reception acceptance / rejection check 343 Content certification etc. transmission completion notification 344 Transmission content recording Transmission completion notification 351 Delivery record transmission message display on user terminal
352 Sending source message display on user terminal 370 Receiver authentication information terminal input request 371 Receiver information matching check 45 Mail discard and mail resending request D1 Content proof sending message D2 Delivery record sending message D3 Source sending message DW1 DW program DW2 DW main program DW3 DW program M1 Regular mail M2 Shadow mail information M3 Shadow mail

Claims (15)

  A mail is directly transmitted from the sender side 10 to the receiver side 30 via the Internet, and the receiver is indirectly received from the sender side 10 via the certificate authority 20 connected via the Internet therebetween. In a system that sends a mail to the side 30 and enables verification of the contents of the mail based on the reception of the twin mail on the receiver side. (1) The sender side 10 authenticates with the program DW1 installed in the sender side terminal. A pre-registration process S1 for sending the pre-registration contents which can include basic registration information 21 and additional information 22 for shadow mail processing if necessary to the station 20, and (2) the sender side 10 receives the pre-registration process S1. Following the above, the program DW1 causes the regular mail transmission process S2 to transmit the regular mail M1 to the receiver side 30, and (3) the sender side 10 sends the certificate request content certification process to the certificate authority 20. Shadow mail transmission request processing S3 including a certification request or the like, which can transmit shadow mail information M2 in which the status is set and can transmit shadow mail additional registration information 22 by the time of the shadow mail information transmission at the latest (4) ) The certificate authority 20 receives the shadow mail information M2 and the like from the sender side 10 by the main program DW2 installed in the corporate domain information center, and includes a key for pairing with a regular mail as a password and includes a content certification status Shadow mail sending process S4 to be sent to the recipient side 30 as the shadow mail M3, and (5) the final result after the recipient side 30 checks the received mail by the program DW3 installed in the recipient side terminal to the certification authority The final result notification / retransmission request processing S5 to be notified, and (6) the certificate authority 20 from the receiver side 30 by the main program DW2 Mail sending content certification system shadow mail utilization comprising the final results connection and retransmission request processing S6 by the certificate authority to send the information to the sender and records the final result communication and retransmission request information.   In claim 1, when the hash value mail M2 is received from the sender and the registered company check 202 by the header information check CK1 of the received mail is “YES”, the shadow mail can be transmitted to the user side, “NO” ”, A shadow mail-based mail transmission content proof system characterized by executing a mail discard request, a fake fact report to a registered company, and a mail resend request 205.   In Claim 1 or 2, the check of received mail by the program DW3 of the receiver side terminal is executed for the regular mail M1 and the decrypted shadow mail M3, and whether or not the regular mail M1 is received including a one-time password. The check 32 and the shadow mail M3 include a received mail header information check CK2 for executing a check 33 whether or not the reception includes a key paired with the one-time password. In the password check 32 of the regular mail M1, the regular mail M1 is one-time. When the password is not included, the process proceeds to normal filtering. On the other hand, when the regular mail M1 includes the one-time password, the process proceeds to the password check 33 of the next shadow mail M3. M3 includes one-time password and paired key If the shadow mail M3 does not contain a key paired with the one-time password, the shadow mail M3 waits for an incoming mail within a predetermined elapsed time. An e-mail transmission content certification system using shadow e-mail, wherein e-mail discard and e-mail re-transmission to a registered company are executed when a predetermined elapsed time is exceeded.   4. In any one of claims 1 to 3, in the regular mail password check 32 and the shadow mail password check 34, following the check 32, a header information check 321 other than the one-time password of the regular mail is executed. If the header information check 331 other than the one-time password of the shadow mail is not paired with the header information check 321 and 331 other than the password, the mail is discarded and the registered company is impersonated. An e-mail transmission content proof system using shadow e-mail, characterized in that processing 205 including fact communication and e-mail resend request is executed. 5. The one-time password is issued in the pre-registration process S1 according to any one of claims 1 to 4, and the shadow mail information M2 in the shadow mail information transmission process S3 is a one-time password, a Message-ID of a mail to the user, a hash The main text and status 1 at the time of content certification; content certification, 2; delivery record, 3; sender email, shadow email in shadow email sending processing S4 is a key paired with a one-time password and email to the user Message-ID, hashed text, status 1 at the time of content certification, content certification, 2; delivery record, 3; transmission from sender, and the hash value mail received by the certificate authority at shadow mail sending processing S4 is When the result of each check of registration company confirmation, one-time password, SMTP server, and From address is “YES” An e-mail transmission content proof system using shadow e-mail, wherein the e-mail can be transmitted as shadow e-mail M3, and the transmission content is recorded.   6. The mail reception confirmation check CK3 is added when receiving mail on the user side according to claim 1. The mail reception confirmation check CK3 is a mail incoming check 40 and a shadow mail of the received mail. The check 41, the regular mail received check 42 in the case of shadow mail, and the feedback process of waiting for the regular mail incoming 44 within the elapsed time if the regular mail has not reached even if it is a shadow mail. When the elapse of time has elapsed, the regular mail resending request 45 is executed to the registered company without discarding the mail or discarding the mail, and if the regular mail has been received in the regular mail received check 42 in the case of shadow mail, For example, a shadow mail-based mail transmission content proof system characterized by proceeding to a mail header information check CK2.   7. The final decision of delivery completion or refusal information or a re-transmission request is made to the head information of the shadow mail M3 transmitted from the certificate authority when the final result notification S5 is made by the receiver side. A message transmission content certification system using shadow mail, characterized in that a message is sorted according to the type of content certification status and a different message is displayed for each type of content certification status on the user terminal. .   