JP2020038690A - Information processing device, information processing system, control method, and program - Google Patents

Abstract

To provide an information processing device, an information processing system, a control method and a program with which it is possible to control access to an inappropriate destination added to an e-mail and thereby improve security.SOLUTION: In an information processing system comprising a mail relay device and an access relay device, the e-mail received by a mail receiving unit 300 of the mail relay device is acquired by a mail acquisition unit 302, a risk of the URL added to the e-mail is calculated on the basis of operation on an e-mail kept pending by applying a reception control rule, a risk of the URL is calculated on the basis of the URL itself that is added to the e-mail, and further a risk of the URL added to the e-mail is calculated on the basis of the e-mail itself. For URLs of high risk, access from a client terminal is controlled.SELECTED DRAWING: Figure 3

Description

  The present invention relates to relay control of communication with other devices, and more particularly, to a method of registering information for specifying resources of a communication destination required for performing relay control.

  With the development of network technology, various types of information have been distributed, and very convenient tools exist that provide such information to many users.

  For example, by clicking a URL for specifying the location of a resource such as HTML or an image on the Internet, it is possible for the user to obtain a desired resource.

  However, recently, by exploiting the convenience of such a tool and illegally accessing a resource, damages such as infection with a virus or a large amount of payment have been required.

  As an example of abuses of such a tool, an e-mail with a URL specifying the location of an illegal resource is unilaterally sent to a user, and the user opens the e-mail and erroneously sends the e-mail URL. Clicking the button has caused damage.

  Therefore, as a method for solving such a problem, the URL of the e-mail stored in a folder for storing unsolicited e-mail is invalidated, while the URL of the e-mail stored in a folder other than such a folder is changed. A technology for activating is disclosed (for example, see Patent Document 1).

Japanese Patent No. 04974076

  However, according to the technology described in Patent Document 1, the URL of an e-mail determined to be unsolicited e-mail is only invalidated by the function of the existing e-mail application software. However, there is a problem that it is difficult to cope with a case where a URL for specifying the location of an unauthorized resource is assigned.

  As a method for solving such a problem, there is a method in which a URL for controlling access is registered in a DB, and when a user attempts to access the URL registered in the DB, the access is prohibited.

  In such a method, the accuracy of access control may be increased depending on the accuracy of the URL registered in the DB. If the URL assigned to the e-mail is registered in the DB, the It is possible to control access, but if it is not registered in the DB, there is a problem that the URL is accessed.

  Therefore, the present invention provides an information processing apparatus, an information processing system, a control method, and a program capable of improving security by controlling access to an inappropriate connection destination given to an e-mail. The purpose is to do.

  The present invention for solving the above-mentioned problem is an information processing apparatus for accessing a resource by indicating resource identification information indicating information for identifying the resource, wherein the resource identification information for controlling the access is provided. A resource receiving unit that receives information relating to a risk of access to the resource with respect to the resource identification information given to the received e-mail, and information using the risk received by the risk receiving unit. Registration means for registering the resource specifying information in the storage means.

  ADVANTAGE OF THE INVENTION According to this invention, there exists an effect that security can be improved by controlling access to the inappropriate connection destination provided to the e-mail.

1 is a configuration diagram illustrating a schematic configuration of an information processing system. FIG. 2 is a configuration diagram illustrating a schematic configuration of hardware of an access relay device, a mail relay device, a mail server, an external server, and a client terminal. FIG. 2 is a configuration diagram illustrating a functional configuration of the information processing system. It is a flowchart which shows registration determination processing of URL. 9 is a flowchart illustrating a process of determining whether or not a URL assigned to an e-mail is to be filtered based on an operation on the held e-mail. 9 is a flowchart illustrating a process of determining whether or not the URL is to be filtered based on the URL itself given to the electronic mail. 11 is a flowchart illustrating a process of determining whether or not the URL is to be filtered based on the suspicion of the email itself. FIG. 3 is a configuration diagram illustrating a configuration of a pending e-mail list screen. FIG. 4 is a configuration diagram illustrating a configuration of a relay control rule list screen. FIG. 9 is a configuration diagram illustrating a configuration of a relay control rule detail screen. FIG. 3 is a configuration diagram illustrating a configuration of a group registration screen. FIG. 3 is a configuration diagram illustrating a configuration of a URL group registration screen. FIG. 3 is a configuration diagram illustrating a configuration of an unregistered URL list screen. FIG. 4 is a configuration diagram illustrating a configuration of an unregistered URL details screen. FIG. 3 is a configuration diagram illustrating a configuration of an access warning screen. FIG. 3 is a configuration diagram illustrating a configuration of a URL group registration screen. FIG. 3 is a configuration diagram illustrating a configuration of each table.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

[First Embodiment]
First, a first embodiment will be described.

  FIG. 1 shows a schematic configuration diagram of an information processing system according to an embodiment of the present invention.

  As shown in FIG. 1, the information processing system 100 according to the present embodiment includes a configuration including an access relay device 102, a mail server 104, a mail relay device 106, a client terminal 108 (at least one or more), and a LAN 110. And is connected to an external server 114 via a wide area network 112.

  The access relay device 102 is a device that functions as an information processing device, and relays between the client terminal 108 and an external server 114 that performs data communication via the wide area network 112.

  Further, the access relay device 102 controls communication of the data according to a relay control rule for determining whether to relay data transmitted and received between the client terminal 108 and the external server 114 or not. ing.

  The mail server 104 is an information processing device used for sending and receiving e-mails, and has a function of managing e-mail addresses of e-mails and storing e-mails transmitted to the e-mail addresses. I have.

  The mail relay device 106 performs transmission control processing for e-mail transmitted from the mail server 104 or the client terminal 108 using a transmission control rule, and performs reception control processing for e-mail transmitted from the external server 114, as described below. This is performed using a reception control rule.

  Further, the mail relay device 106 accepts an input of a transmission control rule (reception control rule) used for an electronic mail transmission control process (reception control process) in response to a request from a user who operates the client terminal 108, or As a result of the control process (reception control process), an input (audit input) of transmission (reception) and transmission prohibition (reception prohibition) for an email whose transmission (reception) is suspended is accepted.

  The client terminal 108 is a terminal device operated by a user who exchanges e-mails using a mail address managed by the mail server 104.

  The client terminal 108 is also a terminal device that provides various contents and the like provided from the external server 114 to the user.

  Further, the client terminal 108 can refer to and register the relay control rule, the transmission control rule, and the reception control rule stored in the access relay device 102 and the mail relay device 106 via the LAN 110.

  The external server 114 is a device that provides various contents and the like to the user, and is installed by a service provider, an individual user, or the like, or installed as a mail server owned by an external user. I do.

  Next, FIG. 2 illustrates an example of a hardware configuration of an information processing device applicable to the access relay device 102, the mail server 104, the mail relay device 106, and the client terminal 108.

  In FIG. 2, reference numeral 201 denotes a CPU, which comprehensively controls each device and controller connected to the system bus 204. The ROM 202 or the external memory 211 includes a basic input / output system (BIOS) or an operating system program (hereinafter, referred to as an OS), which is a control program of the CPU 201, and a function to be executed by each server or each PC. Various programs described later are stored.

  A RAM 203 functions as a main memory, a work area, and the like for the CPU 201. The CPU 201 loads various programs and the like necessary for executing processing from the ROM 202 or the external memory 211 into the RAM 203 and executes the loaded programs to realize various operations.

