JP6478252B1 - Mail transmitting apparatus, verification system, mail transmitting method and program - Google Patents

Abstract

Provided is a mail transmission device capable of reducing a burden on a user when using a plurality of mail addresses. In a verification system 1A, a mail transmission device 10A associates with a user identification information in advance a mail address generation means 12A that generates a generated mail address that is a mail address associated with user identification information for identifying a user. A registered mail address, a mail address extracting unit 14A for extracting a generated mail address associated with the user identification information, a transmitting unit 15A for transmitting a mail having the same contents to the registered mail address and the generated mail address, Is provided. [Selection] Figure 12

Description

  The present invention relates to a mail transmission device, a verification system, a mail transmission method, and a program.

  In recent years, fraudulent acts (so-called fraudulent acts that send fraudulent e-mails from financial institutions, access fake WEB site addresses displayed in these e-mails, and scam PINs, passwords, credit card numbers, etc. Phishing) is on the rise.

In order to prevent such phishing, the first link information included in the e-mail body when the operation on the user interface satisfies a predetermined first condition different from the operation for instructing connection to another WEB site. Discloses a terminal device that requests the verification of the safety of the link destination indicated by, and displays the display information corresponding to the verification result together with the second link information indicating another link destination different from the first link information. (For example, Patent Document 1).
According to such a terminal device, the safety of the link destination can be confirmed without performing an access operation to the link destination described in the e-mail.

JP, 2015-103078, A

  However, WEB sites that perform cheating are becoming more sophisticated every day, and it has become difficult to verify the safety of WEB sites that perform all cheating. On the other hand, if the level of security for ensuring safety is increased, it is not a WEB site that conducts fraudulent activities, but is determined to be a WEB site that conducts fraudulent activities despite the link information to the legitimate WEB site. However, there is a problem in that it is impossible to access a regular WEB site and the convenience of the user is impaired.

  Such a problem is caused by the fact that it is impossible to determine whether the user who received the mail is a mail from a legitimate person (for example, a financial institution or the like) or a mail from a person disguised as a legitimate institution. For this reason, it is desired not to verify the safety of the WEB site displayed in the mail but to improve the reliability of the mail transmitted from a legitimate institution (for example, a financial institution or the like).

  In order to solve such problems, the applicant must register two email addresses with financial institutions, send important notices and campaigns to both addresses, and compare the contents of the two emails. Has filed a patent application for an invention that confirms that the e-mail is certainly sent from a financial institution or the like. The present invention has an advantageous effect because it is extremely unlikely that two addresses will leak at the same time, and a malicious mail that transmits the same content at the same time cannot be considered.

  However, the above-described invention imposes an unprecedented burden on the user in that one extra mail address must be registered in addition to the conventional contact address registration.

  In view of the above problems, the present invention has an object to provide a mail transmission device, a verification system, a mail transmission method, and a program that can reduce the burden on the user when a plurality of mail addresses are used. .

  In order to solve the above-described problems, the mail transmission device of the present invention provides the following solution.

(1) A mail transmitting device connected to a user terminal via a network and transmitting mail to the user terminal, and generates a generated mail address that is a mail address associated with user identification information for identifying the user. E-mail address generating means, a registered e-mail address previously associated with the user identification information, an e-mail address extracting means for extracting the generated e-mail address associated with the user identification information, the registered e-mail address, And a transmission means for transmitting a mail having the same contents to the generated mail address.

(2) In the configuration of (1), the e-mail address generating unit generates a different generated e-mail address each time the transmitting unit transmits e-mail to the user terminal.

(3) In the configuration described in (1) or (2) above, providing the user terminal with generated mail address information that is information for displaying the mail addressed to the generated mail address on the user terminal A means is further provided.

(4) In the configuration of any one of (1) to (3) above, the registered mail addressed to each user instead of the mail of the financial institution server transmitting the mail addressed to the generated mail address Means for storing the contents of the mail addressed to the address, and in response to a reference request from the user, at least one of the title of the mail, the summary, and the mail itself can be referred to in each format. And means.

(5) A verification system for verifying a mail transmission source, including the mail transmission device according to (3) and the user terminal, wherein the transmission unit of the mail transmission device generates the generation Mail address information is transmitted to the user terminal, and the user terminal receives a mail addressed to the generated mail address on the user terminal based on the receiving means for receiving the generated mail address information and the generated mail address information. And setting means for setting to be displayable.

(6) In the configuration of (5), the apparatus further includes an identity determination device that is connected to the user terminal via a network and determines whether or not the contents of a plurality of mails transmitted to the user terminal are the same. The user terminal further comprises a transfer means for transferring the plurality of mails to the identity determination device when a plurality of emails satisfying a predetermined condition are received, wherein the identity determination device Transfer mail receiving means for receiving the plurality of mails transferred from the terminal, determination means for determining whether the contents of the plurality of mails received by the transfer mail receiving means are the same, and contents of the plurality of mails Verified mail generating means for generating a verified mail indicating that the mail has been verified, and the verified mail for transmitting the verified mail to the user terminal. Characterized in that it comprises a Lumpur transmitting means.

(7) A mail transmission method executed by a mail transmission apparatus connected to a user terminal via a network and transmitting mail to the user terminal, wherein the mail address is associated with user identification information for identifying the user. Generating a generated e-mail address; registering e-mail address previously associated with the user identification information; extracting the generated e-mail address associated with the user identification information; the registered e-mail address; And transmitting a mail having the same contents to the generated mail address.

(8) A program that causes a computer to execute the steps described in (7) above.

  According to the present invention, it is possible to provide a mail transmission device, a verification system, a mail transmission method, and a program that can reduce the burden on the user when using a plurality of mail addresses.

