WO2004023321A1 - 接続システム、情報提供装置、接続方法、及びプログラム - Google Patents
接続システム、情報提供装置、接続方法、及びプログラム Download PDFInfo
- Publication number
- WO2004023321A1 WO2004023321A1 PCT/JP2003/011290 JP0311290W WO2004023321A1 WO 2004023321 A1 WO2004023321 A1 WO 2004023321A1 JP 0311290 W JP0311290 W JP 0311290W WO 2004023321 A1 WO2004023321 A1 WO 2004023321A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- connection
- information
- external terminal
- information providing
- user
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/2866—Architectures; Arrangements
- H04L67/30—Profiles
- H04L67/306—User profiles
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/564—Enhancement of application control based on intercepted application data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/565—Conversion or adaptation of application format or content
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/30—Definitions, standards or architectural aspects of layered protocol stacks
- H04L69/32—Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
- H04L69/322—Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
- H04L69/329—Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]
Definitions
- the present invention relates to a connection system, an information providing device, a connection method, and a program for connection.
- the present invention relates to a connection system, an information providing device, a connection method, and a connection program for connecting a terminal in an open network to a device in a closed network.
- the closed network Since the closed network is connected to the open network via the firewall, it is generally not accessible from terminals outside the closed network.
- an object of the present invention is to provide a connection system, an information providing device, a connection method, and a program for connection that can solve the above-mentioned problems.
- This object is achieved by a combination of features described in the independent claims.
- the dependent claims define further advantageous embodiments of the present invention. Disclosure of the invention That is, according to the first embodiment of the present invention, an information providing device located in a closed network and a connection from an external terminal, which is a user terminal connected to the open network and located in the open network, to the information providing device are provided.
- a connection system comprising a relay device for relaying data and a router for connecting an open network and a closed network, wherein the relay device identifies a user as a connection request from an external terminal to the information providing device.
- a connection request holding unit that receives and stores user identification information to be connected, and a connection request holding unit that receives a connection confirmation request from an information providing device to confirm the presence or absence of a connection request from an external terminal.
- a connection request output unit for outputting the user identification information to the information providing device, and the information providing device sends a connection confirmation request to the relay device.
- a connection request confirmation unit that transmits periodically, a connection determination unit that receives user identification information from the connection request output unit of the relay device, and determines whether to connect to an external terminal based on the user identification information;
- Provided is a connection system having a connection execution unit for connecting to an external terminal based on the judgment of the connection judgment unit.
- the router may reject the connection from the open network to the closed network and allow the connection from the closed network to the open network.
- An open network can be connected from a mobile communication terminal that is an external terminal, a closed network cannot be connected from a mobile communication terminal, and a connection request holding unit of the relay device transmits user identification information from the mobile communication terminal. You can receive and store it.
- the relay device further includes a software identification information storage unit for identifying communication software or application software running on the relay device, and the connection request output unit of the relay device outputs the software identification information together with the user identification information,
- the connection determination unit of the providing device may further receive the software identification information, and determine whether to connect to the external terminal based on the user identification information and the software identification information.
- the information providing device further includes a content management unit for associating the content to be provided to the user with each user, and the connection request output unit of the relay device further includes a content specification for specifying the content to be provided to the user.
- the information is received from the external terminal and output to the information providing device, and the connection execution unit of the information providing device further receives the content specifying information output by the connection request output unit, and further uses the received content specifying information.
- the connection execution unit of the information providing device may determine whether connection is possible, and may transmit the content to the external terminal when the connection determination unit issues a connection permission.
- the information providing device receives the type of the external terminal and the information format that can be processed by the external terminal, and receives the type of the external terminal, and provides the information to the user using the information format corresponding unit.
- the connection execution unit of the information providing device may further include a conversion unit that converts the content to be converted into an information format that can be processed by the external terminal, and the converted content may be transmitted to the external terminal.
- the information providing apparatus further includes a content management unit connected to the simulation system that performs the simulation calculation on the closed network, and periodically acquires the calculation result and / or the calculation process of the simulation as the content.
- the connection execution unit of the device may provide the calculation result and Z or the calculation progress acquired by the progress acquisition unit to the external terminal.
- the information providing device further includes a content management unit that manages an email sent to an internal terminal of a user connected to the closed network and a conversion unit that converts the email into a language that can be interpreted by a web browser. If the connection execution unit of the information providing device receives the mail request information requesting the mail sent to the user, the connection execution unit interprets the mail sent to the user's internal terminal with a web browser It may be converted to a possible language and sent to an external terminal.
- a second aspect of the present invention is an information providing device located in a closed network connected to an open network via a router, wherein a relay device is connectable to the open network while located in the open network.
- a connection request confirmation unit that periodically requests the relay device for user identification information as a connection request to the information providing device, received from an external terminal that is a terminal of a user who cannot connect to the closed network.