The content certification status type attached to the head information of the shadow mail M3 transmitted from the certificate authority is the content certification status 1, the content certification status 2 is the content certification, the content certification status 2 is the delivery record, and the content certification status 3 is the transmission E-mail content verification system using shadow e-mail, characterized in that the e-mail is proved and processed by this sorting.   9. The delivery record transmission message to the user terminal when the content certification status is "1" when the content certification transmission message is D1 display 341 when the content certification status is 1, or when the content certification status is "NO" and the content certification status is 2. When the D2 display 351 is “YES” in the subsequent reception acceptance / rejection check 342, each delivery completion notification 343 of the content certification or delivery record is executed and delivered to the normal mailer 35, while the content certification or delivery record is transmitted The contents are returned to the certification authority, and the certification authority records the transmission contents of the returned contents certification and executes a transmission completion notification 344 to the transmission source, thereby enabling the transmission source to be confirmed. E-mail transmission content proof system using e-mail.   In claim 9, when “NO” is displayed in the reception acceptance / rejection check 342 following the display of the content certification transmission message 341 or the delivery record transmission message 351, the certificate authority is notified 360 of the rejection of the reception of the content certification or the delivery record, and The certificate authority records the received refusal received or the non-delivery contents of the recipient mismatch, and notifies the sender 361 the refusal of receiving the contents certification or the delivery record, so that the sender receives the contents certification or the delivery record by mail. An e-mail transmission content proof system using shadow e-mail, which enables confirmation 362 of rejection and non-delivery due to mismatch of recipient authentication information.   In claim 9, when “YES” is set in the reception acceptance / rejection check 342, a receiver authentication information check S <b> 4 is subsequently added, and in the receiver authentication information check S <b> 4 processing, the terminal input of the receiver authentication information is performed. In response to the request 370, the input of the requested recipient authentication information is checked to check the consistency of the recipient authentication information 371, and when the recipient authentication information matches, the receiver side proceeds to the final result notification S5. An e-mail transmission content proof system using shadow e-mail, wherein the content proof or delivery record is usually delivered to a mailer.   In claim 11, when the receiver authentication information coincidence check 371 does not match, the result is notified to the certificate authority, and the certificate authority records the rejection of the reception or the non-delivery of the receiver mismatch, Each processing 361 for reporting delivery record reception refusal is executed, and accordingly, the sender can confirm 362 refusal of receiving a content certificate or delivery record or non-delivery due to a mismatch in recipient authentication information. E-mail contents verification system using shadow e-mail.   In claim 8, when the content certification status check indicates that the content certification status is not the content certification status 1 or the content certification status 2 but the sender certification is the content certification status 3, the sender transmission message D3 is displayed 352 on the user terminal, and then A system for proving mail transmission contents using shadow mail, characterized in that it is usually handed over to a mailer 35. (A) Between the sender side, the receiver side, and the certificate authority, a network that enables mail transmission / reception and incoming mail check via the Internet is constructed by a program incorporated in each terminal or corporate domain center,
(B) By the program on the sender side, the sender side can send and receive basic registration information including sender attribute information for pre-registration and a one-time password with the certificate authority, and send the header to the certificate authority. Proof of delivery status is added to the information, hashed shadow mail information can be sent, and certification certificate and shadow mail transmission requests can be sent to the certificate authority, and shadow mail additional information can be sent at the same time The receiver side can send a regular email, and the delivery completion or refusal information of the execution result of the email information check and content certification process can be notified to the certificate authority including the email resend request,
(C) By the main program of the certificate authority, the certificate authority registers the basic registration information including the sender attribute information from the sender side and the one-time password, can issue the one-time password, and is sent from the sender side. Shadow mail additional information transmission can be pre-registered, proof request and shadow mail transmission request can be received from the sender side, shadow mail can be transmitted to the receiver side, and notification of the final result from the receiver side can be received, Record this and make it possible to notify the sender of the final result, and issue a certificate when the final result from the receiver is a proof request for content proof transmission or delivery record transmission from the sender. Made possible
(D) According to the program on the receiver side, the receiver side can receive regular mail from the sender side, can receive shadow mail from the certificate authority, can decrypt shadow mail, and decrypts each received regular mail and decrypts it. By checking the mail header information of the shadow mail that has been converted, it is possible to discard the mail, notify the sender, and request a resend, and by the content certification, delivery record, sender certification processing, by the set content certification status check Under the message acceptance check, you can notify delivery completion, rejection information, and resend request.
(E) An e-mail transmission content proof system using shadow e-mail that enables verification of e-mail transmission content. 15. The receiver side program according to claim 14, wherein the receiver side makes a name, password, pet dog name, fingerprint in response to a request for terminal input of the receiver authentication information based on the additional processing of the receiver authentication information check. E-mail content verification system using shadow e-mail that enables the input of biometric recognition, etc., and allows the input recipient authentication information to be recorded by a certificate authority program.