  An input controller 205 controls input from a keyboard (KB) 209 or a pointing device such as a mouse (not shown). A video controller 206 controls display on a display such as a CRT display (CRT) 210.

  In FIG. 2, the CRT 210 is described, but the display is not limited to the CRT but may be another display such as a liquid crystal display. These are used by the administrator as needed.

  A memory controller 207 is connected to a hard disk (HD) for storing a boot program, various applications, font data, user files, edit files, various data, and the like, a flexible disk (FD), or a PCMCIA card slot via an adapter. Access to an external memory 211 such as a compact flash (registered trademark) memory.

  A communication I / F controller 208 connects and communicates with external devices via a network (for example, the LAN 110 shown in FIG. 1), and executes communication control processing on the network. For example, communication using TCP / IP is possible.

  Note that the CPU 201 enables the display on the CRT 210 by executing, for example, an outline font developing (rasterizing) process on a display information area in the RAM 203. Further, the CPU 201 enables a user instruction with a mouse cursor (not shown) on the CRT 210.

  Various programs described below for realizing the present invention are recorded in the external memory 211, and are executed by the CPU 201 by being loaded into the RAM 203 as necessary.

  Further, a definition file and various information tables used when executing the program are also stored in the external memory 211, and a detailed description thereof will be described later.

  Next, a functional configuration of the information processing system 100 will be described with reference to FIG. The details of each function will be described later with reference to a flowchart and the like.

  The mail relay device 106 includes a mail reception unit 300, a mail acquisition unit 302, a registration determination unit 304, a reception control unit 306, a reception control rule storage unit 308, a display unit 310, an input reception unit 312, a notification unit 314, and a determination result storage. A section 316 is provided.

  The mail receiving unit 300 receives an electronic mail transmitted from the mail server 104, the external server 114, or the like, and the mail obtaining unit 302 obtains the electronic mail received by the mail receiving unit 300.

  The registration determination unit 304 determines whether or not to be the subject of the filtering by determining the risk of the URL given to the electronic mail.

  The reception control unit 306 controls reception of the e-mail by applying the reception control rule to the e-mail acquired by the e-mail acquisition unit 302, and the display unit 310 displays various screens on the client terminal 108. Perform control.

  The input receiving unit 312 receives input of information input to various screens displayed by the display unit 310, and the notifying unit 314 notifies the access relay device 102 of information on the result of the determination performed by the registration determining unit 304. I do.

  The determination result storage unit 316 stores information on the result of the determination performed by the registration determination unit 304.

  The access relay device 102 includes a notification receiving unit 318, an unregistered URL storage unit 320, a display unit 322, an access control rule storage unit 324, an access control unit 326, and a URL storage unit 328.

  The notification receiving unit 318 receives information on the determination result notified from the notification unit 314 of the mail relay device 106, and the unregistered URL storage unit 320 becomes unregistered based on the information on the determination result received by the notification receiving unit 318. It stores the URL, the reason why it is regarded as unregistered, and information on the e-mail to which the URL has been assigned.

  The display unit 322 controls display of various screens in the client terminal 108, and the access control rule storage unit 324 stores rules for controlling relay of access requested from the client terminal 108.

  The access control unit 326 controls the access by applying the relay control rule stored in the access control rule storage unit 324 to the access requested by the client terminal 108.

  The URL storage unit 328 stores and manages URLs categorized, and registers new URLs categorized as appropriate.

  Next, the URL registration determination processing will be described with reference to the flowchart shown in FIG.

  In step S100, mail receiving section 302 obtains an electronic mail received from external server 114 in mail receiving section 300.

  In step S102, the registration determination unit 304 applies the reception control rule for determining the reception control method of the e-mail, and as a result, based on the operation on the e-mail determined to be suspended, the URL assigned to the e-mail. Is determined as a filtering target (for details, see FIG. 5).

  In step S104, the registration determination unit 304 determines whether or not to perform filtering based on the URL itself given to the e-mail (for details, see FIG. 6).

  In step S106, the registration determination unit 304 determines, based on the email itself, whether the URL assigned to the email is to be filtered (for details, see FIG. 6).

  In step S108, the notification unit 314 notifies the access relay device 102 of the information stored in the determination result storage unit 316 in step S102 to step S106 regarding the result of whether to perform filtering.

  In performing the notification, the access relay device 102 may be notified only of information on a URL (details will be described later) determined to have a high risk.

  In step S110, the notification receiving unit 318 receives information on the determination result notified from the mail relay device 106 in step S108.

  In step S112, the unregistered URL storage unit 320 registers information on the determination result received in step S110 in the unregistered URLDB (the lowermost row in FIG. 17).

  The configuration of an unregistered URLDB is shown at the bottom of FIG. 17. The unregistered URLDB is an unregistered URL ID for uniquely identifying an unregistered URL, an unregistered URL, and an unregistered URL. An unregistered reason indicating the reason and a mail ID for uniquely identifying the electronic mail to which the URL is assigned are included.

  In this step, a new ID is issued and registered in the unregistered URL DB so that the unregistered URL ID is unique, and the URL included in the information on the determination result is registered in the unregistered URL.

  As the unregistered reason, whether the risk at the time of accessing by the URL is low or high, and the reason for determining the level is registered.

  Next, with reference to the flowchart shown in FIG. 5, a description will be given of a process of determining whether or not a URL assigned to an e-mail is to be filtered based on an operation on the e-mail held.

  In step S200, the reception control unit 306 applies the reception control rule to the electronic mail acquired by the mail acquisition unit 302 in step S100.

  The uppermost part of FIG. 17 shows a configuration of a reception control rule DB that stores information on reception control rules. The reception control rule DB is stored and managed by the reception control rule storage unit 308, and the reception control rule is uniquely identified. , A rule name indicating the name of the reception control rule, the conditions of the e-mail to which the reception control rule is applied, the sender condition, the recipient condition, the subject / text condition, the attached file condition, It is configured to include an operation indicating processing to be applied to e-mail data that meets the above-described conditions.

  The sender condition indicates a condition regarding the sender of the e-mail. For example, the sender of the e-mail

example. co. jp "," *

example. co. The conditions such as "other than jp" and "all senders" are registered.

  The recipient condition indicates a condition relating to the recipient of the e-mail, for example, “* for TO, CC, BCC.

example. co. Conditions such as "addresses other than jp are set", "number of addresses set in TO and CC is n or more", "includes n or more domains", "all recipients" Will be registered.

  The subject / body conditions indicate conditions related to character strings set in the subject and body of the e-mail.For example, "the subject is not entered" or "the subject or body contains foreign terms Are registered.

  The attached file condition indicates a condition related to an attached file attached to the e-mail. For example, as the information on the file type of the attached file, “image / jpeg” for a JPEG file, and “image / jpeg” for a text file. Is “text / plain”, the character string entered in the attached file is “includes any of“ Confidential, confidential, confidential, confidential ”, and the attached file size is“ 30 MB or more ”and“ less than 20 MB ” , Etc. are registered.

  It is needless to say that the sender condition, the receiver condition, the subject / text condition, and the attached file condition need not all be set in one reception control rule.

  If multiple conditions are registered among the sender condition, the recipient condition, the subject / body condition, and the attached file condition, the e-mail including all of those conditions is regarded as the e-mail to which the reception control rule applies. Is done.

  The operation indicates a process to be applied to e-mail data that matches the condition, and any one of “reception”, “reception inhibition”, and “hold” is registered.

