JP2008059206A - Software management system, management server, and management program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To surely prevent the outflow/leakage of confidential information by unnecessary information collection software or file sharing software without damaging any function useful/informative for a task by making it possible to perform partition management according to a fixed reference. <P>SOLUTION: Information collection software or file sharing software is retrieved by a retrieval means 11 in each user terminal 10A, and a management server 20A is notified of the retrieval result by a notification means 12, and the holding circumstances of the information collection software or the file sharing software in each user terminal 10A are extracted from the retrieval result notified from each user terminal 10A, and registered or integrated into a ledger in a database 22a in the management server 20A. Then, the information collection software in the user terminal 10A is managed by a management means 23A based on the holding circumstances of the information collection software or the file sharing software integrated into a ledger. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to information collecting software in a user terminal such as a personal computer connected to an in-house LAN (Local Area Network) in a company [a user who collects information in a user terminal and transmits it to a specific device. The present invention relates to a technique for managing a program for operating a terminal] or file sharing software [a program for operating the user terminal to exchange or share files with other devices via a network].

  In general, in a company or the like, in order to monitor assets and operation status of user terminals connected to an in-house LAN, information on assets held in the user terminals and operation logs / Software that collects Internet browsing history and notifies the management server (for example, see Patent Documents 1 and 2 below) is used.

  This software is usually executed during the normal operation of the user terminal, regardless of the user's operation, in response to an instruction from the management server or automatically or in the background to make the user aware. Instead, the user terminal is made to automatically execute information collection and collection result transmission.

In addition to the software that collects information as described above, information collecting software called Spyware has been spreading in recent years as performing the same information collecting / sending function.

  Spyware, if defined strictly, collects information in the user terminal without giving sufficient explanation to the user or without consent, and the specific company / organization / individual that has been set in advance. Software sent to (information collector).

  Many spywares seem to have various conveniences at first glance, let them download / install themselves, or browse a specific site or unknowingly by unknowingly It is sent directly to the user terminal and installed by using a system problem. Spyware originally has rarely noticeable behavior on the surface, and often operates without the user's knowledge other than slowing down the operation of the computer. In addition, spyware often makes a computer malfunction due to a design defect, and even if spyware is detected and deleted, malfunctioning computer operation may be stabilized.

  Some spyware performs functions that are useful to the user, but spyware is usually installed without the user's consent as described above, causing the computer system to become unstable or undesired to leak information. There are many things that cause problems such as waking up. In particular, spyware that collects Internet browsing history, key input information, etc., is used for various personal information of users (address, name, telephone number, e-mail address, credit card number, account number, password, etc.) and specific sites. The identification number and password used when logging in to the user may be leaked outside without the user's knowledge. However, unlike computer viruses, spyware usually does not have a proliferation function that allows self-replication and distribution without permission.

There is also a program called “file sharing software” or “file exchange software”, which transfers files in the background with other computers via a network to share or exchange files. In the present specification, file sharing software and file exchange are referred to as file sharing software.

  In this case, a large amount of data flows on the network, which may cause a traffic problem on the network. In addition, resources and capabilities may be deprived of file transfer, which may reduce the computer's original operating capability.

And with this kind of file sharing software, there are cases where files are transferred in a state of infringement of copyright, and the file sharing software is not intended to be shared or exchanged due to virus infection. There is a risk that files will be leaked outside.
JP 2003-196248 A JP 2005-032158 A

By the way, as described above, it is desirable to avoid using spyware and file sharing software because it leads to information leakage and system instability.
In particular, when spyware or file sharing software is installed on a user terminal used in a company, confidential information such as personal information in the user terminal leaks to the outside due to the spyware or file sharing software. If there is a risk that confidential information is leaked or leaked, it may lead to a decline in corporate image and reliability.

  Therefore, a technology for managing information collection software including spyware or the file sharing software in a user terminal connected to a network such as an in-house LAN in a company or the like, and deleting information collection software that is not desirable for the company. Development is desired.

  At that time, as described above, the information collection software held in the user terminal is useful for collecting information necessary for the company to manage the user terminal, as well as the user and management such as spyware. It is installed maliciously without the user's consent, leading to information leakage and system instability, so it is desirable to avoid using it, so all the information collection software on the user terminal is malicious. If it is determined that it is present and immediately deleted, it is not preferable because a function that is useful and useful for business and users cannot be used. Also, it is not preferable that file sharing software that is used while being managed in an appropriate state and that performs useful functions becomes unavailable.

  Therefore, rather than managing and simply deleting the information collection software or the file sharing software, whether or not the information collection software or file sharing software to be managed is useful and useful for business or users. It is desirable to provide a system environment that can determine whether or not information collection software and file sharing software can be managed in accordance with certain standards.

  The present invention was devised in view of such a situation, and is a system capable of determining whether or not the information collection software and file sharing software to be managed are useful and useful for business and users. Provide an environment, enable information collection software and file sharing software to be managed according to certain standards, and collect unnecessary information without impairing functions that are useful and useful for businesses and users The purpose is to ensure that confidential information is not leaked or leaked by software or file sharing software.

In order to achieve the above object, each invention is configured as follows.
(1-1) The invention of the software management system according to claim 1 includes a user terminal and a management server connected to the user terminal so as to be able to communicate with each other and managing the user terminal, The user terminal exchanges or shares a file with other devices via information collection software or a network that operates the user terminal so that the information in the user terminal is collected and transmitted to the specific device. Search means for searching for file sharing software for operating the user terminal in the software of the user terminal, history recording means for recording a web browsing history or a file transfer history in the user terminal, The search result of the information collection software or file sharing software by the search means and the time between the previous search result notification and the current search result notification Notification means for notifying the management server of the web browsing history or the file transfer history recorded by the history recording means, and the management server is notified of the search notified from the user terminal. Extraction means for extracting the status of the information collection software or the file sharing software in the user terminal from the search result by the means, and the information collection software or the file sharing software extracted by the extraction means Registration means for associating with the user terminal and registering it in the database, the difference between the search result notified last time from the user terminal and the search result notified this time, and the web browsing notified this time The information collection software newly added to the user terminal is combined with the history or file transfer history. Source site specifying means for specifying the source site of the software or file sharing software, possession status of the information collection software or the file sharing software registered in the database, and the source site specifying means Based on the source site, the user terminal and management means for managing the information collection software or the file sharing software in the user terminal are provided.

  (1-2) In the above (1-1), the management server refers to the possession status of the information collection software or the file sharing software registered in the database, and sets a predetermined criterion. The information collecting software or the file sharing software held in the user terminal is provided with a judging means for judging whether or not the user terminal should be held by the user terminal, When it is judged by the judging means that the information collecting software or the file sharing software should not be held, the management means of the management server uses the information collecting software or the file sharing software. A deletion command is sent to the user terminal to delete it from the user terminal, and the information collecting software is also sent from the user terminal. In addition, the file sharing software is forcibly deleted, and the access of the user terminal to the source site specified by the source site specifying means corresponding to the information collection software or the file sharing software is restricted. It is desirable to force prohibition.

(1-3) In the above (1-1), the management server registers a list of information related to information collection software or file sharing software necessary for business, and the information collection registered in the database. Refers to the possession status of the software or the file sharing software, collates the information collection software or the file sharing software held in the user terminal with the information registered in the list, and uses the information Determination means for determining whether information corresponding to the information collection software or file sharing software held in the user terminal is registered in the list, and the information collection by the determination means If the software or the information corresponding to the file sharing software is not registered in the list If it is refused, the management means of the management server sends a deletion command to the user terminal to delete the information collection software or the file sharing software from the user terminal. The collection software or the file sharing software is forcibly deleted, and the user terminal of the user terminal with respect to the source site specified by the source site specifying means corresponding to the information collection software or the file sharing software It is desirable to forcibly prohibit access.

  (1-4) In the above (1-1), the management server registers a list of information related to information collection software or file sharing software unnecessary for business, and the information registered in the database. Refer to the possession status of the collection software or the file sharing software, collate the information collection software or the file sharing software held in the user terminal with the information registered in the list, And determining means for determining whether or not information corresponding to the information collection software or file sharing software held in the user terminal is registered in the list. If the information corresponding to the collection software or the file sharing software is registered in the list If it is refused, the management means of the management server sends a deletion command to the user terminal to delete the information collection software or the file sharing software from the user terminal. The collection software or the file sharing software is forcibly deleted, and the user terminal of the user terminal with respect to the source site specified by the source site specifying means corresponding to the information collection software or the file sharing software It is desirable to forcibly prohibit access.

  (1-5) It should be noted that in any of the above (1-2) to (1-4), the management server sends information related to information collection software or file sharing software through a network connected to the management server. Information collecting means for collecting, and criteria / list setting means for setting the judgment criteria or the list based on information on the information collecting software or file sharing software collected by the information collecting means. It is desirable.

  (1-6) In any one of the above (1-1) to (1-5), the management server uses a search program that causes the user terminal to function as the search means and the notification means. It is preferable that the user terminal is configured to include an installation unit that is installed in the user terminal, and the user terminal functions as the search unit and the notification unit by executing a search program installed by the installation unit.

  (1-7) In the above (1-6), the management server is configured to include a download unit that downloads a search program provided from a providing site through a network connected to the management server, It is desirable that the installation means installs the program downloaded by the download means on the user terminal as the search program.

(2-1) The invention of the software management system according to claim 2 includes a user terminal and a management server connected to the user terminal so as to be able to communicate with each other and managing the user terminal, History recording means for recording the web browsing history or file transfer history in the user terminal, and notification means for notifying the management server of the web browsing history or file transfer history recorded by the history recording means. And an access site extracting means for extracting information related to a site accessed by the user terminal from the web browsing history or file transfer history notified from the user terminal, Access to access the site accessed by the user terminal based on the information extracted by the access site extraction means And after the access to the site by the access means, the information in the management server is collected and transmitted to a specific device and other devices via the information collection software or network for operating the management server Search means for searching for file sharing software for operating the management server to exchange or share files from the software of the management server, and information collection software or file sharing software is searched by the search means The information collection software or file sharing software, and the information collection software or file sharing software at the user terminal and the user terminal based on the source site of the information collection software or file sharing software. File sharing software It is constituted by a managing means for managing, characterized in that.

  (2-2) In the above (2-1), when the management server searches for information collection software or file sharing software by the search means, the information collection is performed according to a predetermined criterion. The information collection software or the file sharing software is configured to include whether or not the software or the file sharing software is to be held in the user terminal. If the management means of the management server determines that the information collection software or the file sharing software is to be deleted from the user terminal, the management server of the management server issues a deletion command to the user terminal. Force the information collection software or the file sharing software from the user terminal Is deleted, the with respect to the information collection software or file sharing software source site, forcibly prohibit access of the user terminal, it is desirable.

  (2-3) In the above (2-1), the management server registers a list of information related to information collection software or file sharing software necessary for business, and information collection software or When the file sharing software is searched, the information collection software or the file sharing software is compared with the information registered in the list, and the information corresponding to the information collection software or the file sharing software is found. And determining means for determining whether or not the information is registered in the list. The determining means determines that information corresponding to the information collecting software or the file sharing software is not registered in the list. The management means of the management server, the information collection software To delete the air or the file sharing software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and It is desirable to forcibly prohibit access of the user terminal to the source site of the information collection software or file sharing software.

  (2-4) In the above (2-1), the management server registers a list in which information related to information collection software or file sharing software unnecessary for business is registered, and information collection software by the search means Alternatively, when the file sharing software is searched, the information collection software or the file sharing software is checked against the information registered in the list, and the information corresponding to the information collection software or the file sharing software is checked. Determining means for determining whether or not information is registered in the list, and information corresponding to the information collection software or the file sharing software is registered in the list by the determining means If it is determined, the management means of the management server To delete the air or the file sharing software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and It is desirable to forcibly prohibit access of the user terminal to the source site of the information collection software or file sharing software.

(2-5) It should be noted that in any of the above (2-1) to (2-4), the management server sends information related to information collection software or file sharing software through a network connected to the management server. Information collecting means for collecting, and criteria / list setting means for setting the judgment criteria or the list based on information on the information collecting software or file sharing software collected by the information collecting means. It is desirable.

  (2-6) The invention of the software management system according to claim 13 is the software management system according to any one of (2-1) to (2-5), wherein the management server is connected to the management server via a network. It is desirable that the apparatus includes a download unit that downloads a search program provided from a providing site, and that functions as the search unit by executing the program downloaded by the download unit.

  (3) The invention of the management server according to claim 3 is connected to the user terminal so as to be communicable with each other, and operates the user terminal so as to collect information in the user terminal and transmit it to a specific device. The information collecting software to be operated or the file sharing software for operating the user terminal so as to exchange or share the file with other devices via the network is searched from the software of the user terminal by the search means. Is a management server that manages the user terminal and is notified of the web browsing record or file transfer history in the user terminal by the search means notified from the user terminal. Extraction means for extracting from the search result the possession status of the information collection software or the file sharing software in the user terminal; Registration means for registering in the database the possession status of the information collection software or the file sharing software extracted by the extraction means in association with the user terminal, and the search result previously notified from the user terminal And the search result notified this time, and the web browsing history or file transfer history notified this time, the information collection software or file sharing software newly added to the user terminal Based on the source site specifying means for specifying the source site, the holding status of the information collection software or the file sharing software registered in the database, and the source site specified by the source site specifying means The user terminal and the information collecting software in the user terminal or Is configured by a management means for managing the file sharing software, characterized in that.

  (4) The invention of the management server according to claim 4 is connected to the user terminal so as to be communicable with each other, is notified of a web browsing record or a file transfer history in the user terminal, and manages the user terminal An access site extracting means for extracting information related to a site accessed by the user terminal from the web browsing history or file transfer history notified from the user terminal; and the access site extracting means Based on the information, the access means for accessing the site accessed by the user terminal, and after the access to the site by the access means, the management server collects information in the management server and transmits it to a specific device Exchange files with other devices via the information collection software that runs the server or the network, or A search means for searching the file sharing software for operating the management server terminal so as to have the software of the management server, and when the information collection software or the file sharing software is searched by the search means, Based on the information on the information collection software or the file sharing software and the source site of the information collection software or the file sharing software, the information collection software or the file sharing on the user terminal and the user terminal And a management means for managing software.

