JP2013033448A - Information processing device, control method thereof and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To enable an administrator who manages access to web pages to efficiently grasp an access log which shows intentional access to web pages by a user.SOLUTION: An information processing device performs the steps of: acquiring display information of a web page from a web server in response to an acquisition request for the display information of the web page, which is transmitted from a terminal device; specifying a request destination of the acquisition request of the display information in the web page transmitted from the terminal device without an acquisition instruction by a user of the terminal device, from among the display information; storing the acquisition request of the display information in the web page received from the terminal device as the acquisition request which is transmitted from the terminal device in response to the acquisition instruction by the user, if it is determined that the request destination of the acquisition request of the display information in the web page received from the terminal device after the display information of the web page is transmitted to the terminal device does not match the specified request destination.

Description

  The present invention relates to a technology for efficiently grasping an access log in which a user intentionally accesses a web page.

  With the development of network technology, it is possible to exchange information very easily and efficiently. For example, it is possible to attach materials to be used for a meeting to an e-mail and send them to participants in advance without trouble and trouble.

  However, while network technology has been developed in this way, it is now easy to exchange information. On the other hand, there is a risk that important confidential information will be easily leaked to the outside, and harmful information such as computer viruses from the outside. As the risk of inflow increases, companies and the like are required to have internal controls to mitigate them.

  Therefore, companies have taken measures such as prohibiting access to servers that provide information not directly related to business.

  For example, by introducing a device that performs URL filtering, which is communication control that prohibits access to a specific URL, and by not transferring a request for a URL that is not permitted to access to an external server that provides the information resource indicated by the URL, The information resource indicated by the URL cannot be accessed.

  In the case of performing URL filtering, a white list that is a list of URLs that are permitted to access and a black list that is a list of URLs that are prohibited to access are created and controlled. That is, control is performed such that a request for a URL registered in the white list relays the communication, and a request for the URL registered in the black list does not relay the communication.

  For example, Patent Document 1 discloses a mechanism in which a browsing record is notified to an administrator when there is a browsing request from a user to a WEB site with browsing restrictions.

JP 2008-234332 A

  However, if all of the access records (access logs) to the WEB site whose browsing is restricted are notified, a very large number of records (access logs) will be notified.

  In particular, in a site that consists of not only a user-specified URL but also data acquired from multiple URL access destinations, the acquisition destination of files such as images and moving images is specified by another URL. There may be. In such a case, the URL specified by the user is permitted to be browsed, but the URL that is a file acquisition destination such as an image or video linked from there is subject to browsing restrictions. Will be notified of a large amount of regulatory logs.

  Such access to images and videos is not intentionally (intentionally) accessed by the viewer (user), but the browser displays the web page according to the display information such as HTML specified by the user. Since access is automatically performed for display, even if the administrator records such access records (access logs), the administrator must select which access log from the large number of access logs. It is difficult to distinguish whether the log is a log accessed intentionally or a log automatically accessed by the browser.

  Therefore, it is difficult for the administrator to audit only the access log of the web that the user deliberately accesses, and it is difficult to grasp the user who intentionally performs unauthorized access.

  Therefore, an object of the present invention is to provide a mechanism that enables an administrator who manages access to a web page to efficiently and efficiently grasp an access log when a user intentionally accesses the web page. is there.

  The present invention is an information processing apparatus for storing an access log of data communicated between a terminal device and a web server, and receiving means for receiving a web page display information acquisition request transmitted from the terminal device And in response to the request for acquiring the display information of the web page transmitted by the transmitting means, the transmitting means for transmitting the acquisition request of the display information of the web page received by the receiving means to the web server, An acquisition unit that acquires display information of the web page transmitted from the web server, and the terminal device regardless of whether there is an acquisition instruction from a user of the terminal device among the display information acquired by the acquisition unit Specifying means for specifying link information indicating a request destination for making an information acquisition request, and display information of the web page acquired by the acquisition means A terminal transmitting means for transmitting to a terminal device, and a request destination of an acquisition request for display information received by the receiving means from the terminal device after transmitting the display information of the web page to the terminal device by the terminal transmitting means, A determination unit configured to determine whether or not the link information specified by the specifying unit matches; and the terminal unit after the display unit transmits the display information of the web page to the terminal device by the determination unit. When it is determined that the request for the display information acquisition request received by the receiving unit from the link information specified by the specifying unit does not match, the terminal transmitting unit displays the display information of the web page. An access log of a display information acquisition request received from the terminal device by the receiving unit after being transmitted to the terminal device is stored in the terminal device. The acquisition instruction by the user, characterized in that it comprises a storage control means for storing the access log of the transmitted request for obtaining the indication information from the terminal device.

  The present invention also relates to a method for controlling an information processing apparatus for storing an access log of data communicated between a terminal device and a web server, wherein the receiving means of the information processing device is transmitted from the terminal device. A receiving step of receiving a web page display information acquisition request, and a transmitting step of transmitting the web page display information acquisition request received in the receiving step to the web server And an acquisition step in which the acquisition unit of the information processing apparatus acquires the display information of the web page transmitted from the web server in response to the acquisition request of the display information of the web page transmitted by the transmission step. And the identification means of the information processing device, regardless of whether or not there is an acquisition instruction from the display information acquired in the acquisition step by the user of the terminal device. A specifying step of specifying link information indicating a request destination from which the terminal device makes an information acquisition request, and a terminal transmission unit of the information processing device displays the display information of the web page acquired in the acquisition step. A terminal transmission step of transmitting to the terminal device, and a determination unit of the information processing device transmits display information of the web page to the terminal device by the terminal transmission step, and display information received from the terminal device by the reception step. The determination step of determining whether the request destination of the acquisition request matches the link information specified by the specifying step, and the storage control means of the information processing apparatus are the determination step, the terminal transmission step, The request destination of the display information acquisition request received by the receiving step from the terminal device after transmitting the display information of the web page to the terminal device, The display received by the receiving step from the terminal device after transmitting the display information of the web page to the terminal device by the terminal transmission step when it is determined that the link information specified by the determination step does not match A storage control step of storing an access log of an information acquisition request as an access log of the display information acquisition request transmitted from the terminal device in response to an acquisition instruction by a user of the terminal device.

  The present invention is also a program that can be read and executed by an information processing device that stores an access log of data communicated between a terminal device and a web server, and the information processing device is transmitted from the terminal device. Received by the receiving means, the transmitting means for transmitting the web page display information acquisition request received by the receiving means to the web server, and transmitted by the transmitting means. In response to the acquisition request for the display information of the web page, the terminal for acquiring the display information of the web page transmitted from the web server, and the display information acquired by the acquisition means, the terminal A specifying means for specifying link information indicating a request destination from which the terminal device makes an information acquisition request regardless of the presence or absence of an acquisition instruction by a user of the device; Terminal transmission means for transmitting the display information of the web page acquired by the acquisition means to the terminal device, and the reception of the web page display information from the terminal device after being transmitted to the terminal device by the terminal transmission means. Determining means for determining whether the request destination of the display information acquisition request received by the means matches the link information specified by the specifying means; and the determining means, wherein the terminal transmitting means It is determined that the request destination of the display information acquisition request received by the receiving unit from the terminal device after transmitting the page display information to the terminal device does not match the link information specified by the specifying unit. In this case, after the display information of the web page is transmitted to the terminal device by the terminal transmission unit, the reception unit receives the information from the terminal device. An access log of a display information acquisition request received as a storage control means for storing the access log of the display information acquisition request transmitted from the terminal device according to an acquisition instruction from a user of the terminal device; And

  ADVANTAGE OF THE INVENTION According to this invention, it becomes possible to make the administrator who manages the access to a web page efficiently grasp | ascertain the access log which the user accessed the web page intentionally.

