JP2013171473A - Information processing method, information processing device and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To reduce possibility of leakage of information related to a communication terminal which receives provision of information through a network.SOLUTION: A computer executes the steps of: receiving an acquisition request of a mail address to which identification information of a communication terminal is designated, which is transmitted from an information providing device receiving a provision request of information from the communication terminal; returning a second mail address which has use restriction and is different from the first mail address stored in association with the identification information to the information providing device; storing the second mail address in a correspondence information storage unit in association with the first mail address; and changing a destination of an electronic mail to the first mail address which the correspondence information storage unit stores in association with the second mail address when use of the second mail address is within a range of the use restriction, in response to a transfer request of the electronic mail whose destination is the second mail address.

Description

  The present invention relates to an information processing method, an information processing apparatus, and a program.

  Conventionally, when a specific telephone number is called from a mobile phone or the like, there is a service in which a message in which campaign information such as coupons or a URL of a specific Web site is described is distributed to the mobile phone. Usually, such a message is distributed using a short message service (SMS).

JP 2009-3722 A

  However, in the short message service, a telephone number such as a mobile phone is used as identification information of a message destination. Therefore, there is a possibility that the telephone number leaks in the message delivery route. When the telephone number is leaked, the user of the mobile phone may be damaged by a nuisance message or a nuisance call.

  In view of this, an object of one aspect is to reduce the possibility of leakage of information regarding a communication terminal that receives information via a network.

  In one proposal, an information processing method receives an e-mail address acquisition request in which identification information of the communication terminal is specified, which is transmitted from an information providing apparatus that has received the information provision request from the communication terminal, and the identification information A second email address having a usage restriction different from the first email address stored in association with the second email address is returned to the information providing device, and the second email address is associated with the first email address. When the email address is stored in the correspondence information storage unit and the use of the second email address is within the range of the use according to the transfer request of the email addressed to the second email address, The computer executes processing for changing the destination of the electronic mail to the first mail address stored in the correspondence information storage unit in association with the second mail address.

  According to one aspect, it is possible to reduce the possibility of information leakage related to a communication terminal that receives information via a network.

It is a figure which shows the system configuration example in embodiment of this invention. It is a figure for demonstrating the outline | summary of the process sequence performed in this Embodiment. It is a figure which shows the system configuration example of an information provision site. It is a figure which shows the system configuration example of a telephone company. It is a figure which shows the hardware structural example of each computer which an information provision site and a telephone company have. It is a figure for demonstrating an example of the process sequence performed at the time of reception of the provision request | requirement of coupon information in an information provision site. It is a figure for demonstrating an example of the process sequence of the response process of the mail address in a telephone company. It is a figure which shows the structural example of an authentication information storage part. It is a figure which shows the structural example of an address corresponding | compatible information storage part. It is a figure for demonstrating an example of the process sequence of the transmission process of the coupon information in an information provision site. It is a figure for demonstrating an example of the process sequence of the transfer process of the mail in a telephone company.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings. FIG. 1 is a diagram showing an example of a system configuration in the embodiment of the present invention.

  In FIG. 1, the communication terminal 2 is a communication terminal to which a telephone number and a mail address are assigned, such as a mobile phone or a smartphone. Note that the communication terminal 2 does not necessarily have portability.

  The telephone company 3 is, for example, the telephone company 3 to which the user of the communication terminal 2 is subscribed. That is, the user of the communication terminal 2 can perform telephone communication, information communication, and the like using the communication terminal 2 by using a telecommunication service provided by the telephone company 3. For telephone communication, the public telephone network N1 is used. For information communication, an information communication network N2 such as the Internet is used. Information communication refers to, for example, communication used for transmission / reception of electronic mail (hereinafter simply referred to as “mail”), connection to a website on the Internet, and the like. In the present embodiment, simply “user” means a user of the communication terminal 2.

  The information providing site 4 provides a service (hereinafter referred to as “information providing service”) that distributes campaign information such as coupons and a message in which a URL (Uniform Resource Locator) of a specific website is described. System environment. The user can use the information providing service by calling the information providing site 4 using the communication terminal 2.

  The telephone company 3 and the information providing site 4 can communicate with each other by telephone communication using the public telephone network N1, information communication using the information communication network N2, or the like.

  FIG. 2 is a diagram for explaining the outline of the processing procedure executed in the present embodiment.

  When the user inputs a call instruction for the telephone number of the information providing site 4 to the communication terminal 2, the communication terminal 2 transmits a connection request to the telephone number to the telephone company 3 via the public telephone network N1. (S101). The telephone number of the information providing site 4 is obtained from, for example, a newspaper, magazine, television, radio, or a website on the Internet. Here, the telephone company 3 refers to various devices or facilities for telephone communication owned by the telephone company 3. The telephone company 3 transmits an incoming call request to the information providing site 4 to which the telephone number is assigned via the public telephone network N1 (S102). As a result, the connection request from the communication terminal 2 arrives at, for example, an automatic voice response device of the information providing site 4.

  In the information providing site 4, for example, a coupon information providing request is received by the automatic voice response device (S103). Specifically, when the user operates the communication terminal 2 according to the voice guidance of the automatic voice response device 410, a coupon information provision request is accepted at the information provision site 4. However, provision of information other than coupon information may be requested.

  Subsequently, the information providing site 4 designates the telephone number from the communication terminal 2 via the information communication network N2, and inquires of the telephone company 3 about the mail address for the telephone number (S104). That is, an inquiry about the mail address of the communication terminal 2 is made. In addition, the information providing site 4 acquires the telephone number of the communication terminal 2 by confirming the caller source number in the telephone communication with the communication terminal 2. Therefore, the communication terminal 2 needs to make a connection request for the telephone number of the information providing site 4 in a state where the notification of the caller number is permitted.

