TWI261446B - Client service architecture using HTTPS communication protocol and method thereof - Google Patents

Abstract

The present invention provides a client service architecture using HTTPS communication protocol and method thereof. The present invention discloses an exchange unit for receiving at least a to-be-mediated remote end service end with a browsing interface unit provided by a server, and for providing a user end to be connected to a network address applying a HTTPS communication protocol. When the exchange unit receives the connection information of the browsing interface unit, the browsing interface unit and the remote end service perform a mediation operation to set up a safe mutual connection channel between the browsing interface unit and the remote end service. When a problem occurs on a computer system at the client end, an authorized user end uses the safe mutual connection channel to access the remote end service for seeking on-line assistance. The service end can uses the safe mutual connection channel to remotely assist and debug the computer system at the client end.

Description

1261446 V. INSTRUCTIONS (1) [The invention belongs to the framework of the invention and its method for customer service error-taking [previously according to the provided dynamic language to serve the customer service, the customer can ensure that the product is answered, often The product's other obstacles, in addition to the customer voice, the quality and the customer's service end-to-end technology], the customer product pronunciation inquiry call is made so that the system's household can only solve the expenditure and make use satisfaction, when there is The customer is more likely to complain about the traffic complaints and the technical field.] Regarding a customer service that uses the HTTPS protocol, there is a framework and method for providing a secure connection, through which the secure connection is provided. At least one remote service to seek remote assistance and to detect the utility of a computer system. Since the development of the service architecture, when users purchase problems arising from enterprises, the most common customer service is through the "Inter-System (IVR)", which is a switch that is transferred to the customer service staff through the switch through I VR. In addition, the user's question is answered. However, the main disadvantage of such a typical customer is that it is impossible to make a one-to-one mutual telephone call with the user to know the possible questions and answers, except for problems that cannot be valid products. In addition, it is necessary to bear the high telephone charges for seeking production, so the process of seeking service is full of difficulties and helpless feelings, reducing the customer's preference. The I VR system or the line connecting the I VR system has a special alarm notification. Otherwise, the call will be connected when the switch is operating normally, but there is no answer to any extension; in other words, the IVR line Product monitoring is absolutely necessary. Once an abnormal situation occurs, the business opportunities affected can be imagined, so how to improve the traditional

Page 5 1261446 V. Description of the invention (2) The service architecture of each household and its integration with the Internet (I n t e r n e t) is one of the key points of customer service considerations at this stage. In recent years, the booming development of the Internet, internet& has been widely accepted and used by the public. From the connectivity and security of I n t e r n e t, it mainly goes through the following stages: (1) Unimpeded stage

In this stage, since the use of the Internet is not yet popular, each computer has a public IP address, and users can exchange data freely through the Internet. Due to the convenience of the Internet, more and more users are doing it. Use, but there are some unscrupulous users in the meantime, people gradually find that security is a big problem with the use of the Internet. (2) The stage of building the wall at this stage, in order to strengthen the security of individuals, institutions and enterprises, they have placed devices such as network address translation (NAT) and firewalls at the exit of the internal network. Private IP addresses enhance network security. Although such applications achieve high security, they increase the difficulty of interconnecting each other. See the first figure, which is known as Network Address Translation (NAT). As shown in the figure, it includes a first computer 5, and a second computer 1 〇 'all of which are private IP addresses of the internal computer, for the convenience of the assumption that the first computer 5, IP is 1 9 2 · 1 6 8 · 1 _ 3, 埠 is 2 7 3 3, the IP of the second computer 10' is 192.168.1.6, 埠 is 2733, a third computer is 0 0, which is a public I The remote computer of the ρ address assumes that I ρ is 211· 79· 2 0 3· 2, 埠 is 1 8 0 7 and a NAT server 15, which is installed.

