JP4607082B2 - Information processing apparatus, management method, and computer program - Google Patents

Description

  The present invention relates to a technique for managing session data including session information represented by a so-called cookie file.

  Cookie is a technology that makes it possible to store session data generated on the Web server side in an information processing apparatus such as a client PC (Personal Computer) that visits the Web server, and is often used in shopping sites and the like. . This session data includes session information indicating a communication state between the client PC and the Web server, and is usually stored in a storage medium of the client PC as a cookie file. Many browsers now support cookies.

There are various contents of session information stored as a cookie file. Typical examples include the number of visits to a website, the user ID and password of a page that requires authentication, information about the product selected by the user on the shopping page, the expiration date of the cookie file, and the domain of the web server that issued the cookie file There is information.
The detailed specification of cookies is disclosed as “PERSISTENT CLIENT STATE HTTP COOKIES” at “http://wp.netscape.com/newsref/std/cookie_space.html”.

  The cookie file is stored for a certain period even if communication between the client PC and the Web server is interrupted. Therefore, there is an advantage that the previous communication state can be restored by the cookie file the next time communication is started. Specifically, there is an advantage that the ID and password input of the authentication page are required only at the first login and are unnecessary from the second time. In addition, product selection information in the middle of shopping on the shopping page is saved at the next login, and there is an advantage that it is possible to save the trouble of reselecting the product from the beginning.

  However, if the cookie file is not properly managed, a security problem occurs. For example, since cookie files contain personal information such as user IDs and passwords, there is a risk of spoofing others if such information is leaked. If a cookie file is leaked after using a shopping page or the like, the contents of the shopping may be known to others. The main routes for cookie file leakage are (1) wiretapping between the Web server and the client PC, (2) leakage of the cookie file stored on the client PC by any means, and (3) the client PC itself. Can be considered.

  Among these leakage paths, (1) can be solved by describing “Secure” information, which is one of the parameters of the cookie file, in the cookie file on the server side. By describing the “Secure” information, the cookie file is not transmitted / received via a communication path encrypted by SSL (Secure Socket Layer), so that it is possible to prevent eavesdropping.

As a technique for solving (2) and (3), for example, an invention disclosed in Japanese Patent Application Laid-Open No. 11-98134 (name of invention: cookie alteration / copy detection processing method and program recording medium) has been proposed. In the present invention, the cookie file is encrypted on the Web server side to detect falsification of the cookie file or prevent unauthorized use.
JP-A-11-98134

  In the invention of Patent Document 1, cookie files are encrypted on the Web server side, but it is difficult to make all Web servers compatible with encryption of cookie files. It is also unlikely that the user will use only a Web server that supports encryption. Therefore, a technique for safely managing a cookie file issued by a Web server that does not support cookie file encryption is required.

  In view of the above problems, the present invention mainly provides an information processing apparatus, a management method, and a computer program that can safely manage any cookie file issued by a Web server. And

  In the present invention, for example, by encrypting the cookie file on the client PC side, the above problems (2) and (3) are solved.

Such an information processing apparatus of the present invention includes a communication unit that acquires the session data related to the communication at the time of communication from a server that generates session data including session information representing a communication state, and encrypts and decrypts the session data To inquire whether or not the electronic key can be used to a predetermined external management device that stores data indicating whether or not the electronic key can be used, and activate the electronic key when the usable data is received from the external management device. Electronic key management means for revoking the electronic key when unusable data is received, and when the electronic key is validated by the electronic key management means, the session data is encrypted and encrypted. The electronic key is validated by the encryption means for storing the session data in a predetermined storage medium and the electronic key management means. If that, e Bei a decoding means for decoding the session data is encrypted is stored in the storage medium, and transmits the session data decoded to the server.
“Usable data” is data indicating that the data can be used, and “unusable data” is data indicating that the data cannot be used. These two types of data are generated by the external management device based on, for example, inquiry data as to whether or not the electronic key can be used after specifying the electronic key.

  In the information processing apparatus configured as described above, the session data is encrypted on the information processing apparatus side, unlike the conventional case. Since the session data is encrypted, it is not used illegally even if the session data is leaked for some reason. Also, the electronic key for encryption is validated and invalidated by usable data and unusable data from outside the information processing apparatus. Therefore, even if the information processing apparatus itself is stolen, session data cannot be used illegally if the electronic key is invalidated. If the usable data and the unusable data are received every time the session data is encrypted and decrypted, the security of the session data is further improved. The session data is, for example, a cookie file.

