JP6296410B1 - Service management device - Google Patents

Abstract

The present invention relates to an Ads. Provided is a utilization service management device capable of easily obtaining a file for advertising seller certification such as txt. A utilization service management apparatus including a utilization service identification unit that identifies an external service to be used when a predetermined URL to be analyzed is accessed, and includes an external service identified by the utilization service identification unit. An extraction unit 22 for extracting an advertisement service, an ID acquisition unit 23 for acquiring an account ID assigned to the domain of the URL to be analyzed by the advertisement service for each advertisement service extracted by the extraction unit 22, and each advertisement extracted by the extraction unit 22 A service management apparatus comprising an advertisement seller certification file generation unit 20 having an advertisement seller certification file having a service domain and an account ID. [Selection] Figure 1

Description

  The present invention relates to a use service management apparatus.

  In recent years, the damage of advertisement fraud that impersonates the advertising space provider (publisher) and deceive the advertising fee has become serious. Therefore, in order to suppress such advertising fraud, the Ads. A mechanism for declaring authorized digital sellers using txt is spreading (see Non-Patent Document 1).

  Ads. The txt is a text file including an advertising service approved by the advertising space provider (that is, an advertising service such as SSP (Supply Side Platform) or an ad exchange) and an account ID of the advertising space provider in the advertising service. is there. Hereinafter, Ads. A file such as txt, that is, a file for declaring (or announcing) an advertisement service certified by the advertisement space provider and its account ID is called an advertisement seller certification file.

  In the advertisement distribution platform (DSP (Demand Side Platform)), when an advertisement provision request is received, the account ID included in the request and the advertising space provider (advertisement provision destination) Ads. The account ID included in txt is compared. As a result of this comparison, if the account IDs do not match, it can be determined that there is a possibility of advertising fraud, and it is possible to take measures such as not bidding.

"Ads.txt Specification Version 1.0.1", [online], September 2017, IAB Tech Lab, [October 30, 2017 search], Internet <URL: https://iabtechlab.com/wp-content /uploads/2017/09/IABOpenRTB_Ads.txt_Public_Spec_V1-0-1.pdf>

  In order to deal with the above-described mechanism, the advertising space provider, that is, the website operator who uses the advertising service, examines the advertising service used on its own website, and Queries his account ID, It is necessary to create txt. However, some websites may use a large number of advertising services, for example, 100 or more in order to increase advertising revenue. In the case of using such a large number of advertisement services, Ads. There is a possibility that the creation of txt takes a lot of time and there are many mistakes in description.

  In recent years, the advertisement technique has become complicated by using redirects, and therefore, there are many cases where an advertisement service that is not understood by the website operator is used. Further, the advertisement service being used is not always the same, and may be appropriately changed depending on the circumstances of the advertisement service provider. Therefore, Ads. There was a limit to manually creating txt.

  Therefore, the present invention relates to Ads. It is an object of the present invention to provide a use service management apparatus capable of easily obtaining an advertisement seller certification file such as txt.

  In order to solve the above-mentioned problem, the present invention is a usage service management apparatus including a usage service specifying unit that specifies an external service used when a predetermined URL to be analyzed is accessed. An extracting unit that extracts an advertising service from external services specified by the specifying unit; an ID acquiring unit that acquires an account ID assigned to the domain of the URL to be analyzed by the advertising service for each advertising service extracted by the extracting unit; A usage service management device comprising: an advertisement seller certification file generation section having a file generation section for generating an advertisement seller certification file having the domain and account ID of each advertisement service extracted by the extraction section; provide.

  According to the present invention, Ads. It is possible to provide a use service management apparatus that can easily obtain an advertisement seller certification file such as txt.

It is a schematic block diagram of the utilization service management apparatus concerning the 1st Embodiment of this invention. It is a figure which shows an example of an external service database. It is a figure which shows the example of a display of an analysis result. Ads. It is explanatory drawing explaining the format of txt. It is a flowchart which shows the control flow of the file production | generation part for advertisement seller authorization. It is a schematic block diagram of the utilization service management apparatus which concerns on the 2nd Embodiment of this invention. It is explanatory drawing explaining the display of the online privacy notice on a visitor terminal. It is explanatory drawing explaining interruption | blocking of an external service. Ads by redirect. It is explanatory drawing explaining acquisition of txt.