(5) The invention of the management program according to claim 5 is connected to the user terminal so as to be able to communicate with each other, and operates the user terminal so as to collect information in the user terminal and transmit it to a specific device. The information collecting software to be operated or the file sharing software for operating the user terminal so as to exchange or share the file with other devices via the network is searched by the searching means from the software of the user terminal. A management program for notifying a user of a search result and a web browsing record or file transfer history in the user terminal, and causing the computer to function as a management server for managing the user terminal. From the search result notified by the search means, the information collection software or the file in the user terminal Extracting means for extracting the possession status of the shared software, registration means for registering the possession status of the information collection software or the file sharing software extracted by the extracting means in the database in association with the user terminal , By adding the difference between the search result notified last time from the user terminal and the search result notified this time, and the web browsing history or file transfer history notified this time, to newly add to the user terminal Source site specifying means for specifying the source site of the collected information collection software or file sharing software, possession status of the information collection software or file sharing software registered in the database, and the source site Based on the source site specified by the specifying means, the user terminal and As a management means for managing the information collection software or the file sharing software in the user terminal, to function the computer, characterized in that.

  (6) The invention of the management program according to claim 6 is connected to the user terminal so as to be able to communicate with each other, is notified of the web browsing record or file transfer history in the user terminal, and manages the user terminal. A management program for causing a computer to function as a server, the access site extracting means for extracting information related to a site accessed by the user terminal from a web browsing history or a file transfer history notified from the user terminal; Based on the information extracted by the site extraction means, an access means for accessing the site accessed by the user terminal, and after accessing the site by the access means, information in the management server is collected and stored in a specific device. Information collection software or network that operates the management server to transmit Search means for searching the management server software for file sharing software for operating the management server terminal so as to exchange or share files with other devices via a network, and the search means When the information collection software or file sharing software is searched, the user terminal is based on the information about the information collection software or file sharing software and the source site of the information collection software or file sharing software. The computer is caused to function as management means for managing the information collection software or the file sharing software in the user terminal.

  (1-1) In the invention of the software management system according to claim 1, the information collecting software or the file sharing software is searched by the searching means in each user terminal, and the web browsing in the user terminal is performed by the history recording means. History or file transfer history is recorded, and the search result and the web browsing history and file transfer history recorded from the previous search result notification to the current search result notification are notified to the management server by the notification means, while the management server In the server, from the search result notified from each user terminal, the possession status of the information collection software or the file sharing software in each user terminal is extracted, registered in the database, made into a ledger, and used Search results notified last time from the user terminal and the search results notified this time And the difference, by making butted against the latest notification web browsing history or file transfer history was, the newly added information collection software or file sharing software of the source site to the user terminal is identified. Then, the information collection software in the user terminal is managed by the management means based on the information collection software stored in the ledger or the possession status of the file sharing software and the identified source site.

As a result, information collection software or file sharing software is not simply deleted by managing the information collection software or the file sharing software, but the information collection software and file sharing software to be managed are useful and useful for business and users (necessary) It is possible to provide a system environment in which it is possible to make a judgment based on the possession status or the source site.

  (1-2) In the above (1-1), the information collection software or the file sharing software held in the user terminal is held in the user terminal in accordance with a preset criterion. When it is determined whether or not the information collection software or the file sharing software is not to be held, the management unit of the management server determines that the information collection software or the file sharing software is not to be held. To delete the software or the file sharing software from the user terminal, forcibly delete the information collection software or the file sharing software from the user terminal, and Corresponding to the information collection software or the file sharing software, For the constant has been origin site, forcibly prohibit access of the user terminal.

  In this way, whether or not the information collection software or file sharing software held in the user terminal should be held in the user terminal is determined and held in accordance with a predetermined criterion. For information collection software or file sharing software that should not be deleted, a deletion command is sent to the user terminal and it is forcibly deleted from the user terminal, and access to the source site is forcibly prohibited. Is done.

  In this way, it is possible to manage and manage information collection software and file sharing software according to certain standards, and only unnecessary information collection software and file sharing software can be deleted. Therefore, it is possible to reliably prevent leakage or leakage of confidential information by using information collection software or file sharing software without impairing functions useful and necessary (necessary) for business.

  (1-3) In (1-1) above, a list (white list) in which information related to information collection software or file sharing software necessary for business is registered is prepared in advance, and the user terminal The information collection software or the file sharing software held is compared with the information registered in the list, and the information collection software or file sharing software held in the user terminal is supported. When it is determined whether or not information is registered in the list, and when it is determined that information corresponding to the information collection software or the file sharing software is not registered in the list (white list), the management The management means of the server uses the information collection software or the file sharing software. Is sent to the user terminal to forcibly delete the information collecting software or the file sharing software from the user terminal, and the information collecting software or the file is deleted from the user terminal. Corresponding to the shared software, the user terminal is forcibly prohibited from accessing the source site specified by the source site specifying means.

  In this way, whether or not the information collection software or the file sharing software held in the user terminal should be held in the user terminal according to a predetermined criterion, for example, a white list, is determined. For information gathering software or file sharing software that should be judged and should not be held, a delete command is sent to the user terminal and it is forcibly deleted from the user terminal, and the user terminal accesses the source site. Is forcibly prohibited.

In this way, it becomes possible to manage information collection software and file sharing software according to certain standards, and only unnecessary information collection software and file sharing software can be deleted. Leakage of confidential information through information collection software and file sharing software without compromising useful and necessary (necessary) functions for business
Leakage can be reliably prevented.

  (1-4) In the above (1-1), a list (black list) in which information related to information collection software or file sharing software unnecessary for business is registered is prepared in advance, and the user terminal The information collection software or the file sharing software held in the server is checked against the information registered in the list, and the information collection software or file sharing software held in the user terminal is supported. It is determined whether or not the information to be registered is registered in the list, and it is determined by the determining means that the information corresponding to the information collection software or the file sharing software is registered in the list (black list). In this case, the management unit of the management server may use the information collection software or the file. To delete the information sharing software or the file sharing software from the user terminal by sending a deletion command to the user terminal to delete the information sharing software from the user terminal. Access to the source site specified by the source site specifying means corresponding to the software or the file sharing software is forcibly prohibited.

  In this way, whether or not the information collection software or file sharing software held in the user terminal should be held in the user terminal according to a predetermined criterion, for example, a black list, is determined. For information gathering software or file sharing software that should be judged and should not be held, a delete command is sent to the user terminal and it is forcibly deleted from the user terminal, and the user terminal accesses the source site. Is forcibly prohibited.

  In this way, it is possible to manage and manage information collection software and file sharing software according to certain standards, and only unnecessary information collection software and file sharing software can be deleted. Therefore, it is possible to reliably prevent leakage or leakage of confidential information by using information collection software or file sharing software without impairing functions useful and necessary (necessary) for business.

  (1-5) In any one of the above (1-2) to (1-4), the management server collects information related to information collection software or file sharing software through a network, and the collected information The judgment criteria or the list is set based on the information about the collection software or the file sharing software.

  In this way, judgment criteria and lists are updated to the latest state with information via the network, so that information collection software and file sharing software can be managed separately based on the latest state, Only unnecessary information collection software and file sharing software can be deleted, and information collection software and file sharing software can be used without impairing useful and useful (necessary) functions for business and users. Confidential information can be reliably prevented from leaking or leaking.

  (1-6) In any of the above (1-1) to (1-5), a search program that causes the user terminal to function as the search means and the notification means is installed in the user terminal. An installation means is provided on the management server side, and the user terminal performs functions as the search means and the notification means by executing a search program installed by the installation means. Necessary information collection software and file sharing software can be deleted without fail, and information collection software and file sharing software can be used without impairing useful and useful (necessary) functions for business and users. Confidential information can be reliably prevented from leaking or leaking.

  In addition, the management server installs a search program that causes the user terminal to function as a search unit or a notification unit in the user terminal, and the user terminal executes the search program to use the functions as the search unit and the notification unit. The user terminal does not require the user to install a search program at his / her own will and can be used as a search means and a notification means at each user terminal under the management of the management server. Functions can be realized reliably.

  (1-7) In the above (1-6), the management server is configured to include a download unit that downloads a search program provided from a providing site, and the installation unit is downloaded by the download unit. By installing the program as a search program on the user terminal, unnecessary information collection software and file sharing software can be surely deleted, which is useful and useful for business and users. Without impairing (necessary) functions, it is possible to reliably prevent leakage or leakage of confidential information by information collection software or file sharing software.

  Furthermore, the management server downloads a search program provided free of charge from the provider site via the network, and by using the program to implement search means on the user terminal or the management server, the administrator can install a special program. It is possible to search for the latest spyware or the like using a program that can always search for the latest spyware or the like without creating it.

  (2-1) In the invention of the software management system according to claim 2, the web browsing history or the file transfer history in the user terminal is recorded by the history recording means in each user terminal, and the web browsing history or the file transfer history is recorded. Is notified to the management server by the notification means. On the management server, information on the site accessed by the user terminal is extracted from the web browsing history or file transfer history notified from the user terminal, and the extracted information Based on the above, access to the site accessed by the user terminal is executed, and after the access, the information collection software or file sharing software is searched by the search means in the management server. When information collection software or file sharing software is searched, it is natural that the information collection software is installed on the user terminal that accesses the same site and browses. The information collection software on the user terminal is managed by the management means based on the information about the information collection software or file sharing software and the source site of the information collection software or file sharing software to be accessed. Managed.

  As a result, the information collection software or the file sharing software is not managed and simply deleted, but the management server actually performs confirmation work according to the history of the user terminal, and the information collection software to be managed A system environment is provided in which it is possible to determine whether or not file sharing software is useful and necessary (necessary) for business and users.

  When it is recognized that it is the source site for unnecessary information collection software or file sharing software, the user terminal cannot access the source site. Software or file sharing software can be reliably prevented from being taken into the user terminal.

(2-2) In (2-1) above, the information collection software or file sharing software detected by the management server by accessing the management server based on the history of the user terminal is preset. If it is determined whether or not the information should be held in the user terminal according to the determination criteria, and if it is determined that the information collection software or the file sharing software is not to be held, The management means sends a deletion command to the user terminal to delete the information collection software or the file sharing software from the user terminal, and the information collection software or the file sharing software from the user terminal. And the information collection software or file sharing software. In response to A for source site specified by said output plant site specifying means, forcibly prohibit access of the user terminal.

  In this way, access to the management server based on the history of the user terminal is executed, and the information collection software or file sharing software detected on the management server side by this access is in accordance with a predetermined criterion. Since it is determined whether or not it should be held in the user terminal, it becomes possible to manage and manage information collection software and file sharing software according to certain standards, and unnecessary information collection software Only file and file sharing software can be deleted, and confidential information is leaked or leaked by information collection software or file sharing software without compromising business useful and useful (necessary) functions for companies and users. It can be surely prevented.

  Also, if the management server recognizes that it is the source site of unnecessary information collection software or file sharing software, the user terminal will not be able to access the source site. Therefore, it is possible to reliably prevent the information collection software or file sharing software from being taken into the user terminal.

  (2-3) In the above (2-1), a list (white list) in which information related to information collection software or file sharing software necessary for business is registered is prepared in advance, and the history of the user terminal The information collection software or the file sharing software detected by the management server by accessing the management server in accordance with the information is collated with the information registered in the list, and the information collection software or the file sharing software When it is determined whether information corresponding to is registered in the list and it is determined that information corresponding to the information collection software or the file sharing software is not registered in the list (white list) The management means of the management server is the information collection software or the In order to delete the file sharing software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Access to the source site specified by the source site specifying means corresponding to the software or the file sharing software is forcibly prohibited.

  In this way, access to the management server based on the history of the user terminal is executed, and the information collection software or file sharing software detected on the management server side by this access is the necessary software set in advance. In accordance with the registration list (white list), it is determined whether or not it should be held in the user terminal, so it is possible to manage and manage information collection software and file sharing software according to certain standards Therefore, only unnecessary information collection software and file sharing software can be deleted, and information collection software and file sharing software can be used without impairing functions useful and useful (necessary) for businesses and users. It is possible to surely prevent leakage or leakage of confidential information due to wear.

(2-4) In the above (2-1), a list (black list) in which information related to information collection software or file sharing software unnecessary for business is registered is prepared in advance. The information collection software or the file sharing software detected by the management server by accessing the management server according to the history is collated with the information registered in the list, and the information collection software or the file sharing software It is determined whether the information corresponding to the software is registered in the list, and it is determined that the information corresponding to the information collection software or the file sharing software is registered in the list (black list). In this case, the management means of the management server is the information collection software or the In order to delete the file sharing software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Access to the source site specified by the source site specifying means corresponding to the software or the file sharing software is forcibly prohibited.

  In this way, access to the management server based on the history of the user terminal is executed, and information collection software or file sharing software detected on the management server side by this access is stored in unnecessary unnecessary software. Software registration list (black list), it is determined whether it should be held in the user terminal, so it is possible to manage the collection of information collection software and file sharing software according to certain standards Therefore, only unnecessary information collection software and file sharing software can be deleted, and information collection software and file sharing can be performed without impairing useful and useful (necessary) functions for business and users. It is possible to reliably prevent leakage and leakage of confidential information by software.

  (2-5) Note that in any of the above (2-1) to (2-4), the management server collects information related to information collection software or file sharing software through a network, and the collected information The determination criteria or the list is set based on information about the information collection software or the file sharing software.

  In this way, judgment criteria and lists are updated to the latest state with information via the network, so that information collection software and file sharing software can be managed separately based on the latest state, Only unnecessary information collection software and file sharing software can be deleted, and information collection software and file sharing software can be used without impairing useful and useful (necessary) functions for business and users. Confidential information can be reliably prevented from leaking or leaking.

  (2-6) Note that in any of the above (2-1) to (2-5), the management server is configured to include a download unit that downloads a search program provided from a providing site, and the program By executing, it is possible to reliably delete unnecessary information collection software and file sharing software, and information collection software without impairing useful and useful (necessary) functions for businesses and users. Information and file sharing software can be surely prevented from leaking or leaking confidential information.

  Furthermore, the management server downloads a search program provided free of charge from the provider site via the network, and by using the program to implement search means on the user terminal or the management server, the administrator can install a special program. It is possible to search for the latest spyware or the like using a program that can always search for the latest spyware or the like without creating it.

