JP2008071262A - Personal information protection method and communication terminal equipment - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a personal information protection method and a mobile communication terminal equipment, for preventing the transmission of personal information which is not intended by a user when performing Web access. <P>SOLUTION: In a portable telephone device 10, when transition from a Web site under browsing to another associated Web site is selected, an identifier judgement part 31 judges whether or not any information to be transmitted without being recognized by a user with possibility to specify an individual is included in the URL of a transition origin Web site to be added in the case of its transition to another Web site by referring to a parameter DB 24. When the judged result is positive, a first preparation part 32 prepares information acquired by deleting the personal information from the URL as reference origin information. A transition means 34 adds the reference origin information, and designates the URL of the transition destination Web site, and issues an access request. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to a personal information protection method and a communication terminal device, and more particularly to a personal information protection method used when accessing a website and a communication terminal device using the personal information protection method.

  Conventionally, communication terminal devices including mobile communication terminal devices have become widespread. A web access environment using the Internet, which is one of the usage environments of such a communication terminal device, has been remarkably developed, and a web browser is standardly equipped in the communication terminal device. On the other hand, mobile communication terminal devices include not only browsers (hereinafter also referred to as “mobile browsers”) suitable for browsing websites from mobile communication terminal devices, but also personal computers (hereinafter referred to as “mobile browsers”). Some models are equipped with a browser (hereinafter also referred to as “full browser”) for browsing a general-purpose website suitable for browsing from a PC ”.

  When the web browser or the full browser is used, the URL (Uniform Resource Locator) of the website is displayed on the browser. Here, in the specification of “HTTP (Hyper Text Transfer Protocol) 1.1” which is a protocol for downloading the contents of a website to a terminal, a link destination can be selected from a certain website, or a button on the website can be selected. When a website is changed by pressing, it is possible to add a URL information of a reference source web page called a referrer and make an access request to the destination website.

  In general, by tracing this referrer, it is possible to check from which site the viewer visited. Further, in the case of a visit from a search engine, by examining the parameter part of the URL, it is possible to know what search terms have been entered as a result of the input. In this way, the referrer is important information in the sense that it is possible to check on which site an advertisement or link should be placed in the web advertising world.

  The referrer is made up of URL added with information input by the user called a query and other values automatically acquired by other web browsers, and automatically when a website is changed by selecting a link destination. Sent to. Therefore, information other than information manually input by the user may be automatically set and transmitted without being conscious. If it contains information that leads to personal identification, there is a risk of leakage of personal information.

  The present invention has been made in view of the above, and an object of the present invention is to provide a personal information protection method and a communication terminal device that can prevent transmission of personal information unintended by a user when accessing the web.

  According to a first aspect of the present invention, there is provided a personal information protection method used when a communication terminal device accesses a website, wherein the second website associated with the first website while browsing the website. When it is selected to transition to, the identifier of the first website includes information that can be transmitted without the user's recognition and may lead to identification of the individual. An identifier determination step for determining whether or not the second website is obtained by subtracting the personal information from the identifier of the first website if the result of the determination is affirmative A first creation step of creating as reference source information which is information indicating a transition source added at the time of transition to; and if the result of the determination is negative, the first website A personal information protection method comprising: a second creation step of creating an identifier as the reference source information as it is; a transition step of adding the reference source information and issuing an access request to the second website as a transition destination . It is.

  In this personal information protection method, when the user selects to change from the first website to the associated second website while browsing the first website on the communication terminal device, the personal information protection operation is performed. Starts. That is, a link is selected or a button from the first website that is the transition source website to the second website that is the transition destination website associated with the link destination designation in the first website or the button in the communication terminal device, for example. It is a requirement that website movement is requested by pressing. On the other hand, the case where the identifier on the network of the website stored in the web browser installed in the communication terminal device is directly selected or the identifier on the network is directly input is not applicable.

  When the operation of protecting personal information starts, first, in the identifier determination step, the user recognizes the identifier of the first website that is the transition source that is added when transitioning to the second website that is the transition destination. It is determined whether or not information that is transmitted without any error and includes personal information that may lead to identification of an individual. Here, the identifier of the first website that is the transition source is normally sent to the transition destination as reference source information as it is, and includes the information input by the user, the search term, and the like. ing. As a result, the second web site that is the transition destination can know what information the user has entered from which web site, and so on.

  If the result of the determination is affirmative, it is inappropriate to send the personal information part. Therefore, in the first creation step, the personal information part is obtained from the identifier of the first website that is the transition source. The deleted information is created as reference source information. On the other hand, if the result of the determination is negative, there is no personal information that is inappropriate to send out. Therefore, in the second creation step, the identifier of the website that is the transition source is directly used as the reference source information. Created as

  When the reference source information is created in this way, in the transition process, the created reference source information is added, and an access request specifying the identifier on the network of the second website that is the transition destination is issued. For this reason, personal information that is transmitted without the user's recognition and that leads to identification of an individual is not transmitted to the transition destination website.