- a connection determination unit that receives user identification information from the relay device and determines whether or not connection to an external terminal is possible based on the user identification information; and connects to the external terminal based on the determination of the connection determination unit.
- An information providing apparatus comprising: The information providing device is a closed network, and may be in a network that cannot be connected from the mobile communication terminal.
- the connection determination unit is a communication software or application running on the relay device.
- Software identification information for identifying the application software may be further received, and whether to connect to the external terminal may be determined based on the user identification information and the software identification information.
- the content execution unit further includes a content management unit for associating the content to be provided to the user with the user, and the connection execution unit further receives content identification information for identifying the content from the user via the relay device, and receives the received content.
- the connection execution unit may determine whether to connect to the external terminal based on the specific information, and may transmit the content to the external terminal when the connection determination unit issues a connection permission.
- An information format support unit that associates the type of terminal with the converted information format, and the external terminal receives the type of external terminal and processes the content to be provided to the user using the information format support unit.
- the connection unit may further include a conversion unit that converts the content into a possible information format, and the connection execution unit may transmit the converted content to an external terminal.
- the system further includes a content management unit connected to a simulation system that performs a simulation calculation on the closed network, and periodically obtains the calculation result of the simulation and Z or the calculation progress as the content, and the connection execution unit obtains the progress.
- the calculation result and / or calculation progress obtained by the unit may be provided to the external terminal.
- the content request receiving unit that receives the mail request information requesting the mail sent to the user and the information providing device are sent to the internal terminal of the user connected to the closed network. It further comprises a content management unit for managing the mail and a conversion unit for converting the mail into a language that can be interpreted by a web browser. May be converted to a language that can be interpreted by a web browser and sent to an external terminal.
- an information providing device located in a closed network is connected to an external terminal which is a user terminal connected to an open network connected to a closed network via a router.
- the connection method is to connect and receive the user identification information that identifies the user as a connection request to the information providing device from an external terminal, and store the information.
- the user identification information stored in the section is output to the information providing device, and the information providing device Provide a connection method characterized by receiving user identification information from the user, determining whether to connect to an external terminal based on the user identification information, and connecting to the external terminal.
- a fourth embodiment of the present invention is executable by a computer, and is connectable to an open network from a closed network connected via a router to an open network via a relay device located in the open network.
- This is a program for connecting to an external terminal that is a user terminal that cannot connect to the relay device.
- User identification information received from the external device by the relay device to the relay device as a connection request to the computer A connection request confirmation function that periodically requests the relay device from the relay device, and a connection determination function that receives user identification information from the relay device and determines whether to connect to an external terminal based on the user identification information.
- a connection execution unit that executes connection to an external terminal based on the judgment result of the connection judgment function. Provide a program characterized by the following.
- FIG. 1 is a diagram showing a configuration of a connection system according to one embodiment of the present invention.
- FIG. 2 is a block diagram showing the configuration of the relay device 100.
- FIG. 3 is a diagram showing the configuration of information stored in the external user information storage unit 110 in a table format.
- FIG. 4 is a diagram showing a configuration of information stored in the software identification information storage unit 120 in a table format.
- FIG. 5 is a diagram illustrating a configuration of information stored in the connection correspondence information storage unit 130 in a table format.
- FIG. 6 is a diagram showing, in a table format, a configuration of information held by the connection request holding unit 140.
- FIG. 7 is a block diagram showing the configuration of the information providing apparatus 300.
- FIG. 8 is a diagram showing a data configuration of information stored in the internal user information storage unit 320 in a table format.
- FIG. 9 is a diagram showing a data configuration of information managed by the content management unit 330 in a table format. .
- FIG. 10 is a diagram illustrating a configuration of information stored in the information format correspondence unit 340 in a table format.
- FIG. 11 is a flowchart showing an operation example of the connection system of FIG.
- FIG. 12 is a flowchart illustrating an example of details of S360 in FIG.
- FIG. 13 is a flowchart illustrating another example of the details of S360 in FIG. 11.
- FIG. 14 is a flowchart illustrating the information providing device 3 after the external terminal 20 obtains the calculation result of the simulation. It is a flowchart of 00. BEST MODE FOR CARRYING OUT THE INVENTION
- FIG. 1 is a diagram showing a configuration of a connection system according to one embodiment of the present invention.
- This connection system is a system for connecting from an external terminal 20 to a closed network 200, and a relay device 100 and a closed network 200 are connected to an open network 10.
- the open network 10 is, for example, the Internet.
- the external terminal 20 is, for example, a mobile communication terminal connectable to a mobile communication network, but may be a fixed terminal.
- the closed network 2000 includes, for example, an information providing device 300, a simulation system 400, an internal terminal 500, and a production line management device 600.