(3) In the invention of the management server according to claim 3, the information collecting software or the file sharing software is searched by the searching means in each user terminal, and the web browsing history or file transfer in the user terminal by the history recording means. The history is recorded, and the search server and the web browsing history and the file transfer history recorded from the previous search result notification to the current search result notification are notified to the management server by the notification means. From the search results notified from each user terminal, the information collection software or file sharing software possession status at each user terminal is extracted, registered in the database, and made into a ledger. The difference between the notified search result and the currently notified search result, and the current notification By butted against the web browsing or file transfer history of the newly added information collection software or file sharing software source site to the user terminal is identified. Then, the information collection software in the user terminal is managed by the management means based on the information collection software stored in the ledger or the possession status of the file sharing software and the identified source site.

  As a result, information collection software or file sharing software is not simply deleted by managing the information collection software or the file sharing software, but the information collection software and file sharing software to be managed are useful and useful for businesses and users (necessary) It is possible to provide a system environment in which it is possible to make a judgment based on the possession status or the source site.

  (4) In the invention of the management server according to claim 4, the web browsing history or the file transfer history in the user terminal is recorded by the history recording means in each user terminal, and the web browsing history or the file transfer history is recorded by the notifying means. While being notified to the management server, the management server extracts information related to the site accessed by the user terminal from the web browsing history or file transfer history notified from the user terminal, and uses it based on the extracted information. Access to the site accessed by the user terminal is executed, and after the access, the information collection software or file sharing software is searched by the search means in the management server. When information collection software or file sharing software is searched, it is natural that the information collection software is installed on the user terminal that accesses the same site and browses. The information collection software on the user terminal is managed by the management means based on the information about the information collection software or file sharing software and the source site of the information collection software or file sharing software to be accessed. Managed.

  As a result, the information collection software or the file sharing software is not managed and simply deleted, but the management server actually performs confirmation work according to the history of the user terminal, and the information collection software to be managed A system environment is provided in which it is possible to determine whether or not file sharing software is useful and necessary (necessary) for business and users.

  When it is recognized that it is the source site for unnecessary information collection software or file sharing software, the user terminal cannot access the source site. Software or file sharing software can be reliably prevented from being taken into the user terminal.

  (5) In the invention of the management program according to claim 5, information collecting software or file sharing software is searched by the searching means in each user terminal, and the web browsing history or file transfer in the user terminal is searched by the history recording means. The history is recorded, and the search server and the web browsing history and the file transfer history recorded from the previous search result notification to the current search result notification are notified to the management server by the notification means. From the search results notified from each user terminal, the information collection software or file sharing software possession status at each user terminal is extracted, registered in the database, and made into a ledger. The difference between the notified search result and the search result notified this time, and this time By butted against the web browsing history or file transfer history that is known, the newly added information collection software or file sharing software of the source site to the user terminal is identified. Then, the information collection software in the user terminal is managed by the management means based on the information collection software stored in the ledger or the possession status of the file sharing software and the identified source site.

  As a result, information collection software or file sharing software is not simply deleted by managing the information collection software or the file sharing software, but the information collection software and file sharing software to be managed are useful and useful for businesses and users (necessary) It is possible to provide a system environment in which it is possible to make a judgment based on the possession status or the source site.

  (6) In the management program invention according to claim 6, the web browsing history or the file transfer history in the user terminal is recorded by the history recording means in each user terminal, and the web browsing history or the file transfer history is recorded by the notifying means. While being notified to the management server, the management server extracts information related to the site accessed by the user terminal from the web browsing history or file transfer history notified from the user terminal, and uses it based on the extracted information. Access to the site accessed by the user terminal is executed, and after the access, the information collection software or file sharing software is searched by the search means in the management server. When information collection software or file sharing software is searched, it is natural that the information collection software is installed on the user terminal that accesses the same site and browses. The information collection software on the user terminal is managed by the management means based on the information about the information collection software or file sharing software and the source site of the information collection software or file sharing software to be accessed. Managed.

  As a result, the information collection software or the file sharing software is not managed and simply deleted, but the management server actually performs confirmation work according to the history of the user terminal, and the information collection software to be managed A system environment is provided in which it is possible to determine whether or not file sharing software is useful and necessary (necessary) for business and users.

  When it is recognized that it is the source site for unnecessary information collection software or file sharing software, the user terminal cannot access the source site. Software or file sharing software can be reliably prevented from being taken into the user terminal.

Hereinafter, embodiments of the present invention relating to a software management system, a management server, and a management program will be described with reference to the drawings.
[1] Description of the first embodiment:
FIG. 1 is a block diagram showing the overall configuration of a software management system as a first embodiment of the present invention. As shown in FIG. 1, the software management system 1A of the first embodiment is an in-house company (such as a company) Or a management server 20A and a proxy server 30 in addition to a plurality of user terminals 10A, and these terminals 10A and servers 20A, 30 communicate with each other via an in-house LAN 40. Connected as possible.

  Each user terminal 10A is constituted by a terminal device such as a personal computer (PC) used by each employee (user) in the company or the like, and information collection software such as spyware and file sharing software such as Winnie. A detailed functional configuration of the user terminal 10A when a search program (described later) for realizing a function (described later) is installed from the management server 20A as described later will be described later with reference to FIG. To do.

In the present embodiment, when the user terminal 10A is connected to the in-house LAN 40, the search program may not be installed in each user terminal 10A, or the search program is installed from the beginning. May be. Each user terminal 10A
Through the in-house LAN 40 and the proxy server 30, access to the outside Internet (browsing various sites, downloading various software, collecting various information, etc.) can be performed.

  Here, the information collection software searched by the search program (search means 11 described later; see FIG. 2) collects information in the user terminal 10A (storage unit 10b; see FIG. 2) to identify the specific device ( For example, the user terminal 10A (CPU 10a; see FIG. 2) is operated so as to be transmitted to a creator who created the software or a terminal device of an information collector such as a specific company, organization, or individual. is there.

  As such information collection software, first, as described above, each user terminal 10A is owned by each user terminal 10A in order to monitor assets and operation statuses of all user terminals 10A connected to the in-house LAN 40 in the company. Software that collects information related to assets (hardware and software) and operation logs / Internet browsing history of each user terminal 10A and notifies the administrator terminal (or management server) It is done.

  This software is pre-installed in the user terminal 10A or installed from a management server or the like when connected to the in-house LAN 40, and usually during the normal operation of the user terminal 10A, regardless of the user's operation. It is executed in the background in response to an instruction from the management server or the like, and automatically causes the user terminal 10A to execute information collection and collection result transmission without making the user aware of it. Such information collection software is necessary (useful / beneficial) for business for companies.

  In order to perform the same information collection / transmission function, the user browses a specific site on the Internet or is directly sent to the user terminal by e-mail, and enters the user terminal 10A without the user's knowledge. There is also a so-called spyware that collects information in a user terminal and sends the information to a specific company, organization, individual, etc. (information collector) set in advance.

  Furthermore, it is a program installed after obtaining the user's approval as a utility such as a tool bar that operates similar to this spyware, and collects various information in the user terminal 10A in the background. Some of them send to specific information collectors. In this case, although the user's approval is obtained for the time being, the user is often not aware that the information is collected in the background.

  This spyware may be useful or necessary (necessary) for the user's business depending on how it is used, but in addition to the user's personal information, the identification number / login used when logging in to a specific site There is also malicious information that leaks passwords and other important information (such as confidential information including personal information) in the user terminal 10A (storage unit 10b; see FIG. 2) to the outside without the user's knowledge. .

  Here, the file sharing software searched by the search program (search means 11 described later; see FIG. 2) is the user terminal 10A (storage unit 10b; see FIG. 2) for the purpose of file exchange or file sharing. ) Is collected and sent to other devices where the file sharing software is also installed, or receives files from other devices where the file sharing software is also installed. The user terminal 10A (CPU 10a; see FIG. 2) is operated. And with this kind of file sharing software, files may be transferred in a state of infringement of copyright, or sharing or exchange is not intended because the file sharing software is infected with a virus. There is a risk that files will be leaked outside.

  In addition, as this file sharing software, what is intentionally installed by the user is common, but what is installed on the user terminal 10A without the user's knowledge is similar to the above-described spyware. Including.

  That is, in the present embodiment, processing described later is executed for information collection software and file sharing software that are installed intentionally and unintentionally.

  In the present embodiment, as will be described later, by executing the search program on the user terminal 10A (CPU 10a; see FIG. 2), software held in the user terminal 10A (storage unit 10b; see FIG. 2). Among them, information collection software and file sharing software as described above are all searched regardless of necessity or not, and are notified to the management server 20A. The search program belongs to the information collection software, and is naturally handled as a business necessity (useful / beneficial).

  The management server 20A is communicably connected to each user terminal 10A via the in-house LAN 40, and manages each user terminal 10A. In particular, as described later with reference to FIG. It has a functional configuration for managing the information collection software or the file sharing software searched by the search program. The management server 20A can access the Internet outside the company (browsing various sites, downloading various software, collecting various information, etc.) via the in-house LAN 40 and the proxy server 30.

  The proxy server 30 is provided at the boundary between the in-house LAN 40 and the Internet, and connects to the Internet in place of the user terminal 10A and the management server 20A that cannot be directly connected to the Internet. It is used to centrally manage incoming and outgoing access, permit only specific types of connections from the inside, and block unauthorized access from outside.

  FIG. 2 is a block diagram showing functional configurations of the user terminal 10A and the management server 20A in the software management system 1A of the first embodiment. In FIG. 2, the proxy server 30 and the in-house LAN 40 are not shown.

The user terminal 10A is a CPU (Central Processing Unit) 10a that executes various processes.
And a storage unit (for example, RAM, ROM, hard disk, etc.) 10b for storing / saving various software including information collecting software and file sharing software executed and used by the CPU 10a and various data. It is configured.

  The CPU 10a in the user terminal 10A according to the first embodiment functions as the search unit 11 and the notification unit 12, and these functions execute a search program installed from the management server 20A as described later. It is realized by doing.

  The search means 11 collects information in the storage unit 10b of the user terminal 10A and uses the information collection software or file sharing software as described above for the software held in the user terminal 10A (storage unit 10b). Search from inside.

The notification means 12 is a search result of the information collection software or file sharing software by the search means 11 (in addition to information on the presence / absence of the corresponding software, if any, the software name, version information, installation information on the software) (Including various information such as download date / time) via the in-house LAN 40 to the management server 20A.

  Also, the management server 20A is created based on the CPU 20a that executes various processes, various software including information collection software that is executed and used by the CPU 20a, and the search results notified from each user terminal 10. And a storage unit (for example, RAM, ROM, hard disk, etc.) 20b for storing and saving various data including a database 22a (described later).

  The CPU 20a functions as an extraction unit 21, a registration unit 22, a management unit 23A, a determination unit 24, an information collection unit 25, a reference / list setting unit 26, a download unit 27, and an installation unit 28. The CPU 20a is realized by executing a management program.

  Here, the management program may include a program (search program) to be installed in the user terminal 10A so that the user terminal 10A functions as the search unit 11 and the notification unit 12 described above. In the embodiment, the search program downloaded from the outside is used.

  When the retrieval means 21 is notified of the search result by the retrieval means 11 from each user terminal 10A, the extraction means 21 indicates the information collection software or the file sharing software possession status in each user terminal 10A based on the search result. In addition to the presence / absence of the corresponding software in the user terminal 10A and the number of possessed software, various information such as the software name, version information, installation / download date / time, etc. for each corresponding software is extracted.

  The registration unit 22 associates the possessed status extracted by the extraction unit 21 with each user terminal 10A, registers it in the database 22a of the storage unit 20b, and creates a ledger. In the present embodiment, the database 22a is stored in the storage unit 20b in the management server 20A. However, in the external server connected to the management server 20A or another server connected via the in-house LAN 40, The storage unit may include a database 22a.

  Based on the possession status of the information collection software or the file sharing software registered in the database 22a, the management means 23A manages the information collection software in each user terminal 10A and each user terminal 10A as described later. It is something to manage.

  The judging means 24 refers to the information collection software registered in the database 22a or the status of possession of the file sharing software and, as will be described later, according to preset judgment criteria or the list 24a / list 24b. It is determined whether or not the information collection software held in 10A should be held in the user terminal 10A connected to the in-house LAN 40.

  The information collecting means 25 collects information related to information collecting software or file sharing software through the Internet (network) connected to the management server 20A via the proxy server 30.

  The reference / list setting unit 26 sets the above-described determination criteria and the list 24a / list 24b based on information on the information collection software or file sharing software collected by the information collection unit 25.

  The download means 27 downloads the latest search program provided free of charge from a predetermined providing site through the Internet (network) connected to the management server 20A via the proxy server 30.

  The installation unit 28 installs a search program that causes each user terminal 10A to function as the search unit 11 and the notification unit 12 in each user terminal 10A. In the present embodiment, at least the user unit 10A as the search unit 11 is installed. The program downloaded by the download means 27 is used as a program for causing the function to function.

  The program that causes the user terminal 10 </ b> A to function as the notification unit 12 may be used as it is when included in the program downloaded by the download unit 27, or may be managed when it is not included. On the server 20A side, a program for causing the user terminal 10A to function as the notification means 12 is added. Each user terminal 10A functions as the above-described search unit 11 and notification unit 12 by executing the search program installed by the installation unit 28 as described above.

  Here, the judgment criteria and the list 24a / list 24b are set for each company by an administrator or the like or the criteria / list setting means 26. In the judgment means 24, the information collecting software or file in each user terminal 10A is set. It is a standard for judging whether shared software is necessary (useful or useful) for business. That is, as the above judgment criteria and the list 24a / list 24b, information according to the company's policy or business may be set as needed by an administrator in the company, but in this embodiment, information including spyware and the like. Since it is possible to always obtain the latest information on the collected software or file sharing software from related sites on the Internet free of charge, based on the information obtained by the information collecting means 25, The list 24a / list 24b is determined and set by an administrator or the like, or automatically set by the reference / list setting means 26.