Page 6 1261446 V. Invention Description (3) There are two network cards, one for external, which is set to a public IP address to communicate with the external network, assuming its IP is 6 1 · 2 1 9 · 2 5 5 · 8 7, one pair, which is set to a private IP address for internal network communication, assuming its IP is 1 9 2 · 1 6 8 · 1. 1; A computer 5' with a second computer 1 0 'to convert a private IP to a public IP through a NAT server 1 5' to connect to a remote third computer 2 0 ', the first computer 5' and the second computer 1 0 'Transfer the packet to the NAT server 1 5 ', the NAT server 1 5 'records the packet information of the two computers in the address conversion table 1 5 1 ', wherein the first computer 5' and the second computer are respectively recorded 1 0 'IP in a source IP block 1 5 1 1 ', first computer 5 'and second computer 1 0 ''s in one source 埠 block 1 5 1 2 'and first computer 5 'and Two computers 1 0 'destination IP to be transmitted to a destination IP block 1 5 1 3 ', the NAT server 1 5 'transport the first computer 5 'with the second computer 1 0 ' in the packet source I P is changed to NAT server 1 5 'external public IP, source 重新 reconfigures a unique 埠 value, and records the unique 埠 value in a NAT reconfiguration 埠 block 1 5 1 4 ', such as Convert the value of 2 7 3 3 of the first computer 5 'package to 6 5 5 3 1, convert the value of 2 7 3 3 of the second computer 1 0 'package to 6 5 5 3 2, then both The packet is transmitted to the remote third computer 2 0 ', and once the NAT server 1 5 'will receive the packet returned by the third computer 20 ', the destination of the third computer 2 0 ' is determined to determine the packet. For the internal transmission object, if the detection destination is 6 5 5 3 1 , it means that the packet is in response to the packet of the first computer 5 ', and the NAT server 1 5 'converts the destination IP of the packet to the first computer 5 ' The value of the source IP block 1 5 11 ' of the address conversion table 1 5 1 ', the purpose of converting the address of the first computer 5 'recorded by the address conversion table 1 5 1 '1 1 1 1 The value of ', can transfer the packet of the third computer 2 0 'back to the first computer 5 '.

Page 7 1261446 V. Description of invention (4) (3) Phase of security interoperability In this phase, individuals, institutions and enterprises are actively seeking to establish a secure private network by using the Internet to ensure that information can be interconnected on a secure basis. There is a way to network (VPN). The so-called VPN refers to a way to make the public network (such as the Internet) become an internal private network, and meet the same security, management and performance conditions of the private network, and ensure that unauthorized users cannot be on the public network. Read other people's confidential documents, and ensure the integrity of the data between the two parties during the communication process.

At present, the VPN standard is based on IPSec (Intelnet Protocol Security) formulated by the IETF. It is a standard for applying cryptography technology to the network layer. By establishing a tunnel on the Internet, IP data packets are ensured. Security, and achieve end-to-end secure communication in the Network Layer. Since IpSec vpN will establish a channel at both ends of the communication to provide connectivity, the computers at both ends are visible to each other, thus increasing the security risk. Secondly, IPSec vpN has different configuration methods depending on the environment and the network. If the user dynamically allocates a public IP address to the DHCP network, it often causes many settings troubles. Furthermore, using IPSec VPN remotely When accessing the internal data of the enterprise, the enterprise must open another 于 on the firewall for the 祛田 to occupy the IPSeC VM, which will increase the security risk of the enterprise. 'Users (4) SSL VPN is to solve the problem caused by IPSec VPN. Inconvenient to produce 'the SSL VPNSSL VPN' is a VPN model that uses the HTTps protocol. Most of today's computer operating systems contain so-called web browsing. Web browser, and support HTTp and HTTpS (SSL - 1261446 V, invention description (5) based HTTP) communication protocol, users under the SSL VPN architecture, no need to install additional software on the computer, remote The client application on the user's computer can access the remote open client/server (C 1 ient / S) through the secure connection pipeline (SSLT u η ne 1 ing ) constructed by the HTTPS protocol. Erver) application service program. Therefore, how to solve the above problems and propose a customer service architecture and method for applying the HTTPS communication protocol, not only can improve the shortcomings of traditionally using the telephone to seek customer service, but also enable the user to utilize the secure interworking channel through the SSL VPN security mechanism. Seeking online assistance to the server, has long been the user's eagerly awaited and invented by the inventor, and the inventor has applied for many years to research on a customer service architecture and method related products using the HTTPS protocol. Development, and sales practice experience, thinking and improvement ideas, poor personal expertise, multi-party research design, special discussion, finally developed a customer service architecture and method improvement using HTTPS communication protocol, can solve the above problem. The present invention is directed to providing a client service architecture and method for applying the HTTPS protocol, which is to receive a server edge for at least one remote end to be matched by an exchange unit. Service, when a problem occurs in one of the computer systems of one of the clients, a network address (URL) of one of the HTTPS communication protocols is issued to a browsing interface unit, and the switching unit receives the browsing interface unit and performs the browsing. Interfacing with the remote service to establish a security of the browsing interface unit and the remote service