  In response to the inquiry about the mail address of the communication terminal 2, the telephone company 3 generates a mail address different from the true mail address of the communication terminal 2 (hereinafter referred to as “real address”) (S105). Hereinafter, the generated mail address is referred to as “fake address”. The fake address is a mail address having usage restrictions. As an example of the use restriction, there are a use period restriction, a use number restriction, and the like.

  The telephone company 3 returns a fake address and an authentication key for the fake address to the information providing site 4 (S106). The authentication key for the fake address is data for confirming the validity of the use of the fake address when the telephone company 3 is requested to transfer mail addressed to the fake address in the subsequent processing.

  Subsequently, the information providing site 4 generates a mail addressed to the fake address (S107). Coupon information requested by the user is attached to the email. The authentication key returned along with the fake address is also attached to the mail. The telephone company 3 receives a transfer request for mail addressed to the fake address. This is because the domain name of the fake address is a domain name corresponding to the telephone company 3.

  When the telephone company 3 receives the transfer request for the mail addressed to the fake address, the telephone company 3 verifies the authentication key attached to the mail and confirms the validity of the use of the fake address (S109). . In the confirmation of validity, it is also confirmed whether or not the use of the fake address is within the range of use restrictions for the fake address.

  If the use of the fake address is outside the use restriction range (No in S109), the telephone company 3 discards the mail (S110). That is, the mail is not transferred to the communication terminal 2.

  On the other hand, when the use of the fake address is within the use restriction range (Yes in S109), the telephone company 3 changes the destination of the mail address to a real address corresponding to the fake address (S111). Subsequently, the telephone company 3 transfers the mail to the real address (S112). Therefore, the mail is received by the communication terminal 2. As a result, the user can acquire coupon information attached to the email.

  As described above, in the present embodiment, the information providing site 4 is not notified of the real address but is notified of the fake address whose usage pattern is limited. Therefore, even if a fake address is leaked from the information providing site 4, damage to the user can be limited. In other words, since the fake address has usage restrictions, it is possible to avoid unsolicited forwarding of spam mails to the communication terminal 2. For example, when the number of times of use of the fake address is limited to one, even if the fake address leaks, the second and subsequent mails addressed to the fake address are discarded in step S110.

  Next, a system configuration example of a computer system in each of the information providing site 4 and the telephone company 3 for realizing the above processing procedure will be described in detail.

  FIG. 3 is a diagram illustrating a system configuration example of the information providing site. In FIG. 3, the information providing site 4 includes an automatic voice response device 410, an information providing server 420, a mail server 430, and the like. Each of these devices is connected to be communicable via a network such as a LAN (Local Area Network) or the Internet.

  The automatic voice response device 410 receives an information provision request from the communication terminal 2 by telephone communication with the communication terminal 2. The information provision request is, for example, a coupon information provision request desired by the user.

  The information providing server 420 is a computer that provides coupon information requested from the communication terminal 2 by e-mail. In FIG. 3, the information providing server 420 includes a request information receiving unit 421, a mail address acquiring unit 422, an information providing mail generating unit 423, and the like. Each of these units is realized by processing that a program installed in the information providing server 420 causes the CPU of the information providing server 420 to execute.

  The request information receiving unit 421 receives information indicating a request for providing information (hereinafter referred to as “request information”) received from the communication terminal 2 by the automatic voice response device 410 from the automatic voice response device 410. The mail address acquisition unit 422 acquires from the telephone company 3 a mail address corresponding to the telephone number of the transmission / reception source of the request information received by the request reception unit (hereinafter referred to as “transmission source number”). The information provision mail generation unit 423 generates a mail attached with coupon information corresponding to the request indicated by the request information (hereinafter referred to as “information provision mail”). A fake address acquired by the mail address acquisition unit 422 is set as the destination of the information providing mail. The information provision mail generation unit 423 requests the mail server 430 to transmit the information provision mail.

  The mail server 430 is a general mail server. In FIG. 3, the mail server 430 includes a mail transmission unit 431. The mail transmission unit 431 is realized by processing that a program installed in the mail server 430 causes the CPU of the mail server 430 to execute. The mail transmission unit 431 executes transmission of mail.

  In the information providing site 4, the relationship between the automatic voice response device 410, the information providing server 420, the mail server 430, and each function is not limited to that shown in FIG. For example, two or more computers in FIG. 3 may be integrated into one computer, or each function may be distributed to more computers.

  FIG. 4 is a diagram illustrating a system configuration example of a telephone company. In FIG. 4, the telephone company 3 includes an address management server 310, a subscriber information server 320, an authentication server 330, a mail server 340, and the like.

  The address management server 310 is a computer that executes processing for concealing the real address of the communication terminal 2 from the information providing site 4. 4, the address management server 310 includes an address acquisition request reception unit 311, a fake address generation unit 312, an authentication key acquisition unit 313, a fake address return unit 314, an address conversion unit 315, and the like. Each of these units is realized by processing that a program installed in the address management server 310 causes the CPU of the address management server 310 to execute. The address management server 310 also uses the address correspondence information storage unit 316. The address correspondence information storage unit 316 can be realized by using an auxiliary storage device of the address management server 310 or a storage device connected to the address management server 310 via a network.

  The address acquisition request receiving unit 311 receives an acquisition request for an e-mail address corresponding to the transmission source number from the information providing server 420 of the information providing site 4. The fake address generation unit 312 generates a fake address. The authentication key acquisition unit 313 acquires an authentication key for the fake address generated by the fake address generation unit 312 from the authentication server 330. The fake address reply unit 314 returns the fake address generated by the fake address generation unit 312 to the information providing server 420. When the mail server 340 receives a mail transfer request addressed to the fake address, the address conversion unit 315 converts the fake address into a real address in response to the request from the mail server 340. The address correspondence information storage unit 316 stores correspondence information between a fake address and a real address.

