JP5704324B2 - Filtering system, filtering method, and program - Google Patents

Description

  The present invention relates to an access control technique for a communication network in an entity that provides an access network, and more particularly to a filtering system, a filtering method, and a program for performing filtering that control access of a predetermined terminal to content.

  Recently, there is an increasing need and demand for appropriately filtering contents disclosed on a network by a carrier that is a provider of mobile communication services and a provider that is a provider of Internet connection services. Such filtering is called parental control, and is set by a guardian, or the contents to be filtered are determined according to the contents defined by laws and regulations. On the other hand, there are opinions from content providers and users that consider excessive filtering a problem.

Existing filtering systems are roughly classified into URL filtering and dynamic filtering.
The URL filtering blacklist method has a problem that it is difficult to follow address transfer, and the whitelist method has a problem that access to a safe site that is not certified by the provider is blocked. is there.
In addition, dynamic filtering has a problem that content search time at the time of access becomes long, and a problem that filtering considering images and videos cannot be performed properly.

As related technologies, Patent Document 1 and Patent Document 2 can be cited.
In Patent Document 1, in a URL filtering system, when accessing a cache on the Internet from a terminal, it is detected from the URL of the cache that it is not possible to determine whether or not the site should be properly filtered. An invention is described in which the URL of the original site (content) is extracted from the request, and access control to the previous cache is performed based on the content of the content obtained from the URL.
Patent Document 2 describes a technique for collecting information used to distinguish between a healthy site and a bad site from keywords input to a search engine. In addition, it is described that a site where it is difficult to automatically discriminate classification is classified by a human.
The above cache is a technology that enables search sites, providers, mobile communication carriers, etc. to copy the data of the original site to a storage medium prepared by the search site, assign a URL, and disclose the cache data to a browser or the like Point to. There are two types of caches: a cache prepared before access is received and a cache that holds content acquired when access is received in the past.

JP 2008-204427 A JP 2008-181186 A

Information processing apparatuses represented by personal computers are required to appropriately filter access to content on a network such as the Internet.
Also, the importance of parental control has been recognized as a result of the evolution of the Internet browsing function in mobile terminals such as smartphones and game consoles, lower usage fees, and the spread of mobile phones to younger age groups. Has been.

  However, both URL filtering (black list method / white list method) and dynamic filtering, which are currently mainstream, have merits and demerits, and have problems.

  For example, in the URL filtering system described in Patent Document 1, a site is determined from a URL for an original site based on a black list and a white list. In other words, even if there is no follow-up to address transfer or content change, and content that has a problem as a cache is saved, if there is no problem at the current site and there is no blacklist, there is a problem Can access some content. Similarly, if the content is registered in the white list, for example, a site in which the content of the content is repeatedly changed between the content having a problem and the content having no problem can be followed even if there is a problem.

  SUMMARY OF THE INVENTION An object of the present invention is to provide a system for enabling filtering to be performed efficiently and effectively by a mother body that provides an access network such as a carrier or a provider.

The filtering system according to the present invention includes a user information management means for managing a filtering policy for a user as user information, a storage means for storing information associated with the cache as cache information together with the fetched cache, Analyzing means for determining whether or not the contents of the cache are to be filtered and using the cache information, and access to the content from the terminal is received via the access network, and the user information of the terminal and the received content Filtering means for obtaining cache information, determining from the obtained user information and cache information whether the content is to be targeted for filtering for the user, and filtering when the content is targeted. Be .
The filtering method by the information processing system according to the present invention is a user of the terminal that is recorded and managed in advance for access to the content from the terminal that determines whether or not to filter, which is accepted via the access network. Filtering the contents of the user information reflecting the filtering policy to the cache and the cache in which the same contents as the contents are fetched and stored in advance when accessing the past contents via the access network Cache information reflecting an analysis result determined whether or not to be a target, and based on the acquired user information and the cache information, the filtering policy of the user, and a determination criterion determined by the analysis result And of the terminal Which comprises carrying out the access control to content.
A program according to the present invention stores user information management means for managing a filtering policy for a user as user information in a communication system that provides an access network, and cache information that is associated with the fetched cache as cache information. Analyzing means that determines whether or not to control the contents of the cache for any control unit of the information processing apparatus group that operates as a filtering system having storage means for storing the cache contents, and The access to the content from the terminal is received via the access network, and the user information of the terminal and the cache information of the received content are acquired, and the content is transmitted to the user from the acquired user information and the cache information. The It is characterized by determining whether or not to be a filtering target and functioning as filtering means for filtering when the filtering target is selected.

  ADVANTAGE OF THE INVENTION According to this invention, the filtering system which can filter efficiently and effectively can be provided by the parent | base which provides access networks, such as a carrier and a provider.

