WO2003060788A1 - Procede d'entree automatique d'informations personnelles d'une page web - Google Patents

Procede d'entree automatique d'informations personnelles d'une page web Download PDF

Info

Publication number
WO2003060788A1
WO2003060788A1 PCT/JP2002/000092 JP0200092W WO03060788A1 WO 2003060788 A1 WO2003060788 A1 WO 2003060788A1 JP 0200092 W JP0200092 W JP 0200092W WO 03060788 A1 WO03060788 A1 WO 03060788A1
Authority
WO
WIPO (PCT)
Prior art keywords
personal information
user
information
user terminal
input
Prior art date
Application number
PCT/JP2002/000092
Other languages
English (en)
Japanese (ja)
Inventor
Kazuhiro Hayashi
Hisanaga Makino
Original Assignee
Wireaction Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Wireaction Inc. filed Critical Wireaction Inc.
Priority to AU2002219583A priority Critical patent/AU2002219583A1/en
Priority to PCT/JP2002/000092 priority patent/WO2003060788A1/fr
Publication of WO2003060788A1 publication Critical patent/WO2003060788A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising

Definitions

  • the present invention relates to a method for automatically inputting personal information on a Web page, a personal information extraction server, a program for a personal information extraction server, a personal information acquisition instruction program, a personal information extraction program, and a browser including a personal information extraction program.
  • Another method is to register personal information in a personal information management server provided on the Internet, which stores a large number of users' personal information in advance.
  • a personal information management server provided on the Internet, which stores a large number of users' personal information in advance.
  • the server of this Web site automatically obtains personal information from the personal information management server via the Internet.
  • Such a personal information management server stores the setting information about the personal information input form for various web pages (such as which item of personal information to enter, whether the number is half-width or full-width, etc.). Let Need to be kept.
  • the user must input the information at each Web site at least at the first input. Also, it is not very common for the user to repeatedly input personal information on the same Web site page, so the convenience for the user is not high.
  • the personal information management server in addition to the need for the user to enter the personal information management server at least once, the personal information management server must be accessed via the personal information management server in order to access the personal information input website. This is very inconvenient. In other words, you could not access unless you first logged in to the personal information management server and then transited to the desired Web site.
  • each of the above methods has a security problem. That is, since information transmitted and received via the Internet can be easily obtained by a third party, a malicious person may obtain personal information of the user and perform an illegal act.
  • security measures such as encryption are often applied to the transmission of important personal information such as credit card numbers, but the above two methods do not allow users to recognize, that is, each website on the Internet (4) Since personal information is exchanged between personal information management servers, users cannot manage security reliably.
  • a user connecting to the Internet through a dial-up connection through an Internet service provider may have access to an Internet connection.
  • ISP Internet service provider
  • the user enters the user ID and password for the ISP (hereinafter collectively referred to as login information) to obtain authentication, and then obtains authentication at various websites such as shopping sites by entering their login information. There must be.
  • the ID and password entered at the time of the first login operation are stored in the personal computer of the user or the server of the website, and the next time you access
  • automatic entry may be canceled due to various conditions.In such a case, the user needs to input again, but the user forgets the ID and password for the website. In many cases, it is very time-consuming.
  • registering login information for various Web sites in a personal information management server provided on the Internet remains a security concern.
  • the present invention provides a method for automatically inputting personal information required on the Internet and automatically inputting personal information to a Web page from the viewpoint of protecting personal information easily and easily by a user.
  • the aim is to provide a method.
  • a personal information storage means accessible from a personal information extraction server stores a user's personal information in advance without passing through the Internet.
  • a web page screen that requires input of personal information from a web site is displayed on the user terminal via the Internet; and a web browser of the user terminal requires the web browser to input the personal information.
  • reading the personal information acquisition instruction program included in the source program of the eb page and, based on the read personal information acquisition instruction program, the web browser of the user terminal sends the personal information extraction server to the personal information extraction server.
  • the information extraction server extracts a part or all of the personal information corresponding to the user recognition information from the personal information storage means. Transmitting the extracted personal information to the user terminal without passing through the Internet, and the Web browser of the user terminal transmits the personal information to the user terminal. Receiving the extracted personal information transmitted from the extraction server; and a web browser of the user terminal inputs the received extracted personal information to a web page requiring input of the personal information, and performs the extraction.
  • a personal information extraction server stores personal information in advance based on a personal information acquisition request transmitted by a personal information acquisition instruction program included in a web page.
  • Personal information is extracted from the information storage means as appropriate and automatically entered in the web browser of the user terminal.
  • the personal information required on the Internet is automatically transmitted to the personal information input web page. Input can be performed easily and safely from the viewpoint of personal information protection for users.
  • the web page screen that requires power is a login screen that requires the user to input login information to the web site.
  • the extracted personal information is added to the personal information storage means as needed and stored.
  • the web browser of the user terminal includes the login information of the user, inputs the login information, and executes a login process on the login screen. In this way, a type of personal information entry operation, a login operation by entering a user ID and password for a Web site, can be performed easily and safely from the viewpoint of personal information protection for the user.
  • the user identification information unique to each user is IP address information assigned to a user terminal, and the personal information storage unit includes the IP address. It is assumed that user ID information associated with the address information and personal information of the user corresponding to the user ID information are stored. In this way, when a user establishes a PPP (Point to Point Protocol) connection to the Internet via an Internet service provider by dial-up, the IP address such as a dynamic IP address that is randomly assigned each time the connection is made By using the address as the user identification information, user authentication can be reliably performed, and unauthorized acquisition of the user's personal information due to impersonation or the like can be reliably prevented.
  • PPP Point to Point Protocol
  • the user recognition information unique to each user is user terminal number information assigned to a user terminal
  • the personal information storage means includes: It is assumed that user ID information associated with the user terminal number information and personal information of a user corresponding to the user ID information are stored. In this way, for example, when the user is connected to the Internet through the Internet connection service line via the Internet connection service provider, different user terminal number information for each user terminal is used as the user identification information. By doing so, the user Authentication can be reliably performed, and unauthorized acquisition of the user's personal information due to impersonation or the like can be reliably prevented.
  • the personal information extraction server includes a required personal information item, personal information shaping information, and personal information acquisition permission information of each web page that requires the input of the personal information.