It is a figure which shows an example of the system configuration | structure of the information processing system which concerns on this invention. Applicable to the proxy server 101, client terminal 102-1, client terminal 102-2, administrator client terminal 102-3, web server 105-1, web server 105-2, and web server 105-3 shown in FIG. It is a figure which shows an example of the hardware constitutions of a simple information processing apparatus. It is a sequence diagram which shows the flow of the data communicated by each process of the client terminal 102, the proxy server 101, and the web server 105 in embodiment of this invention. It is a flowchart which shows the access control process which the proxy server 101 performs in embodiment of this invention. It is a figure which shows an example of an access rule table. It is a figure which shows an example of the flowchart which shows the detailed process of step S408. It is a figure which shows an example of display information, such as HTML contained in the response data acquired by step S601. It is a figure which shows an example of a request prediction table. It is a figure which shows an example of an access log table. It is a figure which shows an example of the search condition input screen for inputting the search condition of a proxy log (access log). It is a figure which shows an example of a proxy log browsing screen. It is a flowchart which shows the process which the proxy server 101 in embodiment of this invention displays the data of the access log memorize | stored in the access log table (FIG. 9) on the client terminal 102. FIG. It is a sequence diagram which shows the flow of the data communicated by each process of the client terminal 102, the proxy server 101, and the web server 105 in embodiment of this invention. It is a figure which shows the functional block which concerns on this invention. It is a figure which shows the functional block which concerns on this invention.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

  FIG. 1 is a diagram showing an example of a system configuration of an information processing system according to the present invention.

As shown in FIG. 1, the information processing system according to the present embodiment includes a proxy server 101 and client terminals 102-1 and 102-2 operated by a user (hereinafter collectively referred to as “client terminal 102”) (terminal device) ), An administrator client terminal 102-3 operated by the administrator, a LAN 103, a wide area network 104, and web servers 105-1 to 105-3 (hereinafter collectively referred to as "web server 105").
The administrator client terminal 102-3 is an application example of the administrator terminal of the present invention.

  Hereinafter, each apparatus which comprises the information processing system of this invention is demonstrated.

  The proxy server 101 is a device that functions as an information processing device of the present invention, and relays data communication between the client terminal 102 and the web server 105.

  Further, the proxy server 101 determines whether to allow (relay) or reject (not relay) the relay of the data exchanged between the client terminal 102 and the web server 105. In accordance with an access rule (relay control rule) for this purpose, it has a function of performing data communication control.

  Further, the proxy server 101 has a function of storing a log related to data communication control.

  The client terminal 102 is a terminal device used by a user who uses various services (such as browsing a home page) provided by the web server 105. That is, a WEB browser (hereinafter referred to as a browser) is installed in the client terminal, and a WEB page provided by the web server 105 can be displayed on the screen of the browser.

  Further, the client terminal 102 has a function of displaying a log related to data communication control stored in the proxy server 101 on the browser.

  The LAN 103 is a network that connects the proxy server 101 and the client terminal 102 so as to be capable of data communication with each other.

  The web server 105 is a server device installed by a service provider that provides various web services. Examples of services provided here include, but are not limited to, a homepage browsing service, a product sales service, a reservation service for air tickets, hotels, and the like.

  The proxy server 101 and the web server 105 are connected to each other via a wide area network 104 such as the Internet so that data communication is possible.

  The above is an example of the configuration of the information processing system according to the present invention.

  2, the proxy server 101, the client terminal 102-1, the client terminal 102-2, the administrator client terminal 102-3, the web server 105-1, the web server 105-2, An example of the hardware configuration of the information processing apparatus applicable to the web server 105-3 will be described.

  2 shows the proxy server 101, client terminal 102-1, client terminal 102-2, administrator client terminal 102-3, web server 105-1, web server 105-2, web server 105- shown in FIG. 3 is a diagram illustrating an example of a hardware configuration of an information processing apparatus applicable to FIG.

  In FIG. 2, reference numeral 201 denotes a CPU that comprehensively controls each device and controller connected to the system bus 204. Further, the ROM 203 or the external memory 211 has a BIOS (Basic Input / Output) that is a control program of the CPU 201.

  (System), an operating system program (hereinafter referred to as OS), and various programs necessary for realizing functions executed by each server or each PC.

  A RAM 202 functions as a main memory, work area, and the like for the CPU 201. The CPU 201 implements various operations by loading a program necessary for execution of processing from the ROM 203 or the external memory 211 into the RAM 202 and executing the loaded program.

  An input controller 205 controls input from the input device 209 or the like. A video controller 206 controls display on a display device 210 (display unit) such as a liquid crystal display. The display device is not limited to a liquid crystal display, and may be a CRT display or the like. These are used by clients as needed.

  A memory controller 207 is connected to the hard disk (HD), flexible disk (FD), or PCMCIA card slot for storing a boot program, various applications, font data, user files, editing files, various data, etc. via an adapter. The access to the external memory 211 such as a compact flash (registered trademark) memory is controlled.

  A communication I / F controller 208 is connected to and communicates with an external device via a network (for example, the LAN 103 shown in FIG. 1), and executes communication control processing in the network. For example, communication using TCP / IP is possible.

  Note that the CPU 201 enables display on the display device 210 by executing, for example, outline font rasterization processing on a display information area in the RAM 202. Further, the CPU 201 enables a user instruction with a mouse cursor (not shown) on the display device 210.

  Various programs that operate on the hardware are recorded in the external memory 211 and are executed by the CPU 201 by being loaded into the RAM 202 as necessary.

  Next, the flow of data communicated by the processes of the client terminal 102, the proxy server 101, and the web server 105 in the embodiment of the present invention will be described using FIG.

  FIG. 3 is a sequence diagram showing a flow of data communicated by each processing of the client terminal 102, the proxy server 101, and the web server 105 in the embodiment of the present invention.

  FIG. 3 is a sequence diagram for displaying an entire web page of one screen composed of a plurality of data obtained from link destinations of a plurality of URLs on the browser of the client terminal.

  First, the client terminal 102 (browser) transmits HTTP request data (also simply referred to as a request or request data) to the proxy server 101. In the example illustrated in FIG. 3, it is assumed that the access destination URL of the HTTP request data transmitted from the client terminal 102 is “http://example.com/index.html”.

  When the proxy server 101 receives the HTTP request data from the client terminal 102 (step S301), the proxy server 101 executes the HTTP according to the URL of the access destination included in the HTTP request data and the access rule table (FIG. 5). Determine whether request data can be relayed.

  In the example shown in FIG. 3, since the access destination URL transmitted from the client terminal 102 is “http://example.com/index.html”, it corresponds to the rule ID: 1 in the access rule table. Accordingly, since the relay operation of the rule is “permitted”, in step S302, the relay of the HTTP request data transmitted from the client terminal 102 is permitted, and the proxy server 101 transmits the HTTP request data to the web server ( Step S302).

  That is, in step S302, the proxy server 101 accesses the web server 105 indicated by “http://example.com/index.html”. Then, the web server 105 transmits response data for the access in step S302 to the proxy server 101, and the proxy server 101 acquires the response data.

  Then, the proxy server 101 analyzes the response data (including display information such as HTML) acquired from the web server 105 and transmits a request to the web server without any user operation (hereinafter referred to as link information). Is obtained from the response data and stored in the request prediction table (FIG. 8) (step S303). That is, the proxy server 101 stores the link information in the request prediction table (FIG. 8) when the link information that the browser automatically transmits a request is included.

  FIG. 8 is a diagram illustrating an example of the request prediction table.