  The subscriber information server 320 is a computer that manages information related to subscribers to the telephone company 3. In FIG. 4, the subscriber information server 320 has a registration confirmation unit 321. The registration confirmation unit 321 is realized by a process that a program installed in the subscriber information server 320 causes the CPU of the subscriber information server 320 to execute. The subscriber information server 320 also uses a subscriber information storage unit 322. The subscriber information storage unit 322 can be realized using an auxiliary storage device of the subscriber information server 320 or a storage device connected to the subscriber information server 320 via a network.

  The registration confirmation unit 321 uses the transmission source number (that is, the telephone number of the communication terminal 2) specified in the mail address acquisition request received by the address management server 310 as the telephone number of the subscriber of the telephone company 3. Check if it is registered. The subscriber information storage unit 322 stores information (telephone number, e-mail address, etc.) regarding subscribers to the telephone company 3.

  An HLR (Home Location Register) in the mobile communication network may be used as the subscriber information server 320.

  The authentication server 330 is a computer that executes processing for restricting use of a fake address. In FIG. 4, the authentication server 330 includes an authentication information generation unit 331, a usage permission determination unit 332, and the like. Each of these units is realized by processing that a program installed in the authentication server 330 causes the CPU of the authentication server 330 to execute. The authentication server 330 also uses the authentication information storage unit 333. The authentication information storage unit 333 can be realized using an auxiliary storage device of the authentication server 330 or a storage device connected to the authentication server 330 via a network.

  The authentication information generation unit 331 generates authentication information and an authentication key in response to a request from the address management server 310. The authentication information is an example of information indicating the contents of fake address usage restrictions.

  When the mail server 340 receives a mail transfer request for a fake address, the use permission / refusal determination unit 332 determines whether the fake address is permitted based on an authentication key, authentication information, and the like. The authentication information storage unit 333 stores authentication information generated for each fake address.

  The mail server 340 is a computer that executes mail transfer and the like. In FIG. 4, the mail server 340 includes a duplication confirmation unit 341, a destination determination unit 342, a mail transfer unit 343, and the like. Each of these units is realized by processing that a program installed in the mail server 340 causes the CPU of the mail server 340 to execute. The mail server 340 also uses the address information storage unit 344. The address information storage unit 344 can be realized using an auxiliary storage device of the mail server 340 or a storage device connected to the mail server 340 via a network.

  The duplication confirmation unit 341 confirms whether the fake address generated by the fake address generation unit 312 of the address management server 310 is duplicated with other mail addresses.

  The destination determination unit 342 determines a mail address that is a destination of the mail requested to be transferred. That is, when a fake address is set as the destination of the mail, the destination determination unit 342 sets the real address corresponding to the fake address as the destination of the mail. However, only when the use of the fake address is permitted by the authentication server 330. On the other hand, when a real address is set as the destination of the mail address, the destination determination unit 342 sets the real address as the destination of the mail.

  The mail transfer unit 343 transfers the mail requested to be transferred to the destination determined by the destination determination unit 342.

  The address information storage unit 344 stores a list of e-mail addresses of subscribers to the telephone company 3 and the like.

  In the telephone company 3, the relationship between the address management server 310, the subscriber information server 320, the authentication server 330, and the mail server 340 and each function is not limited to that shown in FIG. For example, two or more computers in FIG. 4 may be integrated into one computer, or each function may be distributed to more computers.

  Each computer included in the information providing site 4 and the telephone company 3 has, for example, hardware shown in FIG.

  FIG. 5 is a diagram illustrating a hardware configuration example of each computer included in the information providing site and the telephone company. As shown in FIG. 5, each computer includes a drive device 100, an auxiliary storage device 102, a memory device 103, a CPU 104, and an interface device 105 that are connected to each other via a bus B.

  A program for realizing processing by a computer is provided by the recording medium 101. When the recording medium 101 on which the program is recorded is set in the drive device 100, the program is installed from the recording medium 101 to the auxiliary storage device 102 via the drive device 100. However, the program need not be installed from the recording medium 101 and may be downloaded from another computer via a network. The auxiliary storage device 102 stores the installed program and also stores necessary files and data.

  The memory device 103 reads the program from the auxiliary storage device 102 and stores it when there is an instruction to start the program. The CPU 104 executes a function related to the computer in accordance with a program stored in the memory device 103. The interface device 105 is used as an interface for connecting to a network.

  An example of the recording medium 101 is a portable recording medium such as a CD-ROM, a DVD disk, or a USB memory. Further, as an example of the auxiliary storage device 102, an HDD (Hard Disk Drive), a flash memory, or the like can be given. Both the recording medium 101 and the auxiliary storage device 102 correspond to computer-readable recording media.

  Hereinafter, a more detailed processing procedure for the processing described in FIG. 2 will be described. FIG. 6 is a diagram for explaining an example of a processing procedure executed when a coupon information provision request is received at the information providing site. That is, FIG. 6 shows details of the portion (a) in FIG.

  In step S201, the automatic voice response device 410 receives a connection request from the communication terminal 2. Subsequently, the automatic voice response device 410 automatically reproduces the voice guidance and prompts the user to operate the communication terminal 2 (S202). In the communication terminal 2, a button having a number corresponding to the user's request is pressed according to the voice guidance. The automatic voice response device 410 receives the number of the pressed button (hereinafter referred to as “request instruction number”) (S203).

  It can be said that the request instruction number is information indicating the content of the user request. For example, the request instruction number is information indicating what coupon information the user is requesting to provide.