  • a web page input setting information storage unit which stores input setting information including the web page input setting information when extracting the extracted personal information from the personal information storage unit. Reference is made to the input setting information stored in the information storage means, and extraction is performed based on the input setting information. In this way, you can enter various personal information required, enter the web page, enter the necessary information for the web page, input format (half-width, full-width, etc.), and set the permission for personal information acquisition request for each web site.
  • Personal information extraction conditions for each web page such as permission to obtain personal information, can be set in detail, and more accurate and detailed automatic input processing of personal information can be executed.
  • a web browser of the user terminal inputs a web page that requires input of the personal information, and the extracted personal information transmitted to the web site is: It shall be encrypted. In this way, the user's personal information will be transmitted and received only via high-security non-Internet communication lines and via encrypted Internet connection networks. Leakage of personal information can be prevented more reliably.
  • a web browser of the user terminal inputs the received extracted personal information into a web page requiring input of the personal information, and In the step of transmitting to the eb site via the Internet, the input extracted personal information can be changed and input on the web browser, and the web browser can change the extracted personal information.
  • the personal information extraction To the outgoing server either directly or via the website, together with the new personal information setting request without passing through the Internet, and the personal information extracting server responds to the new personal information setting request. Based on this, the content of the personal information storage means is updated.
  • the content of the personal information storage means is updated.
  • the personal information extraction server By changing necessary items at the time of automatic input of personal information on the eb site, the changed personal information is automatically transmitted to the personal information extraction server, and the contents of the personal information storage means are updated. Therefore, it is very convenient for the user.
  • data transmission and reception between the user terminal and the personal information extraction server are all performed without going through the Internet, so the setting process of the changed personal information is performed for the user. It can be done easily and safely from the viewpoint of personal information protection.
  • the personal information storage unit of the user terminal stores the personal information of the user in advance, and the personal information storage unit of the user terminal obtains the personal information from the web site according to the access request of the user.
  • the Web browser of the user terminal transmits a part of personal information of the user to the personal information extraction program installed on the user terminal.
  • a personal information extraction program corresponding to the personal information extraction server in the first aspect and a personal information storage unit corresponding to a personal information storage unit are provided in the user terminal.
  • the personal information required on the Internet can be automatically input to the web page automatically and safely from the viewpoint of personal information protection for the user.
  • the extraction and automatic input processing of personal information proceeds inside the user terminal, so that unique user identification information such as an IP address user terminal number is not required for each user, so that it is further improved. It is simple.
  • a personal information acquisition request to acquire some or all of the user's personal information transmitted by the web browser of the user terminal without passing through the Internet is unique user recognition for each user transmitted at the same time.
  • a browser for inputting the personal information to a web page that requires inputting the personal information, and transmitting the personal information to the user site via the Internet without transmitting the user information via the Internet. Can also be realized.
  • the personal information extraction server includes an interface. Based on the personal information acquisition instruction program included in the source program of the web page that requires the input of personal information displayed on the user terminal from the web site via the Internet, the web browser of the user terminal is interfaced. Receiving a personal information acquisition request to acquire a part or all of the personal information of the user transmitted without passing through one network, together with unique user identification information for each user transmitted simultaneously; Based on the personal information acquisition request, the personal information of the user stored in advance in the personal information storage unit without passing through the Internet, and corresponding to the user recognition information, is stored in the personal information storage unit. And inputting the extracted extracted personal information to a Web page that requires the input of the personal information by a Web browser of the user terminal.
  • W eb in order to transmit over the interconnect one Internet site, it can be implemented a program for executing a step of transmitting to the Interview one The terminal without going through the in-evening one net.
  • a source program of a web page screen which is displayed on a user terminal from a web site via the Internet and requires input of personal information is provided.
  • a personal information acquisition request program for acquiring a part or all of the personal information of the user is transmitted to the Web browser of the user terminal that has read the personal information acquisition instruction program. It is also possible to realize a personal information acquisition instruction program that executes a step of transmitting to the personal information extraction server without passing through the Internet together with unique user recognition information for each user.
  • An information acquisition instruction program wherein the personal information extraction program installed in the user terminal is installed in a Web browser of the user terminal that has read the personal information acquisition instruction program. It is also possible to realize a personal information acquisition command program for executing a step of transmitting a personal information acquisition request for extracting a part or all of the personal information of the user from the personal information storage unit of the user terminal to the ram.
  • a personal information extraction program installed on a user terminal, wherein the personal information is displayed on the user terminal from a web site by a user access request via the Internet. From the web browser of the user terminal that has read the personal information acquisition instruction program included in the source program of the web page screen that requires the input of, a part or all of the personal information of the user from the personal information storage unit of the user terminal A personal information extraction program used in the second embodiment, which receives a personal information acquisition request for extracting a personal information, can also be realized.
  • a Web browser including the personal information extraction program of the seventh embodiment as a plug-in program can be realized.
  • FIG. 1 is a diagram showing an entire configuration of a first embodiment of a web page personal information automatic input method according to the present invention
  • FIG. 2 is an internal configuration of a personal information extraction server according to the first embodiment
  • FIG. 3 is an image diagram of a data configuration stored in the personal information storage unit in the first embodiment
  • FIG. 4 is a flowchart showing a processing procedure of the first embodiment
  • FIG. FIG. 6 is an image diagram of a screen that requires input of personal information according to the first embodiment
  • FIG. 6 is a diagram illustrating an entire configuration of a second embodiment of the method for automatically inputting personal information on a web page according to the present invention
  • FIG. 8 is a diagram showing the overall configuration of a third embodiment of a method for automatically inputting personal information on a Web page according to the present invention.
  • FIG. 8 shows a personal computer in the first embodiment including a process for setting new personal information.
  • FIG. 9 shows the internal configuration of the information extraction server, and FIG. 9 shows the embodiment of FIG.
