JP2019053783A - Information processing device, information processing system, control method, and program - Google Patents

Abstract

To improve security by controlling access to an inadequate connection destination added to an electronic mail.SOLUTION: An information processing device acquires, by a mail acquisition unit 302, an email received by a mail reception unit 300, finds a risk of a URL added to the email on the basis of operation to the email that has become a reservation object by applying a reception control rule, finds the risk of the URL on the basis of the URL itself added to the email, further finds the risk of the URL added to the email on the basis of the email itself, and controls access from a client terminal 108 to a URL with a high risk.SELECTED DRAWING: Figure 4

Description

  The present invention relates to relay control of communication with other devices, and more particularly to a method of registering information for specifying a communication destination resource necessary for performing relay control.

  With the development of network technology, a variety of information has been distributed, and there are very convenient tools for providing such information to many users.

  For example, it is possible to obtain a resource desired by the user by clicking a URL for specifying the location of a resource such as HTML or an image on the Internet.

  However, recently, by exploiting the convenience of such tools and illegally accessing resources, damages such as infection with viruses and the need for large payments have occurred.

  As an example of damage resulting from the abuse of such a tool, an email with a URL specifying the location of an illegal resource is unilaterally sent to the user, the user opens the email, and the URL of the email is erroneously opened. Damage such as clicking is occurring.

  Therefore, as a method for solving such a problem, the URL of the email stored in the folder for storing junk mail is invalidated, while the URL of the email stored in a folder other than such a folder is changed. A technique for enabling is disclosed (for example, see Patent Document 1).

Japanese Patent No. 04974076

  However, in the technique described in Patent Document 1, the URL assigned to the e-mail determined to be junk mail is invalidated by the function of the existing mail application software, and the e-mail not determined to be junk mail. Even so, there is a problem that it is difficult to cope with a case where a URL specifying an illegal resource location is given.

  As a method for solving such a problem, there is a method in which a URL for controlling access is registered in the DB, and this access is prohibited when the user tries to access the URL registered in the DB.

  In such a method, the accuracy of access control depends on the accuracy of the URL registered in the DB. If the URL assigned to the e-mail is registered in the DB, the URL to the URL is registered. Although access can be controlled, there is a problem that if the URL is not registered in the DB, the URL is accessed.

  Therefore, the present invention provides an information processing apparatus, an information processing system, a control method, and a program capable of improving security by controlling access to an inappropriate connection destination given to an e-mail. The purpose is to do.

  The present invention for solving the above-described problem is an information processing apparatus that accesses a resource by instructing resource specifying information indicating information for specifying the resource, and the resource specifying information that controls the access A storage unit that stores information, a risk reception unit that receives information related to a risk of access to the resource, and information related to a risk received by the risk reception unit. And registering means for registering the resource specifying information in the storage means.

  According to the present invention, there is an effect that security can be improved by controlling access to an inappropriate connection destination given to an electronic mail.

It is a block diagram which shows schematic structure of an information processing system. It is a block diagram which shows schematic structure of the hardware of an access relay apparatus, a mail relay apparatus, a mail server, an external server, and a client terminal. It is a block diagram which shows the function structure of an information processing system. It is a flowchart which shows the registration determination process of URL. It is a flowchart which shows the process which determines whether URL given to the said email is made into filtering object based on operation with respect to the hold | maintained email. It is a flowchart which shows the process which determines whether the said URL is made into filtering object based on URL itself provided to the email. It is a flowchart which shows the process which determines whether the said URL is made into filtering object based on the doubt of electronic mail itself. It is a block diagram which shows the structure of a pending | holding email list screen. It is a block diagram which shows the structure of a relay control rule list screen. It is a block diagram which shows the structure of a relay control rule detailed screen. It is a block diagram which shows the structure of a group registration screen. It is a block diagram which shows the structure of a URL group registration screen. It is a block diagram which shows the structure of an unregistered URL list screen. It is a block diagram which shows the structure of an unregistered URL detail screen. It is a block diagram which shows the structure of an access warning screen. It is a block diagram which shows the structure of a URL group registration screen. It is a block diagram which shows the structure of each table.

  DESCRIPTION OF EMBODIMENTS Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

[First Embodiment]
First, the first embodiment will be described.

  FIG. 1 is a schematic configuration diagram of an information processing system according to an embodiment of the present invention.

  As shown in FIG. 1, the information processing system 100 according to the present embodiment includes a configuration including an access relay device 102, a mail server 104, a mail relay device 106, client terminals 108 (provided with at least one), and a LAN 110. And connected to the external server 114 via the wide area network 112.

  The access relay device 102 is a device that functions as an information processing device, and relays between the client terminal 108 and the external server 114 that performs data communication via the wide area network 112.

  Further, the access relay apparatus 102 controls communication of the data according to a relay control rule for determining whether to relay or not relay data transmitted / received between the client terminal 108 and the external server 114. ing.

  The mail server 104 is an information processing apparatus used for sending and receiving e-mails, and has functions such as e-mail address management and storing e-mails sent to the e-mail addresses. Yes.

  The mail relay apparatus 106 performs a transmission control process for an electronic mail transmitted from the mail server 104 or the client terminal 108 by using the transmission control rule, and performs a reception control process for an electronic mail transmitted from the external server 114 as described later. This is done using a reception control rule.

  Further, the mail relay apparatus 106 accepts an input of a transmission control rule (reception control rule) used for an e-mail transmission control process (reception control process) or transmits in response to a request from a user who operates the client terminal 108. As a result of the control process (reception control process), an input (audit input) for transmission (reception) and transmission prohibition (reception prohibition) for an electronic mail whose transmission (reception) has been suspended is accepted.

  The client terminal 108 is a terminal device operated by a user who exchanges e-mails using a mail address managed by the mail server 104.

  The client terminal 108 is also a terminal device that provides various contents and the like provided from the external server 114 to the user.

  Further, the client terminal 108 can refer to and register the relay control rule, the transmission control rule, and the reception control rule stored in the access relay device 102 and the mail relay device 106 via the LAN 110.

  The external server 114 is a device that provides various contents to the user, and is installed by a service provider or an individual user, or installed as a mail server owned by an external user. To do.

  Next, FIG. 2 illustrates an example of a hardware configuration of an information processing apparatus applicable to the access relay apparatus 102, the mail server 104, the mail relay apparatus 106, and the client terminal 108.

  In FIG. 2, reference numeral 201 denotes a CPU that comprehensively controls each device and controller connected to the system bus 204. Further, the ROM 202 or the external memory 211 is necessary to realize a BIOS (Basic Input / Output System) or an operating system program (hereinafter referred to as an OS), which is a control program of the CPU 201, or a function executed by each server or each PC. Various programs to be described later are stored.

  A RAM 203 functions as a main memory, work area, and the like for the CPU 201. The CPU 201 implements various operations by loading a program or the like necessary for execution of processing from the ROM 202 or the external memory 211 into the RAM 203 and executing the loaded program.

  An input controller 205 controls input from a keyboard (KB) 209 or a pointing device such as a mouse (not shown). A video controller 206 controls display on a display device such as a CRT display (CRT) 210.

  In FIG. 2, although described as CRT 210, the display device is not limited to the CRT, but may be another display device such as a liquid crystal display. These are used by the administrator as needed.