  In this example, the response data acquired by the proxy server 101 includes “http://www.example.com/common/common.css”, “http://www.example.com/common” as link information. /Script.js ”,“ http://www.example.com/icons/logo.png ”, and the proxy server 101 stores these data in the request prediction table (FIG. 8).

  Next, the proxy server 101 transmits response data for “http://example.com/index.html” acquired from the web server 105 to the client terminal (browser) (step S304).

  Next, the client terminal 102 (browser) performs a display process for displaying the entire web page from the response data acquired from the proxy server 101. At that time, the client terminal 102 (browser) transmits request data including the URL indicated by the link information included in the response data to the proxy server 101.

  In this example, the client terminal 102 (browser) adds “http://www.example.com/common/common.css”, “http: //” as link information to the response data acquired from the proxy server 101. /Www.example.com/common/script.js ”,“ http://www.example.com/icons/logo.png ”, and requests to web servers specified based on these URLs Data is transmitted to the proxy server 101.

  When the proxy server 101 receives the request data from the client terminal 102 (step S305), the proxy server 101 determines whether the URL included in the request data is registered in the request prediction table (FIG. 8). If it is determined that the URL is registered, the URL is registered in the access log table (FIG. 9) as a URL transmitted to the web server without any operation by the user, but not registered. If it is determined, the URL is registered in the access log table (FIG. 9) as the URL transmitted to the web server by the user's operation.

  Then, the proxy server 101 transmits the request data received from the client terminal 102 to the web server 105 specified based on the URL included in the request data (step S306).

  When the web server 105 receives the request data from the proxy server 101, the web server 105 transmits response data corresponding to the received request data to the proxy server 101.

  When the proxy server 101 receives the response data transmitted from the web server 105 (step S307), the proxy server 101 transmits the received response data to the client terminal 102 (step S308).

  When the client terminal 102 receives the response data from the proxy server 101, the client terminal 102 follows the display information such as HTML included in the response data and the display information such as HTML included in the response data transmitted from the web server 105 in step S304. The whole screen of one web page is displayed on the browser.

  Next, the access control process performed by the proxy server 101 in the embodiment of the present invention will be described with reference to FIG.

  FIG. 4 is a flowchart showing access control processing performed by the proxy server 101 in the embodiment of the present invention.

  Note that the processing shown in the flowchart of FIG. 4 is realized by reading and executing a control program stored in the CPU 201 of the proxy server 101.

First, when the proxy server 101 receives HTTP request data (request for acquiring web page display information) transmitted from the client terminal 102 (reception unit), the proxy server 101 acquires a URL to be accessed from the HTTP request data. (Step S401).
For example, in step S401, “http://www.example.com/index.html” is acquired as the URL to be accessed.

Then, the proxy server 101 determines whether or not the URL acquired in step S401 matches the URL in the access rule table (FIG. 5) (step S402).
FIG. 5 is a diagram illustrating an example of the access rule table.

  The access rule table (FIG. 5) includes items of “rule ID”, “URL”, and “relay operation”, and is stored in a storage device such as the external memory 211 of the proxy server 101.

  The “rule ID” stores an ID for identifying an access rule. In addition, “URL” stores the URL of the access destination (access destination URL). In the “relay operation”, setting information of the relay operation as to whether or not to permit access to the URL is stored.

  As shown in FIG. 5, the storage device (rule storage means) such as an external memory of the proxy server 101 has operation information for determining whether or not to send a web page display information acquisition request to the web server ( A relay control rule (access rule) in which (relay operation) is set is stored.

  If the proxy server 101 determines in step S402 that the URL acquired in step S401 matches the URL in the access rule table (FIG. 5) (YES), the setting information of the relay operation of the URL determined to match Is “permitted” or “prohibited” (step S403) (determining means). That is, it is determined whether or not to relay the request acquired in step S401 to the access destination.

  If it is determined that the setting information of the relay operation of the URL determined to match is “prohibited” (prohibited), the process proceeds to step S404. On the other hand, if it is determined that the setting information of the relay operation of the URL determined to match is “permitted” (permitted), the process proceeds to step S406.

  If the proxy server 101 determines in step S402 that the URL acquired in step S401 does not match the URL in the access rule table (FIG. 5) (NO), the proxy server 101 proceeds to step 406.

  When the proxy server 101 determines in step S403 that the setting information of the relay operation of the URL determined to match is “prohibited” (prohibited), the proxy server 101 stores the URL in the access log table (FIG. 9). The current date and time (time), the IP address of the client terminal that transmitted the HTTP request data, and the fact that the relay of the HTTP request data has been blocked (“block”) are registered (step S404).

  Here, the IP address of the client terminal included in the HTTP request data transmitted from the client terminal is registered.

  In step S404, since the HTTP request data is transmitted from the client terminal according to the user's operation instruction, “-” indicating that fact is registered in “caller” (no value is registered).

  FIG. 9 is a diagram illustrating an example of the access log table.

  The access log table (FIG. 9) includes “No.”, “caller”, “time”, “client IP”, “URL”, and “relay operation”, and the external memory 211 of the proxy server 101. Is stored in a storage device.

  “No.” is a number for identifying an access log.

  The “calling source” includes the URL to be transmitted in the information indicating whether or not the URL is to transmit a request to the web server without any operation by the user and the display information such as HTML of the web page of which URL. It contains information that indicates what was done.

  In other words, the URL of the record whose value is stored in the “calling source” is a URL that transmits a request (a request automatically transmitted from the browser of the client terminal) to the web server without an operation instruction from the user. It shows that there is. The URL of a record whose value is not stored in “caller” indicates that the request is transmitted to the web server in response to an operation instruction from the user.

  The value stored in the “caller” indicates which URL the request is transmitted from the link information included in the display information such as HTML acquired from the web server, and the link information is included. “No.” of the URL that is the access destination from which the acquired display information is acquired is stored.

For example, since “1” is stored in “caller” of “2”, “3”, and “4” of “No.” in FIG. 9, “No.” is “2”, “3” ”And“ 4 ”records indicate that the link information is included in the display information acquired from the URL of the record whose“ No. ”is“ 1 ”.
“Time” stores the time (date and time) when the request is transmitted to the URL and accessed.

  “Client IP” stores the IP address of the client terminal 102 that is the transmission source of the request. The IP address of the client terminal 102 that has transmitted the HTTP request data is acquired from the HTTP request data received in step S401.

  In addition, “URL” stores a URL to be accessed from HTTP request data.

  The “relay operation” stores the result of the determination process in step S403 and step S608 described later. That is, as a result of the process of determining whether or not to relay the request to the access destination in step S403 and later-described step S608, “relay” is stored when it is determined to relay, and it is determined that relaying is prohibited. If it is, “block” is stored (recorded).

  For example, an access log having “No.” “1” is transmitted from the client terminal 102 having an IP address “192.168.0.1” to the URL “http://www.example.com/index.html”. Is accessed at 12:00:00 on April 01, 2010 according to a user operation instruction.

  When the access logs with “No.” of “2”, “3”, “4” are referred to, the display information such as HTML acquired from “http://www.example.com/index.html” As link information, “http://www.example.com/common/common.css”, “http://www.example.com/common/script.js”, “http: //www.example.js”. com / icons / logo.png ".

  Here, the request to “http://www.example.com/common/common.css” is “http://www.example.com/index.html” as a referrer. .Example.com / common / common.css ”and the browser of the client terminal 102 with the IP address“ 192.168.0.1 ”is not instructed to be operated by the user. This was automatically performed at 12:00 on March 01, but the proxy server 101 prohibits the relay and indicates that the relay is not performed.