1261446 V. The invention of the connection (6), the authorized user terminal seeks online assistance to the server through accessing the remote service, and the server can communicate with each other via the secure connection. The remote assists and debugs the computer system of the client. The secondary purpose of the present invention is to improve customer satisfaction. When the computer system of the user terminal has a problem, the firewall uses an open HTTPS communication protocol, and the user does not need to change any network and The firewall is configured to access the remote service provided by the server through the secure connection pipeline to perform remote assistance and debugging of the computer system of the user end, thereby effectively reducing the user terminal due to the computer The time lost by the problem. A further object of the present invention is to reduce the additional cost. The server can use a private IP address to convert a private IP address to a public IP address through a NAT-enabled firewall when connecting to the Internet. Therefore, the cost of the public IP address can be reduced; in addition, the remote service provided by the server can be provided through the off-the-shelf C 1 ient / Server application service software for remote assistance and detection. Wrong action can further reduce the cost of construction costs. Another object of the present invention is to improve security. The client connects to the remote end through the SSL security mechanism provided by the HTTPS protocol, so the communication between the client and the server is through DES and DSA. Encryption methods such as RSA and RC4 protect data and improve security. In addition, the server is deployed through a private IP address, and only authorized users can access the server. End service, thus ensuring the security of the internal information of the server.

Page 10 1261446 V. INSTRUCTIONS (7) The present invention has a structure and method thereof. At least one time, an interface unit is provided, and the browsing interface is performed, and the remote terminal is authorized. The service, through the security of the computer system, the client of the protocol, any network and the firewall can cost the IP address of the SSL security mechanism, causing the server to lose money. Regarding an application Η TTPS communication protocol, the customer service frame receives a server through a switching unit to provide a standby server service. When a computer system of one of the clients has a problem, one of the HTTPS communication protocols is used for the network address (URL). After the switching unit receives the mediation action of the connection interface unit of the browsing interface unit and the remote service, the secure connection between the unit and the remote service is transparent to the user terminal. The secure connection and intercommunication pipeline access seeks online assistance of the server, and the server can connect and communicate with each other, and the remote end assists and debugs the user terminal, and not only achieves the application HTTPS of the present invention. In addition to the service architecture and its methods, the client does not need to have additional firewall settings. The server can also be converted to a public IP address through a NAT function private IP address to reduce public expenditure. Moreover, by HTTPS The communication security of the protection data provided by the communication agreement, the user can safely carry out the remote service to reduce the time caused by the computer problem [implementation] Having a better understanding and understanding of the structural features and the efficacies of the present invention, the following is a description of the preferred embodiments and the detailed description of the following: The general customer service architecture and its methods use interactive voice

Page 11 1261446 V. Description of the invention (8) Query system (I VR ) for service, because the I VR system informs the solution by voice method, in addition to being unable to effectively ensure that the problem occurred in the product can be solved, High-cost telephone charges. Therefore, the present invention discloses a customer service architecture and method for applying the TTPS communication protocol, for an authorized user to access at least one far-end provided by a server by using a secure connection pipeline. The end service is to seek remote assistance with one of the computer systems for debugging one of the clients. Please refer to the second figure, which is a block diagram of a client service architecture and method for applying the HTTPS protocol according to a preferred embodiment of the present invention; as shown, the present invention is provided by using an application HTTPS protocol. An SSL security mechanism method, which establishes a secure connection and intercommunication pipeline, and provides a client service architecture and method for remote assistance and debugging when a problem occurs in the client's computer system. The main architecture includes a release unit 2, Receiving a server 1 to provide at least one remote service; a first firewall 3 for providing a security protection action and NAT IP forwarding function; a second firewall 5 and a third firewall 9, A security protection action is provided; an exchange unit 6 receives at least one remote service provided by the distribution unit 2; and a browsing interface unit 8 receives a network address of an application HTTPS communication protocol. The server 1 uses the publishing unit 2 to provide at least one remote service to be matched. After the private IP address is forwarded to the public IP through the first firewall 3, the server 1 is connected to the switching unit via an Internet 4. 6. When a problem occurs in one of the computer systems of one of the client terminals 7, the client terminal 7 opens the 443 port through the third firewall 9, and issues a network address (URL) to which the HTTPS protocol is applied.