  When it is determined by the determination means 24 that the information collection software or the file sharing software should not be held in the user terminal 10A in accordance with the determination criteria described above [that is, those necessary for business (useful / beneficial) If it is determined that the management means 23A is not, the management means 23A sends a deletion instruction to the user terminal 10A to delete the information collection software or file sharing software from the user terminal 10A, and the information collection is performed from the user terminal 10A. The software or the file sharing software is forcibly deleted.

  When the list (white list) 24a in which information related to information collection software or file sharing software necessary for business is registered is set as the determination criterion, the determination unit 24 uses the information collection software registered in the database 22a. Alternatively, referring to the possession status of the file sharing software, the information collection software retained in the user terminal 10A is collated with the information registered in the white list 24a, and the information retained in the user terminal 10A. It is determined whether information corresponding to the collection software or the file sharing software is registered in the white list 24a.

If the determination means 24 determines that the information corresponding to the information collection software or the file sharing software is not registered in the white list 24a [that is, the information collection software or the file sharing software If it is determined that the information collection software or the file sharing software is to be deleted from the user terminal 10A, the management unit 23A sends a deletion instruction to the user terminal 10A. The information collection software or the file sharing software is forcibly deleted from the user terminal 10A.

  When the list (black list) 24b in which information related to information collection software or file sharing software unnecessary for business is registered is set as the determination criterion, the determination unit 24 is registered in the database 22a. With reference to the possession status of the information collection software or the file sharing software, the information collection software held in the user terminal 10A is collated with the information registered in the black list 24b, and the user terminal 10A It is determined whether or not information corresponding to the information collection software or file sharing software held in is registered in the black list 24b.

  When it is determined by the determination means 24 that the information corresponding to the information collection software or the file sharing software is registered in the black list 24b [that is, the information collection software or the file sharing software If it is determined that the information collection software or the file sharing software is to be deleted from the user terminal 10A, the management unit 23A sends a deletion instruction to the user terminal 10A. The information collection software or the file sharing software is forcibly deleted from the user terminal 10A.

Next, the operation of the management server 20A in the first embodiment will be described with reference to the flowchart shown in FIG. 3 (steps S101 to S114).
In the management server 20A, first, the latest search program is downloaded from the predetermined providing site free of charge via the Internet by the download unit 27 (step S101), and the program downloaded by the download unit 27 is directly or managed. The server 20A performs predetermined processing (addition of a program that realizes a function as the notification unit 12, etc.), and then installs each user terminal 10A by the installation unit 28 (step S102). This download / installation operation is initially executed when the software management system 1A is installed and started, when the user terminal 10A is connected to the in-house LAN 40, and when it is regularly updated.

  In parallel with the download / installation operations (steps S101 and S102) described above, the latest information about information collection software or file sharing software including spyware is transmitted by the information collection means 25 via the Internet. Is downloaded and collected from the related site free of charge (step S103), and based on the information related to the information collection software or file sharing software collected by the information collection means 25, the reference / list setting means 26 determines the determination means 24. The judgment criteria and the list 24a / list 24b used in the above are set (step S104).

  At this time, as described above, the judgment criteria and the list 24a / list 24b may be set by the administrator's judgment based on the information obtained by the information collecting means 25, or obtained by the information collecting means 25. It may be automatically set by the reference / list setting means 26 based on the information.

  When setting the white list 24a, the administrator or the reference / list setting unit 26 is used in the company while referring to the information about the information collection software or file sharing software collected by the information collection unit 25. Information on information collection software or file sharing software that is permitted to be used is set and added to the white list 24a.

Further, when setting the black list 24b, the administrator or the reference / list setting means 26 is set up in the company while referring to the information related to the information collecting software or file sharing software collected by the information collecting means 25. Information related to information collection software or file sharing software that is not permitted to be used in is set / added to the black list 24b.

  Thereafter, in each user terminal 10A, the installed search program is executed automatically (periodically) by the function of the search means 11 or in response to a search instruction from the management server 20A. Information in the storage unit 10b of the user terminal 10A is collected, information collection software and file sharing software are searched from software held in the storage unit 10b of the user terminal 10A, and the search result is The notification means 12 notifies the management server 20A through the in-house LAN 40.

  As described above, the search program may search for the file sharing software according to a separately created standard or list. However, as shown in FIG. 4, the file transfer history and the activation and operation of the program at that time are performed. It is also possible for the search program to detect the presence of the file sharing software by comparing with the history of the file.

  That is, the search program monitors the state of the port of the user terminal 10A (step S1021 in FIG. 4), and if a file transfer occurs (Y route in step S1022 in FIG. 4), the file transfer Is recorded as history (transfer file name, file size, time, port number used, partner IP address, etc.) (step S1023 in FIG. 4).

  In parallel with this, the activation and operation of programs related to file transfer, for example, mail programs, browsers, FTP programs, etc. are monitored (step S1024 in FIG. 4), and these programs related to file transfer are monitored. Is recorded as a history (step S1025 in FIG. 4).

  Then, the correspondence between the file transfer history and the operation history of the file transfer related program is compared, and if it is a file transfer corresponding to the monitored file transfer related program (N route in step S1027 in FIG. 4), the normal Since the file transfer is recognized, the search program process is terminated. On the other hand, when the file transfer and the file transfer related program are compared, and it is determined that the file transfer not depending on the monitored file transfer related program occurs (Y route in step S1027 in FIG. 4), It is determined that unconfirmed file sharing software exists (step S1028 in FIG. 4).

  Even if the file transfer does not depend on the file transfer-related program that is being monitored, the automatic update of the application program that has been confirmed to be installed, such as the connection site is the seller of the application program, If the transferred file is confirmed to be an application program difference or an update program, it is treated as no problem. However, if the connection site or transfer file is not related to the application program, it is desirable to handle it in the same way as unconfirmed file sharing software.

  When the management server 20A receives the notification of the search result from the user terminal 10A (YES route in step S105), the extraction unit 21 determines that the search result notified from each user terminal 10A is the user terminal 10A. As for the status of possession of information collection software or file sharing software, the presence / absence of the corresponding software in each user terminal 10A, the number of possessed software, software name, version information, installation / download date and time, etc. for each corresponding software Various types of information are extracted (step S106).

  When the holding status extracted by the extraction means 21 is referred to and there is information collection software or file sharing software to be newly registered (YES route in step S107), the registration means 22 causes the new information collection software to be registered. Alternatively, information (holding status) regarding the file sharing software is associated with the user terminal 10A, registered in the database 22a of the storage unit 20b, and made into a ledger (step S108).

  After the new information collection software or file sharing software is registered, the judging means 24 selects one of the newly registered software in the database 22a (step S109), and possesses the selected software. The situation is referred to, and it is determined whether or not the selected information collection software should be held in the user terminal 10A connected to the in-house LAN 40 in accordance with the above-described determination criteria or the list 24a / list 24b. (Step S110).

  At this time, when the white list 24a is used, when the determination unit 24 determines that the information corresponding to the information collection software or the file sharing software is not registered in the white list 24a [that is, the information When it is determined that the collection software or the file sharing software is not necessary (useful or useful) for business; NO route in step S111], the management unit 23A sends a deletion command to the user terminal 10A for use. The information collection software or the file sharing software is forcibly deleted from the user terminal 10A (step S112).

  Further, when the black list 24b is used, when the determination unit 24 determines that information corresponding to the information collection software or the file sharing software is registered in the black list 24b [that is, the information collection When it is determined that the software or the file sharing software is not necessary (useful / beneficial) for business; NO route of step S111], the management means 23A determines that the information collection software or the file sharing software is A deletion command is sent to the user terminal 10A to delete it from the user terminal 10A, and the information collection software or file sharing software is forcibly deleted from the user terminal 10A (step S112).

  As a result of the determination by the determination means 24, if the selected information collection software or file sharing software is registered in the white list 24a or not registered in the black list 24b (YES route in step S111), or a deletion command is issued. After the transmission, it is determined whether or not there is an unselected new information collection software or file sharing software (step S113). If there is an unselected one (YES route in step S113), step Returning to S109, one non-selected information collection software or file sharing software is selected, and the same processing (steps S110 to S113) as described above is executed.

  On the other hand, when there is no unselected item (NO route in step S113), when it is determined in step S105 that notification of the search result is not received from the user terminal 10A (NO route), or in step S107 When it is determined that there is no information collection software or file sharing software to be registered (NO route), when the information collection software or file sharing software information or search program should be updated (during regular update) It is determined whether or not (step S114).

If it is determined that it is time for a regular update (YES route in step S114), the process returns to steps S101 and S103, and the same processing as described above is performed. (NO route of step S114), it returns to step S105 and the process similar to the above-mentioned is performed.

  Thus, according to the software management system 1A as the first embodiment of the present invention, the information collecting software or the file sharing software is searched by the search means 11 in each user terminal 10A, and the search result is notified. While the management server 20A is notified by the means 12, the management server 20A determines from the search result notified from each user terminal 10A that the information collecting software or the file sharing software is held in each user terminal 10A. Are extracted, registered in the database 22a, and made into a ledger. Then, the information collection software in the user terminal 10A is managed by the management means 23A on the basis of the possession status of the information collection software or the file sharing software in the form of a ledger.

  As a result, information collection software or file sharing software is not simply deleted by managing the information collection software or the file sharing software, but the information collection software and file sharing software to be managed are useful and useful for businesses and users (necessary) A system environment capable of determining whether or not is provided is provided.

  More specifically, information collection software or file sharing software held in the user terminal 10A should be held in the user terminal 10A in accordance with a preset criterion, the white list 24a or the black list 24b. It is determined whether or not the information collection software should be held, and a deletion instruction is sent to the user terminal 10A and forcibly deleted from the user terminal 10A. In this way, it becomes possible to manage and manage information collection software and file sharing software according to certain standards, and only unnecessary information collection software and unnecessary file sharing software can be deleted. In addition, it is possible to reliably prevent leakage or leakage of confidential information by unnecessary information collection software or file sharing software without impairing functions that are useful and useful (necessary) for business.

  The management server 20A collects information related to information collection software such as spyware or file sharing software via the Internet, and makes judgment criteria and a list 24a / based on the collected information related to information collection software or file sharing software. By setting the list 24b, the administrator can always determine the criteria based on the latest information (information provided from a specific site through the Internet) on information collection software or file sharing software such as spyware, and the list 24a / list 24b. Can be set, and the necessity / unnecessity of information collection software and file sharing software can be determined based on the latest information.

  Further, the management server 20A installs a search program that causes the user terminal 10A to function as the search unit 11 and the notification unit 12 in the user terminal 10A, and the user terminal 10A executes the search program so that the search unit 11 and By configuring the user terminal 10A to have the function as the notification unit 12, the user terminal 10A does not need to install a search program at his / her own will, and under the management of the management server 20A, The function as the search means 11 and the notification means 11 can be reliably realized by the user terminal 10A.

Further, the management server 20A downloads a search program provided free of charge from the providing site through the Internet, and uses the program to implement the search means 11 on the user terminal 10A, so that the administrator can execute a special program. It is possible to search for the latest spyware or the like using a program that can always search for the latest spyware or the like without creating it. Similarly, the latest file sharing software can be searched. [2] Description of the second embodiment:
FIG. 5 is a block diagram showing the overall configuration of a software management system 1B as a second embodiment of the present invention. As shown in FIG. 5, the software management system 1B of the second embodiment is also the first embodiment. In the same manner as in the above, it is provided in a company or the like (or on campus), and includes a management server 20B and a proxy server 30 in addition to a plurality of user terminals 10B. Are connected so as to be able to communicate with each other. In FIG. 5, the same reference numerals as those already described indicate the same or substantially the same parts, and detailed description thereof will be omitted.

  Each user terminal 10B is configured by a terminal device such as a personal computer (PC) used by each employee (user) in the company or the like in the same manner as the user terminal 10A of the first embodiment. When a search program (a program similar to the first embodiment) for realizing a function (search means 11) for searching for information collection software and file sharing software such as Winnie is installed from the management server 20B, A detailed functional configuration of the user terminal 10B will be described later with reference to FIG.

  In the present embodiment, when the user terminal 10B is connected to the in-house LAN 40, the search program may not be installed in each user terminal 10B, or the search program is installed from the beginning. May be. Each user terminal 10B can also access the outside Internet via the in-house LAN 40 and the proxy server 30 (browsing various sites, downloading various software, collecting various information, etc.).

  The management server 20B is communicably connected to each user terminal 10B via the in-house LAN 40, and manages each user terminal 10B. In particular, as described later with reference to FIG. It has a functional configuration for managing the information collection software or the file sharing software searched by the search program. The management server 20B can also access the external Internet (browsing various sites, downloading various software, collecting various information, etc.) via the in-house LAN 40 and the proxy server 30.

  FIG. 6 is a block diagram showing functional configurations of the user terminal 10B and the management server 20B in the software management system 1B of the second embodiment. In FIG. 6, the proxy server 30 and the in-house LAN 40 are not shown. In FIG. 6, the same reference numerals as those already described indicate the same or substantially the same parts, and detailed description thereof will be omitted.

Similarly to the user terminal 10A of the first embodiment, the user terminal 10B includes a CPU 10a and a storage unit 10b.
The CPU 10a in the user terminal 10B of the second embodiment functions as the search means 11 similar to that of the first embodiment, and also functions as the history recording means 13 and the notification means 14, and these functions are The CPU 10a is realized by executing a search program installed from the management server 20A and a program for realizing the history recording unit 13 and the notification unit 14 as will be described later. A program for realizing the history recording unit 13 and the notification unit 14 may also be installed from the management server 20B together with the search program.

  As in the first embodiment, the search unit 11 collects information in the storage unit 10b of the user terminal 10B, and stores the information collection software and file sharing software as described above to the user terminal 10B (storage unit 10b). Searching for software held in

  The history recording means 13 records a web browsing history (site browsing history via the Internet) or a file transfer history (file transmission history via the network, file reception history via the network) in the user terminal 10B.

  The notification means 14 is a search result of information collection software or file sharing software by the search means 11 similar to the first embodiment (in addition to information on the presence or absence of the corresponding software, if there is software for the software, Web browsing history or file transfer history recorded by the history recording means 13 from the previous search result notification to the current search result notification. The management server 20B is notified through the in-house LAN 40.