When there are a plurality of the servers, the information processing apparatus of the present invention decrypts the first list and / or the encrypted session data indicating the servers that are permitted to acquire the session data among these servers. The configuration may include a list storage unit that stores a second list indicating servers that can be transmitted. In such a configuration, the encryption unit encrypts only the session data from the server indicated by the first list, deletes the session data from the server that is not permitted, and the decryption unit includes the second list Only the encrypted session data to the indicated server is decrypted, and the encrypted session data to the unauthorized server is deleted from the storage medium.
Some cookies, such as tracking cookies, are malicious when user information is collected and sent to a Web server without the user's knowledge. In such a case, it is necessary to individually determine the execution of the encryption process / decryption process in order to prevent the cookie file from being transmitted / received without the user's knowledge. Therefore, referring to the first list and the second list, the cookie file of the malicious cookie Web server such as the tracking cookie is deleted.

In the information processing apparatus of the present invention, when the session data includes information indicating whether encryption is necessary, the information indicating whether encryption is necessary and / or the first list is referred to. Accordingly, it may further comprise encryption enable / disable determining means for determining whether or not the session data can be encrypted and permitting the encryption means to encrypt the session data when the encryption is permitted. As the information indicating whether encryption is necessary, information such as an “expire” field can be used when the session data is a cookie file.
Further, the information processing apparatus of the present invention determines whether or not the encrypted session data can be decrypted by referring to the second list, and when the decryption is permitted, the information is encrypted by the decryption unit. And decryption permission / prohibition determining means for permitting decryption of the session data.
The information processing apparatus having such a configuration eliminates the need for encryption processing for all session data acquired from the server and decryption processing for all encrypted session data stored in the storage medium. The encryption processing / decryption processing is a load on the information processing apparatus. With such a configuration, the load due to the encryption processing / decryption processing can be reduced. For example, it is not necessary to perform encryption processing for session data that has no expiration date set to be invalid for only one session. Such session data can be determined not to be encrypted and can be omitted. Further, it is not necessary to perform decryption processing on the encrypted session data determined to be unnecessary for transmission.

The management method of the present invention obtains the session data related to the communication at the time of communication from a server that generates session data including session information representing a communication state, and has an electronic key for encrypting the session data A method executed by a processing device. In this management method, inquiring whether or not the electronic key can be used to a predetermined external management device that stores data indicating whether or not the electronic key for encrypting and decrypting the session data is stored , and in response to the inquiry, Electronic key management means for validating the electronic key when receiving usable data from the external management device and invalidating the electronic key when receiving unusable data; and the new session from the server The step of monitoring the acquisition of data and the transmission request of the acquired session data to the server, and the acquisition of new session data from the server and when the electronic key is activated A step of encrypting data, a request to send the acquired session data to the server, and the electronic key is activated If you are, including the steps of decodes the session data encrypted, it is sent to the server.

The computer program of the present invention is a communication means for acquiring the session data related to the communication at the time of communication from a server that generates session data including session information representing a communication state, and for encrypting and decrypting the session data. Inquires about the use of the electronic key to a predetermined external management device that stores data indicating whether or not the electronic key can be used, and activates and uses the electronic key when the usable data is received from the external management device. An electronic key managing means for revoking the electronic key when the impossible data is received, an encryption means for encrypting the session data when the electronic key is validated by the electronic key managing means, When the electronic key is validated by the key management means, the encrypted session data Decoding means for decoding, to function as a because of a computer program to send a session data decoded to the server.

  According to the present invention as described above, session data can be managed safely and efficiently by encrypting / decrypting the session data in the information processing apparatus.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

  FIG. 1 is a configuration diagram for explaining a system including an information processing apparatus that manages such a cookie file according to an embodiment of the present invention. This system includes a client PC 1 as an information processing apparatus that manages a cookie file that is session data, and a life cycle management server 2 as an external management apparatus. The client PC 1 can communicate with the Web server 3 by a communication means (not shown) via the network L such as the Internet.

In FIG. 1, one client PC 1 and one Web server 3 are illustrated, but a plurality of these may be provided on the network L. In this case, the Web server 3 can communicate with the plurality of client PCs 1 via the network L.
Further, the life cycle management server 2 may be connected to be communicable with a plurality of client PCs 1. For example, when a plurality of client PCs 1 are connected by a LAN (Local Area Network) different from the network L, the life cycle management server 2 is provided on this LAN, and can communicate with all the client PCs 1 on the LAN. It may be. In addition, the life cycle management server 2 may be provided on the network L and connected to a plurality of client PCs 1 via the network L.