  A memory controller 207 is connected via an adapter to a hard disk (HD), flexible disk (FD), or PCMCIA card slot for storing a boot program, various applications, font data, user files, editing files, various data, and the like. The access to the external memory 211 such as a compact flash (registered trademark) memory is controlled.

  A communication I / F controller 208 is connected to and communicates with an external device via a network (for example, the LAN 110 shown in FIG. 1), and executes communication control processing in the network. For example, communication using TCP / IP is possible.

  Note that the CPU 201 enables display on the CRT 210 by executing outline font rasterization processing on a display information area in the RAM 203, for example. In addition, the CPU 201 enables a user instruction with a mouse cursor (not shown) on the CRT 210.

  Various programs to be described later for realizing the present invention are recorded in the external memory 211 and executed by the CPU 201 by being loaded into the RAM 203 as necessary.

  Furthermore, definition files and various information tables used when executing the program are also stored in the external memory 211, and a detailed description thereof will be described later.

  Next, the functional configuration of the information processing system 100 will be described with reference to FIG. Details of each function will be described with reference to a flowchart and the like described later.

  The mail relay device 106 includes a mail reception unit 300, a mail acquisition unit 302, a registration determination unit 304, a reception control unit 306, a reception control rule storage unit 308, a display unit 310, an input reception unit 312, a notification unit 314, and a determination result storage. Part 316 is provided.

  The mail receiving unit 300 receives an e-mail transmitted from the mail server 104, the external server 114, or the like, and the mail acquiring unit 302 acquires the e-mail received by the mail receiving unit 300.

  The registration determination unit 304 determines whether or not to make the filtering target by determining the risk of the URL given to the e-mail.

  The reception control unit 306 controls reception of the e-mail by applying a reception control rule to the e-mail acquired by the mail acquisition unit 302, and the display unit 310 displays various screens on the client terminal 108. Take control.

  The input reception unit 312 receives input of information input on various screens displayed by the display unit 310, and the notification unit 314 notifies the access relay apparatus 102 of information regarding the result of determination by the registration determination unit 304. To do.

  The determination result storage unit 316 stores information regarding the result of determination performed by the registration determination unit 304.

  The access relay apparatus 102 includes a notification receiving unit 318, an unregistered URL storage unit 320, a display unit 322, an access control rule storage unit 324, an access control unit 326, and a URL storage unit 328.

  The notification receiving unit 318 receives information regarding the determination result notified from the notification unit 314 of the mail relay apparatus 106, and the unregistered URL storage unit 320 is unregistered from the information regarding the determination result received by the notification receiving unit 318. The URL, the reason why it is regarded as unregistered, and information related to the e-mail to which the URL is assigned are stored.

  The display unit 322 controls display of various screens at the client terminal 108, and the access control rule storage unit 324 stores rules for controlling relaying of access requested from the client terminal 108.

  The access control unit 326 controls access by applying the relay control rule stored in the access control rule storage unit 324 to the access requested from the client terminal 108.

  The URL storage unit 328 stores and manages categorized URLs, and new categorized URLs are registered as appropriate.

  Next, URL registration determination processing will be described using the flowchart shown in FIG.

  In step S <b> 100, the mail acquisition unit 302 acquires an email received from the external server 114 in the mail reception unit 300.

  In step S102, the registration determination unit 304 applies a reception control rule for determining an e-mail reception control method, and the URL assigned to the e-mail is determined based on an operation on the e-mail determined to be suspended. Is determined as a filtering target (refer to FIG. 5 for details).

  In step S104, the registration determination unit 304 determines whether or not to be a filtering target based on the URL itself given to the e-mail (refer to FIG. 6 for details).

  In step S <b> 106, the registration determination unit 304 determines, based on the e-mail itself, whether or not the URL given to the e-mail is a filtering target (see FIG. 6 for details).

  In step S108, the notification unit 314 notifies the access relay apparatus 102 of the information stored in the determination result storage unit 316 regarding the result of whether or not filtering is performed in steps S102 to S106.

  Note that when performing the notification, the access relay apparatus 102 may be notified only of the information related to the URL (details will be described later) determined to have a high risk.

  In step S110, the notification receiving unit 318 receives information regarding the determination result notified from the mail relay apparatus 106 in step S108.

  In step S112, the unregistered URL storage unit 320 registers information related to the determination result received in step S110 in the unregistered URL DB (the bottom row in FIG. 17).

  The bottom row of FIG. 17 shows the configuration of an unregistered URL DB. The unregistered URL DB is an unregistered URL ID for uniquely identifying an unregistered URL, an unregistered URL, and an unregistered URL. An unregistered reason indicating the reason and a mail ID for uniquely identifying an electronic mail to which a URL is assigned are included.

  In this step, an ID is newly issued and registered so that the unregistered URL ID is unique in the unregistered URL DB, and the URL included in the information related to the determination result is registered in the unregistered URL.

  In the unregistered reason, the risk when accessing by the URL is low or high, and the reason for determining the level is registered.

  Next, a process for determining whether or not a URL assigned to an email is to be filtered based on an operation on the suspended email will be described using the flowchart shown in FIG.

  In step S200, the reception control unit 306 applies the reception control rule to the electronic mail acquired by the mail acquisition unit 302 in step S100.

  17 shows the configuration of the reception control rule DB that stores information related to reception control rules. The reception control rule DB is stored and managed by the reception control rule storage unit 308, and the reception control rules are uniquely identified. A rule ID for identifying the name, a rule name indicating the name of the reception control rule, an email condition to which the reception control rule is applied, a sender condition, a receiver condition, a subject / body condition, and an attachment condition, It is configured to include an operation indicating processing to be applied to electronic mail data that meets the above-described conditions.

  The sender condition indicates a condition regarding the sender of the e-mail. For example, the sender condition of the e-mail is “*

example. co. jp ”,“ *

example. co. Conditions such as “other than jp” and “all senders” are registered.

  The recipient condition indicates a condition regarding the recipient of the e-mail. For example, “TO, CC, BCC *

example. co. Conditions such as “address other than jp is set”, “number of addresses set in TO or CC is n or more”, “includes n or more domains”, “all recipients”, etc. Will be registered.

  The subject / body condition indicates the conditions related to the text and the text set in the subject of the e-mail. For example, "No subject has been entered" The condition such as “used” is registered.

  The attached file condition indicates a condition related to the attached file attached to the e-mail. For example, as the information on the file type of the attached file, “image / jpeg” in the case of a JPEG file, or in the case of a text file. Is “text / plain”, regarding the character string input to the attached file, “includes any of“ confidential, confidential, confidential ”or“ confidential ”, the attached file size is“ 30 MB or more ”,“ less than 20 MB ” , Etc. are registered.

  Of course, it is not necessary to set all of the sender condition, the receiver condition, the subject / body condition, and the attached file condition in one reception control rule.

  In addition, when multiple conditions are registered among sender conditions, recipient conditions, subject / body conditions, and attachment file conditions, an e-mail including all these conditions is an e-mail to which the reception control rule is applied. Is done.

  The operation indicates a process to be applied to the e-mail data that matches the condition, and any one of “reception”, “reception prohibited”, and “hold” is registered.

  If “Receive” is set, the e-mail is transmitted to the designated destination. When “reception prohibited” is set, reception of electronic mail is prohibited. When “hold” is set, reception of the electronic mail is suspended, and reception control is performed in accordance with an instruction of “reception” or “reception prohibited” received from the administrator.