It is a figure explaining the basic concept of the verification service by the verification apparatus in the verification system to which this invention is applied. It is a figure which shows the example of transmission of the mail in the 1st Embodiment of this invention. It is a figure which shows the advertisement mail transmission process flow in the 1st Embodiment of this invention. It is a figure which shows the secret mail transmission process flow in the 1st Embodiment of this invention. It is a figure which shows the function structure of the verification apparatus and user terminal in the 2nd Embodiment of this invention. It is a figure which shows typically the data stored in user DB in the 2nd Embodiment of this invention in a table format. It is a figure which shows the verification processing flow which the verification apparatus in the 2nd Embodiment of this invention performs. It is a display example of the mail displayed on one user terminal based on the verification information extracted by the verification information extraction means in the second embodiment of the present invention. It is the example of a screen displayed as a verification result of two mails, and the example of a screen displayed when it accesses by completed URL. It is another example of a display of the mail displayed on the other user terminal based on the verification information extracted by the verification information extraction means in the second embodiment of the present invention. It is a figure explaining the concept of the mail transmission service by the mail transmission apparatus in the verification system in the 3rd Embodiment of this invention. It is a figure which shows the function structure of the mail transmission apparatus, user terminal, and identity determination apparatus in the verification system in the 3rd Embodiment of this invention. It is an example which shows an example of the production | generation mail address information provided by the provision means in the 3rd Embodiment of this invention. It is an example which shows an example of the verified mail produced | generated by the verified mail production | generation means in the 3rd Embodiment of this invention. It is a figure which shows the mail transmission process flow which the mail transmission apparatus which concerns on embodiment of this invention performs. It is a figure which shows the mail transfer processing flow which the user terminal which concerns on embodiment of this invention performs. It is a figure which shows the identity determination processing flow which the identity determination apparatus which concerns on embodiment of this invention performs.

  DESCRIPTION OF EMBODIMENTS Hereinafter, embodiments for carrying out the present invention (hereinafter referred to as embodiments) will be described in detail with reference to the accompanying drawings. In the subsequent drawings, the same numbers or symbols are assigned to the same elements throughout the description of the embodiments. In the functional configuration diagram, an arrow between functional blocks represents a data flow direction or a process flow direction.

(Basic concept)
FIG. 1 is a diagram for explaining a basic concept of a verification service by a verification device 10 in a verification system 1 to which the present invention is applied. The verification system 1 is a system for verifying that a mail transmission source is a legitimate business operator. For example, it is a system for protecting a user from a so-called phishing scam in which an email disguised as a financial institution or the like used by the user is transmitted and the user's information is obtained by unauthorized means.

  In the verification system 1, a verification device 10 (transmission server) that enables a user himself to verify that a mail transmission source is an authorized person and a user terminal 20 (20A, 20B) are connected via a network. ing. The verification device 10 is managed by a person who provides a financial transaction using the Internet, such as a financial institution. The plurality of user terminals 20 (20A, 20B) are terminals operated (owned or owned) by one user. The mail transmission source extracts two or more mail addresses of the user from the mail address storage unit 100, and transmits the same mail to the plurality of extracted mail addresses at approximately the same time. A user who receives a plurality of the same mails received at a plurality of mail addresses at approximately the same time at different mail addresses can determine that the sender is likely to be a legitimate person. In the following description, “a plurality of identical mails” refers to the same mails received or transmitted to a plurality of mail addresses at approximately the same time unless otherwise described.

  The “mail” here includes a message by a short message service (SMS) and a message by a chat type message service (messenger). Hereinafter, two embodiments of the present invention will be described in detail.

  In the following description of the embodiments, one user is a plurality of user terminals 20 (20A, 20B) (for example, one terminal is a smartphone and the other terminal is a PC), and a plurality of different mail addresses. Although an example of receiving mail will be described, the present invention is not limited thereto, and a plurality of mails having different mail addresses may be received by one user terminal 20.

(First embodiment)
The first embodiment will be described below. In the first embodiment of the verification system 1 described above, the verification device 10, as shown in FIG. 2 (a), sends two emails having exactly the same content (same text) to the two different senders registered by the user. Send to the email address (sato01@aaa.jp and sato01@bbb.jp). Examples of phishing emails include notifications and notifications of advertisements, campaigns, important notices, etc. by direct mail (DM). In particular, emails that ask for payment of money and appeal to legal means if there is no payment, emails that require password updates, emails that promptly enter personal information, etc. are highly likely to be phishing scams. Cost. As described above, if two mails having the same contents as the direct mail are sent, the user can easily confirm that the sender is a legitimate partner who registered the mail address.

  At this time, the transmission source acquires (extracts) a plurality of mail addresses of the destination user prior to mail transmission. A plurality of such e-mail addresses are registered in advance in a user DB (for example, a user DB managed for each user) 100, which is an example of an e-mail address storage unit that is associated with a user and secures security. The mail address is extracted from the storage means.

  FIG. 2B does not send a mail with the same sentence to the user, but includes a “password” in each mail. That is, the transmission source transmits a message including a secret in the subject of the mail or a URL (Uniform Resource Locator) in the text. The secret word here is to be understood only by checking the other mail. That is, each transmitted two mails include a pair of words that are secret words, and are completed as secret words only when the user receives both mails. For example, if “mountain” is included in the subject of email A, the text of email A cannot be confirmed unless the user inputs “river” contained in the subject of email B as the subject of email A. To do. Similarly, if “mountain” is included in the URL of the text of the mail A, the URL cannot be opened unless the user inputs “river” included in the URL of the mail B. The same applies when opening mail B. However, it is desirable that the actual secret word is not such a simple one, and it is desirable that others do not even know that it is a secret word.

(Processing flow of the first embodiment)
FIG. 3 is a schematic flow diagram of the simplest advertisement mail transmission process. In step S1, the first and second mail addresses of the user are extracted, in step S2, the advertisement URL is transmitted to the first mail address, and in step S3, the same mail is transmitted to the second mail address.