  The Web server 3 is a normal Web server that generates a cookie file, and is the same as that conventionally used. When accessed from the client PC 1, the Web server 3 generates a cookie file including session information by the access and transmits it to the client PC 1. Further, when the client PC 1 already has a cookie file generated by the Web server 3 and transmits this when the client PC 1 accesses the Web server 3, the cookie file is received.

In addition to the storage medium 20 for storing the encrypted cookie file, the client PC 1 includes a TPM (Trusted Platform Module) 30 that is a tamper-resistant chip and a cookie file management unit 10 for operating the TPM 30. Information processing apparatus. The storage medium 20 is a memory such as a hard disk.
The TPM 30 is a semiconductor device mounted on the main board of the client PC 1, and mainly performs platform validity certification, data encryption, secure storage of electronic keys and electronic certificates, and the like. The cookie file management unit 10 manages the encrypted cookie file stored in the storage medium 20. In this embodiment, although the electronic key is stored in the TPM 30, it is not always necessary to store it in the TPM 30, and when using an information processing apparatus that does not include the TPM 30, the electronic key is stored in the storage area of the information processing apparatus. May be. Further, when necessary, the electronic key may be acquired from another information processing apparatus, the life cycle management server 2 or the like.

  FIG. 2 is an exemplary diagram of a table for managing encrypted cookie files stored in the storage medium 20. The encrypted cookie file is managed in association with the domain of the Web server 3 from which the cookie file is acquired. When the cookie file is stored in or deleted from the storage medium 20, this table is updated.

  The cookie file management unit 10 communicates with the life cycle management server 2 to notify the TPM 30 of instructions from the life cycle management server 2 and notify the life cycle management server 3 of the state of the client PC 1. The operation of the cookie file management unit 10 is managed by the life cycle management server 2, and the user of the client PC 1 controls the operation of the cookie file management unit 10, and between the cookie file management unit 10 and the life cycle management server 2. The contents of communication cannot be tampered with. Such a cookie file management unit 10 includes an encryption availability determination unit 11, an encryption unit 12, a decryption availability determination unit 13, a decryption unit 14, a monitoring unit 15, and an electronic key management unit 16. These components of the cookie file management unit 10 may be realized as software such as middleware, or may be realized as hardware using a semiconductor device or the like.

  The encryption availability determination unit 11 determines whether to encrypt the cookie file received from the Web server 3. For example, when a value is not set in the “expire” field of the received cookie file, the encryption propriety determination unit 11 determines that the cookie file is a temporary cookie for only one session and does not require encryption. In addition, when the domain name of the received cookie file is compared with a URL (Uniform Resource Locator) list managed by the lifecycle management server 2, if it is a cookie file from the Web server 3 whose reception is prohibited, the cookie file is encrypted. Delete (or reject) without converting.

  The encryption unit 12 encrypts the cookie file permitted to be encrypted according to the determination result of the encryption permission determination unit 11 and stores the encrypted cookie file in the storage medium 20. The encryption unit 12 encrypts the received cookie file using the electronic key of the TPM 30.

  The decryption permission determination unit 13 determines whether or not to decrypt the encrypted cookie file that is the transmission target to the Web server 3. The domain name of the cookie file to be decrypted is compared with the URL list managed by the life cycle management server 2, and if the cookie file is a transmission prohibited cookie file, the cookie file is deleted without being decrypted.

  The decrypting unit 14 decrypts the cookie file permitted to be decrypted and stores the decrypted cookie file in the storage medium 20 according to the determination result of the decryption permission determination unit 13. The decryption unit 14 decrypts the encrypted cookie file using the electronic key of the TPM 30.

  The monitoring unit 15 monitors a specific area of the client PC 1 and monitors a new cookie file storage and a cookie file transmission request. When an event occurs, the process of the event is once hooked, and the process is transferred to the encryption enable / disable determining unit 11 and the decryption enable / disable determining unit 13.

  The electronic key management unit 16 inquires of the life cycle management server 2 whether the electronic key can be used, receives the “electronic key usable” message as usable data or the “electronic key unavailable” message as unusable data, and receives the TPM 30. The electronic key is validated and invalidated. An inquiry as to whether or not the electronic key can be used is made whenever there is a request to save a cookie file and to send a cookie file.