  Therefore, according to the personal information protection method of the present invention, it is possible to prevent personal information from being transmitted unintentionally by the user during web access by the communication terminal device, and to protect personal information.

  In the personal information protection method of the present invention, the communication terminal device can be a mobile communication terminal device.

  Here, the personal information may include current position information of the mobile communication terminal device. Here, the position information refers to the information obtained by using, for example, a GPS (Global Positioning System) positioning function that can know the position on the earth. When the user desires such display on a website where the current position display or peripheral information based on the current position can be obtained, the user's own current position information is measured at the mobile communication terminal device, and the web A display showing the current position is obtained by sending to the site.

  In this case, when the identifier of the first website includes a character string portion representing the current position information, information obtained by deleting the character string portion from the identifier on the network of the first website that is the transition source is used as reference source information. In addition, an access request to the second website of the transition destination is issued. This is because the character string portion is not necessary for accessing the second website of the transition destination and may lead to leakage of personal information. Therefore, in this case, personal information can be protected by not transmitting the current position information that may lead to the identification of the individual to the transition destination website (second website).

  According to the second aspect, the present invention provides the first website when the transition from the first website to the associated second website is selected during browsing of the first website. Identifier determination means for determining whether or not the identifier includes information that can be transmitted without the user's recognition and that may lead to identification of an individual; and a result of the determination Is positive, the information obtained by adding the information obtained by removing the personal information from the identifier of the first website to the second website is referred to. First creation means for creating original information; if the determination result is negative, second creation means for creating the identifier as it is as the reference source information; and adding the reference source information do it, And changing means for issuing an access request to the second web site is a Utsurisaki; is a communication terminal apparatus comprising a.

  When it is detected that the user has selected to transition from the first website being browsed to the second website associated with the first website, first, the identifier determination means is the transition destination The identifier of the first website that is the transition source added when transitioning to the second website is information that can be transmitted without the user's recognition and may lead to the identification of the individual. Determine whether personal information is included.

  If the result of the determination is affirmative, the first creating means creates, as reference source information, the personal information portion deleted from the identifier of the first website that is the transition source. On the other hand, if the result of the determination is negative, the second creating means creates the identifier of the website that is the transition source as the reference source information. Then, the transition means issues an access request to which the created reference source information is added and an identifier on the network of the second website that is the transition destination is specified.

  That is, the communication terminal device of the present invention can access a website using the personal information protection method of the present invention described above. Therefore, according to the communication terminal device of the present invention, it is possible to prevent transmission of personal information that is not intended by the user during web access, and to protect personal information.

  The communication terminal apparatus according to the present invention can further include wireless communication means for performing wireless communication with a base station of a mobile communication network.

  Here, the communication terminal device further includes a position measurement unit that acquires a current position of the communication terminal device, and the personal information includes the current position information measured by the position measurement unit. Can do. In this case, when the identifier of the first website includes a character string portion representing the current position information, the first creating means uses the character string portion representing the current position information as an identifier on the network of the first website that is the transition source. The information deleted from is created as reference source information. Then, the transition means adds the created reference source information and issues an access request to the second website of the transition destination. Therefore, in this case, personal information can be protected by not transmitting the current position information that may lead to the identification of the individual to the transition destination website.

  As described above, according to the personal information protection method of the present invention, it is possible to prevent transmission of personal information unintended by the user when the communication terminal device accesses the web.

  In addition, according to the communication terminal device of the present invention, it is possible to prevent transmission of personal information unintended by the user during web access.

  Hereinafter, embodiments of the present invention will be described with reference to FIGS. In these drawings, the same or equivalent elements are denoted by the same reference numerals, and redundant description is omitted.

<Configuration>
FIG. 1 schematically shows an external configuration of a mobile phone device 10 which is a mobile communication terminal device. Here, FIG. 1A shows a front view of the appearance of the mobile phone device 10, and FIG. 1B shows a rear view of the appearance of the mobile phone device 10.

  As generally shown in FIGS. 1A and 1B, the mobile phone device 10 includes (a) a mobile phone main body 11, (b) a numeric keypad for inputting a telephone number, and an operation. An operation unit 12 having function keys for inputting various commands such as mode switching to a control unit 21 (see FIG. 2) described later, and (c) a liquid crystal display for displaying operation guidance, operation status, received message, and the like. And a display unit 13 as display means having the device. In addition, the cellular phone device 10 includes (d) a call speaker 14 that reproduces an audio signal transmitted from a communication partner during a call, and (e) a sound input during sound collection or a sound input during a call. And (f) a guidance speaker 16 for generating ringtones and guidance sounds, and (g) an antenna 17 for transmitting and receiving radio signals to and from the base station.