  Subsequently, the automatic voice response unit 410 automatically disconnects the connection with the communication terminal 2 after reproducing the voice guidance indicating that the request has been received (S204). Subsequently, the automatic voice response device 410 transmits an information provision request in which a transmission source number, a request instruction number, and the like are designated to the information provision server 420 (S205).

  When the request information receiving unit 421 of the information providing server 420 receives the information providing request, the request information receiving unit 421 stores, for example, the transmission source number and the request instruction number specified in the information providing request in the memory device 103 of the information providing server 420. To do. Subsequently, the mail address acquisition unit 422 of the information providing server 420 identifies the telephone company to which the communication terminal 2 is subscribed based on the caller source number (S206). For example, a telephone system such as a mobile phone has a different numbering system for each telephone company. The mail address acquisition unit 422 identifies the telephone company based on which number system the source number belongs to. Here, it is assumed that the telephone company 3 is specified as the telephone company to which the communication terminal 2 is subscribed.

  Subsequently, the e-mail address acquisition unit 422 transmits an e-mail address acquisition request to the address management server 310 of the telephone company 3 (S207). In the acquisition request, a transmission source number and a mail address of the information providing server 420 are specified. The e-mail address of the information providing server 420 is an e-mail address used as a transmission source address when the information providing server 420 transmits the information providing e-mail.

  Next, a processing procedure executed in the telephone company 3 in response to the mail address acquisition request transmitted in step S207 will be described. FIG. 7 is a diagram for explaining an example of the processing procedure of the mail address response processing in the telephone company. FIG. 7 shows details of the portion (b) in FIG.

  In step S301, the address acquisition request receiving unit 311 of the address management server 310 receives the mail address acquisition request transmitted in step S207. Subsequently, the address acquisition request receiving unit 311 transmits a confirmation request to the subscriber information server 320 as to whether or not the caller number specified in the acquisition request is the telephone number of the subscriber of the telephone company 3. (S302).

  The registration confirmation unit 321 of the subscriber information server 320 refers to the subscriber information storage unit 322 and confirms whether or not the caller number is registered as the subscriber's telephone number (S303). The registration confirmation unit 321 returns a response including the confirmation result to the address acquisition request reception unit 311 (S304). When the sender number is registered in the subscriber information storage unit 322, the registration confirmation unit 321 is associated with the sender number and stored in the subscriber information storage unit 322 (that is, the actual address). Address) is included in the response to the address acquisition request receiving unit 311.

  If the confirmation result indicates that the source number is registered as the subscriber's telephone number (Yes in S305), the fake address generation unit 312 of the address management server 310 generates a fake address ( S306). The generation method of the fake address is not limited to a predetermined method. For example, a random character string may be used as the fake address. In addition, a character string group that cannot be used as a real address may be determined in advance, and one of the character string groups may be selected as a fake address. A fake address is generated so as not to overlap with other fake addresses stored in the address correspondence information storage unit 316. The domain name of the fake address (character string after @) is preferably the domain name of the telephone company 3 as with the real address. This is because the mail addressed to the fake address is also transferred via the mail server 340 of the telephone company 3.

  Subsequently, the fake address generation unit 312 transmits a confirmation request for duplication with another mail address regarding the generated fake address to the mail server 340 (S307). In response to the confirmation request, the duplication confirmation unit 341 of the mail server 340 confirms whether or not the fake address is duplicated with any of the mail addresses stored in the address information storage unit 344 (S308). The duplication confirmation unit 341 returns a response including the confirmation result to the fake address generation unit 312 (S309).

  When the confirmation result indicates that the fake address overlaps with another mail address (Yes in S310), the fake address generation unit 312 repeats step S306 and the subsequent steps. That is, steps S306 to S310 are repeated until a fake address that does not overlap with other mail addresses is generated.

  When it is confirmed that a fake address that does not overlap with another mail address is generated (No in S310), the authentication key acquisition unit 313 of the address management server 310 transmits an authentication information generation request to the authentication server 330 ( S311). In the generation request, for example, the mail address of the information providing server 420 received in step S301 is designated.

  The authentication information generation unit 331 of the authentication server 330 generates authentication information in response to the authentication information generation request (S312). The generated authentication information is stored in the authentication information storage unit 333.

  FIG. 8 is a diagram illustrating a configuration example of the authentication information storage unit. In FIG. 8, the authentication information storage unit 333 stores an authentication ID, the number of usable times, a usable period, a usable user, and the like. The number of usable times, the usable period, and the usable user are items constituting the authentication information.

  The authentication ID is identification information for each authentication information. The number of usable times is a limit value of the number of times the fake address is used. The usable period is a period during which the fake address can be used. The usable person is identification information of a person who can use the fake address. For the usable person, for example, the mail address of the information providing server 420 specified in the authentication information generation request is stored. The number of usable times or the usable period may be determined by the authentication information generation unit 331 or may be determined by an application from the information providing site 4. In the latter case, for example, the number of usable times or the usable period may be specified in the mail address acquisition request in step S301. Note that only one of the usable number of times and the usable period may be stored. Further, another item for restricting the use of the fake address may be added to the authentication information. Note that “use of fake address” means transmission of mail to a fake address.

  Subsequently, the authentication information generation unit 331 generates an authentication key (S313). In the present embodiment, the authentication key is information that can be specified as corresponding authentication information. Since the authentication information is generated for each fake address, the fact that the authentication information can be specified means that the authentication key is unique data for each fake address. For example, an authentication ID may be used as an authentication key. However, it is desirable that the authentication key can be proved to be surely generated in the authentication server 330. For example, the authentication key may be obtained by encrypting information including the authentication ID with an encryption key stored in the authentication server 330. Alternatively, information obtained by combining the electronic certificate of the authentication server 330 and the authentication ID may be used as the authentication key. Other known techniques may be used to verify the origin of the authentication key.