  If "Receive" is set, the e-mail is sent to the specified destination. When "Reception prohibited" is set, reception of the e-mail is prohibited. When “hold” is set, reception of the e-mail is suspended, and reception control is performed in accordance with an instruction of “reception” or “reception prohibition” received from the administrator.

  In step S202, as a result of applying the reception control rule in step S200, the reception control unit 306 determines whether or not the operation is on hold, and if it is determined that the operation is on hold, the process proceeds to step S204. If not, the process proceeds to step S220.

  In step S204, it is determined whether or not a reception instruction has been given to the held e-mail list screen 400 (see FIG. 8) displayed by the display unit 310 via the input reception unit 312, and it is determined that the reception instruction has been received. If it is determined, the process proceeds to step S206; otherwise, the process proceeds to step S212.

  FIG. 8 shows the configuration of a pending e-mail list screen 400. The pending e-mail list screen 400 includes a pending e-mail list display section 402, a reception button 404, and a reception prohibition button 406.

  The on-hold e-mail list display unit 402 is a display unit for displaying a list of on-hold e-mails. A detail button 418 is provided.

  The check target mail selection check box 408 is a check box for selecting an electronic mail to be checked. When an instruction to press the reception button 404 is received for the e-mail data whose check box 408 is selected, the reception process is performed. The receiving prohibition process will be executed.

  The mail ID 410 is a display unit that displays the mail ID of the held e-mail. The reception date and time 412 is a display unit that displays time information when the held electronic mail was transmitted. The sender / subject 414 is a display unit that displays the sender information and the subject information of the held e-mail.

  The attached file presence / absence 416 is a display unit for displaying the presence / absence of an attached file of the hold electronic mail. The detail button 418 is a button used to make a request for detailed data of an e-mail to the mail relay device 106.

  In this step, a check is made in the check box 408 for selecting a mail to be audited, and if it is detected that the reception button 404 has been pressed, the process proceeds to step S206. If not, the process proceeds to step S212. Proceed.

  In step S206, the registration determination unit 304 determines whether a URL has been assigned to the e-mail for which the check box 408 for e-mail to be audited is checked. If it is determined that the URL has been assigned, the process proceeds to step S208. The process proceeds, and if it is not determined that the application has been given, the process ends.

  In step S208, the registration determination unit 304 obtains the URL from the electronic mail. In step S210, the determination result storage unit 316 stores the URL obtained in step S208 and information (mail ID) on the electronic mail to which the URL is assigned. And determination result information indicating that the held e-mail is permitted to be received and the risk is low when accessed by the URL.

  In step S212, it is determined whether or not the reception prohibition button 406 has been pressed via the input receiving unit 312 on the held e-mail list screen 400 displayed by the display unit 310. The process proceeds to step S214, and if it is not determined that the button has been pressed, the process ends.

  In step S214, the registration determination unit 304 determines whether a URL has been assigned to the electronic mail for which the check target email selection check box 408 has been checked, and if it is determined that the URL has been assigned, proceeds to step S216. The process proceeds, and if it is not determined that the application is granted, the process ends.

  In step S216, the registration determination unit 304 acquires the URL from the e-mail. In step S218, the determination result storage unit 316 stores the URL acquired in step S216 and information (email ID) on the e-mail to which the URL is assigned. ), And determination result information indicating that the held e-mail is prohibited from being received and the risk is high when accessed by the URL.

  In step S220, the registration determination unit 304 determines whether a URL has been assigned to the e-mail that is not held, and if it is determined that the URL has been assigned, the process proceeds to step S222 to proceed to step S222. If it is not determined that there is not, the process ends.

  In step S222, the registration determination unit 304 acquires a URL from the e-mail, and in step S224, the determination result storage unit 316 stores the URL acquired in step S222 and information (email ID) related to the e-mail to which the URL is assigned. ), And determination result information indicating that the e-mail is not held and the risk when accessing by the URL is extremely low.

  Next, a process of determining whether or not the URL is to be filtered based on the URL itself given to the e-mail will be described using the flowchart shown in FIG.

  In step S300, the registration determination unit 304 determines whether a URL has been assigned to the e-mail acquired in step S100. If it is determined that the URL has been assigned, the process proceeds to step S302, and the registration determination unit 304 proceeds to step S302. If not, the process ends.

  In step S302, the registration determination unit 304 obtains the URL assigned to the e-mail obtained in step S100. In step S304, the registration determination unit 304 reads the URL element (for example, scheme, host, etc.) obtained in step S300. Name, path name, port number, folder name, etc.).

  In step S306, the registration determination unit 304 determines whether or not the element acquired in step S304 is similar to a famous domain. If it is determined that the domain is similar, the process proceeds to step S308. Proceeds to step S310.

  As a determination method in this step, a famous domain is stored in advance, and it is determined whether or not the stored domain and the element of the URL are similar.

  In addition, not only domains but also derived domains may be targeted. For example, as a prominent domain, bbb. co. jp exists, the target URL is http: // aaa. bbb. c0jp. com, which is a derived domain aaa. bbb may be determined as a similar element.

  The reason why such a determination is made is that it is assumed that the target URL is used for the purpose of misidentification of the user when the URL is similar to a famous domain.

  In step S308, the determination result storage unit 316 stores the URL acquired in step S302, information (including a mail ID) on the e-mail to which the URL is assigned, and the element of the URL is similar to a famous domain, and the URL is The determination result information indicating that the risk at the time of access is high is stored.

  In step S310, the determination result storage unit 316 determines that the URL acquired in step S302, information (including the mail ID) regarding the e-mail to which the URL has been assigned, and the element of the URL are not similar to the famous domain. It stores determination result information indicating that the risk at the time of access by the URL is low.

  In step S312, the registration determination unit 304 determines whether the domain of the URL acquired in step S302 is a domain used in a mail magazine. If it is determined that the domain is a domain, the process proceeds to step S314. If it is not determined to be a domain, the process proceeds to step S316.

  As a determination method in this step, the domain used in the mail magazine is stored in advance by the reception control rule storage unit 308, and it is determined whether or not the stored domain matches the domain of the URL.

  In step S314, the determination result storage unit 316 stores the URL acquired in step S302, information (including a mail ID) related to the e-mail to which the URL is assigned, and the domain of the URL is the domain of the mail magazine. The determination result information indicating that the risk at the time of access is high is stored.

  In step S316, the determination result storage unit 316 stores the URL acquired in step S302, information (including a mail ID) related to the e-mail to which the URL has been assigned, and the domain of the URL instead of the domain of the mail magazine. The determination result information indicating that the risk at the time of access is low is stored.

  Next, a process of determining whether or not the URL is to be filtered based on the suspicion of the e-mail itself will be described using the flowchart shown in FIG.

  In step S400, the registration determination unit 304 determines whether a URL has been added to the e-mail acquired in step S100. If it is determined that the URL has been added, the process proceeds to step S402, and the processing proceeds to step S402. If not, the process ends.

  In step S402, the registration determination unit 304 obtains the URL assigned to the e-mail obtained in step S100.

  In step S404, the registration determination unit 304 determines whether or not the sender's address of the e-mail acquired in step S100 is a free mail address. If it is determined that the sender address is a free mail address, the process proceeds to step S406. If it is not determined to be a mail address, the process proceeds to step S408.

  As a determination method in this step, the domain in which the free mail is used is stored in advance by the reception control rule storage unit 308, and it is determined whether the stored domain matches the domain of the e-mail.

  Depending on the service that provides free mail, the sender's address may be converted, so identification information specifying the service is added to the header of the e-mail, not limited to the domain. The identification information may be stored in advance, and it may be determined whether or not the stored identification information matches the information input in the header of the e-mail.