  • Flowchart illustrating a setting procedure of the definitive new personal information Figure 1 0 is a diagram showing a first modification of the embodiment of FIG. 8, showing the internal configuration of the personal information extraction server, and FIG. 11 is a personal information extraction server showing a second modification of the embodiment of FIG.
  • FIG. 3 is a diagram showing an internal configuration of an extraction server and the like.
  • FIG. 1 is a diagram showing an overall configuration of a first embodiment of a method for automatically inputting personal information on a web page according to the present invention.
  • a user terminal 10 such as a personal computer is connected to an Internet service provider (hereinafter, referred to as ISP) 20 via a dial-up line 40 such as a telephone line or an ISDN line. Protocol) connection to Internet 50.
  • ISP Internet service provider
  • a dial-up line 40 such as a telephone line or an ISDN line. Protocol
  • IP address global IP address
  • the user accesses the EC (Electronic Commerce) site 60, which is a Web site, using the browser 10a of the user terminal 10, and intends to purchase a certain product.
  • this EC site 60 is affiliated with ISP 20 which is a central institution that provides the personal information input service of the present embodiment to the user. Assume that an agreement has been made.
  • the ISP 20 system mainly includes a personal information extraction server 30, personal information storage means 31 which is a database such as a relational database, and an Internet connection processing unit (not shown).
  • the personal information storage means 31 stores the user's personal information (name, address, telephone number, e-mail address, e-mail address, etc.) registered when the user first applied to the ISP 20 for the Internet connection service. Credit card company's number, etc.) are stored.
  • the personal information extraction server 30 The required personal information is extracted from the personal information storage means 31 and transmitted to the user terminal 10.
  • the processing unit for generating the product order page of the EC site 60, when generating a product order page in response to a request (“: HT TPGET” command) from a user, the processing unit is indicated by a star in the figure.
  • the personal information acquisition instruction program 60a is a program (code) written in a language such as a scripting language, and is a web page that requires input of personal information such as a product order page (hereinafter referred to as personal information required). For each input web page), it is embedded in any part of the source program in HTML or other language.
  • the personal information acquisition instruction program 60a is a format that does not require rewriting of existing source programs and functions only by adding a few new lines. It is preferable because it is simple for the website to be introduced.
  • the personal information acquisition instruction program 60a read into the browser 10a of the user terminal 10 sends a personal information acquisition request to the personal information extraction server 30. Specifically, it requests the necessary personal information data and a script language program (hereinafter referred to as a personal information input script program) for executing the process of automatically inputting the personal information data to the product order page. Send "HT TPGET" command. At this time, the URL of the product order page is transmitted to the personal information extraction server 30 as information for specifying the product order page.
  • a script language program hereinafter referred to as a personal information input script program
  • the I @@ address assigned to the user terminal 10 by the IS @ 20 is transmitted from the browser 10a to the personal information extraction server 30.
  • the personal information extraction server 30 uses this IP address as unique user identification information for each user, and authenticates the user. Therefore, the personal information extraction server 30 generates a personal information input script program for user authentication, extraction of user personal information, and automatic input of the extracted personal information at the user terminal 10. It fulfills various functions such as transmission, authentication of the web page for providing user personal information (described later), and automatic setting of personal information change items (described later).
  • the IP address used in user authentication is a dynamic IP address that is randomly assigned to the ISP 20 each time it is connected, and therefore has a high security effect. It is also possible to use a fixed IP address instead of a dynamic IP address.
  • the personal information extraction server 30 is not provided in the ISP 20 system and managed by the ISP 20 as in the present embodiment, but is provided in the system of another institution and managed by another institution.
  • the personal information storage means 31 in the ISP 20 may be accessed when executing the personal information extraction processing.
  • the personal information extraction server 30 and the personal information storage means 31 of the ISP 20 do not go through the Internet, Needless to say, it is preferable to be connected by a highly secure network such as a service line.
  • FIG. 2 is a diagram showing details of the internal configuration of the personal information extraction server 30.
  • the Web server 30a serves as a contact point with the user terminal 10 and transmits and receives various program data in accordance with the HTTP protocol.
  • the personal information acquisition request transmitted by the browser 10a of the user terminal 10 based on the personal information acquisition instruction program 60a embedded in the personal information required input page 70 of the EC site 60 is transmitted to the user concerned.
  • the IP address of the user and the URL of the personal information input required web page and deliver it to the personal information acquisition module 30c.
  • the personal information acquisition module 30c sends an inquiry request statement (for example, SQL:) that describes what type of information should be acquired from the personal information storage means 31 from the personal information setting file 30f. Get Structured Query Language).
  • the personal information storage means 31 stores the inquiry method and the like in the personal information setting file 30f because the way of defining data in the database varies in each ISP 20.
  • the various DB adapters 30d receive the personal information acquisition command from the personal information acquisition module 30c, and acquire the personal information column of each user from the personal information storage means 31.
  • the IP address of the user is used as key information for identifying the user (user identification information unique to each user).
  • information on the connection method with the personal information storage means 31 is acquired from the DB setting file 30 g.
  • the connection method with the personal information storage means 31 includes the address (host name, etc.) of the personal information storage means 31 which is a database, the access ID on the personal information extraction server side for the personal information storage means database 31, and the path. It can be obtained from information such as information.
  • FIG. 3 is an image diagram of a data configuration stored in the personal information storage unit 31.
  • the ID 31 a of each user registered in the Internet connection service of ISP 20 and various personal information 31 b (name, zip code, address, credit card number, etc.) are stored. I have. Since the IP address given each time the user connects to the Internet is uniquely determined for each user, the personal information storage means 31 in the various DB adapters 30 d of the personal information extraction server 30 reads the personal information of the specific user. When acquiring the information column, the user ID 31a is specified using the IP address information as key information, and the personal information 31b of the user corresponding to the ID is acquired. As the user ID 31a in this personal information storage means, the same ID as each user for the Internet connection service of the ISP 20 may be used, or a user ID 31a dedicated to the personal information extraction processing may be used. It may be.
  • the personal information columns obtained here are still raw data. That is, it is all of the personal information stored for the user having the ID corresponding to the IP address, and the necessary information is not sorted out.
  • the personal information acquisition module 30c receives this personal information column from the various DB adapters 30 and passes it to the personal information selection / shaping / script program generation module 30b along with the URL information of the personal information required input page.