It is the schematic which shows the internet filtering system of one Embodiment. It is a sequence diagram which shows a processing operation when a non-filter target terminal in an Internet filtering system accesses a harmful site (with cache). It is a sequence diagram which shows a processing operation when a non-filter target terminal in an Internet filtering system accesses a harmful site (no cache). It is a sequence diagram which shows the processing operation which determines whether it is filtering object about the content of the preserve | saved cache. It is a sequence diagram which shows the registration operation | movement of the user information as a filtering policy preserve | saved at a user management system. It is a sequence diagram which shows the processing operation when a filter object terminal accesses a harmful site (there is a cache). It is a sequence diagram which shows the processing operation when the filter object terminal in the Internet filtering system which added URL filtering system accesses a harmful site.

An embodiment of the present invention will be described with reference to FIGS.
FIG. 1 is a schematic diagram illustrating an Internet filtering system according to an embodiment.

Referring to FIG. 1, in this embodiment, a Web cache engine 10 that performs filtering is connected between the Internet 101 and the access network 102.
In addition, on the Internet 101, there are a general content (content not targeted for filtering) website 201 and a harmful content (content targeted for filtering) website 202, which are newly created outside the management of the filtering system operator. Changes have been made and are changing daily. The Web site here is an aggregate of one or a plurality of contents, and filtering described below may be performed for each individual content or may be performed for the entire site. In addition to text data, content includes images, moving images, audio, and the like, and is appropriately included in the scope of filtering verification. In the embodiment, the content to be filtered will be described as harmful content. Even if the content is not actually harmful, it is assumed that the content to be filtered is harmful content for explanation.
A terminal 301 used by the user X and a terminal 302 used by the user Y are connected to the access network 102, and each Web site is accessed via the Internet filtering system. Here, the user X is a person who is not subject to filtering, and the user Y is a person who needs filtering. That is, the terminal 301 can connect to the Web site 201 and the Web site 202 unconditionally. On the other hand, although the terminal 302 can access the general content Web site 201, the filter acts on the access to the harmful content Web site 202 and cannot access the terminal 302.

A web cache storage 20 and a user management system 40 are connected to the web cache engine 10. A content analysis system 30 is connected to the Web cache storage 20 and the user management system 40.
In the content analysis system 30, a text analysis engine 31, a video analysis engine 32, and a voice analysis engine 33 are connected.

  These web cache engine 10, web cache storage 20, content analysis system 30 (text analysis engine 31, video analysis engine 32, voice analysis engine 33), and user management system 40 all operate under program control.

  User X's terminal (non-filter target) 301 and user Y's terminal (filter target) 302 are all information processing devices such as personal computers, PDAs, and smartphones. It is assumed that there is only a difference in the attribute of whether the user Y is owned, and there is no functional difference. Further, the website (general content) 201 and the website (harmful content) 202 are both information processing apparatuses such as web servers, and have different attributes as to whether the content to be posted is general or harmful. It is assumed that there is no functional difference.

  For simplification of the description below, the website 201 that is not subject to filtering is referred to as a general site 201, and the website 202 that is subject to filtering is referred to as a harmful site 202. The terminals of user X and user Y are referred to as non-filter target terminal 301 and filter target terminal 302, respectively.

The Web cache engine 10 is an information processing apparatus such as a server and has a transparent cache function. More specifically, when the user of the access network 102 accesses the content on the Internet 101 site, the Web cache engine 10 uses the size of the content, a hash value based on the first tens of bytes of binary data, and the like. If there is no content that is regarded as the same in the Web cache storage 20, the content downloaded from the site is transferred to the user while being cached on the Web cache storage 20, and the content that is regarded as the same is transferred to the Web. If it exists in the cache storage 20, the download from the site is stopped, and the corresponding cache data on the web cache storage 20 (data similar to the content) is transferred to the user.
The Web cache engine 10 also checks the IP address when a user under the access network 102 accesses content on the Internet 101 site, and determines whether the user is a non-filter target user or a filter target user. A filtering function for blocking access to the target content is provided according to the result of the inquiry to the system 40 and cache information described later.

The Web cache storage 20 is an information storage device such as an HDD connected to the Web cache engine 10 via a SAN (Storage Area Network) or the like, and has a function of storing content cache data and filtering tags. The web cache storage 20 can be shared with a storage that stores an existing cache of a carrier or a provider. The filtering tag includes, for example, a target / non-target description for each category according to the filtering granularity as information. Further, a target / non-target description may be included as a plurality of information for each category in correspondence with the age of the user. In other words, the Web cache storage 20 operates as a storage unit for storing cache information acquired in the past, and operates as a mechanism for acquiring and managing cache and cache information in cooperation with the Web cache engine 10. To do.