  In step S202, the reception control unit 306 determines whether or not the operation is on hold as a result of applying the reception control rule in step S200. If it is determined that the operation is on hold, the process proceeds to step S204. If not, the process proceeds to step S220.

  In step S204, it is determined whether or not a reception instruction has been given via the input reception unit 312 to the pending email list screen 400 (see FIG. 8) displayed by the display unit 310. If so, the process proceeds to step S206. If not, the process proceeds to step S212.

  FIG. 8 shows a configuration of the pending email list screen 400, and the pending email list screen 400 includes a pending email list display unit 402, a reception button 404, and a reception prohibition button 406.

  The pending email list display unit 402 is a display unit that displays a list of pending emails, and includes an audit target email selection check box 408, a mail ID 410, a reception date and time 412, a sender / subject 414, an attached file presence / absence 416, and A detail button 418 is provided.

  The audit target mail selection check box 408 is a check box for selecting an electronic mail to be audited. When the instruction to press the reception button 404 is received for the email data in which the audit target mail selection check box 408 is checked, the reception process is performed. When the instruction to press the reception prohibition button 406 is received, A reception prohibition process is executed.

  The mail ID 410 is a display unit that displays the mail ID of the pending electronic mail. The reception date and time 412 is a display unit that displays time information when the hold electronic mail is transmitted. A sender / subject 414 is a display unit that displays sender information and subject information of the hold electronic mail.

  The attached file presence / absence 416 is a display unit that displays the presence / absence of an attached file of the pending electronic mail. The detail button 418 is a button used for making a request for detailed data of an electronic mail to the mail relay apparatus 106.

  In this step, if the audit target mail selection check box 408 is checked and it is detected that the reception button 404 has been pressed, the process proceeds to step S206. If not, the process proceeds to step S212. Proceed.

  In step S206, the registration determination unit 304 determines whether or not a URL is assigned to the email whose check target mail selection check box 408 is checked. If it is determined that the URL is assigned, the process proceeds to step S208. If the process proceeds and is not determined to have been granted, the process ends.

  In step S208, the registration determination unit 304 acquires a URL from the e-mail. In step S210, the determination result storage unit 316 acquires the URL acquired in step S208 and information about the e-mail to which the URL is assigned (email ID). And determination result information indicating that the risk is low when the electronic mail put on hold is permitted to be received and accessed by the URL.

  In step S212, it is determined whether or not the reception prohibition button 406 is pressed via the input receiving unit 312 with respect to the pending email list screen 400 displayed by the display unit 310. If the process proceeds to step S214 and it is not determined that the button has been pressed, the process ends.

  In step S214, the registration determination unit 304 determines whether or not a URL is assigned to an email for which the audit target mail selection check box 408 is checked. If it is determined that the URL is assigned, the process proceeds to step S216. If the process is advanced and it is not determined that it has been granted, the process ends.

  In step S216, the registration determination unit 304 acquires a URL from the e-mail. In step S218, the determination result storage unit 316 acquires the URL acquired in step S216 and information about the e-mail to which the URL is assigned (mail ID). And determination result information indicating that there is a high risk when the electronic mail put on hold is prohibited and accessed by the URL.

  In step S220, the registration determination unit 304 determines whether or not a URL is assigned to an email that is not put on hold. If it is determined that the URL is assigned, the process proceeds to step S222, where the registration is given. If it is not determined that it is not, the process is terminated.

  In step S222, the registration determination unit 304 acquires a URL from the e-mail. In step S224, the determination result storage unit 316 acquires the URL acquired in step S222 and information about the e-mail to which the URL is assigned (email ID). And the determination result information indicating that the e-mail is not put on hold and the risk when accessed by the URL is extremely low.

  Next, a process of determining whether or not to make the URL a filtering target based on the URL itself given to the e-mail will be described using the flowchart shown in FIG.

  In step S300, the registration determination unit 304 determines whether or not a URL is assigned to the e-mail acquired in step S100. If it is determined that the URL is assigned, the process proceeds to step S302. If it is not determined that there is, the process ends.

  In step S302, the registration determination unit 304 acquires the URL given to the email acquired in step S100. In step S304, the registration determination unit 304 acquires the URL element acquired in step S300 (eg, scheme, host, etc.). Name, path name, port number, folder name, etc.).

  In step S306, the registration determination unit 304 determines whether the element acquired in step S304 is similar to a prominent domain. If it is determined that the element is similar, the process proceeds to step S308, and the registration determination unit 304 does not determine that the element is similar. Advances the process to step S310.

  As a determination method in this step, a well-known domain is stored in advance, and it is determined whether or not the stored domain and URL elements are similar.

  Further, not only the domain but also a derived domain may be targeted. For example, when bbb.co.jp exists as a prominent domain, the target URL is http://aaa.bbb.c0jp.com. At this time, aaa.bbb that is a derived domain may be determined as a similar element.

  The reason for making such a determination is that the target URL is similar to a prominent domain, and is assumed to be used for misidentification of the user.

  In step S308, the determination result storage unit 316 resembles the URL acquired in step S302, information about the e-mail to which the URL is assigned (including the mail ID), and elements of the URL similar to the famous domain. The determination result information indicating that the risk at the time of access is high is stored.

  In step S310, the determination result storage unit 316 does not resemble the URL acquired in step S302, information about the e-mail to which the URL is assigned (including the mail ID), and the element of the URL is similar to a well-known domain. The determination result information indicating that the risk when accessed by the URL is low is stored.

  In step S312, the registration determination unit 304 determines whether the domain of the URL acquired in step S302 is a domain used in the mail magazine. If it is determined that the domain is a domain, the process proceeds to step S314. If the domain is not determined, the process proceeds to step S316.

  As a determination method in this step, a domain used in the mail magazine is stored in advance by the reception control rule storage unit 308, and it is determined whether or not the stored domain matches the URL domain.

  In step S314, the determination result storage unit 316 includes the URL acquired in step S302, information about the e-mail to which the URL is assigned (including the mail ID), and the domain of the URL is the domain of the mail magazine. The determination result information indicating that the risk at the time of access is high is stored.

  In step S316, the determination result storage unit 316 includes the URL acquired in step S302, information about the email to which the URL is assigned (including the mail ID), and the domain of the URL is not the domain of the mail magazine. The determination result information indicating that the risk at the time of access is low is stored.

  Next, a process for determining whether or not the URL is to be filtered based on the suspicion of the e-mail itself will be described using the flowchart shown in FIG.

  In step S400, the registration determination unit 304 determines whether or not a URL is assigned to the e-mail acquired in step S100. If it is determined that the URL is assigned, the process proceeds to step S402, where the registration is performed. If it is not determined that there is, the process ends.

  In step S402, the registration determination unit 304 acquires the URL given to the e-mail acquired in step S100.

  In step S404, the registration determination unit 304 determines whether the e-mail sender address acquired in step S100 is a free mail address. If the address is determined to be a free mail address, the process proceeds to step S406. If it is not determined to be an e-mail address, the process proceeds to step S408.

  As a determination method in this step, a domain in which free mail is used is stored in advance by the reception control rule storage unit 308, and it is determined whether or not the stored domain matches the domain of the e-mail.

  Note that depending on the service that provides free mail, it is assumed that the sender's address is converted, so not only the domain but also identification information that identifies the service is added to the header of the email. The identification information may be stored in advance, and it may be determined whether or not the stored identification information matches the information input in the e-mail header.