Page 12 1261446 V. Description of the Invention (9) The browsing interface unit 8 is connected to the switching unit 6 via the Internet 4, and the switching unit 6 performs the browsing interface unit 8 and the publishing unit 2 a mediation action of the remote service to establish a secure connection line (s SL VPN) between the browsing interface unit 8 and the remote service provided by the publishing unit 2, the client terminal 7 accessing the remote service The server 1 seeks online assistance, and the server 1 can communicate and debug the computer system of the client 7 via the secure connection pipeline. The network address mentioned above is formed by combining the IP address of the switching unit 6 with the network identification code of the remote server, such as https://uuswitch.acer.net/kimlee@acer. .c〇ffl.tw, where uuswitch· acer. net is the IP address of the switching unit 6, kimlee@acer·com·tw is the network identifier of the server 1. In addition, the present invention further includes a hot key device, which is a keyboard speed button for driving the browsing interface to leave the network address of -0 士 μ, 志 μ ^ ^. As early as 8 to directly connect to the application of HTTPS communication protocol to understand the connection of the invention + & 7, 7, the father of the table, a unit 6 provides the server i and the exchange unit of the client instance 4 Referring to the second figure, it is a schematic diagram of a preferred unit connection index table 61=the cable diagram of the present invention; as shown in the figure, / exchange a server network identification = record a server identification code Block 6 11 and a user network tampering block 6 1 2. A server network address field β 1 3 element 2 provides at least a remote address block 614; the server i uses the sending list The server 1 is required to enter the exchange unit 6, and the exchange unit 6 is to be replaced by a proxy switch and a identification code to perform the 61-record record of the server identification code. Bit

Page 13 1261446 Five' invention description (10) 6 1 1 comparison action, after the successful comparison, the servo end! In the address block 6 1 3, wait for the browsing interface single-recorded I afl agreement wide ^ 8 connection: the server network is called the rotten bit 613, waiting for the browsing interface:. ^ ί —The network address (URL) of the HTTPS protocol is applied to the exchange. 8 Lianhai:,, the exchange unit 6 retrieves the comparison action of the "yuan household:! road code field 612" recorded by the network address, and compares the IP address record of the success/word service. The switching unit 6 transmits the switching unit 6 through the exchange list 'user network address field 614, the diagnosis field address 61 3 and the client end line index table 61 of the server network = server 1 Recording with the user terminal 7 and the road address block 6 1 4 to establish a secure interconnection pipeline of the above-mentioned exchange order 7. Establishing the 6U and the feeding service network connection index table 61 The server end identity is registered in advance in the exchange π. The identification code block 6 1 2 'is its code 伺服 code server network identification service 1 in the connection unit 6 connection body = the network identification code Compare the 12 series as the "end" of the network address? According to the fourth figure, the functional representation of the unit of I is a preferred embodiment of the present invention. The remote service serves the exchange cover as shown in the figure *, when the server wants to release the setting operation of the 3 remote service. At 6 o'clock, the system enters the unit 6 through the issuing unit 2, wherein the servo is further connected to the switching port 21 via the Internet 4, and the system has been used to pass through the issuing unit 2. a publishing application ^ = cloth unit 2, secondly, through the publishing unit 2, the remote unit to be published can be selected through the publishing unit 2, and another security control function 23 performs the user terminal 7