In addition, the management server 20B is configured to include a CPU 20a and a storage unit 20b, similarly to the management server 20A of the first embodiment.
The CPU 20a functions as the extraction unit 21, the registration unit 22, the determination unit 24, the information collection unit 25, the reference / list setting unit 26, the download unit 27, and the installation unit 28, as well as the management unit, as in the first embodiment. 23B and the function as the source site specifying means 29, and these functions are realized by the CPU 20a executing the management program. Here, the management program includes a program to be installed in the user terminal 10B in order to cause the user terminal 10B to function as the search means 11, the history recording means 13, and the notification means 14 (for the search program and the means 13, 14). Program) may be included, but in this embodiment, the search program is downloaded from the outside.

  The source site specifying means 29 determines the difference between the search result notified last time from the user terminal 10B (stored in the database 22a) and the search result notified this time, and the web browsing history or file transfer notified this time. The source site of information collection software or file sharing software newly added to the user terminal 10B is specified by combining the history.

  That is, in the source site specifying means 29 of the present embodiment, it is assumed that the search results and web history history are notified from each user terminal 10B periodically (every fixed time interval), and during the fixed time interval, The installation / download timing of the newly added information collection software is combined with the browsing time of the website browsed on the user terminal 10B during the same time interval.

Similarly, in the source site specifying means 29 of the present embodiment, it is assumed that the search results and file transfer history are notified from each user terminal 10B periodically (every fixed time interval), and during that fixed time interval. The installation / download timing of the newly added file sharing software is matched with the time of file transfer executed on the user terminal 10B during the same time interval.
As a result, newly added information collection software and file sharing software broke into the user terminal 10B without the user's knowledge because they browsed a specific site on the Internet or received a file via the Internet. It is possible to identify the website from which the information collection software (spyware) or file sharing software was installed when browsing the website. become. When performing identification using such a method, as the time interval is shortened, the accuracy of identifying the source site can be improved and the risk (threat) from malicious information collection software (spyware) can be reduced. .

  As will be described later, the management means 23B, based on the holding status of the information collection software or the file sharing software registered in the database 22a, and the source site specified by the source site specifying means 29, each user terminal 10B and information collecting software or file sharing software in each user terminal 10B.

  When it is determined that the information collection software or the file sharing software should not be held in the user terminal 10A by the determination unit 24 similar to the first embodiment [that is, necessary for business (useful / beneficial) When it is determined that the information collection software or file sharing software is to be deleted from the user terminal 10B, the management unit 23B sends a deletion command to the user terminal 10B to delete the information collection software or file sharing software from the user terminal 10B. The user terminal 10B corresponding to the source site specified by the source site specifying means 29 corresponding to the information collection software or the file sharing software is forcibly deleted from the information collection software or the file sharing software. (All user terminals 10B in the system 1B) And performs the access restriction to forcibly prohibit Seth.

  As a determination criterion, a list (white list) 24a in which information related to information collection software or file sharing software necessary for business is registered is set, and information corresponding to the information collection software or file sharing software is determined by the determination means 24. When it is determined that the information is not registered in the white list 24a (that is, when it is determined that the information collection software or the file sharing software is not necessary (useful or useful) for business), the management unit 23B A deletion instruction is sent to the user terminal 10B to delete the information collection software or file sharing software from the user terminal 10B, and the information collection software or file sharing software is forcibly deleted from the user terminal 10B. And the information The access of the user terminal 10B (all user terminals 10B in the system 1B) to the source site specified by the source site specifying means 29 corresponding to the collection software or the file sharing software is forcibly prohibited. Access is restricted.

  Further, as a judgment judgment criterion, a list (black list) 24b in which information related to information collection software or file sharing software unnecessary for business is registered is set, and the judgment means 24 sets the information collection software or file sharing software. When it is determined that the corresponding information is registered in the black list 24b (that is, when it is determined that the information collection software or the file sharing software is not necessary (useful or useful) for business), management The means 23B sends a deletion command to the user terminal 10B to delete the information collection software or file sharing software from the user terminal 10B, and the information collection software or the file sharing software is sent from the user terminal 10B. Along with forcibly removing Force access of the user terminal 10B (all user terminals 10B in the system 1B) to the source site specified by the source site specifying means 29 corresponding to the information collection software or the file sharing software Access restriction is prohibited.

Next, the operation of the management server 20B in the second embodiment will be described according to the flowchart (steps S201 to S216) shown in FIG.
Also in the management server 20B, as in the first embodiment, first, the download unit 27 downloads the latest search program from the predetermined providing site free of charge via the Internet (step S201), and the program downloaded by the download unit 27 However, as it is, or after performing predetermined processing (addition of a program for realizing the function as the history recording means 13 and the notification means 14) on the management server 20B side, the installation means 28 applies each user terminal 10B to each user terminal 10B. Installed (step S202). This download / installation operation is initially executed when the software management system 1B is installed / started up, when the user terminal 10B is connected to the in-house LAN 40, or when it is regularly updated.

  In parallel with the download / installation operations (steps S201 and S202) described above, the information collection means 25 provides the latest information on information collection software including spyware or file sharing software via the Internet. Is downloaded and collected from a related site free of charge (step S203), and based on the information on the information collection software or file sharing software collected by the information collection means 25, the first implementation is performed by the reference / list setting means 26. Similar to the embodiment, the determination criteria used in the determination means 24 and the list 24a / list 24b are set (step S204).

  Thereafter, in each user terminal 10B, the installed search program is executed automatically (periodically) by the function of the search means 11 or in response to a search instruction from the management server 20B. The information in the storage unit 10b of the user terminal 10B is collected, the information collection software is searched from the software held in the storage unit 10b of the user terminal 10B, and the search result is in-house by the notification means 14 The management server 20B is notified through the LAN 40.

  In the present embodiment, in each user terminal 10B, the web recording history (site browsing history via the Internet) and the file transfer history in the user terminal 10B are also recorded by the history recording unit 13, and the notification unit 14 Along with the search result by the search means 11, the web browsing history and file transfer history recorded by the history recording means 13 from the previous search result notification to the current search result notification are notified to the management server 20B.

  When the management server 20B receives a search result, a web browsing history, and a file transfer history notification from the user terminal 10B (YES route in step S205), the search notified from each user terminal 10B by the extraction means 21 From the results, as the information collection software or file sharing software possession status in the user terminal 10B, in addition to the presence / absence of the corresponding software in each user terminal 10B and the number of possession, the software name for each corresponding software, Various information such as version information, installation / download date and time is extracted (step S206).

  When the holding status extracted by the extraction means 21 is referred to and there is information collection software to be newly registered (YES route in step S207), the registration means 22 causes the new information collection software or file sharing software to be registered. Information (retention status) is associated with the user terminal 10B, registered in the database 22a of the storage unit 20b, and made into a ledger (step S208).

  After the new information collection software or file sharing software is registered, the judging means 24 selects one of the newly registered software in the database 22a (step S209), and possesses the selected software. Whether the user terminal 10B connected to the in-house LAN 40 should have the selected information collection software or file sharing software according to the above-mentioned criteria or the list 24a / list 24b with reference to the situation It is determined whether or not (step S210). Since the determination procedure in step S210 is the same as the determination procedure performed in step S110 of the first embodiment, description thereof is omitted.

  When it is determined that the information collection software or file sharing software selected in step S209 should not be held in the user terminal 10B connected to the in-house LAN 40 [that is, the information collection software or file sharing When it is determined that the software is not necessary (useful / beneficial) for business; NO route in step S211], the search result notified from the user terminal 10B by the source site specifying unit 29 (saved in the database 22a) And the search result notified this time and the web browsing history or file transfer history notified this time are combined to identify the source site of the information collection software or file sharing software. (Step S212).

  Thereafter, the management unit 23B uses the user terminal 10B (all user terminals in the system 1B) for the source site specified by the source site specifying unit 29 corresponding to the information collection software or the file sharing software. 10B) is forcibly prohibited from accessing (step S213), and a deletion command is sent to the user terminal 10B to force the information collection software or file sharing software from the user terminal 10B. It is deleted (step S214).

  If the source site cannot be specified by the source site specifying means 29, the information collecting software or file sharing software is not installed by browsing the specified site or transferring the file on the Internet. Since it is considered, the process of step S214 is performed without skipping the process of step S213.

  As a result of determination by the determination means 24, when it is determined that the selected information collection software or file sharing software is not necessary (useful / beneficial) for business (YES route in step S211), or a deletion command is transmitted After that, it is determined whether or not there is an unselected new information collection software (step S215). If there is an unselected one (YES route of step S215), the process returns to step S209 and is not selected. Is selected, and the same processing as described above (steps S210 to S215) is executed.

  On the other hand, when there is no unselected item (NO route of step S215), or when it is determined in step S205 that the search result, web browsing history, and file transfer history are not received from the user terminal 10B (NO route). ), Or when it is determined in step S207 that there is no information collection software to be newly registered (NO route), information about the information collection software or the file sharing software or the search program should be updated (periodic update) It is determined whether or not (step S216).

  If it is determined that it is a periodical update (YES route in step S216), the process returns to steps S201 and S203, and the same processing as described above is performed. On the other hand, if it is determined that it is not a periodical update, (NO route of step S216), it returns to step S205 and the same process as the above-mentioned is performed.

As described above, according to the software management system 1B as the second embodiment of the present invention, the information collecting software or the file sharing software is searched by the search means 11 in each user terminal 10B and the history recording means 13 is searched. The web browsing history or the file transfer history in the user terminal 10B is recorded, and the search result and the recorded web browsing history and the file transfer history from the previous search result notification to the current search result notification are recorded by the notification means 14. While being notified to the management server 20B, the management server 20B extracts from the search result notified from each user terminal 10B the possession status of the information collection software or the file sharing software in each user terminal 10B. Registered in the database 22a and made into a ledger Both newly added information collection software or file sharing software source site to the user terminal 10B is identified. Then, the information collection software in the user terminal 10B is managed by the management means 23B on the basis of the information collection software in the ledger or the possession status of the file sharing software and the specified source site.

  As a result, as in the first embodiment, the information collection software or the file sharing software is not simply deleted by managing the information collection software or the file sharing software. A system environment capable of determining whether it is useful or useful (necessary) is provided.

  More specifically, in the second embodiment, the information collection software or file sharing software held in the user terminal 10B is used in accordance with a predetermined determination criterion, the white list 24a or the black list 24b. The information collection software that should not be held is sent to the user terminal 10B and is forcibly deleted from the user terminal. Access of the user terminal 10B to the source site is forcibly prohibited.

  In this way, it becomes possible to manage and manage information collection software and file sharing software according to certain standards, and only unnecessary information collection software and unnecessary file sharing software can be managed as in the first embodiment. It can be deleted, and confidential information is prevented from being leaked or leaked by unnecessary information collection software or file sharing software without damaging the functions that are useful and necessary (necessary) for businesses and users. be able to.

  In the second embodiment, information collection software (such as spyware) or file sharing software that should not be held by a user browsing a site from the user terminal 10B via the Internet or by transferring a file via the Internet. Is installed after intruding into the user terminal 10B, the source site is specified and access to the source site is forcibly prohibited. Therefore, once unnecessary information collection software or file sharing software is installed When the wear source site is specified, the user terminal 10B cannot access the source site, and thereafter, unnecessary information collection software and file sharing software are taken into the user terminal. It becomes possible to suppress it reliably.

[3] Description of the third embodiment:
FIG. 8 is a block diagram showing the overall configuration of a software management system 1C as a third embodiment of the present invention. As shown in FIG. 8, the software management system 1C of the third embodiment is also the first embodiment. In the same way as in the company (or on campus), the management server 20C and the proxy server 30 are provided in addition to the plurality of user terminals 10C, and these terminals 10C and the servers 20C, 30 are connected to the in-house LAN 40. Are connected so as to be able to communicate with each other. In FIG. 8, the same reference numerals as those already described indicate the same or substantially the same parts, and detailed description thereof will be omitted.

  Each user terminal 10C is configured by a terminal device such as a personal computer (PC) used by each employee (user) in the company or the like in the same manner as the user terminal 10A of the first embodiment. Each user terminal 10C can also access the Internet outside the company (browsing various sites, downloading various software, collecting various information, etc.) via the in-house LAN 40 and the proxy server 30.

  The management server 20C is communicably connected to each user terminal 10C via the in-house LAN 40, and manages each user terminal 10C. In particular, as described later with reference to FIG. It has a functional configuration for managing the user terminal 10C, information collection software, or the file sharing software. The management server 20C can also access the Internet outside the company (browsing various sites, downloading various software, collecting various information, etc.) via the in-house LAN 40 and the proxy server 30.

  FIG. 9 is a block diagram showing functional configurations of the user terminal 10C and the management server 20C in the software management system 1C of the third embodiment. In FIG. 9, the proxy server 30 and the in-house LAN 40 are not shown. In FIG. 9, the same reference numerals as those already described indicate the same or substantially the same parts, and detailed description thereof is omitted.

Similarly to the user terminal 10A of the first embodiment, the user terminal 10C includes a CPU 10a and a storage unit 10b.
The CPU 10a in the user terminal 10C of the third embodiment functions as the history recording means 13 similar to the second embodiment and also functions as the notification means 15, and these functions are performed by the CPU 10a. This is realized by executing a program for realizing the recording unit 13 and the notification unit 15. Note that the program for realizing the history recording unit 13 and the notification unit 15 may be installed by a user or may be installed from the management server 20C.

  The history recording means 13 records a web browsing history (site browsing history via the Internet) or a file transfer history (file transmission history via the network, file reception history via the network) at the user terminal 10C.

  The notification means 15 notifies the management server 20C of the web browsing history or file transfer history recorded by the history recording means 13 through the in-house LAN 40. The notification operation is performed automatically by the function of the notification means 15 or periodically at predetermined time intervals in response to an instruction from the management server 20C.

In addition, the management server 20C is configured to include a CPU 20a and a storage unit 20b, similarly to the management server 20A of the first embodiment.
The CPU 20a functions as an access site extraction unit 201, an access unit 202, a search unit 203, a management unit 204, a determination unit 205, an information collection unit 206, a reference / list setting unit 207, and a download unit 208. The function is realized by the CPU 20a executing a management program. Here, the search means 203 is the same as the search means 11 of the first and second embodiments. In this embodiment, the CPU 10a is realized by executing a search program downloaded from the outside as described later. It is a function.