  • the Z script program generation module 3 Ob selects necessary items from the personal information included in the personal information column each time, and also appropriately shapes numbers and alphabets such as full-width Z half-width. Finally, it is generated as extracted personal information and passed to the Web server 30a. Information such as information on required items of personal information (necessary personal information items) and information on input format shaping such as full-width and half-width (personal information shaping information) (collectively input setting information) is required Since this differs for each web page, the information is obtained in advance from affiliated web sites and stored in the target page setting file 30e as a web page input setting information storage unit. Personal information selection and shaping The Z script program generation module 3 Ob uses the URL information of the personal information required input page as key information when reading the input setting information of the page.
  • the input setting information also includes personal information acquisition permission information.
  • the personal information acquisition permission information is information on permission / non-permission of personal information set for each web page in order to prevent inappropriate provision of personal information.
  • Personal information selection and shaping In the processing of the Z script program generation module 30b, as a result of examining the personal information acquisition permission setting for the URL of the relevant web page, (such as the web page of a web site that has not signed an alliance agreement) ) If the page is not allowed, do not automatically enter personal information.
  • the Z script program generation module 3 Ob instructs the browser 10a of the user terminal 10 to input the extracted personal information to the required personal information input page 70 together with the extracted personal information. Handover of the personal information input script program 32 to the web server 30a.
  • the Web server 30a transmits the extracted personal information and the personal information input script program 32 to the browser 10a of the user terminal 10.
  • the extracted personal information may be included as a part of the personal information input script program 32, and both may be integrated.
  • FIG. 4 is a flowchart showing a basic processing procedure of the present embodiment.
  • the processes in the ISP 20, the user terminal 10, and the EC site 60 are separately shown.
  • the user makes an Internet connection request by a dial-up connection from the user terminal 10 to the ISP 20 (step s200).
  • the user ID and passcode for the Internet connection service are input and transmitted to ISP 20.
  • ISP 20 key The Internet connection processing unit establishes a PPP connection to the Internet (step s100).
  • the ISP 20 gives an IP address as unique user authentication information for specifying the user terminal 10.
  • the user starts the browser 10a of the user terminal 10, specifies the URL of the EC site 60, and requests access (step s202). Since the EC site 60 is a shopping web site that can be used only by a user who has registered as a member, a login screen for requesting input of an ID and a password for the EC site 60 is transmitted (step s300).
  • a user ID and password for the EC site 60 are input, and a submit button is clicked (these operations are referred to as a login operation), and a login process is executed. Since the mouth-in operation is also a type of the personal information input operation, the user can use the personal information automatic input service of the present embodiment.
  • the personal information part 31b of the data configuration of the personal information storage means 31 (FIG. 3) needs to include IDs and passwords for various partner websites.
  • a confirmation message “Do you want to execute login automatically?” Is displayed in part, and processing such as “automatic execution” and “login manually” is executed.
  • a button is provided, and when "automatically execute” is clicked, automatic input processing of personal information (login information) of the present embodiment is started. It is also possible to automatically perform the login process without providing such a confirmation step.
  • the user ID and password for the EC site 60 are not stored in the personal information storage means 31 of the ISP 20 from the beginning.
  • the EC site 60 has a tie-up agreement with the ISP 20 for providing personal information automatic input service, and each member user of the EC site 60 has The login information is provided to the ISP 20 at any time and added to the personal information storage means 31.
  • the user himself / herself may register the ID and password for each web site in the personal information storage means 31 as needed. In that case, it is preferable to register via a highly secure communication line other than the Internet.
  • the user does not need to confirm the login information for the EC site 60 at all. In both cases, it is possible that automatic processing of mouth guin work is performed. It is very troublesome and difficult for a user to properly manage all the login information for various Web sites by himself, and thus such automatic processing of the login work is very convenient for the user.
  • the certainty of user authentication for the EC site 60 is guaranteed by the user who has been authenticated at the time of Internet connection at the partner ISP 20.
  • the login screen transmitted from the EC site 60 includes the login information acquisition instruction program 60a, which is a kind of the personal information acquisition instruction program 60a.
  • the login information command program 60a read by the browser 10a of the user terminal 10 sends the personal information acquisition request to the personal information extraction server 30 of the ISP 20.
  • a type of login information acquisition request is transmitted in the form of an "HT TPGET" command (step s206).
  • the IP address of the user terminal 10 and the URL of the login screen are also transmitted to the personal information extraction server 30.
  • the personal information extraction server 30 Upon receiving the login information acquisition request, the personal information extraction server 30 obtains the personal information column of the user from the personal information storage means 31 using the IP address of the user terminal 10 as key information, and obtains a necessary EC from the personal information column. Select only the login information for site 60, format it, generate extracted personal information (step s102), and enter personal information It is sent back to the user terminal 10 as a mouth login information input script program 32 which is a kind of script program (step si 04).
  • the web server 30a receives a login request information acquisition request
  • the personal information acquisition module 30c acquires an inquiry request statement from the personal information acquisition setting file 30f
  • various DB adapters 30d DB setting file s Setting of database connection method from 30 g and acquisition of personal information program from personal information storage means 31, selection of personal information ⁇ Input setting of target page setting file 30 e by the formatting / script program generation module 3 Ob Generating extracted personal information (login information) based on the information and generating a login program for inputting login information 32, and extracting extracted login information and login information input script program 32 by the web server 30a to the user terminal 10 Transmission is performed. More detailed processing contents in each module 30b, 30c, 30d, etc. are already described in the description of FIG.
  • the login information input script program 32 includes an instruction to click the submit button provided on the login screen, the browser 10a that has read this program automatically executes the login work (step s). 208), the user's login to EC site 60 is completed (step s210).
  • the user specifies the URL of the web page for ordering the product and requests access (step s212). Then, the web page screen is transmitted from the web server of the EC site 60 and displayed on the browser 10a of the user terminal 10 (step s302).
  • This web page screen is a screen where you need to enter various personal information (name, address, phone number, credit card information, etc.) required for ordering products. As with the login screen described above, a part of the message is "Do you want to automatically enter personal information?" A processing selection button, such as “Automatic input” or “Manual input”, is provided along with the confirmation message, and clicking “Automatic input” starts the personal information automatic input processing of this embodiment. . Note that the input process may be automatically performed without providing such a confirmation step.
  • the Web browser 10a which has read the personal information acquisition instruction program 60a added from the processing section for generating the product order page of the EC site 60 from the product order page, sends the information to the personal information extraction server 30.
  • the personal information extraction server 30 receives these information at the web server 30 a
  • each module 30b, 30c, 30d obtains the personal information of the user having the user ID corresponding to the IP address from the personal information storage means 31 by using the input items on the product order page. Select and shape the data to meet the specifications, generate the extracted personal information (step s106), and generate the personal information input script program (step s108) ) Return to web browser 10a with 32.