- the information providing device 300 acquires the calculation result of the simulation and / or the progress of the calculation from the simulation system 400.
- the mail transmitted from the internal terminal 500 to the internal terminal 500 is obtained.
- the closed network 200 may further include a mail server. In this case, the information providing apparatus 300 may acquire the mail transmitted to the internal terminal 500 from the mail server.
- the closed network 200 is an open network via the router 40. Connected to network 10.
- the router 40 passes a connection request from the closed network 200 to the open network 100 but does not pass a connection request from the open network 100 to the closed network 200. Also, a connection from a mobile communication terminal connected via a mobile communication network cannot be established.
- the external terminal 200 sends, to the relay device 100, user identification information for identifying the user of the external terminal 20 as a connection request to the closed network 200,
- the external terminal identification information for identifying the terminal 200 and the information providing device identification information for identifying the information providing device 300 are transmitted.
- the relay device 100 stores the received information.
- the information providing apparatus 300 checks the relay apparatus 100 periodically or every second, for example, to determine whether there is a connection request to the information providing apparatus 300. Then, the information providing apparatus 300 receives the user identification information, the external terminal identification information, and the information providing apparatus identification information from the relay apparatus 100, and based on the received information, establishes the connection of the external terminal 200. Determine whether or not it is possible.
- the information providing apparatus 300 connects to the external terminal 20 via the relay apparatus 100 or directly, and sends the mail and the simulation transmitted to the internal terminal 500.
- the calculation result and the Z or the progress of the calculation by the ration system 400, the production line data managed by the production line management device 600, and the like are transmitted.
- the information providing device 300 since the information providing device 300 connects to the external terminal 20 that has made the connection request, the external terminal outside the closed network can be maintained while maintaining the security of the closed network.
- the external terminal 20 and the information providing device 300 can be connected based on a connection request from the terminal 20.
- the router 40 does not pass a connection request from the open network 100 to the closed network 200, so that the security of the closed network is enhanced.
- connection support system a plurality of routers 40 and a plurality of closed networks 200 may be provided.
- the external terminal identification information may also serve as user identification information.
- the external terminal identification information may be a telephone number, a mail address, or a device number of the external terminal 20 assigned to the external terminal 20.
- FIG. 2 is a block diagram showing a configuration of the relay device 100.
- the relay device 100 has an external user information storage unit 110, a software identification information storage unit 120, and a connection correspondence information It has an upper section 130, a connection request holding section 140, a connection request output section 150, and a relay section 160.
- the external user information storage unit 110 stores user information which is information of a user of the external terminal 20.
- the user information is used to determine whether or not the relay device 100 holds a connection request from the external terminal 20.
- the software identification information storage unit 120 stores software identification information for identifying communication software or application software operating on the relay device 100.
- the software identification information is transmitted to the information providing device 300,0 together with the connection request, and is used for authentication processing in the information providing device 300.
- the connection correspondence information storage unit 130 stores information for identifying an open-side logical line, which is a logical line established for connection to the relay device 100 from the external terminal 200, and a connection to the external terminal 20. For this purpose, information for identifying the closed logical line, which is the logical line established from the information providing device 300 to the relay device 1, is stored in association with the information. The information stored in the connection correspondence information storage unit 130 is used for connecting the external terminal 20 and the information providing device 300.
- the connection request holding unit 140 queries the user information received from the external terminal 2.0 at the time of the connection request to the user information stored in the external user information storage unit 110, and based on the query result. Then, it is determined whether or not it is capable of holding the connection request. Then, the connection request is held according to the judgment result. Also, the connection request holding unit 140 uses the information for identifying the logical line used for transmitting the connection request as information for identifying the oven side logical line between the external terminal 20 and the relay device 100. Then, it is stored in the connection correspondence information storage unit 130 in association with the external terminal 20.
- the connection request output unit 150 receives information for confirming the presence / absence of a connection request from the information providing device 300, and sends the user information held as the connection request to the information providing device 300 to the connection request.
- the information is acquired from the holding unit 140 and output to the information providing device 300.
- the relay unit 160 When the relay unit 160 receives information indicating that a connection to the external terminal 20 is established from the information providing device 300, the relay unit 160 switches the logical line used for transmitting this information to the external terminal 200. Is defined as a closed-side logical line used for communication with the external terminal 20, and information for identifying the closed-side logical line is associated with information for identifying the open-side logical line corresponding to the external terminal 20. It is stored in the connection correspondence information storage unit 130.
- the relay unit 160 transmits the information transmitted from the external terminal 20 via the open side logical line to the information providing apparatus 300 via the closed side logical line corresponding to the open side logical line.
- the information transmitted from the relay device 100 via the closed logical line is transmitted to the external terminal 20 via the open logical line corresponding to the closed logical line.
