JP2012198906A - Information processor, information processing method and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To improve security by determining whether or not an extension of data is disguised according to a transmission source of the data.SOLUTION: Transmission rule information in which transmission source information specifying a transmission source of a file and setting information setting whether to permit or inhibit transmission of the file from the transmission source when the extension of the file is disguised are associated with each other is stored. For the file transmitted from a data transmitter, whether or not a file format determined from data in the file and a file format determined from the extension of the file name of the file are the same is determined, and when determined that the file formats are different, whether to permit or inhibit the transmission of the file is controlled according to the transmission rule information corresponding to the transmission source of the file.

Description

  The present invention relates to an information processing apparatus, an information processing method, and a program, and more particularly to a communication data control technique.

  A web mail service that operates on a web server and enables browsing and transmission / reception of e-mails and a document management service for editing document files are provided. Conventionally, software has been executed and used on a user's computer. However, in recent years, a form in which a user uses a service by executing software on a service provider's computer is increasing. Since such services are often provided on a web server and often perform file transmission / reception, file transmission / reception control by web access has become important.

  The service provided on the website has been often used by an individual user until now, but in recent years, it has been increasingly used by companies and the like. However, when such a service is used by a company or the like, leakage of confidential information becomes a problem. For example, there may be a problem that an employee transmits a highly confidential file there using a service of a site registered by an individual who is not originally permitted to use. In order to deal with such a problem, it is necessary to perform transmission control such as prohibiting transmission when it is determined that there is a problem by limiting services available from within the company or inspecting a file to be transmitted.

  Also, from the perspective of information leakage, file transmission control is important, but on the other hand, there are problems such as downloading files that are not essential for reception and downloading dangerous files that are infected with viruses. is there. For example, there may be problems such as downloading a file on a site that does not require access for business, or downloading a file with high risk without knowing it. In order to deal with such problems, it is necessary to perform reception control such as limiting the sites that can receive files and limiting the file formats that can be received.

  As a technique for permitting access only to a specific site, for example, Patent Document 1 is disclosed. According to such a technique, it is possible to perform control such that access is permitted only to a specific site.

As a technique for determining the format of the data file, for example, Patent Document 2 is disclosed. According to such a technique, it is possible to analyze the characteristics of the data file and estimate the format of the data file from the result.
JP 2004-348202 A JP 2001-101049 A

  However, in order to control file transmission / reception by web access, it is important to correctly determine the file format of the file to be transmitted / received. For example, if the file format is wrongly determined, text information cannot be correctly extracted from the file, and there is a problem that transmission / reception of a file that is originally prohibited from transmission / reception is permitted.

  Further, when it is desired to limit the file formats that can be transmitted / received, and when the file format is erroneously determined, there arises a problem that transmission / reception of a file that is originally prohibited from being transmitted / received is permitted.

  In order to determine the file format of the file transmitted by the HTTP request, the Content-Type attached to the HTTP request header by an HTTP client such as a browser can be used.

  However, since the HTTP client normally determines the Content-Type from the extension of the file, it differs from the original file format if the file has an incorrect extension or has been changed intentionally. Content-Type is given. In addition, since Content-Type is assigned by the HTTP client, there is a problem that it can be changed by the sender and cannot be trusted in the first place.

  For this reason, when operating a transmission control system in which only document data in a predetermined file format is permitted to be transmitted to a predetermined website and permitted to be received from a predetermined website, only control based on Content-Type is malicious. A user with a file name changes the extension of the file name to an extension of a file format that is permitted to transmit / receive, so that it is determined as if the file is permitted to transmit / receive, There is a risk of transmission / reception.

  When the web server receives a request for a file stored in the public directory, it determines Content-Type from the extension of the file and assigns it to the HTTP response header. Therefore, if a file with an incorrect extension or intentionally changed is uploaded to the public directory, a Content-Type different from the original file format is assigned to the HTTP response header. End up.

  Also, when a file is downloaded via a program such as CGI, the CGI program generates a Content-Type, and therefore the CGI program assigns a default Content-Type to any file format. Causes a problem that Content-Type different from the original file format is added to the HTTP response header.

  As described above, for example, when operating a transmission control system in which only document data in a predetermined file format is permitted to be received from a predetermined website, only a control based on Content-Type allows a malicious user to By changing the extension of the file name to the extension of the file format for which reception is permitted, there is a possibility that the file will be judged and transmitted as if it was permitted to be received. That is, there is a risk that harmful data such as viruses may be received by mistake.

  An object of the present invention is to provide a mechanism for improving security by determining whether an extension of data is camouflaged according to a data transmission source.

  The present invention is an information processing apparatus that is capable of communicating with a data transmission device that transmits data, and that controls transmission of the data. The information processing device includes transmission source information that identifies a transmission source of a file, and fake extension of the file. Storage means for storing transmission rule information associated with setting information set to permit or prohibit transmission of the file from the transmission source when there is, and the data transmitted from the data transmission device A camouflage determining means for determining whether the file format determined from the data in the file and the file format determined from the file name extension of the file are the same for the file; When it is determined that the file format is different, the transmission of the file is permitted or prohibited according to the transmission rule information corresponding to the transmission source of the file. Characterized in that it comprises a transmission control means for controlling.

  The present invention is an information processing method in an information processing apparatus that is communicable with a data transmission apparatus that transmits data and performs transmission control of the data, wherein the storage means includes transmission source information that identifies the transmission source of the file, and A storage step of storing transmission rule information in association with setting information set to allow or prohibit transmission of the file from the transmission source when the file extension is camouflaged; Whether the file format determined from the data in the file and the file format determined from the extension of the file name of the file are the same for the file transmitted from the data transmission device by the determination unit If it is determined that the file format is different in the camouflage determination process, the camouflage determination process for determining the According to the transmission rule information, characterized by comprising a transmission control step of controlling whether to permit or inhibit transmission of the file.

  The present invention is a program that can communicate with a data transmission device that transmits data, and that functions as an information processing device that performs transmission control of the data. The information processing device is a transmission source that identifies a transmission source of a file. Storage means for storing transmission rule information that associates information with setting information that is set to allow or prohibit transmission of the file from the transmission source when the extension of the file is impersonated; Determining whether the file format determined from the data in the file and the file format determined from the file name extension of the file are the same for the file transmitted from the data transmission device When it is determined that the file format is different between the camouflage determination unit and the camouflage determination unit, the transmission rule information corresponding to the transmission source of the file I, characterized in that to function as a transmission control means for controlling whether to permit or inhibit transmission of the file.

  According to the present invention, it is possible to improve security by determining whether or not a data extension is camouflaged according to a data transmission source.

Further, by determining whether or not the data extension is camouflaged according to the data transmission source and / or transmission destination, it is possible to improve security and prevent information leakage.

It is a figure which shows the structure of the system which concerns on one Embodiment of this invention. It is a figure which shows the hardware constitutions of information processing apparatus. 2 is a diagram illustrating a functional configuration of a proxy server 101. FIG. It is a flowchart which shows an example of the 1st control processing in this invention. It is a flowchart which shows an example of the 2nd control processing in this invention. It is a figure which shows an example of a rule setting screen. It is a figure which shows an example of a rule details screen. It is a figure which shows an example of a rule movement screen. It is a figure which shows an example of rule DB102. It is a flowchart which shows an example of the 3rd control processing in this invention. It is a flowchart which shows the detailed process of step S1002 of the 3rd control process shown in FIG. It is a figure which shows an example of URLDB103. It is a flowchart which shows the detailed process of step S1003 of the 3rd control process shown in FIG. It is a figure which shows an example of the correspondence table of a file format and an extension. It is a flowchart which shows the detailed process of step S1004 of the 3rd control process shown in FIG. It is a flowchart which shows the detailed process of step S1503 shown in FIG. It is an example of a correspondence table between a file format 1701 and an extension 1702 that is normally given to the file format. It is an example of a correspondence table of a file format 1801 and a program (text extraction program) 1802 for acquiring (extracting) text data from a file of the file format. It is a flowchart which shows the detailed process of step S1008 shown in FIG. It is a flowchart which shows the detailed process of step S1009 shown in FIG. FIG. 21 is an example of the communication management table 2100.

Hereinafter, the present invention will be described in detail according to preferred embodiments with reference to the accompanying drawings.
FIG. 1 is a diagram showing a configuration of a system according to an embodiment of the present invention.

As shown in FIG. 1, the system according to this embodiment includes a proxy server 101, a rule DB 102, a URL DB 103, client PCs (client terminals) 104-1 to 104-3 (hereinafter collectively referred to as “client PC 104”), a LAN (Local area network) 105, wide area network 106 (hereinafter referred to as network), web servers (data transmission devices) 107-1 to 107-3 (hereinafter collectively referred to as "web server 107"). Hereinafter, the system according to the present embodiment is configured. These will be described.
The proxy server 101 is a device that functions as an information processing device of the present invention, and relays data communication between the client PC 104 and the web server 107.

  Further, in the storage unit such as the HDD 204 of the proxy server 101, a rule used for control for permitting / prohibiting communication from the client PC 104 to the web server 107 is registered in the rule DB 102, the WEB site, and the WEB page. A URL DB 103 in which URLs are registered for each category of information is provided.

  That is, the URL DB 103 is a database in which URLs of WEB sites and WEB pages are registered for each category of the URL. As shown in FIG. 12, the URL of the WEB site and WEB page is registered in the URL DB 103 for each category classified (classified) from the contents and themes of information posted on the WEB site and WEB page. .

  Further, the proxy server 101 further has a web server function for providing a setting page for registering, modifying, etc., information set in the rule DB 102. Note that the rule DB 102 and the URL DB 103 may be provided in the proxy server 101 or may be mounted in another computer.

  The URL DB 103 is a database in which URLs representing resources of the web server 107 are registered for each category, and usually purchased from a URL DB creator. The URL DB 103 may be updated by an update program of the proxy server 101 or may be updated by other means.

  The client PC 104 is a terminal device used by a user who uses a service provided by the web server 107.

  A LAN (Local Area Network) 105 connects the proxy server 101 and the client PC 104 to each other so that data communication is possible. The wide area network 106 indicates a wide area network such as the Internet.

  The web server 107 represents a web server that provides various services.

  FIG. 2 is a block diagram illustrating a hardware configuration of the proxy server 101.

  In FIG. 2, reference numeral 201 denotes a CPU that controls the proxy server 101 as a whole using programs and data stored in a RAM 202 and a ROM 203, and executes each process to be described later performed by the proxy server 101.