  The content analysis system 30 periodically checks the cache data of the content stored in the web cache storage 20 and analyzes whether it is a harmful site using the text analysis engine 31, the video analysis engine 32, and the voice analysis engine 33. And a function of describing the determination result as cache information in a filtering tag associated with the cache data of the content stored in the web cache storage 20. That is, it operates as an analysis unit that determines whether or not the contents of the cache are subject to filtering. Note that the content analysis system 30 may be operated in accordance with an instruction from the Web cache engine 10 in addition to the periodic check. Further, it may be possible to preferentially analyze predetermined content.

The text analysis engine 31 is a function called from the content analysis system 30. When the text in the content is analyzed and contains harmful words to be filtered, the determination result is analyzed along with the classification information for each category. A function of returning to the system 30 is provided.
The video analysis engine 32 is a function called from the content analysis system 30. When the video analysis engine 32 includes a harmful video to be filtered by analyzing still images / moving images in the content, the determination result together with the classification information for each category. Is returned to the content analysis system 30.
The speech analysis engine 33 is a function called from the content analysis system 30. When the speech in the content is analyzed and contains harmful words to be filtered, the analysis result is analyzed along with the classification information for each category. A function of returning to the system 30 is provided.

  The user management system 40 has a function of accepting filtering policy registration of the filtering target terminal 302 from users under the access network 102. Further, it has a function of receiving a user determination inquiry from the Web cache engine 10 and returning a determination result as to whether the user is a filter target. That is, the user management system 40 operates as a user information management unit, and manages a filtering policy for each user as user information. User information can be prepared for each service to be provided, and is appropriately registered and managed by the terminal owner, the parental control guardian, or the carrier or provider providing the communication environment. Note that the user management system 40 does not return the user determination result, but uses the filtering policy used for the determination (the user filtering field, its level, the user age, etc.) in the Web cache engine 10 for the user determination. You may make it go against it.

  Next, the operation of the present embodiment will be described in detail with reference to FIGS.

2 and 3 show an operation when the non-filter target terminal 301 accesses the harmful site 202.
First, when the Web cache engine 10 receives an access to a Web site from a user terminal (Step A1), the Web cache engine 10 extracts the IP address of the transmission source (Step A2) and makes an inquiry about user information to the user management system 40. At the same time (step A3), the access request is transferred to the harmful site 202 of the access destination (step A4). This operation is the same even if the access destination is the general site 201.

  The user management system 40 derives the presence / absence of filter registration as user information from the user IP address or the like included in the received user information inquiry. If the target user is non-filter target, the determination result is returned to the Web cache engine 10 (step A5), and the Web cache engine 10 is a non-filter target terminal 301 for which the user who requested the site access is non-filter target. (Step A6).

  In parallel with the above processing, the Web cache engine 10 temporarily accumulates the top data of the content that has been transferred from the harmful site 202 (step A7) based on the access request to the transferred site, and calculates hash data and the like. Based on the result, it is checked whether or not it is the same as the cache data existing on the Web cache storage 20 (step A8). This operation is the same even if the access destination is the general site 201.

Next, when it is considered that the cache data is the same as the cache data existing on the Web cache storage 20, the Web cache engine 10 sends a content transfer stop instruction to the harmful site 202 (step A9), and the harmful site. The content download from 202 is stopped (step A10), and the cache transmission is started from the web cache storage 20 (step A11), and the cache transmission is terminated as soon as the download is completed (step A12). By this operation, the filter non-target terminal 301 can acquire the information on the harmful site 202 earlier than downloading the content directly from the Web site. Note that the fact that it can be regarded as the same as the cache data indicates that there is no difference in the content that can be said to be the main body even if there is a difference such as an advertisement. In addition, for advertisements and the like, filtering may be separately determined dynamically, and possible advertisements may be passed.
The above operation is the same even if the access destination is the general site 201.

If the cache does not exist in the cache presence check (step A8) in the Web cache engine 10 (see FIG. 3), content transfer is started from the first data of the accumulated content to the non-filter target terminal 301. Simultaneously with (Step A13), caching is started in the Web cache storage 20 of the data (Step A14). As soon as the content transfer from the harmful site 202 ends (step A15), the content transfer from the Web cache engine 10 to the non-filter target terminal 301 also ends (step A16), and the cache in the Web cache storage 20 also ends (step A16). A17). The Web cache storage 20 stores the cache data in preparation for cache transmission at the time of accessing the next content that is considered to be the same (step A18). Even if the non-filter target terminal 301 stops the content transfer from the harmful site 202 halfway, the cache operation to the Web cache storage 20 may be continuously performed.
The above operation is the same even if the access destination is the general site 201.

  FIG. 4 is a sequence diagram showing a processing operation for determining whether or not the contents of the cache stored in the Web cache storage 20 are subject to filtering.

  The cache data stored on the Web cache storage 20 is periodically checked for analysis by the content analysis system 30 (step B1). If there is unchecked cache data at the timing of the periodic patrol check, the Web cache storage 20 transmits the cache data to the content analysis system 30 (step B2).

  In the content analysis system 30, the text analysis engine 31 is used to analyze the text in the cache (step B3). The text analysis engine 31 searches whether it matches a predetermined keyword, whether it is inferred as harmful or includes context, and the content of the analysis result as to whether it is classified into one of the categories of harmful sites It returns to the analysis system 30 (step B4).

  Similarly, the content analysis system 30 uses the video analysis engine 32 to analyze the video in the cache (step B5). The video analysis engine 32 searches for whether it matches a predetermined condition based on an analysis result such as slice information of a still image or a moving image included in the content, or whether the content is identical to the illegally uploaded content. The analysis result as to whether or not it is classified into one of the site categories is returned to the content analysis system 30 (step B6).

  Similarly, the content analysis system 30 uses the voice analysis engine 33 to analyze the voice in the cache (step B7). The voice analysis engine 33 searches whether or not it matches a predetermined condition based on an analysis result such as a voice or an acoustic waveform included in the content, or whether the content is identical to the illegally uploaded content. The analysis result as to whether or not it is classified into any of the categories is returned to the content analysis system 30 (step B8).

  In the content analysis system 30, the analysis results from these engines are aggregated, the category information of the corresponding harmful site is set for the tag associated with the cache data (step B 9), and the tag is stored in the Web cache storage 20. Is stored as cache information (step B20).

  Note that the cache determination process may be performed at the time of cache acquisition according to an instruction from the Web cache engine 10 and conditions such as the first access. At this time, the content analysis system 30 may preferentially determine the content and return the determination result (cache information) early or return the determination result only to the instructed analysis method. In this way, the Web cache engine 10 can specify the analysis method used for the determination based on the user information obtained from the user management system 40. It is possible to omit a simple analysis method. Also, copyright management such as comparison processing with existing files can be easily performed.

FIG. 5 shows an example of an operation for registering user information as a filtering policy stored in the user management system 40.
The user Y (or guardian) who desires filtering for the purpose of parental control or the like transmits a filter registration request to the user management system 40 through the filter target terminal 302 or the like (step C1).
The user management system 40 starts the filter registration acceptance process (step C2), transmits the screen information that generated the registration information item to the filter target terminal 302 (step C3), and the user Y is displayed on the filter target terminal 302. The registered information item (step C4) is confirmed, and the registration information is input and transmitted to the user management system 40 (step C5).
The minimum necessary information items for registration are the IP address of the terminal and the category information to which the target harmful site to be filtered belongs. These pieces of information do not need to be input on the user Y side if they can be derived without user intervention, such as line contract information and connection payout information. Further, as examples of category information, classifications such as “illegal”, “claim”, “adult”, and “meeting” can be considered, and ranking may be performed for each classification.
The user management system 40 processes and stores the registration information received from the user Y as user information as a filtering policy (step C6), and ends the filter registration acceptance process (step C7). At that time, the fact that the filter registration is completed is displayed on the screen of the filtering target terminal 302 (step C8).

  Next, the operation when the filtering target terminal 302 accesses the harmful site 202 will be described with reference to FIG.

  When there is a site access request from the user Y (filter target terminal 302) registered in the filter (step D1), the Web cache engine 10 extracts the source IP address and the like in the same manner as in step A2 (step D2). The user management system 40 is inquired of user information in the same manner as in step A3 (step D3), and at the same time, the access request is transferred to the harmful site 202 to be accessed in the same manner as in step A4 (step D4). This operation is the same even if the access destination is the general site 201.

  The user management system 40 derives the presence / absence of filter registration from the user IP address included in the received user information inquiry. Since the target user Y is a filtering target, the determination result and the target category information or information that can be substituted for it are returned as user information to the Web cache engine 10 (step D5), and the Web cache engine 10 has made a site access request. Simultaneously with confirming that the user is a filtering target to be filtered (step D6), a target category to be a filter policy is checked (step D7). The user information to be notified may be in any format as long as the information can be filtered by the Web cache engine 10 according to the filtering policy.

  Based on the transferred site access request, the Web cache engine 10 temporarily accumulates the top data of the content started to be transferred from the harmful site 202 (step D8) as in step A7. Based on the above, it is checked whether it can be regarded as the same as the cache data existing on the Web cache storage 20 (step D9). This operation is the same even if the access destination is the general site 201.