  FIG. 4 is a schematic flow of mail transmission processing including a secret word. Here, in step S1A, the first mail address is extracted from the first mail address DB, and in step S1B, the second mail address is extracted from the second mail address DB. If the e-mail addresses are managed by separate storage means in this way, the safety is further increased.

  Next, in step S2, a password (word pair) determined in advance between the user and the sender is extracted and inserted into the mail contents (subject, URL in the mail text, or any other location in the mail text). To do. That is, the verification device 10 includes a secret word insertion unit. The password extraction destination may be different from the mail address DB.

  In step S3A, a mail including a password URL including, for example, one password in the URL is transmitted to the first mail address. In step S3B, the password that forms the other pair is transmitted to the second mail address. A mail containing a secret URL in which the URL is included in the same URL is transmitted. The reason why Step S3A and Step S3B are parallel processing is to indicate that two mails are transmitted at approximately the same time.

  As described above, a plurality of mails are transmitted at substantially the same time, but a companion mail (address (To), CC (Carbon Copy), BCC (Blind Carbon Copy), etc.) includes a plurality of mail addresses of the same user. Emails in separate steps. Therefore, as a condition for determining invalidity as verification means (validation invalidation condition), mail that is not sent at almost the same time or sent by sibling mail is invalid even if it contains a secret word. And Note that the email address of the sender may be the same or different.

  Although not shown in the drawings, the first embodiment may provide means for allowing the user to view the transmission record (transmission history database) for the transmission source user. In this way, the user can confirm that both emails are surely sent from a legitimate sender.

(Second Embodiment)
Hereinafter, the second embodiment will be described in more detail. In the first embodiment, it is assumed that the transmission source unilaterally sends mail to the user. However, in the second embodiment, it is assumed that the user who has received the mail verifies the transmission source. . In addition, although description common to 1st Embodiment is also included in part, 1st Embodiment and 2nd Embodiment may be implemented independently and you may implement combining both. .

  In the second embodiment, the verification apparatus 10 transmits “verification information” for allowing the user to verify the transmission source to the plurality of extracted mail addresses and transmits the mail to the user terminal 20. That is, the verification device 10 transmits a plurality of types of verification information that are displayed in different manners on the user terminal 20 to a plurality of mail addresses. Here, the plurality of “verification information” may be obtained by dividing the URL of a regular homepage into two, for example. That is, by combining the verification information A and the verification information B, information indicating the URL of the regular homepage is obtained as one completed content. The “password” in the first embodiment is also a kind of verification information. Further, in the present embodiment, information for confirming verification (in the above example, information indicating the URL of a regular homepage) is also referred to as verification confirmation information by combining a plurality of such verification information with each other. .

  In the user terminal 20, for example, when a plurality of different types of verification information as described above are received at a plurality of e-mail addresses registered in advance, the user can combine the plurality of verification information with each other. Verification confirmation information can be obtained. For example, if the verification confirmation information is the URL of a legitimate homepage, the user verifies the verification information by accessing the address.

  According to the second embodiment, for example, even if a user receives a mail addressed to a certain mail address with a name such as a financial institution and urged to access the displayed address, two mails are received. Since the verification information is not distributed in the address, it is possible to easily determine whether this mail is from a financial institution or the like, or is an impersonation of the financial institution. Therefore, it is possible to confirm the credibility that the mail has been transmitted from a legitimate institution (for example, a financial institution or the like).

  FIG. 5 is a diagram illustrating a functional configuration of the verification device 10 and the user terminal 20 in the verification system 1 according to the second embodiment. The verification device 10 includes a verification request receiving unit 11, an email address extracting unit 12, a verification information extracting unit 13, a verification information transmitting unit 14, a verification unit 15, and a user database (hereinafter referred to as user DB) 100. Prepare.

  The verification request receiving unit 11 receives verification request information for requesting verification from the user terminal 20. The verification request information is information transmitted from the user terminal 20 when requesting verification that the user is a regular user in a money transaction on a regular homepage of a financial institution or the like that manages the verification system 1, for example. is there. Such verification request information is associated with information indicating that verification is requested, user identification information for identifying the user, and the like.

  The mail address extracting unit 12 refers to the user DB 100 and extracts a plurality of different mail addresses associated with one user identification information for identifying the user who has transmitted the verification request information from the user terminal 20.

  FIG. 6 is a diagram schematically showing data stored in the user DB 100 in a tabular format. The user DB 100 includes a plurality of (for example, two in the example shown in FIG. 6) mail addresses and a plurality of user IDs for verifying the transmission source in the verification unit 15 as one user identification information for identifying the user. The verification information is associated with each other. Note that the verification information illustrated in FIG. 6 indicates a mode displayed on the user terminal 20.

  The plurality of pieces of verification information are preferably combined with each other to become verification confirmation information that is information for confirming the verification. Further, it is desirable that the plurality of pieces of verification information become information indicating one content by being combined with each other. In the example illustrated in FIG. 6, one piece of verification information associated with the two mail addresses of the user ID (sato01) is “https://www.abank.co.jp/AAA”. “AAA” in the verification information indicates that it is replaced with another character string or the like. The other verification information associated with each of the two mail addresses is associated with “OOO” to be replaced with “AAA”. Then, by replacing “AAA” with one verification information “OOO” in one verification information “https://www.abank.co.jp/AAA”, for example, a financial institution managing the verification system 1 This is the URL of a page for confirming the user's verification on a regular homepage such as. That is, by combining one verification information and the other verification information, verification confirmation information that is information for confirming verification is obtained, and by combining each other, information indicating one content is obtained.