  A RAM 202 temporarily stores programs and data loaded from the HDD (hard disk drive) 204 and the recording medium drive 206 and programs and data received from other devices via the network I / F (interface) 205. Various areas such as an area to be used and a work area used when the CPU 201 executes various processes can be provided as appropriate.

  A ROM 203 stores setting data of the proxy server 101, a boot program, and the like.

  Reference numeral 204 denotes an HDD, which stores an OS (Operating System) and programs and data for causing the CPU 201 to execute processes described later performed by the proxy server 101, and these are loaded into the RAM 202 as appropriate under the control of the CPU 201. The CPU 201 is a processing target.

  Reference numeral 205 denotes a network I / F for connecting the proxy server 101 to the LAN 105 and the wide area network 106. The proxy server 101 is connected to the LAN 105 and the wide area network 106 via the network I / F 205. Perform data communication with the device.

  Reference numeral 206 denotes a recording medium drive that reads programs and data recorded on a recording medium such as a CD-ROM, CD-R / RW, DVD-ROM, DVD-R / RW, and DVD-RAM, and outputs them to the RAM 202 and HDD 204. To do. A part of the data held by the HDD 204 may be stored in these recording media.

Reference numeral 207 denotes a keyboard, and 208 denotes a pointing device configured by a mouse, a joystick, or the like, and functions as an input unit that inputs various instructions to the CPU 201 when operated by an operator of the proxy server 101.
A display unit 209 includes a CRT, a liquid crystal screen, and the like, and displays a processing result by the CPU 201 as an image or a character.

  An external device connection I / F 210 is a port for connecting peripheral devices to the proxy server 101. The proxy server 101 performs data communication with peripheral devices via the external device connection I / F 210. The external device connection I / F 210 is configured by USB, IEEE 1394, or the like, and usually has a plurality of external device connection I / Fs 210. The connection form with the peripheral device may be wired or wireless.

  Reference numeral 211 denotes a bus that connects the above-described units 201 to 210.

  The hardware configuration of the proxy server 101 will be described as having the configuration shown in FIG. 2, but is not necessarily limited to having the configuration shown in FIG. 2, and various processes described below performed by the proxy server 101 are executed. If possible, the configuration of the proxy server 101 may be changed as appropriate.

  Also, the hardware configuration of the client PC 104 and the web server 107 is generally the same as that shown in FIG. 2 because a general computer is applied thereto.

  FIG. 3 is a diagram illustrating a functional configuration of the proxy server 101.

  As shown in FIG. 3, the proxy server 101 includes a rule receiving unit 301, a rule recording unit 302, a communication relay control unit 303, and a communication permission / prohibition response transmission unit 304.

  The rule receiving unit 301 receives an input of a rule for determining permission / prohibition of communication performed between the client PC 104 and the web server 107. The rule recording unit 302 registers the rule received by the rule receiving unit 301 (details will be described later with reference to FIG. 9) in the rule DB.

  The URL DB 103 is a database in which URLs representing resources of the web server 107 are collected for each category, and is used to determine which category the URL requested from the client PC 104 belongs to.

  The communication relay control unit 303 performs relay control of communication performed between the client PC 104 and the web server 107. That is, the request transmitted from the client PC 104 and the response returned from the web server 107 are analyzed, and the detailed information included in the request and the URL representing the resource of the web server 107 that is the transmission destination of the request are compared with the URL DB 103. It is determined whether the category information conforms to the rule recorded in the rule DB 102, and communication relay control is performed based on the result.

  The communication permission / prohibition response transmission unit 304 relays the response from the web server 107 to the client PC 103 that transmitted the request when the communication relay control unit 303 permits communication, or when the communication relay control unit 303 prohibits communication, Notification of rejection is made.

  Note that the HDD 204 of the proxy server 101 stores a program for controlling the proxy server as the rule receiving unit 301, the rule recording unit 302, the communication relay control unit 303, and the communication permission / prohibition response transmission unit 304. The CPUs 201 of the proxy server 101 load these programs into the RAM 202 and execute them, so that the above means 301 to 304 are realized.

  Next, processing executed by the CPU 201 of the proxy server 101 will be described with reference to a flowchart.

  FIG. 4 is a flowchart showing an example of the first control process in the present invention, and is a flowchart showing the overall process executed by the CPU 201 of the proxy server 101.

  Note that the processing of this flowchart is realized by the CPU 201 of the proxy server 101 loading a program stored in the HDD 204 into the RAM 202 and executing it.

First, the CPU 201 of the proxy server 101 determines whether a rule setting request transmitted from the client PC 104 has been received from the client PC 104 (step S401). If the CPU 201 of the proxy server 101 determines that a rule setting request has been received (YES in step S401), it performs rule setting processing (step S402).
Detailed processing of the rule setting processing in step S402 will be described later with reference to FIG.
Next, when the rule setting process in step S402 ends, the CPU 201 of the proxy server 101 moves the process to step S403.

  If the CPU 201 of the proxy server 101 determines in step S401 that a rule setting request has not been received from the client PC 104 (NO), the process proceeds to step S403.

  The CPU 201 of the proxy server 101 determines whether a communication relay request transmitted from the client PC 104 has been received from the client PC 104 (step S403).

If the CPU 201 of the proxy server 101 determines that a communication relay request has been received from the client PC 104 (YES in step S403), it performs a communication relay control process (step S404).
Detailed processing of the communication relay control processing in step S404 will be described later with reference to FIG.
Then, when the communication relay control process in step S404 ends, the CPU 201 of the proxy server 101 shifts the process to step S405.

  If the CPU 201 of the proxy server 101 determines in step S403 that a communication relay request has not been received from the client PC 104 (NO), the process proceeds to step S405.

  In step S405, the CPU 201 of the proxy server 101 determines whether a system termination instruction has been received from the client PC 104. If it is determined that an end instruction has not been received (NO in step S405), the process returns to step S401.

  On the other hand, if the CPU 201 of the proxy server 101 determines that a system termination instruction has been received from the client PC 104 (YES in step S405), the process is terminated.

  In other words, the CPU 201 of the proxy server 101 repeats the processes of S401 to S404 until receiving an instruction to end the system from the client PC 104 (until YES is determined in step S405).

  Next, the detailed process of the rule setting process shown in step S402 of FIG. 4 will be described using FIG.

  FIG. 5 is a flowchart showing an example of the second control process in the present invention, and is a flowchart showing the detailed process of the rule setting process in step S402 of FIG. That is, this process is performed by the CPU 201 of the proxy server 101.

  When this processing is performed, the CPU 201 of the proxy server 101 loads a program for causing the proxy server 101 to function as the rule receiving unit 301 and the rule recording unit 302 from the HDD 204 to the RAM 202, and based on the control of the program. The following processing is performed.

  First, the CPU 201 of the proxy server 101 generates and transmits display information for displaying the rule setting screen 600 shown in FIG. 6 to the client PC 104 that has transmitted the rule setting request (step S501).

  The CPU 201 of the client PC 104 that has received the display information displays the rule setting screen 600 on the display device (display unit) of the client PC 104 according to the received display information.

  The display information of the rule setting screen 600 transmitted in step S501 is generated using the acquired data by acquiring the request rule table 9100 and the response rule table 9200 stored in the rule DB 102 shown in FIG.

That is, in the example of FIG. 6, among the data of each record of the request rule table 9100 and the response rule table 9200, the data of ID 9101, rule name 9102, operation 9111, ID 9201, rule name 9202, and operation 9211 are respectively ID611, Display information is generated to be displayed in the rule name 612, the operation 613, the ID 621, the rule name 622, and the operation 623.
Here, the configuration of the rule setting screen 600 will be described with reference to FIG.

  FIG. 6 is a diagram illustrating an example of the rule setting screen. As shown in FIG. 6, the rule setting screen 600 is displayed on the display unit for each rule type (request rule 610, response rule 620).

  In FIG. 6, reference numerals 611 and 621 denote display fields for request rule and response rule IDs, respectively, which display IDs uniquely indicating the request rule and the response rule.

  The request rule and the response rule are applied in order from the rule of the higher level record. For example, for a request rule, a rule with “ID” of 2 is applied next to a rule with “ID” of 1. In this way, the rules are applied in order from the rule of the upper record.

  Reference numerals 612 and 622 are display fields for the rule names of the request rule and the response rule, respectively. The rule names set in the respective rules of the request rule and the response rule are displayed.

  Reference numerals 613 and 623 are display columns for the operation of the request rule and the response rule, respectively. In other words, 613 displays a setting for permitting or prohibiting relaying of request data conforming to the request rule. Also, 623 displays a setting of whether to permit or prohibit relaying of response data that conforms to the response rule.

  Reference numerals 614 and 624 denote edit buttons for accepting edits of request rules and response rules, respectively.

  When a request rule is to be edited, the request rule can be edited by pressing the edit button 614 of the record of the request rule to be edited.

When a response rule is to be edited, the response rule can be edited by pressing an edit button 624 for the record of the response rule to be edited.
Reference numerals 615 and 625 denote delete buttons for accepting deletion of request rules and response rules, respectively.

  When deleting a request rule, the request rule can be deleted by pressing a delete button 615 of the record of the request rule to be deleted.

  When a response rule is to be deleted, the response rule can be deleted by pressing a delete button 625 of the record of the response rule to be deleted.

  Reference numerals 616 and 616 denote buttons for changing the order in which the request rule and the response rule are applied (that is, the arrangement order of the 610/620 records in which the rule records are displayed).

  That is, to change the order in which the request rules are applied, by pressing the move button 616, the request rule move screen is displayed on the display unit of the client PC 104, and the request rule is applied using the move screen. You can change the order.

  If the order of applying the response rules is to be changed, the response rule moving screen is displayed on the display unit of the client PC 104 by pressing the move button 626, and the response rules are applied using the moving screen. You can change the order.

  Reference numerals 617 and 627 denote a button for adding a request rule and a button for adding a response rule, respectively.

Each rule can be added by pressing an add button 617 to add a request rule, or an add button 627 to add a response rule.
Returning to the flowchart of FIG.

  The CPU 201 of the client PC 104 receives the display information transmitted in step S501, and displays the rule setting screen 600 on the display unit according to the received display information.

  When the administrator presses any one of the edit button 614, the delete button 615, the move button 616, the add button 617, the edit button 624, the delete button 625, the move button 626, and the add button 627, the client PC 104 The CPU 201 transmits a request corresponding to the pressed button to the proxy server 101.

  Specifically, when the administrator presses one of the edit button 614 and the add button 617, the CPU 201 of the client PC 104 transmits a request rule detailed setting request to the proxy server 101.