[Embodiment]
Hereinafter, embodiments of the present invention will be described with reference to the accompanying drawings.

(First embodiment)
FIG. 1 is a schematic configuration diagram of a use service management apparatus according to the first embodiment of the present invention. As shown in FIG. 1, the usage service management apparatus 1 includes a usage service specifying unit 10 and an advertisement seller certification file generation unit 20.

(Description of the use service specifying unit 10)
First, the use service specifying unit 10 will be described. The use service specifying unit 10 specifies an external service to be used when a predetermined analysis target URL is accessed. The external service is, for example, an advertisement service such as SSP (Supply Side Platform) or ad exchange, an analysis service such as access analysis, a data collection service, a web tool service, or an interaction service.

  The use service specifying unit 10 includes an analysis target URL receiving unit 2, an external request extracting unit 3, an external service database (external service DB) 4, a service specifying unit 5, and a result transmitting unit 6. The analysis target URL receiving unit 2, the external request extracting unit 3, the external service database 4, the service specifying unit 5, and the result transmitting unit 6 are mounted on the use service management server 100, and a CPU (Central Processing Unit), It is realized by appropriately combining a RAM (Random Access Memory) and a ROM (Read Only Memory), a HDD (Hard Disk Drive), software, an interface, etc., which are semiconductor memories.

  The analysis target URL receiving unit 2 receives the analysis target URL. In the first embodiment, the analysis target URL receiving unit 2 receives an analysis target URL from a user terminal 11 such as a personal computer, a smartphone, or a tablet via a network such as the Internet.

  In the first embodiment, a predetermined URL is assigned to the usage service management server 100, and a website (referred to as a usage service management website) can be provided to the user via the Internet. Yes. The user accesses the usage service management website from the user terminal 11 using an Internet browser, and inputs the URL to be analyzed, which is the URL of the website desired to be analyzed, from the input form of the usage service management website. . The analysis target URL receiving unit 2 receives the URL input in the above input form as the analysis target URL. Note that the method of transmitting the analysis target URL from the user terminal 11 to the use service management server 100 (analysis target URL receiving unit 2) is not limited to this.

  The external request extraction unit 3 accesses the analysis target URL received by the analysis target URL reception unit 2 and extracts a URL where access to a domain other than the domain of the analysis target URL occurs. More specifically, the external request extraction unit 3 accesses the analysis target server 12 that activates the Internet browser and provides the website of the analysis target URL. In addition, the external request extraction unit 3 monitors an HTTP request transmitted after accessing the analysis target server 12 and extracts a URL where access occurs from a message of the HTTP request. Further, the external request extraction unit 3 excludes the URL having the same domain as the analysis target URL from the extracted URL. As a result, the URL of the external service providing server 13 that is accessed when the URL to be analyzed is accessed is specified. Hereinafter, an access request to a domain other than the analysis target URL is referred to as an external request. The URL of the extracted external request is stored in a predetermined storage area in the memory of the use service management server 100.

  Although it is possible to extract the URL of the external request by extracting the URL included in the HTML source received from the URL to be analyzed, in this case, another external service is used in the script of the external service. When such a description is included, the other external service cannot be extracted. As in the present embodiment, by monitoring the message of the transmitted HTTP request, it is possible to extract another external service used in the external service as described above.

  The external request extraction unit 3 includes an external request occurrence count counter 31 that counts the number of times an external request has occurred (hereinafter referred to as an external request occurrence count). The external request occurrence count counted by the external request occurrence count counting unit 31 is stored in a predetermined storage area in the memory of the use service management server 100.