  In step S406, the determination result storage unit 316 includes the URL acquired in step S402, information about the email to which the URL is assigned (including the email ID), and the address of the sender of the email as a free email address. The determination result information indicating that the risk when accessed by the URL is high is stored.

  In step S408, the determination result storage unit 316 determines that the URL acquired in step S402, information about the email to which the URL is assigned (including the email ID), and the email sender address are not free email addresses. The determination result information indicating that the risk when accessed by the URL is low is stored.

  In step S410, the registration determination unit 304 determines whether or not the above-mentioned e-mail has been transmitted from overseas based on the IP address of the transmission source included in the header of the e-mail, and the e-mail is from overseas. If it is determined, the process proceeds to step S412; otherwise, the process proceeds to step S414.

  In step S412, the determination result storage unit 316 includes the URL acquired in step S402, information on the email to which the URL is assigned (including the email ID), and the email sent from overseas. The determination result information indicating that the risk at the time of access is high is stored.

  In step S414, the determination result storage unit 316 is the URL acquired in step S402, information on the email to which the URL is assigned (including the email ID), and the email sent from overseas. The determination result information indicating that the risk at the time of access is low is stored.

  In step S416, the registration determination unit 304 determines whether or not the above-mentioned e-mail is assigned the same URL as that given to a different e-mail that has been received most recently. If so, the process proceeds to step S418, and if not determined to have been granted, the process proceeds to step S420.

  In step S418, the determination result storage unit 316 adds the URL acquired in step S402, information (including the mail ID) regarding the email to which the URL is assigned, and the email that has been received most recently. The determination result information indicating that there is a high risk when accessing by the URL is stored.

  In step S420, the determination result storage unit 316 adds the URL acquired in step S402, information (including the mail ID) regarding the email to which the URL is assigned, and the email that has already been received most recently. Is stored with determination result information indicating that the risk is low when accessed by the URL.

  Next, a method for registering a relay control rule for access from the client terminal 108 to the external server 114 will be described.

  FIG. 9 shows a relay control rule list screen 500 that displays a list of relay control rules.

  The relay control rule list screen 500 is displayed by the display unit 322, and includes a relay control rule list display unit 502 that displays a list of relay control rules, and a rule addition button 504 that is pressed when a relay control rule is newly added. When the add rule button 504 is pressed, the relay control rule details screen 600 is displayed (see FIG. 10).

  The relay control rule list display unit 502 includes an ID 506 for uniquely identifying the relay control rule, a rule name 508 indicating the name of the relay control rule, an action 510 indicating an operation when the access content corresponds to the relay control rule, and display An operation 512 indicating an operation that can be performed with respect to the relay control rule being provided is provided.

  The operation 512 includes an edit button 514 for pressing when editing the content of the relay control rule, and a move button 516 for changing the display order of the relay control rule in the relay control rule list display unit 502. When the edit button 514 is pressed, the relay control rule detail screen 600 is displayed, and when the move button 516 is pressed, a screen (not shown) for designating the position of the destination for displaying the relay control rule is displayed. Is done.

  FIG. 10 shows a relay control rule details screen 600.

  The relay control rule details screen 600 is displayed by the display unit 322, and displays an ID display field 602 for displaying an ID for uniquely identifying the relay control rule, and a name field for displaying or inputting the name of the relay control rule. 604.

  When the edit button 514 of the relay control rule list screen 500 is pressed, the ID of the relay control rule corresponding to the pressed edit button 514 is displayed in the ID display field 602 and the name is displayed in the name field 604.

  On the other hand, when the add rule button 504 on the relay control rule list screen 500 is pressed, a new relay control rule ID (relay control rule DB rule ID, details will be described later) is issued and displayed in the ID display field 602. The name field 604 is blank or a comment that prompts input.

  The relay control rule details screen 600 is displayed by the display unit 322, and displays candidates for groups (for example, configured with user authentication names, IP addresses, User-Agents, etc.) related to the access source to which the relay control rules are applied. A group display field 606 (combo box, list box, etc.), and an add button 608 and an add button 608 to be pressed when a relay control rule is applied to the group selected and displayed in the group display field 606 Thus, an applied group display field 610 for displaying the group selected and displayed in the group display field 606 is provided.

  The relay control rule details screen 600 includes a delete button 612 to be pressed when deleting the group name displayed in the application group display field 610, and the group name displayed in the application group display field 610 is selected. When the delete button 612 is pressed in this state, the group name is deleted from the application group display field 610.

  The relay control rule detail screen 600 displays an application date selection field 614 for selecting a time and day of the week for applying the relay control rule, and an applied URL group that displays URL group candidates to be filtered with respect to the URL to be accessed. A display field 616 (combo box, list box, etc.) is provided.

  When one group is selected from the URL group candidates (details will be described later) displayed in the applied URL group display field 616, the URL group is set as an application target of the relay control rule.

  The relay control rule details screen 600 can set an operation to be performed for an access to which the relay control rule is applied. When relaying the access, the relay field 618 is set without relaying the access. When responding a warning message, the warning column 620 is not relayed, and when a prohibition message is responded without relaying, the prohibition column 622 is used. When redirecting to a set URL without relaying access, Each field (combo box or the like) for selecting the redirect field 624 is provided.

  The relay control rule detail screen 600 includes a redirect URL setting field 626 for setting a URL to be redirected when the redirect field 624 is selected.

  The relay control rule details screen 600 has a delete button 628 for pressing when deleting a relay control rule, an update button 630 for pressing when registering or updating a relay control rule, and canceling editing of the relay control rule. A cancel button 632 for pressing the button is provided.

  Information related to the relay control rule is registered in the relay control rule DB shown in the second row from the top in FIG.

  The relay control rule DB is stored and managed by the access control rule storage unit 324, and relates to the rule ID for uniquely identifying the relay control rule, the rule name indicating the name of the rule, and the access source to which the relay control rule is applied. Group (including ID), time and day of the week for applying the relay control rule, URL group (including ID) to be filtered with respect to the URL of the access destination, and operations performed for access to which the relay control rule is applied Is included.

  When the relay control rule list screen 500 is displayed, the relay control rule list display unit 502 displays information related to the relay control rules registered in the relay control rule DB.

  When the delete button 628 of the relay control rule details screen 600 is pressed, information regarding the corresponding relay control rule is deleted from the relay control rule DB, and when the update button 630 is pressed, the corresponding information in the relay control rule DB is displayed. Information related to relay control rules is edited and updated.

  Next, a group registration screen 700 for registering groups displayed in the above-described application group display field 610 will be described with reference to FIG.

  The group registration screen 700 is displayed by the display unit 322, and includes a group ID display field 702 for displaying an ID for uniquely identifying the group, and a group name field 704 for displaying or inputting the name of the group.

  When an edit button that is pressed when editing a group on a group list screen (not shown) on which a group is displayed is pressed, the ID of the group corresponding to the pressed edit button is displayed in the group ID display field 702. The name is displayed in the group name column 704.

  On the other hand, when a group addition button that is pressed when adding a group on the group list screen is pressed, a new group ID is issued and displayed in the group ID display column 702, and the group name column 704 is blank. A comment etc. that prompts input is displayed.

  The group registration screen 700 includes an authentication name field 706 for displaying or inputting an authentication name for the access relay apparatus 102, an add button 708 for pressing when an authentication name displayed in the authentication name field 706 is added to the group, When an add button 708 is pressed, an authentication name list display field 710 for displaying the authentication name displayed in the authentication name field 706 is provided.