  Subsequently, the authentication information generation unit 331 returns an authentication key to the authentication key acquisition unit 313 (S314). The authentication key acquisition unit 313 stores the correspondence information of the fake address, the authentication key, and the real address in the address correspondence information storage unit 316. (S315).

  FIG. 9 is a diagram illustrating a configuration example of the address correspondence information storage unit. As shown in FIG. 9, the address correspondence information storage unit 316 stores a fake address, an authentication key, and a real address in association with each other. The fake address generated in step S306 is stored. The authentication key returned in step S314 is stored. The real address received in step S309 is stored. Note that the authentication key may not be stored in the address correspondence information storage unit.

  Subsequently, the fake address reply unit 314 of the address management server 310 uses the fake address and authentication key generated in step S306 as a response to the mail address acquisition request in step S301, and the mail address acquisition unit 422 of the information providing server 420. (S316).

  On the other hand, when the confirmation result received in step S304 indicates that the caller number is not registered as the telephone number of the subscriber (No in S305), the address acquisition request receiving unit 311 A request for obtaining an e-mail address for the caller number is forwarded to the company (S306). This is because the source number has a high possibility of being subscribed to another telephone company due to number portability (MNP: Mobile Number Portability). In this case, for example, processing similar to steps S301 to S316 may be executed in another telephone company. The fake address reply unit 314 sends the fake address and the authentication key returned in step S316 executed in another telephone company back to the mail address acquisition unit 422 of the information providing server 420 (S316).

  Note that another telephone company as a transfer destination of the mail address acquisition request may be fixedly determined. Alternatively, an e-mail address acquisition request may be forwarded to all telephone companies that provide mobile communication services at that time except for the telephone company 3.

  Subsequently, a processing procedure executed in the information providing site 4 in response to the return of the fake address and the authentication key in step S316 will be described. FIG. 10 is a diagram for explaining an example of a processing procedure of coupon information transmission processing in the information providing site. FIG. 10 shows details of the portion (c) in FIG.

  In step S401, the mail address acquisition unit 422 of the information providing server 420 receives the fake address and authentication key returned in step S316. Subsequently, the information provision mail generation unit 423 generates an information provision mail with the fake address as a destination (S402). Subsequently, the information provision mail generation unit 423 attaches the request instruction number, that is, coupon information corresponding to the user's request to the information provision mail (S403). Subsequently, the information provision mail generation unit 423 attaches the authentication key to the information provision mail (S404). Subsequently, the information providing mail generation unit 423 transmits an information providing mail transmission request to the mail server 430 (S405).

  In response to the transmission request, the mail transmission unit 431 of the mail server 430 transmits the information providing mail to the fake address (S406).

  Next, a processing procedure executed when the telephone company 3 receives a mail transfer request will be described. FIG. 11 is a diagram for explaining an example of a mail transfer process procedure in the telephone company.

  When the mail server 340 receives a mail (hereinafter referred to as “target mail”) transfer request (S501), the destination determination unit 342 of the mail server 340 receives a mail address (hereinafter referred to as the destination of the target mail). , “Destination address”) is a real address (S502). Whether or not it is a real address may be determined based on whether or not the destination address is stored in the address information storage unit 344, for example. Alternatively, flag information indicating a fake address may be attached to an email transmitted from the information providing server 420. In this case, the destination determination unit 342 can determine whether or not the address is a real address without searching the address information storage unit 344. Therefore, improvement in processing performance can be expected.

  Note that the information providing mail transmitted in step S405 is also received by the mail server 340 in step S501.

  When the destination address is not a real address (No in S502), that is, when the destination address is a fake address, the destination determination unit 342 specifies the fake address and transmits a real address acquisition request to the address management server 310. (S503). When the authentication key is attached to the target mail, the authentication key is also specified in the real address acquisition request.

  The address conversion unit 315 of the address management server 310 specifies the authentication key (hereinafter referred to as “authentication key A”) specified in the real address acquisition request and the transmission source address of the target mail, and the fake address. An inquiry as to whether or not to use the server is transmitted to the authentication server 330 (S504). Note that the address conversion unit 315 may check the presence of the fake address with reference to the address correspondence information storage unit 316 before inquiring whether to permit use. The address conversion unit 315 may make an inquiry as to whether or not the use is permitted when the presence of the fake address is confirmed. Further, even when an authentication key (hereinafter, referred to as “authentication key B”) that is associated with the fake address and stored in the address correspondence information storage unit 316 is specified in the inquiry about whether or not to use the fake address. Good. In this case, two authentication keys are specified.

  Based on the authentication key A and the authentication information corresponding to the authentication key A, the use permission / non-permission determination unit 332 of the authentication server 330 determines whether or not the fake address can be used (S505). For example, the validity of the authentication key A is verified. Specifically, when the authentication key A is encrypted with the encryption key of the authentication server 330, decryption of the authentication key A is attempted. If the decryption is successful, the authenticity of the authentication key A is recognized. Further, when the authentication key B is specified in the fake address use permission determination request, the authentication key A and the authentication key B may be compared. If the two do not match, the authentication key A is determined to be invalid. The validity of the authentication key A may be determined using other known techniques. When the authenticity of the authentication key A is denied, it is determined that the use of the fake address is not permitted.

  When the authenticity of the authentication key A is affirmed, whether or not to use the fake address is determined based on the usable period, usable number, usable person, etc. corresponding to the authentication ID included in the authentication key A. The When the usable period is set, it is determined whether the current date and time is included in the usable period. When the current date and time are not included in the usable period, it is determined that the use of the fake address is not permitted. Further, when the usable number of times is set, it is determined whether or not the usable number of times is 1 or more. If the usable count is 0, it is determined that the use of the fake address is not permitted. As will be described later, when it is determined that the fake address can be used, 1 is subtracted from the usable count.