- the relay device 100 holds the connection request from the external terminal 200 to the information providing device 300 in the closed network 200 in a pending state, and the relay device 100 receives the request from the information providing device 300.
- the connection request can be output to the information providing device 300.
- information providing apparatus 300 responds to the connection request, information providing apparatus 300 and external terminal 20 can be connected.
- FIG. 3 is a diagram showing a configuration of information stored in the external user information storage unit 110 in a table format.
- the external user information storage unit 110 identifies the information providing device identification information (the information providing device ID in the example of FIG. 3) and the external terminal 20 that is permitted to connect to the information providing device 300.
- Information (the serial ID of the external terminal 20 in the example of Fig. 3) is associated with the information.
- the relay apparatus 100 does not need to send a connection request from the external terminal 200 that is not permitted to connect to the information providing apparatus 300 to the information providing apparatus 300.
- the external user information storage unit 110 further stores information for identifying the external terminal 20 in association with the location area of the external terminal 20 to which the external terminal 20 is permitted to connect. I'm sorry.
- the connection request holding unit 140 of the relay apparatus 100 acquires the location information of the external terminal 20 from the external terminal 20 or the management system of the mobile communication network, and uses the acquired location information to the outside. It queries the area stored by the user information storage unit 110 to determine whether it can hold the connection request.
- the relay device 100 recognizes the request as an unauthorized connection request. can do.
- FIG. 4 shows the configuration of information stored in the software identification information storage unit 120 in a table format.
- the software identification information storage unit 120 is a relay for identifying the relay device 100.
- the device identification information and the relay device 100 store the software identification information. Therefore, the relay device 100 can output the software identification information and the Z or intermediate / relay device identification information to authenticate the information providing device 300.
- FIG. 5 is a diagram illustrating a configuration of information stored in the connection correspondence information storage unit 130 in a table format.
- the connection correspondence information storage unit 130 stores a global IP address and a port number used for communication between the external terminal 20 and the relay device 100 as information for identifying the open side logical line. Also, the global IP address and port number of the router 40 are stored as information for identifying the closed logical line corresponding to the open logical line. Each global IP address and port number are acquired from an IP header and a TCP header in a TCP / IP connection.
- the information for identifying the open-side logical line and the information for identifying the closed-side logical line include external terminals connected by the open-side logical line and the closed-side logical line.
- the relay unit 160 of the relay device 100 can identify the logical line based on the combination of the global IP address and the port number. Each can be connected.
- the global IP address and port number for identifying the closed-side logical line are managed in the router 40 in association with the local IP and port number.
- FIG. 6 is a diagram showing a configuration of information held by the connection request holding unit 140 in a table format.
- the connection request holding unit 140 stores, for each information providing apparatus 300, the user information received from the mobile communication terminal 20 when the mobile communication terminal 20 requests connection to the information providing apparatus 300. Store.
- the stored user information includes the user identification information (user ID), the login password to the information providing device 300, and the type of the external terminal 20.
- the relay device 100 can output, to the information providing device 300, the user information of the user who has issued the connection request to the information providing device 300.
- FIG. 7 is a block diagram showing the configuration of the information providing apparatus 300.
- the information providing device 300 includes an information providing device identification information storage unit 310, an internal user information storage unit 320, and a container.
- connection execution unit 370 also serves as a conversion unit.
- the information providing device identification information storage unit 310 stores information providing device identification information for identifying the information providing device 300.
- the internal user information storage section 320 stores information for authenticating the user who issued the connection request.
- the content management unit 330 receives and holds content to be provided to the user from another information processing device located in the closed network, and the content management unit 330 provides the user with Stores information for managing content to be provided.
- the information format correspondence section 340 stores the type of the external terminal and the information format that can be processed by the external terminal in association with each other.
- the connection request confirmation unit 350 reads out the information providing device identification information from the information providing device identification information storage unit 310 and periodically transmits it to the relay device 100 together with the information asking whether there is a connection request.
- the transmission interval is preferably an interval shorter than a timeout time for disconnecting the connection between the external terminal 20 and the relay device 100.
- the connection judging unit 360 receives the connection request and the user information from the relay device 100, and refers the user information to the internal user information storage unit 320. .
- the internal user information storage unit 320 may register in advance software identification information of application software that is permitted to be used by the user in association with the identification information of the user.
- the connection determination unit 360 stores the combination of the user identification information and the software identification information received together with the connection request in the internal user information storage unit 3
- connection judging unit 360 judges whether or not the connection is possible based on these inquiry results.
- connection execution unit 37 0 When the connection determination unit 360 allows connection, the connection execution unit 37 0
- connection execution unit 370 queries the content management unit 330 for the content requested from the external terminal 200, acquires the content, and transmits the content directly or directly via the relay device 100. .