  The access site extraction means 201 extracts information related to the site accessed (viewed) by each user terminal 10C from the web browsing history or file transfer history notified from each user terminal 10C.

Even when the file transfer is via another computer, the site that is the source of the transfer is searched as much as possible, and information about the site is extracted.
The access unit 202 accesses a site accessed by each user terminal 10C based on the information extracted by the access site extraction unit 201. More specifically, access (connection / browsing) to the browsing site is performed using the URL (Uniform Resource Locator) of the browsing site extracted from the web browsing history and the file transfer history by the access site extracting unit 201. If the browsing site is to install information collection software such as spyware or file sharing software on a browsing terminal or the like, information collection software such as spyware or file sharing is associated with access by the access means 202. The software enters the management server 20C and is installed.

  The search unit 203 collects information in the storage unit 20b of the management server 20C after the access to the site by the access unit 202, similar to the search unit 11 in the user terminals 10A and 10B of the first and second embodiments. Thus, the information collection software or file sharing software as described above is searched from the software held in the management server 20C (storage unit 20b).

  When the information collection software or file sharing software is searched by the search means 203, the management means 204 includes information on the information collection software or file sharing software, and information on the information collection software or file sharing software. Based on the source site [information extracted by the access site extraction means 201 (URL of the browsing site)], the information collection software or the file sharing software in each user terminal 10C and each user terminal 10C is managed. Is.

  The determination unit 205 is the same as the determination unit 24 of the first and second embodiments. When the information collection software or file sharing software is searched by the search unit 203, a predetermined determination criterion or white list is set. In accordance with the 205a / black list 205b, it is determined whether or not the retrieved information collection software or file sharing software should be held in the user terminal 10C connected to the in-house LAN 40. Note that the determination criteria and the list 205a / list 205b in the third embodiment are the same as the determination criteria and the list 24a / list 24b described in the first embodiment, and a description thereof will be omitted.

  The information collection unit 206 is the same as the information collection unit 25 of the first and second embodiments. Information collection software or file sharing is performed through the Internet (network) connected to the management server 20C through the proxy server 30. Information about software is collected.

  The reference / list setting unit 207 is the same as the reference / list setting unit 26 of the first and second embodiments, and is based on the information related to the information collection software or file sharing software collected by the information collection unit 206. Thus, the determination criteria and the list 205a / list 205b are set.

  The download unit 208 is the same as the download unit 27 of the first and second embodiments, and is provided free of charge from a predetermined providing site through the Internet (network) connected to the management server 20C via the proxy server 30. In the management server 20C, the CPU 20a executes the above-mentioned program downloaded by the download unit 208 so as to function as the search unit 203.

Then, as in the first and second embodiments, when the determination unit 205 determines that the information collection software or the file sharing software should not be held in the user terminal 10C [that is, it is necessary for business (useful When it is determined that it is not useful, the management means 204 sends a deletion command to the user terminal 10C to delete the information collection software or file sharing software from the user terminal 10C, and the user terminal The information collection software or the file sharing software is forcibly deleted from 10C, and the source site of the information collection software or the file sharing software [specified by the information (URL) extracted by the access site extraction means 201] User terminal 10C ( And performs the access restriction to forcibly prohibit all user terminals 10C) access in the stem 1C.

Next, the operation of the management server 20C in the third embodiment will be described according to the flowchart shown in FIG. 10 (steps S301 to S317).
Also in the management server 20C, as in the first and second embodiments, first, the latest search program is downloaded from the predetermined providing site free of charge via the Internet by the download unit 208 (step S301), and downloaded by the download unit 208. The program thus installed is installed in the management server 20C so that the CPU 20a of the management server 20C functions as the search means 203 (step S302). This download / installation operation is initially executed when the software management system 1C is installed / started up or periodically updated.

  In parallel with the download / installation operations (steps S301 and S302) described above, the latest information about information collection software or file sharing software including spyware, etc. via the Internet by the information collection means 206. Is downloaded and collected from the related site free of charge (step S303), and based on the information on the information collection software or the file sharing software collected by the information collection unit 206, the first / first setting unit 207 performs the first, As in the second embodiment, determination criteria and list 205a / list 205b used by the determination unit 205 are set (step S304).

  On the other hand, in each user terminal 10C, a web browsing history (site browsing history via the Internet) and a file transfer history in the user terminal 10C are recorded, and automatically (periodically) or a management server by the function of the notification means 15 In response to an instruction from 20C, the web browsing history or file transfer history recorded by the history recording unit 13 between the previous notification and the current notification is notified to the management server 20C through the in-house LAN 40 by the notification unit 15. .

  When the management server 20C receives a notification of the search result and the web browsing history or the file transfer history from the user terminal 10C (YES route in step S305), the access site extraction unit 201 notifies the user terminal 10C of each user terminal 10C. From the web browsing history or file transfer history, information (URL) related to the site accessed (viewed) by each user terminal 10C is extracted (step S306).

  When the site browsed on the user terminal 10C is extracted by the access site extraction unit 201 (YES route in step S307), one of the extracted sites is selected by the access unit 202 (step S308), and the access site extraction is performed. Based on the information (URL) extracted by the means 201, the browsing site of each user terminal 10C is accessed (step S309). As described above, when the browsing site is to install information collection software such as spyware or file sharing software on the browsing terminal or the like, information collection of spyware or the like accompanying the access by the access means 202 Software or file sharing software enters the management server 20C and is installed.

Thereafter, the information in the storage unit 20b of the management server 20C is collected by the search unit 203, and the information collection software is searched from the software held in the storage unit 20b of the management server 20C (step S310). When the information collection software or the file sharing software is searched by the search means 203 (YES route in step S311), the information collection software searched by the determination means 205 according to the above-described determination criteria or the list 205a / list 205b. It is determined whether or not the software or file sharing software is to be held in the user terminal 10C connected to the in-house LAN 40 (step S312). Since the determination procedure in step S312 is the same as the determination procedure performed in steps S110 and 210 of the first and second embodiments, the description thereof is omitted.

  When it is determined that the retrieved information collection software or file sharing software should not be held in the user terminal 10C connected to the in-house LAN 40 [that is, the information collection software or file sharing software is If it is determined that it is not necessary (useful / beneficial) for business; NO route in step S313], the management unit 204 uses the user terminal 10C (system) for the source site of the information collection software or file sharing software. The access restriction forcibly prohibiting the access of all the user terminals 10C in 1C is performed (step S314), and a deletion command is sent to the user terminal 10C to send the information collection software or File sharing software is forced to delete It is (step S315).

  As a result of determination by the determination unit 24, when it is determined that the retrieved information collection software or file sharing software is not necessary (useful / beneficial) for business (YES route in step S313), or by the search unit 203 If no information collection software or file sharing software is searched (YES route in step S311), or after sending a delete command, whether there is any unselected site extracted in step S306 If it is determined (step S316) and there is an unselected one (YES route of step S316), the process returns to step S308, selects one unselected site, and executes the same processing (steps S309 to S316) as described above. To do.

  On the other hand, when there is no unselected one (NO route of step S316), when it is determined in step S205 that notification of the web browsing history or file transfer history is not received from the user terminal 10C (NO route), If it is determined in step S307 that there is no browsing site on the user terminal 10C (NO route), it is time to update the information collection software or file sharing software and the search program (at the time of regular update). It is determined whether or not (step S317). If it is determined that it is time for regular updating (YES route of step S317), the process returns to steps S301 and S303, and the same processing as described above is performed. On the other hand, if it is determined that it is not time for periodic updating, (NO route of step S317), it returns to step S305 and the process similar to the above is performed.

  Thus, according to the software management system 1C as the third embodiment of the present invention, the web browsing history or the file transfer history in the user terminal 10C is recorded by the history recording means 13 in each user terminal 10C. The web browsing history or file transfer history is notified to the management server 20C by the notification means 15, while the management server 10C accesses the user terminal 10C from the web browsing history or file transfer history notified from the user terminal 10C. Information (URL) related to the browsed site is extracted, and access to the site accessed by the user terminal 10C is executed based on the extracted information. After the access, information is collected by the search means 203 in the management server 10C or File sharing software Software is searched.

When information collection software or file sharing software is searched, it is natural that the information collection software is installed in the user terminal 10C that accesses the same site and browses. Information on the information collection software or file sharing software and information on the user terminal by the management means 204 based on the information collection software or file sharing software source site of the access destination The collection software is managed.

  As a result, the information collection software or the file sharing software is not managed and simply deleted by the system 1C of the third embodiment, but the information collection software or file sharing software to be managed is used by the company or the use. A system environment is provided in which it can be determined whether or not it is useful and necessary (necessary) for business. More specifically, the user terminal 10C should have the information collection software or file sharing software searched by the management server 20C in accordance with a preset judgment criterion, the white list 205a or the black list 205b. Whether or not there is information collection software that should not be held and a deletion command is sent to the user terminal 10C to be forcibly deleted from the user terminal 10C and the user terminal for the source site 10C access is forcibly prohibited.

  In this way, it becomes possible to manage and manage information collection software and file sharing software according to a certain standard, and unnecessary information collection software and unnecessary file sharing software as in the first and second embodiments. Only the software can be deleted, and it is ensured that confidential information is leaked and leaked by unnecessary information collection software and file sharing software without compromising the useful and useful (necessary) functions for businesses and users. Can be prevented.

  In the software management system 1C of the third embodiment, the management server 20C accesses a site such as the Internet accessed by the user from the user terminal 10C, and the site does not require unnecessary information collection software or The management server 20C recognizes whether or not the site is for installing file sharing software. If the site is a site where unnecessary information collection software or file sharing software is installed, access to the source site is forcibly prohibited. Alternatively, when the source site of the file sharing software is recognized, the user terminal 10C cannot access the source site, and the unnecessary information collection software or file sharing software is used thereafter. It is possible to reliably prevent the user terminal 10C from taking in the user terminal 10C.

  The management server 20C collects information related to information collection software such as spyware or file sharing software via the Internet, and determines criteria or list 205a / based on the collected information related to information collection software or file sharing software. By setting the list 205b, the administrator can always determine the criteria based on the latest information (information provided from a specific site through the Internet) on information collection software or file sharing software such as spyware, and the list 205a / list 205b. Can be set, and the necessity / unnecessity of information collection software and file sharing software can be determined based on the latest information.

  Furthermore, the management server 20C downloads a search program provided free of charge from the providing site through the Internet, and uses the program to implement the search means 203 on the management server 20C, whereby the administrator creates a special program. Therefore, it is possible to search for the latest spyware and the like using a program that can always search for the latest information collection software and file sharing software.

[4] Others The present invention is not limited to the above-described embodiments, and various modifications can be made without departing from the spirit of the present invention.

  Further, the functions (all or part of the functions of each means) as the means 11 to 15, 21, 22, 23A, 23B, 24 to 29, 201 to 208 described above are computers (CPU, information processing apparatus, various terminals). Is implemented by executing a predetermined application program (management program).

  The program is, for example, a computer such as a flexible disk, CD (CD-ROM, CD-R, CD-RW, etc.), DVD (DVD-ROM, DVD-RAM, DVD-R, DVD-RW, DVD + R, DVD + RW, etc.). It is provided in a form recorded on a readable recording medium. In this case, the computer reads the management program from the recording medium, transfers it to the internal storage device or the external storage device, stores it, and uses it. Further, the program may be recorded in a storage device (recording medium) such as a magnetic disk, an optical disk, or a magneto-optical disk, and provided from the storage device to a computer via a communication line.

  Here, the computer is a concept including hardware and an OS (operating system), and means hardware operating under the control of the OS. Further, when the OS is unnecessary and the hardware is operated by the application program alone, the hardware itself corresponds to the computer. The hardware includes at least a microprocessor such as a CPU and means for reading a program recorded on a recording medium. The application program as the management program includes a program code for causing the above-described computer to realize the functions as the means 11 to 15, 21, 22, 23A, 23B, 24 to 29, and 201 to 208. Also, some of the functions may be realized by the OS instead of the application program.

  Furthermore, as a recording medium in the present embodiment, in addition to the flexible disk, CD, DVD, magnetic disk, optical disk, and magneto-optical disk described above, an IC card, ROM cartridge, magnetic tape, punch card, computer internal storage device (RAM) In addition, various computer-readable media such as an external storage device or a printed matter on which a code such as a barcode is printed can be used.

[5] Appendix [Appendix 1-1]
A user terminal,
A management server that is communicably connected to the user terminal and manages the user terminal;
The user terminal is
Information collection software for operating the user terminal to collect information in the user terminal and transmit it to a specific device, or the user terminal to exchange or share files with other devices via a network Search means for searching for file sharing software for operating the user terminal software;
History recording means for recording a web browsing history or a file transfer history in the user terminal;
The search result of the information collection software or file sharing software by the search means, and the web browsing history or the file transfer recorded by the history recording means between the previous search result notification and the current search result notification And a notification means for notifying the management server of the history,
The management server
Extraction means for extracting the status of the information collection software or the file sharing software in the user terminal from the search result notified by the search means notified from the user terminal;
Registration means for registering the information collection software or the file sharing software extracted by the extraction means in a database in association with the user terminal;
By adding the difference between the search result notified last time from the user terminal and the search result notified this time, and the web browsing history or file transfer history notified this time, it is newly added to the user terminal. Source site identification means for identifying the source site of the information collection software or file sharing software,
Based on the possession status of the information collection software or the file sharing software registered in the database, and the source site specified by the source site specifying means, the user terminal and the information collection at the user terminal And a management means for managing the software or the file sharing software,
Software management system characterized by that.