  In addition, it is determined whether or not the source address of the target mail matches the value of the usable person. If they do not match, it is determined that the use of the fake address is not permitted.

  Subsequently, the use permission / inhibition determination unit 332 returns a determination result of permission / inhibition of use of the fake address to the address conversion unit 315 (S506). When returning a determination result indicating permission of use, the use permission determination unit 332 subtracts 1 from the usable number of authentication information corresponding to the authentication key A in the authentication information storage unit 333.

  When the returned determination result indicates permission of use (Yes in S507), the address conversion unit 315 acquires the real address corresponding to the fake address specified in Step S503 from the address correspondence information storage unit 316 ( S508). On the other hand, when the determination result indicates that use is not permitted (No in S507), the address conversion unit 315 generates error information indicating that acquisition of a real address is not permitted (S509). Subsequently, the address conversion unit 315 returns a response including the real address or error information to the destination determination unit 342 (S510).

  When error information is returned from the address management server 310 (S511, No), the destination determination unit 342 discards the target mail (S512). On the other hand, when the real address is returned from the address management server 310, the mail transfer unit 343 removes the authentication key attached to the target mail from the target mail (S513). Subsequently, the mail transfer unit 343 changes the destination of the target mail from a fake address to a real address (S514). Subsequently, the mail transfer unit 343 transfers the target mail to the destination of the target mail (S515). As a result, for example, the information providing mail transmitted to the fake address in step S406 is received by the communication terminal 2.

  On the other hand, when it is determined in step S502 that the destination address is a real address (Yes in S502), the mail transfer unit 343 transfers the target mail as it is (S515). For example, general mail, such as mail from a user's friend, is transferred by such a processing procedure.

  As described above, according to the present embodiment, the address management server 310 responds to the mail address acquisition request from the information providing server 420 that has received the information provision request from the communication terminal 2 with the real address of the communication terminal 2. Reply with a fake address different from. When the mail server 340 of the telephone company 3 receives a mail transfer request addressed to the fake address, the electronic mail is transferred to the real address corresponding to the fake address. Therefore, the real address of the communication terminal 2 can be hidden from the information providing server 420 without hindering the provision of information by the information providing server 420. As a result, the possibility that the real address of the communication terminal 2 is leaked can be reduced.

  However, if the fake address can be used indefinitely, even if the real address is concealed, if the fake address associated with the real address is disclosed, the real address is substantially disclosed. The same thing can happen. This is because when the fake address is leaked, the spam mail addressed to the fake address is transferred to the communication terminal 2 without limitation.

  Therefore, use restrictions are provided for the fake address of the present embodiment. In other words, when the mail server 340 of the telephone company 3 receives a mail forwarding request addressed to the fake address, the e-mail is sent only when the use of the fake address is within the use restriction range. It is forwarded to the real address corresponding to. Therefore, even if the fake address is leaked, the spam mail transferred to the communication terminal 2 is limited to the range of the use restriction.

  Further, in the present embodiment, authentication information indicating the contents of use restriction is managed for each fake address. Therefore, it is possible to permit the transfer of an e-mail addressed to the fake address by using different use restrictions for each fake address. As a result, for example, usage restrictions can be set in accordance with a user's request for providing information using the communication terminal 2, an information providing form of the information providing site 4, and the like. The user's request is, for example, the number of times information is received or a request for a reception period. The information provision form of the information providing site 4 is, for example, whether information is provided only once in response to a request for information provision or whether information is provided a plurality of times in a predetermined period. .

  However, it is not essential to manage authentication information indicating the contents of usage restrictions. For example, the use of any fake address may be restricted within a predetermined period after the generation of the fake address. In addition, the use of any fake address may be limited to fixed N times. In this case, authentication information may not be managed for each fake address. For example, after the elapse of a predetermined period after the generation of the fake address or after a fixed N times of use, information indicating that the fake address is invalid is added to the fake address in the address correspondence information storage unit 316. Also good. When the information indicating that the address conversion unit 315 is invalid is added to the fake address specified in the real address acquisition request in step S503, the address conversion unit 315 may return error information in step S510.

  In this embodiment, an authentication key is returned to the information providing server 420 together with the fake address. The mail addressed to the fake address is permitted to be transferred to the real address only when the use of the fake address is within the range of use restriction and the authentication key is attached. The authentication key is data unique to each fake address based on the authentication ID assigned to each fake address. Therefore, by confirming that the authentication key is attached to the mail addressed to the fake address, the use of the fake address is permitted only when the sender of the fake address is a valid user of the fake address. The possibility can be increased.

  In this embodiment, the example in which the data based on the authentication ID of the authentication information, which is information indicating the content of the use restriction, is used as the authentication key has been described. However, if the data is unique to each fake address, the authentication is performed. Data that is not associated with information may replace the role of the authentication key. Even in this case, it is possible to increase the possibility that the use of the fake address is permitted only when the sender of the fake address is an authorized user of the fake address.

  Moreover, in this Embodiment, the information provision site 4 demonstrated the example which receives provision of information by telephone communication with the communication terminal 2. FIG. Such a form is convenient for a user who is unaccustomed to handling the communication terminal 2 such as an elderly person or a child. This is because it is possible to request provision of information by making a telephone call instead of connecting to the Internet.