- the information providing apparatus 300 can connect to the external terminal 20 that cannot be directly connected to the closed network 200 and provide the user of the external terminal 200 with the content in the closed network 200. it can.
- FIG. 8 is a diagram showing a data configuration of information stored in the internal user information storage unit 320 in a table format.
- the internal user information storage unit 320 stores a combination of the user identification information of the user of the external terminal 20 and the password, corresponding to the model of the external terminal 20. Further, the internal user information storage unit 320 stores the user's e-mail address and information for specifying the content permitted to be transmitted to the external terminal 20 of the user. This information is, for example, information indicating whether or not the acquisition of the calculation results of the simulation system 400 is permitted, or information for identifying the internal terminal 500 to which the user is permitted to connect (the example in FIG. 8). Is the internal terminal ID). '
- the information providing apparatus 300 can determine the content to be provided for each user. If the user requests unauthorized content, the connection request can be rejected. .
- the internal user information storage unit 320 stores information for identifying a logical line established between the information providing apparatus 300 and the user's internal terminal 500, for example, an IP header and a TCP header. Store the local IP address and port number included in.
- connection execution unit 370 refers to the internal user information storage unit 320, acquires the logical line in the closed network to the internal terminal 500 requested to be connected, and acquires the external terminal 200. And the internal terminal 500 can be connected.
- FIG. 9 is a diagram illustrating a data configuration of information managed by the content management unit 330 in a table format.
- the content management unit 330 stores, for each user, information indicating the content to be provided to the user or the location of the content.
- the content management unit 330 acquires, for example, a mail transmitted to the internal terminal 500 used by the user from the mail server 700 shown in FIG. 1 and holds the mail.
- the calculation result or the calculation progress of the simulation executed by the user in the simulation system 400 is periodically acquired from the simulation system 400 and held.
- users can browse Stores information that identifies the files that are allowed.
- the information providing apparatus 300 can provide the user with a mail simulation system 400 that is sent to the internal terminal 500. 0 can provide the result of the simulation executed or the contents of the progress of the calculation.
- FIG. 10 is a diagram showing a configuration of information stored in the information format correspondence unit 340 in a table format.
- the information format support unit 340 stores the terminal model in association with the common format that can be processed by the model. For example, in a portable communication terminal that can be connected to the Internet, a language such as HTML that can be interpreted by a Web browser is stored in association with the language.
- the types of terminals include fixed terminals.
- the information providing apparatus 300 can convert the format of the information according to the type of the connected external terminal 20, and transmit the converted information to the external terminal 20.
- FIG. 11 is a flowchart showing an operation example of the connection system of FIG.
- the external terminal 200 requests the relay device 100 to connect to the closed network 200, that is, to connect to the information providing device 300 (S'20).
- the relay apparatus 100 transmits a login screen for inputting information necessary for connection authentication to the external terminal 20 (S400).
- the external terminal 20 includes information such as information providing device identification information, user identification information and password entered by the user on the login screen, the type of the external terminal 20, the serial ID of the external terminal 20, and the request.
- the information specifying the content to be transmitted is transmitted as login information (S60).
- the connection request holding unit 140 of the relay device 100 executes a connection request authentication process based on the information transmitted from the external terminal 20 (S800).
- the authentication process is performed, for example, by referring to the external user information storage unit 110 for a combination of the serial ID of the external terminal 20 and the information providing device identification information.
- connection request holding unit 140 transmits information indicating that connection is not possible to the external terminal 20 (S120), and executes the operation. The process ends (S310).
- connection request holding unit 140 holds the information transmitted in S600 (S140).
- the connection request holding unit 140 specifies the open-side logical line used for the connection between the external terminal 20 and the relay device 100. For this purpose, the global IP and port number are stored in the connection correspondence information storage unit 130 (S160).
- connection request confirmation unit 350 of the information providing apparatus 300 when it is time to make a confirmation request (S180: Yes), confirms that the connection request is to be confirmed. It is transmitted to the relay device 100 together with the identification information (S200).
- connection request output unit 150 of the relay device 1 ⁇ 0 requests the user identification information, the password, the model of the external terminal 20, and the information stored in correspondence with the received information providing device identification information.
- the information specifying the content is transmitted to the information providing device 300 as a connection request (S220).
- the connection judging unit 360 of the information providing device 300 executes authentication processing of the connection request based on the information received from the connection request output unit 150 of the relay device 100 (S240). .
- the authentication process is performed by referencing the received information to the internal user information storage unit 320. If not authenticated (S260: No), the connection judging unit 360 transmits to the external terminal 20 that the connection is not possible via the relay device 100 (S280, No). S300). If authenticated (S260: Yes;), the connection execution unit 370 of the information providing apparatus 300 transmits a connection execution request to the external terminal 20 to the relay apparatus 100 ( S320).