  In step S406, the determination result storage unit 316 determines that the URL acquired in step S402, the information (including the mail ID) regarding the e-mail to which the URL is assigned, and the address of the sender of the e-mail are free mail addresses. The judgment result information indicating that the risk when accessing by the URL is high is stored.

  In step S408, the determination result storage unit 316 determines that the URL acquired in step S402, the information (including the mail ID) regarding the e-mail to which the URL has been assigned, and the address of the sender of the e-mail are not free mail addresses, but It stores determination result information indicating that the risk at the time of access by the URL is low.

  In step S410, the registration determination unit 304 determines whether or not the above-described e-mail was sent from abroad based on the IP address of the sender included in the header of the e-mail, and determines that the e-mail was from abroad. If it is determined, the process proceeds to step S412; otherwise, the process proceeds to step S414.

  In step S412, the determination result storage unit 316 stores the URL acquired in step S402, information (including a mail ID) on the e-mail to which the URL is assigned, and the e-mail transmitted from abroad. The determination result information indicating that the risk at the time of access is high is stored.

  In step S414, the determination result storage unit 316 stores the URL obtained in step S402, information (including a mail ID) on the e-mail to which the URL is assigned, and the e-mail transmitted from overseas. The determination result information indicating that the risk at the time of access is low is stored.

  In step S416, the registration determination unit 304 determines whether or not the above-described e-mail has the same URL as the URL given to the different e-mail that has been received most recently. If so, the process proceeds to step S418; otherwise, the process proceeds to step S420.

  In step S418, the determination result storage unit 316 stores the URL acquired in step S402, information (including a mail ID) related to the e-mail to which the URL was added, and the e-mail in the most recently received e-mail. It stores the determination result information indicating that the same URL as the given URL is assigned, and that the risk when accessing with the URL is high.

  In step S420, the determination result storage unit 316 stores the URL acquired in step S402, information (including a mail ID) related to the e-mail to which the URL has been added, and the e-mail to the most recently received e-mail. It stores the determination result information indicating that the same URL as the given URL is assigned, and that the risk when accessing with the URL is low.

  Next, a method of registering a relay control rule for access from the client terminal 108 to the external server 114 will be described.

  FIG. 9 shows a relay control rule list screen 500 that displays a list of relay control rules.

  The relay control rule list screen 500 is displayed by the display unit 322, and includes a relay control rule list display unit 502 for displaying a list of relay control rules, and a rule addition button 504 to be pressed when a new relay control rule is added. When the add rule button 504 is pressed, a relay control rule detail screen 600 is displayed (see FIG. 10).

  The relay control rule list display unit 502 includes an ID 506 for uniquely identifying the relay control rule, a rule name 508 indicating the name of the relay control rule, an action 510 indicating an operation when the access content corresponds to the relay control rule, and a display. Operation 512 that indicates an operation that can be performed on the relay control rule.

  The operation 512 includes an edit button 514 to be pressed when editing the content of the relay control rule, and a move button 516 to change the display order of the relay control rule in the relay control rule list display unit 502. When the edit button 514 is pressed, a relay control rule detail screen 600 is displayed. When the move button 516 is pressed, a screen (not shown) for specifying a destination position for displaying the relay control rule is displayed. Is done.

  FIG. 10 shows a relay control rule detail screen 600.

  The relay control rule detail screen 600 is displayed by the display unit 322, and includes an ID display column 602 for displaying an ID for uniquely identifying the relay control rule, and a name column for displaying or inputting the name of the relay control rule. 604.

  When the edit button 514 on the relay control rule list screen 500 is pressed, the ID of the relay control rule corresponding to the pressed edit button 514 is displayed in the ID display column 602, and the name is displayed in the name column 604.

  On the other hand, when the rule addition button 504 of the relay control rule list screen 500 is pressed, a new relay control rule ID (rule ID of the relay control rule DB, which will be described in detail later) is issued and displayed in the ID display column 602, The name column 604 displays a blank or a comment prompting input.

  The relay control rule detail screen 600 is displayed by the display unit 322 and displays candidates of a group (for example, composed of a user's authentication name, an IP address, a User-Agent, etc.) related to an access source to which the relay control rule is applied. Column 606 (for example, a combo box or a list box) to perform, and an add button 608 and an add button 608 to be pressed when applying the relay control rule to the group selected and displayed in the group display column 606. There is provided an applied group display column 610 for displaying the group selected and displayed in the group display column 606 by being performed.

  The relay control rule detail screen 600 includes a delete button 612 to be pressed when deleting the group name displayed in the applicable group display field 610, and the group name displayed in the applicable group display field 610 is selected. When the delete button 612 is pressed in the state in which the group is displayed, the group name is deleted from the applicable group display column 610.

  The relay control rule detail screen 600 includes an application date selection field 614 for selecting a time and a day of the week to which the relay control rule is applied, and an applied URL group that displays candidates of URL groups to be filtered with respect to the URL of the access destination. A display field 616 (such as a combo box or a list box) is provided.

  When one group is selected from the candidates of the URL group (details will be described later) displayed in the applied URL group display field 616, the URL group is set as an application target of the relay control rule.

  On the relay control rule detail screen 600, it is possible to set an operation to be performed for an access to which the relay control rule is applied. When relaying the access, the relay column 618 is displayed without relaying the access. When responding to a warning message, the warning column 620 is set. When not responding to the access and relaying the prohibition message, the prohibition column 622 is set. When the access is not relayed and the URL is redirected to the set URL, Each column (such as a combo box) for selecting the redirect column 624 is provided.

  The relay control rule detail screen 600 includes a redirect URL setting field 626 for setting a URL to be redirected when the redirect field 624 is selected.

  The relay control rule detail screen 600 includes a delete button 628 to be pressed when deleting the relay control rule, an update button 630 to be pressed when registering or updating the relay control rule, and canceling the editing of the relay control rule. A cancel button 632 to be pressed at this time.

  Information on the relay control rule is registered in the relay control rule DB shown in the second row from the top in FIG.

  The relay control rule DB is stored and managed by the access control rule storage unit 324, and relates to a rule ID for uniquely identifying the relay control rule, a rule name indicating a rule name, and an access source to which the relay control rule is applied. Group (including ID), time and day of the week to which the relay control rule is applied, URL group (including ID) to be filtered with respect to the access destination URL, and operation to be performed for access to which the relay control rule is applied Is configured.

  When the relay control rule list screen 500 is displayed, information on the relay control rules registered in the relay control rule DB is displayed on the relay control rule list display unit 502.

  When the delete button 628 of the relay control rule detail screen 600 is pressed, information on the corresponding relay control rule is deleted from the relay control rule DB, and when the update button 630 is pressed, the corresponding information in the relay control rule DB is deleted. The information on the relay control rule is edited and updated.

  Next, a group registration screen 700 for registering a group displayed in the application group display column 610 described above will be described with reference to FIG.

  The group registration screen 700 is displayed by the display unit 322, and includes a group ID display column 702 for displaying an ID for uniquely identifying a group, and a group name column 704 for displaying or inputting a group name.

  When an edit button pressed when editing a group on a group list screen (not shown) in which groups are displayed in a list, the ID of the group corresponding to the pressed edit button is displayed in the group ID display field 702. The name is displayed in the group name column 704.

  On the other hand, when the group addition button pressed when adding a group on the group list screen is pressed, a new group ID is issued and displayed in the group ID display column 702, and the group name column 704 is blank or A comment prompting input is displayed.