  When the cache data is considered to be the same as the cache data existing on the Web cache storage 20, the Web cache engine 10 sends a content transfer stop instruction to the harmful site 202 as in Step A9 (Step D10). Similar to A10, the content download from the harmful site 202 is stopped (step D11). Subsequently, the cache information (tag for filtering) associated with the cache data on the Web cache storage 20 is confirmed (step D12). If the filter policy conforms to the target category information (step D13), the cache transmission is not performed. An access blocking screen is transmitted to the filtering target terminal 302. In addition, instead of the process of D13, it may be determined whether a filtering tag is acquired and conforms to the filter policy, or it may be determined whether only target category information is sent, and whether content is to be filtered. What is necessary is just to acquire the cache information which can be identified.

If there is no cache data on the Web cache storage 20, the Web cache engine 10 stores the cache in the Web cache storage 20 in the same manner as Steps A14 to A17 while stopping the transfer of the content to the filtering target terminal 302. Subsequently, the content analysis system 30 analyzes the content from the Web cache storage 20 and registers the filtering tag as cache information. At this time, if necessary, content determination may be performed preferentially, or an analysis method used for determination may be designated based on information such as age obtained from user information. Subsequently, as in steps D12 to D14, the filtering tag associated with the cache data on the Web cache storage 20 is checked, and if it matches the filter policy, the cache transmission is not performed and the filtering target terminal 302 is not transmitted. Send access block screen.
Note that the access blocking screen may be transmitted without dynamically verifying the cache.

  By operating various means as the filtering system in this way, various beneficial effects can be obtained.

  For example, since content-based filtering is performed, it is possible to avoid the problem of blocking even address transfer in URL filtering and the like and access to a safe site. On the other hand, the content search time can be shortened because the content search is not performed every time at the access timing as in the case of dynamic filtering, and the analysis can be performed based on the cache data in advance. The dynamic filtering is performed when there is no cache and when the filtering target user accesses the first, and the frequency can be reduced.

  In addition, filtering can be performed in consideration of not only text but also images, videos, sounds, copyrights, and the like.

  Further, since there is no need to access the original content for analysis, there is an effect that the transit cost can be reduced when the carrier or provider provides filtering as a service.

  Furthermore, using cache data for analysis also has the effect of enabling efficient analysis according to access frequency.

  Next, another embodiment of the present invention will be described with reference to FIG.

  In the above embodiment, only the cache data is used for the analysis for filtering. However, when combined with URL filtering (black list method or white list method), the Web cache storage 20 capacity is reached or saved. There is a certain mitigation effect against the loss of cache data due to exceeding the period and the delay at the time of filtering at the first access through the corresponding access network.

  In the following description, it is assumed that the Web cache engine 10 holds a static URL filtering black list in advance, and that a user information inquiry is made before the site access request from the filtering target terminal 302 is transferred to the harmful site 202. It differs from the operation of the above-described embodiment in that a blacklist check based on completion and a filter policy is performed.

  The operation (steps E1 to E3) from the reception of the request for accessing the site via the access network 102 from the filtering target terminal 302 until the Web cache engine 10 inquires the user management system 40 about the user information is as described above. This is the same as steps D1 to D3 in the embodiment.

  In the Web cache engine 10 according to the present embodiment, the site access request transfer to the harmful site 202 is temporarily suspended, and the determination result return (step E4) by the user management system 40 similar to step D5 is confirmed. As in step D6, the Web cache engine 10 confirms that the terminal that has notified the site access request is the filtering target terminal 302 to be filtered (step E5). At the same time, the filter policy is checked in the same manner as in step D7. A target category is identified (step E6).

  Subsequently, the Web cache engine 10 performs a blacklist check according to the filter policy of the user Y (step E7), and if the access destination URL is included in the blacklist, transmits an access blocking screen to the filtering target terminal 302 (step S7). E8). On the other hand, if the access destination URL is not included in the black list as a result of the black list check (step E7), the site access request to the harmful site 202 once suspended is transferred (step E9).

  Thereafter, by performing the same procedure as steps D8 to D14 in the above embodiment, the filtering process is appropriately performed even when the address of the same content has been transferred.

  The white list may be used in the same manner as the black list, or both the white list and the black list may be used in combination.

  Each means that operates as a filtering system may be realized using a combination of hardware and software as described above. In a form in which hardware and software are combined, the main filtering program is expanded in the RAM, and hardware such as a control unit (CPU) is operated based on the program. The program may be recorded on a storage medium and distributed. The program recorded on the recording medium is read into a memory via a wired, wireless, or recording medium itself, and operates a control unit or the like. Examples of the recording medium include an optical disk, a magnetic disk, a semiconductor memory device, and a hard disk.

  The present invention may be additionally combined with existing systems. For example, from a mobile terminal or an analysis unit that determines whether or not an information processing device group (control unit) that operates as a filtering system in a mobile communication system is subject to filtering with respect to the contents of the cache, The access to the content is determined based on the user information of the mobile terminal and the cache information of the received content, and the owner user decides whether or not to access the content. A program that functions as filtering means may be provided.

