JP2014180007A - Information processing device, information processing method, and computer program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To efficiently perform e-mail transmission control processing in a transmission control system of e-mail under a multi-tenant environment.SOLUTION: When performing transmission control processing of e-mail from an e-mail address used in a tenant A to an e-mail address used in a tenant B, an information processing device determines a transmission control method of the e-mail by using a transmission control rule of the tenant A, and determines a receiving control method of the e-mail by using a receiving control rule of the tenant B. The information processing device finally determines processing executing for the e-mail by using the transmission control method determined by using the transmission control rule, and the receiving control method determined by using the receiving control rule.

Description

  The present invention relates to a technique for performing e-mail transmission control.

  In recent years, it has become common to send and receive various types of information using electronic mail. At that time, information leakage resulting from an error in setting an e-mail transmission destination address or an error in attaching a file to the e-mail has become a problem. Also, defense from computer viruses attached to e-mails is a major problem.

  Therefore, instead of sending an email immediately, an email transmission control rule is set, and an email that matches the rule is canceled or temporarily suspended and sent to the sender of the email. A system that performs filtering processing such as permitting / disabling transmission according to a long operation instruction has been introduced in companies and the like. In addition, for reasons such as the case where a computer virus or the like is attached to an e-mail, a rule for whether or not to receive an e-mail is set, and whether or not the e-mail can be received is determined according to the rule. .

  Patent Document 1 discloses a technique related to delayed transmission processing in which transmission of an electronic mail is temporarily suspended and an electronic mail is transmitted after confirmation processing of the electronic mail sender.

JP 2005-277976 A

  In recent years, outsourcing of business systems in the form of cloud services has progressed. In the future, such e-mail transmission / reception control is expected to be provided by cloud services and the like. When performing e-mail transmission / reception control with the cloud service, the cloud service provider's server sets rules for transmission control and reception control for each customer (tenant). Correspondingly, it is expected that the transmission / reception control of the electronic mail is performed by switching the rule used for the electronic mail transmission / reception control.

  Another tenant (second tenant) that is an e-mail transmitted from the e-mail address of a certain tenant (first tenant) and that controls e-mail transmission by the same cloud service as the first tenant ), The transmission control rule of the first tenant is used to determine whether or not the email can be transmitted, and then the transmission is permitted. After receiving the e-mail, whether or not the e-mail can be received is determined using the reception control rule of the second tenant.

  As described above, the transmission of the email is temporarily suspended and the email is transmitted after the confirmation processing of the email sender, or the email that is suspended by the auditor is transmitted to the email that is suspended. In some cases, an e-mail is sent after a pre-audit that allows the user to input whether or not to send is permitted, and the e-mail is sent. If mail reception is rejected, the confirmation process and pre-audit are useless work.

  In addition, as a rule for controlling the reception of e-mails, there are many rules that are set on the condition of the size of the received e-mail, and even if the e-mail is allowed to be sent on the transmission side, the e-mail size is large. For this reason, the reception side may refuse the reception. In such a case, the user who sent the e-mail had to re-send the e-mail after making settings for dividing and sending the e-mail again.

  Therefore, in view of the above-described problems, the present invention provides not only the transmission control method determined by the transmission control rule on the transmission side but also the reception control rule on the reception side when performing e-mail transmission control. It is an object to specify whether a control method is to be used and to determine a transmission control method for the e-mail according to the result.

  In order to achieve the above object, an information processing apparatus according to the present invention is an information processing apparatus that provides an e-mail transmission control service, and includes tenant information including specific information that specifies an e-mail address used by a tenant. First storage means for storing, second storage means for storing e-mail transmission control rules and reception control rules for each tenant, and receiving means for receiving e-mails transmitted from client devices; Using the source e-mail address set in the e-mail received by the receiving unit and the tenant information, the first specifying unit for specifying the source tenant and the first specifying unit specified A first deciding means for deciding an e-mail transmission control action based on a transmission control rule of a transmission source tenant; and an e-mail received by the receiving means. To the second e-mail address set in the e-mail address and the tenant information, the second specifying means for specifying the destination tenant, and the reception control rule for the destination tenant specified by the second specifying means Based on the second determining means for determining the reception control action of the e-mail based on, the transmission control action determined by the first determining means, and the reception control action determined by the second determining means And third determining means for determining a transmission control process to be executed for the electronic mail.

  In order to achieve the above object, an information processing method according to the present invention includes a first storage unit that stores tenant information including specific information that specifies an e-mail address used by a tenant, and an electronic device for each tenant. And a second storage means for storing a mail transmission control rule and a reception control rule, wherein the information processing method is performed by an information processing apparatus that provides an e-mail transmission control service. A receiving step of receiving an e-mail; a first e-mail specifying a source tenant using the e-mail address set in the e-mail received in the receiving step; and the tenant information; and A first determinant for determining an e-mail transmission control action based on the transmission control rule of the transmission source tenant specified in the first specific process And a second specifying step of specifying a destination tenant using the destination e-mail address set in the e-mail received in the receiving step and the tenant information, and specifying in the second specifying step A second determination step of determining an e-mail reception control action based on the received reception tenant's reception control rule, a transmission control action determined in the first determination step, and a determination in the second determination step And a third determination step of determining a transmission control process to be executed for the electronic mail based on the received control action.

  In order to achieve the above object, a computer program according to the present invention includes a first storage unit that stores tenant information including specific information that specifies an e-mail address used by a tenant, and an e-mail for each tenant. A second storage means for storing the transmission control rule and the reception control rule, and an information processing apparatus for providing an electronic mail transmission control service, a receiving means for receiving an electronic mail transmitted from a client apparatus, Using the source e-mail address set in the e-mail received by the receiving unit and the tenant information, the first specifying unit for specifying the source tenant and the first specifying unit specified A first deciding means for deciding an e-mail transmission control action based on a transmission control rule of a transmission source tenant; and receiving by the receiving means Using the destination e-mail address set in the received e-mail, the tenant information, the second specifying unit for specifying the destination tenant, and the reception of the destination tenant specified by the second specifying unit A second determining means for determining an e-mail reception control action based on the control rule; a transmission control action determined by the first determining means; a reception control action determined by the second determining means; Based on the above, it is made to function as a third determination means for determining a transmission control process to be executed for the electronic mail.

  According to the present invention, when performing e-mail transmission control, not only the transmission control method based on the transmission control rule on the transmission side, but also what kind of reception control method is determined based on the reception control rule on the reception side, By finally determining the transmission control process for the e-mail according to the results, it is possible to suitably suppress the work of the sender and the inspector, which results in useless work.

It is a figure which shows an example of the system configuration | structure of the information processing system of this invention. It is a figure which shows an example of the hardware constitutions of the information processing apparatus applicable to the email control server 101 of FIG. It is a figure which shows an example of a function structure of the electronic mail control server 101 of FIG. It is a figure which shows the transmission path | route of the email in the information processing system of this invention. It is a flowchart which shows the outline | summary of the email control process performed by the email control server 101 of FIG. It is a flowchart which shows the detail of the email transmission control process of step S503 of FIG. It is a flowchart which shows the detail of the email control rule application process of the transmission destination of step S610 of FIG. It is a flowchart which shows the detail of the email hold processing of step S612 of FIG. It is a flowchart which shows the detail of the email reception control process of FIG.5 S504. It is a flowchart which shows the detail of the hold | maintenance email communication control process of step S506 of FIG. It is a figure which shows an example of a structure of the pending | holding email list display screen displayed on the display apparatus of the client apparatus. It is a figure which shows an example of a structure of the pending | holding email detailed display screen displayed on the display apparatus of the client apparatus. It is a figure which shows an example of a data structure of a transmission control rule. It is a figure which shows an example of a data structure of a reception control rule. It is a figure which shows an example of a data structure of tenant management information. It is a flowchart which shows an example of the email transmission control process in 2nd Embodiment. It is a flowchart which shows an example of the email transmission control process in 2nd Embodiment. It is a flowchart which shows the detail of the reception control rule application process of the other tenant contained in the transmission destination of step S1610 of FIG. It is a figure which shows an example of the data structure of the transmission control rule in 2nd Embodiment. It is a figure which shows an example of the data structure of the reception control rule in 2nd Embodiment.

  Hereinafter, an example of an embodiment of the present invention will be described with reference to the drawings.

  FIG. 1 is a diagram illustrating an example of a system configuration of an information processing system according to the present invention. As shown in FIG. 1, the information processing system of the present invention includes an e-mail control server 101, a pre-stage mail server 102, a post-stage mail server 103, a LAN 104, client apparatuses 105-1 to 105-3 (hereinafter collectively referred to as client apparatus 105 and A wide-area communication network 106 such as the Internet.

  In the figure, an e-mail control server 101 is a server device that functions as an information processing device of the present invention. This e-mail control server 101 is for performing e-mail transmission / reception control in a cloud service in a multi-tenant environment. In order to determine whether e-mails can be transmitted / received by a plurality of tenants, It is possible to set a transmission control rule and a reception control rule.