  • FIG. 5 shows an example of a product order page with personal information entered.
  • This product order page 71 1 is a screen for specifying the delivery destination of the product, including the name 7 1 a, the postal code 7 1 b, the address prefecture 7 1 c, the address city 7 1 d, the address city name Address 71 e, telephone number 71 f, and order confirmation button 71 g are provided.
  • Information that defines the above input required items on this product order page 7 1 (required individuals)
  • the information item is stored in the target page setting file 30 e of the personal information extraction server 30 using the URL as a key.
  • in this page 71 in the name input field 7 1a, insert a half-width space between the first and last name, and specify that the postal code 7 1b and the telephone number input field 7 1f should all be entered in half-width.
  • information (personal information shaping information) defining details of these input formats is also stored in advance in the target page setting file 30 e of the personal information extraction server 30.
  • the target page setting file 30e also includes personal information acquisition permission information. If this product order page 71 is set to not permit personal information provision in the personal information acquisition permission setting, automatic input of personal information is not performed. After confirming that all the personal information has been automatically entered correctly, the user clicks the “Place an order” button 7 1 g on the product order page 7 1. Then, an order request is sent to the EC site 60, and the order processing is performed (step S304).
  • the user can manually rewrite the changed items among the automatically entered items 71a to 71f. it can. At that time, it is convenient if the changed new personal information is also transmitted to the ISP 20 side and the contents of the personal information storage means 31 are automatically updated. Such automatic setting processing of new personal information will be described later.
  • the personal information extraction server 30 allows the personal information of the ISP 20 in advance.
  • the necessary items are selected from the user's personal information stored in the storage means 31 and are appropriately formatted, and personal information required from all partner websites 60 is automatically entered on the website. Therefore, it is very convenient for users.
  • the personal information extraction server 3 When personal information extracted from 0 is received, it does not go through the Internet but through a dial-up line such as a telephone line or ISDN line 40. I can feel very at ease.
  • personal information automatically input to the personal information required page from the Web browser 10a of the user terminal 10 is transmitted to the Web site 60. In such a case, it is preferable that the personal information be subjected to encryption processing (including communication procedures with security measures such as SSL: Secure Socket Layer).
  • the ISP 20 will perform the address change procedure, and the ISP 20 will store various personal information 3 1b in the personal information storage means 31 based on the address change. It is only necessary to change the address item, but it is troublesome to change the address to ISP 20 each time, and it is easy to forget.
  • the personal information entered automatically may be deliberately rewritten to false content and transmitted. It is preferable that the execution of the new personal information automatic setting process can be selected by the user.
  • FIG. 8 is a diagram showing the details of the internal configuration of the personal information extraction server 30 corresponding to FIG. Some of the elements shown in Figure 2 (30b, 30c, 30e, 30f) have been omitted Instead, FIG. 2 shows some of the elements not shown (30 h, 30 i). The other elements shown (30a, 30d, 30g) are the same as in FIG.
  • a personal information setting module 30h and a personal information storage setting file 30i are components of the personal information extraction server 30 not shown in FIG.
  • the personal information setting module 30h receives the changed personal information transmitted when the user clicks on the order confirmation button 71g via the web server 30a, and various DB adapters Send to 30 d.
  • the personal information setting module 30 h sends an inquiry request such as an SQL statement that describes what type of information should be transmitted from the personal information storage setting file 30 i to the personal information storage means 31. Get sentence.
  • the operation of the various DB adapters 30d and the DB setting file 30g is different from the case of FIG. 2, and the personal information storage means 31 stores new personal information of each user.
  • the various DB adapters 30d transmit the IP address of the user as key information for identifying the user (user identification information unique to each user).
  • information on the connection method with the personal information storage means 31 is acquired from the DB setting file 30g.
  • the web site 60 receives the new personal information via the web server 61 together with the order request sent by clicking the order confirmation button 71 g, and sends the personal information to the personal information input module 62. Set up and process the order.
  • the function of the order confirmation button 71g is different from that of the automatic personal information input described above. That is, in addition to the function of making an order request while transmitting personal information to the Web site 60, a request for setting new personal information is transmitted together with the new personal information to the personal information extraction server 30 of the ISP 20. Has functions.
  • the personal information acquisition instruction program 60a additionally has a program portion for transmitting a request for setting new personal information, unlike the above-described automatic input of personal information.
  • FIG. 9 is a flowchart showing a basic processing procedure of the method for automatically setting personal information change items. As in FIG. 4, the processes in the ISP 20, the user terminal 10, and the EC site 60 are separately shown.
  • the user manually rewrites the changed address corresponding items 7 1 b to 7 1 e among the personal information items 7 1 a to 71 f on the product order page 71.
  • the user terminal 10 accepts this input (step s250).
  • a new personal information setting request may be transmitted.
  • the contents of the personal information extraction server 30 should not be changed even if there is a request.
  • the content shall be transmitted to ISP 20; otherwise, the data to ISP 20 shall be transmitted. The transmission may not be performed.
  • the EC site 60 receives the new personal information data and the order processing request via the Web server 61, and performs input processing of the new personal information data in the personal information input module 62 (step s352).
  • the order processing is executed (step s354).
  • the above processing at the web site 60 is the same as the above-described processing procedure, and thus detailed description is omitted.
  • the ISP 20 receives the new personal information setting request and the new personal information data in the personal information setting module 30h via the web server 30a (step s150). Specifically, the web browser 10a requests a new personal information setting request from the ISP 20 in a form described in an “HTTP GET” command. At this time, a dummy Web page having no information (or a dummy Web image such as a so-called transparent GIF) is returned from the ISP 20 as a response.
  • the personal information extraction module 30 processes the personal information setting module 30 h, various DB adapters 30 d, etc., and obtains the personal information of the user among the contents of the personal information storage means 31. Update the information part (step s 1 5 2). At this time, the IP address of the user terminal 10 is used as key information for identifying the user. More detailed processing contents of each module 30h, 30d, 30i, 30g, etc. are already described in the description of FIG.
  • FIG. 10 is a diagram showing an internal configuration and the like of the personal information extraction server 30 according to a first modification of the new personal information setting process. The difference from FIG. 8 is that when the user clicks the order confirmation button 71g, the new personal information setting request and new personal information data are transmitted only to the Web site 60 and not transmitted to the ISP20. Then, a new personal information setting request to the personal information extraction server 30 of the ISP 20 is transmitted from the personal information input module 62 of the Web site 60.
  • the personal information input module 62 has a function of transmitting a new personal information setting request and new personal information data to the personal information extraction server 30.