  When the authentication name displayed in the authentication name list display field 710 is selected, the authentication name is displayed in the authentication name field 706.

  In the group registration screen 700, when the authentication name in the authentication name list display field 710 is selected and displayed in the authentication name field 706, the authentication name is corrected and then the corrected authentication name is displayed in the authentication name list display field 710. A correction button 712 for pressing when reflecting is provided.

  In the group registration screen 700, an authentication name in the authentication name list display field 710 is selected and displayed in the authentication name field 706, and is deleted when the authentication name is deleted from the authentication name list display field 710. A button 714 is provided.

  The group registration screen 700 includes an address name field 716 for displaying or inputting an access source IP address and the like, an add button 718 for pressing when an IP address displayed in the address name field 716 is added to the group, When an add button 718 is pressed, an address name list display field 720 for displaying an IP address or the like displayed in the address name field 716 is provided.

  The correction button 722 and the deletion button 724 perform the same operations as the correction button 712 and the deletion button 714 for correcting and deleting the authentication name described above, and thus description thereof is omitted.

  The group registration screen 700 is pressed to add the User-Agent name displayed in the User-Agent name field 726 and the User-Agent name field 726 for displaying or inputting the access-source User-Agent to the group. The user-agent name list display field 730 for displaying the user-agent name displayed in the user-agent name field 726 by pressing the add button 728 and the add button 728 is provided.

  Since the correction button 732 and the deletion button 734 perform the same operations as the correction button 712 and the deletion button 714 for correcting and deleting the authentication name described above, description thereof is omitted.

  The group registration screen 700 includes a registration button 736 to be pressed when registering a relay control rule, and a cancel button 738 to be pressed to cancel editing of the relay control rule.

  Information about groups is registered in the group DB shown in the third row from the top in FIG.

  The group DB is stored and managed by the access control rule storage unit 324, and includes an ID for uniquely identifying the group, a group name indicating the name of the group, an authentication name for the access relay apparatus 102, an access source IP address, and the like. The original User-Agent is included.

  When a registration button 736 on the group registration screen 700 is pressed, information displayed on the group registration screen 700 is registered and updated in the group DB.

  Next, a URL group registration screen 800 for registering a group of URLs displayed in the above-described applied URL group display field 616 will be described with reference to FIG.

  The URL group registration screen 800 is displayed by the display unit 322, a URL group ID display field 802 for displaying an ID for uniquely identifying a URL group, and a URL group name for displaying or inputting the name of the URL group. A column 804 is provided.

  When an edit button that is pressed when editing a URL group on a URL group list screen (not shown) that displays a list of URL groups is pressed, the ID of the URL group corresponding to the pressed edit button Is displayed in the URL group ID display field 802 and the name is displayed in the URL group name field 804.

  On the other hand, when a URL group addition button that is pressed when adding a URL group on the URL group list screen is pressed, a new URL group ID is issued and displayed in the URL group ID display field 802, and the URL The group name column 804 is blank or a comment that prompts input.

  The URL group registration screen 800 includes a URL field 806 for displaying or inputting a URL attributed to the URL group, an add button 808 for pressing when adding the URL displayed in the URL field 806 to the group, and an add button A URL list display field 810 for displaying URLs displayed in the URL field 806 by pressing 808 is provided.

  When a URL displayed in the URL list display field 810 is selected, the URL is displayed in the URL field 806.

  When a URL in the URL list display field 810 is selected and displayed in the URL field 806, the URL group registration screen 800 is pressed to reflect the corrected URL in the URL list display field 810 after correcting the URL. A correction button 812 is provided.

  The URL group registration screen 800 includes a delete button 814 that is displayed when the URL in the URL list display field 810 is selected and displayed in the URL field 806 and is deleted when the URL is deleted from the URL list display field 810. ing.

  The URL group registration screen 800 includes an unregistered URL display button 816 for displaying an unregistered URL list screen 900 (see FIG. 13) for displaying a list of unregistered URLs notified from the mail relay apparatus 106.

  The URL selected on the unregistered URL list screen 900 is displayed in the URL list display field 810.

  The URL group registration screen 800 includes a category selection button 818 for selecting a category belonging to the group. When the category selection button 818 is pressed, a category selection screen (not shown) is displayed.

  When the category displayed on the category selection screen (not shown) is selected, the selected category is displayed in the category display field 822.

  The category indicates a category to which the URL belongs (for example, chat bulletin board, sports, politics, economy, etc.), and is obtained from a category DB (not shown) in which the categorized information is registered. The category selection button 818 is displayed. The category DB (not shown) is stored and managed by the URL storage unit 328.

  The URL group registration screen 800 includes a URL search button 824 for displaying a URL search screen (not shown) for searching for a category to which the URL belongs by inputting a URL.

  The URL group registration screen 800 includes a registration button 834 to be pressed when registering a URL group, and a cancel button 836 to be pressed when canceling a URL group.

  Information about the URL group is registered in the URL group DB shown in the second row from the bottom in FIG.

  The URL group DB is stored and managed by the access control rule storage unit 324, and a URL group ID for uniquely identifying a URL group, a URL group name indicating a URL group name, a URL list indicating URLs belonging to the group, A category list indicating categories belonging to the group is included.

  The URL group list screen (not shown) displays information about the URL groups registered in the URL group DB, and when the registration button 834 is pressed, the URL displayed on the URL group registration screen 800 is displayed. Information about groups is registered and updated.

  Next, the unregistered URL list screen 900 will be described with reference to FIG.

  The unregistered URL list screen 900 is a screen for displaying a list of URLs assigned to e-mails in the mail relay device 106. The unregistered URL list is displayed by the display unit 322 and displays a list of unregistered URLs. A display unit 902 is provided.

  An unregistered URL list display unit 902 displays an ID 904 for uniquely identifying an unregistered URL, an unregistered URL 906 indicating an unregistered URL, and an unregistered reason based on a determination result in the mail relay apparatus 106. A reason 908 and an operation 910 indicating an operation of information regarding an unregistered URL are provided.

  An operation 910 includes a registration button 912 to be pressed when registering information related to an unregistered URL in the URL group, a delete button 914 to be pressed to delete the information, and editing the information. A detail button 916 is provided to be pressed when displaying an unregistered URL detail screen 1000 (see FIG. 14) for displaying detailed information of an unregistered URL.

  When the registration button 912 is pressed, a URL corresponding to the pressed registration button 912 is displayed in the URL list display field 810 of the URL group registration screen 800.

  The unregistered URL list screen 900 includes a close button for pressing when the unregistered URL list screen 900 is closed.

  Next, the unregistered URL detail screen 1000 will be described with reference to FIG.

  The unregistered URL detail screen 1000 is displayed by the display unit 322. The unregistered URL 1002 is an ID 1002 for uniquely identifying an unregistered URL, an unregistered URL 1004 indicating an unregistered URL, and an unregistered URL based on a determination result in the mail relay apparatus 106 Unregistered reason 1006 for displaying the reason, and mail information 1008 for displaying information (e.g., destination, subject, text, attached file, etc.) related to the e-mail to which the unregistered URL has been assigned.

  The unregistered URL detail screen 1000 has a registration button 1010 for pressing when registering a displayed unregistered URL in any URL group, and a cancel for pressing when canceling an unregistered URL. A button 1012 is provided.