  Then, for each tenant, the e-mail address (for example, e-mail domain) used in the tenant is managed, and when an e-mail in which the e-mail address of a tenant is set as a transmission source (FROM) is acquired, Using the tenant transmission control rule corresponding to the e-mail address, it is determined whether or not the e-mail can be transmitted. In addition, when an e-mail with a tenant's e-mail address set as a destination (TO, CC, BCC) is acquired, the e-mail is received using the tenant's reception control rule corresponding to the e-mail address. Judgment is made.

  The pre-stage mail server 102 is a mail reception server that receives an electronic mail transmitted from the client device 105. Then, the e-mail received by the pre-stage mail server 102 is transmitted to the e-mail control server 101, and the e-mail control server 101 performs transmission control processing and reception control processing.

  The post-stage mail server 103 transmits, to the designated transmission destination, the electronic mail determined to permit transmission to the transmission destination set in the electronic mail as a result of the transmission control processing by the electronic mail control server 101. Process. In addition, a mailbox for each email address managed by each tenant is set, and an email permitted to be received by the email control server 101 is stored in a mailbox corresponding to the email address set as a destination. To do. When receiving a request for received e-mail from the client device 105 operated by the user using each e-mail address, the e-mail is transmitted to the client device 105.

  The LAN 104 is a network for connecting the electronic mail control server 101, the pre-stage mail server 102, and the post-stage mail server 103 so that they can communicate with each other.

  The client device 105 is a terminal device used by a user who uses an e-mail address managed by the e-mail control server 101 to send and receive e-mails. The post-stage e-mail server 103 has a function of requesting an e-mail stored in a mailbox corresponding to an e-mail address used by a user operating the client device 105.

  The wide area communication network 106 is a network for connecting the client device 105 and the electronic mail control server 101, the pre-stage mail server 102, and the post-stage mail server 103 so that they can communicate with each other. In communication between terminals via the wide area communication network 106, secure communication is performed by using an encryption protocol such as SSL (Secure Socket Layer). The above is an example of the system configuration of the information processing system of the present invention.

  Of course, the functions of a plurality of devices of the electronic mail control server 101, the upstream mail server 102, and the downstream mail server 103 may be executed by one device. For example, the front-stage mail server 102 and the rear-stage mail server 103 may be a single server apparatus, or the electronic mail control server 101, the front-stage mail server 102, and the rear-stage mail server 103 may be a single server apparatus. Of course, the mailbox may be provided in a device other than the subsequent mail server (the relay control server 101, the previous mail server 102, or other server device).

  Next, an example of the hardware configuration of the information processing apparatus applicable to the electronic mail control server 101 in FIG. 1 will be described with reference to FIG.

  In the figure, a CPU 201 comprehensively controls each device and controller described later connected to a system bus 204. In addition, the ROM 203 or the external memory 211 is configured to cause a BIOS (Basic Input / Output System) or an operating system program (hereinafter referred to as an OS), which is a control program of the CPU 201, or the electronic mail control server 101 to execute various processes described later. Various programs and data necessary for the storage are stored. The RAM 202 functions as a main memory, work area, and the like for the CPU 201.

  The CPU 201 implements various processes to be described later by loading a program or the like necessary for executing the process into the RAM 202 and executing the program. An input controller (input C) 205 controls input from an input device 209 configured with a keyboard, a pointing device, and the like. A video controller (VC) 206 controls display on a display device such as the display device 210. The display device 210 is composed of, for example, a CRT display or a liquid crystal display.

  A memory controller (MC) 207 is a hard disk (HD), floppy disk (registered trademark FD) or PCMCIA card slot for storing boot programs, browser software, various applications, font data, user files, editing files, various data, and the like. Controls access to an external memory 211 such as a compact flash memory connected via an adapter.

  A communication I / F controller (communication I / FC) 208 is connected to and communicates with an external device via a network, and executes communication control processing in the network. For example, Internet communication using TCP / IP is possible.

  Note that the CPU 201 enables display on the display device 210 by executing outline font rasterization processing on a display information area in the RAM 202, for example. Further, the CPU 201 enables a user instruction with a mouse cursor (not shown) on the display device 210. The above is the description of the hardware configuration of the information processing apparatus applicable to the e-mail control server 101. However, the hardware configuration shown in FIG. It goes without saying that it does not matter.

  Note that the information processing apparatus having the hardware configuration described above can also be applied to the pre-stage mail server 102, the post-stage mail server 103, and the client apparatus 105. The above is an example of the hardware configuration of the e-mail control server 101 in FIG.

  Next, an example of a functional configuration of the electronic mail control server 101 in FIG. 1 will be described with reference to FIG.

  As shown in FIG. 3, the e-mail control server 101 includes a tenant management unit 301, an e-mail receiving unit 302, an e-mail transmitting unit 303, a transmission control unit 304, a storage unit 305, a reception control unit 306, a pending e-mail audit input reception Part 307 is provided.

  The tenant management unit 301 is a management unit that manages tenants who are customers who use the email transmission / reception control service provided by the email control server 101. Specifically, the domain of the email address used in each tenant is managed by the tenant management information 1500 shown in FIG.

  Here, the data configuration of the tenant management information 1500 managed in the external memory 211 of the e-mail control server 101 will be described with reference to FIG.

  As illustrated in FIG. 15, the tenant management information 1500 includes data items such as a tenant ID 1501 and a domain 1502.

  The tenant ID 1501 is a data item in which identification information for uniquely identifying a tenant is registered. The domain 1502 is a data item in which the domain of the e-mail address used in the tenant managed by the record is registered. Note that a plurality of domains may be used by one tenant.

  Based on the domain information of the email address and the tenant management information 1500, the email control server 101 determines which email address of the tenant the email address of the email transmission source is, It is determined which tenant's email is the destination email address. Further, an email address other than the domain used in the tenant managed by the tenant management information 1500 is an email address that is not a management target.

  The above is the description of the data configuration of the tenant management information 1500 managed in the external memory 211 of the e-mail control server 101.

  Returning to the description of FIG. The e-mail receiving unit 302 is a functional unit that receives an e-mail transmitted from the upstream mail server 102. A transmission control process by the transmission control unit 304 and a reception control process by the reception control unit 306 are performed on the electronic mail received from the pre-stage mail server 102.

  The e-mail transmission unit 303 includes an e-mail permitted to be transmitted by the transmission control unit 304, an e-mail permitted to be received by the reception control unit 306, and an audit input that permits transmission by the pending e-mail audit input reception unit 307. Is sent to the post-mail server 103.

  The transmission control unit 304 stores the transmission control of the e-mail that is managed by the tenant management unit 301 using the e-mail address of any tenant as the transmission source and is managed by the transmission control rule storage unit 305-1. This is a functional unit that uses control rules, and includes a transmission control rule determination unit 304-1, another tenant reception control rule determination unit 304-2, a transmission control method determination unit 304-3, and the like.

  The transmission control rule determination unit 304-1 is a functional unit that determines whether or not the transmission control target e-mail matches the tenant transmission control rule specified according to the e-mail transmission source address.

  The other tenant reception control rule determination unit 304-2 performs the reception control rule for the e-mail transmission destination in accordance with the reception control rule for the e-mail transmission destination before the e-mail transmission process is performed. It is a function part which determines. For example, in the other tenant reception control rule determination unit 304-2, the transmission control method determined according to the transmission control rule determined by the transmission control rule determination unit 304-1 to match the email is suspension of the email. And, if the email address of the other tenant is included in the destination email, whether the reception control result in the other tenant can be received by applying the reception control rule of the other tenant to the email It is also determined whether or not reception is possible.

  The transmission control method determination unit 304-3 determines a transmission control method of an e-mail subject to transmission control based on the determination result by the transmission control rule determination unit 304-1 and the other tenant reception control rule determination unit 304-2. Part.

  The storage unit 305 is a functional unit that stores various data, transmission control results, and the like that are used when the e-mail control server 101 performs e-mail transmission control and reception control, and includes a transmission control rule storage unit 305-1 and reception control. It comprises a rule storage unit 305-2, a transmission control log storage unit 305-3, a pending email storage unit 305-4, and the like.

  The transmission control rule storage unit 305-1 is a functional unit that stores, in each external tenant, a transmission control rule used for transmission control for an email whose transmission source is the tenant's email address in the external memory 211.

  Here, with reference to FIG. 13, the data structure of the transmission control rule stored and managed in the external memory 211 of the e-mail control server 101 will be described. As shown in FIG. 13, the transmission control rule 1300 includes data items such as an ID 1301, a rule name 1302, a condition 1303, and an action 1304.

  ID 1301 is a data item in which identification information for uniquely identifying each transmission control rule is registered. Hereinafter, individual transmission control rules are referred to as individual transmission control rules. The rule name 1302 is a data item in which the rule name of the individual transmission control rule of the record is registered.

  The condition 1303 is a data item in which an e-mail condition for executing the process indicated by the action 1304 of the individual transmission control rule indicated by the record is registered. As the condition 1303, data items such as a transmission source condition 1303-1, a transmission destination condition 1303-2, an attached file condition 1303-3, and a keyword condition 1303-4 are set.

  The transmission source condition 1303-1 is a data item for registering a condition regarding the transmission source of the electronic mail. For example, it is possible to register, as a condition, an e-mail address that is a data transmission source, a group to which a user using the e-mail address belongs, and items in which the FROM of the e-mail header is different from the FROM of the envelope. Needless to say, registration is possible if the condition is related to the transmission source.