  • the other points are the same as those of the above-described embodiment, and thus the detailed description is omitted.
  • data transmission and reception between the user terminal 10 and the web site 60 and between the web site 60 and the personal information extraction server 30 are all performed by the Internet. —If it is performed via the Internet or in an encrypted form, the setting process of the changed personal information can be performed safely for the user from the viewpoint of personal information protection.
  • FIG. 11 is a diagram showing an internal configuration and the like of the personal information extraction server 30 according to a second modification of the new personal information setting process.
  • the difference from the first modification (FIG. 10) is that the website 60 has the processing branch module 63 for setting personal information, and was transmitted by clicking the order confirmation button 71 1 g.
  • the new personal information setting request and the new personal information data are received via the Web server 61 of the Web site 60, and transmitted to the ISP 20 from the processing branch module 63 for personal information setting. Is a point.
  • the Web site 60 may be provided with a new personal information setting processing branch module 63, and the contents of the personal information input module 62, etc. There is no need to change it systematically. This is very convenient for the administrator of the Web site 60 since the system change for the existing Web site 60 can be easily performed.
  • Other points are the same as those of the second modified example, and thus detailed description is omitted.
  • data transmission and reception between the user terminal 10 and the web site 60 and between the web site 60 and the personal information extraction server 30 are all performed on the Internet. Since the setting is performed without passing through or being encrypted, the setting process of the changed personal information can be performed easily for the user and safely from the viewpoint of personal information protection.
  • FIG. 6 is a diagram showing an entire configuration of a second embodiment of the method for automatically inputting personal information on a web page according to the present invention.
  • a user terminal 10 such as a personal computer is always connected to the Internet 50 via a dedicated line 41 by an Internet service provider (hereinafter, ISP) 21.
  • ISP Internet service provider
  • the other configuration is the same as that of the first embodiment.
  • the user purchases a certain product on the EC (Electronic Commerce) site 60, which is a Web site, using the browser 10a of the user terminal 10.
  • EC Electronic Commerce
  • the connection since the connection is always made, a dynamic IP address is not assigned to the user terminal 10 from the ISP 20. Therefore, the user terminal number information assigned in advance to the user terminal is used as unique user identification information for each user to ensure user authentication.
  • the user terminal number information for example, in the case of ISP 20 using a cable television line, a management number assigned to a set-top box installed at the user's house may be used.
  • the Web browser 10a of the user terminal 10 sends a personal information acquisition request to the personal information extraction server 30, the user terminal number information is used instead of the IP address in the first embodiment. Sent with request.
  • the personal information extraction server 30 uses the user terminal number information instead of the IP address when acquiring the user's personal information from the personal information storage means 31, the internal configuration of the personal information extraction server 30 Also, the basic processing procedure and the like are completely the same as those in the first embodiment, and therefore detailed description thereof will be omitted. Also, the new personal information setting processing when the content of the personal information is changed is the same as that of the first embodiment, and therefore detailed description is omitted.
  • FIG. 7 is a diagram showing an entire configuration of a third embodiment of the method for automatically inputting personal information on a Web page according to the present invention.
  • a personal information extraction program 10b is installed in a user terminal 10 such as a personal computer, and a part of storage means such as a hard disk device of the user terminal 10 is installed. Is provided with a personal information storage unit 10c.
  • User terminal 10 is dialed up to Internet 50 by ISP 20 PPP connection is made via line 40. Alternatively, it may be always connected to the Internet 50 via a dedicated line. However, in the present embodiment, ISP 20 does not have a function of performing personal information extraction processing, and performs only the original Internet connection processing.
  • the personal information extraction program 10b is a program having a function corresponding to the personal information extraction server 30 in the first and second embodiments.
  • the personal information storage unit 10c corresponds to the personal information storage unit 31 in the first and second embodiments, but stores personal information of many users unlike the personal information storage unit 31. However, only the personal information of the user who uses this user terminal 10 is stored.
  • the personal information extraction program 10b like the internal configuration of the personal information extraction server 30 shown in FIG. 2, includes a personal information selection / shaping Z script program generation module 30b, a personal information acquisition module 30c, It has modules and storage units corresponding to various DB adapters 30d, target page setting file 30e, personal information acquisition setting file 30f, DB setting file 30g, and the like. If there is no need to set a connection ID or passcode to the personal information storage unit 10c in the storage unit corresponding to the various DB adapters 30d, the personal information storage unit Only the path name and the like need to be stored.
  • the personal information extraction program 10b corresponds to the personal information setting module 30h, the personal information storage setting file 30i, etc., similarly to the internal configuration of the personal information extraction server 30 shown in FIG. It also has a module and a storage unit to perform.
  • the personal information extraction program 10b also has a storage unit (file, database, etc.) corresponding to the target page setting file 30e of the personal information extraction server 30.
  • the password or input setting information of each personal information required web page (required personal information items, personal information shaping information, personal information acquisition permission information, etc.) is stored. This information will be provided when the user registers on the new website and when the new website will enter into an alliance agreement with the organization that distributes the Personal Information Extraction Program 10c (the central organization for the Automatic Personal Information Input Service). It will be updated online whenever it is tied.
  • the information to be stored in the storage unit corresponding to the target page setting file 30 e as needed is stored and managed in a database provided in the ISP 20 or the like, and the personal information extraction program 10 b executes the personal information extraction processing. Only then, you may access the evening and make inquiries.
  • the procedure for automatically inputting login information and various types of personal information when a user orders a product from the web site 60 is almost the same as in the first and second embodiments. Therefore, detailed description is omitted.
  • unique user identification information such as an IP address and a user terminal number is required for user authentication. Les ⁇ .
  • the user's personal Information is extracted from the personal information storage unit 10c provided in the user terminal, and is automatically input by the web browser 10a without passing through an insecure external communication channel such as the Internet.
  • an insecure external communication channel such as the Internet
  • the personal information extraction program 10 Ob may be integrally included as a plug-in program in the Web browser 10 a of the user terminal 10.
  • a login operation by inputting a user ID and a password to a Web site can be performed safely for a user from the viewpoint of personal information protection.
  • the user can manually change and input the changed item at the time of automatic input of the personal information on a certain web site, so that the changed personal information is obtained. This is very convenient for the user because it is automatically sent to the personal information extraction server and the contents of the personal information storage means are updated.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Development Economics (AREA)
  • Strategic Management (AREA)
  • Finance (AREA)
  • Game Theory and Decision Science (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