  In addition, the filtering unit may process the content of the site where the determination result of whether or not to be a filtering target based on the determination by the analysis unit changes with time so as to be subjected to human determination. For example, a site that handles current affairs or the like may be automatically asked for confirmation by a site verifier or the like when it is difficult to determine only by the contents of individual contents.

  In addition, the filtering means can be used for content of a site whose determination result as to whether or not to be subject to filtering based on the determination by the analysis means such as the above site changes with time, or content that is difficult to determine automatically. When newly cached (at the first access), confirmation may be requested from the system to a user (filter non-target terminal) having a filtering policy that cannot be a filtering target. At this time, for the content, a Web screen for answering whether or not the user having a predetermined filtering policy should be filtered is generated and presented together with or after the content, and the response is filtered to the content. It should be reflected. For example, for mobile phones that are adults who have accessed the news site for the first time, “Do you think elementary school students can read this news?” Or “ You can filter for elementary school students according to their answers by asking questions such as “Do you want?” Or “Does this content contain XXX?” It is desirable to average the same number of questions by asking the same number of people. In this case, when a child accesses for the first time, filtering is performed, and after an appropriate answer has been collected, it may be determined whether or not to perform filtering for the child. Such an operation can also be performed by checking the presence or absence of a cache while checking user information reflecting a filtering policy for access to content via an access network.

  As described above, according to the filtering system to which the present invention is applied, filtering can be performed efficiently and effectively by the mother body that provides an access network such as a carrier or a provider. It can also provide filtering that complements existing technologies.

  It should be noted that the specific configuration of the present invention is not limited to the above-described embodiment, and changes within a range not departing from the gist of the present invention are included in the present invention. For example, a plurality of servers that operate as each of the above-described means may be performed with respect to one function, or a plurality of functions may be performed with one server.

In addition, a part or all of the above-described embodiments can be described as follows. Note that the following supplementary notes do not limit the present invention.
[Appendix 1]
User information management means for managing a user filtering policy as user information;
A storage means for storing information associated with the cache as cache information together with the fetched cache;
Analyzing means for determining whether or not the contents of the cache are subject to filtering and setting it as cache information;
The access to the content from the terminal is received via the access network, and the user information of the terminal and the cache information of the received content are acquired, and the content is transmitted to the user from the acquired user information and the cache information. Filtering means for deciding whether to be a filtering target, and filtering when filtering
A filtering system comprising:

[Appendix 2]
The cache taken into the storage means is used in common with the existing cache possessed by the carrier or provider,
The analysis means performs video analysis and / or audio analysis in addition to text analysis on the cache content that has been captured, and records the result in cache information attached to the cache. Filtering system.

[Appendix 3]
The filtering means performs URL filtering based on a blacklist and / or a whitelist in combination when receiving access to content from a terminal, and determines whether the content is targeted for filtering for a user of the terminal The filtering system according to the above supplementary note, wherein filtering is performed when the target is selected.

[Appendix 4]
When the filtering means receives access to uncached content from the terminal, the filtering means causes the analyzing means to determine whether or not the content is to be filtered, and the user information of the terminal and the content The filtering system according to the above supplementary note, wherein the filtering system determines whether the content is to be filtered from the cache information and performs filtering when the content is targeted.

[Appendix 5]
When the filtering unit receives access to uncached content from a terminal, the filtering unit preferentially determines the content and specifies an analysis method to be used for determination based on the user information. And determining whether or not the content has not been cached, and determining whether or not the content is to be filtered based on the result, and filtering when the content is targeted. The filtering system as described in the above supplementary note.

[Appendix 6]
The filtering means acquires and stores the top data of the content sent from the access request destination in order to check whether there is a difference between the content from the site accessed from the terminal and the stored cache. The filtering system according to the above supplementary note, wherein the corresponding portion of the cache is compared with the hash data, and it is determined whether or not the same is considered from the difference.

[Appendix 7]
The above-described additional description is characterized in that the filtering means processes the content of the site where the determination result of whether or not to be a filtering target based on the determination by the analysis means changes with time so as to be subjected to human determination. Filtering system.

[Appendix 8]
The filtering means may become a filtering target when content that has not been cached is newly cached with respect to the content of a site whose determination result of whether or not to be filtered based on the determination by the analyzing means changes with time. A web screen that allows a user having a filtering policy to answer whether the newly cached content should be filtered for a user having a predetermined filtering policy is generated together with the content or of the content. The filtering system according to the above supplementary note, which is presented later and the answer is reflected in the filtering of the content.