  The transmission destination condition 1303-2 is a data item for registering a condition regarding the transmission destination of the electronic mail. For example, it is possible to register an e-mail address as an e-mail destination, the domain of the e-mail address as a destination, the number of e-mail addresses specified as the destination, the number of domains, etc. is there. Needless to say, registration can be made as long as the conditions are related to the destination.

  The attached file condition 1303-3 is a data item for registering a condition related to an attached file of an electronic mail. For example, the presence / absence of an attached file to an e-mail, the size of the attached file, the file format, and the like can be registered as conditions.

  The keyword condition 1303-4 is a data item for registering a condition related to a keyword included in the subject, text, and attached file of an e-mail. For example, it is possible to register a condition such as “the body of an e-mail contains any one of“ confidential, confidential ”and“ private ”.

  An action 1304 is a data item for registering processing to be executed for an e-mail that matches various conditions registered in the condition 1303. When “send” is set in this data item, it is determined that the e-mail data is set to “send” as a processing result of the send control rule determination process. If “hold” is set, the relay of the email is temporarily suspended as the processing result, and the email is relayed by the input of the audit result by the auditor of the user who sent the email. It is determined that “pending”, which is a process for determining whether to perform or not, is performed. If “transmission prohibited” is set, it is determined not to relay the electronic mail and to “prohibit transmission” of the electronic mail.

  The above is an example of the data configuration of the transmission control rule 1300 in FIG. Needless to say, the data structure may be other than that shown in FIG. 13 as long as the e-mail control server 101 can execute processing to be described later using the transmission control rule.

  Returning to the description of FIG. For each tenant, the reception control rule storage unit 305-2 stores, in the external memory 211, a reception control rule used for reception control for an email in which the email address of the tenant is set as a transmission destination (TO, CC, BCC). It is a functional unit for storing and managing.

  Here, with reference to FIG. 14, the data structure of the reception control rule stored and managed in the external memory 211 of the e-mail control server 101 will be described. As illustrated in FIG. 14, the reception control rule 1400 includes data items such as an ID 1401, a rule name 1402, a condition 1403, and an action 1404. The condition 1403 includes a transmission source condition 1403-1 and a transmission destination condition 1403-2. , Attached file condition 1403-3, keyword condition 1403-4, and the like.

  Since the data structure of the reception control rule 1400 is substantially the same as that of the transmission control rule 1300, only matters different from the transmission control rule 1300 will be described.

  In the action 1404 of the reception control rule 1400, “Receive” or “Reception prohibited” can be set as the action, and when “Send” is set in this data item, the electronic control is performed as a result of the reception control process. It is determined that the mail data is to be “sent”. On the other hand, when “reception prohibited” is set, it is determined that the e-mail is set to “reception prohibited”.

  The above is an example of the data configuration of the reception control rule 1400 in FIG. Needless to say, the data structure may be other than that shown in FIG. 14 as long as the e-mail control server 101 can execute processing to be described later using the reception control rule.

  Returning to the description of FIG. The transmission control log storage unit 305-3 is a functional unit that stores and manages the log information of the transmission result of the email by the transmission control unit 304 in the external memory 211. The hold e-mail storage unit 305-4 is an auditor who audits e-mail data for which the transmission control method determined by the transmission control method determination unit 304-3 of the transmission control unit 304 is “pending”. Are associated with each other and stored and managed in the external memory 211.

  The reception control unit 306 is a functional unit that performs e-mail reception control processing using the reception control rules stored in the reception control rule storage unit 305-2.

  The pending email audit input accepting unit 307 is a functional unit that accepts an audit input for an email stored in the pending email storage unit 305-4 from an inspector of the email. An electronic mail in which “transmission” is input as an audit result is transmitted to a transmission destination set in the electronic mail. An e-mail to which “transmission prohibited” is input is not transmitted to the transmission destination.

  Note that the transmission control result performed by receiving the audit input by the pending email audit input receiving unit 307 is also stored in the transmission control log storage unit 305-3.

  The above is the description of the functional configuration of the electronic mail control server 101 in FIG.

  Next, with reference to FIG. 4, the flow of e-mail when sending e-mail in the present invention will be described. The e-mail transmitted from the client device 105 is first received by the pre-stage mail server 102. Thereafter, the pre-stage mail server 102 transfers the e-mail to the e-mail control server 101.

  The e-mail control server 101 that has received the e-mail transferred by the pre-stage mail server 102 identifies the tenant from the transmission source address of the e-mail. Then, using the specified tenant transmission control rule, the transmission control unit 304 determines a transmission control method to be executed for the email, and executes processing based on the transmission control method for the email. . At that time, for example, when the action 1304 of the individual transmission control rule applied to the transmission control rule of the email to be controlled by the transmission control rule determination unit 304-1 shown in FIG. The determination process by the other tenant reception control rule determination unit 304-2 is further performed, and the transmission control method determination unit 304-3 determines the transmission control method for the electronic mail.

  The e-mail for which transmission processing has been executed by the e-mail control server 101 is transmitted to the subsequent mail server 103.

  The post-stage mail server 103 transmits the e-mail received from the e-mail control server 101 to the mail server that manages the e-mail address set as the transmission destination (TO, CC, BCC) of the e-mail. Here, when the e-mail address set as the transmission destination is an e-mail address managed by this system, the post-mail server 103 transmits the e-mail to the pre-mail server 101.

  When the e-mail from the post-mail server 103 is received, or the pre-mail server 102 that has received an e-mail from another mail server transmits the e-mail to the e-mail control server 101. It should be noted that, by causing the email control server 101 to perform email transmission control processing and when to perform email reception control processing, by changing the destination port, etc. It is made to recognize whether it is an e-mail or an e-mail subject to reception control processing.

  When the e-mail control server 101 receives an e-mail to be subjected to reception control processing from the previous-stage mail server, the e-mail control server 101 identifies a tenant from an e-mail address set as a transmission destination of the e-mail, and receives control of the identified tenant Reception control processing is performed using rules.

  The email determined to be received by the reception control process of the email control server 101 is transmitted to the subsequent mail server 103 and managed by the mailbox of the subsequent mail server 103. The above is the description of the flow of e-mail when sending e-mail in the present invention.

  Next, with reference to FIG. 5, the outline of the email control process performed by the email control server 101 will be described. A program for causing the CPU 201 of the e-mail control server 101 to execute the processing shown in this figure is stored in the external memory 211 or the like, and when executing this processing, the CPU 201 loads the program into the RAM 202 and loads the program. The processing shown in FIG.

  When the e-mail control server 101 receives an e-mail from the pre-stage mail server 102 (step S501), the e-mail control server 101 determines whether to perform a transmission control process or a reception control process on the received e-mail (step S502). . Since the pre-stage mail server 102 transmits the e-mail subject to transmission control and the e-mail subject to reception control to different ports, the CPU 201 determines the e-mail depending on which port the e-mail is received. Whether to perform transmission control processing or reception control processing.

  If it is determined in step S502 that transmission control processing is to be performed (transmission), the process proceeds to step S503, and electronic mail transmission control processing is performed. Details of this processing will be described later with reference to FIG.

  On the other hand, if it is determined in the determination process in step S502 that the reception control process is to be performed (reception), the process proceeds to step S504, and an e-mail reception control process is performed. Details of this processing will be described later with reference to FIG.

  Also, as a result of the transmission control process in step S503, if an audit request for a pending email is received from the client device 105 used by the auditor of the email whose transmission is suspended (YES in step S505), the process proceeds to step S506. Proceed, and hold electronic mail transmission control processing. Details of this processing will be described later with reference to FIG.

  The above processing is repeated until it is determined that this processing is to be ended (YES in step S507). The above is the outline of the e-mail control process performed by the e-mail control server 101.

  Next, details of the e-mail transmission control process in step S503 of FIG. 5 will be described with reference to FIG.

  First, the CPU 201 of the e-mail control server 101 stores the e-mail received from the pre-stage mail server 102 in the RAM 202 (or the external memory 211) (step S601). Then, the tenant using the transmission source e-mail address is identified from the transmission source e-mail address of the e-mail subject to the transmission control process and the tenant management information of FIG. 15 (step S602). Thereafter, the processing after step S603 is performed using the transmission control rule of the tenant specified in step S602.

  In step S603, the CPU 201 determines whether there is an individual transmission control rule that is not applied to the transmission control target e-mail among the tenant transmission control rules specified in step S602. Not applied means that it is not determined whether or not the e-mail matches the condition set in the individual transmission control rule.

  If the determination process in step S603 determines YES, the CPU 201 of the e-mail control server 101 advances the process to step S604, and applies the individual transmission control rule to be newly applied to the e-mail subject to transmission control according to the application priority. get.

  Then, it is determined whether the e-mail subject to transmission control matches the condition set in the condition 1303 of the transmission control rule acquired in step S604 (step S605). If it is determined in this determination process that they do not match (NO), the process proceeds to step S603, and the subsequent processes are performed.

  If the determination process in step S605 determines YES, the CPU 201 of the e-mail control server 101 advances the process to step S606, and sets the action for the e-mail as the action set in the action 1304 of the individual transmission control rule. To decide.