  The life cycle management server 2 includes a URL list storage unit 21 for storing a URL list representing domain information of a cookie file to be encrypted or not encrypted, and manages this. Also, an electronic key management unit 16 sends an “electronic key available” message or an “electronic key unavailable” message for validating or invalidating the electronic key in the client PC 1 in response to an inquiry from the electronic key management unit 16. 16 to send.

FIG. 3 is an exemplary diagram of a URL list stored in the URL list storage unit 21. This URL list describes domains that refuse to send and receive cookie files. On the other hand, a list describing domains that permit transmission and reception of cookie files can also be used as the URL list. Further, the URL list may be provided separately for transmission and reception, or may be described collectively as one.
In FIG. 1, the URL list storage unit 12 is provided in the lifecycle management server 2, but this may be provided in the client PC 1. Further, it may be provided in a place accessible from the client PC 1 or the life cycle management server 2 independently of these.

  The life cycle management server 2 manages the validation / invalidation of the electronic key using, for example, a flag. The activation / invalidation of the electronic key is set by the administrator of the life cycle management server 2. For example, when the client PC 1 is stolen, the administrator of the life cycle management server 2 sets the electronic key of the client PC 1 to be invalid upon receiving a report from the user. When using the electronic key in the client PC 1, the user of the client PC 1 needs to obtain permission to use the electronic key from the administrator of the life cycle management server 2. Therefore, when the client PC 1 is in an environment incapable of communicating with the life cycle management server 2, even if the electronic key is valid, the electronic key cannot be used.

  If the client PC 1 is stolen and the thief uses the client PC 1, the electronic key cannot be used if the client PC 1 cannot access the life cycle management server 2. Therefore, unauthorized use of cookie files is not possible. Further, when the client PC 1 can access the life cycle management server 2, the cookie file cannot be illegally used because the electronic key is set invalid.

<Encryption procedure 1>
A case where cookie file encryption processing is performed will be described. FIG. 4 is a processing procedure diagram of the encryption processing in this case.

The cookie file management unit 10 monitors the HTTP connection of the client PC 1 by the monitoring unit 15, and detects a new cookie file or an attempt to transmit a saved cookie file. It has become.
When the client PC 1 accesses the Web server 3 without an access history in this state, a cookie file is generated by the Web server 3.

  The cookie file generated by the Web server 3 is transmitted to the client PC 1. The transmitted cookie file is stored in the storage medium 20 by the client PC 1. When the monitoring unit 15 detects that the cookie file is stored, the cookie file management unit 10 uses the electronic key management unit 16 to generate data (referred to as “TPM_ID”) that uniquely defines the TPM 30 of the client PC 1 in the life cycle management server 2. Send to.

  The life cycle management server 2 searches the state of the TPM from the TPM_ID transmitted from the cookie file management unit 10. At this time, if the TPM is unavailable due to theft of the client PC 1 or the like, an “electronic key unavailable” message is transmitted to the cookie file management unit 10. If it can be used, an “electronic key available” message is transmitted to the cookie file management unit 10.

  The cookie file management unit 10 that has received the “electronic key available” message next checks the “expire” field of the cookie file by the encryption availability determination unit 11 to determine whether an expiration date has been set for the cookie file. Confirm whether or not. When an appropriate expiration date is set, the encryption availability determination unit 11 determines that encryption is possible and performs a URL list check. The URL list check is performed by confirming whether the domain information of the cookie file is in the URL list stored in the URL list storage unit 21.

  As a result of the URL list check, if the cookie file is permitted to be received, the encryption unit 12 encrypts the cookie file and stores it in the storage medium 20 according to the result. At this time, the encrypted cookie file and the domain information are stored as a table as shown in FIG. 2 so that the cookie file can be properly restored.

<Encryption processing procedure 2>
The procedure when the cookie file encryption process is not implemented will be described. FIG. 5 is a processing procedure diagram in this case.
The process until the cookie file management unit 10 receives the “electronic key available” message is the same as the cookie file encryption process of FIG. When the cookie file management unit 10 receives the “electronic key available” message, the encryption availability determination unit 11 checks the “expire” field of the cookie file to determine whether an expiration date has been set for the cookie file. Confirm. If the expiration date is not set in the “expire” field, the cookie file encryption process is unnecessary, and the cookie file management unit 10 stores the cookie file in the storage medium 20 as it is.
In such processing, since the number of times of cookie file encryption processing can be reduced, the processing load on the client PC 1 can be reduced.