- the relay unit 160 of the relay device 100 uses the IP address and port number used for transmitting the connection execution request as the IP address and port number for identifying the closed logical line. Then, it is associated with the IP address and port number used at the time of transmitting the connection request from the external terminal 20 and stored in the connection correspondence information storage unit 130 (S340).
- the external terminal 20 and the information providing device 300 communicate with each other via the relay unit 160 of the relay device (S360).
- the authentication processing executed by the relay apparatus 100 and the information providing apparatus 300 execute. You must go through the authentication process. Further, in order to establish a connection, it is necessary to connect the information providing device 300.
- FIG. 12 is a flowchart illustrating an example of the details of S360 in FIG. This flowchart shows the operation when sending a mail sent to the internal terminal 500 to the external terminal 20.
- connection execution unit 370 searches for a mail transmitted to the internal terminal 500 used by the user of the external terminal 20 (S500). Then, the body of the mail is converted to HTML (S 520), a URL is given (S 540), and the title of the mail, the address of the sender of the mail, and the URL given in S 540 are passed through the relay device 100. The data is transmitted to the external terminal 20 (S580).
- the external terminal 20 Upon detecting that the user has clicked on the URL (S600), the external terminal 20 accesses the information providing apparatus 300 according to the URL (S620).
- the connection execution unit 370 of the information providing device 300 cannot transmit the e-mail text because it is a timeout. Is transmitted to the external terminal 20 (S660). Then, the external terminal 20 displays that the time-out has occurred and the mail text cannot be transmitted (S680).
- the time until the time-out may be, for example, the average time required for transmitting the URL, the average time required for the user to confirm the URL, and the time required for the external terminal 20 to connect to the information providing apparatus 300. It is the sum of the average time needed for and Specifically, for example, one minute.
- connection execution unit 370 of the information providing apparatus 300 transmits the HTML of the mail body to the external terminal 20. (S680). Then, the external terminal 20 displays the mail text according to the received HTML (S720).
- the external terminal 20 can transmit the contents of the mail transmitted to the internal terminal 500 to the external terminal 20 having no mail function.
- the URL for viewing the email body has a valid time, it is possible to prevent unauthorized access to the email body due to unauthorized transfer of the URL.
- FIG. 13 is a flowchart illustrating another example of the details of S360 in FIG. 11.
- This flowchart shows an operation when the external terminal 20 requests a specific content after the connection between the external terminal 20 and the information providing apparatus 300 is established.
- the external terminal 20 transmits information specifying the content to the information providing device 300, and requests the specific content (S800).
- the specific content is, for example, a file managed by the information providing device 300, a file managed by the internal terminal 500, that is, a connection request to the internal terminal 500, a production line management data managed by the production line management device 600, and This is a calculation result or a calculation progress of the simulation.
- the external terminal 20 may allow the user to input the user identification information and the password for obtaining the content, and may transmit the input information.
- connection execution unit 370 of the information providing device 300 determines whether or not the transmission of the content to the user of the external terminal 20 is permitted (S820).
- connection execution unit 370 If not permitted (S820: No), the connection execution unit 370 sends a message that transmission is impossible to the information providing apparatus 300 (S840), and ends the operation (S850). If permitted, the connection execution unit 370 queries the content management unit 330 for the requested content, and acquires the content based on the query result.
- the latest calculation result or the calculation progress be the content to be transmitted.
- the acquired content is converted into HTML (S880), a URL is provided (S900), and the provided URL is transmitted to the external terminal 20 (S920).
- the external terminal 20 Upon detecting that the user has clicked on the URL (S600), the external terminal 20 accesses the information providing apparatus 300 according to the URL (S620). Then, on condition that there is no time-out (S640), HTML indicating the content is transmitted to the external terminal 20 (S1000). The external terminal 20 displays the content according to the received HTML (S1020).
- the information providing apparatus 300 refuses transmission of the content. Therefore, even after the connection is established, the information providing apparatus 300 does not transmit content whose transmission is not permitted.
- the display screen based on the application program started on the internal terminal 500 May be used as the content, and the input to the application program may be information that specifies and requests the content.
- the information providing apparatus 300 relays the input to the internal terminal 500, acquires an operation result based on the input from the internal terminal 500, and outputs the operation result to the external terminal 20. In this way, the operation of the application program started on the internal terminal 500 can be confirmed on the external terminal 20.
- FIG. 14 is a flowchart of the information providing apparatus 300 after the external terminal 20 has obtained the calculation result of the simulation of the simulation system 400.
- the information providing device 300 periodically obtains the calculation result from the simulation system 400 (S110 and S112). Then, when the calculation is completed, an e-mail notifying the fact is transmitted to the external terminal 20 that has obtained the calculation result (S116).