  If it is determined that the conditions do not match all the individual transmission control rule conditions 1303 set as the transmission control rule of the tenant (in this case, the CPU 201 of the e-mail control server 101 determines NO in step S603). The CPU 201 of the electronic mail control server 101 advances the processing to step S607 and determines an action for the electronic mail according to a predefined default action.

  Thereafter, the CPU 201 of the e-mail control server 101 determines whether the action determined in step S606 or step S607 is “holding” e-mail (step S608). If it is determined in this determination process that it is not “pending” (NO in step S608), the process proceeds to step S614, and the process according to the action determined in step S606 or step S607 is performed on the e-mail. And execute.

  On the other hand, if the CPU 201 of the e-mail control server 101 determines YES in the determination process of step S608, the process proceeds to step S609, and the e-mail transmission destination (TO, CC, BCC) of the transmission control target is set. It is determined whether the set e-mail address is only an address used by another tenant managed by the tenant management unit 301. If the domain 1502 of the tenant management information 1500 includes an email address of a domain that is not registered, the CPU 201 of the email control server 101 determines NO in this determination process.

  In the determination process in step S609. If the CPU 201 of the e-mail control server 101 determines NO, the process proceeds to step S612.

  On the other hand, if the CPU 201 of the e-mail control server 101 determines YES in the determination process of step S609, the process proceeds to step S610, and the reception control rule application process of the transmission destination is performed. Details of this processing will be described with reference to FIG.

  Here, with reference to FIG. 7, the details of the reception control rule application processing of the transmission destination tenant in step S610 of FIG. 6 will be described.

  For emails for which the result of the transmission control process using the transmission control rule of the email source tenant is "pending", the result of the reception control process using the reception control rule of the destination tenant is "reception prohibited" ", Even if transmission is permitted by an audit input of an auditor with respect to an electronic mail suspended at the transmission source, reception by the tenant on the reception side is eventually prohibited. In this case, it is not efficient to cause the transmission source tenant to perform an audit process for the pending email.

  Therefore, in the present invention, as a result of the transmission control process using the transmission control rule of the transmission source tenant, the transmission of the electronic mail is suspended, and another electronic tenant is assigned to the electronic mail address of the transmission destination of the electronic mail. If the email address used in is set, receive control processing using the receiving control rule of the receiving tenant is performed, and based on the result, whether or not to hold the email is finally determined I am going to do it.

  First, the CPU 201 of the e-mail control server 101 acquires an e-mail address whose reception control rule is not determined from the transmission destination set in the e-mail (step S701). The tenant management information is used to specify which tenant the e-mail address acquired in step S701 belongs to (step S702). Thereafter, the processing after step S703 is performed using the reception control rule of the tenant specified in step S702.

  In step S703, it is determined whether there is an individual reception control rule not applied to the e-mail. If the CPU 201 of the e-mail server 101 determines YES in this determination process, the process proceeds to step S704, and an individual reception control rule that is newly applied to the e-mail according to the priority of application of the reception control rule. get.

  Then, the CPU 201 of the email control server 101 determines whether the email matches the acquired individual reception control rule condition (step S705). If it is determined that the CPU 201 of the e-mail control server 101 does not match (NO), the process proceeds to step S703.

  On the other hand, if YES is determined in the determination process in step S705, the CPU 201 of the e-mail control server 101 advances the process to step S706, and the action for the e-mail is set to the action 1404 of the reception control rule. To decide.

  If the e-mail does not meet the conditions of all the individual reception control rules included in the reception control rule of the tenant (in this case, the CPU 201 determines NO in step S703), the process proceeds to step S707. The action set as the default action is determined as the action for the e-mail.

  In step S708, the CPU 201 of the email control server 101 determines whether the action determined in step S706 or step S707 is reception or reception is prohibited. If it is determined that reception is prohibited in this determination processing, the processing from step S701 is performed on other email addresses set as email transmission destinations.

  On the other hand, if it is determined in step S708 that reception has been received, the CPU 201 of the email control server 101 sends a destination email that can receive the email to the email address set as the destination. It is determined that there is an address (step S709). Then, the process shown in this figure is terminated.

  When the reception of the email is prohibited by the reception control rules of all the destination tenants using the destination email address set in the email, the CPU 201 of the email control server 101 In the determination process of S709, it is determined that “reception is prohibited” (step S710), and this process ends. The above is the detailed description of the reception control rule application processing of the transmission destination in step S610 of FIG.

  Returning to the description of FIG. If it is determined by the reception control rule application processing of the transmission destination in step S610 that there is a transmission destination that can be received (YES in step S611), the process proceeds to step S612. On the other hand, if it is determined that there is no receivable transmission destination, that is, reception is prohibited in all transmission destination tenants (NO in step S611), the process for the e-mail is not “hold” but “transmission”. “Prohibited” is determined (step S613).

  If NO is determined in step S609 or YES is determined in step S611, the CPU 201 of the e-mail control server 101 determines that the process for the e-mail is “pending”, and then proceeds to step S612. Perform mail hold processing. Details of the e-mail hold process will be described with reference to FIG.

  Then, after the processing of step S612, step S613, and step S614 is completed, the processing proceeds to step S615, and the transmission control log is updated by additionally registering the transmission control result for the electronic mail in the transmission control log. The above is the detailed description of the e-mail transmission control process in step S503 of FIG.

  Next, with reference to FIG. 8, the details of the email hold processing in step S612 of FIG. 6 will be described.

  First, the CPU 201 saves the e-mail determined to be on hold in the hold e-mail storage unit 305-4 (step S801). Then, the auditor of the electronic mail is determined (step S802). For example, the superior of the user who uses the transmission source e-mail address is determined as the auditor. Then, the auditor determined in step S802 is notified that there is an electronic mail to be audited (step S803). The above is the detailed description of the email hold processing in step S612 of FIG.

  Next, details of the e-mail reception control process in step S504 of FIG. 5 will be described with reference to FIG.

  First, the CPU 201 of the e-mail control server 101 stores the e-mail received from the pre-stage mail server 102 in the RAM 202 (or the external memory 211) (step S901). Then, the tenant using the destination email address is identified from the destination email address of the email subject to reception control processing and the tenant management information of FIG. 15 (step S902). Thereafter, the CPU 201 of the e-mail control server 101 performs the processes in and after step S903 using the tenant reception control rule specified in step S902.

  In step S903, the CPU 201 of the email control server 101 determines whether there is an individual reception control rule that has not been applied to the email subject to reception control among the reception control rules of the tenant identified in step S902. “Not applied” means that it is not determined whether the e-mail matches the condition set in the individual reception control rule.

  If it is determined YES in the determination process in step S903, the CPU 201 of the e-mail control server 101 advances the process to step S904, and applies the individual reception control rule that is newly applied to the e-mail to be received according to the application priority. get.

  Thereafter, the CPU 201 of the email control server 101 determines whether the email subject to reception control matches the condition set in the condition 1403 of the individual reception control rule acquired in step S904 (step S905). If it is determined in this determination process that they do not match (NO), the process proceeds to step S903, and the subsequent processes are performed.

  If it is determined YES in the determination process in step S905, the CPU 201 of the e-mail control server 101 advances the process to step S606, and performs reception for the e-mail according to the setting of the action 1404 of the individual reception control rule. Determine the control process.

  If it is determined that the conditions of all the individual reception control rules set as the reception control rule of the tenant specified in step S902 are not met (in this case, the CPU 201 determines NO in step S903). ) The CPU 201 of the electronic mail control server 101 advances the process to step S907, and determines the reception control process for the electronic mail according to a predefined default action.

  Thereafter, the CPU 201 of the e-mail control server 101 determines whether the reception control process determined in step S906 or S907 is “reception” or “reception prohibited” of the e-mail. (Step S908). If it is determined as “reception” in this determination process, the process proceeds to step S909, and the subsequent mail server 103 is instructed to store the e-mail in the mailbox of the e-mail address set as the transmission destination. Send an email.

  On the other hand, if it is determined in step S908 that reception is prohibited, the process proceeds to step S910, and a reception prohibition notification mail is transmitted to the transmission source e-mail address. The above is the detailed description of the e-mail reception control process in step S504 of FIG.

  Next, with reference to FIG. 10, the details of the pending email transmission control process in step S506 of FIG. 5 will be described. This processing is performed by the CPU 201 of the e-mail control server 101 and the CPU 201 of the client device 105.

  When the CPU 201 of the email control server 101 receives an audit request for a pending email from the client device 105 (YES in step S505 in FIG. 5), the CPU 201 acquires information on the auditor who uses the client device 105, and An electronic mail to be audited is acquired from the suspended electronic mail storage unit 305-4 (step S1001).

  Then, the CPU 201 of the e-mail control server 101 creates screen information for displaying the hold e-mail operation screen 1100 (FIG. 11) including the list of e-mails acquired in step S1001 (step S1002). Information is transmitted to the client device 105 used by the inspector (step S1003).

  When the CPU of the client device 105 receives screen information for displaying the hold e-mail operation screen 1100 including the list of hold e-mails from the e-mail control server 101 (step S1021), according to the received screen information, the CPU of FIG. The hold email operation screen 1100 shown is displayed on the display device 210 (step S1022).