<Encryption processing procedure 3>
The procedure for deleting a cookie file without performing encryption processing will be described. FIG. 6 is a processing procedure diagram in this case.
Since the processing up to the URL list check performed by the encryption permission determination unit 11 by the cookie file management unit 10 is the same as the cookie file encryption processing of FIG. As a result of the URL list check, if the reception of the cookie file is rejected by the domain information of the cookie file and the URL list managed by the lifecycle management server 2, the cookie file is determined to be an invalid cookie file and deleted.
In such processing, since the number of times of cookie file encryption processing can be reduced, the processing load on the client PC 1 can be reduced. In addition, it becomes possible to eliminate illegal cookie files.

<Decoding processing procedure 1>
A case where a cookie file decryption process is performed will be described. FIG. 7 is a processing procedure diagram of the decoding process in this case.

The cookie file management unit 10 monitors the HTTP connection of the client PC 1 by the monitoring unit 15, and detects a new cookie file or an attempt to transmit a saved cookie file. It has become.
From this state, the client PC 1 accesses the Web4 server. The Web server 3 has been accessed in the past, and the cookie file generated by the Web server 3 is encrypted and stored in the storage medium 20 of the client PC 1. Therefore, when the client PC 1 accesses the Web server 3, the client PC 1 tries to decrypt the cookie file and transmit it to the Web server 3.

  The monitoring unit 15 detects the transmission of the saved cookie file and temporarily hooks the transmission process. When the monitoring unit 15 detects the transmission of the cookie file, the cookie file management unit 10 transmits the TPM_ID of the client PC 1 to the life cycle management server 2 by the electronic key management unit 16.

  The life cycle management server 2 searches the state of the TPM from the TPM_ID transmitted from the cookie file management unit 10. At this time, if the TPM is unavailable due to theft of the client PC 1 or the like, an “electronic key unavailable” message is transmitted to the cookie file management unit 10. If it can be used, an “electronic key available” message is transmitted to the cookie file management unit 10.

  The cookie file management unit 10 that has received the “electronic key available” message next performs a URL list check by the decryption availability determination unit 13. The URL list check is performed by confirming whether the domain information of the cookie file is in the URL list stored in the URL list storage unit 21.

  As a result of the URL list check, when the cookie file is permitted to be transmitted, the decrypting unit 14 decrypts the cookie file stored in the storage medium 20 according to the result. The decrypted cookie file is transmitted to the Web server 3.

  In such a process, the cookie file is encrypted and stored in the storage medium 20 and decrypted immediately before transmission. Therefore, even if the stored cookie file leaks for some reason, Unauthorized use can be prevented.

<Decoding processing procedure 2>
Decryption of cookie file may not be executed. FIG. 8 is a processing procedure diagram in this case.
The processing until the life cycle management server 2 searches for the state of the TPM by the TPM_ID transmitted from the cookie file management unit 10 is the same as the processing procedure of the decryption processing of the cookie file in FIG. To do.
When the life cycle management server 2 transmits a “electronic key unusable” message to the cookie file management unit 10 as a result of the search for the TPM state, the cookie file management unit 10 that has received this message cannot use the electronic key. The cookie file cannot be decrypted.

  As described above, since it is entrusted to the life cycle management server 2 whether or not the electronic key for decrypting the cookie file is used, the cookie file is illegally used even when the client PC 1 is stolen, for example. Can be prevented.

<Decoding processing procedure 3>
A case where a cookie file is deleted without decryption will be described. FIG. 9 is a processing procedure diagram in this case.
Since the process up to the URL list check by the decryption permission / inhibition determination unit 13 by the cookie file management unit 10 is the same as the decryption process of the cookie file in FIG.
As a result of the URL list check, if the cookie file is refused to be transmitted based on the domain information of the cookie file and the URL list managed by the life cycle management server 2, the cookie file is determined to be an invalid cookie file and deleted.

  The contents of the URL list of the URL list file are updated at any time, and a rejection domain that was not registered when the cookie file was received may be registered when the cookie file is transmitted. For this reason, it is necessary to check the rejection domain twice when receiving and transmitting the cookie file. By doing in this way, even if the cookie file leaks to the outside in a short period from the time of receiving the cookie file to the time of sending, the cookie information can be protected by encryption. Further, even a cookie file that is eventually deleted may contain user information, and it is necessary to encrypt and protect it within the client PC 1.

  In the above processing, the cookie file is encrypted on the client PC 1 side. Therefore, it becomes possible to cope with the cookie file of any Web server. In addition, since the cookie file is encrypted and stored in the client PC 1, the cookie file is illegally used even if the cookie file is leaked to the outside for some reason or the client PC 1 is stolen. Can be prevented. Furthermore, since it is determined whether or not to perform the encryption process / decryption process according to the contents of the cookie file, the load on the process can be reduced.