  The group registration screen 700 includes an authentication name column 706 for displaying or inputting an authentication name for the access relay device 102, an add button 708 for pressing the authentication name displayed in the authentication name column 706 when adding the authentication name to the group, An authentication name list display field 710 is provided for displaying the authentication name displayed in the authentication name field 706 when the add button 708 is pressed.

  When an authentication name displayed in the authentication name list display field 710 is selected, the authentication name is displayed in the authentication name field 706.

  When the authentication name in the authentication name list display field 710 is selected and displayed in the authentication name field 706, the group registration screen 700 corrects the authentication name and then displays the corrected authentication name in the authentication name list display field 710. A correction button 712 to be pressed when reflecting is provided.

  In the group registration screen 700, an authentication name in the authentication name list display field 710 is selected, displayed in the authentication name field 706, and a delete key pressed to delete the authentication name from the authentication name list display field 710. A button 714 is provided.

  The group registration screen 700 includes an address name column 716 for displaying or inputting an access source IP address and the like, an add button 718 for pressing when adding the IP address and the like displayed in the address name column 716 to the group, When an add button 718 is pressed, an address name list display field 720 for displaying the IP address and the like displayed in the address name field 716 is provided.

  The correction button 722 and the deletion button 724 perform the same operations as the correction button 712 and the deletion button 714 for correcting and deleting the authentication name described above, and thus the description is omitted.

  The group registration screen 700 is used to display or input the User-Agent of the access source in a User-Agent name column 726, and to press the User-Agent name displayed in the User-Agent name column 726 when adding the User-Agent name to the group. Is provided with a User-Agent name list display column 730 that displays the User-Agent name displayed in the User-Agent name column 726 by pressing the add button 728 of the “Add” button 728.

  The correction button 732 and the deletion button 734 perform the same operations as the correction button 712 and the deletion button 714 for correcting and deleting the authentication name described above, and thus the description is omitted.

  The group registration screen 700 includes a registration button 736 to be pressed when registering a relay control rule, and a cancel button 738 to be pressed when stopping editing of a relay control rule.

  Information on groups is registered in the group DB shown in the third row from the top in FIG.

  The group DB is stored and managed by the access control rule storage unit 324, and includes an ID for uniquely identifying the group, a group name indicating the name of the group, an authentication name for the access relay device 102, an IP address of an access source, and the like. It is configured to include the original User-Agent.

  When a registration button 736 on the group registration screen 700 is pressed, information displayed on the group registration screen 700 is registered and updated in the group DB.

  Next, a URL group registration screen 800 for registering a URL group displayed in the applied URL group display field 616 will be described with reference to FIG.

  The URL group registration screen 800 is displayed on the display unit 322, and includes a URL group ID display field 802 for displaying an ID for uniquely identifying a URL group, and a URL group name for displaying or inputting the name of a URL group. A column 804 is provided.

  When an edit button pressed when editing a URL group on a URL group list screen (not shown) in which a list of URL groups is displayed, the ID of the URL group corresponding to the pressed edit button Is displayed in the URL group ID display field 802, and the name is displayed in the URL group name field 804.

  On the other hand, when a URL group addition button that is pressed when adding a URL group on the URL group list screen is pressed, a new URL group ID is issued and displayed in the URL group ID display field 802, and the URL is displayed. The group name column 804 displays a blank or a comment prompting input.

  A URL group registration screen 800 includes a URL column 806 for displaying or inputting a URL belonging to the URL group, an add button 808 for pressing the URL displayed in the URL column 806 when adding the URL to the group, and an add button. A URL list display column 810 is provided to display the URL displayed in the URL column 806 by pressing 808.

  When a URL displayed in the URL list display column 810 is selected, the URL is displayed in the URL column 806.

  When the URL in the URL list display field 810 is selected and displayed in the URL field 806, the URL group registration screen 800 is pressed when the URL is corrected and the corrected URL is reflected in the URL list display field 810. A correction button 812 for performing the operation is provided.

  The URL group registration screen 800 includes a delete button 814 for selecting a URL in the URL list display field 810, displaying the selected URL in the URL field 806, and pressing the URL button 810 to delete the URL from the URL list display field 810. ing.

  The URL group registration screen 800 includes an unregistered URL display button 816 for displaying an unregistered URL list screen 900 (see FIG. 13) that displays a list of unregistered URLs notified from the mail relay device 106.

  The URL selected on the unregistered URL list screen 900 is displayed in a URL list display column 810.

  The URL group registration screen 800 includes a category selection button 818 for selecting a category belonging to a group. When the category selection button 818 is pressed, a category selection screen (not shown) is displayed.

  Then, when a category displayed on a category selection screen (not shown) is selected, the selected category is displayed in a category display column 822.

  The category indicates a category to which the URL belongs (for example, chat bulletin board, sports, politics, economy, etc.), and is obtained from a category DB (not shown) in which the categorized information is registered. Displayed on the category selection button 818. The category DB (not shown) is stored and managed by the URL storage unit 328.

  The URL group registration screen 800 includes a URL search button 824 for displaying a URL search screen (not shown) for searching for a category to which the URL belongs by inputting a URL.

  The URL group registration screen 800 includes a registration button 834 to be pressed when registering a URL group, and a cancel button 836 to be pressed when canceling a URL group.

  Information about the URL group is registered in the URL group DB shown in the second row from the bottom in FIG.

  The URL group DB is stored and managed by the access control rule storage unit 324, and includes a URL group ID for uniquely identifying a URL group, a URL group name indicating a URL group name, a URL list indicating a URL belonging to the group, It is configured to include a category list indicating categories belonging to the group.

  Note that a URL group list screen (not shown) displays information about the URL groups registered in the URL group DB, and when a registration button 834 is pressed, the URL displayed on the URL group registration screen 800 is displayed. Information about the group is registered and updated.

  Next, an unregistered URL list screen 900 will be described with reference to FIG.

  The unregistered URL list screen 900 is a screen for displaying a list of URLs assigned to the electronic mail in the mail relay device 106, and is displayed by the display unit 322, and displays a list of unregistered URLs. A display unit 902 is provided.

  An unregistered URL list display unit 902 includes an ID 904 for uniquely identifying an unregistered URL, an unregistered URL 906 indicating an unregistered URL, and an unregistered reason for displaying an unregistered reason based on a determination result in the mail relay device 106. An operation 910 is provided to indicate the operation of information about the reason 908 and the unregistered URL.

  An operation 910 includes a registration button 912 to be pressed when registering information relating to an unregistered URL to a URL group, a delete button 914 to be pressed when deleting the information, and an operation for editing the information. A detail button 916 is provided to be pressed when displaying an unregistered URL detail screen 1000 (see FIG. 14) for displaying detailed information of an unregistered URL.

  When the registration button 912 is pressed, a URL corresponding to the pressed registration button 912 is displayed in a URL list display field 810 of the URL group registration screen 800.

  The unregistered URL list screen 900 includes a close button to be pressed when closing the unregistered URL list screen 900.

  Next, the unregistered URL details screen 1000 will be described with reference to FIG.

  The unregistered URL details screen 1000 is displayed by the display unit 322 and includes an ID 1002 for uniquely identifying an unregistered URL, an unregistered URL 1004 indicating an unregistered URL, and an unregistered URL based on the determination result in the mail relay device 106. An unregistered reason 1006 for displaying the reason and mail information 1008 for displaying information (for example, a destination, a subject, a body, an attached file, etc.) regarding the e-mail to which the unregistered URL has been assigned are provided.