  However, the information providing site 4 may accept provision of information via a Web page or the like. In this case, the automatic voice response device 410 may be replaced with, for example, a Web server that executes transmission of a Web page and reception of a request according to an input to the Web page. In response to access from the communication terminal 2, the Web server returns to the communication terminal 2 a Web page for inputting what information is desired to be provided. The communication terminal 2 transmits information input to the Web page to the Web server. This information is replaced with the request instruction number described in the present embodiment. In this Web page, in order to prevent leakage of the mail address of the communication terminal 2, the mail address of the communication terminal 2 (that is, the information distribution destination) is not input. The Web server can acquire a unique ID (for example, a contractor unique ID) for each individual or machine of the communication terminal 2 through communication with the communication terminal 2. Therefore, the unique ID may be used instead of the transmission source number.

  Specifically, the information providing server 420 may specify the unique ID and transmit a mail address acquisition request to the address management server 310. The subscriber information storage unit 322 of the subscriber information server 320 only needs to store a real address in association with the unique ID.

  As described above, the information specified in the mail address acquisition request to the address management server 310 is not necessarily the telephone number (source number). The information specified in the acquisition request may be identification information that can identify each individual communication terminal 2 like the unique ID.

  As a secondary effect based on the above effect, the information providing site 4 for potential users who have refrained from using the information providing site 4 in consideration of the possibility of leakage of telephone numbers and e-mail addresses. The promotion of the use of can be expected.

  Further, the telephone company 3 can appeal the improvement of reliability to the business operator who operates the information providing site 4 and the like.

  In addition, according to the present embodiment, not the short message service but an electronic mail (Internet mail) can be used as the information providing means. Therefore, considering the possibility of unwanted calls as well as unwanted messages, it is possible to reduce the possibility of leakage of telephone numbers that are more important than email addresses.

  In addition, the information providing site 4 can provide information exceeding various restrictions of the short message service. For example, it is possible to provide information that exceeds the limit of the number of characters in the short message service. In addition, it is possible to provide information using data that cannot be transmitted by the short message service, such as image data. By doing so, for example, coupon information expressed by a two-dimensional code or the like can be provided.

  In addition, even a user who refuses to receive the short message service as a measure to prevent the annoying short message service can receive information from the information providing site 4 of the present embodiment.

  In the present embodiment, the address management server 310, the authentication server 330, the mail server 340, or the like, or the address management server 310 is an example of an information processing apparatus. That is, the information processing apparatus is not necessarily a single computer but may be a set of a plurality of computers.

  The address acquisition request receiving unit 311 is an example of a receiving unit. The real address is an example of a first mail address. The fake address is an example of a second mail address. The fake address reply unit 314 is an example of a reply unit. The address correspondence information storage unit 316 is an example of a correspondence information storage unit. The address conversion unit 315 is an example of a changing unit. The information providing server 420 is an example of an information providing apparatus.

  As mentioned above, although the Example of this invention was explained in full detail, this invention is not limited to such specific embodiment, In the range of the summary of this invention described in the claim, various deformation | transformation・ Change is possible.

Regarding the above description, the following items are further disclosed.
(Appendix 1)
Received from the information providing apparatus that has received the information provision request from the communication terminal, is received an email address acquisition request in which the identification information of the communication terminal is designated,
A second e-mail address having a use restriction different from the first e-mail address stored in association with the identification information is returned to the information providing apparatus,
Storing the second mail address in the correspondence information storage unit in association with the first mail address;
In response to a transfer request for an e-mail addressed to the second e-mail address, when the use of the second e-mail address is within the use restriction range, the second e-mail address is associated with the second e-mail address. An information processing method in which a computer executes processing for changing a destination of the electronic mail to the first mail address stored in a correspondence information storage unit.
(Appendix 2)
For each of the second e-mail addresses, the computer executes a process of storing information indicating the contents of the use restriction in the restriction information storage unit,
In the process of changing the destination, the use of the second mail address is stored in the restriction information storage unit with respect to the second mail address in response to an e-mail transfer request with the second mail address as the destination. Appendix 1 that changes the destination of the e-mail to the first e-mail address stored in the correspondence information storage unit in association with the second e-mail address when the information to be used is within the range of use restriction Information processing method.
(Appendix 3)
The replying process returns the second mail address and data unique to each second mail address to the information providing apparatus,
In the process of changing the destination, the data is attached to the e-mail according to a transfer request of the e-mail addressed to the second e-mail address, and the use of the second e-mail address is The supplementary note 1 or 2, wherein when it is within the use restriction range, the destination of the electronic mail is changed to the first mail address stored in the correspondence information storage unit in association with the second mail address. Information processing method.
(Appendix 4)
The information processing method according to any one of appendices 1 to 3, wherein the use restriction includes a use count or a use period of the second mail address.
(Appendix 5)
A receiving unit that receives an acquisition request for an e-mail address in which identification information of the communication terminal is designated, which is transmitted from an information providing apparatus that has received an information provision request from a communication terminal;
A reply unit that returns a second email address with a use restriction different from the first email address stored in association with the identification information to the information providing device;
A correspondence information storage unit for storing the second mail address in association with the first mail address;
In response to a transfer request for an e-mail addressed to the second e-mail address, when the use of the second e-mail address is within the use restriction range, the second e-mail address is associated with the second e-mail address. An information processing apparatus comprising: a changing unit that changes a destination of the electronic mail to the first mail address stored in the correspondence information storage unit.
(Appendix 6)
For each second e-mail address, a restriction information storage unit that stores information indicating the contents of the use restriction,
In response to an e-mail transfer request addressed to the second e-mail address, the changing unit uses the second e-mail address, and the information stored in the restriction information storage unit regarding the second e-mail address The information processing according to appendix 5, wherein the address of the e-mail is changed to the first e-mail address stored in the correspondence information storage unit in association with the second e-mail address when the usage e-mail is within the range of use restriction shown. apparatus.
(Appendix 7)
The reply unit replies the second mail address and data unique to each second mail address to the information providing device,
In response to a transfer request for an e-mail addressed to the second e-mail address, the change unit includes the data attached to the e-mail, and the use restriction of the second e-mail address is the use restriction. The information processing apparatus according to appendix 5 or 6, wherein the address of the e-mail is changed to the first e-mail address stored in the correspondence information storage unit in association with the second e-mail address when the e-mail is within the range .
(Appendix 8)
The information processing apparatus according to claim 5, wherein the use restriction includes a use count or a use period of the second mail address.
(Appendix 9)
Received from the information providing apparatus that has received the information provision request from the communication terminal, is received an email address acquisition request in which the identification information of the communication terminal is designated,
A second e-mail address having a use restriction different from the first e-mail address stored in association with the identification information is returned to the information providing apparatus,
Storing the second mail address in the correspondence information storage unit in association with the first mail address;
In response to a transfer request for an e-mail addressed to the second e-mail address, when the use of the second e-mail address is within the use restriction range, the second e-mail address is associated with the second e-mail address. A program for causing a computer to execute a process of changing the destination of the e-mail to the first e-mail address stored in the correspondence information storage unit.
(Appendix 10)
For each of the second e-mail addresses, the computer executes a process of storing information indicating the contents of the use restriction in the restriction information storage unit,
In the process of changing the destination, the use of the second mail address is stored in the restriction information storage unit with respect to the second mail address in response to an e-mail transfer request with the second mail address as the destination. Supplementary note 9 that changes the destination of the e-mail to the first e-mail address stored in the correspondence information storage unit in association with the second e-mail address when the information to be used is within the range of use restriction Program.
(Appendix 11)
The replying process returns the second mail address and data unique to each second mail address to the information providing apparatus,
In the process of changing the destination, the data is attached to the e-mail according to a transfer request of the e-mail addressed to the second e-mail address, and the use of the second e-mail address is The supplementary note 9 or 10, wherein when it is within the use restriction range, the destination of the electronic mail is changed to the first mail address stored in the correspondence information storage unit in association with the second mail address. program.
(Appendix 12)
The program according to any one of appendices 9 to 11, wherein the use restriction includes a use count or a use period of the second mail address.