  Here, with reference to FIG. 11, it is a figure which shows an example of a structure of the pending | holding e-mail operation screen displayed on the display apparatus 210 of the client apparatus 105. FIG.

  As shown in FIG. 11, the hold e-mail operation screen 1100 includes a hold e-mail list display unit 1101, a hold e-mail selection instruction unit 1102, a detailed link 1103, a send button 1104, a send prohibit button 1105, an end button 1106, and the like. Configured.

  The pending email list display unit 1101 is a display unit that displays a list of pending emails that the auditor needs to audit. Before the hold e-mail operation screen 1100 is displayed, user authentication for the auditor is performed, and a hold e-mail for which the user specified by the user authentication needs to be audited is displayed. . The hold email list display unit 1101 includes, as information about the hold email, a transmission date and time 1101-1, a transmission source 1101-2, a transmission destination (TO) 1101-3, a transmission destination (CC) 1101-4, and a transmission destination. (BCC) 1101-5, subject 1101-6, attachment (presence / absence) 1101-7, and other display items are displayed.

  The hold e-mail selection instruction unit 1102 is a selection unit for selecting a hold e-mail that is a target for inputting “transmission” and “transmission prohibited” audit results.

  The detail link 1103 is used to display details of the hold email. When a click instruction for the detail link 1103 is received, the hold email detail display screen 1200 illustrated in FIG. 12 is displayed on the display device 210 of the client device 105. Will be.

  A send button 1104 is a button used to input an audit result of “send” to a hold email whose check is in the hold email selection instruction unit 1102 (that is, selected).

  The transmission prohibition button 1105 is a button used to input an audit result of “transmission prohibition” for a pending email whose check is placed in the pending email selection instruction unit 1102 (that is, selected).

  It should be noted that the pending emails for which “transmission” and “transmission prohibited” audit inputs have been made are deleted from the pending email list display unit 1101.

  The end button 1106 is a button used to end the audit result input for the suspended electronic mail using this screen. The above is the description of the on-hold email list display screen 1100 in FIG.

  Next, with reference to FIG. 12, the configuration of the hold email detail screen 1200 displayed on the display device 210 of the client device 105 by accepting a click instruction for the detail link 1103 in FIG.

  As shown in FIG. 12, the hold email detail display screen 1200 includes a transmission source (FROM) display unit 1201, a transmission destination (TO) display unit 1202, a transmission destination (CC) display unit 1203, and a transmission destination (BCC) display. A section 1204, a subject display section 1205, a body text display section 1206, an attached file display section 1207, a transmission button 1208, a transmission prohibition button 1209, a cancel button 1210, and the like.

  A transmission source (FROM) display unit 1201 is a display field for displaying information on an email address set in the FROM of the pending email.

  The transmission destination (TO) display unit 1202 displays information on the email address set in the TO of the pending email, and the transmission destination (CC) display unit 1203 displays information on the email address set in the CC. The transmission destination (BCC) is a display unit that displays information on the e-mail address set in the BCC.

  The subject display unit 1205 is a display unit that displays the subject of the pending electronic mail. A text display unit 1206 is a display unit that displays the text of the pending electronic mail.

  The attached file display unit 1207 is a display unit that displays an icon indicating an attached file of the pending electronic mail. When an instruction for this icon is received, an application program corresponding to the file format of the attached file is started, and the contents of the attached file can be confirmed.

  A send button 1208 is a button used to input a “send” audit result for the pending email displayed on this screen. The “transmission prohibition” button 1209 is a button used to input an audit result of “transmission prohibition” with respect to the suspended electronic mail displayed on this screen. Upon receiving a press instruction for these buttons, the CPU 201 of the client device 105 transmits an audit input corresponding to the button for which the press instruction has been received to the e-mail control server 101, and ends the display of this screen. 11 on-hold email list display screen 1100 is displayed. At that time, the display of the hold email is deleted from the hold email list display unit 1101 of the hold email list display screen 1100.

  A cancel button 1210 is a button used to end the display of this screen without performing an audit input for the pending email displayed on this screen. The above is the description of the configuration of the hold email detail screen 1200 of FIG.

  Returning to the description of FIG. In step S1022, the CPU 201 of the client apparatus 105 displays the pending email list screen 1100 shown in FIG. 11, and then accepts selection of the pending email in a step not shown.

  When the transmission prohibition instruction input by receiving, for example, an instruction to press the transmission prohibition button 1105 in FIG. 11 is received for the selected pending email (YES in step S1023), the CPU of the client device 105 The process advances to step S1024 to uniquely identify a hold email that is prohibited from being sent (a hold email that is checked in the hold email selection instruction unit 1102 when the send prohibit button 1105 is pressed). The specific information (for example, the message ID in the mail header) is acquired, and the specific information and the audit result of the prohibition of transmission of the suspended electronic mail are transmitted to the electronic mail control server 101 (step S1025).

  When the CPU 201 of the e-mail control server 101 acquires the audit result of the transmission prohibition from the client device 105 (step S1004), the CPU 201 of the e-mail control server 101 determines to prohibit transmission of the pending e-mail that has received the transmission prohibition audit input (step S1005). ), The hold email is deleted from the hold email storage unit 305-4 (step S1006). Then, the transmission control log is updated (step S1007).

  On the other hand, when the transmission instruction input by receiving, for example, an instruction to press the transmission button 1104 in FIG. 11 is received for the selected pending email (YES in step S1026), the CPU of the client device 105 performs processing. Proceeding to step S1027, specific information for uniquely identifying the hold e-mail to be sent (the hold e-mail checked in the hold e-mail selection instruction unit 1102 when the send button 1104 is pressed) (for example, , The message ID in the mail header, etc.) is acquired, and the specific information and the audit result of the transmission to the pending electronic mail are transmitted to the electronic mail control server 101 (step S1028).

  When the CPU 201 of the e-mail control server 101 obtains the transmission audit result from the client device 105 (step S1008), the CPU 201 determines to transmit the hold e-mail that has received the transmission audit input (step S1009). The e-mail is deleted from the hold e-mail storage unit 305-4 (step S1010). Then, the electronic mail is transmitted to the designated transmission destination electronic mail address, and the transmission control log is updated (step S1011).

  The e-mail control server 101 advances the process to step S1001 after the process of step S1007 or step S1011 is completed, and the audit target e-mail audited by the inspector stored in the updated pending e-mail storage unit 305-4 Is obtained, screen information for displaying the hold email list display screen 1100 including the obtained hold email is created (step S1002), and the screen information is transmitted to the client device 105 (step S1003). ).

  In addition, when the CPU of the client apparatus 105 receives an e-mail detailed information request instruction input by receiving a pressing instruction for the detailed link 1103 in FIG. 11 (YES in step S1029), the process proceeds to step S1030. Specific information for uniquely identifying an e-mail requesting detailed information is acquired, and then a detailed information request for a hold e-mail including the acquired specific information is transmitted to the e-mail control server 101 (step S1). S1031).

  When the CPU 201 of the e-mail control server 101 receives the detailed information request for the hold e-mail from the client device 105 (step S1012), the CPU 201 displays the hold e-mail detailed information specified by the specific information included in the request. Obtained from the storage unit 305-4. Thereafter, the screen information of the hold email detail screen 1200 for displaying the acquired hold email information is created, and the screen information is sent to the client device 105 that has sent the detailed information request (step S1014).

  When the CPU of the client device 105 receives the screen information from the electronic mail control server 101 (step S1032), the CPU 105 of the client apparatus 105 displays the hold electronic mail detail screen 1200 based on the screen information (step S1033).

  When an instruction to press the send button 1208 in the hold email details screen 1200 in FIG. 12 is received, an audit input for sending the hold email displayed on the screen is accepted (YES in step S1026). The CPU of the client device 105 determines, and performs the processing from step S1027.

  Similarly, when an instruction to press a transmission prohibit button 1209 in the hold email detail screen 1200 in FIG. 12 is received, the CPU of the client device 105 inputs an audit input for prohibiting transmission of the hold email displayed on the screen. Is received (YES in step S1023), and the processes in and after step S1024 are performed.

  The above is the detailed description of the pending email transmission control process in step S506 of FIG.

  By configuring the present invention as described above, the processing determined by the transmission control rule on the transmission side is the suspension of the email for the email prohibited from being received by the reception control rule on the email reception side. Even in some cases, it is possible to suitably suppress useless sender confirmation processing and auditor audit processing by not holding the request.

[Second Embodiment]
Hereinafter, a second embodiment of the present invention will be described. In the second embodiment, e-mail transmission is permitted in the e-mail transmission side tenant's transmission control rule, but reception is prohibited by the e-mail receiving side tenant's reception control rule because the e-mail size is large. Or if the receiving tenant decides to send the attached file encrypted, the receiving tenant's receiving control rule prohibits receiving the email with the encrypted file attached Perform simple processing such as e-mail size division and attachment file decryption (or change processing to transmission without encryption), such as when reception is prohibited due to rules Thus, an example of e-mail transmission control processing for allowing the receiving tenant to receive e-mail will be described.