  As shown in FIG. 2, the external service database 4 stores the domain and path of the external service, the service name and the service type in association with each other, and is stored in advance in the memory of the service management server 100 used. Is stored in the storage area. Note that the URL is generally composed of a scheme, a domain, a path, a parameter, and a fragment. In the external service database 4, the path and the subsequent paths (path, parameter, and fragment) are represented by regular expressions. The service name represents the name of an external service such as an advertisement service or an access analysis service, and the service type represents the type of service such as an advertisement or access analysis. Although not shown in FIG. 2, in this embodiment, a service provider of an external service (a company name that provides an external service) is also stored in the external service database 4.

  The service specifying unit 5 refers to the external service database 4 and specifies a service name, a service type, and a service provider (hereinafter referred to as a service name) corresponding to the URL and domain of the URL of the external request extracted by the external request extraction unit 3. It is something to identify. The service specifying unit 5 stores the specified service name or the like in a predetermined storage area in the memory of the use service management server 100.

  When the service name corresponding to the domain and path of the URL of the external request does not exist in the external service database 4, the service specifying unit 5 sets the service name or the like as “under investigation”. The service specifying unit 5 may be configured to notify the administrator managing the service management apparatus 1 of the URL of the external request when the URL of the external request whose service name is unknown exists.

  In addition, the service specifying unit 5 includes a used service number counting unit 51 that counts the number of used external services. The number of used external services counted by the used service number counting unit 51 is stored in a predetermined storage area in the memory of the used service management server 100.

  The result transmitting unit 6 transmits the service name specified by the service specifying unit 5 to the user terminal 11. In the first embodiment, the result transmitting unit 6 counts the service name specified by the service specifying unit 5, the external request generation count counted by the external request generation count counting unit 31, and the used service count counting unit 51. The number of used external services is transmitted to the user terminal 11 as an analysis result.

  In the first embodiment, the result transmission unit 6 is configured to display the analysis result on the web page. An example of a web page displaying the analysis result is shown in FIG. The method in which the result transmission unit 6 transmits the analysis result to the user terminal 11 is not limited to this. In addition, in FIG. 3, the page reading time, the scan date and time that is the date and time when the service name is specified by the use service management device 1 are shown on the web page, but the items displayed on the web page can be changed as appropriate. The layout of the web page is not limited to the illustrated one. In addition, the URL or domain and path of the external request may be transmitted by the result transmitting unit 6, and the URL or domain and path of the external request may be displayed on the web page displaying the analysis result.

(Description of the file generation unit 20 for advertising seller authorization)
Next, the advertisement seller authorization file generation unit 20 will be described. The advertisement seller certification file generation unit 20 generates an advertisement seller certification file having the domain of the advertisement service being used and the account ID. Here, as an example, the file for advertising seller authorization is an Ads. Stipulated by IAB Tech Lab. The case of txt will be described. The present invention can also be applied to advertisement seller certification files other than txt. The advertisement seller authorization file generation unit 20 is, for example, an Ads. File installed on a web page that displays the analysis result described above. By clicking the txt generation button (link), the generation process of the advertisement seller certification file is started.

  FIG. It is explanatory drawing explaining the format of txt. As shown in FIG. In txt, basically, there is one combination of advertising service (SSP or ad exchange) domain (A in the figure), account ID (B in the figure), management type (C in the figure), and TAG ID (D in the figure). It has been described above. The account ID is an ID assigned by the advertising service to the website (domain) of the advertising space provider. The management type (service type) represents the relationship between the advertising service and the advertising space provider (ad sales form), and currently represents a transaction through an agency (RESELLER), or a direct One of (DITRECT) indicating a transaction is indicated. The TAG ID is an ID of an advertising service authenticated by a TAG (Trustworthy Accountability Group), which is a certificate authority, and has a one-to-one correspondence with the advertising service. The TAG ID is not essential and can be omitted.

  Returning to FIG. 1, the advertisement seller authorization file generation unit 20 includes a file reading unit 21, an extraction unit 22, an ID acquisition unit 23, a format check unit 24, a file generation unit 25, and a file transmission unit 26. ,have. The file reading unit 21, the extraction unit 22, the ID acquisition unit 23, the format check unit 24, the file generation unit 25, and the file transmission unit 26 are mounted on the use service management server 100, and are a CPU and a semiconductor memory. It is realized by appropriately combining RAM, ROM, HDD, software, interface and the like.