L'invention concerne un procédé d'entrée automatique d'informations personnelles d'une page web. Des informations personnelles concernant un utilisateur sont stockées en avance dans un moyen (31) de stockage d'informations personnelles. Une page web requérant l'entrée d'informations personnelles d'un site web (60) est affichée sur un terminal utilisateur (10), et un navigateur (10a) du terminal utilisateur lit un programme (60a) afin de générer une instruction d'acquisition d'informations personnelles contenues dans la page web. Une demande d'acquisition d'informations personnelles d'un utilisateur est transmise avec les informations d'identification d'utilisateur à un serveur (30) d'extraction d'informations personnelles. Ledit serveur d'extraction d'informations personnelles extrait les informations personnelles correspondant aux informations d'identification d'utilisateur du moyen de stockage d'informations personnelles, et les informations personnelles extraites sont transmises au terminal de l'utilisateur mais pas par l'intermédiaire d'Internet. Le navigateur reçoit les informations personnelles extraites, les entre dans la page web et les transmet au site web.
PCT/JP2002/000092 2002-01-10 2002-01-10 Procede d'entree automatique d'informations personnelles d'une page web WO2003060788A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
AU2002219583A AU2002219583A1 (en) 2002-01-10 2002-01-10 Method for automatically inputting personal information of web page
PCT/JP2002/000092 WO2003060788A1 (fr) 2002-01-10 2002-01-10 Procede d'entree automatique d'informations personnelles d'une page web