[Appendix 1-2]
The management server
With reference to the possession status of the information collection software or the file sharing software registered in the database, the information collection software or the file sharing held in the user terminal according to a preset judgment criterion Comprising a judging means for judging whether or not software should be held in the user terminal;
When it is determined by the determination means that the information collection software or the file sharing software is not to be held, the management means of the management server acquires the information collection software or the file sharing software. A deletion command is sent to the user terminal to delete it from the user terminal, and the information collecting software or the file sharing software is forcibly deleted from the user terminal, and the information collecting software or the file sharing software is deleted. Forcibly prohibiting the access of the user terminal to the source site specified by the source site specifying means corresponding to the wear,
The software management system according to appendix 1-1, wherein

[Appendix 1-3]
The management server
A list of information related to information collection software or file sharing software necessary for business,
The information collection software or the file sharing software registered in the database is referred to, and the information collection software or the file sharing software stored in the user terminal and the list are registered in the list. And determining means for determining whether information corresponding to the information collection software or file sharing software held in the user terminal is registered in the list. And
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is not registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibiting access of the user terminal to the source site specified by the source site specifying means corresponding to the file sharing software,
The software management system according to appendix 1-1, wherein

[Appendix 1-4]
The management server
A list of information related to information collection software or file sharing software that is unnecessary for business,
The information collection software or the file sharing software registered in the database is referred to, and the information collection software or the file sharing software stored in the user terminal and the list are registered in the list. And determining means for determining whether information corresponding to the information collection software or file sharing software held in the user terminal is registered in the list. And
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibiting access of the user terminal to the source site specified by the source site specifying means corresponding to the file sharing software,
The software management system according to appendix 1-1, wherein

[Appendix 1-5]
The management server
Information collecting means for collecting information on information collecting software or file sharing software through a network connected to the management server;
The judgment criteria or the criteria / list setting means for setting the list based on the information on the information collection software or file sharing software collected by the information collection means is configured.
The software management system according to any one of appendix 1-2 to appendix 1-4, wherein:

[Appendix 1-6]
The management server
A search program that causes the user terminal to function as the search means and the notification means is provided with an installation means for installing in the user terminal,
Any one of appendix 1-1 to appendix 1-5, wherein the user terminal functions as the retrieval unit and the notification unit by executing a retrieval program installed by the installation unit The software management system according to one item.

[Appendix 1-7]
The management server
Comprising a download means for downloading a search program provided from a providing site through a network connected to the management server;
The installation means installs the program downloaded by the download means on the user terminal as the search program;
The software management system according to appendix 1-6, wherein

[Appendix 1-8]
A user terminal,
A management server that is communicably connected to the user terminal and manages the user terminal;
The user terminal is
History recording means for recording a web browsing history or a file transfer history in the user terminal;
A notification means for notifying the management server of the web browsing history or file transfer history recorded by the history recording means;
The management server
An access site extracting means for extracting information about a site accessed by the user terminal from a web browsing history or a file transfer history notified from the user terminal;
Access means for accessing the site accessed by the user terminal based on the information extracted by the access site extraction means;
After the access to the site by the access means, the information in the management server is collected and exchanged with other devices via the information collection software or network that operates the management server so as to be sent to a specific device Alternatively, search means for searching for file sharing software for operating the management server to share the software of the management server;
When the information collection software or the file sharing software is searched by the search means, based on the information about the information collection software or the file sharing software and the source site of the information collection software or the file sharing software, A management means for managing the user terminal and the information collection software or the file sharing software in the user terminal;
Software management system characterized by that.

[Appendix 1-9]
The management server
When the information collection software or the file sharing software is searched by the search means, the information collection software or the file sharing software should be held in the user terminal in accordance with a predetermined criterion. Comprising judgment means for judging whether or not there is,
When it is determined by the determination means that the information collection software or the file sharing software is not to be held, the management means of the management server acquires the information collection software or the file sharing software. A deletion command is sent to the user terminal to delete it from the user terminal, and the information collection software or file sharing software is forcibly deleted from the user terminal, and the information collection software or file sharing software is deleted. Forcibly prohibit access of the user terminal to the source site of
The software management system according to appendix 1-8, wherein

[Appendix 1-10]
The management server
A list of information related to information collection software or file sharing software necessary for business,
When the information collecting software or the file sharing software is searched by the searching means, the information collecting software or the file sharing software is collated with the information registered in the list, and the information collecting software or the file sharing software is checked. Determining means for determining whether information corresponding to the file sharing software is registered in the list,
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is not registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibit access of the user terminal to the source site of the file sharing software,
The software management system according to appendix 1-8, wherein

[Appendix 1-11]
The management server
A list of information related to information collection software or file sharing software that is unnecessary for business,
When the information collecting software or the file sharing software is searched by the searching means, the information collecting software or the file sharing software is collated with the information registered in the list, and the information collecting software or the file sharing software is checked. Determining means for determining whether information corresponding to the file sharing software is registered in the list,
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibit access of the user terminal to the source site of the file sharing software,
The software management system according to appendix 1-8, wherein

[Appendix 1-12]
The management server
Information collecting means for collecting information on information collecting software or file sharing software through a network connected to the management server;
The judgment criteria or the criteria / list setting means for setting the list based on information on the information collecting software or file sharing software collected by the information collecting means, The software management system according to any one of Supplementary Note 1-8 to Supplementary Note 1-11.

[Appendix 1-13]
The management server
A download unit that downloads a search program provided from a providing site through a network connected to the management server is configured, and functions as the search unit by executing the program downloaded by the download unit. Fulfill,
The software management system according to any one of Supplementary Note 1-8 to Supplementary Note 1-12, wherein

[Appendix 2-1]
It is connected to the user terminal so as to be able to communicate with each other, and the information in the user terminal is collected and transmitted to a specific device with information collecting software or another device via a network to operate the user terminal The file sharing software that operates the user terminal so as to exchange or share the file is notified of the search result searched by the search means from the software of the user terminal, and the user terminal A management server that is notified of a web browsing record or a file transfer history and manages the user terminal,
Extraction means for extracting the status of the information collection software or the file sharing software in the user terminal from the search result notified by the search means notified from the user terminal;
Registration means for registering the information collection software or the file sharing software extracted by the extraction means in a database in association with the user terminal;
By adding the difference between the search result notified last time from the user terminal and the search result notified this time, and the web browsing history or file transfer history notified this time, it is newly added to the user terminal. Source site identification means for identifying the source site of the information collection software or file sharing software,
Based on the possession status of the information collection software or the file sharing software registered in the database, and the source site specified by the source site specifying means, the user terminal and the information collection at the user terminal And a management means for managing the software or the file sharing software,
A management server characterized by that.

[Appendix 2-2]
The management server
With reference to the possession status of the information collection software or the file sharing software registered in the database, the information collection software or the file sharing held in the user terminal according to a preset judgment criterion Comprising a judging means for judging whether or not software should be held in the user terminal;
When it is determined by the determination means that the information collection software or the file sharing software is not to be held, the management means of the management server acquires the information collection software or the file sharing software. A deletion command is sent to the user terminal to delete it from the user terminal, and the information collecting software or the file sharing software is forcibly deleted from the user terminal, and the information collecting software or the file sharing software is deleted. Forcibly prohibiting the access of the user terminal to the source site specified by the source site specifying means corresponding to the wear,
The management server according to Supplementary Note 2-1, which is characterized by the above.

[Appendix 2-3]
The management server
A list of information related to information collection software or file sharing software necessary for business,
The information collection software or the file sharing software registered in the database is referred to, and the information collection software or the file sharing software stored in the user terminal and the list are registered in the list. And determining means for determining whether information corresponding to the information collection software or file sharing software held in the user terminal is registered in the list. And
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is not registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibiting access of the user terminal to the source site specified by the source site specifying means corresponding to the file sharing software,
The management server according to Supplementary Note 2-1, which is characterized by the above.

[Appendix 2-4]
The management server
A list of information related to information collection software or file sharing software that is unnecessary for business,
The information collection software or the file sharing software registered in the database is referred to, and the information collection software or the file sharing software stored in the user terminal and the list are registered in the list. And determining means for determining whether information corresponding to the information collection software or file sharing software held in the user terminal is registered in the list. And
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibiting access of the user terminal to the source site specified by the source site specifying means corresponding to the file sharing software,
The management server according to Supplementary Note 2-1, which is characterized by the above.

[Appendix 2-5]
The management server
Information collecting means for collecting information on information collecting software or file sharing software through a network connected to the management server;
The judgment criteria or the criteria / list setting means for setting the list based on the information on the information collection software or file sharing software collected by the information collection means is configured.
The management server according to any one of appendix 2-2 to appendix 2-4, which is characterized in that.

[Appendix 2-6]
The management server
A search program that causes the user terminal to function as the search means and the notification means is provided with an installation means for installing in the user terminal,
Any one of appendix 2-1 to appendix 2-5, wherein the user terminal functions as the retrieval unit and the notification unit by executing a retrieval program installed by the installation unit The management server according to one item.

[Appendix 2-7]
The management server
Comprising a download means for downloading a search program provided from a providing site through a network connected to the management server;
The installation means installs the program downloaded by the download means on the user terminal as the search program;
The management server according to appendix 2-6, which is characterized in that

[Appendix 2-8]
A management server that is connected to a user terminal so as to communicate with each other, is notified of a web browsing record or a file transfer history in the user terminal, and manages the user terminal,
An access site extracting means for extracting information about a site accessed by the user terminal from a web browsing history or a file transfer history notified from the user terminal;
Access means for accessing the site accessed by the user terminal based on the information extracted by the access site extraction means;
After the access to the site by the access means, the information in the management server is collected and exchanged with other devices via the information collection software or network that operates the management server so as to be sent to a specific device Alternatively, search means for searching the file sharing software for operating the management server end so as to share the software of the management server,
When the information collection software or the file sharing software is searched by the search means, based on the information about the information collection software or the file sharing software and the source site of the information collection software or the file sharing software, A management means for managing the user terminal and the information collection software or the file sharing software in the user terminal;
A management server characterized by that.

[Appendix 2-9]
The management server
When the information collection software or the file sharing software is searched by the search means, the information collection software or the file sharing software should be held in the user terminal in accordance with a predetermined criterion. Comprising judgment means for judging whether or not there is,
When it is determined by the determination means that the information collection software or the file sharing software is not to be held, the management means of the management server acquires the information collection software or the file sharing software. A deletion command is sent to the user terminal to delete it from the user terminal, and the information collection software or file sharing software is forcibly deleted from the user terminal, and the information collection software or file sharing software is deleted. Forcibly prohibit access of the user terminal to the source site of
The management server according to appendix 2-8, which is characterized in that

[Appendix 2-10]
The management server
A list of information related to information collection software or file sharing software necessary for business,
When the information collecting software or the file sharing software is searched by the searching means, the information collecting software or the file sharing software is collated with the information registered in the list, and the information collecting software or the file sharing software is checked. Determining means for determining whether information corresponding to the file sharing software is registered in the list,
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is not registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibit access of the user terminal to the source site of the file sharing software,
The management server according to appendix 2-8, which is characterized in that

[Appendix 2-11]
The management server
A list of information related to information collection software or file sharing software that is unnecessary for business,
When the information collecting software or the file sharing software is searched by the searching means, the information collecting software or the file sharing software is collated with the information registered in the list, and the information collecting software or the file sharing software is checked. Determining means for determining whether information corresponding to the file sharing software is registered in the list,
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibit access of the user terminal to the source site of the file sharing software,
The management server according to appendix 2-8, which is characterized in that

[Appendix 2-12]
The management server
Information collecting means for collecting information on information collecting software or file sharing software through a network connected to the management server;
The judgment criteria or the criteria / list setting means for setting the list based on information on the information collecting software or file sharing software collected by the information collecting means, The management server according to any one of Supplementary Note 2-8 to Supplementary Note 2-11.

[Appendix 2-13]
The management server
A download unit that downloads a search program provided from a providing site through a network connected to the management server is configured, and functions as the search unit by executing the program downloaded by the download unit. Fulfill,
The management server according to any one of appendix 2-8 to appendix 2-12, which is characterized in that.

[Appendix 3-1]
It is connected to a user terminal so as to be able to communicate with each other, and information collecting software for operating the user terminal so as to collect information in the user terminal and transmit the information to a specific apparatus or other devices via a network The file sharing software for operating the user terminal so as to exchange or share the file is notified of the search result searched by the search means from the software of the user terminal, and at the user terminal A management program for notifying a web browsing record or file transfer history, and causing a computer to function as a management server for managing the user terminal,
Extraction means for extracting the holding status of the information collection software or the file sharing software in the user terminal from the search result notified by the user terminal;
Registration means for registering in the database the possession status of the information collection software or the file sharing software extracted by the extraction means in association with the user terminal;
By adding the difference between the search result notified last time from the user terminal and the search result notified this time, and the web browsing history or file transfer history notified this time, it is newly added to the user terminal. Source site identification means for identifying the source site of the collected information collection software or file sharing software, and
Based on the possession status of the information collection software or the file sharing software registered in the database and the source site specified by the source site specifying means, the user terminal and the information collection at the user terminal Causing the computer to function as management means for managing software or the file sharing software;
A management program characterized by that.

[Appendix 3-2]
The management server
With reference to the possession status of the information collection software or the file sharing software registered in the database, the information collection software or the file sharing held in the user terminal according to a preset judgment criterion Comprising a judging means for judging whether or not software should be held in the user terminal;
When it is determined by the determination means that the information collection software or the file sharing software is not to be held, the management means of the management server acquires the information collection software or the file sharing software. A deletion command is sent to the user terminal to delete it from the user terminal, and the information collecting software or the file sharing software is forcibly deleted from the user terminal, and the information collecting software or the file sharing software is deleted. Forcibly prohibiting the access of the user terminal to the source site specified by the source site specifying means corresponding to the wear,
The management program according to appendix 3-1, wherein:

[Appendix 3-3]
The management server
A list of information related to information collection software or file sharing software necessary for business,
The information collection software or the file sharing software registered in the database is referred to, and the information collection software or the file sharing software stored in the user terminal and the list are registered in the list. And determining means for determining whether information corresponding to the information collection software or file sharing software held in the user terminal is registered in the list. And
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is not registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibiting access of the user terminal to the source site specified by the source site specifying means corresponding to the file sharing software,
The management program according to appendix 3-1, wherein:

[Appendix 3-4]
The management server
A list of information related to information collection software or file sharing software that is unnecessary for business,
The information collection software or the file sharing software registered in the database is referred to, and the information collection software or the file sharing software stored in the user terminal and the list are registered in the list. And determining means for determining whether information corresponding to the information collection software or file sharing software held in the user terminal is registered in the list. And
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibiting access of the user terminal to the source site specified by the source site specifying means corresponding to the file sharing software,
The management program according to appendix 3-1, wherein:

[Appendix 3-5]
The management server
Information collecting means for collecting information on information collecting software or file sharing software through a network connected to the management server;
The judgment criteria or the criteria / list setting means for setting the list based on the information on the information collection software or file sharing software collected by the information collection means is configured.
The management program according to any one of appendix 3-2 to appendix 3-4, which is characterized in that

[Appendix 3-6]
The management server
A search program that causes the user terminal to function as the search means and the notification means is provided with an installation means for installing in the user terminal,
Any one of appendix 3-1 to appendix 3-5, wherein the user terminal functions as the retrieval unit and the notification unit by executing a retrieval program installed by the installation unit The management program according to one item.