  Also, when the move button 616 is pressed by the administrator, the CPU 201 of the client PC 104 transmits a request rule move request to the proxy server 101.

  When the administrator presses any one of the edit button 624 and the add button 627, the CPU 201 of the client PC 104 transmits a response rule detailed setting request to the proxy server 101.

  When the administrator presses the move button 626, the CPU 201 of the client PC 104 transmits a response rule move request to the proxy server 101.

  When the administrator presses any one of the delete button 615 and the delete button 625, the CPU 201 of the client PC 104 deletes the record rule of the pressed delete button from the rule DB 102. Is transmitted to the proxy server 101. Then, the CPU 201 of the proxy server 101 that has received the deletion request deletes the rule requested to be deleted from the rule DB 102.

  Next, in step S502, the CPU 201 of the proxy server 101 determines whether a request rule detail setting request from the client PC 104 has been received. The detailed setting request here is issued when the add button 617 or the edit button 614 of the rule setting screen 600 displayed on the display of the client PC is pressed.

  Specifically, the CPU 201 of the client PC 104 transmits a detailed request request for a new request rule when the add button 617 is pressed by the administrator, and when the edit button 614 is pressed by the administrator. Transmits a request rule detail setting request including a request rule change request corresponding to the record of the pressed edit button 614 already registered in the request rule table 9100.

  If the CPU 201 of the proxy server 101 determines that a request rule detail setting request has been received from the client PC 104 (YES in step S502), the display information for displaying the request rule detail screen 700 shown in FIG. Is transmitted to the client PC 104 that has transmitted the detailed setting request (step S503).

  On the other hand, if the CPU 201 of the proxy server 101 determines that a request rule detail setting request has not been received from the client PC 104 (NO in step S502), the process proceeds to step S504.

  If the CPU 201 of the proxy server 101 determines that the administrator has pressed the edit button 614 and received a request rule detail setting request, which is a request rule change request, from the client PC 104, the pressed edit A request rule whose rule ID of the record of the button 614 matches is acquired from the request rule table 9100, display information of the request rule details screen 700 in which the acquired request rule is set is generated, and transmitted to the client PC 104.

Further, the CPU 201 of the proxy server 101 receives an input of a new request rule when the administrator presses the add button 617 and determines that a detailed request request for a new request rule has been received from the client PC 104. Display information of the request rule detail screen 700 (FIG. 7) not selected by the administrator is generated and transmitted to the client PC 104.
The request rule details screen 700 in FIG. 7 will be described below.

  In FIG. 7, reference numeral 701 denotes a display field indicating the type of rule, which is displayed as a request rule in order to indicate that it is a request rule details screen. In the response rule details screen, the response rule is displayed in this display field.

  In FIG. 7, reference numeral 702 denotes a request rule ID display field, which displays an ID uniquely indicating the request rule. This ID may be automatically given or set based on an input instruction from the user input unit (duplication within the request rule is not allowed). Reference numeral 703 denotes a rule name input field that accepts input of the request rule name.

  Reference numeral 704 denotes a radio button for selecting a URL, and reference numeral 706 denotes a radio button for selecting a category of a WEB site or a WEB page specified by the URL.

In the URL condition, it is possible to select whether to specify a specific URL (select the URL radio button 704) or specify a category (select the category radio button 706). When the URL radio button 704 is selected, input to the URL input field 705 can be performed. When the category radio button 706 is selected, a category can be selected using the category selection select box 707.
In the URL input field 705, it is possible to specify a plurality of URLs separated by a delimiter, and to specify a plurality of categories simultaneously in the category selection box 707.
In this embodiment, the URL condition is set by either URL designation or category designation. However, it is of course possible to set both at the same time.

  The CPU 201 of the proxy server 101 determines that the URL condition matches when the URL of the transmission destination of the request from the client PC 104 matches these conditions.

  Reference numeral 708 denotes a select box for selecting a file format of a file included in the request data, and a plurality of file formats can be selected at the same time.

  Reference numeral 709 denotes an input field for the file size of the file included in the request data.

  Reference numeral 710 denotes a radio button for selecting whether the file size of the file included in the request data is greater than or less than the size specified in 709. If the file size is larger than the size specified in 709, if you want to match the rule, select “more”. If you want the file size to be less than the size specified in 709, select “less” if you want to match the rule. Is specified.

  Reference numeral 711 denotes a radio button for designating whether or not the file format of the file included in the request data matches the extension assigned to the file. When the file format and the extension match, the user selects “Yes” to match the rule, and when the file format does not match the extension, the user selects “No”.

  Reference numeral 712 denotes a keyword condition input field. A keyword to be matched with a file included in the request data and text information in a field other than the file included in the request data is input.

  It is possible to input a plurality of keywords in the keyword input field, and the combination condition (AND condition: set with “&”, for example, OR condition: set with “|”, for example, combination priority setting: for example parentheses It is also possible to set “()”.

  When the above conditions are met (URL condition, file condition, and keyword condition are combined with AND condition), the operation radio button 713 determines whether relay of the request transmitted from the client PC 104 is set to permitted / prohibited. You can select and set.

In addition, an area for inputting a URL condition, file condition, and keyword condition combining method is further provided in the request rule detail screen 700. When the combining condition is input in the area and the combining condition is satisfied, the request is relayed. Of course, it is possible to set to allow / prohibit.
Reference numeral 714 denotes an input field for inputting a user name who uses the client PC 104.

  By setting the user name in the input field 714, under what conditions the relay of the request from the client PC 104 used by the user input in the input field 714 is permitted or prohibited. It becomes possible to set.

  Note that the user name input in the input field 714 in this embodiment will be described as a user name for proxy authentication, but any other information can be used as long as it is information that can be specified by the transmission source terminal or the user operating the terminal. It may be the information.

  When the administrator presses the update button 715, the CPU 201 of the client PC 104 makes a registration request for details (information) of the specified (set) request rule to the proxy server 101.

Further, when the administrator presses the cancel button 716, the CPU 201 of the client PC 104 ends the request rule detail setting process without making a request rule detail (information) registration request.
The above is the description of the request rule details screen 700 shown in FIG.
Returning to the flowchart of FIG.

  In step S <b> 504, the CPU 201 of the proxy server 101 determines whether a request rule movement request has been received from the client PC 104. This request is issued when the move button 616 of the rule setting screen 600 displayed on the display of the client PC is pressed.

  If the CPU 201 of the proxy server 101 determines that a request rule movement request has been received (YES in step S504), it generates display information for displaying the request rule movement screen 800 shown in FIG. The rule move request is transmitted to the client PC 104 that has transmitted the request (step S505).

On the other hand, if the CPU 201 of the proxy server 101 determines that it has not received a request rule movement request (NO in step S504), the process proceeds to step S506.
Here, the request rule movement screen 800 will be described.

  FIG. 8 is a diagram illustrating an example of the request rule movement screen 800.

Whether the data included in the request corresponds to the request rule is determined according to the rule arrangement order of each record of the request rule 610 on the rule setting screen 600. That is, the rules are applied in order from the rule of the record above the request rule 610. Thus, in this embodiment, the order in which request rules are arranged is the order in which rules are applied.
If there is a request rule that matches the condition, the operation set in the request rule is performed.
Therefore, it is not determined whether the request rule falls under the application order lower than the matched request rule.

The request rule moving screen 800 shown in FIG. 8 can be used to change the order in which request rules are arranged, and the order in which request rules are applied can be changed.

  In FIG. 8, reference numeral 801 denotes a display field indicating the type of rule. In FIG. 8, a request rule is displayed to indicate that it is a request rule moving screen. In the response rule movement screen, the response rule is displayed in this display field.

  Reference numeral 802 denotes a display column for line numbers of request rules to be moved. In other words, reference numeral 802 denotes a display field for displaying which line of the request rule is to be moved.

  Reference numeral 803 denotes an input column for inputting a request rule to be moved to which line the request rule is to be moved above or below.

Reference numeral 804 denotes a select box for selecting whether to move the request rule to be moved to the upper side or the lower side of the request rule with the line number specified in 803.
The user selects “up” if he / she wants to move to the upper side of the request rule of the line number designated in 803, and selects “down” if he / she wants to move it to the lower side.

When the user presses the confirm button 805, the CPU 201 of the client PC 104 sends a request for moving the set request rule to the proxy server 101. In addition, when the cancel button 806 is pressed by the user, the CPU 201 of the client PC 104 ends the process without moving the request rule.
Returning to the flowchart of FIG.

  Next, the CPU 201 of the proxy server 101 determines whether or not a detailed response rule setting request has been received from the client PC 104 (step S506).

  This detailed setting request is issued when the add button 627 or the edit button 624 of the rule setting screen 600 displayed on the display of the client PC 104 is pressed.

  When the add button 627 is pressed by the administrator, the CPU 201 of the client PC 104 transmits a new response rule detail setting request, and when the edit button 624 is pressed by the administrator, the response rule table has already been sent. A detailed response rule setting request including a response rule change request corresponding to the record of the pressed edit button 624 registered in 9200 is transmitted.

  If the CPU 201 of the proxy server 101 determines that a response rule detail setting request has been received from the client PC 104 (YES in step S506), the CPU 201 generates display information for displaying the response rule detail screen. The setting request is transmitted to the client PC 104 that has transmitted the request (step S507).

  On the other hand, if the CPU 201 of the proxy server 101 determines that a response rule detail setting request has not been received from the client PC 104 (NO in step S506), the process proceeds to step S508.

Here, the response rule detail screen is a screen having the same setting items as the request rule detail screen 700 shown in FIG. The response rule detail screen is different from the quest rule detail screen 700 in that “response rule” is displayed in the “type” display field 701 of the request rule detail screen 700.
The processes in step S506 and step S507 will be described in detail below.

  When the CPU 201 of the proxy server 101 determines that the edit button 624 has been pressed by the administrator and a response rule detail setting request including a response rule change request has been received from the client PC 104, the CPU 201 of the proxy server 101 A response rule having the same record rule ID is acquired from the response rule table 9200, display information of a response rule detail screen in which the acquired response rule is set is generated, and transmitted to the client PC 104.

The CPU 201 of the proxy server 101 receives an input of a new response rule when the administrator presses the add button 627 and determines that a detailed setting request for a new response rule has been received from the client PC 104. Display information of the response rule detail screen not selected by the administrator is generated and transmitted to the client PC 104.
Next, the response rule details screen will be described using the request rule details screen of FIG.
In the response rule detail screen, “response rule” is displayed in 701, and an ID uniquely indicating the response rule is displayed in 702.

  Reference numeral 704 denotes a radio button for selecting a URL, and reference numeral 706 denotes a radio button for selecting a category of a WEB site or a WEB page specified by the URL.

  In the URL condition, it is possible to select whether to specify a specific URL (select a URL radio button 704) or specify a category (select a category radio button 706).

When the URL radio button 704 is selected, input to the URL input field 705 can be performed. When the category radio button 706 is selected, a category can be selected using the category selection select box 707.
In the URL input field 705, it is possible to specify a plurality of URLs separated by a delimiter, and to specify a plurality of categories simultaneously in the category selection box 707.
In this embodiment, the URL condition is set by either URL designation or category designation. However, it is of course possible to set both at the same time.

  When the URL of the response data transmission source (web server 107) matches these conditions, the CPU 201 of the proxy server 101 determines that the URL conditions match.

  Reference numeral 708 denotes a select box for selecting a file format of a file included in the response data, and a plurality of file formats can be selected at the same time.

  Reference numeral 709 denotes an input field for the file size of the file included in the response data.

  Reference numeral 710 denotes a radio button for selecting whether the file size of the file included in the response data is greater than or less than the size specified in 709. If the file size is larger than the size specified in 709, if you want to match the rule, select “more”. If you want the file size to be less than the size specified in 709, select “less” if you want to match the rule. Is specified.

  Reference numeral 711 denotes a radio button for designating whether or not the file format of the file included in the response data matches the extension assigned to the file. When the file format and the extension match, the user selects “Yes” to match the rule, and when the file format does not match the extension, the user selects “No”.

  Reference numeral 712 denotes a keyword condition input field. A keyword to be matched with a file included in the response data and text information in a field other than the file included in the response data is input.

  It is possible to input a plurality of keywords in the keyword input field, and the combination condition (AND condition: set with “&”, for example, OR condition: set with “|”, for example, combination priority setting: for example parentheses It is also possible to set “()”.

  If the above conditions are met (the URL condition, file condition, and keyword condition are combined with an AND condition), whether to set the relay of the response data transmitted from the web server 107 to either permitted / prohibited is an operation radio. A button 713 can be selected and set.

In addition, an area for inputting the URL condition, file condition, and keyword condition combining method is further provided in the response rule detail screen 700. When the combining condition is input in the area and the combining condition is satisfied, the request Of course, it may be set to permit / prohibit relaying.
Reference numeral 714 denotes an input field for inputting a user name who uses the client PC 104.
In other words, reference numeral 714 denotes an input field for inputting a transmission destination of response data transmitted from the web server 107.

  As described above, by setting the user name in the input field 714 of the response rule detail screen 700, the response data transmitted from the web server 107 to the client PC 104 used by the user input in the input field 714 is relayed. It is possible to set under what conditions to permit or prohibit.

  Note that the user name input in the input field 714 in this embodiment will be described as a user name for proxy authentication, but information that can identify the terminal to which the response data is transmitted or the user who operates the terminal Any other information may be used.

  When the update button 715 is pressed by the administrator, the CPU 201 of the client PC 104 makes a registration request for details (information) of the specified (set) response rule to the proxy server 101.

Further, when the administrator presses the cancel button 716, the CPU 201 of the client PC 104 ends the response rule detail setting process without making a response rule detail (information) registration request.
The above is the description of the response rule details screen.
Next, the description returns to FIG.

  Next, in step S508, the CPU 201 of the proxy server 101 determines whether a response rule movement request has been received from the client PC 104. This request is issued when the move button 626 on the rule setting screen 600 displayed on the display of the client PC is pressed.

  If the CPU 201 of the proxy server 101 determines that a response rule movement request has been received (YES in step S508), it generates display information for displaying the response rule movement screen, and issues a response rule movement request. The data is transmitted to the client PC 104 that has transmitted the message (step S509).

  If the CPU 201 of the proxy server 101 determines that a response rule movement request has not been received (NO in step S508), the process proceeds to step S510.

  Note that the response rule movement screen includes the same items as the request rule movement screen 800 shown in FIG. Therefore, the response rule movement screen is a screen in which the response rule is displayed instead of the request rule in the type display field 801 of the request rule movement screen 800.

  Whether the response data transmitted from the web server 107 corresponds to the response rule is determined according to the rule arrangement order of each record of the response rule 620 on the rule setting screen 600.

That is, the rules are applied in order from the rule of the record above the response rule 620. Thus, in the present embodiment, the order in which the response rules are arranged is the order in which the rules are applied.
If there is a response rule that matches the condition, the operation set in the response rule is performed.
Therefore, it is not determined whether the response rule is lower in the application order than the matched response rule.

By using the response rule movement screen shown in FIG. 8, it is possible to change the order in which the response rules are arranged, and the order in which the response rules are applied can be changed.
The response rule movement screen will be described with reference to FIG. 8. In FIG. 8, a response rule is displayed in the display field 801 indicating the type of rule in order to indicate that it is a response rule movement screen.

  Reference numeral 802 denotes a display column for line numbers of response rules to be moved. That is, reference numeral 802 denotes a display field for displaying which line of the response rule is to be moved.

  Reference numeral 803 denotes an input field for inputting the line to which the response rule to be moved is moved above or below the response rule.

Reference numeral 804 denotes a select box for selecting whether to move the response rule to be moved to the upper side or the lower side of the response rule with the line number specified in 803.
The user selects “Up” when moving to the upper side of the response rule of the line number specified in 803, and “Down” when moving the response rule downward.

Then, when the user presses the confirm button 805, the CPU 201 of the client PC 104 sends a request for moving the set response rule to the proxy server 101. Further, when the user presses the cancel button 806, the CPU 201 of the client PC 104 ends the process without moving the response rule.
As described above, the response display rule can also be changed in the rule display order (application order) on the moving screen shown in FIG. 8 similarly to the request rule.

  The CPU 201 of the proxy server 101 receives one of a request rule registration request (request) registration request, a request rule transfer request, a response rule details (information) registration request, a response rule transfer request, and a deletion request from the client PC 104. Is determined (step S510).

  In step S510, the CPU 201 of the proxy server 101 sends a request request detail request (information) registration request, a request rule move request, a response rule detail (information) register request, a response rule move request, and a delete request request. If it is determined that either one has been received (YES in step S510), the process proceeds to step S511.

Next, the CPU 201 of the proxy server 101 receives the request rule details (information) registration request, the request rule movement request, the response rule details (information) registration request, the response rule movement request received from the client PC 104. In accordance with the deletion request, the rule table (9100, 9200) stored in the rule DB 102 is updated (registered / deleted) and stored (step S511).
Here, the rule DB will be described with reference to FIG.

  FIG. 9 is a diagram illustrating an example of a data configuration of the rule DB 102.

  As shown in FIG. 9, in the rule DB 102, a request rule table 9100 storing request rules used for relay control of request data transmitted from the client PC 104 to the web server 107, and the web server 107 for the request. A response rule table 9200 storing response rules used for relay control of response data transmitted to the client PC 104.

  In FIG. 9, 9101 and 9201 are columns for recording the IDs of the request rule and the response rule, respectively, and IDs uniquely indicating the request rule and the response rule are recorded. That is, 9101 and 9201 store the ID value 702 on the request rule detail screen (FIG. 7) and the ID value 702 on the response rule detail screen, respectively.

  The request rule and the response rule are applied in the order recorded in the respective tables (the rule is applied in order from the rule of the upper record). Of course, it is possible to add a column for recording the application order of the request rule and the response rule, and apply each rule according to the order.

  Reference numerals 9102 and 9202 denote columns in which the rule names of the request rule and the response rule are respectively stored, and the rule names of the rules of each record are recorded. That is, 9102 and 9202 store the rule name input to the request rule detail screen 703 and the rule name input to the response rule detail screen 703, respectively.

  9103 and 9203 store data input to the request rule detail screen 714 and data input to the response rule detail screen 714, respectively. That is, in 9103 and 9203, for example, the user name that uses the client PC is stored. Further, not only the user name but also a group name may be input in the input field 714 in FIG. 7. When a group name is input, the group name is stored in 9103 and 9203. Become.

  Reference numerals 9104 and 9204 denote columns for recording URLs of request rules and response rules, respectively. That is, 9104 and 9204 store the URL input in the request rule detail screen 705 and the URL input in the response rule detail screen 705, respectively.

  Reference numerals 9105 and 9205 denote columns for recording categories of request rules and response rules, respectively. That is, 9105 and 9205 store the category selected / input on the request rule detail screen 707 and the category selected / input on the response rule detail screen 707, respectively.

  Reference numerals 9106 and 9206 denote columns for recording the file formats of the request rule and the response rule, respectively, and one or a plurality of file formats can be recorded respectively. That is, 9106 and 9206 store the file format selected / input on the request rule detail screen 708 and the file format selected / input on the response rule detail screen 708, respectively.

  Reference numerals 9107 and 9207 are columns for recording the file sizes of the request rule and the response rule, respectively. That is, 9107 and 9207 store the file size input in the request rule detail screen 709 and the file size input in the response rule detail screen 709, respectively.

  Reference numerals 9108 and 9208 are columns for recording the file size conditions of the request rule and the response rule, respectively. If the file size is larger than the file size recorded in 9107 and 9207, respectively, the rule is matched or recorded in 9107 and 9207. Information on whether to match the rule when the file size is smaller than the specified file size is recorded.

  That is, 9108 and 9208 respectively include the condition selected on the request rule detail screen 710 (“more than” or “less than”) and the condition selected on the response rule detail screen 710 (“above” or not). The condition “below” is stored.

  9109 and 9209 are columns for recording the matching conditions of the file format and the extension of the request rule and the response rule, respectively. The file format and the extension match the file format specified by 9106 and 9206, respectively. Information on whether to match the rule if it does not match is recorded.

  That is, 9109 and 9209 are selected on the request rule detail screen 711 (the condition whether the file format and extension match “Yes” or “No”) and the response rule detail screen 711, respectively. (The condition whether the file format and the extension match “Yes” or “No”) is stored.

  9110 and 9210 are columns for recording the keyword conditions of the request rule and the response rule, respectively.

  That is, 9110 and 9210 store the keyword condition input on the request rule detail screen 712 and the keyword condition input on the response rule detail screen 712, respectively.

  9111 and 9210 are columns for recording the operation of the request rule and the response rule, respectively, and record the operation to be performed by the proxy server 101 that permits or prohibits communication when the request data or the response data is matched.

  That is, 9111 and 9211 store the operation selected on the request rule detail screen 713 and the operation selected on the response rule detail screen 713, respectively.

The above is description of FIG. 9 showing the structural example of rule DB102. Although FIG. 9 shows an example in which request rules and response rules are managed as separate tables, they are recorded in one table and managed by adding a column for identifying which rule. But of course.
Returning to the flowchart of FIG.

  In step S512, the CPU 201 of the proxy server 107 acquires the request rule table 9100 and the response rule table 9200 stored in the rule DB 102 (FIG. 9) updated in step S511, and uses the acquired data. Display information for displaying the rule setting screen 600 is generated, and the display information is transmitted to the client PC 104 (step S512).

  The CPU 201 of the client PC 104 that has received the display information displays the updated rule setting screen 600 on the display unit of the client PC 104 according to the display information.

The CPU 201 of the proxy server 101 receives any request rule details (information) registration request, request rule movement request, response rule details (information) registration request, response rule movement request, or deletion request from the client PC 104. If it is determined that no rule has been received (step S510: NO), the rule setting process is terminated.
The above is an example of the rule setting process performed by the CPU 201 of the proxy server 101.

Hereinafter, the communication relay control process shown in step S404 of FIG. 4 will be described in detail with reference to FIG.

  FIG. 10 is a flowchart showing an example of the third control process in the present invention, and corresponds to the flowchart showing details of the communication relay control process shown in step S404 of FIG. That is, this process is performed by the CPU 201 of the proxy server 101. When performing this processing, the CPU 201 loads a program for causing the proxy server 101 to function as the communication relay control unit 303 and the communication permission / prohibition response transmission unit 304 of FIG. Based on the control, the following processing is performed.

  The CPU 201 of the proxy server 101 constantly monitors packets flowing through the LAN 105. The CPU 201 of the proxy server 101 receives a request (also called request data or request data) from the client PC 104 to the web server 107 installed in the wide area network 106 (step S1001).

  Then, the CPU 201 of the proxy server 101 searches the URL DB 103 (FIG. 12) for the requested URL received in step S1001 (the URL included in the request data), and the category of the WEB site or WEB page of the URL. Is determined (step S1002). Details of the URL category determination process in step S1002 will be described with reference to FIG.

  FIG. 11 is a flowchart showing details of the URL category determination process shown in step S1002 of FIG. That is, this process is performed by the CPU 201 of the proxy server 101.

  The CPU 201 of the proxy server 101 searches the URL DB 103 for the category of the requested URL in step S1101 of FIG. Details of the URL DB 103 will be described with reference to FIG.

FIG. 12 is a diagram illustrating an example of a data configuration of the URL DB 103.
The URL DB 103 is a database in which URLs representing resources of the web server 107 are registered for each category.
In FIG. 12, the URL 1203 is classified into a large category 1201 and a small category 1202 and stored in association with each other.

  In the example of FIG. 12, for example, the category of the content of the resource (WEB page or WEB site) specified by the URL “http://www.example.com/portal/” is “portal site”. Show.

In FIG. 12, the URL DB 103 is described as a data table. However, as long as the category of the resource specified by the URL can be searched, it may be stored in another format.
Returning to the flowchart of FIG.

  In step S1101, the CPU 201 of the proxy server 101 determines whether the requested URL category has been searched from the URL DB 103 (step S1102).

  If it is determined that the URL category has been searched (YES in step S1102), the CPU 201 of the proxy server 101 determines the requested URL category as the searched category, and the process is performed in step S1003. Migrate to

On the other hand, if the CPU 201 of the proxy server 101 determines in step S1102 that there is no corresponding category (NO), it determines that there is no category of the requested URL (step S1104), and the process proceeds to step S1003. To do.
Hereinafter, the description returns to the flowchart of FIG.

The CPU 201 of the proxy server 101 acquires detailed information of the request such as a file or text data from the request data received in step S1001 (step S1003).
Here, the details of the request detailed information acquisition processing shown in step S1003 will be described with reference to FIG.

  FIG. 13 is a flowchart showing details of the request detailed information acquisition processing shown in step S1003 of FIG. That is, this process is performed by the CPU 201 of the proxy server 101.

  The CPU 201 of the proxy server 101 determines whether or not a file is included in the request data received in step S1001 (step S1301). If it is determined that the file is not included in the request data (NO in step S1301), the process proceeds to step S1308.

  On the other hand, if it is determined in step S1301 that the request data includes a file (YES in step S1301), the file size of the file is acquired (step S1302). Here, the file size is obtained by analyzing the file included in the request data and calculating the file size of the file.

  Next, the CPU 201 of the proxy server 101 determines the file format of the file included in the request data. Here, the file format is determined using the magic number included in the file, not the file extension.

  In the file, characteristic information for each file format, usually called a magic number, is stored at the beginning or end of the file.

  For example, when the file format is PDF, the first 5 bytes of the file is% PDF-. Regardless of the Content-Type described in the request header, the original file can be used even if an incorrect extension is given to the file by judging the file format using the magic number, or even if the file is intentionally changed. The format can be determined. When the file included in the request data is compressed, the file format is determined after decompressing the file.

  In determining the file format based on the magic number, it is necessary to know the magic number for each file format in advance. Here, with reference to FIG. 14, the correspondence table between the file format and the magic number used in the determination of the file format by the magic number will be described.

  FIG. 14 is a diagram showing an example of the configuration of a correspondence table between file formats and magic numbers.

In FIG. 14, the file format is recorded in the column of the file format 1401, and the corresponding magic number is recorded in the column of the magic number 1402. However, it is needless to say that the file format may be recorded in a format other than the data table. The correspondence table 1400 between the file format and the magic number may be provided in the proxy server 101 or may be installed in another computer.
Returning to the flowchart of FIG.

  Next, the CPU 201 of the proxy server 101 acquires the extension included in the file name from the file name of the file included in the request data (step S1304).

  Next, the CPU 201 of the proxy server 101 determines whether or not the file format determined in step S1303 matches the extension acquired in step S1304 (step S1305). Here, a process for determining whether or not the file format and the extension match will be described.

  The file format has an extension that is usually given. For example, a file whose file format is PDF (Portable Document Format) is usually given pdf as an extension. Also, rtf is usually given as an extension to a file whose file format is RTF (rich text format). In determining whether the file format and the assigned extension match, an extension correspondence table 1700 to be given for each file format as shown in FIG. 17 is used.

  In the file format and extension correspondence table 1700 shown in FIG. 17, the file format is stored in the file format 1701, and the extension of the file format is stored in the extension 1702.

  When determining whether or not the file format and the extension match, the file format determined in step S1303 is searched from the file format 1701, and the extension (of the same record) corresponding to the searched file format is determined. All are acquired from the column of the extension 1702.

  If the extension attached to the file name acquired in step S1304 is in the acquired extension, it is determined that the file format and the extension match, and if not, it is determined that they do not match. .

If it is determined in step S1305 that the file format and the extension match, it indicates that the extension is not impersonated. If it is determined that the file format and the extension do not match, the extension is impersonated. It shows that there is.
The file format and extension correspondence table 1700 may be provided in the proxy server 101 or may be installed in another computer.
Of course, a maintenance screen (not shown) may be prepared so that the file format and extension stored in the correspondence table 1700 can be changed / registered.
Returning to the flowchart of FIG.

  Next, the CPU 201 of the proxy server 101 determines whether or not the file format of the file determined in step S1303 is a file format of a file including text information (step S1306).

FIG. 18 is a diagram illustrating an example of text information extraction information 1800 stored in association with a file format 1801 including text information and a program 1802 for extracting text information from a file in the file format. The text information extraction information (FIG. 18) is stored in the storage unit of the proxy server 101.
As shown in FIG. 18, the text information extraction information 1800 is associated with a file format and a program suitable for the file format.

  In step S1306, the file format of the file including text information is determined by determining whether or not the file format of the file determined in step S1303 is stored in the file format 1801 of the text information extraction information 1800 (FIG. 18). It is determined whether or not.

  That is, when the file format of the file determined in step S1303 is stored in the file format 1801 of the text information extraction information 1800 (FIG. 18), it is determined that the file format includes the text information. On the other hand, if it is not stored in the file format 1801 of the text information extraction information 1800 (FIG. 18), it is determined that the file format is a file including text information.

  If the CPU 201 of the proxy server 101 determines in step S1306 that the file format of the file including text information is YES (YES), the text extraction stored in the text information extraction information 1800 in association with the file format is extracted. The program is executed, and the text information of the file included in the request data received in step S1001 is extracted and acquired (step S1307).

  As described above, when the file has a format including text information, the text information can be acquired by a method suitable for the file format of the file acquired in step S1303.

  If the CPU 201 of the proxy server 101 determines in step S1306 that the file format is a file that does not include text information (NO), that is, if it is determined that the file format is an image or the like that does not include text information. Shifts the processing to step S1308.

  Next, in step S1308, the CPU 201 of the proxy server 101 acquires text information from field data other than the file included in the request data. Here, the URL of the request destination included in the request data and the user name and password of the user using the client PC 104 included in the request data are acquired. If the user name and password of the user are encrypted, the user name and password are obtained by decryption. In the present embodiment, the user name and password acquired here will be described as information used in proxy authentication, but any information can be used as long as it can identify the user or the client PC 104.

Detailed information (request file, file size, file format, file extension, text information in the file, text information in a field other than the file, URL included in the request data acquired in the processing from step S1301 to step S1308 The user name and password included in the request data are used in the process of determining whether or not the request rule (condition) matches (match) (step S1004).
Hereinafter, the description returns to the flowchart of FIG.

  In step S1004, the CPU 201 of the proxy server 101 applies the request rule registered in the rule DB 102 to the detailed information of the request acquired in step S1003.

  That is, the CPU 201 of the proxy server 101 determines whether the detailed information of the request acquired in step S1003 matches the request rule condition registered in the rule DB 102. Details of the request rule application processing in step S1004 will be described later with reference to FIG.

  Next, in step S1005, the CPU 201 of the proxy server 101 determines whether the operation setting for request data communication (relay) set in the request rule application processing in step S1004 is permitted or prohibited. If it is determined that the operation setting is prohibited (NO in step S1005), the CPU 201 of the proxy server 101 sends a response (communication) indicating that the request is prohibited to the client PC 104 that has transmitted the request. Non-permission information) is transmitted (step S1012), and the process of this flowchart is terminated.

  On the other hand, if the CPU 201 of the proxy server 101 determines that the operation setting for request data communication (relay) operation set in the request rule application processing in step S1004 is permitted operation setting (in step S1005). YES), the process proceeds to step S1006.

  In step S <b> 1006, the CPU 201 of the proxy server 101 transmits the request (request data) transmitted from the client PC 104 to the web server 107.

At this time, the CPU 201 of the proxy server 101 stores a process ID 2101 that is an identifier capable of identifying the communication line that transmitted the request in the communication management table shown in FIG.
FIG. 21 is an example of the communication management table 2100.

  Further, the CPU 201 of the proxy server 101 acquires the client PC user name 2104 obtained from the request data transmitted using the communication line specified by the process ID stored in the communication management table 2100 and the request data. The IP address of the client PC and the URL 2103 of the web server acquired from the request data are stored in association with the process ID 2101 as shown in FIG.

  Next, in step S1007, the CPU 201 of the proxy server 101 stands by until response data from the web server 107 is received. When the response data is received (step S1007), the processing after step S1008 is executed.

  In step S1008, the CPU 201 of the proxy server 101 displays the detailed information of the response received in step S1007 (the file included in the response data, the size of the file, the file format of the file, the extension of the file, and other fields). (Text information, URL of the web server 107, user name of the client PC 104, etc.) are acquired (response detailed information acquisition processing).

  In the detailed response information acquisition process, the file included in the response data, the size of the file, the file format of the file, the extension of the file, and text information included in other fields are acquired from the response data. .

Note that the URL of the web server 107 that transmits the response data and the user name of the client PC 104 that transmits the request data are associated with a process ID that can identify the communication line used when relaying the request data. 21 communication management table 2100. Therefore, the response data received via the communication line is transmitted from the web server 107 having the URL associated with the process ID of the communication line, and is transmitted to the client PC 104 having the user name associated with the process ID. Can be identified. That is, in the response detailed information acquisition process, the communication management table 2100 is referred to, the URL and the user name stored in association with the process ID of the communication line that received the response data are specified, and the URL and the user name are specified. Obtained from the communication management table.
Detailed processing of response detailed information processing will be described with reference to FIG.

  Next, in step S1009, the CPU 201 of the proxy server 101 applies the response rule registered in the rule DB 102 to the detailed information of the response data acquired in step S1008. Details of the response rule application process will be described with reference to FIG.

  Next, in step S1010, the CPU 201 of the proxy server 101 determines whether communication (relay of response data) to the client PC 104 is permitted or prohibited in the response rule application processing in step S1009.

  When the CPU 201 of the proxy server 101 determines that communication (relay) is prohibited (NO in step S1010), the CPU 201 transmits a response to prohibit relaying of response data to the client PC 104 that transmitted the request ( In step S1012), the process of this flowchart is terminated, and the process proceeds to step S405.

  On the other hand, if it is determined in the response rule application process in step S1009 that the response data communication (relay) is permitted (YES in step S1010), the CPU 201 of the proxy server 101 advances the process to step S1011.

  Next, in step S1011, the CPU 201 of the proxy server 101 transmits (relays) the response data received from the web server 107 to the client PC 104 that transmitted the request, ends the processing of this flowchart, and then performs the processing. The process proceeds to S405.

  Below, with reference to FIG. 15, it demonstrates to the detailed process of a request rule application process shown to step S1004 of FIG.

  FIG. 15 is a flowchart showing detailed processing of the request rule application processing shown in step S1004 of FIG. That is, this process is performed by the CPU 201 of the proxy server 101.

  First, the CPU 201 of the proxy server 101 determines whether there is an unapplied request rule in step S1501 of FIG. When there is an unapplied request rule (YES in step S1501), the CPU 201 of the proxy server 101 acquires request rules registered in the request rule table 9100 one by one in the application order (step S1502).

  In step S1503, the CPU 201 of the proxy server 101 determines whether each condition of the request rule acquired in 1502 matches (matches) the request data. Here, with reference to FIG. 16, a detailed process of determining whether or not the request rule matches the request data will be described.

FIG. 16 is a flowchart showing a detailed process of determining whether or not the request rule shown in step S1503 of FIG. 15 matches request data. That is, this process is performed by the CPU 201 of the proxy server 101.

  In step S1601 of FIG. 16, the CPU 201 of the proxy server 101 determines whether a URL is set in the URL 9104 of the request rule acquired from the request rule table 9100. If the CPU 201 of the proxy server 101 determines that the URL has not been set (NO in step S1601), the process proceeds to step S1603. On the other hand, if it is determined that the URL is set (YES in step S1601), the process proceeds to step S1602.

  In step S1602, the CPU 201 of the proxy server 101 determines whether the URL set in the URL 9104 of the request rule matches the URL acquired from the request data in step S1003. If the CPU 201 of the proxy server 101 determines that they do not match (NO in step S1602), the CPU 201 determines that the request data acquired in step S1003 does not match (does not match) the condition of the request rule acquired in step S1503. (Step S1616). On the other hand, if the CPU 201 of the proxy server 101 determines that there is a match (YES in step S1602), the process proceeds to step S1603.

  In step S1603, the CPU 201 of the proxy server 101 determines whether a category is set in the category 9105 of the request rule acquired from the request rule table 9100 in step S1502. If the category is not set (NO in step S1603), the CPU 201 of the proxy server 101 advances the process to step S1605. On the other hand, if a category is set (YES in step S1603), the process proceeds to step S1604.

  In step S1604, the CPU 201 of the proxy server 101 determines whether or not the category set in the request rule acquired in step S1502 is the same as (matches) the category determined in the URL category determination processing in step S1002. judge. If it is determined that they do not match (NO in step S1604), the process proceeds to step S1616. If it is determined that there is no category in the URL category determination process in step S1002, it is determined that the request rule does not match the request data, and the process proceeds to step S1616. On the other hand, if it is determined to match (YES in step S1604), the process proceeds to step S1605.

  In step S1605, the CPU 201 of the proxy server 101 determines whether a file format is set in the file format 9106 of the request rule acquired in step S1502. If it is determined that the file format is not set (NO in step S1605), the process proceeds to step S1607. On the other hand, if it is determined that the file format is set (YES in step S1605), the process proceeds to step S1606.

  In step S1606, the CPU 201 of the proxy server 101 determines whether the file format set in the file format 9106 matches the file format of the file determined in step S1303. If it is determined that they do not match (NO in step S1606), the process proceeds to step S1616.

Further, even when the request data does not include a file, the CPU 201 of the proxy server 101 determines that the request rule does not match the request data, and the process proceeds to step S1616. On the other hand, if it is determined that there is a match (YES in step S1606), the CPU 201 advances the process to step S1607.

  In step S1607, the CPU 201 of the proxy server 101 determines whether the request rule size 9107 and size condition 9108 acquired in step S1502 are set. If it is determined that the size and the size condition are not set (NO in step S1607), the process proceeds to step S1609. On the other hand, if the size and the size condition are set (YES in step S1607), the process proceeds to step S1608.

  In step S1608, the CPU 201 of the proxy server 101 determines whether or not the file size acquired in step S1302 satisfies (matches) the size 9107 and size condition 9108 of the request rule acquired in step S1502. If it is determined that they do not match (NO in step S1608), the process proceeds to step S1616. If the request data does not include a file, it is determined that the request rule does not match the request data, and the process proceeds to step S1616. On the other hand, if it is determined that there is a match (YES in step S1608), the CPU 201 advances the process to step S1609.

  In step S1609, it is determined whether or not a matching condition between the file format and the extension is set in the file format and extension 9109 of the request rule acquired in step S1509. If it is determined that the matching condition between the file format and the extension is not set (NO in step S1609), the process proceeds to step S1611. On the other hand, if it is determined that the matching condition between the file format and the extension is set (YES in step S1609), the process proceeds to step S1610.

  In step S1610, the CPU 201 of the proxy server 101 determines the determination result in step S1305 in FIG. 13 (determination result whether or not the file format and the extension match) and the “file format and the request rule” acquired in step S1502. It is determined whether or not the conditions set in the “extension” 9109 that match / do not match match (match). If it is determined that they do not match (NO in step S1610), the process proceeds to step S1616. If the request data does not include a file, it is determined that the request rule does not match the request data, and the process proceeds to step S1616. On the other hand, if it is determined that they match (YES in step S1610), the CPU 201 advances the process to step S1611.

  In step S1611, the CPU 201 of the proxy server 101 determines whether a keyword is set in the request rule keyword 9110 acquired in step S1502. If it is determined that no keyword is set (NO in step S1611), the process proceeds to step S1613. On the other hand, if a keyword is set (YES in step S1611), the process proceeds to step S1612.

  In step S <b> 1612, the CPU 201 of the proxy server 101 determines whether or not the text information acquired in steps S <b> 1307 and S <b> 1308 satisfies the keyword condition set in the keyword 9110 of the request rule acquired in step S <b> 1502. Determine whether. That is, in step S1612, it is determined whether the keyword set in the request rule keyword 9110 acquired in step S1502 is included in the text information acquired in steps S1307 and S1308. If it is determined that they do not match (NO in step S1612), the process proceeds to step S1616. If the request data does not include text information, the request data is determined not to match, and the process proceeds to step S1616. On the other hand, if it is determined that they match (YES in step S1612), the CPU 201 advances the process to step S1613.

  In step S1613, the CPU 201 of the proxy server 101 determines whether a user name or a group name is set in the user / group 9103 of the request rule acquired in step S1502. If it is determined that the user name or group name is set in the user / group 9103 of the request rule acquired in step S1502 (YES in step S1613), the process proceeds to step S1614. On the other hand, if it is determined that no user name or group name is set for the user / group 9103 (NO in step S1613), the process proceeds to step S1615.

  In step S1614, the CPU 201 of the proxy server 101 determines whether or not the user name or group name acquired from the request data in step S1308 matches the user name or group name of the request rule acquired in step S1502. If it is determined that they match (YES in step S1614), the process proceeds to step S1615.

  In step S1615, the CPU 201 of the proxy server 101 determines that the request rule acquired in step S1502 matches the detailed information of the request data acquired in step S1003 (YES in step S1503), and the process proceeds to step S1504. . That is, in step S1615, it is determined that the detailed information of the request data acquired in step S1003 satisfies (matches) the condition of the request rule acquired in step S1503.

In step S1616, it is determined that the detailed information of the request data acquired in step S1003 does not satisfy (does not match) the request rule condition acquired in step S1503 (NO in step S1503), and the process proceeds to step S1501.
Returning to the flowchart of FIG.

  If the CPU 201 of the proxy server 101 determines in step S1503 that the detailed information of the request data matches the request rule acquired in step S1502 (YES in step S1503), it is set in the operation 9111 of the request rule. A setting for performing the operation (setting whether the operation setting is permitted or prohibited) is performed (step S1504), and the process proceeds to step S1005.

  On the other hand, when it is determined in step S1503 that the detailed information of the request data does not match the request rule (NO in step S1503), the CPU 201 returns the process to step S1501.

If it is determined in step S1501 that there is no unapplied request rule (all request rules have been applied) (NO in step S1501), the CPU 201 is preset as a default operation (all request rules). (When the operation setting is permitted or prohibited) is set (step S1505), and the process proceeds to step S1005.
The above is the detailed description of the request rule application process in step S1004 of FIG.
Next, detailed processing in step S1008 will be described with reference to FIG.
FIG. 19 is a flowchart showing detailed processing of step S1008 shown in FIG.
That is, this process is performed by the CPU 201 of the proxy server 101.

  The CPU 201 of the proxy server 101 determines whether or not a file is included in the response data received in step S1006 (step S1901). If it is determined that no file is included in the response data (NO in step S1901), the process proceeds to step S1908.

  On the other hand, if it is determined in step S1901 that the response data includes a file (YES in step S1901), the file size of the file is acquired (step S1902). Here, the file size is obtained by analyzing the file included in the response data and calculating the file size of the file.

Next, the CPU 201 of the proxy server 101 determines the file format of the file included in the response data. Here, the file format is determined using the magic number included in the file, not the file extension.
In the file, characteristic information for each file format, usually called a magic number, is stored at the beginning or end of the file.

  For example, when the file format is PDF, the first 5 bytes of the file is% PDF-. Regardless of the Content-Type described in the response header, the original file can be used even if an incorrect extension is given to the file by judging the file format using the magic number, or when the file is intentionally changed. The format can be determined. If the file included in the response data is compressed, the file format is determined after decompressing the file.

  In determining the file format based on the magic number, it is necessary to know the magic number for each file format in advance. Here, as in step S1303 for determining the file format of the file included in the request data, the determination is made using the correspondence table (FIG. 14) of the file format used in the determination of the file format by the magic number. That is, the magic number in the file is acquired, and the file format corresponding to the acquired magic number can be specified from the correspondence table between the file format and the magic number in FIG.

  Next, the CPU 201 of the proxy server 101 acquires the extension included in the file name from the file name included in the response data (step S1904).

  Next, the CPU 201 of the proxy server 101 determines whether or not the file format determined in step S1903 matches the extension acquired in step S1904 (step S1905). Here, a process for determining whether or not the file format and the extension match will be described.

  The file format has an extension that is usually given. For example, a file whose file format is PDF (Portable Document Format) is usually given pdf as an extension. Also, rtf is usually given as an extension to a file whose file format is RTF (rich text format). In determining whether the file format and the assigned extension match, an extension correspondence table 1700 to be given for each file format as shown in FIG. 17 is used.

  In the file format and extension correspondence table 1700 shown in FIG. 17, the file format is stored in the file format 1701, and the extension of the file format is stored in the extension 1702.

  When determining whether or not the file format and the extension match, the file format determined in step S1903 is searched from the file format 1701, and the extension (of the same record) corresponding to the searched file format is searched. All are acquired from the column of the extension 1702.

  If the extension attached to the file name acquired in step S1904 is included in the acquired extension, it is determined that the file format and the extension match, and if not, it is determined that they do not match. .

If it is determined in step S1905 that the file format and the extension match, it indicates that the extension is not impersonated. If it is determined that the file format and the extension do not match, the extension is impersonated. It shows that there is.
Returning to the flowchart of FIG.

  Next, the CPU 201 of the proxy server 101 determines whether or not the file format of the file determined in step S1903 is a file format of a file including text information (step S1906).

  In step S1906, the file format of the file including text information is determined by determining whether or not the file format of the file determined in step S1903 is stored in the file format 1801 of the text information extraction information 1800 (FIG. 18). It is determined whether or not.

  That is, when the file format of the file determined in step S1903 is stored in the file format 1801 of the text information extraction information 1800 (FIG. 18), it is determined that the file format includes the text information. On the other hand, if it is not stored in the file format 1801 of the text information extraction information 1800 (FIG. 18), it is determined that the file format is a file including text information.

  If the CPU 201 of the proxy server 101 determines in step S1906 that the file format of the file including text information is YES (YES), the text extraction stored in the text information extraction information 1800 in association with the file format is extracted. The program is executed, and the text information of the file included in the response data received in step S1006 is extracted and acquired (step S1907).

  As described above, when the file has a format including text information, the text information can be acquired by a method suitable for the file format of the file acquired in step S1903. For example, in the case of a spreadsheet application file format, the text information can be acquired by a program suitable for the format.

  If the CPU 201 of the proxy server 101 determines in step S1906 that the file format is a file that does not include text information (NO), that is, if it is determined that the file format is an image or the like that does not include text information. Shifts the processing to step S1908.

  Next, in step S1908, the CPU 201 of the proxy server 101 acquires text information from field data other than the file included in the response data.

  Further, the CPU 201 of the proxy server 101 acquires the URL of the web server 107 to which the response data is transmitted and the user name of the client PC 104 to which the response data is transmitted from the communication management table (FIG. 21). To do.

  Here, the URL 2103 and the user name 2104 of the web server stored in the communication management table 2100 in association with the process ID that can identify the communication line used for request transmission and response data reception are acquired.

Detailed information of the response data (file, file size, file format, file extension, text information in the file, text information in fields other than the file, URL, user name, etc.) acquired in the processing from step S1901 to step S1908 This is used in the process of determining whether to match (match) the response rule (condition) (step S1009).

Next, detailed processing in step S109 will be described with reference to FIG.

  FIG. 20 is a flowchart showing detailed processing of step S1009 shown in FIG. That is, this process is performed by the CPU 201 of the proxy server 101.

  First, the CPU 201 of the proxy server 101 determines whether or not there is an unapplied response rule in step S2001 in FIG. If there is an unapplied response rule (YES in step S2001), the CPU 201 of the proxy server 101 acquires response rules registered in the response rule table 9200 one by one in the order of application (step S2002).

In step S2003, the CPU 201 of the proxy server 101 determines whether each condition of the response rule acquired in 1502 matches (matches) the response data.
FIG. 16 has been described above as the detailed process of step S1503. From here, FIG. 16 will be described as the detailed process of step S2003.
Here, with reference to FIG. 16, the detailed process of the process which determines whether a response rule matches response data is demonstrated.

  FIG. 16 is a flowchart showing detailed processing for determining whether or not the response rule shown in step S2003 in FIG. 20 matches the response data. That is, this process is performed by the CPU 201 of the proxy server 101.

  In step S1601 of FIG. 16, the CPU 201 of the proxy server 101 determines whether a URL is set in the URL 9204 of the response rule acquired from the response rule table 9200. If the CPU 201 of the proxy server 101 determines that the URL has not been set (NO in step S1601), the process proceeds to step S1603. On the other hand, if it is determined that the URL is set (YES in step S1601), the process proceeds to step S1602.

  In step S1602, the CPU 201 of the proxy server 101 determines whether or not the URL set in the URL 9204 of the response rule matches the URL acquired in step S1908. If the CPU 201 of the proxy server 101 determines that they do not match (NO in step S1602), the CPU 201 determines that the response data acquired in step S1008 does not match (does not match) the response rule condition acquired in step S2003. (Step S1616). On the other hand, if the CPU 201 of the proxy server 101 determines that there is a match (YES in step S1602), the process proceeds to step S1603.

  In step S1603, the CPU 201 of the proxy server 101 determines whether or not a category is set in the response rule category 9205 acquired from the response rule table 9200 in step S2002. If the category is not set (NO in step S1603), the CPU 201 of the proxy server 101 advances the process to step S1605. On the other hand, if a category is set (YES in step S1603), the process proceeds to step S1604.

  In step S1604, the CPU 201 of the proxy server 101 determines whether the category set in the response rule acquired in step S2002 is the same as (matches) the category determined in the URL category determination process in step S1002. judge.

  That is, here, the category of the URL acquired in step S1908 is determined in step S1002, and it is determined whether the category that is the determination result is the same as the category set in the response rule acquired in step S2002. judge. If it is determined that they are not the same (not matched) (NO in step S1604), the process proceeds to step S1616. If it is determined that there is no category in the URL category determination process in step S1002, it is determined that the response rule does not match the response data, and the process proceeds to step S1616. On the other hand, if it is determined to match (YES in step S1604), the process proceeds to step S1605.

  In step S1605, the CPU 201 of the proxy server 101 determines whether a file format is set in the file format 9206 of the response rule acquired in step S2002. If it is determined that the file format is not set (NO in step S1605), the process proceeds to step S1607. On the other hand, if it is determined that the file format is set (YES in step S1605), the process proceeds to step S1606.

  In step S1606, the CPU 201 of the proxy server 101 determines whether the file format set in the file format 9206 matches the file format of the file determined in step S1903. If it is determined that they do not match (NO in step S1606), the process proceeds to step S1616.

Further, even if the response data does not include a file, the CPU 201 of the proxy server 101 determines that the response rule does not match the response data, and the process proceeds to step S1616. On the other hand, if it is determined that there is a match (YES in step S1606), the CPU 201 advances the process to step S1607.

  In step S1607, the CPU 201 of the proxy server 101 determines whether the response rule size 9207 and size condition 9208 acquired in step S2002 are set. If it is determined that the size and the size condition are not set (NO in step S1607), the process proceeds to step S1609. On the other hand, if the size and the size condition are set (YES in step S1607), the process proceeds to step S1608.

  In step S1608, the CPU 201 of the proxy server 101 determines whether or not the size of the file acquired in step S1902 satisfies (matches) the size 9207 and size condition 9208 of the response rule acquired in step S2002. If it is determined that they do not match (NO in step S1608), the process proceeds to step S1616. If the response data does not include a file, it is determined that the response rule does not match the response data, and the process proceeds to step S1616. On the other hand, if it is determined that there is a match (YES in step S1608), the CPU 201 advances the process to step S1609.

  In step S1609, it is determined whether or not a matching condition between the file format and the extension is set in the file format and extension 9209 of the response rule acquired in step S2002. If it is determined that the matching condition between the file format and the extension is not set (NO in step S1609), the process proceeds to step S1611. On the other hand, if it is determined that the matching condition between the file format and the extension is set (YES in step S1609), the process proceeds to step S1610.