- the user executing the simulation can know that the simulation has been completed even in an environment where the user cannot directly connect to the closed network 200.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Information Transfer Between Computers (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2004534151A JP4551218B2 (ja) | 2002-09-04 | 2003-09-04 | 接続システム、情報提供装置、接続方法、及びプログラム |
AU2003261925A AU2003261925A1 (en) | 2002-09-04 | 2003-09-04 | Connection system, information providing device, connection method, and program |
US11/071,263 US20050238033A1 (en) | 2002-09-04 | 2005-03-04 | Connection system, information supply apparatus, connection method and program |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2002-259274 | 2002-09-04 | ||
JP2002259274 | 2002-09-04 |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US11/071,263 Continuation US20050238033A1 (en) | 2002-09-04 | 2005-03-04 | Connection system, information supply apparatus, connection method and program |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2004023321A1 true WO2004023321A1 (ja) | 2004-03-18 |
Family
ID=31973068
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2003/011290 WO2004023321A1 (ja) | 2002-09-04 | 2003-09-04 | 接続システム、情報提供装置、接続方法、及びプログラム |
Country Status (4)
Country | Link |
---|---|
US (1) | US20050238033A1 (ja) |
JP (1) | JP4551218B2 (ja) |
AU (1) | AU2003261925A1 (ja) |
WO (1) | WO2004023321A1 (ja) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2006121251A (ja) * | 2004-10-20 | 2006-05-11 | Sanyo Electric Co Ltd | サーバ |
JP2011198236A (ja) * | 2010-03-23 | 2011-10-06 | Metawater Co Ltd | プラント監視支援システム、及び同システムにおけるクラウドサービス提供装置、ならびにプログラム |
WO2017002498A1 (ja) * | 2015-07-01 | 2017-01-05 | e-Janネットワークス株式会社 | 通信システム及びプログラム |
Families Citing this family (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101906504B1 (ko) | 2010-04-26 | 2018-12-07 | 삼성전자주식회사 | 복수의 디바이스에 콘텐트를 전송하는 방법 및 장치 |
JP6740618B2 (ja) * | 2015-02-25 | 2020-08-19 | 株式会社リコー | 情報処理装置、通信システム、通信方法 |
US10193857B2 (en) * | 2015-06-30 | 2019-01-29 | The United States Of America, As Represented By The Secretary Of The Navy | Secure unrestricted network for innovation |
JP6250595B2 (ja) | 2015-07-01 | 2017-12-20 | e−Janネットワークス株式会社 | 通信システム及びプログラム |
EP3923146B1 (en) * | 2019-04-01 | 2023-11-22 | E-Jan Networks Co. | Communication system, information providing device, program, and information providing method |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2001356973A (ja) * | 2000-06-13 | 2001-12-26 | Century Systems Kk | ネットワークシステム |
JP2002006937A (ja) * | 2000-06-27 | 2002-01-11 | Tokyo Electric Power Co Inc:The | 設備管理方法、設備管理システム、および、設備管理中継サーバ |
JP2002055912A (ja) * | 2000-08-09 | 2002-02-20 | Nippon Techno Lab Inc | 携帯端末へのホームページ送信システム及びその送信方法 |
Family Cites Families (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH11168498A (ja) * | 1997-12-02 | 1999-06-22 | Casio Comput Co Ltd | ネットワークシステム、電子メール補助装置及び記録媒体 |
JP3405168B2 (ja) * | 1998-01-14 | 2003-05-12 | 松下電器産業株式会社 | ディレクトリ管理を用いたモバイルメッセージサーバ装置 |
JP2001154964A (ja) * | 1999-12-01 | 2001-06-08 | Fujitsu Ltd | データ資源を配付する方法 |
JP2001188718A (ja) * | 1999-12-28 | 2001-07-10 | Toshiba Corp | 電子メールシステム |
JP3526435B2 (ja) * | 2000-06-08 | 2004-05-17 | 株式会社東芝 | ネットワークシステム |
JP2002123459A (ja) * | 2000-10-13 | 2002-04-26 | N-Net Corp | コンテンツ配信システム及びコンテンツ配信方法 |
JP3994657B2 (ja) * | 2000-11-17 | 2007-10-24 | 株式会社日立製作所 | サービス提供システム |
JP3745616B2 (ja) * | 2000-11-24 | 2006-02-15 | 株式会社エヌ・ティ・ティ・ドコモ | 中継装置 |