  The file reading unit 21 accesses the analysis target server 12 that provides the website of the analysis target URL, and the Ads. Read txt. Read Ads. txt is stored in a predetermined storage area of the use service management server 100.

  The extracting unit 22 extracts an advertisement service from the external services specified by the use service specifying unit 10. More specifically, the extraction unit 22 extracts, from the used external services specified by the service specification unit 5, those whose service type is an advertising service (SSP or ad exchange).

  The ID acquisition unit 23 acquires the account ID assigned to the domain of the URL to be analyzed by the advertising service for each advertising service extracted by the extracting unit 22. Specifically, the ID acquisition unit 23 acquires the URL of the advertisement service extracted by the extraction unit 22 from the URL of the external request stored by the external request extraction unit 3, and uses the account ID from the parameter description of the URL. To get. That is, the ID acquisition unit 23 acquires the account ID from the description of the URL parameter included in the HTTP request transmitted when accessing the URL to be analyzed.

  Some advertisement services do not include an account ID in the URL parameter description included in the HTTP request. Therefore, when the account parameter is not included in the URL parameter, the ID acquisition unit 23 acquires the account ID using an account ID database created and stored in advance. The account ID database is a database that is created for each advertisement service and stores the domain of the URL to be analyzed and the account ID in association with each other. The ID acquisition unit 23 may notify the usage service management server 100 when the account ID database does not include an account ID.

  Although not shown, the ID acquisition unit 23 has a TAG ID database in which the advertisement service domain and the TAG ID are stored in association with each other in advance. Get the TAG ID corresponding to the domain. In addition, Ads. Since TAG ID is not essential in txt, the TAG ID database can be omitted.

  Further, although not shown, the advertisement seller authorization file generation unit 20 may include a management type estimation unit that estimates the management type of each advertisement service. The management type estimation unit can estimate the management type by various methods such as estimating DIRECT when header bidding is performed in the analysis target URL. Since the management type is not estimated reliably, it is desirable that the user can check and change it (details will be described later).

  The format check unit 24 uses the Ads. A format check of txt is performed. In other words, the format check unit 24 acquires the acquired Ads. This is to check whether there is an error in the description of txt. The format check unit 24 uses # for the comment whether there is a description of all advertisement services extracted by the extraction unit 22, whether there is no description of unused advertisement services, or whether there is an error in the description of each advertisement service Check the format, etc. To check whether there is an error in the description of each advertisement service, check whether there is an error in the domain, account ID, and TAG ID. At this time, it is preferable to check an error using the account ID and TAG ID acquired by the ID acquisition unit 23.

  It should be noted that the file reading unit 21 uses Ads. If txt cannot be read, that is, in the URL to be analyzed, Ads. When txt is not set, the format check by the format check unit 24 is not performed.

  The format check unit 24 transmits the result of the format check to the user terminal 11 via the file transmission unit 26. In the first embodiment, the file transmission unit 26 displays Ads. txt is displayed, and the portion with an error in the description is displayed with a different color (for example, in red). In addition, the portion where the description is insufficient is also displayed in a state where the color is changed (for example, in blue) and added.

  The file generation unit 25 uses the Ads. txt is generated. In the first embodiment, on the web page on which the result of the format check is displayed, the user enters the Ads. txt can be corrected. Based on the content modified by the user, the file generation unit 25 uses the Ads. txt is generated.

  The Ads. txt is in a state in which the result of the format check can be transmitted to the user terminal 11 via the file transmission unit 26. For example, clicking the download button on the web page causes the file transmission unit 26 to generate the Ads. txt is transmitted (downloaded) to the user terminal 11. In addition, the file transmission unit 26 is not limited to this. The contents of txt may be displayed on the website. The user receives the Ads. By copying and pasting the contents of txt, the corrected Ads. txt can be obtained.