  In addition, a request to “http://www.example.com/common/script.js” is made by referring to “http://www.example.com/index.html” as a referrer “http://www.example.com/common/script.js”. A request to “example.com/common/script.js” in which the browser of the client terminal 102 whose IP address is “192.168.0.1” is not instructed to operate by the user in April 2010. This is automatically performed at 12:00 on 00 day 01, indicating that the proxy server 101 has permitted the relay and relayed.

  In addition, a request to “http://www.example.com/icons/logo.png” is made by using “http://www.example.com/index.html” as a referrer “http://www.example.com/icons/logo.png”. A request to “example.com/icons/logo.png”, and the user does not receive an operation instruction from the browser of the client terminal 102 with the IP address “192.168.0.1”. This is automatically performed at 12:00 on 00 day 01, indicating that the proxy server 101 prohibits relaying and does not relay.

  The information of each record shown in FIG. 9 will be described as an access log.

  When the proxy server 101 executes the process of step S404, the proxy server 101 notifies the client terminal 102 that transmitted the request that access is prohibited (step S405), and ends the process.

  In step S406, the proxy server 101 transmits the HTTP request data received in step S401 to the web server (transmission unit).

  Then, the proxy server 101 stores the URL included in the HTTP request data, the current date and time (time), the IP address of the client terminal that transmitted the HTTP request data, and the HTTP request data in the access log table (FIG. 9). The fact that it has been relayed (“relay”) is registered (step S407). Here, the IP address of the client terminal included in the HTTP request data transmitted from the client terminal is registered.

  In step S407, since the HTTP request data is transmitted from the client terminal according to the user's operation instruction, “-” indicating that fact is registered in “caller” (no value is registered).

  When the proxy server 101 executes the process of step S407, the proxy server 101 performs control related to the response data from the web server 105 to the request transmitted to the web server 105 in step S406 and the request based on the response data (step S408). The process ends.

  Detailed processing in step S408 is shown in FIG.

  Next, detailed processing in step S408 will be described with reference to FIG.

  FIG. 6 is a diagram showing an example of a flowchart showing the detailed processing in step S408.

  The proxy server 101 acquires response data (including display information such as HTML) for the request transmitted to the web server 105 in step S406 from the web server 105 (step S601). That is, the proxy server 101 acquires the display information of the web page transmitted from the web server in response to the acquisition request for the display information of the web page (acquisition means).

  For example, in step S601, response data including display information such as HTML shown in FIG. 7 is acquired.

  FIG. 7 is a diagram illustrating an example of display information such as HTML included in the response data acquired in step S601.

  Then, the proxy server 101 analyzes the display information acquired in step S601, and the browser of the client terminal 102 transmits a request from the display information to the web server 105 without a user operation instruction. The tag and the URL of the tag are specified as link information (step S602).

  That is, the proxy server 101 includes link information indicating a request destination of a part of display information acquisition request in a web page transmitted from the client terminal without an instruction to acquire by the user of the client terminal. Is identified (identifying means).

  Here, a tag that the browser interprets so as to transmit a request to the web server 105 without an instruction from the user is stored in advance, and a tag that matches this tag is acquired in step S601. By determining whether it is included in the display information, the tag determined to be included is specified, and the URL of the tag is specified as link information.

In the example of FIG. 7, “<link rel =“ stylesheet ”href =” / common / common. css "type =" text / css ">",
“<Script src =” / common / script. js "type =" text / javascript "></script>","<img src =" / icons / logo. png ">" is specified as the link information.

  If it is determined in step S603 that the link information is included in the display information acquired in step S601 (YES), the proxy server 101 acquires “client IP” in the request prediction table (FIG. 8) in step S401. The IP address of the client terminal 102 that is the transmission source of the HTTP request data acquired from the HTTP request data is stored, and the access included in the HTTP request data is stored in “URL” of the request prediction table (FIG. 8). The destination URL is stored, and “-” is stored in “caller” of the request prediction table (FIG. 8). The data stored here is stored in one record. Also, an arbitrary value is stored in “No.” of the request prediction table (FIG. 8) as information for identifying one record stored here.

  Further, the proxy server 101 stores the link information (URL) determined to be included in the display information in step S603 in the “URL” of the request prediction table (FIG. 8), and the “URL” of the request prediction table (FIG. 8). The IP address of the client terminal 102 that is the transmission source of the HTTP request data is stored in “Client IP”, and “No.” in the request prediction table (FIG. 8) is stored in “Caller” in the request prediction table (FIG. 8). The arbitrary value stored in is stored. The data stored here is stored in one record. Also, an arbitrary value is stored in “No.” of the request prediction table (FIG. 8) as information for identifying one record stored here (step S604).

Further, the proxy server 101 stores the information (record) stored in the request prediction table (FIG. 8) in step S604 and stores the response data to the client terminal in S605 for a predetermined time (eg, 10 seconds). The information stored in the request prediction table (FIG. 8) in step S604 when it is determined that the predetermined time has elapsed when it is determined that the predetermined time has elapsed. (Record) is deleted (deletion means). That is, after transmitting the information (record) stored in the request prediction table (FIG. 8) in step S604 determined to have passed the predetermined time and the response data (web page display information) in step S605 to the client terminal. Then, the request information is deleted from the request prediction table (FIG. 8) so as not to be determined in S610 and S609 as to whether or not it matches the request destination (URL) of the display information acquisition request received from the client terminal.

  As a result, when the same request is received from the same client terminal within a predetermined time (for example, 10 seconds), the request is automatically transmitted by the browser with high probability (whether there is a user operation instruction). If it is a request made regardless of whether the request is made, it is possible to make a determination in step S610 and step S609.

  In the example of FIG. 8, “http://www.example.com/common/” is included as link information in the response data acquired from the access destination “http://www.example.com/index.html”. common.css ”,“ http://www.example.com/common/script.js ”,“ http://www.example.com/icons/logo.png ” (Step S603: YES), it is indicated in step S604 that records of “No.” “1”, “2”, “3”, “4” are registered in the request prediction table. That is, in the example of FIG. 8, the records whose “No.” is “1”, “2”, “3”, “4” are the access destinations of “http://www.example.com/index.html”. In the response data acquired from “http://www.example.com/common/common.css”, “http://www.example.com/common/script.js”, “http://www.example.com/common/common.css”, “ “http://www.example.com/icons/logo.png” is included.

  And if the proxy server 101 performs the process of step S604, it will transfer a process to step S605.

  Next, when it is determined in step S603 that the link information is not included in the display information acquired in step S601 (NO), the proxy server 101 proceeds to step S605.

  The proxy server 101 transmits the response data (web page display information) acquired in step S601 to the client terminal 102 that is the transmission source of the HTTP request data (step S605) (terminal transmission means).

  Upon receiving response data from the proxy server 101, the client terminal 102 (browser) interprets the response data in order to display a screen based on the response data on the browser.

  At this time, if the response data includes link information, the client terminal 102 (browser) automatically transmits a request to the access destination of the link information (URL).

  Next, when the proxy server 101 receives the request from the client terminal 102 (step S606), the proxy server 101 determines whether or not the URL included in the request is stored in the access rule table (FIG. 5) (step S606). S607).

  If it is determined that the URL included in the request is stored in the access rule table (FIG. 5) (YES), the proxy server 101 corresponds to the URL determined to be stored. It is determined whether the “relay operation” stored in the access rule table (FIG. 5) is “permitted” or “prohibited”, and whether or not the request from the client terminal 102 is relayed (transmitted). Is determined (step S608) (determining means).

  If it is determined that “relay operation” is “permitted” and it is determined that relay is permitted (permitted), the process proceeds to step S610, and it is determined that “relay operation” is “prohibited”. It is. If it is determined that relaying is prohibited (prohibited), the process proceeds to step S609.

  If it is determined in step S607 that the URL included in the request is not stored in the access rule table (FIG. 5) (NO), the proxy server 101 proceeds to step S610.

  In step S609, the proxy server 101 determines that the request received in step S606 (a request for obtaining a part of display information in the web page) has a value in the “caller” of the request prediction table (FIG. 8). It is determined whether there is a record including the URL of the access destination included and the IP address of the requesting client terminal included in the request (step S609).

  That is, in step S609, the proxy server 101 transmits the display information on the web page received from the client terminal in step S606 after transmitting the display information of the web page to the client terminal in step S605. The request destination (URL) and the link information (URL) specified in step S602 match (determination means), and the web page display information acquisition request received in step S401 is received. The received IP address of the client terminal that is the request source of the acquisition request (IP address is an application example of terminal identification information for identifying the client terminal of the present invention) and the client terminal are received in step S606. The acquisition request contained in the display information acquisition request in the web page And a source IP address of the client terminal (terminal identification information for identifying the client terminal), it is determined whether or not matching (terminal determining unit).

  Here, the IP address has been described as an application example of the terminal identification information. However, other examples of the terminal identification information may include the MAC address of the client terminal or information on a combination of the IP address and the MAC address. Good.

  As described above, the terminal identification information for identifying the client terminal that is the request source of the acquisition request included in the acquisition request for the display information of the web page received in step S401, and the web received in step S606 from the client terminal. By determining whether or not the terminal identification information for identifying the client terminal that is the request source of the acquisition request included in the display information acquisition request in the page matches, the display information of the web page in step S401 It is possible to determine whether the client terminal that has made the acquisition request is the same as the client terminal that has made the acquisition request for the web page display information in step S606. The web page display information acquisition request made in is a request by user operation. On the other hand, if it is determined that they are the same client terminal, the acquisition instruction by the user of the client terminal is issued for the acquisition request for the display information of the web page performed in step S606. It is possible to determine that the request is a display information acquisition request (a request made regardless of the presence or absence of a user operation instruction) automatically transmitted from the browser of the client terminal. The same applies to step S610.

  Then, in step S609, the proxy server 101 includes the URL of the access destination included in the request received in step S606, among the records having a value in “caller” of the request prediction table (FIG. 8), and the request includes If it is determined that there is a record including the requesting client terminal IP address (YES), the access log table (FIG. 9) is determined to be in the request prediction table (FIG. 8). Each information (“No.”, “Caller”, “Client IP”, “URL”) of the recorded record is registered, and the current time (date and time) is added to “Time” of the access log table (FIG. 9). Then, “block” is registered in “relay operation” (step S614).

  Since the proxy server 101 registers a value (number) in the “calling source” in the record registered in step S614, the record registered in the access log table (FIG. 9) is stored in the client terminal. It is stored as an access log of an acquisition request for display information automatically transmitted from the browser of the client terminal without an instruction for acquisition by the user.

  On the other hand, in step S609, the proxy server 101 includes the URL of the access destination included in the request received in step S606, among the records having a value in the “caller” of the request prediction table (FIG. 8), and the request includes When it is determined that there is no record including the IP address of the requesting client terminal (NO), “No.”, “calling source”, “ The “time”, “client IP”, “URL”, and “relay operation” are registered (step S613).

  In step S613, a newly generated unique value is registered in “No.”, and “-” indicating that the request has been transmitted to the web server by the user's operation is displayed in “calling source”. "Current date and time", "client IP", the IP address of the client terminal of the request source included in the request received in step S606, "URL", and the access destination included in the request received in step S606 And “block” are registered in “relay operation” (step S613) (storage control means).

As described above, in step S613, the proxy server 101 acquires information (including information on each item in FIG. 9) related to the display information acquisition request in the web page received in step S606 by the user of the client terminal. It is stored as an access log of a display information acquisition request transmitted from the client terminal according to the instruction.
And the proxy server 101 will complete | finish the process shown in FIG. 6, if the process of step S613 or step S614 is performed.

  In step S610, the proxy server 101 includes the URL of the access destination included in the request received in step S606, among the records having a value in the “calling source” of the request prediction table (FIG. 8), and the request includes the URL. It is determined whether there is a record including the IP address of the requesting client terminal.

  That is, in step S610, the proxy server 101 transmits the display information of the web page to the client terminal in step S605, and then obtains a request for acquiring a part of the display information in the web page received from the client terminal in step S606. It is determined whether or not the request destination (URL) and the link information (URL) specified in step S602 match (determination means).

  Then, in step S610, the proxy server 101 includes the URL of the access destination included in the request received in step S606 and the URL included in the request among the records having values in the “caller” of the request prediction table (FIG. 8). If it is determined that there is a record including the requesting client terminal IP address (YES), the access log table (FIG. 9) is determined to be in the request prediction table (FIG. 8). Each information (“No.”, “Caller”, “Client IP”, “URL”) of the recorded record is registered, and the current time (date and time) is added to “Time” of the access log table (FIG. 9). Then, “relay” is registered in “relay operation” (step S611).

  On the other hand, in step S610, the proxy server 101 includes the URL of the access destination included in the request received in step S606, among the records having a value in the “caller” of the request prediction table (FIG. 8), and the request includes When it is determined that there is no record including the IP address of the requesting client terminal (NO), “No.”, “calling source”, “ The “time”, “client IP”, “URL”, and “relay operation” are registered (step S612).

  In step S612, a newly generated unique value is registered in “No.”, and “−” indicating that the request has been transmitted to the web server by the user's operation is displayed in “calling source”. "Current date and time", "client IP", the IP address of the client terminal of the request source included in the request received in step S606, "URL", and the access destination included in the request received in step S606 Is registered in the “relay operation”.

  As described above, in the processing of step S611, step S612, step S613, and step S614, the determination result of step S607 and step S608, which indicates whether transmission is possible or not (“relay” or “block”) is an access log. Registered in the table.

  When the proxy server 101 executes the process of step S611 or step S612, the process proceeds to step S615.

  In step S615, the request received in step S606 is transmitted (relayed) to the access destination of the URL included in the request (transmitting means).

  When the web server 105 receives the request from the proxy server 101, the web server 105 transmits response data (including display information such as HTML) to the request to the proxy server 101.

  When the proxy server 101 obtains the response data (display information such as HTML of the web page) from the web server 105 (step S616), the client terminal 102 that is the request source of the request that received the response data in step S606. (Step S617).

  When the proxy server 101 executes the process of step S617, the proxy server 101 ends the process illustrated in FIG.

  Next, with reference to FIG. 12, a description will be given of processing in which the proxy server 101 according to the embodiment of the present invention displays the access log data stored in the access log table (FIG. 9) on the administrator client terminal 102-3. To do.

  FIG. 12 is a flowchart illustrating a process in which the proxy server 101 according to the embodiment of the present invention displays the access log data stored in the access log table (FIG. 9) on the client terminal 102.

  Note that the processing shown in steps S1201, S1204 to S1207, S1211, and S1212 shown in FIG. 12 is realized by the CPU 201 of the administrator client terminal 102-3 reading and executing the control program.

  Also, the processing from step S1202, step S1203, step S1208 to step S1210 shown in FIG. 12 is realized by the CPU 201 of the proxy server 101 reading and executing a predetermined program.

  First, the manager client terminal transmits a search request input screen display request shown in FIG. 10 to the proxy server 101 (step S1201). When the proxy server 101 receives the display request (step S1202), the proxy server 101 performs a search for inputting search conditions for the proxy log shown in FIG. 10 (the proxy log indicates the access log described above). Display information for displaying the condition input screen is transmitted to the administrator client terminal (step S1203).