  In the description of the second embodiment, the description will focus on the e-mail transmission control process, which is different from the process of the first embodiment, and will not be described otherwise.

  First, as a different point from the first embodiment, the other tenant reception control rule determination unit 304-2 shown in FIG. 3 will be described.

  In the first embodiment, the other tenant reception control rule determination unit 304-2 transmits an e-mail when, for example, the transmission control rule determination unit 304-1 determines to “hold” the transmission of the e-mail. Although explained as a functional unit that determines whether or not reception is prohibited by a reception control rule of a tenant (transmission destination tenant) that uses an e-mail address set in the destination (TO, CC, BCC), the second In the embodiment, the present invention is not limited to this. For example, even when transmission of an e-mail is permitted, processing for determining whether reception is prohibited by the reception control rule of the transmission destination tenant is performed.

  Then, when receiving is prohibited at the destination tenant, it is determined whether conditions such as the size of the e-mail and attachment of an encrypted file are set in the individual receiving rule that is determined to be prohibited from receiving. Then, the transmission control method determination unit 304-3 determines the transmission control method in order to avoid the individual reception rule.

  For an email that is prohibited from being transmitted by the transmission source tenant, the other tenant reception control rule determination unit 304-2 uses the email address set in the transmission destination (TO, CC, BCC) of the email. The reception control result using the reception control rules of other tenants that use is not specified.

  Next, with reference to FIGS. 16 and 17, an e-mail transmission control process performed by the CPU 201 of the e-mail control server 101 in the second embodiment will be described. This process corresponds to step S503 in FIG. 5 (details are shown in FIG. 6).

  First, the CPU 201 of the e-mail control server 101 stores the e-mail received from the pre-stage mail server 102 in the RAM 202 (or the external memory 211) (step S1601). Then, the tenant using the e-mail address is specified from the transmission source e-mail address of the e-mail subject to the transmission control process and the tenant management information of FIG. 15 (step S1602). Thereafter, the processing after step S1603 is performed using the tenant transmission control rule specified in step S1602.

  Here, with reference to FIG. 19, an example of a data configuration of a transmission control rule in the second embodiment, and with reference to FIG. 20, an example of a data configuration of a reception control rule in the second embodiment explain.

  As illustrated in FIG. 19, the transmission control rule 1900 according to the second embodiment includes data items such as an ID 1901, a rule name 1902, a condition 1903, and an action 1904.

  ID 1901 is a data item in which identification information for uniquely identifying each transmission control rule is registered. Hereinafter, individual transmission control rules are referred to as individual transmission control rules. The rule name 1902 is a data item in which the rule name of the individual transmission control rule of the record is registered.

  The condition 1903 is a data item in which an e-mail condition for executing the process indicated by the action 1904 of the individual transmission control rule indicated by the record is registered. As the condition 1903, in addition to the transmission source condition 1903-1, the transmission destination condition 1903-2, the attachment file condition 1903-3, the keyword condition 1903-4, conditions such as the mail size condition 1903-5 can be set. In this mail size 1903-5, a condition regarding the size of the e-mail, for example, a condition that the size of the e-mail is equal to or larger than a predetermined size can be set. Thus, “transmission is prohibited when the size of the e-mail is 10 MB or more”, “when the size of the e-mail is 15 MB or more, the e-mail is divided into sizes so as to be 5 MB or less”, etc. Individual transmission control rules can be created.

  In addition to “send”, “send prohibited”, and “hold”, the action 1904 includes, for example, “send attached file after encryption”, “divide the email into sizes smaller than XXMB”. Processing such as “send” can be set.

  As a result, it is possible to create an individual transmission control rule such as “when the attached file includes the keyword“ confidential ”, the attached file is encrypted (e-mail is transmitted)”.

  The data structure of the second reception control rule 2000 shown in FIG. 20 is substantially the same as the data structure of the reception control rule in the first embodiment except that the mail size condition 2003-5 is added to the condition 2000. Therefore, the detailed explanation is omitted.

  Needless to say, conditions other than those shown in the figure may be added to both the transmission control rule 1900 and the reception control rule 2000.

  Returning to the description of FIG. In step S1603, the CPU 201 of the e-mail control server 101 has an individual transmission control rule that is not applied to the e-mail subject to transmission control among the transmission control rules of the tenant (source tenant) specified in step S602. Determine whether. Not applied means that it is not determined whether or not the e-mail matches the condition set in the individual transmission control rule.

  If it is determined YES in step S1603, the CPU 201 of the e-mail control server 101 advances the process to step S1604, and newly applies it to e-mails subject to transmission control according to the priority of application of the individual transmission control rule. The individual transmission control rule to be acquired is acquired.

  Then, the CPU 201 of the e-mail control server 101 determines whether or not the e-mail subject to transmission control matches each condition set in the condition 1903 of the individual transmission control rule acquired in step S1604 (step S1605). If it is determined in this determination process that they do not match (NO), the process proceeds to step S1603, and the subsequent processes are repeated.

  If it is determined YES in step S1605, the CPU 201 of the e-mail control server 101 advances the process to step S1606, and determines an action for the e-mail according to the setting of action 1904 of the individual transmission control rule.

  If the CPU 201 of the e-mail server 101 determines that the conditions of all the individual transmission control rules set as the transmission control rule of the transmission source tenant are not met (in this case, the e-mail control server 101 The CPU 201 determines NO in step S1603), and advances the process to step S1607 to determine an action for the e-mail according to a predefined default action.

  Thereafter, the CPU 201 of the e-mail control server 101 determines whether or not the action determined in step S1606 or step S1607 is prohibited from being transmitted (step S1608). If it is determined in this determination process that the determined action is transmission prohibition (YES), the CPU 201 of the e-mail control server 101 advances the process to step S1701 in FIG.

  On the other hand, if it is determined in step S1608 that the action determined in step S1606 or step S1607 is not transmission prohibition (NO), the CPU 201 of the e-mail control server 101 advances the process to step S1609. Then, it is determined whether the destination e-mail address includes an e-mail address used in another tenant that is a target of the e-mail transmission / reception control process in the e-mail control server 101. The CPU 201 of the e-mail control server 101 has an e-mail address that is set as a transmission destination (TO, CC, BCC) of the e-mail to be processed and has an e-mail having a domain registered in the domain 1502 of the tenant management information 1500. If the mail address is included, the determination process determines YES.

  If it is determined in step S1609 that the e-mail address used by another tenant is not included (NO), the CPU 201 of the e-mail control server 101 advances the process to step S1701 in FIG. . On the other hand, if it is determined that the e-mail address used by another tenant is included in the destination e-mail address (YES), the CPU 201 of the e-mail control server 101 advances the process to step S1610, and sets the destination e-mail address. Perform the receiving control rule application process of other tenants that include the email address. Details of this processing will be described with reference to FIG.

  Here, with reference to FIG. 18, the details of the reception control rule application processing in the second exemplary embodiment in step S1610 in FIG. 16 will be described. In the reception control rule application process according to the first exemplary embodiment, when a transmission target e-mail reception control process is performed in a transmission destination tenant (e-mail receiving side tenant), reception is permitted as a result. In the second embodiment, in addition to this, when reception is prohibited by the reception control process, this processing is performed to confirm whether reception is prohibited or reception is prohibited. Whether or not reception is prohibited by such individual reception control rules is specified.

  For example, if the e-mail is prohibited to be received because the e-mail is a large tenant at the e-mail transmission destination, if the e-mail is transmitted as it is, the transmission destination tenant naturally Reception is prohibited. Therefore, if the user who has instructed to send an e-mail does not instruct to send an e-mail again, for example, by setting the e-mail transmission size, the e-mail is sent to the e-mail address set as the destination. I can't do it. However, since the user cannot recognize that the reason that the reception of the e-mail is prohibited is the size of the e-mail, there is a high possibility that the user cannot take an appropriate action.

  In the second embodiment, when reception is permitted by the destination tenant by a simple process in the e-mail control server 101, such as sending an e-mail after size division, the e-mail control server 101 The CPU 201 transmits the e-mail after processing the e-mail so that reception is permitted on the receiving side, so that the user who gives the e-mail transmission instruction does not perform the e-mail transmission operation again. In order to complete the process, it is specified what kind of individual reception rule the reception is prohibited when reception is prohibited by the reception control process.

  In the process shown in FIG. 18, the CPU 201 of the e-mail control server 101 executes the processes after step S1801 for all the transmission destination addresses set in the e-mail to be controlled.

  First, the CPU 201 of the e-mail control server 101 does not execute the processing shown in this figure (unprocessed) destination e-mail address among the destination e-mail addresses set in the e-mail to be transmitted. Is acquired (step S1801).

  Thereafter, the CPU 201 of the e-mail control server 101 determines whether or not the destination e-mail address acquired in step S1801 is an e-mail address used in another tenant (step S1802). If it is determined in this determination process that the transmission destination e-mail address acquired in step S1801 is not an e-mail address used in another tenant (NO), the process proceeds to step S1813.

  On the other hand, if the determination process in S1802 is YES, the CPU 201 of the e-mail control server 101 advances the process to step S1803, and the destination e-mail address domain acquired in step S1801 and the tenant management information in FIG. The tenant is identified using 1500, and the reception control rule of the identified tenant is acquired (step S1804).