  In the example illustrated in FIG. 6, in the user DB 100, different verification information is associated with each of a plurality of mail addresses. However, the present invention is not limited to this, and different verification information is not stored in advance, but is changed every time it is transmitted to the user terminal 20 such as a one-time password (for example, user verification is performed). The URL of the page for confirmation may be changed).

  Returning to FIG. 5, the verification information extraction unit 13 refers to the user DB 100 and extracts verification information. Further, as described above, the verification information extraction unit 13 extracts a plurality of types of verification information that are displayed in different manners in the user terminal 20. Further, the verification information extraction unit 13 extracts a plurality of types of verification information that becomes verification confirmation information that is information for confirming the verification by combining them. Further, the verification information extraction unit 13 extracts a plurality of types of verification information that becomes information indicating one content by being combined with each other.

  The verification information transmitting unit 14 indicates the plurality of verification information extracted by the verification information extracting unit 13 to the plurality of email addresses extracted by the email address extracting unit 12 in the contents of the emails, respectively, and at approximately the same timing, the user terminal 20 Send to.

  The verification unit 15 verifies the transmission source based on the access from the user terminal 20 based on verification confirmation information obtained by combining a plurality of types of verification information. For example, according to the example illustrated in FIG. 6, the user combines the plurality of pieces of verification information transmitted from the verification information transmission unit 14 with the user terminal 20 to obtain verification confirmation information, and the URL indicated by the verification confirmation information To access. As a result, the verification unit 15 verifies the transmission source.

(Configuration of user terminal 20)
The user terminal 20 is composed of devices suitable for each user (for example, portable terminals, smartphones, tablet terminals, car navigation systems, personal computers, game devices, TVs that can be connected to a network, information appliances such as refrigerators, etc.). Yes. The user terminal 20 may be a device as described above, or may be a control device capable of communicating information with the plurality of devices via a local network such as a home. The user terminal 20 may be an ATM (automatic teller machine) that is installed in a store and can be operated by the user.

  The user terminal 20 includes user terminal transmission / reception means 21, user terminal control means 22, and user terminal input / output means 23. The user terminal transmission / reception means 21 transmits verification request information to the verification apparatus 10 under the control of the user terminal control means 22 and receives verification information from the verification apparatus 10 by mail. The user terminal 20 may receive a plurality of pieces of verification information by a plurality of units, and if a single unit can receive mails addressed to a plurality of mail addresses, a plurality of pieces of verification information may be received. You may receive each by the mail addressed to.

  The user terminal control unit 22 transmits verification request information to the verification device 10 based on a user operation in the user terminal input / output unit 23, and sends the verification information indicated in the mail from the verification device 10 to the user terminal input / output unit 23. The user's operation is received, and the verification of the verification device 10 is confirmed by the verification confirmation information.

(Processing flow of the second embodiment)
FIG. 7 is a diagram showing a verification processing flow executed by the verification apparatus 10 according to the embodiment of the present invention. Such a verification process flow shows a verification method executed by the verification apparatus 10.

  In step S <b> 1, the verification request receiving unit 11 receives verification request information for requesting verification from the user terminal 20.

  In step S2, the mail address extracting unit 12 refers to the user DB 100, and a plurality of different mail addresses associated with one user ID for identifying the user who transmitted the verification request information from the user terminal 20 in step S1. To extract. Note that when not contacting the user from the verification request from the user, for example, when contacting the user from the financial institution side or the like, step S1 is omitted, and the user DB 100 is referred to and the user IDs of the users to be contacted are associated with each other. A plurality of different mail addresses may be extracted.

  In step S3, the verification information extraction unit 13 refers to the user DB 100, associates with the user ID of the user who transmitted the verification request information from the user terminal 20 in step S1, and confirms the verification by matching with each other. A plurality of types of verification information that is verification confirmation information, which is information of the above, is extracted.

  In step S4, the verification information transmission unit 14 sends the plurality of verification information extracted by the verification information extraction unit 13 in step S3 to the mail addresses extracted by the mail address extraction unit 12 in step S2, respectively. It transmits to the user terminal 20 at almost the same timing.

  FIG. 8 shows a display example of two mails respectively received by the user terminals 20A and 20B, which are two terminals possessed by the user, based on the verification information extracted by the verification information extraction means 13.

  FIG. 8 (a) shows one mail addressed to a plurality of mail addresses extracted by the mail address extracting means 12 in step S2 by the process of step S4 shown in FIG. 7, and the verification information A is received by the user terminal 20A. It is displayed. As shown in FIG. 8A, the user terminal input / output means 23 of the user terminal 20A has one of the two mail addresses associated with the user ID (sato01) in the user DB 100 shown in FIG. Verification information A (https://www.abank.co.jp/) associated with (sato01@aaa.jp) is displayed.

  FIG. 8B is a display example of the other mail displayed on the other user terminal 20B. In the user terminal 20B, verification information B (OOO) associated with the other mail address (sato01@bbb.com) of the two mail addresses associated with the user ID (sato01) in the user DB 100 shown in FIG. ) Is displayed. The user who has received the mail indicating such verification information at the user terminals 20A and 20B, respectively, matches the verification information A and B with each other, and verifies the verification confirmation information (in the example shown in the present embodiment, on the WEB page). URL) is obtained, and this verification confirmation information (URL) can be accessed.

  FIG. 9A shows the result of the verification from the service provider (bank a in this example) as the sender when performing some verification as shown in step S5 of FIG. An example screen is shown. In this example, the e-mail title and e-mail transmission time are described as evidence when bank a sends two e-mails.

  FIG. 9B is a screen displayed when the user accesses a URL (verification confirmation information) completed with information obtained by two mails. In this example, a password update request screen is displayed as an important notice from bank a. By doing so, the user can confirm that the two sent emails are legitimate, and can proceed with the operation with peace of mind even for an important request for password update. it can.