  When the administrator client terminal receives display information for displaying the search condition input screen (FIG. 10) from the proxy server 101 (step S1204), the administrator client terminal displays the display information 210 on the administrator client terminal according to the display information. The search condition input screen (FIG. 10) is displayed (step S1205).

  FIG. 10 is a diagram illustrating an example of a search condition input screen for inputting search conditions for proxy logs.

  Reference numeral 1001 denotes an input field for inputting a period. Reference numeral 1002 denotes an input field for inputting a time zone. Reference numeral 1003 denotes an input field for inputting the IP address of the client terminal. Reference numeral 1004 denotes an input field for inputting a relay operation. Reference numeral 1005 denotes a radio button for selecting whether to display only requests made according to user operation instructions or to display all requests. Reference numeral 1006 denotes a search button. Reference numeral 1007 denotes a cancel button.

  The administrator client terminal accepts an input of the search condition by the administrator via the search condition input screen (FIG. 10) (step S1206). When the search button 1006 is pressed, the search condition input screen (FIG. 10) is displayed. The search condition received through the server is transmitted to the proxy server 101 (step S1207).

  When the proxy server 101 receives the search condition from the administrator client terminal (step S1208), the proxy server 101 searches the access log table (FIG. 9) and specifies an access log that matches the search condition.

  For example, “April 1, 2010 to April 1, 2010” is input to 1001 of the search condition input screen (FIG. 10), and “10:00 to 13:00” is input to 1002. , 1003, “192.168.0.1” is input, “Block” is input to 1004, and “Only” is displayed in 1005 (indicating that only requests made by user operation instructions are displayed). When the search button 1006 is selected and the proxy server 101 is pressed, the proxy server 101 determines that the “time” of the access log table (FIG. 9) is “April 1, 2010 to April 1, 2010” and “10 Of the records from 0:00 to 13:00, the “client IP” is “192.168.0.1”, the “relay operation” is “block”, and the value (number) is “caller”. Not entered Search over de. As a result of the search processing, a record (access log) having “No.” “8” in the access log table (FIG. 9) is searched.

  In step S1209, the proxy server 101 generates display information of the proxy log browsing screen (FIG. 11) including the identified access log as a result of the search, and transmits (outputs) the information to the administrator client terminal. (Step S1210) (output means).

  When the administrator client terminal receives the display information from the proxy server 101 (step S1211), the administrator client terminal displays the proxy log browsing screen (FIG. 11) on the display device 210 of the administrator client terminal according to the display information. (Step S1212).

  FIG. 11 is a diagram illustrating an example of a proxy log browsing screen.

  As a result, the administrator can grasp only the access log that is a request transmitted to the web server by the operation by the user and the request is blocked by the proxy server 101.

  Here, as an example, “April 1, 2010 to April 1, 2010” is input to 1001 of the search condition input screen (FIG. 10), and “10:00 to 13:00 is input to 1002. ”Is input,“ 192.168.0.1 ”is input in 1003,“ Block ”is input in 1004, and“ Only ”is displayed in 1005 (displays only requests made by user operation instructions) Is selected and the search button 1006 is pressed. However, when “all” is selected instead of “only” in 1005, “No.” in the access log table (FIG. 9) is selected. Records “2”, “4”, “6”, “8” are retrieved and displayed on the proxy log browsing screen (FIG. 11). Also in this case, since the item “caller” on the proxy log browsing screen (FIG. 11) is displayed, the request is sent to the web server without any user operation, or the user operation is performed. Thus, it can be displayed in an identifiable manner whether the request is transmitted to the web server.

  Therefore, the administrator determines which access log is an access log of a request sent to the web server without being operated by the user, or of the request sent to the web server by being operated by the user. It is possible to grasp whether it is an access log.

  As described above, according to the present invention, it is possible for an administrator who manages access to a web page to efficiently grasp an access log that a user intentionally accesses a web page.

  In step S611 and step S614 in FIG. 6 described above, the access log of the display information acquisition request transmitted from the browser of the client terminal is automatically stored without an acquisition instruction by the user of the client terminal. However, in step S611 and step S614, it may be controlled not to store these access logs.

  FIG. 13 is a sequence diagram showing the flow of data communicated by the processes of the client terminal 102, the proxy server 101, and the web server 105 in the embodiment of the present invention.

  The processing from step S301 to step S304 in FIG. 13 is the same as that in FIG.

  When the proxy server 101 receives the response data transmitted from the web server 105 (step S303), the proxy server 101 transmits the response data to the client terminal and analyzes the response data (including display information such as HTML), and the user URL (link information) for transmitting a request to the web server without performing the operation according to is acquired from the response data, and the request is stored in the request prediction table (FIG. 8) at the access destination of the acquired URL. At the same time, the request is transmitted before being received from the client terminal (step S306).

When the web server 105 receives the request data from the proxy server 101, the web server 105 transmits response data corresponding to the received request data to the proxy server 101.
The proxy server 101 receives the response data transmitted from the web server 105 (step S307).

  Then, the client terminal 102 (browser) performs display processing for displaying the entire web page from the response data acquired from the proxy server 101. At that time, request data including the URL indicated in the link information included in the response data is transmitted to the proxy server 101.

  When the proxy server 101 receives the request data from the client terminal 102 (step S305), the proxy server 101 transmits the response data corresponding to the response data already received from the web server 105 in step S307 to the client terminal. (Step S308).

  As described above, the proxy server 101 acquires link information from the response data received from the web server 105 in step S303, and receives a request to the access destination of the URL indicated by the link information from the client terminal. Before transmitting the request to the web server 105 (step S306), storing the response data acquired from the web server 105 in step S307, and receiving the request from the client terminal (step S305), the stored response Since data is transmitted to the client terminal (step S308), transmission of response data for the request from the client terminal becomes faster.

  Hereinafter, functional blocks according to the present invention will be described with reference to FIG.

  FIG. 14 is a diagram showing functional blocks according to the present invention.

  As illustrated in FIG. 14, the proxy server 101 that is the information processing apparatus of the present invention includes a reception unit 1401, a transmission unit 1402, an acquisition unit 1403, a specification unit 1404, a terminal transmission unit 1405, a determination unit 1406, and a storage control unit 1407. I have.

  The proxy server 101 (information processing apparatus) has a function of storing an access log of data communicated between the client terminal 102 (terminal apparatus) and the web server 105.

  The receiving unit 1401 receives a web page display information acquisition request transmitted from a terminal device.

  The transmission unit 1402 transmits the web page display information acquisition request received by the reception unit to the web server.

  The acquisition unit 1403 acquires the display information of the web page transmitted from the web server in response to the request for acquiring the display information of the web page transmitted by the transmission unit.

  The identifying unit 1404 identifies, from the display information acquired by the acquiring unit, link information indicating a request destination from which the terminal device makes an information acquisition request, regardless of whether there is an acquisition instruction from the user of the terminal device.

  The terminal transmission unit 1405 transmits the display information of the web page acquired by the acquisition unit to the terminal device.

  The determination unit 1406 includes a request destination of a display information acquisition request received by the receiving unit from the terminal device after the display information of the web page is transmitted to the terminal device by the terminal transmission unit, and the link information specified by the specifying unit. It is determined whether or not they match.

  The storage control unit 1407 is a determination unit that is specified by the requesting unit for the display information acquisition request received by the receiving unit from the terminal device after the display information of the web page is transmitted to the terminal device by the terminal transmitting unit and the specifying unit. If it is determined that the received link information does not match, the terminal transmission unit transmits an access log of the display information acquisition request received by the receiving unit from the terminal device after transmitting the web page display information to the terminal device. It is stored as an access log of a display information acquisition request transmitted from the terminal device in response to an acquisition instruction by the user of the device.