  Thereafter, the CPU 201 of the email control server 101 determines whether there is an individual reception control rule that has not yet been applied to the email among the individual reception control rules included in the reception control rule acquired in step S1804 (step S1805). ), If it is determined that there is an unapplied individual reception control rule (YES), the process proceeds to step S1806, and the individual reception control rule to be applied next to the e-mail is determined according to the application priority of the individual reception control rule. Then, it is determined whether or not the processing target e-mail matches the conditions set in the acquired individual reception control rule (step S1807).

  If it is determined in step S1807 that the control target e-mail matches the conditions set in the applied individual reception control rule (YES), the CPU 201 of the e-mail control server 101 performs processing. In step S1808, the action set in the reception control rule is stored as an action in the reception side (transmission destination) tenant when the electronic mail is transmitted.

  On the other hand, if it is determined in step S1807 that the control target e-mail does not match the condition set in the applied individual reception control rule (NO), the process proceeds to step S1805.

  Thereafter, the CPU 201 of the e-mail management server 101 performs the determination process in step S1805 again, and if it is determined in this determination process that there is no individual reception control rule not applied to the e-mail (NO), the process is performed. Proceeding to step S1809, the default action is stored as the action on the receiving side when the electronic mail is transmitted.

  After the process of step S1808 or step S1809 is completed, the CPU 201 of the e-mail control server 101 advances the process to step S1810 and stores the e-mail address that the e-mail acquired in step S1801 stored in step 1808 or step S1809. It is determined whether or not the action determined according to the reception control rule of the destination tenant is prohibited to receive.

  If it is determined in step S1810 that reception is prohibited (YES), the CPU 201 of the e-mail control server 101 proceeds to step S1811 and stores the applied reception control rule. Then, it is set that the e-mail includes a destination address for which reception of the e-mail is prohibited (step S1812).

  On the other hand, if it is determined in the determination process of step S1811 that the action on the receiving side is not reception prohibition (NO) when the e-mail is transmitted to the destination e-mail address acquired in step S1801, The mail control server 101 advances the process to step S1813.

  If NO in step S1802 or NO in step S1810, the CPU 201 of the e-mail control server 101 advances the process to step S1813, and an e-mail address that is not prohibited from being received as the e-mail destination address of the e-mail. Set if included. If NO is determined in step S1802, the CPU 201 of the e-mail control server 101 cannot specify what reception control is performed at the transmission destination acquired in step S1801. Therefore, it is assumed that reception is not prohibited on the receiving side.

  When the CPU 201 of the e-mail control server 101 performs the above process on all e-mail addresses set as the transmission destinations of e-mails to be controlled, the process shown in FIG. The above is an example of the reception control rule application process of another tenant included in the transmission destination performed by the email control server 101.

  Returning to the description of FIG. The CPU 201 of the e-mail control server 101 performs the receiving control rule application processing of other tenants included in the transmission destination in step S1610, and then, among the transmission destination e-mail addresses set in the e-mails subject to transmission control, It is determined whether there is an e-mail address for which reception of the e-mail is prohibited (step S1611). If it is determined NO in this determination process, the CPU 201 of the e-mail control server 101 advances the process to step S1701 in FIG.

  On the other hand, if it is determined YES in step S1611, the CPU 201 of the e-mail control server 101 advances the process to step S1612 and is applied on the e-mail receiving side stored in step S1811 of FIG. It is determined whether a mail size condition is set in the condition of the reception control rule.

  If it is determined in step S1612 that the mail size condition is set, the process proceeds to step S1613, and the mail size of the e-mail subject to transmission control acquired in step S1601 is determined by the individual reception control rule. It is determined whether or not the mail size condition set in the mail size condition 2003-5 is satisfied. If YES in this determination process, the CPU 201 of the e-mail control server 101 advances the process to step S <b> 1614, and the process determined in step S <b> 1606 is “transmission”. ”Is determined as“ send e-mail to a predetermined size and send ”. If it is “pending”, it is determined “pending after dividing the e-mail into a predetermined size”, and e-mail dividing processing is performed.

  The division size of the email at this time may be a size that does not satisfy the size condition of the reception control rule determined to be applied to the email at the destination tenant. Thereafter, the CPU 201 of the e-mail control server 101 advances the processing to step S1610, and again performs the reception control rule application processing of another tenant included in the transmission destination.

  If reception is prohibited at the e-mail destination e-mail address, the sender of the e-mail re-creates the e-mail and issues an e-mail transmission instruction with the e-mail division size set. Must-have. Even if the e-mail is not received by the recipient's tenant, it is not the e-mail content (the content of the body text or the content of the attached file), but only if the e-mail size is simply large It is inefficient for the sender of the e-mail to perform such processing. Therefore, in the present invention, when an e-mail size condition is included in the reception control rule for prohibiting reception of the e-mail applied at the transmission destination, the CPU 201 of the e-mail control server 101 applies the e-mail size. The size of the e-mail is divided so that it is smaller than the e-mail size set in the received control rule. Then, a process of confirming whether the e-mail after the size division is permitted or prohibited by another individual reception control rule of another tenant is performed.

  If NO is determined in the determination process of step S1612 and NO in step S1613, it is determined that the reception tenant is not prohibited from receiving due to the size of the e-mail. Therefore, the process proceeds to step S1615.

  The CPU 201 of the e-mail control server 101 has a destination e-mail address whose reception is prohibited when the file attached to the e-mail to be transmitted is encrypted in step S1615 and the subsequent processes. In this case, it is determined whether or not the recipient tenant is allowed to receive emails by decrypting the attached file, and if permitted, the recipient electronic file is decrypted after decrypting the attached file. Process to send to the email address.

  Since e-mails transmitted and received between tenants whose transmission / reception control is performed by the same e-mail control server 101 are not transmitted on public lines such as the Internet, e-mails are wiretapped in the e-mail transmission process. The risk of exposure to danger is low. In addition, when an e-mail is transmitted from the post-stage mail server 103 to the client apparatus 105 in response to an e-mail reception request from the client apparatus 105, the e-mail is transmitted by secure communication using a protocol such as SSL. Therefore, the risk of being exposed to the risk of eavesdropping from the outside is low. Therefore, such a method can be adopted in order to maintain security without encrypting the attached file.

  First, the CPU 201 of the email control server 101 sets the attached file condition 2003-3 of the individual reception control rule applied in the destination tenant where the destination email address is used when the email is transmitted. Then, it is determined whether it is set as a condition that an encrypted file is attached (step S1615). If it is determined NO in this determination process, the CPU 201 of the e-mail control server 101 advances to step S1701 in FIG.

  On the other hand, in the determination processing in step S1615, a condition is set that an encrypted file is attached to the attachment file condition 2003-3 of the individual reception control rule applied by the transmission destination tenant when the e-mail is transmitted. If it is determined (YES), the CPU 201 of the e-mail control server 101 advances the processing to step S1616, and determines whether an encrypted file is attached to the e-mail. If it is determined in this determination process that no encrypted file is attached to the e-mail (NO), the CPU 201 of the e-mail control server 101 advances the process to step S1701 in FIG.

  On the other hand, if it is determined in step S1616 that the encrypted file is attached to the email (YES) (when the action of the individual transmission control rule is “encrypt the attached file and send it”) The CPU 201 of the e-mail control server 101 advances the process to step S1617, and determines whether the encrypted file attached to the e-mail can be decrypted. If it is determined NO in this determination process, the CPU 201 of the e-mail control server 101 advances to step S1701 in FIG.

  If it is determined in the determination process in step S1617 that the encrypted file can be decrypted (YES) (if the action of the individual transmission control rule is “encrypt the attached file and send it”), then e-mail The CPU 201 of the control server 101 determines YES in this determination process), and the CPU 201 of the e-mail control server 101 advances the process to step S1618, and the reception of the e-mail is prohibited due to the attachment of the encrypted file. The email is enveloped into a destination email address that becomes and an email address that does not. Envelope division here refers to an email containing only the destination email address that will be prohibited from receiving emails due to the attachment of an encrypted file to the destination of the email envelope. In other words, an e-mail including only a destination e-mail address that is not prohibited from receiving an e-mail even if an encrypted file is attached to the envelope destination is created. Note that the envelope may be divided for each individual destination electronic mail address.

Then, the process proceeds to step S1610, and the reception control rule application process of another tenant is executed again for the e-mail corresponding to the destination e-mail address whose reception is prohibited among the e-mails divided into envelopes. If the process determined in step S1606 or step S1607 is to send an e-mail after encrypting the attached file, a transmission control process is performed for a destination e-mail address whose reception is prohibited. Is changed to send (encryption of attached file is not performed).

  Thereafter, the description of FIG. In step S1701, the CPU 201 of the e-mail control server 101 determines whether the processing determined in step S1606 or step S1607 in FIG. If it is determined that the process determined in this determination process is not on hold (NO), the CPU 201 of the e-mail control server 101 advances the process to step S1702, and performs the process of FIG. The process finally determined as the process to be executed is executed for the e-mail.