  An unregistered URL details screen 1000 includes a registration button 1010 for pressing the displayed unregistered URL in any URL group and a cancel button for pressing the unregistered URL. A button 1012 is provided.

  When the registration button 1010 is pressed, a URL corresponding to the pressed registration button 1010 is displayed in a URL list display field 810 of the URL group registration screen 800.

  This makes it possible to register an inappropriate access destination URL with high accuracy.

  After registering the relay control rules and the like in this manner, when an access request is made from the client terminal 108 to the external server 114, the URL of the access destination, the access time, the day of the week, The access control unit 326 analyzes the authentication name of the accessing user, the IP address of the client terminal 108 of the access source, and the User-Agent for specifying the software requesting the access.

  Then, the access control unit 326 determines which of the information obtained by the analysis belongs to which group, the authentication name, the IP address, the authentication name, the IP address, and the combination of the User-Agent registered in the group DB. And the group ID of the record corresponding to User-Agent.

  Then, the access control unit 326 acquires the URL group (ID) of the record in which the acquired group ID corresponds to the group (ID) registered in the relay control rule DB.

  Next, the access control unit 326 acquires a URL list and a category list of a record in which the acquired URL group (ID) corresponds to the URL group ID registered in the URL group DB.

  Then, the access control unit 326 stores, in the information obtained by the analysis, whether the URL of the access destination is included in the URL list, or a category DB (not shown) indicating the category to which the URL of the access destination belongs. Then, it is determined whether or not the specified category is included in the category list.

  If the access control unit 326 determines that the access is included, the action of the record acquired from the above-described relay control rule DB is executed for the access.

[Second embodiment]
In the first embodiment, the risk of the URL is obtained based on the URL itself given to the e-mail or the e-mail itself, and the URL is notified to the access relay apparatus 102 for registration. It is also possible to take a mode in which the given electronic mail is held.

  Note that, in order to perform the same configuration and processing as in the first embodiment, the same configuration and processing will be denoted by the same reference numerals, detailed description will be omitted, and only different parts will be described.

  In the URL registration determination process shown in FIG. 4, whether or not the URL assigned to the e-mail based on the operation on the held e-mail shown in FIG. 5 is to be filtered without performing steps S104 and S106. When applying the reception control rule in step S200 of the process of determining whether or not to perform the process, the processes related to step S104 and step S106 may be performed.

  In step S202, as a result of the processing in steps S104 and S106, the e-mail to which the URL determined to be high in risk is assigned is set as a hold target, and the URL determined to be low in risk is assigned, or the URL is determined to be low. The processing may be performed so that the unassigned e-mail is not held.

  However, even if an e-mail to which a URL determined to have low risk is given or an e-mail to which no URL is given is applied, if the other reception control rules are applied, the e-mail is suspended.

  When the details button 418 of the held e-mail list screen 400 is pressed, a held details screen (not shown) that allows reference to the details of the held e-mail is displayed, and the judgment result information stored by the judgment result storage unit 316 is also displayed. Display them together.

  This allows the inspector to control the reception of an e-mail to which a high-risk URL has been assigned, so that unauthorized access can be suppressed.

  It should be noted that although the electronic mail to which the URL determined to be low in risk is assigned is not set as the hold target, all the electronic mails with the URL may be set as the hold target. Also in this case, the determination result information is displayed on a hold detail screen (not shown).

  Furthermore, regardless of whether the risk of the URL is high or low, it is also possible to adopt a mode in which the determination result information is displayed on a hold detail screen (not shown) for the held e-mail.

[Third Embodiment]
In the first embodiment and the second embodiment, the mode in which the URL given to the e-mail is registered as a relay control rule in the access relay device 102 has been described. However, in the third embodiment, the URL is unregistered. Unless registered as a relay control rule, there is a possibility that a certain URL will be accessed. Therefore, an attempt is made to access an unregistered URL according to the selection type of access from a plurality of users from the client terminal 108. This is to warn the user.

  In addition, in order to perform the same configuration and processing as the first embodiment and the second embodiment, the same configuration and processing will be denoted by the same reference numerals, detailed description will be omitted, and only different parts will be described. .

  First, a URL-specific URL group that has become an unregistered URL is created on the URL group registration screen 800 shown in FIG. 16 in advance, and a new URL group is displayed on the group registration screen 700 with respect to this URL group. Create a group.

  When creating a URL group, on the URL group registration screen 800 shown in FIG. 16, an automatic registration warning output field 1200 for accepting a setting for automatically registering a URL and issuing a warning, and automatically registering the URL in the URL group DB. When the registration button 834 is pressed in a state where the automatic registration warning output field 1200 is checked, the URL for this item is automatically registered in this item. The information shown is stored.

  When creating a group, for example, the authentication name list, the IP address, and the User-Agent may be set so as to cover all the client terminals 108 to be controlled for access. For example, by leaving the authentication name list display field 710, the address name list display field 720, and the User-Agent name list display field 730 blank, all authentication name lists, IP addresses, and User-Agents may be targeted.

  Further, on the relay control rule detail screen 600, as a relay control rule, a newly created group is selected and displayed in the applicable group display field 610 to control access to an unregistered URL. The created URL group is selectively displayed in the applied URL group display field 616.

  Then, the warning field 620 is checked as an action (when the URL group checked in the automatic registration warning output field 1200 is selected to be displayed in the applied URL group display field 616, the warning field 620 is automatically checked as an action, By pressing the update button 630, the relay control rule is registered in the relay control rule DB by pressing the update button 630.

  Then, if information indicating automatic registration is stored in the item of the URL group DB after the process of step S112, the URL registered in the unregistered URL of the unregistered URL in the URL list of the URL group. register.

  After that, when an access request is made from the client terminal 108 to the external server 114, the access control unit 326 uses the access time, the day of the week, the authentication name of the accessing user, and the IP address of the accessing client terminal 108. , And User-Agent that specifies the software requesting access is analyzed.

  Then, the access control unit 326 determines which of the information obtained by the analysis belongs to which group, the authentication name, the IP address, the authentication name, the IP address, and the combination of the User-Agent registered in the group DB. And the group ID of the record corresponding to User-Agent is acquired. At this time, since all the authentication names, IP addresses, and User-Agents are targets for the newly created group ID, the group ID is get.

  Then, the access control unit 326 acquires the URL group (ID) of the record in which the acquired group ID corresponds to the group (ID) registered in the relay control rule DB. At this time, the newly created URL group You will get

  Next, the access control unit 326 acquires a URL list and a category list of a record in which the acquired URL group (ID) corresponds to the URL group ID registered in the URL group DB. That is, an unregistered URL can be obtained.

  Then, the access control unit 326 determines whether the URL of the access destination is included in the URL list among the information obtained by the analysis.

  As a result of the determination, when determining that the access is included in the URL list, the access control unit 326 executes the action of the record acquired from the relay control rule DB described above, that is, a warning for the access.

  As an example of execution of this warning, an access warning screen 1100 shown in FIG. 15 is displayed on the client terminal 108 that has requested access.

  The access warning screen 1100 is a screen that warns that the URL of the currently requested access destination is a URL with a risk, a URL display column 1102 displaying the URL, an access by recognizing the risk of the URL, and performing access. Access button 1104 to be pressed when performing the access, a riskless access button 1106 to be pressed when the access is not performed by recognizing the risk of the URL, and the access is performed because the risk of the URL cannot be determined. An undetermined access button 1108 is provided to be pressed when there is no access.

  The user presses the access button 1104 when accessing the URL with risk, and presses the riskless access button 1106 when recognizing that there is a risk and does not perform access, and When it is not possible to judge whether or not there is access, and the access is not performed, the inaccessible button 1108 that cannot be judged is pressed.

  Further, it is also possible to adopt a configuration in which which button is pressed is registered in an unregistered URLDB.

  In the unregistered URLDB, the number of times the access button 1104 is pressed, the number of times the risk-free access button 1106 is pressed, and the number of times the undetermined access-less button 1108 is pressed are stored.

  Then, when the user attempts to access an unregistered URL, the number of times each button is pressed may be displayed as an access result display 1110 on the access warning screen 1100.

  The total number of references in the access result display 1110 indicates the total number of accesses to the URL (unregistered URL of the unregistered URLDB) displayed in the URL display column 1102, and the risk is judged to be dangerous. The number of times the access button 1108 has been pressed indicates the number of times the access button 1108 has been pressed, and the number of times the access button 1104 has been pressed.

  In the process of determining whether or not the URL is to be filtered based on the URL itself given to the e-mail shown in FIG. 6, it is determined whether or not the URL acquired in step S302 is registered in the unregistered URLDB. If it is determined that the URL is registered, the risk may be determined based on the number of times each button corresponding to the URL is pressed.

  For example, if the number of times the button 1106 for which there is no risk access is pressed is registered even once (or a predetermined number or more is registered), it is determined that the risk is high, and only the number of times the access button 1104 is pressed is determined. If it is registered, it is determined that the risk is extremely low, and the inaccessible button 1108 that cannot be judged is pressed several times. Further, if the access button 1104 is pressed several times, if it is registered, the risk is low. May be determined.

  The access control unit 326 determines whether the URL of the access destination is included in the URL list among the information obtained by the analysis, and further, the URL of the access destination is determined by the category DB (not shown). ) Is determined, and if it is included in the URL list and registered in the category DB, a warning may be executed.

  Further, even if the URL is registered in the category DB, if the URL belongs to the dangerous category, a warning may be executed.

[Fourth embodiment]
In the third embodiment, a warning is given to a user who is trying to access an unregistered URL. However, in the fourth embodiment, an unregistered URL determined to have a high risk is sent to a user who has attempted to access the unregistered URL. As far as possible, an aspect of registration in the URL group DB will be described.

  In addition, in order to perform the same configuration and processing as the first to third embodiments, the same configuration and processing will be denoted by the same reference numerals, detailed description will be omitted, and only different parts will be described. .

  In the fourth embodiment, among URLs registered in the unregistered URL of the unregistered URL, the URL determined to have a high risk is automatically registered in the URL list of the URL group DB.

  In this case, when creating a URL group, on the URL group registration screen 800 shown in FIG. 16, an automatic registration column 1202 for receiving a setting for automatically registering a high-risk URL is provided. When the registration button 834 is pressed in this state, information indicating that a high-risk URL is automatically registered for the item in the URL group DB is stored.

  A method for creating a group or a method for creating a relay control rule uses the same method as that of the third embodiment, but it is assumed that a warning column 620 or a prohibition column 622 is checked as an action. When the URL group checked in the automatic registration field 1202 is selected to be displayed in the applied URL group display field 616, the warning field 620 and the prohibition field 622 can be automatically checked as an action, and another action is selected. The mode may be set to be impossible, or only the prohibition column 622 may be selectable.

  Then, after the process of step S112, if information indicating that a high-risk URL is to be automatically registered is stored in the item of the URL group DB, the URL is registered in the URL list of the URL group.

  After that, the same processing as in the third embodiment is performed, but when an access request is made from the client terminal 108 to the external server 114, the access control unit 326 automatically registers the URL of the access request destination with a high risk. In the case of a given URL, an access warning screen 1100 is displayed on the client terminal 108 that has made an access request when a warning is executed as an action, and a warning screen indicating that access is to be blocked when a prohibition is executed as an action. (Not shown) is displayed on the client terminal 108 that has made the access request.

  It should be noted that, together with the third embodiment, information indicating that a URL is to be automatically registered and information indicating that a high-risk URL is to be automatically registered are identified and registered in the URL group DB item. If the automatic registration warning output field 1200 is checked, information indicating that a URL is to be automatically registered is registered. If the automatic registration field 1202 is checked, information indicating that a risky URL is to be automatically registered is registered. Information to be registered

[Fifth Embodiment]
In the first to fourth embodiments, the configuration in which the URL given to the e-mail is registered in the access relay device 102 has been described. However, such a URL is applied as a reception control rule of the mail relay device 106. An embodiment will be described.

  In addition, in order to perform the same configuration and processing as the first to fourth embodiments, the same configuration and processing are denoted by the same reference numerals, detailed description thereof will be omitted, and only different parts will be described. .

  In the fifth embodiment, for example, in the process after step S106, the unregistered URLDB is also provided in the mail relay device 106, and the determination result information stored by the determination result storage unit 316 is registered in the unregistered URLDB.

  Thereafter, when registering the reception control rule in the reception control rule DB, the unregistered URL list screen 900 is displayed, and the registration button 912 corresponding to the corresponding unregistered URL is pressed, whereby the URL is assigned. It is also possible to register the received e-mail in the reception control rule DB so as to be held.

  Accordingly, in step S200, the reception control unit 306 applies the reception control rule to the e-mail acquired by the e-mail acquisition unit 302 in step S100, and based on the applied result, suspends the e-mail in step S202. It is determined whether or not to do so.

  In addition, as a reception control rule, a rule that controls reception of an unregistered URL and a high risk is registered, and a high risk URL registered in the unregistered URLDB is automatically registered in the reception control rule DB. Is also good.

  Since the data registered in the unregistered URLDB is appropriately updated from the data registered in the category DB stored and managed by the URL storage unit 328, the data registered in the unregistered URLDB is registered at this update timing. A method of deleting URLs that are registered and registered in the category DB from unregistered URLDBs may be applied.

  Further, in the third embodiment, in accordance with the update of the data registered in the category DB, regarding the URL registered in the category DB, regarding the URL-only URL group that has become an unregistered URL, It may be deleted from the URL list of the URL group DB.

  As described above, according to the present invention, it is possible to accurately register information on an inappropriate connection destination.

  It should be noted that the configurations and contents of the various data described above are not limited to these, and it goes without saying that the various data are configured with various configurations and contents depending on the application and purpose.

  Although an embodiment has been described above, the present invention can take an embodiment as a method, a program, a recording medium, or the like.

  The program according to the present invention is a program that allows a computer to execute the processing methods of the flowcharts shown in FIGS.

  As described above, the recording medium storing the program for realizing the functions of the above-described embodiments is supplied to the system or the apparatus, and the computer (or CPU or MPU) of the system or the apparatus executes the program stored in the recording medium. Needless to say, the object of the present invention is achieved by executing the reading.

  In this case, the program itself read from the recording medium implements the novel function of the present invention, and the recording medium storing the program constitutes the present invention.

  Examples of a recording medium for supplying the program include a flexible disk, a hard disk, an optical disk, a magneto-optical disk, a CD-ROM, a CD-R, a DVD-ROM, a magnetic tape, a nonvolatile memory card, a ROM, an EEPROM, and a silicon. A disk, a solid state drive, or the like can be used.

  When the computer executes the read program, not only the functions of the above-described embodiments are realized, but also an OS (operating system) or the like running on the computer based on the instructions of the program. It goes without saying that a part or all of the processing is performed, and the functions of the above-described embodiments are realized by the processing.

  Further, after the program read from the recording medium is written into the memory provided in the function expansion board inserted into the computer or the function expansion unit connected to the computer, the function expansion board is executed based on the instruction of the program code. It goes without saying that a CPU or the like provided in the function expansion unit performs part or all of the actual processing, and the processing realizes the functions of the above-described embodiments.

  Needless to say, the present invention can also be applied to a case where the above is achieved by supplying a program to a system or an apparatus. In this case, by reading a recording medium storing a program for achieving the present invention into the system or the apparatus, the system or the apparatus can enjoy the effects of the present invention.

  Further, by downloading and reading out a program for achieving the present invention from a server, a database, or the like on a network by using a communication program, the system or device can enjoy the effects of the present invention.

  The present invention also includes all configurations obtained by combining the above-described embodiments and their modifications.

Reference Signs List 100 information processing system 102 access relay device 104 mail server 106 mail relay device 108 client terminal 110 LAN
112 Wide area network 114 External server

Claims (24)

An information processing apparatus for accessing the resource by indicating resource specifying information indicating information for specifying the resource,
Storage means for storing the resource identification information for controlling the access,
With respect to the resource identification information given to the received e-mail, a risk accepting unit for accepting information on a risk of access to the resource,
A registration unit that registers the resource identification information in the storage unit using information on the risk received by the risk reception unit;
An information processing apparatus comprising:   2. The information processing apparatus according to claim 1, wherein the registration unit registers high-risk resource identification information in the resource identification information received by the risk reception unit in the storage unit. 3. Display means for displaying the resource identification information received by the receiving means,
3. The information processing apparatus according to claim 1, wherein the registration unit stores, in the storage unit, resource specification information selected from among the resource specification information displayed by the display unit. 4.   The information processing apparatus according to claim 3, wherein the display unit displays information relating to a risk of access to the resource with respect to the resource identification information.   2. An access instruction receiving means for receiving, when receiving a request for access to the resource specifying information stored in the storage means, an instruction for performing the access or not performing the access. The information processing device according to any one of claims 4 to 4.   6. The access instruction accepting unit according to claim 5, wherein the access instruction accepting unit accepts, as an instruction for not performing an access, an instruction for not performing an access due to a risk or an instruction for not performing an access because a risk cannot be determined. Information processing device.   When a request for access to the resource specifying information stored in the storage unit is received, the access instruction receiving unit performs an access that has already received the instruction, or issues a warning using information on not performing the access. The information processing apparatus according to claim 5, further comprising a warning unit that performs the warning.   The information processing apparatus according to claim 7, wherein the warning unit issues a warning using the number of times an instruction to perform an access is issued or the number of times an instruction to not perform an access is issued.   Regarding the resource identification information given to the received e-mail, the information on the risk of access to the resource is determined by an operation on the e-mail held by a reception control rule used when controlling the reception of the e-mail. The information processing apparatus according to claim 1, wherein:   The information relating to the risk of access to the resource is such that when the operation on the e-mail is a reception instruction, the resource identification information has a low risk, and when the operation on the e-mail is a reception prohibition, 10. The information processing apparatus according to claim 9, wherein the resource specifying information has a high risk.   With respect to the resource specifying information given to the received e-mail, the information relating to the risk of access to the resource is information indicating that the resource specifying information itself has a risk. Item 11. The information processing device according to any one of items 1 to 10.   12. The information processing apparatus according to claim 11, wherein when the resource specifying information is similar to a famous domain, the resource specifying information has a risk.   13. The information processing apparatus according to claim 11, wherein when the resource specifying information is a domain used in a mail magazine, the resource specifying information has a risk.   Regarding the resource specifying information given to the received e-mail, the information on the risk of access to the resource is information indicating that the received e-mail itself has a risk. An information processing apparatus according to claim 1.   15. The information processing apparatus according to claim 14, wherein, when the sender of the received e-mail is a free mail address, the resource specifying information given to the e-mail has a risk.   16. The information according to claim 14, wherein, if the received e-mail is an e-mail transmitted from abroad, the resource specifying information given to the e-mail is a risky one. Processing equipment.   If the received e-mail is the same as the URL given to another e-mail received most recently, the resource identification information given to the e-mail is risky. Item 17. The information processing device according to any one of items 14 to 16.   The information processing apparatus according to any one of claims 1 to 17, wherein the risk receiving unit receives information relating to a risk of access to the resource from another apparatus that controls reception of an e-mail. . An information processing apparatus for accessing the resource by indicating resource specifying information indicating information for specifying the resource,
Storage means for storing the resource identification information for controlling the access,
Registration means for registering the resource specifying information given to the e-mail in the storage means from the suspicion of the received e-mail;
An information processing apparatus comprising: An information processing system in which a mail relay device that controls reception of an e-mail and an access relay device that accesses the resource by indicating resource specifying information indicating information for specifying the resource are connected,
The mail relay device,
A determination unit that determines a risk of access to the resource with respect to the resource identification information given to the received email;
Transmission means for transmitting the result determined by the determination means to the access relay device as information related to the risk,
With
The access relay device,
Storage means for storing the resource identification information for controlling the access,
Risk receiving means for receiving information on the risk transmitted by the transmitting means,
A registration unit that registers the resource identification information in the storage unit using information on the risk received by the risk reception unit;
An information processing system comprising: A method for controlling an information processing apparatus for accessing a resource by indicating resource identification information indicating information for identifying the resource,
The information processing device,
With respect to the resource identification information given to the received e-mail, a risk receiving step of receiving information relating to a risk of access to the resource,
A registration step of registering the resource specifying information in a storage unit that stores the resource specifying information that controls the access, using information on the risk received by the risk receiving step;
A method for controlling an information processing apparatus, comprising: A program that can be read and executed by an information processing device that accesses the resource by indicating resource identification information indicating information for identifying the resource,
The information processing device,
With respect to the resource identification information given to the received e-mail, a risk accepting unit for accepting information on a risk of access to the resource,
A registration unit that registers the resource identification information in a storage unit that stores the resource identification information that controls the access, using information on the risk received by the risk reception unit;
Program to make it work. A method for controlling an information processing system in which a mail relay device that controls reception of an e-mail and an access relay device that accesses resource by designating resource specifying information indicating information for specifying the resource is connected. So,
The mail relay device,
A determination step of determining a risk of access to the resource with respect to the resource identification information given to the received email;
A transmitting step of transmitting a result determined by the determining step to the access relay device as information relating to the risk,
Run
The access relay device,
A risk receiving step of receiving information on the risk transmitted by the transmitting step,
A registration step of registering the resource specifying information in a storage unit that stores the resource specifying information that controls the access, using information on the risk received by the risk receiving step;
A method for controlling an information processing system, comprising: In an information processing system in which a mail relay device that controls reception of an email and an access relay device that accesses the resource by indicating resource specifying information indicating information for specifying the resource,
The mail relay device,
A determination unit that determines a risk of access to the resource with respect to the resource identification information given to the received email;
Transmission means for transmitting the result determined by the determination means to the access relay device as information related to the risk,
Function
The access relay device,
Risk receiving means for receiving information on the risk transmitted by the transmitting means,
A registration unit that registers the resource identification information in a storage unit that stores the resource identification information that controls the access, using information on the risk received by the risk reception unit;
Program to make it work.

Images