  When the registration button 1010 is pressed, the URL corresponding to the pressed registration button 1010 is displayed in the URL list display field 810 of the URL group registration screen 800.

  This makes it possible to accurately register an inappropriate access destination URL.

  After registration of the relay control rules and the like in this way, when an access request is made from the client terminal 108 to the external server 114, the access destination URL, the access time, the day of the week for the data related to the access The access control unit 326 analyzes the authentication name related to the accessing user, the IP address of the client terminal 108 that is the access source, and the User-Agent that specifies the software requesting access.

  Then, the access control unit 326 determines which group of the information obtained by analysis the authentication name, the IP address, and the authentication name, IP address, and combination of User-Agent registered in the group DB, And the group ID of the record corresponding to User-Agent.

  Then, the access control unit 326 acquires the URL group (ID) of the record in which the acquired group ID corresponds to the group (ID) registered in the relay control rule DB.

  Next, the access control unit 326 acquires the URL list and the category list of the record in which the acquired URL group (ID) corresponds to the URL group ID registered in the URL group DB.

  Then, the access control unit 326 includes a category DB (not shown) in which the URL of the access destination is included in the URL list or the category to which the URL of the access belongs belongs among the information obtained by the analysis. To determine whether the specified category is included in the category list.

  As a result of the determination, if the access control unit 326 determines that the access is included, the access control unit 326 executes the action of the record acquired from the relay control rule DB described above for the access.

[Second Embodiment]
In the first embodiment, the URL risk is obtained based on the URL itself or the e-mail itself given to the e-mail, and the URL is notified to the access relay apparatus 102 to be registered. It is also possible to take a mode in which a given electronic mail is suspended.

  In addition, since the same structure and process as 1st Embodiment are performed, the same code | symbol is used about the same structure and process, detailed description is abbreviate | omitted, and only a different part is demonstrated.

  In the URL registration determination process shown in FIG. 4, whether or not the URL given to the e-mail based on the operation for the suspended e-mail shown in FIG. 5 is subject to filtering without performing steps S104 and S106. In step S200 of the process for determining whether or not the reception control rule is applied, the processes related to step S104 and step S106 may be performed.

  In step S202, as a result of the processing in step S104 and step S106, an e-mail to which a URL determined to have a high risk is set as a holding target, and a URL determined to have a low risk is given, or the URL is Processing may be performed so that an unassigned e-mail is not put on hold.

  However, even when an URL that has been determined to have a low risk is assigned or an email that is not assigned a URL, if another reception control rule is applied, the email is suspended.

  When the detail button 418 of the hold email list screen 400 is pressed, a hold detail screen (not shown) on which the details of the hold email can be referred to is displayed, and the determination result information stored by the determination result storage unit 316 is also displayed. Display together.

  As a result, the auditor can control the reception of an electronic mail to which a high-risk URL is assigned, and thus can prevent unauthorized access.

  It should be noted that although e-mails to which URLs determined to have a low risk are not to be held, all e-mails to which URLs have been assigned may be held. Also in this case, the determination result information is displayed on a hold detail screen (not shown).

  Furthermore, regardless of whether the risk of URL is high or low, it is also possible to take a form in which determination result information is displayed on a hold detail screen (not shown) for a hold email.

[Third Embodiment]
In the first embodiment and the second embodiment, a description has been given of a mode in which a URL assigned to an e-mail is registered as a relay control rule in the access relay apparatus 102. In the third embodiment, the URL is not registered. Since a certain URL may be accessed unless it is registered as a relay control rule, an attempt is made to access an unregistered URL depending on the selection type of access from a plurality of users from the client terminal 108. A warning is given to the user.

  In addition, since the same structure and process as 1st Embodiment and 2nd Embodiment are performed, the same code | symbol is used about the same structure and process, detailed description is abbreviate | omitted, and only a different part is demonstrated. .

  First, a URL group dedicated to a URL that has become an unregistered URL is created in advance using the URL group registration screen 800 shown in FIG. 16, and a new URL group is newly displayed on the group registration screen 700. Create a group.

  When creating a URL group, in the URL group registration screen 800 shown in FIG. 16, an automatic registration warning output field 1200 for accepting a setting for automatically registering a URL and issuing a warning, and automatically registering the URL in the URL group DB. If the registration button 834 is pressed while the automatic registration warning output field 1200 is checked, a URL is automatically registered for this item. Information to be stored is stored.

  When creating a group, for example, an authentication name list, an IP address, and a User-Agent may be set so as to cover all client terminals 108 to be controlled for access. For example, the authentication name list display field 710, the address name list display field 720, and the User-Agent name list display field 730 may be blanked to target all authentication name lists, IP addresses, and User-Agents.

  Furthermore, in order to control access to a URL that has become an unregistered URL as a relay control rule on the relay control rule details screen 600, a newly created group is selectively displayed in the application group display field 610, and a new one is newly displayed. The created URL group is selectively displayed in the applied URL group display field 616.

  Then, the warning column 620 is checked as an action (when the URL group checked in the automatic registration warning output column 1200 is selected and displayed in the applied URL group display column 616, the warning column 620 is automatically checked as an action, In another mode, other actions may not be selected), and the update button 630 is pressed to register the relay control rule in the relay control rule DB.

  Then, if information indicating that automatic registration is performed is stored in the URL group DB item after the processing of step S112, the URL registered in the unregistered URL in the unregistered URL DB is stored in the URL group URL list. sign up.

  Thereafter, when an access request is made from the client terminal 108 to the external server 114, the access control unit 326 makes access time, day of the week, an authentication name related to the accessing user, and an IP address of the accessing client terminal 108. , And User-Agent that identifies the software requesting access is analyzed.

  Then, the access control unit 326 determines which group of the information obtained by analysis the authentication name, the IP address, and the authentication name, IP address, and combination of User-Agent registered in the group DB, And the group ID of the record corresponding to User-Agent. At this time, for the newly created group ID, all authentication names, IP addresses, and User-Agent are targeted. get.

  Then, the access control unit 326 acquires the URL group (ID) of the record whose acquired group ID corresponds to the group (ID) registered in the relay control rule DB. At this time, the newly created URL group Will get.

  Next, the access control unit 326 acquires the URL list and the category list of the record in which the acquired URL group (ID) corresponds to the URL group ID registered in the URL group DB. That is, an unregistered URL can be acquired.

  Then, the access control unit 326 determines whether the URL of the access destination is included in the URL list among the information obtained by analysis.

  If the access control unit 326 determines that the URL is included in the URL list as a result of the determination, the access control unit 326 executes a record action acquired from the relay control rule DB, that is, a warning for the access.

  As an example of executing this warning, an access warning screen 1100 shown in FIG. 15 is displayed on the client terminal 108 that has requested access.

  The access warning screen 1100 is a screen that warns that the currently requested URL of the access destination is a risky URL. URL display field 1102 for displaying the URL, access by recognizing the risk of the URL An access button 1104 to be pressed when performing the URL, a button 1106 with no risk to be pressed when the URL is not recognized and the risk is not accessed, and access is performed because the risk judgment of the URL cannot be determined There is a button 1108 that cannot be accessed and cannot be pressed when there is no access.

  The user presses the access button 1104 when accessing the URL with risk, and presses the non-risk access button 1106 when the user recognizes that there is a risk and does not perform access. It is impossible to determine whether or not there is any, and when access is not performed, a button 1108 that does not allow determination to be accessed is pressed.