  On the other hand, if it is determined in step S1701 that the action determined in step S1606 or step S1607 in FIG. 16 is on hold (YES), the CPU 201 of the email control server 101 advances the process to step S1703. Then, it is determined whether or not reception of this e-mail is prohibited at all the destination e-mail addresses set in the e-mail.

  If the determination process in step S1703 determines YES, the CPU 201 of the e-mail control server 101 advances the process to step S1704, and determines that the process to be executed for the e-mail is on hold. Then, e-mail hold processing is performed (step S1705). The details of this e-mail hold processing are as already described with reference to FIG. 8, and therefore description thereof is omitted here.

  On the other hand, if NO is determined in the determination process in step S1703, the CPU 201 of the e-mail control server 101 advances the process to step S1706, and determines that the process to be executed for the e-mail is not a hold but a transmission prohibition. To do. This is because even if the electronic mail is suspended and it is determined whether or not to relay the electronic mail based on an instruction from the auditor, reception is prohibited on the receiving side. By doing in this way, it is possible to prevent an auditor's useless work suitably.

  After the process of step S1702, step S1705, or step S1706 is completed, the print control server 101 advances the process to step S1707, registers a transmission control log, and ends the email transmission control process.

  The above is the description of the e-mail transmission control process in the second embodiment.

  As described above, in the second embodiment of the present invention, transmission (including transmission after encryption of an attached file) is held or suspended by a transmission source tenant using the transmission source electronic mail address of the electronic mail. In such a case, the reception control process for the email at the destination tenant that uses the email destination email address confirms what kind of reception control results will be obtained before sending or holding the email. To do.

  If reception is prohibited, additional processing (for example, e-mail size division or decryption of encrypted attachment) is performed before the processing determined by the transmission source tenant is performed. For example, by changing the process to be executed on the e-mail, such as changing the process to be executed to the e-mail determined to be “encrypt and send the file attached to the e-mail” to “send”, It is possible to avoid that e-mail is prohibited from being received by the destination tenant.

  As a result, it is possible to omit processing such as re-transmission of the electronic mail of the user who has instructed transmission of the electronic mail, leading to improvement in processing efficiency.

  As described above, according to the present invention, when performing transmission control processing of emails transmitted and received between different tenants managed by the same email control server, before performing email transmission processing. By determining the action (processing) to be executed on the email according to the action (processing) determined by the transmission control rule of the transmission source tenant and the action (processing) determined by the reception control rule of the transmission destination tenant Thus, it is possible to suitably prevent the occurrence of work such as an audit process before transmission of an e-mail that is prohibited from being received at the transmission destination or the size division of the e-mail so that the e-mail can be received at the transmission destination. This leads to an increase in the efficiency of work related to e-mail.

  An object of the present invention is to supply a recording medium (or storage medium) that records software program codes for realizing the functions of the above-described embodiments to a system or apparatus, and the computer of the system or apparatus (or CPU or MPU). Needless to say, this can also be achieved by reading and executing the program code stored in the recording medium. In this case, the program code itself read from the recording medium realizes the functions of the above-described embodiment, and the recording medium on which the program code is recorded constitutes the present invention.

  Further, by executing the program code read by the computer, not only the functions of the above-described embodiments are realized, but also an operating system (OS) running on the computer based on the instruction of the program code. It goes without saying that a case where the function of the above-described embodiment is realized by performing part or all of the actual processing and the processing is included.

  Furthermore, after the program code read from the recording medium is written into a memory provided in a function expansion card inserted into the computer or a function expansion unit connected to the computer, the function is based on the instruction of the program code. It goes without saying that the CPU or the like provided in the expansion card or the function expansion unit performs part or all of the actual processing and the functions of the above-described embodiments are realized by the processing.

  When the present invention is applied to the recording medium, program code corresponding to the flowchart described above is stored in the recording medium.

101 E-mail control server 102 Pre-stage mail server 103 Post-stage mail server 104 LAN
105-1, 105-2, 105-3 Client device 106 Wide area network 201 CPU
202 RAM
203 ROM
204 System Bus 205 Input Controller 206 Video Controller 207 Memory Controller 208 Communication I / F (Interface) Controller 209 Input Device 210 Display Device 211 External Memory

Claims (10)

An information processing apparatus that provides an e-mail transmission control service,
First storage means for storing tenant information including specific information for specifying an e-mail address used by the tenant;
Second storage means for storing an e-mail transmission control rule and a reception control rule for each tenant;
Receiving means for receiving an email sent from the client device;
Using a transmission source e-mail address set in the e-mail received by the reception unit and the tenant information, a first specifying unit for specifying a transmission source tenant;
First determining means for determining an e-mail transmission control action based on the transmission control rule of the transmission source tenant specified by the first specifying means;
A second specifying unit for specifying a destination tenant using the destination e-mail address set in the e-mail received by the receiving unit and the tenant information;
Second determination means for determining an email reception control action based on the reception control rule of the destination tenant specified by the second specification means;
A transmission control process to be executed for the electronic mail is determined based on the transmission control action determined by the first determination means and the reception control action determined by the second determination means. And means for determining
An information processing apparatus comprising: When a plurality of destination mail addresses are set in the email received by the receiving means, the second specifying means specifies a destination tenant using the tenant information for each destination mail address. And
The said 2nd determination means determines the reception control action of the said email using the reception control rule of the transmission destination tenant each specified by the said 2nd specification means. Information processing device. A first determination means for determining whether the transmission destination address of the email includes an email address used in another tenant different from the transmission source tenant;
When the first determination unit determines that an e-mail used by another tenant is not included in the transmission destination address of the e-mail, the third determination unit includes the first determination unit. The information processing apparatus according to claim 1 or 2, wherein the transmission control process according to the transmission control method action determined in step (b) is determined as a transmission control process for executing the electronic mail. When the transmission control action determined by the first determination unit is suspension of email, and the reception control action determined by the second determination unit is prohibition of email reception, the first 4. The information processing apparatus according to claim 1, wherein the determining unit determines that a transmission control process to be executed for the electronic mail is prohibited from being transmitted. When the transmission control action determined by the first determination unit is transmission of an e-mail and the reception control action determined by the second determination unit is e-mail reception prohibition, the reception control rule is A second determination unit configured to determine whether an e-mail size condition is set;
If the second determination means determines that the e-mail size condition is set, the third determination means determines to execute the size division process on the e-mail. The information processing apparatus according to any one of claims 1 to 4, wherein the information processing apparatus is characterized in that: When the transmission control action determined by the first determination unit is transmission of an e-mail and the reception control action determined by the second determination unit is e-mail reception prohibition, the reception control rule is A third determination unit for determining whether the encryption condition of the attached file is set;
After the third determination unit determines that the attachment file encryption condition is set, the third determination unit transmits the e-mail without encrypting the e-mail attachment file. The information processing apparatus according to claim 1, wherein the information processing apparatus is determined. A notification means for performing an audit request notification to an inspector of the e-mail when the transmission control process determined by the third determination means is pending;
First accepting means for accepting an audit input for the electronic mail from the client device used by the inspector;
6. The apparatus according to claim 1, further comprising: a fourth determination unit that determines a process to be executed on the e-mail according to an audit input received by the first reception unit. Information processing device. Second accepting means for accepting a request for detailed information on the email that has been suspended from a client device used by the inspector;
8. The transmission apparatus according to claim 7, further comprising: a transmission unit configured to transmit the detailed information of the electronic mail to the client device after the second reception unit receives the detailed information request for the electronic mail that has been put on hold. The information processing apparatus described. First storage means for storing tenant information including specific information for specifying an e-mail address used in the tenant, and second storage means for storing an e-mail transmission control rule and a reception control rule for each tenant And an information processing method performed by an information processing apparatus that provides an e-mail transmission control service,
A receiving step of receiving an e-mail sent from the client device;
A first identification step of identifying a transmission source tenant using the transmission source email address set in the email received in the reception step and the tenant information;
A first determination step of determining an e-mail transmission control action based on the transmission control rule of the transmission source tenant specified in the first specific step;
A second specifying step of specifying a destination tenant using the destination email address set in the email received in the receiving step and the tenant information;
A second determination step of determining an email reception control action based on the reception tenant reception control rule specified in the second specification step;
A transmission control process to be executed for the e-mail is determined based on the transmission control action determined in the first determination step and the reception control action determined in the second determination step. A decision process;
An information processing method comprising: First storage means for storing tenant information including specific information for specifying an e-mail address used in the tenant, and second storage means for storing an e-mail transmission control rule and a reception control rule for each tenant And an information processing apparatus that provides an e-mail transmission control service,
Receiving means for receiving an email sent from the client device;
Using a transmission source e-mail address set in the e-mail received by the reception unit and the tenant information, a first specifying unit for specifying a transmission source tenant;
First determining means for determining an e-mail transmission control action based on the transmission control rule of the transmission source tenant specified by the first specifying means;
A second specifying unit for specifying a destination tenant using the destination e-mail address set in the e-mail received by the receiving unit and the tenant information;
Second determination means for determining an email reception control action based on the reception control rule of the destination tenant specified by the second specification means;
A transmission control process to be executed for the electronic mail is determined based on the transmission control action determined by the first determination means and the reception control action determined by the second determination means. A computer program that functions as a determination means.

Images