1261446 V. INSTRUCTION DESCRIPTION (11) Security control setting, and finally, system management and control of the issuing unit 2 through the system management function 2 of the issuing unit 2. The security control function 2 includes a verification unit. When the exchange unit 6 provides the secure connection pipeline, the client 7 is in front of the computer system of the server 1 and the client 7 The client identification code and the client password are provided, and the identity of the client 7 is compared with the authentication unit to identify whether the client 7 is a legitimate user, and if so, the sending unit 2 or One of the switching units 6 can immediately download the Java or ActiveX control, and the client 7 can access the remote service provided by the server 1 through the secure connection pipeline. Furthermore, please refer to FIG. 5 , which is a schematic diagram of a security control index table according to a preferred embodiment of the present invention; as shown in the figure, a security control index table 2 3 1 records a user identity identification. The code field 2 3 1 1 and a user password field 2 3 1 2, when the user terminal 7 provides the user terminal identification code and the client password, the verification unit retrieves the security control index table 2 The information of 3 1 is used for the comparison action. When the user ID and the client password provided by the client 7 are not recorded in the security control index table 2 3 1 , the user terminal 7 is An illegal user, the server 1 can reject the illegal client 7 to log in to the computer system of the server 1, so that the client 7 cannot access the remote service provided by the server 1. Please refer to the sixth figure, which is a schematic diagram of a specific operation of a preferred embodiment of the present invention; as shown in FIG. 5, the user terminal 7 issues a network address command 81 to the browsing interface unit 8, first browsing The interface unit 8 is connected to the network bit of the exchange unit 6 of Https://uuswitch· acer·net/

Page 15 1261446 V. Description of the invention (12), the switching unit 6 retrieves the network address of the server address command, ie the kemlee@acer.com.tw, with the above mentioned The exchange unit with clues? The servo end network identification code block 6 1 2 recorded in Table 6 1 is subjected to a comparison operation to connect to the computer system of the server terminal 1, and the user terminal 7 issues a user terminal identification code command 8 2 With a client password command § 3, for the server 1 to use the above-mentioned user ID code block 2 3丨1 and the client password field 2 3 1 2 to perform a comparison action to identify the client terminal 7 After knowing it, the 5 Hai client 7 can access the remote service provided by the server. Further, 'Please refer to the seventh figure' as a schematic diagram of the remote service according to a preferred embodiment of the present invention; as shown in the figure, after the user terminal 7 logs in to the computer system of the server 1, the client 7 can access the server 1 to provide one of the Net Meet ing application service program 221 and the Leave Message application service program 2 2 2 and other client / feeding service (C 1 ient / S erver ) application service program 'through the security The interworking channel, the server 1 remotely assists and debugs the computer system of the client 7 via a client/service server (Cl ient/Server) application server.

Please refer to the eighth figure, which is a schematic diagram of the functions of the Net Meet ing application service program according to a preferred embodiment of the present invention; as shown in the figure, the Net Meet application service program mentioned above is 2 2 1. It provides a plurality of functions to assist the remote end of the server 1 to assist and debug the computer system of the client terminal 7, and includes a Net Meet ing system login function 22, which provides the connection between the server 1 and the client 7 Line action, on-line communication function 2 2 1 2, which provides the user terminal 7 to seek online consultation, a shared whiteboard function 2 2 1 3, which provides handwriting input recognition function, a transmission file

Page 16 1261446 V. Description of the invention (13) The function 2 2 1 4 is used to transmit a maintenance file to the computer system of the client 7 and a shared desktop function 2 2 1 5 to provide the server 1 Share the desktop of the client to perform the wrong action.

The NetMee ting system login function 221 1 mentioned above can perform directory correspondence setting in the sending unit 2, and replace the required input of the Net Meeting of the server 1 by using an easy-to-enter string. When the client accesses the Net Meet ing application service program 221 of the server 1, the Net Meet ing application service program corresponding to the client 7 is automatically executed first, and the client 7 inputs only one The easy-to-enter string can be connected to the NetMeeeting application service program 2 2 1 of the Net M eeting application service program corresponding to the client terminal 7 to perform the connection operation. In order to improve the convenience of the client terminal 7 , the present invention further installs a side recording application program on the server 1 to record the error of the server terminal subscription as the dispute between the server and the client terminal occurs. Prepare evidence. Please refer to the ninth figure, which is a flow chart of the shared desktop function of the NeMeeting application service program according to a preferred embodiment of the present invention; as shown in the figure, the main steps include:

Step S1: The server uses the issuing unit to provide at least one remote service to be matched, and connects to the switching unit via an internet connection; Step S2: the user end issues an application HTTPS communication protocol The network address is in a browsing interface unit, and is connected to the switching unit via an internet connection; Step S3: the switching unit performs the browsing interface unit and the release

Page 17 1261446 V. Description of the invention (14) The mediation action of the remote service provided by the unit to establish a secure connection interconnection pipeline; Step S4: verify the user terminal by using the security control function of the release unit Identity S5: Log in to the computer system of the server to access the NetMeeeting application service program provided by the server; Step S6: automatically execute the NetMeeeting application service program corresponding to the client; S7: inputting the N eeting system login function of the NetMeetin g application service program of the client in place of the string of the server IP to connect to the NetMe eeting application service program of the server; Step S8: The server requests the client to open the remote common desktop service; and step S9: controls the desktop of the client computer system, and the remote debugging and assisting the customer to confirm the problem. In summary, the present invention relates to a client service architecture and method for applying the HTTPS communication protocol, and receives a server to provide at least one remote service to be matched by a server, as one of the clients. When a problem occurs in the computer system, a network address (URL) of one of the HTTPS communication protocols is provided to a browsing interface unit, and the switching unit receives the connection information of the browsing interface unit, and performs the browsing interface unit and the remote end. After the service is combined, the secure connection between the browsing interface unit and the remote service is established, and the authorized user can access the remote service through the secure connection pipeline. The remote service can be accessed

Page 18 1261446 V. Invention Description (15) The application software of this line is shared by the desktop function program. The customer road and wall will be cost-based, and the present invention complies with the invention of non-use enclosures. The private expenditure protection remotely demonstrates that the Chinese patents have only been limited to the IP address of the architecture wall. The other data service is a patent application. The shape is determined to be achieved, energy, sharing, etc. , not only the method and the method of 'the address is converted to external, by means of communication security, to reduce the provisions of the novel law, praying, only invented, constructed, in the invention such as NetMeeting application monthly program Providing an electronic whiteboard function, transmitting a file function, and the server can use the Net Meeting application service to assist and debug the application of the client to the invention of the HTTPS communication protocol, the client does not need to change any The network server can also use a NAT-enabled firewall public IP address to reduce the HTTP of the public IP address. The SSL security machine provided by the S protocol allows the client to worry about the time lost by the server due to computer problems. The nature, progress and availability of the industry, the patent application requirements should be undoubtedly, 提出 提出 提出 提出 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 。 It is intended to be a preferred embodiment of the present invention, and is intended to be within the scope of the claims and the scope of the invention.

Page 19 1261446 BRIEF DESCRIPTION OF THE DRAWINGS The first figure is a schematic diagram of a conventional network address translation (NAT); the second figure is a client applying the HTTPS protocol in accordance with a preferred embodiment of the present invention. Block diagram of a service architecture and method thereof; FIG. 3 is a schematic diagram of a switch unit connection index table according to a preferred embodiment of the present invention; FIG. 4 is a preferred embodiment of the present invention Functional diagram of the issuing unit; FIG. 5 is a schematic diagram of a security control index table according to a preferred embodiment of the present invention, and FIG. 6 is a schematic diagram of a specific operation of a preferred embodiment of the present invention 7 is a schematic diagram of a remote service according to a preferred embodiment of the present invention, and FIG. 8 is a schematic diagram showing functions of a Net Meet ing application service program according to a preferred embodiment of the present invention; Figure 9 is a flow chart showing the shared desktop function of the NetMeing application server of a preferred embodiment of the present invention. [Simple description of the figure] 5 'First computer 1 0 'Second computer 15' NAT server 1 5 1 'Address conversion table 1 5 1 1 'Source I P block