  In the file reading unit 21, Ads. When the txt cannot be read and the format check unit 24 has not performed the format check, the file generation unit 25 acquires the advertisement service domain (reference A in FIG. 4) extracted by the extraction unit 22 and the ID acquisition unit 23. Using the account ID (symbol B in FIG. 4) and TAG ID (symbol D in FIG. 4), a new Ads. Create txt. The file reading unit 21 sends the created Ads. The contents of txt are displayed on the website. At this time, on the web page, the user enters the Ads. txt can be modified. As for the management type of each advertising service (symbol C in FIG. 4), the management type estimated by the management type estimation unit described above may be described, but the user can select it on the web page (for example, a pull-down menu) Etc.) so that selection can be made using the This is because reliable estimation of the management type is difficult at present. Based on the content corrected or confirmed by the user, the file generation unit 25 uses the corrected Ads. txt is generated. The generated modified Ads. For example, txt is transmitted (downloaded) to the user terminal 11 by clicking a download button on the web page.

(Control flow of advertisement seller authorization file generation unit 20)
Next, a control flow of the advertisement seller authorization file generation unit 20 will be described. The advertisement seller authorization file generation unit 20 is, for example, an Ads. When the txt generation button (link) is clicked, the control flow of FIG. 5 is executed.

  First, in step S21, the file reading unit 21 receives the Ads. Read txt. In parallel with step S21, in step S22, the extraction unit 22 extracts the advertising service being used, and in step S23, the ID acquisition unit 23 sets the account ID and TAG ID for each advertising service. get. In addition, the process of step S21 and the process of step S22, 23 do not need to be performed in parallel and may be performed sequentially.

  Thereafter, in step S24, the advertisement seller authorization file generation unit 20 determines that the Ads. It is determined whether txt has been successfully read. If YES is determined in step S24, the format check unit 24 uses the ID data acquired in step S23 to read the Ads. The format of txt is checked, and the result is displayed on the web page via the file transmission unit 26, and the process proceeds to step S27. When it is determined NO in step S24, the file generation unit 25 determines that a new Ads. txt is generated, and the contents are displayed on the web page via the file transmission unit 26, and the process proceeds to step S27.

  In step S27, the format check result in step S25 or the Ads. Based on the contents of txt, the user performs confirmation / correction processing. When the confirmation / correction is completed, in step S28, the file generation unit 25 displays the corrected Ads. txt is generated. After that, in step S29, the file transmission unit 26 corrects the Ads. txt is transmitted to the user terminal 11 and the process is terminated.

  In this embodiment, the advertisement seller authorization file generation unit 20 is connected to an existing Ads. Although the description has been given of the case of having the function of checking the format of txt, this function is not essential. That is, the file reading unit 21 and the format check unit 24 can be omitted, and steps S21, S24, and S25 in FIG. 5 can be omitted.

(Operation and effect of the embodiment)
As described above, in the usage service management apparatus 1, the extraction service 22 extracts the advertising service from the external services specified by the usage service specification unit 10, and the advertising service is analyzed for each advertising service extracted by the extraction unit 22. An ID seller 23 that acquires an account ID assigned to the URL domain, and an advertisement seller certification file (here, Ads.txt) having the domain and account ID of each advertisement service extracted by the extractor 22 are generated. And an advertisement seller authorization file generation unit 20 having a file generation unit 25.

  This makes it possible to automatically generate a file for advertising seller certification (here, Ads.txt), which is compared with the case of manually creating a file for advertising seller certification. Can be easily obtained.

(Second Embodiment)
FIG. 6 is a schematic configuration diagram of the service management apparatus 1a according to the second embodiment of the present invention.

  The usage service specifying unit 10 in the usage service management apparatus 1a omits the result transmission unit 6 and uses the online privacy notice generation unit 7 and the online privacy notice in the usage service identification unit 10 in the first embodiment described above. A storage unit 8 and a CSP tag generation unit 9 are further provided. In the first embodiment, the external service being used is specified and transmitted to the user terminal 11 based on the URL to be analyzed input on the user terminal 11, but in the second embodiment, , Generate an online privacy notice for the website by identifying the external services used when accessing the registered website, and send the generated online privacy notice to the visitors to the website Is configured to do.