[Appendix 9]
For access to content from a terminal that determines whether to filter or not, accepted via the access network,
User information reflecting the filtering policy for the user of the terminal recorded and managed in advance, and the same content as the content when the past content is accessed via the access network are captured and stored in advance. Cache information reflecting the result of determining whether the cache contents are subject to filtering with respect to the cache being cached, and
A filtering method characterized in that, based on the acquired user information and the cache information, access control to the content is performed based on the filtering policy of the user and a discrimination criterion determined by an analysis result of the content in the cache data. .

[Appendix 10]
The captured cache is used in common with an existing cache that a carrier or provider has,
The filtering according to the above-mentioned supplementary note, wherein the analysis is performed by performing video analysis and / or audio analysis on the cache contents that have been captured in addition to text analysis and recording the result in cache information attached to the cache. Method.

[Appendix 11]
The filtering processing is performed by combining URL filtering based on a black list and / or a white list when receiving access to content from a terminal, and determining whether the content is targeted for filtering for a user of the terminal The filtering method according to the above supplementary note, wherein filtering is performed when the target is selected.

[Appendix 12]
When the filtering process receives an access to uncached content from a terminal, it analyzes and determines whether or not the content is a filtering target, and the user information of the terminal and the cache information of the content The filtering method according to the above supplementary note, wherein the content is determined as a filtering target for the user, and filtering is performed when the content is targeted.

[Appendix 13]
In the filtering process, when access to uncached content from a terminal is received, the content is preferentially determined, and an analysis method to be used for determination is specified based on the user information and cached. The filtering method according to the above-mentioned supplementary note, characterized in that determination is made on content that has not been made, the content is determined to be targeted for filtering by the user, and filtering is performed when the content is targeted. .

[Appendix 14]
The filtering process acquires and stores the top data of the content sent from the access request destination in order to check whether there is a difference between the content from the site accessed from the terminal and the stored cache. The filtering method according to the above supplementary note, wherein the corresponding portion of the cache and the hash data are compared and it is determined whether or not the same is considered from the difference.

[Appendix 15]
The above-described additional description is characterized in that the filtering processing is performed such that a determination result by a person is attached to a content of a site whose determination result as to whether or not to be a filtering target based on determination by content analysis changes with time. Filtering method.

[Appendix 16]
The filtering process cannot be a filtering target when content that has not been cached is newly cached with respect to the content of the site where the determination result of whether or not to be the filtering target based on the determination by the content analysis changes with time A Web screen is generated that allows a user having a filtering policy to answer whether or not the newly cached content should be filtered by a user having a predetermined filtering policy. The filtering method according to the above supplementary note, wherein the answer is presented and the answer is reflected in the filtering of the content.

[Appendix 17]
User information management means for managing a filtering policy for users as user information in a communication system that provides an access network; and storage means for storing information associated with the cache as cache information together with the fetched cache; Any control unit of the information processing apparatus group operating as a filtering system having
Analyzing means for determining whether or not the contents of the cache are subject to filtering and setting it as cache information;
The access to the content from the terminal is received via the access network, and the user information of the terminal and the cache information of the received content are acquired, and the content is transmitted to the user from the acquired user information and the cache information. Is determined as a filtering target, and functions as a filtering means for filtering when it is targeted.

[Appendix 18]
The cache taken into the storage means is used in common with the existing cache possessed by the carrier or provider,
The analysis means performs a video analysis and / or an audio analysis on the cache content that has been captured, in addition to text analysis, and records the result in cache information associated with the cache. The program described in the above supplementary notes.

[Appendix 19]
The filtering means performs URL filtering based on a blacklist and / or a whitelist in combination when receiving access to content from a terminal, and determines whether the content is targeted for filtering for a user of the terminal The program according to the above supplementary note, wherein the program is made to function so as to perform filtering when the target is selected.

[Appendix 20]
When the filtering means receives access to uncached content from the terminal, the filtering means causes the analyzing means to determine whether or not the content is to be filtered, and the user information of the terminal and the content The program according to the above-mentioned supplementary note, wherein the program determines whether or not the content is to be filtered from the cache information, and causes the function to perform filtering when the content is targeted.

[Appendix 21]
When the filtering unit receives access to uncached content from a terminal, the filtering unit preferentially determines the content and specifies an analysis method to be used for determination based on the user information. Then, the content that has not been cached is determined, and based on the result, the user decides whether or not the content is to be filtered, and functions to perform filtering when the content is targeted. A program as described in the above supplementary note.

[Appendix 22]
The filtering means acquires and stores the top data of the content sent from the access request destination in order to check whether there is a difference between the content from the site accessed from the terminal and the stored cache. The program according to the above-mentioned supplementary note, wherein the program is made to function so as to compare the corresponding portion of the cache with the hash data and determine whether or not it is considered to be the same from the difference.