  However, even if the verification information B is received by the user terminal 20B by mail from the same transmission source, the verification information is not perfect. This is because it is considered that the fake mail sender has forged both mails and also forged the verification means. Therefore, the user terminal 20B does not receive the verification information B by e-mail, but uses, for example, the official site of the bank a as the transmission source as another receiving means replacing the e-mail (second e-mail address). Can do.

  FIG. 10A shows that in one user terminal 20A, the verification information B can be confirmed not by mail transmission but by the “My page” which is a dedicated page of the user on the Internet banking site which is the official site of a bank. To the user.

  FIG. 10B shows the contents displayed on this My page. The user can confirm the verification information B from this My page, obtain verification confirmation information by combining with the verification information A, and access the URL. In this way, even if the fake mail sender imitates the “two mail” method of the present system, it can be prevented from being fraudulent.

  Returning to FIG. 7, in step S <b> 5, the verification unit 15 verifies the transmission source based on access from the user terminal 20 using verification confirmation information obtained by combining a plurality of types of verification information.

(Third embodiment)
Hereinafter, the third embodiment will be described in more detail. In the first embodiment, it is assumed that the sender unilaterally sends mail to the user, and in the second embodiment, the user who receives the mail himself verifies the sender. Yes. In the third embodiment, in the first embodiment, the second embodiment, and other aspects, when the “two mails” method is adopted, the user who has registered the first mail address On the other hand, by automatically generating the second mail address, the user's trouble of registering the second mail address is omitted, and the convenience of the user is improved. In addition, although the description common to 1st Embodiment and 2nd Embodiment is also included in part, 1st-3rd Embodiment may be implemented independently, respectively, and 1st-3rd You may implement combining the arbitrary structures of embodiment of.

  FIG. 11 is a diagram for explaining the concept of a mail transmission service by the mail transmission device 10A in the verification system 1A according to the third embodiment of the present invention. The verification system 1A is applied to a system for protecting a user from a so-called phishing scam in which, for example, an email disguised as a financial institution used by the user is transmitted and the user information is obtained by an unauthorized means. When a financial institution or the like sends an email to a user, it automatically generates a second email address (generated email address) in addition to the email address registered by the user (registered email address), This is a system for sending mails having the same contents to these mail addresses.

  The verification system 1A includes, for example, a mail transmission device (transmission server) 10A operated by a financial institution, etc., and a user terminal 20 (20A, 20B) connected to the mail transmission device 10A via a network and operated by a user. , At least. In the verification system 1A, the user transmits the mail address A to the mail transmission device 10A from the user terminal 20 (for example, 20A). The mail transmission device 10A stores the mail address A received from the user terminal 20 (for example, 20A) in the mail address storage unit 100 in association with the identification information of the user, for example. Further, the mail transmitting device 10 </ b> A generates a mail address B associated with the identification information of the user and stores it in the mail address storage unit 100.

  When the mail transmitting apparatus 10A transmits mail to the user, the mail address A (registered mail address) associated with the user identification information and the mail address B associated with the user identification information. (Generated email address) is extracted.

  The mail transmitting apparatus 10A transmits the mail having the same contents to the extracted mail address A (registered mail address) and mail address B (generated mail address). In the example shown in FIG. 11, the mail addressed to the mail address A (registered mail address) is received by the user terminal 20A, and the mail addressed to the mail address B (generated mail address) is received by the user terminal 20B. For example, mail addressed to both mail addresses may be received only by the user terminal 20A.

  According to such a mail transmission device 10A, for example, as in the first and second embodiments, a plurality of identical mails are transmitted to different mail addresses, so that the user can be a legitimate sender. By applying to a system that can be determined that there is a high possibility, the user does not register a plurality of e-mail addresses in advance in the e-mail transmission apparatus (transmission server) 10A. Can be received. Therefore, when using a plurality of e-mail addresses, it is possible to reduce the burden on the user.

  FIG. 12 is a diagram illustrating a functional configuration of the mail transmission device 10A, the user terminal 20, and the identity determination device 30 in the verification system 1A according to the third embodiment. The verification system 1A is connected to the user terminal 20 via a network, and transmits to the user terminal 20 a mail transmission device 10A, the user terminal 20 operated by the user, and the user terminal 20 via the network. And an identity determination device 30 that determines whether or not the contents of a plurality of emails connected and transmitted to the user terminal 20 are the same.

  The mail transmission device 10A includes a mail address registration unit 11A, a mail address generation unit 12A, a provision unit 13A, a mail address extraction unit 14A, a transmission unit 15A, and a user DB 100 which is an example of a mail address storage unit.

  The mail address registration unit 11A associates the mail address transmitted from the user terminal 20 in advance with user identification information for identifying the user, and stores it in the user DB 100 as a registered mail address.

  The mail address generation unit 12A generates a generated mail address that is a mail address associated with the user identification information, and stores the generated mail address in the user DB 100. The mail address generating unit 12A may generate a different generated mail address every time the transmitting unit 15A transmits a mail to the user terminal 20. In this case, the mail address generation unit 12A rewrites (updates) the generated mail address stored in the user DB 100 with the newly generated generated mail address. Further, the mail address generation unit 12A may generate a generated mail address including a one-time password input when the user logs in, for example, on a homepage of a financial institution or the like that operates the mail transmission device 10A. Further, the mail address generation unit 12A may generate a generated mail address that includes the encryption (password) registered in advance by the user in the financial institution or the like in the generated mail address stored in the user DB 100. As a result, even if the e-mail address is not created by the user himself, this e-mail address includes a one-time password entered by himself / herself when logging in to a homepage of a financial institution or a pre-registered encryption (password). As a result, it can be understood that the e-mail address is generated by a financial institution or the like, and the sense of security is improved.