  Next, functional blocks according to the present invention will be described with reference to FIG.

  FIG. 15 is a diagram showing functional blocks according to the present invention.

  As illustrated in FIG. 15, the proxy server 101 that is the information processing apparatus of the present invention includes the reception unit 1401, the transmission unit 1402, the acquisition unit 1403, the identification unit 1404, the terminal transmission unit 1405, and the determination unit 1406 described in FIG. 14. In addition to the storage control unit 1407, a terminal determination unit 1408, a time determination unit 1409, a deletion unit 1410, a rule storage unit 1411, a determination unit 1412, and an output unit 1413 are further provided.

  The terminal determination unit 1408 includes the terminal identification information for identifying the terminal device that is the request source of the acquisition request included in the acquisition request for the display information of the web page received by the reception unit, and the display of the web page by the terminal transmission unit. Whether or not the terminal identification information for identifying the terminal device that is the request source of the acquisition request included in the display information acquisition request received by the receiving unit from the terminal device after transmitting the information to the terminal device matches Determine.

  The storage control unit 1407 is a terminal determination unit, and includes terminal identification information for identifying a terminal device that is a request source of the acquisition request, included in the acquisition request for the display information of the web page received by the reception unit, Terminal identification information for identifying the terminal device that is the request source of the acquisition request included in the display information acquisition request received by the receiving unit from the terminal device after transmitting the display information of the web page to the terminal device by the transmission unit; , And the determination unit receives the request for the display information acquisition request received by the receiving unit from the terminal device after transmitting the display information of the web page to the terminal device by the terminal transmitting unit, and the specifying unit When it is determined that the link information specified by the terminal device does not match, the terminal transmitter transmits the web page display information to the terminal device, and then the terminal device transmits the web page display information. The access log acquisition request for displaying information received is stored as the access log acquisition request of the display information transmitted from the terminal apparatus by obtaining instruction by the user of the terminal device.

  The time determination unit 1409 determines whether or not a predetermined time has elapsed since the display information including the link information specified by the specifying unit is transmitted by the terminal transmission unit.

  When it is determined by the time determination unit that the display information including the link information specified by the specifying unit is transmitted by the terminal transmission unit and the predetermined time has passed, the deletion unit 1410 has passed the predetermined time. The determination unit determines whether or not the link information determined to match the request destination of the display information acquisition request received from the terminal device by the reception unit after the display information of the web page is transmitted to the terminal device by the terminal transmission unit. Is deleted from the link information to be determined by

  The rule storage unit 1411 stores a relay control rule in which operation information for determining whether or not to transmit a web page display information acquisition request received by the reception unit to the web server is set by the transmission unit. .

  The determination unit 1412 determines whether or not to transmit the web page display information acquisition request received by the reception unit to the web server by the transmission unit according to the relay control rule stored in the rule storage unit. Here, the access log stored by the storage control unit includes permission information indicating whether or not transmission of the web page display information acquisition request to the web server can be performed by the determination unit.

  The storage control unit is further a determination unit, which is specified by the requesting destination of the display information acquisition request received by the receiving unit from the terminal device after the web page display information is transmitted to the terminal device by the terminal transmitting unit and the identifying unit. The access log of the display information acquisition request received by the receiving unit from the terminal device after transmitting the web page display information to the terminal device by the terminal transmitting unit when it is determined that the link information matches the received link information, Regardless of whether there is an acquisition instruction by the user of the device, the information is stored as an access log of a display information acquisition request transmitted from the terminal device.

  Further, the storage control unit is a determination unit, a request destination of an acquisition request for display information received by the receiving unit from the terminal device after transmitting the display information of the web page to the terminal device by the terminal transmitting unit, and a specifying unit When it is determined that the link information specified by the ID matches, the access log storage of the display information acquisition request received from the terminal device by the receiving unit after transmitting the display information of the web page to the terminal device by the terminal transmitting unit It can also be controlled not to.

  The proxy server 101 (information processing apparatus) is connected to an administrator terminal operated by the administrator so as to communicate with each other.

  The output unit 1413 outputs the access log stored by the storage control unit so as to be displayed on the display unit of the administrator terminal.

  In addition, the output unit 1413 stores the access log of the display information acquisition request transmitted from the terminal device and the acquisition instruction by the user of the terminal device, which are stored by the storage control unit, regardless of whether or not the terminal device user acquires Thus, the access log of the display information acquisition request transmitted from the terminal device can be output so as to be displayed on the display unit of the administrator terminal so as to be identifiable.

  It should be noted that the configuration and contents of the various data described above are not limited to this, and it goes without saying that the various data and configurations are configured according to the application and purpose.

  Moreover, the program in this invention is a program which a computer can perform the processing method of FIG. 3, FIG. 6-FIG. The program according to the present invention may be a program for each processing method of each apparatus shown in FIGS. 3 and 6 to 8.

  As described above, a recording medium that records a program that implements the functions of the above-described embodiments is supplied to a system or apparatus, and a computer (or CPU or MPU) of the system or apparatus stores the program stored in the recording medium. It goes without saying that the object of the present invention can also be achieved by reading and executing.

  In this case, the program itself read from the recording medium realizes the novel function of the present invention, and the recording medium recording the program constitutes the present invention.

  As a recording medium for supplying the program, for example, a flexible disk, hard disk, optical disk, magneto-optical disk, CD-ROM, CD-R, DVD-ROM, magnetic tape, nonvolatile memory card, ROM, EEPROM, silicon A disk or the like can be used.

  Further, by executing the program read by the computer, not only the functions of the above-described embodiments are realized, but also an OS (operating system) operating on the computer based on an instruction of the program is actually It goes without saying that a case where the function of the above-described embodiment is realized by performing part or all of the processing and the processing is included.

  Furthermore, after the program read from the recording medium is written to the memory provided in the function expansion board inserted into the computer or the function expansion unit connected to the computer, the function expansion board is based on the instructions of the program code. It goes without saying that the case where the CPU or the like provided in the function expansion unit performs part or all of the actual processing and the functions of the above-described embodiments are realized by the processing.

  The present invention may be applied to a system constituted by a plurality of devices or an apparatus constituted by a single device. Needless to say, the present invention can be applied to a case where the present invention is achieved by supplying a program to a system or apparatus. In this case, by reading a recording medium storing a program for achieving the present invention into the system or apparatus, the system or apparatus can enjoy the effects of the present invention.

  Furthermore, by downloading and reading a program for achieving the present invention from a server, database, etc. on a network using a communication program, the system or apparatus can enjoy the effects of the present invention. In addition, all the structures which combined each embodiment mentioned above and its modification are also included in this invention.