2 Communication terminal 3 Telephone company 4 Information providing site 100 Drive device 101 Recording medium 102 Auxiliary storage device 103 Memory device 104 CPU
105 Interface Device 310 Address Management Server 311 Address Acquisition Request Receiving Unit 312 Fake Address Generation Unit 313 Authentication Key Acquisition Unit 314 Fake Address Return Unit 315 Address Conversion Unit 316 Address Corresponding Information Storage Unit 320 Subscriber Information Server 321 Registration Confirmation Unit 322 Subscriber Information storage unit 330 Authentication server 331 Authentication information generation unit 332 Use permission determination unit 333 Authentication information storage unit 340 Mail server 341 Duplication confirmation unit 342 Destination determination unit 343 Mail transfer unit 344 Address information storage unit 410 Automatic voice response device 420 Information providing server 421 Request information reception unit 422 Mail address acquisition unit 423 Information provision mail generation unit 430 Mail server 431 Mail transmission unit B Bus N1 Public telephone network N2 Information communication network

Claims (5)

Received from the information providing apparatus that has received the information provision request from the communication terminal, is received an email address acquisition request in which the identification information of the communication terminal is designated,
A second e-mail address having a use restriction different from the first e-mail address stored in association with the identification information is returned to the information providing apparatus,
Storing the second mail address in the correspondence information storage unit in association with the first mail address;
In response to a transfer request for an e-mail addressed to the second e-mail address, when the use of the second e-mail address is within the use restriction range, the second e-mail address is associated with the second e-mail address. An information processing method in which a computer executes processing for changing a destination of the electronic mail to the first mail address stored in a correspondence information storage unit. For each of the second e-mail addresses, the computer executes a process of storing information indicating the contents of the use restriction in the restriction information storage unit,
In the process of changing the destination, the use of the second mail address is stored in the restriction information storage unit with respect to the second mail address in response to an e-mail transfer request with the second mail address as the destination. The address of the e-mail is changed to the first e-mail address stored in the correspondence information storage unit in association with the second e-mail address when the information to be used is within a range of use restrictions. The information processing method described. The replying process returns the second mail address and data unique to each second mail address to the information providing apparatus,
In the process of changing the destination, the data is attached to the e-mail according to a transfer request of the e-mail addressed to the second e-mail address, and the use of the second e-mail address is 3. The destination of the e-mail is changed to the first e-mail address stored in the correspondence information storage unit in association with the second e-mail address when it is within the use restriction range. Information processing method. A receiving unit that receives an acquisition request for an e-mail address in which identification information of the communication terminal is designated, which is transmitted from an information providing apparatus that has received an information provision request from a communication terminal;
A reply unit that returns a second email address with a use restriction different from the first email address stored in association with the identification information to the information providing device;
A correspondence information storage unit for storing the second mail address in association with the first mail address;
In response to a transfer request for an e-mail addressed to the second e-mail address, when the use of the second e-mail address is within the use restriction range, the second e-mail address is associated with the second e-mail address. An information processing apparatus comprising: a changing unit that changes a destination of the electronic mail to the first mail address stored in the correspondence information storage unit. Received from the information providing apparatus that has received the information provision request from the communication terminal, is received an email address acquisition request in which the identification information of the communication terminal is designated,
A second e-mail address having a use restriction different from the first e-mail address stored in association with the identification information is returned to the information providing apparatus,
Storing the second mail address in the correspondence information storage unit in association with the first mail address;
In response to a transfer request for an e-mail addressed to the second e-mail address, when the use of the second e-mail address is within the use restriction range, the second e-mail address is associated with the second e-mail address. A program for causing a computer to execute a process of changing the destination of the e-mail to the first e-mail address stored in the correspondence information storage unit.

Images