  The providing unit 13A provides the user terminal 20 with generated mail address information that is information for displaying the mail addressed to the generated mail address on the user terminal 20. Specifically, the providing unit 13A generates the generated address generated by the mail address generating unit 12A on the page displayed on the user terminal 20 when the user logs in on the homepage of a financial institution or the like that operates the mail transmitting device 10A. Display email address. In this case, the generated e-mail address displayed on the page is generated e-mail address information, and the user sets the e-mail addressed to the generated e-mail address so that the user terminal 20 can receive the e-mail. Mail can be displayed. Further, the providing unit 13A may transmit the generated mail address information to the user terminal 20. In this case, the setting unit 221 of the user terminal 20 described later sets the mail addressed to the generated mail address so that it can be displayed on the user terminal 20 based on the generated mail address information.

  FIG. 13 is an example showing generated mail address information provided by the providing unit 13A according to the third embodiment of the present invention. FIG. 13 shows the My page of the user displayed on the user terminal 20 by logging in to the home page (Internet banking) of the financial institution (bank a). In the example shown in FIG. 13, in the My page, the generated mail address generated by the providing means 13 </ b> A and generated by the mail address generating means 12 </ b> A is generated as generated mail address information that is information to be displayed on the user terminal 20. The text data 131 is displayed. In the example shown in FIG. 13, as another example, the application is installed in the user terminal 20, and the generated mail address information is received from the mail transmission device 10 </ b> A in the user terminal 20 by being installed in the user terminal 20. Then, a button 131a is displayed that can download a mail address setting tool that automatically sets a mail addressed to the generated mail address so that it can be displayed.

  Returning to FIG. 12, the mail address extracting unit 14 </ b> A refers to the user DB 100 and extracts a registered mail address previously associated with the user identification information and a generated mail address associated with the user identification information.

  The transmitting unit 15A transmits the same content mail including the predetermined content to the registered mail address and the generated mail address extracted by the mail address extracting unit 14A, for example, simultaneously or within a predetermined time (for example, 1 minute). . For example, the transmission unit 15A transmits the generated mail address information to the user terminal 20 in which the mail address setting tool is installed.

  The user terminal 20 has the same configuration as that of the second embodiment, the user terminal transmission / reception unit 21 functions as an example of a reception unit, and the user terminal control unit 22 includes a setting unit 221 and a transfer unit 222.

  The user terminal transmission / reception means 21 receives a mail addressed to a registered mail address (see FIG. 11) from the mail transmission device 10A. Further, the user terminal transmission / reception means 21 receives a mail having the same content as the mail addressed to the registered mail address, which is a mail addressed to the generated mail address (see FIG. 11) from the mail transmitting device 10A. Further, the user terminal transmission / reception means 21 receives the generated mail address information from the mail transmission device 10A under the control of the setting means 221 of the user terminal control means 22 described later.

  Based on the generated mail address information received by the user terminal transmission / reception means 21, the setting means 221 receives the mail addressed to the generated mail address at the user terminal 20 and sets the mail to be displayed on the user terminal input / output means 23. For example, the setting unit 221 installs the mail address setting tool, which is an application, in the user terminal 20 by clicking the button 131a displayed on the My page after login on the homepage of a financial institution or the like shown in FIG. It is a functional configuration realized by doing so.

  The transfer unit 222 satisfies a predetermined condition (for example, a condition such as being received at the same time or within a predetermined time), and a plurality of addresses addressed to different mail addresses (in the example illustrated in FIG. 11, a registered mail address and a generated mail address). When mail is received, the plurality of mails are transferred to the identity determination device 30 at approximately the same timing, for example. The transfer unit 222 has a functional configuration realized by installing an application provided from an organization or the like that operates the identity determination device 30 in the user terminal 20.

  The identity determination device 30 includes a forward mail reception unit 31, a determination unit 32, a verified mail generation unit 33, and a verified mail transmission unit 34.

  The forward mail receiving means 31 receives a plurality of mails transferred from the user terminal 20 and addressed to different mail addresses (in the example shown in FIG. 11, a registered mail address and a generated mail address) at substantially the same timing.

  The determination unit 32 determines whether or not the contents of a plurality of emails received by the forwarded mail reception unit 31 at substantially the same timing are the same. Specifically, the determination unit 32 compares the contents of the texts of a plurality of mails, and determines that these text data are the same if they are the same for a predetermined threshold value or more (for example, 90% or more).

  The verified mail generation unit 33 generates a verified mail indicating that it has been verified when the determination unit 32 determines that the contents of a plurality of mails are the same. The verified mail is a mail that allows the user to recognize that the mail received by the user terminal 20 is safe and may be opened. For example, the contents of the text include the texts of a plurality of mails that have already been received. It is desirable to know that the content is the same and has been verified in the subject line of the email.

  FIG. 14 is an example showing a verified mail generated by the verified mail generating unit 33 according to the third embodiment of the present invention. For example, when the forward mail receiving means 31 receives a plurality of mails illustrated in FIG. 2A at substantially the same timing, the determination means 32 compares the contents of the text and determines that they are the same. In this case, for example, as shown in FIG. 14, the verified mail generation means 33 has the same content as the texts of a plurality of emails that have already been received. In addition to the same subject, generate a verified email with a circle at the beginning of the subject. The verified mail is not limited to the form shown in FIG. 14, and may be any form as long as it is different from a plurality of mails that have already been received, such as coloring the characters in the subject or increasing the font size. It can be set as this aspect.

  Returning to FIG. 12, the verified mail transmission unit 34 transmits the verified mail generated by the verified mail generation unit 33 to the user terminal 20. The verified mail transmitting unit 34 transmits the verified mail to the user terminal 20 in response to any of the plurality of mails received by the forward mail receiving unit 31. Note that the verified mail transmission unit 34 is not limited to a mode in which the verified mail is returned, and may transmit the verified mail to the user terminal 20 by communication in another mode (for example, SNS (social networking service)). Good.