101 Proxy server 102-1 Client terminal 102-2 Client terminal 102-3 Client terminal for administrator 103 LAN
104 Wide area network 105-1 Web server 105-2 Web server 105-3 Web server

Claims (10)

An information processing apparatus for storing an access log of data communicated between a terminal device and a web server,
Receiving means for receiving an acquisition request for display information of a web page transmitted from the terminal device;
Transmitting means for transmitting an acquisition request for display information of the web page received by the receiving means to the web server;
In response to the acquisition request for the display information of the web page transmitted by the transmission means, an acquisition means for acquiring the display information of the web page transmitted from the web server;
From the display information acquired by the acquisition unit, a specifying unit that specifies link information indicating a request destination where the terminal device makes an information acquisition request regardless of whether there is an acquisition instruction by a user of the terminal device;
Terminal transmission means for transmitting display information of the web page acquired by the acquisition means to the terminal device;
A request destination of an acquisition request for display information received by the receiving unit from the terminal device after transmitting the display information of the web page to the terminal device by the terminal transmitting unit, and the link information specified by the specifying unit Determining means for determining whether or not match,
In the determination means, after the display information of the web page is transmitted to the terminal device by the terminal transmission means, the request destination of the display information acquisition request received by the reception means from the terminal device, and specified by the specification means When it is determined that the received link information does not match, the display information acquisition request received by the receiving unit from the terminal device after the terminal transmitting unit transmits the web page display information to the terminal device Storage control means for storing the access log as an access log of the display information acquisition request transmitted from the terminal device according to an acquisition instruction by the user of the terminal device;
An information processing apparatus comprising: The terminal identification information for identifying the terminal device that is the request source of the acquisition request included in the acquisition request for the display information of the web page received by the reception unit, and the display information of the web page by the terminal transmission unit Whether or not terminal identification information for identifying the terminal device that is the request source of the acquisition request included in the display information acquisition request received from the terminal device by the receiving unit after being transmitted to the terminal device matches Terminal determining means for determining whether or not
The storage control means includes terminal identification information for identifying a terminal device that is a request source of the acquisition request, which is included in the acquisition request for the display information of the web page received by the reception means by the terminal determination means, A terminal device that is a request source of the acquisition request included in the display information acquisition request received from the terminal device by the receiving unit after transmitting the display information of the web page to the terminal device by the terminal transmission unit; It is determined that the terminal identification information to be identified matches, and the determination unit transmits the web page display information to the terminal device by the terminal transmission unit, and then receives the web page display information from the terminal device. When it is determined that the request for the display information acquisition request and the link information specified by the specifying means do not match, the terminal transmitting means After the display information of the web page is transmitted to the terminal device, an access log of a display information acquisition request received by the receiving unit from the terminal device is transmitted from the terminal device by an acquisition instruction by a user of the terminal device. The information processing apparatus according to claim 1, wherein the display information is stored as an access log of the display information acquisition request. Time determining means for determining whether or not a predetermined time has elapsed since display information including link information specified by the specifying means is transmitted by the terminal transmitting means;
When it is determined by the time determination means that display information including the link information specified by the specifying means is transmitted by the terminal transmission means and a predetermined time has elapsed, it is determined that the predetermined time has elapsed. Whether the received link information matches the request destination of the display information acquisition request received from the terminal device by the receiving unit after the display information of the web page is transmitted to the terminal device by the terminal transmitting unit. Delete means for deleting from the link information that is the object to be determined by the determination means,
The information processing apparatus according to claim 1, further comprising: Rule storage for storing a relay control rule in which operation information for determining whether or not to transmit the web page display information acquisition request received by the receiving unit to the web server is set by the transmitting unit. Means,
Deciding means for deciding whether or not to send the web page display information acquisition request received by the receiving means to the web server according to the relay control rules stored in the rule storage means; ,
Further comprising
The access log stored by the storage control unit includes permission information indicating whether or not transmission of the display information acquisition request of the web page to the web server by the transmission unit is determined by the determination unit. The information processing apparatus according to any one of claims 1 to 3, wherein the information processing apparatus is characterized in that:   The storage control unit is further configured to request a display information acquisition request received from the terminal device by the receiving unit after the determination unit transmits the web page display information to the terminal device by the terminal transmitting unit. When it is determined that the destination and the link information specified by the specifying means match, the terminal transmitting means transmits the web page display information to the terminal apparatus and then receives it from the terminal apparatus by the receiving means. The display information acquisition request access log is stored as an access log of the display information acquisition request transmitted from the terminal device regardless of whether there is an acquisition instruction from a user of the terminal device. Item 5. The information processing apparatus according to any one of Items 1 to 4.   The storage control unit is further configured to request a display information acquisition request received from the terminal device by the receiving unit after the determination unit transmits the web page display information to the terminal device by the terminal transmitting unit. When it is determined that the destination and the link information specified by the specifying means match, the terminal transmitting means transmits the web page display information to the terminal apparatus and then receives it from the terminal apparatus by the receiving means. 5. The information processing apparatus according to claim 1, wherein control is performed so as not to store an access log of a display information acquisition request to be performed. The information processing apparatus is further connected to an administrator terminal operated by the administrator,
7. The information processing according to claim 1, further comprising output means for outputting the access log stored by the storage control means so as to be displayed on a display unit of the administrator terminal. apparatus. The information processing apparatus is further connected to an administrator terminal operated by the administrator,
Regardless of the presence or absence of an acquisition instruction by the user of the terminal device stored by the storage control means, the access log of the display information acquisition request transmitted from the terminal device, and the acquisition instruction by the user of the terminal device 6. The information processing apparatus according to claim 5, further comprising an output unit configured to output the display log of the display information acquisition request transmitted from the terminal device so that the access log can be identified on the display unit of the administrator terminal. Information processing device. An information processing apparatus control method for storing an access log of data communicated between a terminal device and a web server,
A receiving step in which the receiving means of the information processing device receives an acquisition request for display information of a web page transmitted from the terminal device;
A transmission step in which the transmission unit of the information processing apparatus transmits an acquisition request for display information of the web page received in the reception step to the web server;
The acquisition unit of the information processing device acquires the display information of the web page transmitted from the web server in response to the acquisition request of the display information of the web page transmitted by the transmission step;
The identification unit of the information processing device indicates a request destination from which the terminal device makes an information acquisition request, regardless of whether there is an acquisition instruction by the user of the terminal device, from the display information acquired in the acquisition step A specific process for identifying link information;
A terminal transmission step in which terminal transmission means of the information processing device transmits display information of the web page acquired in the acquisition step to the terminal device;
The determination means of the information processing apparatus transmits the display information of the web page to the terminal apparatus by the terminal transmission process and then receives a request for a display information acquisition request received from the terminal apparatus by the reception process, and A determination step of determining whether or not the link information specified by the specific step matches,
The storage control means of the information processing apparatus acquires the display information received from the terminal device by the receiving step after transmitting the web page display information to the terminal device by the terminal transmitting step in the determining step. When the request destination is determined to be inconsistent with the link information specified in the specifying step, the display information of the web page is transmitted to the terminal device by the terminal transmitting step and then received from the terminal device. A storage control step of storing an access log of a display information acquisition request received by the step as an access log of the display information acquisition request transmitted from the terminal device in accordance with an acquisition instruction by a user of the terminal device;
An information processing apparatus control method comprising: A program that can be read and executed by an information processing apparatus that stores an access log of data communicated between a terminal device and a web server,
The information processing apparatus;
Receiving means for receiving an acquisition request for display information of a web page transmitted from the terminal device;
Transmitting means for transmitting an acquisition request for display information of the web page received by the receiving means to the web server;
In response to the acquisition request for the display information of the web page transmitted by the transmission means, an acquisition means for acquiring the display information of the web page transmitted from the web server;
From the display information acquired by the acquisition unit, a specifying unit that specifies link information indicating a request destination where the terminal device makes an information acquisition request regardless of whether there is an acquisition instruction by a user of the terminal device;
Terminal transmission means for transmitting display information of the web page acquired by the acquisition means to the terminal device;
A request destination of an acquisition request for display information received by the receiving unit from the terminal device after transmitting the display information of the web page to the terminal device by the terminal transmitting unit, and the link information specified by the specifying unit Determining means for determining whether or not match,
In the determination means, after the display information of the web page is transmitted to the terminal device by the terminal transmission means, the request destination of the display information acquisition request received by the reception means from the terminal device, and specified by the specification means When it is determined that the received link information does not match, the display information acquisition request received by the receiving unit from the terminal device after the terminal transmitting unit transmits the web page display information to the terminal device The access log is stored as an access log for the display information acquisition request transmitted from the terminal device in accordance with an acquisition instruction from the user of the terminal device.

Images