  As shown in FIG. 2, the mobile phone body 11 includes (i) a control unit 21 that performs overall control of the operation of the mobile phone device 10 and (ii) a base station via an antenna 17. And (iii) a storage unit 23 having a read-only memory (ROM) element and a random access memory (RAM) element for storing a program executed by the control unit 21 and various data. And (iv) a GPS positioning unit 25 having a GPS positioning function.

  The storage unit 23 includes a parameter database (hereinafter referred to as “parameter DB”) 24 which is a part of the identifier search means. In the parameter DB 24, position information parameters are registered. The location information parameter is information that identifies the location of the user because the user does not normally recognize that the location parameter is transmitted when moving to the next website. This is because it should not be sent when moving to unrelated websites.

  Here, the parameters of the position information are generally composed of a coordinate value “pos” representing latitude and longitude, a value “geo” designating a geodetic system, and a value “X-acr” designating an error level. Therefore, these character strings are registered in the parameter DB 24 in advance.

  The control unit 21 includes a central processing unit (CPU), a digital signal processing unit (DSP), and the like, performs various data processing to realize a general mobile phone function, and other configurations described above. It is designed to control the operation of elements. One of the programs executed in the control unit 21 is a browser 26 that is a web browser for browsing a website. The browser 26 includes an information protection control unit 27.

  As shown in FIG. 3, the information protection control unit 27 includes an identifier determination unit 31 that is an identifier determination unit, a first generation unit 32 that is a first generation unit, and a second generation unit 33 that is a second generation unit. And a transition unit 34 as transition means.

  The identifier determination unit 31 checks the identifier of the website that is the access source when browsing to a certain website and selecting transition from the website to another associated website. Then, it is determined whether or not the identifier includes personal information that can be transmitted without the user's clear recognition and that may lead to identification of an individual.

  When the determination result of the identification determination unit 31 is affirmative, the first creation unit 32 uses the access source as information indicating a transition source that is added when transitioning to the destination website. Create a website identifier without the personal information.

  When the determination result of the identification determination unit 31 is negative, the second creation unit 33 uses the access source as information indicating the transition source added when transitioning to the destination website. Create website identifiers as they are.

  The transition unit 34 issues an access request by adding information indicating the transition source to the website that is the transition destination.

<Operation>
Next, website access processing by the cellular phone device 10 configured as described above will be described. In addition, the following description will be given on the assumption that access to a website displaying map information is included.

  First, the presupposed situation is explained. First, as shown in (A) of FIG. 4, connection is made to a site that provides map information, which is a website having a function that requires current position information for content display.

  In the display of FIG. 4A, a menu that provides information based on the current location of the user, such as “display peripheral information”, is selected. Then, as shown in FIG. 4B, a display asking whether to permit the user to transmit the current location information of the user to the information provider is displayed.

  Here, when an operation for permitting is performed, the GPS positioning unit 25 of the mobile communication terminal device 10 measures the GPS satellite that specifies the position of the mobile communication terminal device 10 via the transmission / reception unit 22 or the GPS satellites. Exchange with a positioning server that calculates the position of the mobile communication terminal device 10 based on the data is performed, and the current position of the user is acquired. Then, the browser 26 issues a web access request using the acquired position information as a parameter value added to the end of the URL of the website in FIG. 4B. Then, in FIG. 4D, the content based on the current position information of the user is displayed by analyzing and using the parameter value.

  Based on the above, the operation when moving to the link destination displayed from FIG. 4D will be described. Here, the same screen as FIG. 4D is newly shown in FIG. From FIG. 5A, for example, when “Store A” as a link destination is selected, the URL moves to the link destination URL, and the display transitions as shown in FIG. 5B.

  FIG. 6 is a flowchart showing the operation in this case. When a link destination is selected in FIG. 5A, the browser 26 detects a website transition command in FIG. Then, the information protection control unit 27 is activated.

  First, in creating the referrer in step S11 of FIG. 6, whether or not there is a character string indicating information for identifying an individual who is not conscious of transmission by the URL of the transition source website. Is searched with reference to the parameter DB 24 in which the character string group is registered in advance. The referrer is a URL as an access source, which is determined in the HTTP 1.1 specification, and is added and sent when an access request is made to a website. Here, the referrer is shown in FIG. URL that corresponds. The URL shown in FIG. 5A includes a parameter indicating position information.

  Next, in step S12 of FIG. 6, it is determined whether or not a character string including the position information parameter registered in the parameter DB 24 is included as a result of the search in step S11. Therefore, in this case including the position information, the result of the determination is affirmative.

  If the result of determination in step S12 is affirmative, the process proceeds to step S13. In step S13, a process of creating a referrer is performed excluding a character string portion corresponding to personal information. Therefore, only the URL body excluding the personal information portion remains in the referrer after the processing.