  In step S1610, the CPU 201 of the proxy server 101 acquires the determination result in step S1905 in FIG. 13 (determination result whether the file format and extension match [match / does not match]), and step S2002. It is determined whether or not the matching / non-matching conditions set in the “file format and extension” 9209 of the response rule match (match). If it is determined that they do not match (NO in step S1610), the process proceeds to step S1616. If the response data does not include a file, it is determined that the response rule does not match the response data, and the process proceeds to step S1616. On the other hand, if it is determined that they match (YES in step S1610), the CPU 201 advances the process to step S1611.

  In step S1611, the CPU 201 of the proxy server 101 determines whether or not a keyword is set in the response rule keyword 9210 acquired in step S2002. If it is determined that no keyword is set (NO in step S1611), the process proceeds to step S1613. On the other hand, if a keyword is set (YES in step S1611), the process proceeds to step S1612.

  In step S1612, the CPU 201 of the proxy server 101 determines whether the text information acquired in steps S1907 and S1808 satisfies (matches) the condition of the keyword set in the keyword 9210 of the response rule acquired in step S2002. Determine whether. That is, in step S1612, it is determined whether the keyword set in the response rule keyword 9210 acquired in step S2002 is included in the text information acquired in steps S1907 and S1908. If it is determined that they do not match (NO in step S1612), the process proceeds to step S1616. If the response data does not include text information, it is determined that there is no match, and the process proceeds to step S1616. On the other hand, if it is determined that they match (YES in step S1612), the CPU 201 advances the process to step S1613.

  In step S1613, the CPU 201 of the proxy server 101 determines whether a user name or a group name is set in the user / group 9203 of the response rule acquired in step S2002. If it is determined that the user name or group name is set in the user / group 9203 of the response rule acquired in step S2002 (YES in step S1613), the process proceeds to step S1614. On the other hand, if it is determined that no user name or group name is set for the user / group 9203 (NO in step S1613), the process proceeds to step S1615.

  In step S1614, the CPU 201 of the proxy server 101 determines whether the user name or group name acquired from the communication management table (FIG. 21) in step S1908 matches the user name or group name of the response rule acquired in step S2002. Determine whether. If it is determined that they match (YES in step S1614), the process proceeds to step S1615.

  In step S1615, the CPU 201 of the proxy server 101 determines that the response rule acquired in step S2002 matches the detailed information of the response data acquired in step S1008 (YES in step S2003), and the process proceeds to step S2004. . That is, in step S1615, it is determined that the detailed information of the response data acquired in step S1008 satisfies (matches) the condition of the response rule acquired in step S2003.

In step S1616, it is determined that the detailed information of the response data acquired in step S1008 does not satisfy (does not match) the response rule conditions acquired in step S2003 (NO in step S2003), and the process proceeds to step S2001.
Hereinafter, the description returns to the flowchart of FIG.

  If the CPU 201 of the proxy server 101 determines in step S2003 that the detailed information of the response data matches the response rule acquired in step S2002 (YES in step S2003), it is set in the operation 9211 of the response rule. A setting for performing the operation (setting whether the operation setting is permitted or prohibited) is performed (step S2004), and the process proceeds to step S1010.

  On the other hand, if it is determined in step S2003 that the detailed information of the response data does not match the response rule (NO in step S2003), the CPU 201 returns the process to step S2001.

If it is determined in step S2001 that there are no unapplied response rules (all response rules have been applied) (NO in step S2001), the CPU 201 is preset as a default operation (all response rules). (When the operation setting is permitted or prohibited) is set (step S2005), and the process proceeds to step S1010.
The above is the detailed description of the response rule application process in step S1009 of FIG.
Returning to the description of FIG.

  Next, in step S1010, the CPU 201 of the proxy server 101 determines whether the response data communication (relay) operation setting set in the response rule application processing in step S1009 is permitted or prohibited. If it is determined that the operation setting is prohibited (NO in step S1010), the CPU 201 of the proxy server 101 indicates to the client PC 104 that transmitted the request that relaying of response data is prohibited. A response (communication non-permission information) is transmitted (step S1012), and the processing of this flowchart ends.

  On the other hand, if the CPU 201 of the proxy server 101 determines that the response data communication (relay) operation setting set in the response rule application processing in step S1009 is permitted operation setting (in step S1010). YES), the process proceeds to step S1011.

In step S1011, the CPU 201 of the proxy server 101 transmits response data transmitted from the web server 107, which is a response to the request, to the client PC 104 that transmitted the request. At this time, the response data is transmitted using the communication line used when transmitting the request data. That is, response data is transmitted to the client PC specified by the IP address of the client PC stored in association with the process ID 2101 that can specify the communication line.

  As described above, according to the present invention, by determining the format of the file included in the request data or the response data from the magic number of the file, a case where an incorrect extension is given to the file, or intentionally Even if it has been changed, the original file format is determined, and based on the determination result, the files included in the request data and response data are inspected to determine whether or not each condition of the preset control rule is matched. By doing so, it is possible to accurately control (permit / inhibit) file transmission / reception by HTTP.

  Although one embodiment has been described above, the present invention can take an embodiment as, for example, a system, apparatus, method, program, or recording medium, and specifically includes a plurality of devices. The present invention may be applied to a system including a single device.

  Further, the IP address of the client PC 104 may be set on the request rule details screen 700 or a response rule details screen (not shown). In this case, it is possible to perform control such that the request rule and the response rule are applied only to communication performed by the client PC 104 having a specific IP address.

Alternatively, the user and the user group may be set on the request rule detail setting screen 700 or a response rule detail screen (not shown). In this case, it is possible to perform control such that the request rule and the response rule are applied only to communication performed by a specific user and user group.

  In addition, in the case of encrypted communication such as HTTPS, it is not possible to apply request rules and response rules by acquiring detailed information of requests and responses, but in that case, if communication is encrypted, communication is prohibited. It may be settable. Of course, when the detailed information of the encrypted communication can be acquired by some means, the control (permission / prohibition) of the communication may be performed by applying the request rule or the response rule.

As described above, according to the present embodiment, transmission / reception control of a file included in communication data can be accurately performed according to a data transmission / reception destination and a file format.

Although one embodiment of the present invention has been described in detail above, the present invention can take an embodiment as, for example, a system, an apparatus, a method, a program, or a storage medium. You may apply to the system comprised from an apparatus, and may apply to the apparatus which consists of one apparatus.

Another object of the present invention is to supply a storage medium storing software program codes for realizing the functions of the above-described embodiments to a system or apparatus, and the computer (or CPU or MPU) of the system or apparatus stores the storage medium. Needless to say, this can also be achieved by reading and executing the program code stored in.

In this case, the program code itself read from the storage medium realizes the functions of the above-described embodiments, and the program code itself and the storage medium storing the program code constitute the present invention.

As a storage medium for supplying the program code, for example, a flexible disk, a hard disk, an optical disk, a magneto-optical disk, a CD-ROM, a CD-R, a magnetic tape, a nonvolatile memory card, a ROM, or the like can be used.

Further, by executing the program code read by the computer, not only the functions of the above-described embodiments are realized, but also an OS (basic system or operating system) running on the computer based on the instruction of the program code. Needless to say, a case where the function of the above-described embodiment is realized by performing part or all of the actual processing and the processing is included.

Further, after the program code read from the storage medium is written in a memory provided in a function expansion board inserted into the computer or a function expansion unit connected to the computer, the function is determined based on the instruction of the program code. It goes without saying that the CPU or the like provided in the expansion board or function expansion unit performs part or all of the actual processing and the functions of the above-described embodiments are realized by the processing.

DESCRIPTION OF SYMBOLS 101 Proxy server 102 Rule database 103 URL database 104-1 Client PC 104-2 Client PC 104-3 Client PC 105 LAN 106 Wide area network 107-1 Web server 107-2 Web server 107-3 Web server

Claims (5)

An information processing apparatus capable of communicating with a data transmission apparatus that transmits data and performing transmission control of the data,
The source information that identifies the source of the file is associated with the setting information that is set to allow or prohibit transmission of the file from the source when the extension of the file is forged Storage means for storing transmission rule information;
Impersonation for determining whether the file format determined from the data in the file and the file format determined from the file name extension of the file are the same for the file transmitted from the data transmission device A determination means;
When it is determined that the file format is different by the impersonation determination unit, according to the transmission rule information corresponding to the transmission source of the file, transmission control unit for controlling whether to permit or prohibit transmission of the file;
An information processing apparatus comprising: The storage means further stores a priority order of applying the transmission rule information to a plurality of transmission rule information,
The information processing apparatus according to claim 1, wherein the transmission control unit controls whether to permit or prohibit transmission of the file according to the transmission rule information applied in the order of priority. The transmission source information of the transmission rule information stored in the storage means includes a category indicating the field of the transmission source,
Category storage means for storing category information including a transmission source of the file and a category indicating the field of the transmission source;
Category determination means for determining a category corresponding to the transmission source from the transmission source of the file according to the category information stored in the category storage means;
Further comprising
The format transmission control means uses the transmission rule information to determine a file format that permits transmission according to the category determined by the category determination means;
The information processing apparatus according to claim 1, further comprising: An information processing method in an information processing apparatus capable of communicating with a data transmission apparatus that transmits data and performing transmission control of the data,
The storage means has transmission source information for identifying the transmission source of the file, and setting information for setting whether to permit or prohibit transmission of the file from the transmission source when there is a camouflaged extension of the file. A storage step of storing transmission rule information associated with
For the file transmitted from the data transmission device, the file format determined from the data in the file is the same as the file format determined from the extension of the file name of the file. A camouflage determination step for determining whether or not
If the transmission control means determines that the file format is different in the impersonation determination step, transmission control for controlling whether to permit or prohibit transmission of the file according to the transmission rule information corresponding to the transmission source of the file Process,
An information processing method comprising: A program that can communicate with a data transmission device that transmits data and that functions as an information processing device that performs transmission control of the data,
The information processing apparatus;
The source information that identifies the source of the file is associated with the setting information that is set to allow or prohibit transmission of the file from the source when the extension of the file is forged Storage means for storing transmission rule information;
Impersonation for determining whether the file format determined from the data in the file and the file format determined from the file name extension of the file are the same for the file transmitted from the data transmission device A determination means;
When the camouflage determination means determines that the file format is different, the transmission control means controls whether to permit or prohibit transmission of the file according to the transmission rule information corresponding to the transmission source of the file A program characterized by letting

Images