Page 20 1261446 Simple description of the diagram 1 5 1 2 'Source埠 field 1 5 1 3 'Target IP field 1514, NAT reconfiguration 埠 Block 2 0 'Third computer 1 Servo 2 Release unit 2 1 System initial Function 2 2 Publish application function 2 2 1 Net Meeeting application service program 2 2 1 1 Net e eeting system login function 2 2 1 2 Online communication function 2 2 1 3 shared whiteboard function 2 2 1 4 Transfer file function 2 2 1 5 shared desktop function 222 Leave Message application service program 2 3 security control function 231 security control index table 2 3 1 1 user identity identification block 2312 client password field 2 4 system management function 3 first firewall 4 Internet 5 second firewall 6 switching unit

Page 21 1261446 Simple description of the diagram «Connection index of the 61 exchange unit Table 6 1 1 Servo end identification code block 6 1 2 Servo end network identification code field 6 1 3 Servo network address field 6 1 4 client network address field 7 client 8 browsing interface unit 8 1 network address command 8 2 user identification code command 8 3 user password command 9 third firewall

Page 22

Claims (1)

1261446 VI. Patent application scope 1. A customer service architecture applied to the TTPS communication protocol, the architecture comprising: an exchange unit, receiving a server to provide at least one remote service to be matched; and a browsing interface unit providing a user terminal is connected to a network address (URL) of one of the HTTPS communication protocols; wherein the switching unit is driven to perform a mediation action between the browsing interface unit and the remote service to establish the browsing interface unit and the After one of the remote services is securely connected to the pipeline, the client can access the remote service through the secure connection pipeline through a 443-inch HTTPS communication protocol opened by the firewall. 2. The client service architecture for applying the HTTPS protocol as described in claim 1 of the patent application, further comprising a hotkey device, which is a shortcut button for driving the browsing interface unit to directly connect to the application HTTPS communication. The network address of the agreement. 3. The client service architecture for applying the HTTPS protocol as described in claim 1 wherein the remote service is a client/server application. 4. The client service architecture using the HTTPS protocol as described in claim 3, wherein the client/server application service program is a N e t M e e t i n g application service program. 5. The customer service architecture using the HTTPS protocol as described in claim 4, wherein the application service program provides a common desktop function. Page 23 1261446 'Lieutenant Patent Range • The application of the HTTPS protocol service architecture as described in claim 4, wherein the Net Meet ing application service program is a customer service communication function. #〜线 Agreement Security Provided - User Release 7 · The application HTTPS communication service architecture as described in item 4 of the patent application scope, wherein the NetMeeting application service program sends the file function. 8 · The application of the HTTPS protocol service architecture as described in claim 3, wherein the client/servo application service client is an MS Exchange Mai 1 Server application. ,. 9. The application HTTPS communication protocol-service architecture as described in claim 3, wherein the client/server application service is a related application. The application may be an HTTPS communication protocol service architecture as described in claim 9 of the patent application scope, wherein the related application may be a Database Server application of a r a c 1 e. 1 1 · The application service architecture of the application of the HTTPS protocol as described in the first paragraph of the patent application, which further includes a side recording application, is used for recording and detecting the debugging action performed by the server as The evidence of the server and the user's second dispute occurred. And the customer service architecture of the application of the httPS protocol as described in claim 1 of the patent application, further comprising a verification unit, which provides an identity confirmation action of the user to identify the identity of the client. 13. A customer service method that uses the HTTPS protocol, which includes the following steps: Page 24 1261446 VI. The patent application scope provides an exchange unit; provides at least one remote service to be exchanged to the exchange unit; provides a browsing interface unit; provides a network address (URL) of one of the application HTTPS communication protocols The browsing interface unit is configured to drive the browsing interface unit to connect to the network address; and driving the switching unit to perform a mediation action between the browsing interface unit and the remote service to establish the browsing interface unit and the remote One of the end services is a secure connection pipeline; wherein, using a firewall open 443 HTTP HTTPS protocol, a client can access the remote service provided by a server through the secure connection pipeline. 1 . The customer service method of claim 13 , wherein after the step of providing at least one remote service to be exchanged by the to-be-matched device, installing a side recording application on the server A computer system records the debug action performed by the server as evidence for the occurrence of a dispute between the server and the client. The customer service method of claim 13 , wherein after providing the at least one remote terminal to serve the switching unit, providing a verification unit to the computer at the server The system authenticates the identity of the client when the client accesses the remote service. Page 25