  If the result of determination in step S12 is negative, there is no character string that should be excluded, and the process proceeds to step S14. In step S14, as usual, the character string of the transition source information becomes the referrer as it is.

  When the process of step S13 or step S14 ends, the process proceeds to step S15. In step S15, the created referrer is added, and an access request is issued with the URL of the website designated by selecting the link destination “Store A” from FIG. 5A. Then, it moves to the website of “Store A” as shown in FIG. Since the location information is not included in the referrer, the location information of the user is not captured by the website of “Store A”.

  As described above, in the mobile phone device 10 of the present embodiment, when it is detected that the user has selected to transition from one website to another website associated with the one website. First, from the reference source information that is information indicating the identifier of the one website that is the transition source added when the identifier determination unit 31 transitions to the another website that is the transition destination, Whether the information is transmitted without being recognized, and whether or not personal information such as current position information that leads to the identification of the individual is included with reference to the parameter DB 24. judge.

  If the result of the determination is affirmative, it is inappropriate to send personal information, so the first creation unit 32 deletes the personal information from the identifier of the website that is the transition source. Is created as reference source information. On the other hand, if the result of the determination is negative, there is no personal information that is inappropriate to send out, so the second creation unit 33 uses the identifier of the website that is the transition source as reference source information. create. The transition unit 34 adds the reference source information created by the first creation unit 32 or the second creation unit 33, and issues an access request by designating the identifier on the network of the website that is the transition destination. To do.

  Therefore, according to the mobile communication terminal device 10 of the present invention, the personal information that can be transmitted without the user's recognition and may lead to the identification of the individual is referred to the transition destination website. Do not send automatically when moving. For this reason, personal information can be protected.

<Modification of Embodiment>
In the above-described embodiment, the personal information to be deleted is only the position information, but it can be applied to other information that is appropriately deleted.

  In the above embodiment, the invention is applied to a mobile communication terminal device. However, even a communication terminal device such as an ordinary personal computer can be applied by using necessary hardware and software. It is.

  As described above, the personal information protection method of the present invention can be used for web access. Moreover, the communication terminal device of the present invention can be applied to a communication terminal device capable of web access.

It is a figure which shows roughly the external appearance structure of the mobile communication terminal device of this invention. It is a block diagram for demonstrating the internal structure of the apparatus of FIG. It is a block diagram for demonstrating the structure of the information protection control part of FIG. It is a figure which shows the screen transition used as the premise explaining the operation | movement of the information protection control part of FIG. It is a figure which shows the screen transition for demonstrating operation | movement of the information protection control part of FIG. It is a flowchart explaining operation | movement of the information protection control part of FIG.

Explanation of symbols

  DESCRIPTION OF SYMBOLS 10 ... Mobile phone apparatus (communication terminal device) 11 ... Mobile phone main body, 12 ... Operation part, 13 ... Display part, 14 ... Speaker for call, 15 ... Microphone, 16 ... Speaker for guidance, 17 ... Antenna, 21 ... Control , 22 ... transmission / reception part, 23 ... storage part, 24 ... parameter DB, 25 ... GPS positioning part, 26 ... browser, 27 ... information protection control part, 31 ... identifier determination part, 32 ... first creation part, 33 ... first 2 creation part, 34 ... transition part.

Claims (6)

A personal information protection method used when a website is accessed by a communication terminal device,
When the transition to the second website associated with the first website is selected while browsing the first website, the identifier of the first website is transmitted without the user's recognition. An identifier determination step for determining whether or not personal information that may lead to identification of an individual is included.
If the result of the determination is affirmative, it indicates a transition source added when transitioning to the second website after removing the personal information from the identifier of the first website A first creation step of creating information as reference source information;
A second creation step of creating an identifier of the first website as the reference source information as it is when the result of the determination is negative;
A transition step of adding the reference source information and issuing an access request to the second website as a transition destination.   The personal information protection method according to claim 1, wherein the communication terminal device is a mobile communication terminal device.   The personal information protection method according to claim 2, wherein the personal information includes current position information of the mobile communication terminal device. When the transition to the second website associated with the first website is selected while browsing the first website, the identifier of the first website is transmitted without the user's recognition. Identifier judging means for judging whether or not personal information that may lead to identification of an individual is included.
If the result of the determination is affirmative, information indicating a transition source that is added when transitioning to the second website after removing the personal information from the identifier of the first website First creating means for creating as reference source information;
A second creation means for creating the identifier as it is as the reference source information when the result of the determination is negative;
A transition means that adds the reference source information and issues an access request to the second website as a transition destination.   5. The communication terminal apparatus according to claim 4, further comprising wireless communication means for performing wireless communication with a base station of a mobile communication network. It further comprises position measuring means for measuring the current position,
The communication terminal apparatus according to claim 5, wherein the personal information includes current position information measured by the position measuring unit.

Images