  Further, it is possible to take a configuration in which which button is pressed is registered in the unregistered URL DB.

  The unregistered URLDB stores the number of times the access button 1104 has been pressed, the number of times that the button 1106 that has not been accessed with risk has been pressed, and the number of times that the button 1108 that has not been accessed indeterminate has been pressed.

  Then, when the user tries to access an unregistered URL, the number of times each button is pressed may be displayed as an access result display 1110 on the access warning screen 1100.

  The total reference count of the access result display 1110 indicates the total access count to the URL displayed in the URL display field 1102 (unregistered URL in the unregistered URL DB). The number of times that the access button 1104 has not been determined indicates that the button 1108 that has not been determined to be accessed is pressed, and the number of times that the access button 1104 has been pressed is indicated.

  In the process of determining whether or not the URL is to be filtered based on the URL itself given to the e-mail shown in FIG. 6, it is determined whether or not the URL acquired in step S302 is registered in the unregistered URL DB. However, when it is determined that it is registered, the risk may be determined based on the number of times each button corresponding to the URL is pressed.

  For example, if the number of times the button 1106 not accessed with risk is pressed is registered even once (or more than a predetermined number is registered), it is determined that the risk is high, and only the number of times the access button 1104 is pressed is obtained. If registered, it is determined that the risk is extremely low, and the button 1108 that cannot be determined cannot be accessed is pressed several times, and if the access button 1104 is registered several times, the risk is low. May be determined.

  Note that the access control unit 326 determines whether the URL of the access destination is included in the URL list among the information obtained by analysis, but the URL of the access destination is the above-described category DB (not shown). If it is included in the URL list and registered in the category DB, a warning may be executed.

  Furthermore, even if the URL is registered in this category DB, a warning may be executed if the URL belongs to a category deemed dangerous.

[Fourth Embodiment]
In the third embodiment, it has been described that a warning is given to a user who is trying to access an unregistered URL. However, in the fourth embodiment, an unregistered URL determined as having a high risk is used. As long as the mode is registered in the URL group DB, it will be described.

  In addition, since the same structure and process as 1st Embodiment thru | or 3rd Embodiment are performed, the same code | symbol is used about the same structure and process, detailed description is abbreviate | omitted, and only a different part is demonstrated. .

  In the fourth embodiment, URLs determined to have high risk among URLs registered in unregistered URLs in the unregistered URL DB are automatically registered in the URL list of the URL group DB.

  In this case, when creating a URL group, an automatic registration field 1202 for accepting a setting for automatically registering a URL with a high risk is provided on the URL group registration screen 800 shown in FIG. 16, and the automatic registration field 1202 is checked. When the registration button 834 is pressed in a state in which it has been made, information indicating that a high-risk URL is automatically registered for the above-described item of the URL group DB is stored.

  A method for creating a group or a method for creating a relay control rule uses the same method as in the third embodiment, but it is assumed that the warning column 620 or the prohibition column 622 is checked as an action. When the URL group checked in the automatic registration field 1202 is selected and displayed in the applied URL group display field 616, the warning field 620 and the prohibition field 622 can be automatically checked as actions, and other actions are selected. It may be possible to make it impossible, or only the prohibition column 622 may be selectable.

  If information indicating that a URL with a high risk is automatically registered is stored in the URL group DB item after the process of step S112, the URL is registered in the URL list of the URL group.

  Thereafter, the same processing as in the third embodiment is performed. However, when an access request is made from the client terminal 108 to the external server 114, the access control unit 326 automatically registers the URL of the access request destination with high risk. In the case of the received URL, when an alert is executed as an action, the access alert screen 1100 is displayed on the client terminal 108 that requested the access, and when prohibition is executed as an action, an alert screen that blocks access is displayed. (Not shown) is displayed on the client terminal 108 that requested access.

  In addition, in parallel with the third embodiment, information indicating that URLs are automatically registered and information indicating that URLs with high risk are automatically registered are identified and registered in the items of the URL group DB. When the automatic registration warning output field 1200 is checked, information indicating that the URL is automatically registered is registered. When the automatic registration field 1202 is checked, the URL indicating that the risk is high is automatically registered. Can be configured to register the information shown.

[Fifth Embodiment]
In the first to fourth embodiments, the configuration in which the URL assigned to the e-mail is registered in the access relay apparatus 102 has been described, but such a URL is applied as the reception control rule of the mail relay apparatus 106. An aspect is demonstrated.

  Since the same configuration and processing as those of the first to fourth embodiments are performed, the same reference numerals are used for the same configuration and processing, and detailed description is omitted, and only different portions are described. .

  In the fifth embodiment, for example, in the processing after step S106, the unregistered URL DB is also provided in the mail relay apparatus 106, and the determination result information stored by the determination result storage unit 316 is registered in the unregistered URL DB.

  Thereafter, when registering the reception control rule in the reception control rule DB, this URL is given by displaying the unregistered URL list screen 900 and pressing the registration button 912 corresponding to the corresponding unregistered URL. It is also possible to register the received e-mail in the reception control rule DB so that the e-mail is held.

  Accordingly, in step S200, the reception control unit 306 applies the reception control rule to the email acquired by the mail acquisition unit 302 in step S100, and on the basis of the applied result, in step S202, the email is suspended. Determine whether or not to do so.

  As a reception control rule, a rule for controlling reception of a high-risk URL that is unregistered is registered, and a high-risk URL registered in the unregistered URL DB is automatically registered in the reception control rule DB. Also good.

  Note that the data registered in the unregistered URL DB is registered in the unregistered URL DB at this update timing because the data registered in the category DB stored and managed by the URL storage unit 328 is appropriately updated. For URLs that are registered and registered in the category DB, a method of deleting from the unregistered URL DB may be applied.

  Furthermore, in the third embodiment, with respect to the URL registered in the category DB in association with the update of the data registered in the category DB, with respect to the URL-dedicated URL group that has become an unregistered URL, You may delete from URL list of URL group DB.

  As described above, according to the present invention, it is possible to accurately register information regarding an inappropriate connection destination.

  It should be noted that the configuration and contents of the various data described above are not limited to this, and it goes without saying that the various data and configurations are configured according to the application and purpose.

  Although one embodiment has been described above, the present invention can take an embodiment as a method, a program, a recording medium, or the like.

  The program according to the present invention is a program that allows a computer to execute the processing methods of the flowcharts shown in FIGS.

  As described above, a recording medium that records a program that implements the functions of the above-described embodiments is supplied to a system or apparatus, and a computer (or CPU or MPU) of the system or apparatus stores the program stored in the recording medium. It goes without saying that the object of the present invention can also be achieved by executing the reading.

  In this case, the program itself read from the recording medium realizes the novel function of the present invention, and the recording medium storing the program constitutes the present invention.

  As a recording medium for supplying the program, for example, a flexible disk, hard disk, optical disk, magneto-optical disk, CD-ROM, CD-R, DVD-ROM, magnetic tape, nonvolatile memory card, ROM, EEPROM, silicon A disk, solid state drive, or the like can be used.

  Further, by executing the program read by the computer, not only the functions of the above-described embodiments are realized, but also an OS (operating system) operating on the computer based on an instruction of the program is actually It goes without saying that a case where the function of the above-described embodiment is realized by performing part or all of the processing and the processing is included.