  Further, the advertisement seller authorization file generation unit 20 in the use service management apparatus 1a includes the file reading unit 21 and the format check unit 24 in the advertisement seller authorization file generation unit 20 in the first embodiment described above. While omitted, the advertisement store authorization file storage unit 27 is further provided. In the first embodiment, the Ads. txt was transmitted, but in the second embodiment, the generated Ads. txt is stored in the use service management server 100, and the Ads. txt can be referred to.

  Here, as an example, a case where a user website provided by the user server 14 is registered will be described. The user server 14 and the use service management server 100 are different servers.

(Description of the use service specifying unit 10)
A user 15 who manages the user server 14 uses a terminal such as a personal computer to access the usage service management website provided by the usage service management server 100 and use the usage service management apparatus 1a. The URL of a user website (a website that desires to generate online privacy notice) provided by the operator server 14 is registered (input and transmitted). The analysis target URL receiving unit 2 receives the URL of the user website registered through the use service management website.

  The usage service management device 1a identifies the service name of the external service being used by the external request extraction unit 3 and the service identification unit 5 based on the URL of the registered user website. The external request extraction unit 3 and the service specifying unit 5 are the same as those in the first embodiment, and thus description thereof is omitted here.

  The online privacy notice generating unit 7 stores the service name specified by the service specifying unit 5 in the online privacy notice storage unit 8 as an online privacy notice.

  The online privacy notice generation unit 7 includes a display tag generation unit 71 that generates a display tag for displaying the online privacy notice on the user website. The display tag generation unit 71 transmits the generated display tag to the user 15 (such as a personal computer of the user 15). The user 15 can display the online privacy notice by embedding the received display tag in the HTML of the user website and uploading it to the user server 14. The display tag includes a script code, and when the visitor visits the user website, accesses to the use service management server 100 and acquires / displays the online privacy notice.

  As shown in FIG. 7, when a user visits a user website, the visitor terminal 16 sends an HTTP request to the user server 14, and the user server 14 responds to this by displaying a display tag. HTML data in which is embedded is transmitted. In the visitor terminal 16, the received HTML data is read and executed, but the access to the service management server 100 is generated by the display tag embedded at this time, and the service management server 100 is online. Request transmission of privacy notices. In response to a request from the visitor terminal 16, the online privacy notice generation unit 7 of the use service management server 100 extracts and extracts the online privacy notice stored in the online privacy notice storage unit 8. The online privacy notice is transmitted to the visitor terminal 16. Thereby, the online privacy notice of the user website (a list of service names of external services used when accessing the user website) is displayed on the visitor terminal 16.

  By the way, the external services used when accessing the website are not always the same, and the external services used may increase or decrease or may be changed to other external services. Therefore, it is desirable to update the online privacy notice every predetermined period (for example, every few days). That is, the online privacy notice generation unit 7 is configured to repeatedly execute identification of a service name or the like by the external request extraction unit 3 and the service identification unit 5 and update the online privacy notice every predetermined period. It is more desirable.

  In addition, the use service management apparatus 1a has a function of prohibiting access to a specific external service (blocking the external service). Specifically, the service management apparatus 1a uses a content security policy (Content-Security-Policy) defined by the World Wide Web Consortium (W3C) to prohibit access to a specific external service. Is further provided with a CSP tag generation unit 9 for generating a tag (hereinafter referred to as CSP tag).

  The CSP is originally intended to detect and mitigate attacks such as cross-site scripting. In the second embodiment, the CSP is specified by using the CSP function that can limit the domain of the content to be acquired. The external service of is blocked.

  The CSP tag generation unit 9 receives an external service desired to be blocked from the user 15 (such as the personal computer of the user 15). The CSP tag generation unit 9 generates a CSP tag including a script code for adding a CSP that prohibits access to the domain of the external service desired to be blocked to the user website, and uses the generated CSP tag as the user 15 (user 15 To a personal computer). The user 15 embeds the received CSP tag in the HTML head of the user website and uploads it to the user server 14.

  In the present embodiment, the CSP tag generation unit 9 stores the CSP content (including a specific description of the CSP such as a domain for which content acquisition is permitted) in the CSP content storage unit 9a, and the CSP tag The content of the CSP is transmitted to the visitor terminal 16 in response to a request from the visitor terminal 16. As a result, even if the domain for which content acquisition is permitted is changed, it is possible to respond by simply updating the content of the CSP within the use service management server 100, and the user 15 can change the HTML of the user website. This saves the trouble of changing and uploading, and improves convenience.

  There is no particular limitation on the method of receiving an external service desired to be blocked from the user 15 (user 15's personal computer or the like). For example, a dedicated management screen for the user 15 is provided on the web page. Alternatively, an external service that permits access (or an external service that does not permit access) may be selected on the management screen. In this case, the CSP tag generation unit 9 updates the content of the CSP stored in the CSP content storage unit 9a in accordance with an operation on the management screen.

  As shown in FIG. 8, when a user visits a user website, the visitor terminal 16 sends an HTTP request to the user server 14, and the user server 14 responds to the request by the CSP tag. HTML data in which is embedded is transmitted. In the visitor terminal 16, the received HTML data is read and executed, but the access to the service management server 100 is generated by the embedded CSP tag, and the CSP tag is sent to the service management server 100. Request transmission of content. In response to a request from the visitor terminal 16, the CSP tag generation unit 9 of the use service management server 100 transmits the content of the CSP stored in the CSP content storage unit 9a to the visitor terminal 16. Thereby, CSP is applied in the visitor terminal 16, and access to the specific external service provision server 13 from the visitor terminal 16 is prohibited according to the content of CSP. As a result, the external service provided by the external service providing server 13 whose access is prohibited (blocking desired external service) is blocked.

  According to the second embodiment, the website operator can grasp the external service used when accessing his / her own website. In addition, it is possible to enhance the privacy policy by making available external services available to visitors as online privacy notices. In addition, it is possible to block an external service that is not desired to be used by a simple operation of transmitting a block request external service and embedding the received CSP tag in HTML.

  In the second embodiment, the content of the CSP is stored in the usage service management server 100. However, the present invention is not limited to this, and the content of the CSP may be included in the CSP tag. In this case, the user 15 can block unnecessary external services by the CSP by embedding and uploading the received CSP tag as a meta tag in HTML of the user website. However, in this case, every time the content of the CSP is changed, that is, every time an external service that permits access is changed, the user 15 needs to upload the content of the CSP again.

  In the second embodiment, the case where the user 15 blocks an external service desired to be blocked has been described. However, the present invention is not limited to this, and the CSP tag generation unit 9 lists safe external service domains. A CSP that has an up-to-date white list and permits access only to the domains listed in the white list may be generated.

(Description of the file generation unit 20 for advertising seller authorization)
Returning to FIG. 6, in the second embodiment, the file transmission unit 26 of the advertisement seller authorization file generation unit 20 uses the Ads. txt is stored in the advertisement seller authorization file storage unit 27. The file transmission unit 26 transmits an advertisement seller authorization file to the DSP in response to a request from a DSP (Demand Side Platform) which is an advertisement distribution side platform.

  In the second embodiment, the Ads. At txt, the access service management server 100 is accessed and the Ads. A command (redirect command) for acquiring txt is set. Hereinafter, the Ads. In order to distinguish it from txt, the Ads. txt is a dummy Ads. Called txt.

  As shown in FIG. In the DSP 17 corresponding to txt, Ads. txt is acquired in advance. At that time, the dummy Ads. txt is accessed, the service management server 100 designated as the redirect destination is accessed, and the Ads. Request txt. Ads. From DSP17. The file transmission unit 26 that has received the request for txt receives the Ads. txt is transmitted to the DSP 17. When the DSP 17 receives a request for providing an advertisement to the user website, the DSP 17 receives the Ads. The account ID included in txt is compared with the account ID included in the advertisement provision. If they match, a bid is permitted, and if they do not match, a bid is not permitted because there is a possibility of advertising fraud.