  The functional configuration of the system in the first to third embodiments is merely an example, and one functional block (database and functional processing unit) is divided, or a plurality of functional blocks are configured as one functional block. Or you may. Each function processing unit reads a computer program stored in a storage device such as a ROM (Read Only Memory), flash memory, SSD (Solid State Drive), or hard disk by a CPU (Central Processing Unit) built in the device This is realized by a computer program executed by the CPU. That is, in each function processing unit, this computer program reads and writes necessary data such as a table from a database (DB; Data Base) stored in a storage device or a storage area on a memory, and may be related in some cases. This is realized by controlling hardware (for example, an input / output device, a display device, and a communication interface device). Further, the database (DB) in the embodiment of the present invention may be a commercial database, but it simply means a collection of tables and files, and the internal structure of the database itself is not questioned.

(Processing flow of the third embodiment)
FIG. 15 is a diagram showing a mail transmission process flow executed by the mail transmission apparatus 10A according to the embodiment of the present invention. Such a mail transmission processing flow shows a mail transmission method executed by the mail transmission device 10A.

  In step S1, the mail address registration unit 11A associates the mail address previously transmitted from the user terminal 20 with the user identification information for identifying the user, and stores it in the user DB 100 as a registered mail address.

  In step S <b> 2, the mail address generation unit 12 </ b> A generates a generated mail address that is a mail address associated with the user identification information, and stores the generated mail address in the user DB 100.

  In step S3, the providing means 13A provides the user terminal 20 with generated mail address information that is information for displaying on the user terminal 20 the mail addressed to the generated mail address generated by the mail address generating means 12A in step S2. To do.

  In step S4, the mail address extracting unit 14A refers to the user DB 100, and in step S1, the mail address registering unit 11A and the registered mail address previously associated with the user identification information in step S1, and the mail address generating unit 12A in step S2. Thus, the generated mail address associated with the user identification information is extracted.

  In step S5, the transmission means 15A sends the same contents including predetermined contents to the registered e-mail address and the generated e-mail address extracted by the e-mail address extracting means 14A in step S4 simultaneously or for a predetermined time (for example, 1 minute). ).

  FIG. 16 is a diagram showing a mail transfer processing flow executed by the user terminal 20 according to the embodiment of the present invention. Such a mail transfer processing flow shows a mail transfer method executed by the user terminal 20.

  In step S11, the user terminal transmission / reception means 21 receives a mail addressed to the registered mail address and a mail addressed to the generated mail address from the mail transmission device 10A.

  In step S12, the transfer unit 222 determines whether or not the plurality of mails received in step S11 are received at the same time or within a predetermined time. If the process is not determined to have been received simultaneously or within a predetermined time, this process ends.

  In step S <b> 13, the transfer unit 222 transfers a plurality of mails received in step S <b> 11 addressed to different mail addresses (registered mail address and generated mail address) to the identity determination device 30.

  FIG. 17 is a diagram showing an identity determination processing flow executed by the identity determination device 30 according to the embodiment of the present invention. Such an identity determination processing flow shows an identity determination method executed by the identity determination device 30.

  In step S <b> 21, the forward mail receiving unit 31 receives mail addressed to the registered mail address and mail addressed to the generated mail address from the user terminal 20.

  In step S22, the determination means 32 determines whether or not the contents of the plurality of mails received in step S21 are the same. If it is determined that the contents are the same, the process proceeds to step S23. This process ends.

  In step S <b> 23, the verified mail generation unit 33 generates a verified mail indicating that it has been verified.

  In step S24, the verified mail transmission unit 34 transmits the verified mail generated by the verified mail generation unit 33 in step S22 to the user terminal 20.

(Effect of embodiment)
According to the first embodiment, the user can confirm whether or not the transmission source is an authorized partner by a simple method. Since two mails are required to be transmitted at almost the same time, to have the same contents, not to be sibling mails, and to be the same sender, it is effective as a countermeasure against phishing. Further, by including a secret word in the subject or body of the mail and extracting the mail address from a separately managed database, the safety is further improved.

  According to the second embodiment, for example, even if a user receives a mail for giving a name of a financial institution or the like to a certain mail address and prompting to access the displayed address, Since the verification information is not distributed in the address, it is possible to easily determine whether this mail is from a financial institution or the like, or is an impersonation of the financial institution. Therefore, it is possible to improve the credibility that the mail is transmitted from a legitimate institution. In addition, even if one email address of a user leaks to a person who performs a fraudulent activity, if the other email address does not leak, the person who performs the fraudulent action will receive the same email as that from a legitimate institution. Since it cannot be camouflaged, the improvement in safety is the same as in the first embodiment.

  Further, the verification apparatus 10 extracts a plurality of types of verification information as verification confirmation information, which is information for confirming the verification by matching them with each other in the verification information extraction unit 13. As a result, when the user receives a plurality of different types of verification information from a plurality of e-mail addresses registered in advance in the user terminal 20, for example, the verification is performed by combining the plurality of verification information with each other. Confirmation information can be obtained. For example, if the verification confirmation information is a URL of a regular homepage as one content, the user accesses this address and is verified by the verification device 10. For this reason, safety can be improved as compared with the case of accessing the URL shown in one mail. Further, the verification information is transmitted to the user terminal 20 by one terminal by e-mail, and the other terminal is transmitted by means other than e-mail, for example, My page provided in a legitimate source site. By doing so, safety is further enhanced.