[Appendix 23]
The filtering unit is configured to function so as to process a content of a site whose determination result as to whether or not to be a filtering target based on the determination by the analyzing unit changes with time so as to be subjected to a determination by a human. The program described in the above supplementary notes.

[Appendix 24]
The filtering means may become a filtering target when content that has not been cached is newly cached with respect to the content of a site whose determination result of whether or not to be filtered based on the determination by the analyzing means changes with time. A web screen that allows a user having a filtering policy to answer whether the newly cached content should be filtered for a user having a predetermined filtering policy is generated together with the content or of the content. The program as described in the above supplementary note, which is made to function later so that the answer is reflected in the filtering of the content.

  The present invention can be used for a filtering service provided by a provider that provides an Internet connection service or a carrier that provides a mobile communication service.

10 Web cache engine 20 Web cache storage 30 Content analysis system 31 Text analysis engine 32 Video analysis engine 33 Audio analysis engine 40 User management system 101 Internet 102 Access network 201 Website (general site, content not targeted for content filtering)
202 Website (harmful sites, content to be filtered)
301 terminal (user X terminal, non-filter target terminal)
302 terminal (user Y terminal, filter target terminal)

Claims (10)

User information management means for managing a user filtering policy as user information;
A storage means for storing information associated with the cache as cache information together with the fetched cache;
Analyzing means for determining whether or not the contents of the cache are subject to filtering, and setting the cache information;
Access to the content from the terminal is received via the access network, and the user information of the terminal and the cache information of the received content are acquired, and the content is transmitted to the user from the acquired user information and cache information. A filtering means for deciding whether or not to filter and filtering when it is targeted;
A filtering system comprising: The cache taken into the storage means is used in common with the existing cache possessed by the carrier or provider,
2. The analysis unit according to claim 1, wherein the analysis unit performs video analysis and / or audio analysis in addition to text analysis on the cache content that has already been captured, and records the result in cache information associated with the cache. Filtering system. The filtering means performs URL filtering based on a blacklist and / or a whitelist in combination when receiving access to content from a terminal, and determines whether the content is targeted for filtering for a user of the terminal The filtering system according to claim 2, wherein filtering is performed when the target is selected. When the filtering means receives access to uncached content from the terminal, the filtering means causes the analyzing means to determine whether or not the content is to be filtered, and the user information of the terminal and the content 4. The filtering system according to claim 2, wherein filtering is performed when the content is determined as a filtering target for the user based on cache information, and filtering is performed when the content is targeted. When the filtering unit receives access to uncached content from a terminal, the filtering unit preferentially determines the content and specifies an analysis method to be used for determination based on the user information. And determining whether or not the content has not been cached, and determining whether or not the content is to be filtered based on the result, and filtering when the content is targeted. The filtering system according to claim 4. The filtering means acquires and stores the top data of the content sent from the access request destination in order to check whether there is a difference between the content from the site accessed from the terminal and the stored cache. 6. The filtering system according to claim 2, wherein the corresponding portion of the cache and the hash data are compared and it is determined whether or not they are regarded as the same from the difference. 4. The filtering unit processes the content of a site whose determination result as to whether or not to be a filtering target based on the determination by the analysis unit changes with time so as to be subjected to human determination. The filtering system according to claim 6. The filtering means may become a filtering target when content that has not been cached is newly cached with respect to the content of a site whose determination result of whether or not to be filtered based on the determination by the analyzing means changes with time. A web screen that allows a user having a filtering policy to answer whether the newly cached content should be filtered for a user having a predetermined filtering policy is generated together with the content or of the content. The filtering system according to claim 7, wherein the filtering system is presented later and the response is reflected in filtering of the content. For access to content from a terminal that determines whether to filter or not, accepted via the access network,
User information reflecting the filtering policy for the user of the terminal recorded and managed in advance, and the same content as the content when the past content is accessed via the access network are captured and stored in advance. Cache information reflecting the analysis result that determines whether or not the contents of the cache are subject to filtering with respect to the cache being cached,
Based on the obtained said user information and said cache information, and filtering policies of the user, by the stated discrimination standard by the analysis result, and wherein <br/> to enforce access control to the content of the terminal Filtering method by information processing system . User information management means for managing a filtering policy for users as user information in a communication system that provides an access network; and storage means for storing information associated with the cache as cache information together with the fetched cache; Any control unit of the information processing apparatus group operating as a filtering system having
Analyzing means for determining whether or not the contents of the cache are subject to filtering, and setting the cache information;
The access to the content from the terminal is received via the access network, and the user information of the terminal and the cache information of the received content are acquired, and the content is transmitted to the user from the acquired user information and the cache information. Is determined as a filtering target, and functions as a filtering means for filtering when it is targeted.

Images