US20020095506A1 (en) * | 2001-01-15 | 2002-07-18 | Murata Kikai Kabushiki Kaisha | Relay server, communication system and facsimile system |
US20020143956A1 (en) * | 2001-04-03 | 2002-10-03 | Murata Kikai Kabushiki Kaisha | Relay server |
JP3660285B2 (ja) * | 2001-08-30 | 2005-06-15 | 富士通株式会社 | 通信制御方法、中継方法及び中継装置 |
-
2003
- 2003-09-04 AU AU2003261925A patent/AU2003261925A1/en not_active Abandoned
- 2003-09-04 WO PCT/JP2003/011290 patent/WO2004023321A1/ja active Application Filing
- 2003-09-04 JP JP2004534151A patent/JP4551218B2/ja not_active Expired - Lifetime
-
2005
- 2005-03-04 US US11/071,263 patent/US20050238033A1/en not_active Abandoned
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2001356973A (ja) * | 2000-06-13 | 2001-12-26 | Century Systems Kk | ネットワークシステム |
JP2002006937A (ja) * | 2000-06-27 | 2002-01-11 | Tokyo Electric Power Co Inc:The | 設備管理方法、設備管理システム、および、設備管理中継サーバ |
JP2002055912A (ja) * | 2000-08-09 | 2002-02-20 | Nippon Techno Lab Inc | 携帯端末へのホームページ送信システム及びその送信方法 |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2006121251A (ja) * | 2004-10-20 | 2006-05-11 | Sanyo Electric Co Ltd | サーバ |
JP4568078B2 (ja) * | 2004-10-20 | 2010-10-27 | 三洋電機株式会社 | サーバ |
JP2011198236A (ja) * | 2010-03-23 | 2011-10-06 | Metawater Co Ltd | プラント監視支援システム、及び同システムにおけるクラウドサービス提供装置、ならびにプログラム |
WO2017002498A1 (ja) * | 2015-07-01 | 2017-01-05 | e-Janネットワークス株式会社 | 通信システム及びプログラム |
JP2017016429A (ja) * | 2015-07-01 | 2017-01-19 | e−Janネットワークス株式会社 | 通信システム及びプログラム |
Also Published As
Publication number | Publication date |
---|---|
AU2003261925A1 (en) | 2004-03-29 |
JP4551218B2 (ja) | 2010-09-22 |
JPWO2004023321A1 (ja) | 2006-01-05 |
US20050238033A1 (en) | 2005-10-27 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP2001298449A (ja) | セキュリティ通信方法、通信システム及びその装置 | |
JP4670598B2 (ja) | ネットワークシステム、プロキシサーバ、セッション管理方法、及びプログラム | |
US20110047270A1 (en) | Network connection service providing device | |
CN101827041A (zh) | Vpn连接系统和vpn连接方法 | |
US20050238033A1 (en) | Connection system, information supply apparatus, connection method and program | |
US8102762B2 (en) | Communication control system and communication control method | |
JP3865317B2 (ja) | 無線lan端末の無線lanへの参加制御方法および無線lan基地局装置並びに無線lan端末装置 | |
JP2007267315A (ja) | マルチ認証機能スイッチ装置 | |
JP5211579B2 (ja) | Sipを用いた認証システムおよび認証方法 | |
US20070226490A1 (en) | Communication System | |
JP4950096B2 (ja) | サービス提供システム、サービス提供方法およびサービス提供プログラム | |
KR100419484B1 (ko) | 공개키 기반구조에서 검증서버를 이용한 인증서의 유효성검증 장치 및 방법 | |
US20090204690A1 (en) | Identifying a location of a server | |
CN101778055A (zh) | 一种消息处理方法和网络实体 | |
JP2006314138A (ja) | 無線lan端末の無線lanへの参加制御方法及び無線lan基地局装置並びに無線lan端末装置 | |
WO2002069568A1 (en) | Group-independent message transfer method and system lending specified application module | |
US20040152448A1 (en) | Method and arrangement for authenticating terminal equipment | |
JP3745577B2 (ja) | 移動網を用いたデータ通信サービスの提供方法及びプロトコル終端装置 | |
TWI434529B (zh) | 提供近場通訊裝置安全連線的系統及其方法 | |
JP2005115588A (ja) | サーバーシステム | |
JP2004140680A (ja) | ネットワーク電話システムとその主装置及び電話端末、認証方法 | |
JP2006229926A (ja) | 通信システム、ならびにこれに用いられる車載サーバ、情報端末および変換サーバ | |
KR20050025547A (ko) | 모바일 홈 네트워크 시스템 | |
JP2003162490A (ja) | 制御装置、その方法及び制御プログラム | |
JP2004320226A (ja) | ネットワーク電話システムとその交換装置、ネットワーク電話端末、及び認証方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
WWE | Wipo information: entry into national phase |
Ref document number: 11071263 Country of ref document: US Ref document number: 2004534151 Country of ref document: JP |
|
122 | Ep: pct application non-entry in european phase |