  Conventionally, the cookie file is encrypted on the Web server 3 side, and the object is to prevent leakage of the cookie file during transmission from the Web server 3 to the client PC 1. On the other hand, in the above embodiment, the cookie file is encrypted / decrypted on the client PC 1 side, thereby preventing the leakage of the cookie file due to theft or unauthorized use of the client PC 1.

The block diagram for demonstrating the system containing the information processing apparatus which manages a cookie file. FIG. 4 is an exemplary diagram of a table for managing an encrypted cookie file. FIG. 4 is a view showing an example of a URL list. Processing procedure diagram of encryption processing of cookie file. The processing procedure figure when the encryption process of a cookie file is not implemented. The processing procedure figure in the case of deleting a cookie file, without performing an encryption process. The processing procedure figure of a decoding process of a cookie file. The process sequence figure when the encryption process of a cookie file cannot be performed. The processing procedure figure in the case of deleting a cookie file, without performing a decoding process.

Explanation of symbols

1 Client PC
DESCRIPTION OF SYMBOLS 10 Cookie file management part 11 Encryption permission determination part 12 Encryption part 13 Decryption permission determination part 14 Decryption part 15 Monitoring part 16 Electronic key management part 20 Storage medium 30 TPM
2 Lifecycle management server 21 URL list storage unit 3 Web server

Claims (6)

Communication means for acquiring the session data relating to the communication at the time of communication from a server that generates session data including session information representing a communication state;
The predetermined external management device that stores data indicating whether or not to use an electronic key for encrypting and decrypting the session data is inquired about whether or not the electronic key can be used, and usable data is received from the external management device . An electronic key management means for activating the electronic key at times and revoking the electronic key when unusable data is received;
An encryption unit that encrypts the session data when the electronic key is validated by the electronic key management unit, and stores the encrypted session data in a predetermined storage medium;
When said electronic key management means by the electronic key is enabled, Bei example a decoding means for decoding the session data is encrypted is stored in the storage medium,
Sending the decrypted session data to the server;
Information processing device. A server capable of decrypting and transmitting the encrypted first session list and / or the encrypted session data among the servers when there are a plurality of the servers. A list storage unit for storing the second list shown,
The encryption means encrypts only the session data from the server indicated by the first list, and deletes the session data from the unauthorized server,
The decryption means decrypts only the encrypted session data to the server indicated by the second list, and deletes the encrypted session data to the unauthorized server from the storage medium.
The information processing apparatus according to claim 1. The session data includes information indicating whether encryption is necessary,
By referring to the information indicating the necessity of the encryption and / or the first list, it is determined whether or not the session data can be encrypted, and when the encryption is permitted, the encryption means An encryption enable / disable determining unit that permits encryption of session data;
The information processing apparatus according to claim 2. A decryption that judges whether or not the encrypted session data can be decrypted by referring to the second list, and permits decryption of the encrypted session data by the decryption means when decryption is permitted A further determination unit, and
The information processing apparatus according to claim 2. A method executed by an information processing apparatus having an electronic key for encrypting the session data and acquiring the session data related to the communication during communication from a server that generates session data including session information representing a communication state Because
Inquiring whether or not the electronic key can be used to a predetermined external management device that stores data indicating whether or not the electronic key can be used to encrypt and decrypt the session data ;
In response to the inquiry, an electronic key management means for validating the electronic key when receiving usable data from the external management device and invalidating the electronic key when receiving unusable data;
Monitoring the acquisition of new session data from the server and a transmission request of the acquired session data to the server;
Encrypting the session data when there is new acquisition of the session data from the server and the electronic key is activated;
When there is a request for transmission of the acquired session data to the server and the electronic key is validated, decrypting the encrypted session data, and transmitting the decrypted session data to the server; including,
Management method. Computer
Communication means for acquiring the session data relating to the communication at the time of communication from a server that generates session data including session information representing a communication state;
The predetermined external management device that stores data indicating whether or not to use an electronic key for encrypting and decrypting the session data is inquired about whether or not the electronic key can be used, and usable data is received from the external management device . An electronic key management means for validating the electronic key sometimes and invalidating the electronic key when unusable data is received;
Encryption means for encrypting the session data when the electronic key is validated by the electronic key management means;
Decryption means for decrypting the encrypted session data when the electronic key is validated by the electronic key management means;
To function as, because of the computer program to send a session data decoded to the server.

Images