  According to the third embodiment, as in the first and second embodiments, by transmitting a plurality of identical emails to different email addresses, the user may be a legitimate sender By applying to a system in which it can be determined that the mail is high, the user can receive a plurality of the same mails at different mail addresses without registering a plurality of mail addresses in the mail transmission device (transmission server) 10A in advance. Is possible. Therefore, when using a plurality of e-mail addresses, it is possible to reduce the burden on the user.

  In addition, by generating a different generated email address each time an email is sent to the user terminal 20, even if the generated email address is leaked, mail can be received at the generated email address that has leaked at the user terminal 20. Since it has disappeared, it is possible to eliminate unauthorized mail more effectively.

  In addition, the mail transmission device 10A provides the generated mail address information, which is information for displaying the mail addressed to the generated mail address on the user terminal 20, to the user terminal 20, so that the mail is transmitted manually or automatically. The user terminal 20 can receive a mail addressed to the mail address generated by the apparatus 10A.

  Further, in the user terminal 20, the setting unit 221 sets the mail addressed to the generated mail address so that the mail addressed to the generated mail address can be displayed on the user terminal 20 based on the generated mail address information, so that the user himself receives the mail addressed to the generated mail address. Since it is not necessary to perform the setting for doing so, the burden on the user can be further reduced.

  Further, in the identity determination device 30, it is determined whether or not the contents of a plurality of mails transmitted to the user terminal 20 are the same, and if the contents of the plurality of mails are the same, it indicates that the verification has been completed. Since the verified mail is transmitted to the user terminal 20, it is not necessary for the user to confirm the identity of the contents of the plurality of mails, and the user only has to confirm the verified mail, thereby further reducing the burden on the user. It becomes possible.

(Modification)
As a modification of the above-described embodiment, there is a solution to the problem that the content of the email sent to the user can be referred to on the Internet banking My Page of the financial institution, although two email addresses are not used. For example, instead of sending an e-mail to the generated e-mail address, an e-mail addressed to a registered e-mail address for each customer (user) is stored in the financial institution server, and in response to a reference request from the customer, the title ( It is also possible to provide means for referring to at least one of a list format), an email summary (only important part may be displayed), and an email itself. By doing in this way, the customer can confirm the mail addressed to himself / herself stored in the financial institution server selectively and in a different form of information as required. As a method of requesting a reference from a customer, a menu such as “confirming the contents of recently sent mail” is set up in net banking, or in a talk room of a financial institution registered as a friend by SNS, etc. It may be possible to confirm by sending "email true?" Or "latest mail reference".

  As mentioned above, although this invention was demonstrated using three embodiment, it cannot be overemphasized that the technical scope of this invention is not limited to the range as described in the said embodiment. It will be apparent to those skilled in the art that various modifications or improvements can be added to the above embodiment. Further, it is apparent from the scope of the claims that embodiments with such changes or improvements can also be included in the technical scope of the present invention. In the above-described embodiment, the verification apparatus has been described with the present invention as a product invention. However, in the present invention, the verification method may be regarded as an invention of a verification method.

DESCRIPTION OF SYMBOLS 1A Verification system 10A Mail transmission apparatus 11A Mail address registration means 12A Mail address generation means 13A Provision means 14A Mail address extraction means 15A Transmission means 20 User terminal 21 User terminal transmission / reception means 22 User terminal control means 221 Setting means 222 Transfer means 23 User terminal Input / output means 30 Identity determination device 31 Forwarded mail receiving means 32 Determination means 33 Validated mail generation means 34 Validated mail transmission means 100 Mail address storage means

Claims (8)

A mail transmitting device connected to a user terminal via a network, for transmitting mail to the user terminal,
Mail address generating means for generating a generated mail address that is a mail address associated with user identification information for identifying a user;
When sending an email to a registered email address previously associated with the user identification information, an email that can verify the validity of the content of the email is sent to the generated email address associated with the user identification information An e-mail transmitting apparatus comprising:   2. The mail transmission apparatus according to claim 1, wherein the mail address generation unit generates a different generated mail address each time the transmission unit transmits a mail to the user terminal.   The provision means for providing the user terminal with generated mail address information which is information for displaying the mail addressed to the generated mail address on the user terminal is further provided. Mail sending device.   Instead of sending a mail addressed to the generated mail address, a server of a financial institution responds to a reference request from the user, and means for storing the content of the mail addressed to the registered mail address addressed to each user And means for enabling at least one of the title, summary, and the mail itself to be referred to in their respective formats. The mail transmitting device according to the item. A verification system for verifying a mail transmission source, including the mail transmission device according to claim 3 and the user terminal,
The transmission means of the mail transmission device transmits the generated mail address information to the user terminal,
The user terminal comprises a receiving means for receiving the generated mail address information;
And a setting unit configured to set, based on the generated mail address information, a mail addressed to the generated mail address so that the mail can be displayed on the user terminal. An identity determination device that is connected to the user terminal via a network and determines whether or not the contents of a plurality of mails transmitted to the user terminal are the same,
The user terminal further comprises transfer means for transferring the plurality of mails to the identity determination device when a plurality of mails satisfying a predetermined condition are received,
The identity determination device includes:
Forwarded mail receiving means for receiving the plurality of mails transferred from the user terminal;
Determining means for determining whether or not the contents of the plurality of mails received by the forwarded mail receiving means are the same;
When the contents of the plurality of emails are the same, verified email generation means for generating a verified email indicating that the email has been verified;
The verification system according to claim 5 , further comprising: a verified mail transmission unit that transmits the verified mail to the user terminal. A mail transmission method executed by a mail transmission device connected to a user terminal via a network and transmitting mail to the user terminal,
Generating a generated email address that is an email address associated with user identification information for identifying a user;
When sending an email to a registered email address previously associated with the user identification information, an email that can verify the validity of the content of the email is sent to the generated email address associated with the user identification information. And a step of transmitting the e-mail.   A program that causes a computer to execute the steps according to claim 7.