  Furthermore, after the program read from the recording medium is written to the memory provided in the function expansion board inserted into the computer or the function expansion unit connected to the computer, the function expansion board is based on the instructions of the program code. It goes without saying that the case where the CPU or the like provided in the function expansion unit performs part or all of the actual processing and the functions of the above-described embodiments are realized by the processing.

  Needless to say, the present invention can also be applied to a case where the object is achieved by supplying a program to a system or apparatus. In this case, by reading a recording medium storing a program for achieving the present invention into the system or apparatus, the system or apparatus can enjoy the effects of the present invention.

  Furthermore, by downloading and reading a program for achieving the present invention from a server, database, etc. on a network using a communication program, the system or apparatus can enjoy the effects of the present invention.

  In addition, all the structures which combined each embodiment mentioned above and its modification are also included in this invention.

100 Information Processing System 102 Access Relay Device 104 Mail Server 106 Mail Relay Device 108 Client Terminal 110 LAN
112 Wide area network 114 External server

Claims (24)

An information processing apparatus that accesses a resource by instructing resource identification information indicating information for identifying the resource,
Storage means for storing the resource specifying information for controlling the access;
A risk acceptance means for accepting information relating to a risk of access to the resource with respect to the resource identification information given to the received e-mail;
Registration means for registering the resource specifying information in the storage means using information relating to the risk received by the risk receiving means;
An information processing apparatus comprising:   2. The information processing apparatus according to claim 1, wherein the registering unit registers, in the storage unit, resource specifying information having a high risk among the resource specifying information received by the risk receiving unit. Display means for displaying the resource identification information received by the receiving means;
The information processing apparatus according to claim 1, wherein the registration unit stores, in the storage unit, resource identification information that has been selected from the resource identification information displayed by the display unit.   The information processing apparatus according to claim 3, wherein the display unit displays information related to a risk of access to the resource with respect to the resource specifying information.   2. An access instruction accepting means for accepting an instruction to access or not access the resource specifying information stored in the storage means when receiving a request for access. 5. The information processing apparatus according to any one of items 4 to 4.   The access instruction accepting unit accepts an instruction not to access as an instruction not to access because there is a risk, or not to access because the risk cannot be determined. Information processing equipment.   When a request for access to the resource specifying information stored in the storage means is received, the access instruction receiving means performs a warning using information relating to whether the access has already been received or not being accessed. The information processing apparatus according to claim 5, further comprising warning means for   The information processing apparatus according to claim 7, wherein the warning unit issues a warning using the number of times an instruction to access is made or the number of times an instruction not to access is made.   Regarding the resource identification information given to the received e-mail, the information related to the risk of access to the resource is determined by the operation on the e-mail put on hold by the reception control rule used when controlling the reception of the e-mail. The information processing apparatus according to claim 1, wherein the information processing apparatus is an information processing apparatus.   When the operation for the e-mail is a reception instruction, the information relating to the risk of access to the resource is assumed that the resource specifying information has a low risk, and the operation for the e-mail is prohibited from being received. The information processing apparatus according to claim 9, wherein the resource identification information has high risk.   Regarding the resource identification information given to the received e-mail, the information relating to the risk of access to the resource is information indicating that the resource identification information itself is at risk. Item 11. The information processing apparatus according to any one of Items 1 to 10.   The information processing apparatus according to claim 11, wherein when the resource identification information is similar to a prominent domain, the resource identification information is risky.   The information processing apparatus according to claim 11 or 12, wherein when the resource identification information is a domain used in an e-mail magazine, the resource identification information is at risk.   Regarding the resource identification information given to the received e-mail, the information relating to the risk of access to the resource is information indicating that the received e-mail itself is at risk. The information processing apparatus according to any one of claims 1 to 13.   15. The information processing apparatus according to claim 14, wherein when the sender of the received electronic mail is a free mail address, the resource specifying information given to the electronic mail is at risk.   The information according to claim 14 or 15, wherein when the received e-mail is an e-mail transmitted from overseas, the resource specifying information given to the e-mail is risky. Processing equipment.   When the received email is the same as the URL assigned to the other recently received email, the resource specifying information assigned to the email is at risk. Item 17. The information processing device according to any one of Items 14 to 16.   The information processing apparatus according to any one of claims 1 to 17, wherein the risk receiving unit receives information related to a risk of access to the resource from another apparatus that controls reception of an e-mail. . An information processing apparatus that accesses a resource by instructing resource identification information indicating information for identifying the resource,
Storage means for storing the resource specifying information for controlling the access;
From the suspicion of the received e-mail, registration means for registering the resource specifying information given to the e-mail in the storage means;
An information processing apparatus comprising: An information processing system in which a mail relay device that controls reception of an e-mail and an access relay device that accesses the resource by instructing resource specifying information indicating information for specifying the resource are connected,
The mail relay device
A determination means for determining a risk of access to the resource with respect to the resource identification information given to the received e-mail;
Transmitting means for transmitting the result determined by the determining means to the access relay device as information relating to the risk;
With
The access relay device
Storage means for storing the resource specifying information for controlling the access;
Risk accepting means for accepting information relating to the risk transmitted by the transmitting means;
Registration means for registering the resource specifying information in the storage means using information relating to the risk received by the risk receiving means;
An information processing system comprising: A method for controlling an information processing apparatus that accesses a resource by instructing resource identification information indicating information for identifying the resource,
The information processing apparatus includes:
A risk acceptance step for accepting information relating to a risk of access to the resource regarding the resource identification information given to the received e-mail;
A registration step of registering the resource identification information in a storage unit that stores the resource identification information for controlling the access, using information related to the risk received by the risk reception step;
A method for controlling an information processing apparatus, characterized by: A program that can be read and executed by an information processing apparatus that accesses a resource by instructing resource specifying information indicating information for specifying the resource,
The information processing apparatus;
A risk acceptance means for accepting information relating to a risk of access to the resource with respect to the resource identification information given to the received e-mail;
Registration means for registering the resource identification information in the storage means for storing the resource identification information for controlling the access, using the information relating to the risk received by the risk acceptance means;
Program to make it function. A method for controlling an information processing system in which a mail relay device that controls reception of an e-mail and an access relay device that accesses the resource by instructing resource specifying information indicating information for specifying the resource are connected. There,
The mail relay device
A determination step for determining a risk of access to the resource regarding the resource identification information given to the received e-mail;
A transmission step of transmitting the result determined by the determination step to the access relay device as information relating to the risk;
Run
The access relay device
A risk receiving step for receiving information relating to the risk transmitted by the transmitting step;
A registration step of registering the resource identification information in a storage unit that stores the resource identification information for controlling the access, using information related to the risk received by the risk reception step;
The control method of the information processing system characterized by performing this. In an information processing system in which a mail relay device that controls reception of an e-mail and an access relay device that accesses the resource by instructing resource specifying information indicating information for specifying the resource are connected,
The mail relay device is
A determination means for determining a risk of access to the resource with respect to the resource identification information given to the received e-mail;
Transmitting means for transmitting the result determined by the determining means to the access relay device as information relating to the risk;
To function,
The access relay device;
Risk accepting means for accepting information relating to the risk transmitted by the transmitting means;
Registration means for registering the resource identification information in the storage means for storing the resource identification information for controlling the access, using the information relating to the risk received by the risk acceptance means;
Program to make it function.

Images