[Appendix 3-7]
The management server
Comprising a download means for downloading a search program provided from a providing site through a network connected to the management server;
The installation means installs the program downloaded by the download means on the user terminal as the search program;
The management program according to appendix 3-6, which is characterized in that

[Appendix 3-8]
A management program that is communicably connected to a user terminal, is notified of a web browsing record or a file transfer history in the user terminal, and functions as a management server that manages the user terminal,
An access site extracting means for extracting information related to a site accessed by the user terminal from a web browsing history or a file transfer history notified from the user terminal;
Access means for accessing the site accessed by the user terminal based on the information extracted by the access site extraction means;
After the access to the site by the access means, the information in the management server is collected and exchanged with other devices via the information collection software or network that operates the management server so as to be sent to a specific device Alternatively, search means for searching for file sharing software for operating the management server end so as to share the software of the management server, and
When the information collection software or file sharing software is searched by the search means, based on the information about the information collection software or file sharing software and the source site of the information collection software or file sharing software, Causing the computer to function as management means for managing the user terminal and the information collection software or the file sharing software in the user terminal;
A management program characterized by that.

[Appendix 3-9]
The management server
When the information collection software or the file sharing software is searched by the search means, the information collection software or the file sharing software should be held in the user terminal in accordance with a predetermined criterion. Comprising judgment means for judging whether or not there is,
When it is determined by the determination means that the information collection software or the file sharing software is not to be held, the management means of the management server acquires the information collection software or the file sharing software. A deletion command is sent to the user terminal to delete it from the user terminal, and the information collection software or file sharing software is forcibly deleted from the user terminal, and the information collection software or file sharing software is deleted. Forcibly prohibit access of the user terminal to the source site of
The management program according to appendix 3-8, wherein

[Appendix 3-10]
The management server
A list of information related to information collection software or file sharing software necessary for business,
When the information collecting software or the file sharing software is searched by the searching means, the information collecting software or the file sharing software is collated with the information registered in the list, and the information collecting software or the file sharing software is checked. Determining means for determining whether information corresponding to the file sharing software is registered in the list,
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is not registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibit access of the user terminal to the source site of the file sharing software,
The management program according to appendix 3-8, wherein

[Appendix 3-11]
The management server
A list of information related to information collection software or file sharing software that is unnecessary for business,
When the information collecting software or the file sharing software is searched by the searching means, the information collecting software or the file sharing software is collated with the information registered in the list, and the information collecting software or the file sharing software is checked. Determining means for determining whether information corresponding to the file sharing software is registered in the list,
When it is determined by the determination means that the information corresponding to the information collection software or the file sharing software is registered in the list, the management means of the management server performs the information collection software or the file In order to delete the shared software from the user terminal, a deletion command is sent to the user terminal to forcibly delete the information collection software or the file sharing software from the user terminal, and the information collection software Or forcibly prohibit access of the user terminal to the source site of the file sharing software,
The management program according to appendix 3-8, wherein

[Appendix 3-12]
The management server
Information collecting means for collecting information on information collecting software or file sharing software through a network connected to the management server;
The judgment criteria or the criteria / list setting means for setting the list based on information on the information collecting software or file sharing software collected by the information collecting means, The management program according to any one of Supplementary Note 3-8 to Supplementary Note 3-11.

[Appendix 3-13]
The management server
A download unit that downloads a search program provided from a providing site through a network connected to the management server is configured, and functions as the search unit by executing the program downloaded by the download unit. Fulfill,
The management program according to any one of Supplementary Note 3-8 to Supplementary Note 3-12, characterized by:

[Appendix 4-1]
A user terminal,
A management server that is communicably connected to the user terminal and manages the user terminal;
Search means for searching the file sharing software for operating the user terminal so that the user terminal exchanges or shares a file with another device via the network from the software of the user terminal;
A history recording means for recording a file transfer history in the user terminal;
Notification means for notifying the management server of the search result of the file sharing software by the search means and the file transfer history recorded by the history recording means between the previous search result notification and the current search result notification And configured with
The management server
Extraction means for extracting the status of possession of the file sharing software in the user terminal from the search result by the search means notified from the user terminal;
Registration means for registering the possession status of the file sharing software extracted by the extraction means in a database in association with the user terminal;
File sharing software newly added to the user terminal by combining the difference between the search result notified last time from the user terminal and the search result notified this time and the file transfer history notified this time Source site identification means for identifying the wear source site,
Management for managing the file sharing software in the user terminal and the user terminal based on the possession status of the file sharing software registered in the database and the source site specified by the source site specifying means Means comprising:
The search means monitors the port status of the user terminal, and when file transfer occurs, information indicating that the file transfer has occurred (transfer file name, file size, time, port number used, partner IP address) Address etc.) as history,
Monitors the activation and operation of programs related to file transfer (mail program, browser, FTP program, etc.), records the activation and operation of programs related to file transfer as history,
If the file transfer history does not correspond to the operation history of the file transfer related program being monitored by comparing the file transfer history with the operation history of the file transfer related program, there is unconfirmed file sharing software. Judge that
Software management system characterized by that.
[Appendix 5-1]
The search means monitors the port status of the user terminal, and when file transfer occurs, information indicating that the file transfer has occurred (transfer file name, file size, time, port number used, partner IP address) Address etc.) as history,
Monitors the activation and operation of programs related to file transfer (mail program, browser, FTP program, etc.), records the activation and operation of programs related to file transfer as history,
If the file transfer history does not correspond to the operation history of the file transfer related program being monitored by comparing the file transfer history with the operation history of the file transfer related program, there is unconfirmed file sharing software. Judge that
The management server according to any one of appendix 2-1 to appendix 2-12, which is characterized by that.
[Appendix 6-1]
The search means monitors the port status of the user terminal, and when file transfer occurs, information indicating that the file transfer has occurred (transfer file name, file size, time, port number used, partner IP address) Address etc.) as history,
Monitors the activation and operation of programs related to file transfer (mail program, browser, FTP program, etc.), records the activation and operation of programs related to file transfer as history,
If the file transfer history does not correspond to the operation history of the file transfer related program being monitored by comparing the file transfer history with the operation history of the file transfer related program, there is unconfirmed file sharing software. Judge that
The management program according to any one of Supplementary Note 3-1 to Supplementary Note 3-12, wherein the management program is characterized in that

1 is a block diagram showing an overall configuration of a software management system as a first embodiment of the present invention. It is a block diagram which shows the function structure of the user terminal and management server in the software management system of 1st Embodiment. It is a flowchart for demonstrating operation | movement of the management server in 1st Embodiment. It is a flowchart for demonstrating operation | movement of the management server in 1st Embodiment. It is a block diagram which shows the whole structure of the software management system as 2nd Embodiment of this invention. It is a block diagram which shows the function structure of the user terminal and management server in the software management system of 2nd Embodiment. It is a flowchart for demonstrating operation | movement of the management server in 2nd Embodiment. It is a block diagram which shows the whole structure of the software management system as 3rd Embodiment of this invention. It is a block diagram which shows the function structure of the user terminal and management server in the software management system of 3rd Embodiment. It is a flowchart for demonstrating operation | movement of the management server in 3rd Embodiment.

Explanation of symbols

1A, 1B, 1C Software management system 10A, 10B, 10C User terminal 10a CPU
10b Storage unit 11 Search means 12 Notification means 13 History recording means 14, 15 Notification means 20A, 20B, 20C Management server 20a CPU
20b Storage unit 21 Extraction unit 22 Registration unit 22a Database 23A, 23B Management unit 24 Judgment unit 24a List (white list)
24b List (Black List)
25 Information collection means 26 Criteria / list setting means 27 Download means 28 Installation means 29 Source site identification means 201 Access site extraction means 202 Access means 203 Search means 204 Management means 205 Judgment means 205a List (white list)
205b List (black list)
206 Information collection means 207 Standard / list setting means 208 Download means 30 Proxy server 40 Internal LAN

Claims (6)

A user terminal,
A management server that is communicably connected to the user terminal and manages the user terminal;
The user terminal is
Information collection software for operating the user terminal to collect information in the user terminal and transmit it to a specific device, or the user terminal to exchange or share files with other devices via a network Search means for searching for file sharing software for operating the user terminal software;
History recording means for recording a web browsing history or a file transfer history in the user terminal;
The search result of the information collection software or file sharing software by the search means, and the web browsing history or the file transfer recorded by the history recording means between the previous search result notification and the current search result notification And a notification means for notifying the management server of the history,
The management server
Extraction means for extracting the status of the information collection software or the file sharing software in the user terminal from the search result notified by the search means notified from the user terminal;
Registration means for registering the information collection software or the file sharing software extracted by the extraction means in a database in association with the user terminal;
By adding the difference between the search result notified last time from the user terminal and the search result notified this time, and the web browsing history or file transfer history notified this time, it is newly added to the user terminal. Source site identification means for identifying the source site of the information collection software or file sharing software,
Based on the possession status of the information collection software or the file sharing software registered in the database, and the source site specified by the source site specifying means, the user terminal and the information collection at the user terminal And a management means for managing the software or the file sharing software,
Software management system characterized by that. A user terminal,
A management server that is communicably connected to the user terminal and manages the user terminal;
The user terminal is
History recording means for recording a web browsing history or a file transfer history in the user terminal;
A notification means for notifying the management server of the web browsing history or file transfer history recorded by the history recording means;
The management server
An access site extracting means for extracting information about a site accessed by the user terminal from a web browsing history or a file transfer history notified from the user terminal;
Access means for accessing the site accessed by the user terminal based on the information extracted by the access site extraction means;
After the access to the site by the access means, the information in the management server is collected and exchanged with other devices via the information collection software or network that operates the management server so as to be sent to a specific device Alternatively, search means for searching for file sharing software for operating the management server to share the software of the management server;
When the information collection software or the file sharing software is searched by the search means, based on the information about the information collection software or the file sharing software and the source site of the information collection software or the file sharing software, A management means for managing the user terminal and the information collection software or the file sharing software in the user terminal;
Software management system characterized by that.
It is connected to the user terminal so as to be able to communicate with each other, and the information in the user terminal is collected and transmitted to a specific device with information collecting software or another device via a network to operate the user terminal The file sharing software that operates the user terminal so as to exchange or share the file is notified of the search result searched by the search means from the software of the user terminal, and the user terminal A management server that is notified of a web browsing record or a file transfer history and manages the user terminal,
Extraction means for extracting the status of the information collection software or the file sharing software in the user terminal from the search result notified by the search means notified from the user terminal;
Registration means for registering the information collection software or the file sharing software extracted by the extraction means in a database in association with the user terminal;
By adding the difference between the search result notified last time from the user terminal and the search result notified this time, and the web browsing history or file transfer history notified this time, it is newly added to the user terminal. Source site identification means for identifying the source site of the information collection software or file sharing software,
Based on the possession status of the information collection software or the file sharing software registered in the database, and the source site specified by the source site specifying means, the user terminal and the information collection at the user terminal And a management means for managing the software or the file sharing software,
A management server characterized by that. A management server that is connected to a user terminal so as to communicate with each other, is notified of a web browsing record or a file transfer history in the user terminal, and manages the user terminal,
An access site extracting means for extracting information about a site accessed by the user terminal from a web browsing history or a file transfer history notified from the user terminal;
Access means for accessing the site accessed by the user terminal based on the information extracted by the access site extraction means;
After the access to the site by the access means, the information in the management server is collected and exchanged with other devices via the information collection software or network that operates the management server so as to be sent to a specific device Alternatively, search means for searching the file sharing software for operating the management server end so as to share the software of the management server,
When the information collection software or the file sharing software is searched by the search means, based on the information about the information collection software or the file sharing software and the source site of the information collection software or the file sharing software, A management means for managing the user terminal and the information collection software or the file sharing software in the user terminal;
A management server characterized by that. It is connected to a user terminal so as to be able to communicate with each other, and information collecting software for operating the user terminal so as to collect information in the user terminal and transmit the information to a specific apparatus or other devices via a network The file sharing software for operating the user terminal so as to exchange or share the file is notified of the search result searched by the search means from the software of the user terminal, and at the user terminal A management program for notifying a web browsing record or file transfer history, and causing a computer to function as a management server for managing the user terminal,
Extraction means for extracting the holding status of the information collection software or the file sharing software in the user terminal from the search result notified by the user terminal;
Registration means for registering in the database the possession status of the information collection software or the file sharing software extracted by the extraction means in association with the user terminal;
By adding the difference between the search result notified last time from the user terminal and the search result notified this time, and the web browsing history or file transfer history notified this time, it is newly added to the user terminal. Source site identification means for identifying the source site of the collected information collection software or file sharing software, and
Based on the possession status of the information collection software or the file sharing software registered in the database and the source site specified by the source site specifying means, the user terminal and the information collection at the user terminal Causing the computer to function as management means for managing software or the file sharing software;
A management program characterized by that. A management program that is communicably connected to a user terminal, is notified of a web browsing record or a file transfer history in the user terminal, and functions as a management server that manages the user terminal,
An access site extracting means for extracting information related to a site accessed by the user terminal from a web browsing history or a file transfer history notified from the user terminal;
Access means for accessing the site accessed by the user terminal based on the information extracted by the access site extraction means;
After the access to the site by the access means, the information in the management server is collected and exchanged with other devices via the information collection software or network that operates the management server so as to be sent to a specific device Alternatively, search means for searching for file sharing software for operating the management server end so as to share the software of the management server, and
When the information collection software or file sharing software is searched by the search means, based on the information about the information collection software or file sharing software and the source site of the information collection software or file sharing software, Causing the computer to function as management means for managing the user terminal and the information collection software or the file sharing software in the user terminal;
A management program characterized by that.

Images