  As described above, the external services used when accessing the website are not always the same, and the external services used may increase or decrease or may be changed to other external services. Therefore, every predetermined period (for example, every few days), Ads. It is desirable to perform a txt update. In other words, the advertisement seller authorization file generation unit 20 generates the Ads .. by the extraction unit 22, the ID acquisition unit 23, and the file generation unit 25 every predetermined period. The generation of txt is repeatedly executed, and Ads. It is more desirable to be configured to do txt.

  In the second embodiment, since external services accessible by the CSP are limited, the Ads. In txt, only the advertising service to which access is permitted needs to be described. Therefore, the extraction unit 22 of the advertisement seller authorization file generation unit 20 may be configured to extract only the advertisement service among the external services that permit access set in the CSP tag generation unit 9.

  In the second embodiment, even if the external service to be used is changed, the Ads. It becomes possible to cope with the situation only by updating the contents of txt, and the user 15 adds Ads. It is possible to save the trouble of changing and uploading txt, and the convenience can be improved.

  As mentioned above, although embodiment of this invention was described, these embodiment is only an example and does not limit the invention which concerns on a claim. These novel embodiments can be implemented in various other forms, and various omissions, replacements, changes, and the like can be made without departing from the scope of the present invention. In addition, not all the combinations of features described in these embodiments are essential to the means for solving the problems of the invention. Furthermore, these embodiments are included in the scope and gist of the invention, and are included in the invention described in the claims and the equivalents thereof.

DESCRIPTION OF SYMBOLS 1 ... Utilization service management apparatus 2 ... Analysis object URL receiving part 3 ... External request extraction part 4 ... External service database 5 ... Utilization service specific part 10 ... Utilization service specific part 20 ... Advertising seller authorization file generation part 21 ... File reading Unit 22 ... Extraction unit 23 ... ID acquisition unit 24 ... Format check unit 25 ... File generation unit 26 ... File transmission unit 100 ... Usage service management server

Claims (6)

A usage service management device comprising a usage service specifying unit for specifying an external service used when accessing a predetermined URL to be analyzed;
An extraction unit for extracting an advertisement service from the external services specified by the use service specifying unit, and an ID acquisition for acquiring an account ID assigned to the domain of the URL to be analyzed by the advertisement service for each advertisement service extracted by the extraction unit A file generation unit for generating an advertisement seller certification having a domain and an account ID of each advertisement service extracted by the extraction unit,
Use service management device. The advertisement merchant certification file is an Ads. txt,
The use service management apparatus according to claim 1. The use service specifying unit
An analysis target URL receiving unit for receiving the analysis target URL;
An external request extraction unit that accesses the URL to be analyzed and extracts a URL where access to a domain other than the domain of the URL to be analyzed occurs;
A service specifying unit that specifies an external service being used based on the URL extracted by the external request extraction unit;
The utilization service management apparatus according to claim 1 or 2. The ID acquisition unit acquires an account ID from a description of a URL parameter included in an HTTP request transmitted when the URL to be analyzed is accessed;
The use service management apparatus according to any one of claims 1 to 3. The usage service specifying unit and the advertisement seller certification file generation unit are mounted on a usage service management server,
The usage service specifying unit receives the URL to be analyzed from a user terminal,
The advertisement seller certification file generation unit includes a file transmission unit that transmits the advertisement seller certification file generated by the file generation unit to the user terminal.
The utilization service management apparatus according to any one of claims 1 to 4. The URL to be analyzed is a URL of a user website provided by the user server,
The usage service specifying unit and the advertisement seller certification file generation unit are mounted on a usage service management server,
The advertisement seller certification file generation unit stores the advertisement seller certification file generated by the file generation unit, and in response to a request from the advertisement distribution platform, the advertisement distribution to the advertisement distribution platform Having a file transmission unit for transmitting a file for authenticating a user
The utilization service management apparatus according to any one of claims 1 to 4.

Images