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2002/000092 WO2003060788A1 (fr) 2002-01-10 2002-01-10 Procede d'entree automatique d'informations personnelles d'une page web

Publications (1)

Publication Number Publication Date
WO2003060788A1 true WO2003060788A1 (fr) 2003-07-24

Family

ID=11738117

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2002/000092 WO2003060788A1 (fr) 2002-01-10 2002-01-10 Procede d'entree automatique d'informations personnelles d'une page web

Country Status (2)

Country Link
AU (1) AU2002219583A1 (fr)
WO (1) WO2003060788A1 (fr)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2016146086A (ja) * 2015-02-09 2016-08-12 株式会社オプティム ユーザ情報登録サーバ、ユーザ情報登録方法及び、ユーザ情報登録プログラム
WO2023182713A1 (fr) * 2022-03-24 2023-09-28 (주)인포플라 Procédé et système de génération d'événement pour objet sur écran par reconnaissance d'informations d'écran comprenant des images de texte et sans texte sur la base de l'intelligence artificielle

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH09134389A (ja) * 1995-11-07 1997-05-20 Toshiba Corp 情報処理端末装置
JPH11120238A (ja) * 1997-10-14 1999-04-30 Sony Corp 情報処理装置および方法、並びに伝送媒体
JPH11242704A (ja) * 1997-11-24 1999-09-07 Internatl Business Mach Corp <Ibm> コンピュータ・ネットワークの方法およびシステム

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH09134389A (ja) * 1995-11-07 1997-05-20 Toshiba Corp 情報処理端末装置
JPH11120238A (ja) * 1997-10-14 1999-04-30 Sony Corp 情報処理装置および方法、並びに伝送媒体
JPH11242704A (ja) * 1997-11-24 1999-09-07 Internatl Business Mach Corp <Ibm> コンピュータ・ネットワークの方法およびシステム

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2016146086A (ja) * 2015-02-09 2016-08-12 株式会社オプティム ユーザ情報登録サーバ、ユーザ情報登録方法及び、ユーザ情報登録プログラム
WO2023182713A1 (fr) * 2022-03-24 2023-09-28 (주)인포플라 Procédé et système de génération d'événement pour objet sur écran par reconnaissance d'informations d'écran comprenant des images de texte et sans texte sur la base de l'intelligence artificielle

Also Published As

Publication number Publication date
AU2002219583A1 (en) 2003-07-30

Similar Documents

Publication Publication Date Title
KR100816629B1 (ko) 회원 정보 등록 방법과 시스템 및 회원 인증 방법과 시스템
TW567427B (en) System and method for managing the sign-in data of web site
JP4413774B2 (ja) 電子メールアドレスとハードウェア情報とを利用したユーザ認証方法及びシステム
KR101468977B1 (ko) 모바일 디바이스를 이용한 인증방법 및 시스템
KR100517302B1 (ko) 인증 시스템, 인증대행장치 및 단말장치
JP4716704B2 (ja) 認証システム及び認証方法
US20080270418A1 (en) Method for registering a domain name and signing up with a search website using a computer network service provider on behalf of a user, and a modem
US20110131419A1 (en) Searching data
US20080109374A1 (en) Internet server access control and monitoring systems
US20060253396A1 (en) Information processing device, system thereof, method thereof, program thereof and recording medium recording the program
JP2008015936A (ja) サービスシステムおよびサービスシステム制御方法
JPWO2002048893A1 (ja) ユーザ認証を行うための方法及び装置
JP2006323728A (ja) サービスシステムおよび最適サービス提供方法
KR20140081041A (ko) 전화번호를 이용한 인터넷 사이트 서비스 접속 인증 방법 및 시스템
US20030065789A1 (en) Seamless and authenticated transfer of a user from an e-business website to an affiliated e-business website
KR100374108B1 (ko) 네트웍상의 개인정보 공용화 방법 및 장치
JP2002259341A (ja) 認証情報入力システム、認証情報保管システム、認証情報入力方法および認証情報入力プログラム
TW201830307A (zh) 利用近場通訊之電子系統及網頁自動登入及安全交易方法
WO2003060788A1 (fr) Procede d&#39;entree automatique d&#39;informations personnelles d&#39;une page web
KR100998241B1 (ko) 스마트카드를 이용한 개인 맞춤형 보안 포털사이트제공시스템 및 그 운용방법
WO2012032628A1 (fr) Appareil de traitement d&#39;informations
US7937295B2 (en) Product purchasing method, apparatus, and computer program product
KR20030060658A (ko) 운영체제 로그인 정보를 이용한 웹 사이트 자동 인증시스템 및 방법
KR20070092917A (ko) 이동통신 망을 통한 인터넷 사용자의 인증 및 개인별보안정보를 전송하는 방법 및 그 시스템
JP4300778B2 (ja) 個人認証システム,サーバ装置,個人認証方法,プログラム及び記録媒体。

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SI SK SL TJ TM TN TR TT TZ UA UG US UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP