WO2011013617A1 - Cookie processing device, cookie processing method, cookie processing program, cookie processing system and information communication system - Google Patents

Cookie processing device, cookie processing method, cookie processing program, cookie processing system and information communication system Download PDF

Info

Publication number
WO2011013617A1
WO2011013617A1 PCT/JP2010/062519 JP2010062519W WO2011013617A1 WO 2011013617 A1 WO2011013617 A1 WO 2011013617A1 JP 2010062519 W JP2010062519 W JP 2010062519W WO 2011013617 A1 WO2011013617 A1 WO 2011013617A1
Authority
WO
WIPO (PCT)
Prior art keywords
cookie
information
domain
identification information
request
Prior art date
Application number
PCT/JP2010/062519
Other languages
French (fr)
Japanese (ja)
Inventor
誠一 芝元
Original Assignee
楽天株式会社
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 楽天株式会社 filed Critical 楽天株式会社
Publication of WO2011013617A1 publication Critical patent/WO2011013617A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/957Browsing optimisation, e.g. caching or content distillation

Definitions

  • the present invention relates to a technical field of a cookie processing device, a cookie processing method, a cookie processing program, a cookie processing system, and an information communication system that receives a cookie from a terminal device and performs processing based on the received cookie information.
  • Cookies can contain various information as well as the state during the session. For example, information related to the user such as personal information of the user of the terminal device, information related to the user's preference, product purchase history, service usage history, and the like can be included in the cookie. Then, the server device creates personal information by using the cookie information transmitted from the terminal device together with the request for the web page, and transmits the personal information to the user. it can.
  • information related to the user such as personal information of the user of the terminal device, information related to the user's preference, product purchase history, service usage history, and the like can be included in the cookie.
  • the server device creates personal information by using the cookie information transmitted from the terminal device together with the request for the web page, and transmits the personal information to the user. it can.
  • Patent Document 1 discloses a single sign-on system including a first web server and a second web server.
  • the first web server transmits a cookie including a personal customer code, an expiration date, and a session ID to the user computer after password authentication.
  • the second web server obtains a cookie from the user computer, and permits access to the site if the personal customer code included in the cookie is valid.
  • the first cookie stored in the terminal device by accessing the website of a certain first domain accesses the website of another second domain. Will not be sent. Therefore, in the second domain website, the second cookie information stored in the terminal device is obtained by accessing the second domain website, but the first cookie information is obtained. Therefore, personalized information cannot be provided to the user under the same conditions as in the first domain.
  • personalized information in the second domain can be provided by the server device performing user authentication when the terminal device accesses the Web site of the second domain.
  • the first domain and the second domain are not in an environment where information related to the user can be shared between the first domain and the second domain. And cannot be personalized under the same conditions. Furthermore, not all information stored in the terminal device as cookies is necessarily held on the server device side of the first and second domains. Therefore, in the second domain, it has been difficult to provide personalized information under the same conditions as the first domain.
  • a server belonging to a second domain having a domain name different from that of the first domain is used to store information on cookies issued to a terminal device in a certain first domain.
  • Cookie processing device, cookie processing method, and cookie processing that can be used by the device and that allows a server device belonging to the second domain to perform personalization based on the same information as the first domain, for example
  • An object is to provide a program, a cookie processing system, and an information communication system.
  • the invention described in claim 1 is configured such that request information having identification information including a domain name indicating a request destination domain is included in a domain indicated by the domain name as identification information of a requested resource.
  • the terminal device that transmits to the server device to which it belongs is a cookie processing device that can be accessed via the network, and is based on the acquisition command information that orders the resource acquisition received by the terminal device from the preset server device.
  • Included in the request information is a receiving means for receiving the request information including the transmitted cookie stored corresponding to the first domain by the terminal device, and command information for ordering retransmission of the request information
  • the identification information to be included includes a domain name of a second domain having a domain name different from that of the first domain. Transmitting means for transmitting together with the identification information cookie information is added to the terminal device included in has been requested information, characterized in that it comprises a.
  • request information including a cookie corresponding to the first domain is transmitted to the cookie processing server based on the acquisition command information received by the terminal device.
  • the terminal device receives request information including a cookie corresponding to the first domain from the terminal device
  • the terminal device includes the identification information including the domain name of the second domain and appended with the cookie information together with the command information.
  • the terminal device that has received the command information and the identification information transmits request information having the identification information based on the command information.
  • the identification information includes the domain name of the second domain
  • the request information is transmitted to the server apparatus belonging to the second domain.
  • the cookie information is added to the identification information, the server device belonging to the second domain that has received the request information can acquire the information.
  • the information of the cookie issued to the terminal device in the first domain can be used by the server device belonging to the second domain having a domain name different from that of the first domain, and is the same as that of the first domain. For example, personalization can be performed based on the information.
  • the cookie information includes a plurality of item correspondence information each corresponding to a preset item
  • the transmission means Transmits, together with the command information, the identification information to which item correspondence information corresponding to an item associated in advance with the second domain among the plurality of item correspondence information included in the cookie information is added. It is characterized by that.
  • the present invention when a plurality of pieces of information are included in one cookie, information that can be acquired and used by a server device belonging to the second domain can be restricted.
  • the invention according to claim 3 is the cookie processing apparatus according to claim 1 or 2, wherein the cookie information is transmitted based on the cookie name of the cookie included in the received request information. And determining means for determining whether or not the transmission means transmits the identification information to which the information of the cookie determined to be transmitted by the determining means is added together with the command information.
  • information that can be acquired and used by server devices belonging to the second domain can be limited in units of cookies.
  • the request information including a cookie stored corresponding to the first domain is preliminarily stored in the cookie processing apparatus.
  • the second hypertext data Based on the acquisition command information included in the preset hypertext data received by the terminal device from the set server device, the second hypertext data includes the second hypertext data. It includes a link to hypertext data transmitted by a server device belonging to the domain.
  • the page is displayed on the screen based on the preset hypertext data received by the terminal device, and the cookie corresponding to the first domain is included based on the acquisition command information included in the hypertext data.
  • Request information is sent to the cookie processing server. Thereafter, when the user selects a link on the page displayed on the screen, the request information is transmitted from the terminal device to the server device belonging to the second domain, and from the server device belonging to the second domain to the terminal device. Hypertext is sent. And the screen display of a terminal device changes to the page of a 2nd domain.
  • the server device belonging to the second domain may use the cookie information corresponding to the first domain. Therefore, the server device belonging to the second domain can perform processing based on the latest information, and the cookie information corresponding to the first domain is stored in the second domain until it is unnecessary. The probability of being transmitted to the server apparatus to which it belongs can be reduced.
  • the invention according to claim 5 is a terminal device for transmitting request information having identification information including a domain name indicating a requested domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name.
  • the identification information includes a domain name of a second domain having a domain name different from that of the first domain, Together with the identification information cookie information is added that is included in the serial received request information and the transmission step of transmitting to the terminal device, characterized by having a.
  • the invention according to claim 6 is a terminal device that transmits request information having identification information including a domain name indicating a request destination domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name.
  • the terminal included in the cookie processing device accessible via the network is transmitted by the terminal device based on acquisition command information for instructing resource acquisition received by the terminal device from a preset server device
  • the identification information for causing the request information to include the receiving means for receiving the request information including the cookie stored corresponding to the first domain by the device, and the command information for requesting retransmission of the request information.
  • Including a domain name of a second domain that is different in domain name from the first domain and received Transmitting means for transmitting to said terminal device together with the identification information cookie information is added in the request information, wherein the function as.
  • the invention according to claim 7 is a terminal device that transmits request information having identification information including a domain name indicating a request destination domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name.
  • the terminal included in the cookie processing device accessible via the network is transmitted by the terminal device based on acquisition command information for instructing resource acquisition received by the terminal device from a preset server device As the identification information for causing the request information to include the receiving means for receiving the request information including the cookie stored corresponding to the first domain by the device, and the command information for requesting retransmission of the request information.
  • Transmitting means for transmitting to said terminal device together with the identification information cookie information is added in the request information, the cookie processing program to function as is characterized by being recorded in a computer-readable.
  • the invention according to claim 8 is a terminal device that transmits request information having identification information including a domain name indicating a requested domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name.
  • a cookie processing system comprising: a cookie processing device belonging to a first domain accessible via a network; and a server device belonging to a second domain having a domain name different from that of the first domain, The cookie processing device is stored in correspondence with the first domain by the terminal device, transmitted by the terminal device based on acquisition command information for instructing resource acquisition received by the terminal device from a preset server device.
  • request information including a cookie corresponding to the first domain is transmitted to the cookie processing server based on the acquisition command information received by the terminal device.
  • the cookie processing device receives the request information including the cookie corresponding to the first domain from the terminal device
  • the identification information including the domain name of the second domain and appended with the cookie information is transmitted together with the command information.
  • the terminal device that has received the command information and the identification information transmits request information having the identification information based on the command information.
  • the identification information includes the domain name of the second domain
  • the request information is transmitted to the server apparatus belonging to the second domain.
  • the cookie information is added to the identification information, the server device belonging to the second domain that has received the request information can acquire the information.
  • the server device belonging to the second domain transmits the acquired information as a cookie to the terminal device.
  • the terminal device that has received the cookie stores the cookie. Thereafter, when the terminal device transmits the request information to the server device belonging to the second domain, the request information is transmitted including the stored cookie.
  • the server device belonging to the second domain can acquire the information of the cookie issued in the first domain from the terminal device as the cookie issued by itself, so that the cookie issued in the first domain
  • This information can be used by a server device belonging to a second domain having a domain name different from that of the first domain, and for example, personalization can be performed based on the same information as the first domain.
  • the invention according to claim 9 is the cookie processing system according to claim 8, wherein the server device belonging to the second domain includes condition information storage means for storing condition information indicating a cookie issuing condition, and the condition Issuing means for determining whether to issue the cookie information added to the identification information included in the received request information as a cookie based on the information; and in the second domain
  • the cookie transmitting unit of the server apparatus to which the server belongs belongs transmits information to the terminal device as a cookie, which is determined to be issued as a cookie by the issue determining unit.
  • the cookie added to the request information transmitted from the terminal device is information that is not necessary for the server device belonging to the second domain, the cookie is excluded from being issued. Can do.
  • the condition information includes cookie identification information for identifying a cookie
  • the transmission means of the cookie processing device receives the received request.
  • the cookie information included in the information and the identification information to which the cookie identification information of the cookie is added are transmitted together with the command information, and the issue determination means of the server device belonging to the second domain includes the condition information
  • the cookie information added to the identification information is issued as a cookie based on the cookie identification information included in the request information and the cookie identification information added to the identification information included in the received request information It is characterized by determining whether or not.
  • information that is not required by the server device belonging to the second domain can be excluded from cookie issue targets in units of cookies.
  • the condition information includes domain identification information for identifying a domain
  • the transmission unit of the cookie processing apparatus includes: The cookie information included in the received request information and the identification information added with the domain identification information of the first domain are transmitted together with the command information, and the issuance of the server device belonging to the second domain
  • the determination unit determines the cookie added to the identification information. It is characterized by determining whether information is issued as a cookie.
  • information that is not required by the server device belonging to the second domain can be excluded from the cookie issue target in units of domains from which the cookie is issued.
  • a twelfth aspect of the present invention is the cookie processing system according to any one of the eighth to eleventh aspects, wherein the cookie processing device belonging to the first domain and the server device belonging to the second domain.
  • Each of a plurality of preset domains having different domain names includes the cookie processing device and the server device belonging to the domain, and the transmission means of the cookie processing device includes the domain to which the cookie processing device belongs and the domain
  • the identification information including a domain name of a domain that is a domain having a different name and previously associated with the identification information included in the received request information is transmitted together with the command information.
  • the cookie information and the server device belonging to each domain can share the cookie information between the domains.
  • the invention according to claim 13 is a terminal device that transmits request information having identification information including a domain name indicating a request destination domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name.
  • An information communication system comprising: a cookie processing device belonging to a first domain accessible by the terminal device via a network; and a server device belonging to a second domain having a domain name different from that of the first domain The cookie processing device receives the request information including the cookie stored by the terminal device corresponding to the first domain from the terminal device, and retransmits the request information.
  • Transmission means for transmitting to the terminal device together with the identification information to which the cookie information included in the received request information is added, and the server device belonging to the second domain receives the command information Request information receiving means for receiving the request information including the identification information to which the cookie information is added from a terminal device, and the terminal using the information added to the identification information included in the received request information as a cookie.
  • Cookie transmission means for transmitting to a device, wherein the terminal device stores storage means for storing cookies, acquisition command information receiving means for receiving acquisition command information for instructing resource acquisition from a preset server device, and The request information including a cookie stored in the storage means corresponding to the first domain based on the received acquisition command information
  • first request information transmitting means for transmitting the cookie processing device, command information receiving means for receiving the command information and the identification information transmitted from the cookie processing device, and
  • a second request information transmitting means for transmitting the request information having the received identification information to a server device belonging to the second domain; and a cookie for receiving a cookie transmitted from the server device belonging to the second domain.
  • Receiving means; and storage control means for storing the received cookie in the storage means corresponding to the second domain.
  • This information can be used by a server device belonging to a second domain having a domain name different from that of the first domain, and for example, personalization can be performed based on the same information as the first domain.
  • FIG. 1 It is a figure which shows an example of schematic structure of the information provision system S which concerns on one Embodiment. It is a figure which shows the example of a description of the HTML document of a cookie transfer page. It is a block diagram which shows an example of schematic structure of the cookie processing server 1 which concerns on one Embodiment.
  • 2 is a block diagram illustrating an example of a schematic configuration of a Web server 1-i and a Web server 2 according to an embodiment.
  • FIG. It is a sequence diagram which shows the process example of the information provision system S which concerns on one Embodiment. It is a sequence diagram which shows the process example of the information provision system S which concerns on one Embodiment.
  • (A) to (f) are examples of contents of requests and responses transmitted and received between the user terminal 3-j and the server device. It is a sequence diagram which shows the process example of the information provision system S which concerns on one Embodiment.
  • FIG. 1 is a diagram illustrating an example of a schematic configuration of the information providing system S according to the present embodiment.
  • the domain D1 for example, there are devices such as an SSL (Secure Sockets Layer) accelerator and a load balancer, but the illustration is omitted. Any one of the Web servers 1-i may also serve as the cookie processing server 1.
  • the cookie processing server 1, the Web server 1-i, the Web server 2, and the user terminal 3-j can transmit / receive data to / from each other via the network NW, for example, using TCP / IP as a communication protocol. It has become.
  • the network NW is constructed by, for example, the Internet, a dedicated communication line (for example, a CATV (CommunityCommunAntenna Television) line), a mobile communication network (including a base station, etc.), a gateway, and the like.
  • the cookie processing server 1 and the Web servers 1-1 to 1-m are installed, for example, for a certain company to operate a Web site that provides various services. It is a server device. Examples of services provided on this Web site include online shopping, auctions, accommodation reservations, ticket sales, blogs, social networking services, and affiliates.
  • Each Web server 1-i is responsible for providing information regarding a specific service.
  • Each Web server 1-i transmits content such as a Web page that constitutes a Web site related to a service that the Web server 1-i owns to the user terminal 3-j in response to a request from the user terminal 3-j.
  • the cookie processing server 1 and the Web servers 1-1 to 1-m are server devices belonging to the domain D1 (an example of the first domain) acquired by the company.
  • a domain name “abc.co.jp” is assigned to the domain D1.
  • a host name including the domain name “abc.co.jp” is assigned to each of the cookie processing server 1 and the Web servers 1-1 to 1-m.
  • a host name “cookie.abc.co.jp” is assigned to the cookie processing server 1.
  • Each Web server 1-i has, for example, “www.abc.co.jp”, “auction.abc.co.jp”, “travel.abc.co.jp”, “ticket.abc.co.jp”.
  • jp "," bank.abc.co.jp ", etc. are assigned.
  • the host name is also a domain name, in the present embodiment, in order to make the explanation easier to understand, there is a subdomain below the domain indicated by the domain name (for example, “www.abc.co.jp”, “Grp01.xd.abc.co.jp” is a subdomain of “abc.co.jp”)), which is called a domain name and has no subdomain below the domain indicated by the domain name.
  • the domain name indicates a specific server device (host), it is referred to as a host name.
  • the Web server 2 (an example of a server device belonging to the second domain), for example, operates a Web site that provides a service set in advance by an affiliated company that operates the Web site in the domain D1. It is an installed server device.
  • the Web server 2 transmits content such as a Web page constituting a Web site related to a preset service to the user terminal 3-j.
  • the Web server 2 is a server device belonging to a domain D2 (an example of a second domain) having a domain name different from that of the domain D1.
  • a domain name “xyz.co.jp” is assigned to the domain D2.
  • a host name “www.xyz.co.jp” is assigned to the Web server 2.
  • User terminal 3-j transmits an HTTP (Hyper Text Transfer Protocol) request (an example of request information) to Web server 1-i or Web server 2 to acquire information such as a Web page, It is displayed on the screen.
  • This HTTP request includes a request URL (Uniform Resource Locator: an example of identification information) for identifying a requested resource.
  • a resource may be specific or abstract, such as URI (Uniform ⁇ Resource Identifier), which is a general syntax specification of URI (Uniform Resource Identifier) 3896. It is generally defined that it can be identified by (URL in this embodiment).
  • the resource identified by the request URL in the HTTP GET method means information acquired by the user terminal 3-j as a client.
  • Examples of resources include HTML (Hyper Text Markup Language) documents, XML (Extensible Markup Language) documents, other electronic documents, text data, image data, video data, audio data, and the like.
  • HTTP request is simply referred to as “request”.
  • the user can receive various services through information displayed on the screen.
  • a preset operating system, a Web browser program, and the like are installed in the user terminal 3-j.
  • a personal computer, a PDA (Personal Digital Assistant), an STB (Set Top Box), a mobile phone, or the like is applied to the user terminal 3-j.
  • FIG. 2 is a diagram showing a description example of the HTML document of the cookie transfer page.
  • Each Web server 1-i issues a cookie. That is, each Web server 1-i transmits a response including a Set-Cookie header as necessary in response to a request from the user terminal 3-j.
  • This cookie information (specifically, the cookie value set in association with the cookie name) is basically information related to the user who uses the user terminal 3-j.
  • information of this cookie for example, identification information for specifying a user after user authentication is performed, a user profile (for example, name, nickname, age, address, telephone number, etc.), It may be service usage history, product purchase history, or questionnaire response information.
  • Each cookie includes one or more pieces of information corresponding to items set in advance, for example, depending on the content of the service, the purpose of use, and the like.
  • the user terminal 3-j When each Web server 1-i issues “Cookie” and designates “.abc.co.jp” as the domain attribute in the Set-Cookie header, the user terminal 3-j receives the cookie received from the Web server 1-i. Is stored in association with “.abc.co.jp” (that is, domain D1). Thereafter, a request from the user terminal 3-j to the Web servers 1-1 to 1-m and the cookie processing server 1 belonging to the domain D1 includes a cookie stored in association with the domain D1. As a result, the Web servers 1-1 to 1-m can share the cookie issued by any one of the Web servers 1-i. By sharing cookies, the Web servers 1-1 to 1-m can personalize Web pages and the like based on the same conditions (based on the same cookie information).
  • the Web server 2 may want to personalize a Web page or the like under the same conditions as the domain D1 in relation to the service provided on the website of the domain D1.
  • the Web page of the domain D1 that introduces the Web site of the domain D2 is displayed on the screen of the user terminal 3-j, the user transitions to the Web page of the domain D2 by selecting a link or the like.
  • the Web server 2 can use the information of the cookie issued in the domain D1, personalization under the same conditions as the domain D1 is possible.
  • a Web page such as " ⁇ 's, Hello".
  • a Web page including an input form for performing user registration for a service provided in the domain D2 is generated, if the user's personal information can be used, the information is included in the form in advance.
  • An input Web page can be generated. For example, if information such as user profile information, service usage history, product purchase history, and the like can be used, a web page that recommends (recommends) a service or product that meets the user's preference may be generated. it can.
  • the Web server 2 cannot obtain a cookie issued in the domain D1. This is because the domain name of the domain D1 is different from the domain name of the domain D2. That is, since the domain attribute of the cookie issued in the domain D1 and the request host name when the user terminal 3-j transmits a request to the Web server 2 do not match backward, the user terminal 3-j The issued cookie is not transmitted to the Web server 2.
  • the cookie processing server 1 (an example of a cookie processing device) belonging to the domain D1 transmits the cookie information transmitted from the user terminal 3-j to the Web server 2 by the user terminal 3-j. Control to be done.
  • the user terminal 3-j that has received the response transmits a request having the URL indicated by the Location header as the request URL, and the request is received by the Web server 2. Since the cookie information is added as a parameter to the request URL, the Web server 2 issues a new cookie with the value of the cookie information as a value. Cookie information can be acquired as cookie information issued by the user.
  • the cookie processing server 1 In order to give the cookie processing server 1 the timing for performing the above processing, it is necessary to send a request including a cookie from the user terminal 3-j to the cookie processing server 1. For this reason, the information processing system S uses a Web page for request transmission. Hereinafter, this Web page is referred to as a “cookie transfer page”.
  • the cookie transfer page is, for example, a web page that displays information that introduces services provided on the website of the domain D2.
  • the HTML document (an example of hypertext data) of the cookie transfer page is described as shown in FIG. 2, for example.
  • an anchor tag indicating a link to the Web page of domain D2 is described so that the user can select the Web page of domain D2.
  • the URL of the Web page including the host name of the Web server 2 is described in the src attribute of this anchor tag.
  • an iframe tag (an example of acquisition command information) is described in the HTML document of the cookie transfer page.
  • a URL including the host name of the cookie processing server 1 is described as the URL of the Web page of the inline frame.
  • a service ID is described as a parameter. This service ID is identification information for designating a cookie to be transferred.
  • the user terminal 3-j transmits a request to the cookie processing server 1 by the described iframe tag.
  • the cookie processing server 1 performs the above-described processing, so that the cookie issued by the Web server 2 is stored in the user terminal 3-j at almost the same timing as when the user terminal 3-j displays the cookie transfer page. Is done.
  • the web server 2 When a request for a web page of the domain D2 linked from the cookie transfer page is transmitted from the user terminal 3-j to the web server 2 in the state where the cookie transfer page is displayed, the web server 2 The issued cookie is also transmitted to the Web server 2. Therefore, the Web server 2 can personalize the Web page to be transmitted as necessary based on the received cookie value. Thereafter, since the cookie issued by the Web server 2 is included in the request from the user terminal 3-j to the Web server 2, the Web server 2 can personalize the Web page whenever necessary.
  • the HTML document itself of the cookie transfer page may be transmitted from any of the Web servers 1-i or may be transmitted from the Web server 2.
  • the HTML document of the cookie transfer page may be transmitted from a preset Web server that does not belong to the domain D1 or the domain D2.
  • FIG. 3 is a block diagram showing an example of a schematic configuration of the cookie processing server 1 according to the present embodiment.
  • the cookie processing server 1 includes a communication unit 11, a storage unit 12, an input / output interface unit 13, and a system control unit 17.
  • the system control unit 17 and the input / output interface unit 13 are connected via a system bus 18.
  • the communication unit 11 is connected to the network NW and controls the communication state with the user terminal 3-j and the like.
  • the storage unit 12 includes, for example, a hard disk drive and the like, and stores various programs such as an operating system and a WWW server program (including an example of a cookie processing program), as well as various data. Yes.
  • the various programs may be acquired from another server device or the like via a network, or may be recorded on a recording medium and read via a drive device.
  • the input / output interface unit 13 performs interface processing between the communication unit 11 and the storage unit 12 and the system control unit 17.
  • the system control unit 17 includes a CPU (Central Processing Unit) 14, a ROM (Read Only Memory) 15, a RAM (Random Access Memory) 16, and the like.
  • the system control unit 17 controls the entire apparatus by the CPU 14 reading and executing various programs stored in the ROM 15 and the storage unit 12.
  • the system control unit 17 functions as a receiving unit, a transmitting unit, and the like by executing a WWW (World Wide Web) server application program.
  • WWW World Wide Web
  • the system control unit 17 as a receiving unit receives a request including a cookie corresponding to the domain D1 from the user terminal 3-j.
  • the system control unit 17 when receiving a request including a cookie from the user terminal 3-j, the system control unit 17 as a transmission unit transmits a response including a Location header to the user terminal 3-j. Specifically, the system control unit 17 acquires the value of the cookie included in the received request, and generates a URL including the host name of the Web server 2 and adding the acquired value as a parameter. Then, the system control unit 17 sets the generated URL as a redirect destination URL in the Location header.
  • FIG. 4 is a block diagram showing an example of a schematic configuration of the Web server 1-i and the Web server 2 according to the present embodiment.
  • each of the Web server 1-i and the Web server 2 includes a communication unit 21, a storage unit 22, an input / output interface unit 23, and a system control unit 27.
  • the system control unit 27 and the input / output interface unit 23 are connected via a system bus 28.
  • the communication unit 21 is connected to the network NW and controls the communication state with the user terminal 3-j and the like.
  • the storage unit 22 includes, for example, a hard disk drive, and stores various programs such as an operating system and a WWW server program, as well as various data.
  • the various programs may be acquired from another server device or the like via a network, or may be recorded on a recording medium and read via a drive device.
  • a database is registered in which information related to services handled by each Web server 1-i or Web server 2 is registered.
  • the input / output interface unit 23 performs interface processing between the communication unit 21 and the storage unit 22 and the system control unit 27.
  • the system control unit 27 includes a CPU 24, a ROM 25, a RAM 26, and the like.
  • the system control unit 27 performs overall control of the entire apparatus when the CPU 24 reads and executes various programs stored in the ROM 25 and the storage unit 22.
  • the system control unit 27 functions as a request information receiving unit, a cookie transmitting unit, and the like by executing a WWW (World Wide Web) server program.
  • WWW World Wide Web
  • the system control unit 27 as request information receiving means receives a request transmitted from the user terminal 3-j by redirection of the cookie processing server 1.
  • the system control unit 27 as a cookie transmission means issues a cookie. Specifically, the system control unit 27 acquires a value added as a parameter from the request URL included in the request received from the user terminal 3-j, and sets the acquired value as a new cookie value as a Set-Cookie header. Is transmitted to the user terminal 3-j. As a result, a new cookie is stored by the user terminal 3-j.
  • FIG. 5 and 6 are sequence diagrams showing an example of processing of the information providing system S according to the present embodiment.
  • FIG. 7 is an example of the contents of a request and a response that are transmitted and received between the user terminal 3-j and the server device. In FIG. 7, information necessary for describing the present embodiment is described, but description is appropriately omitted in other information.
  • the processing in the user terminal 3-j is performed by the control unit provided in the user terminal 3-j executing the Web browser program. Further, processing in each of the cookie processing server 1, the Web server 1-i, and the Web server 2 is performed by executing a WWW server program or the like by a system control unit included therein.
  • the user terminal 3-j When the user terminal 3-j specifies a URL for logging in while the Web browser program is running, as shown in FIG. 5, the user terminal 3-j sends a login page request to the Web server. 1-i is transmitted (step S1). In response to this, the Web server 1-i transmits the HTML document of the login page to the user terminal 3-j (step S2).
  • the user terminal 3-j When the user terminal 3-j receives the HTML document of the login page, the user terminal 3-j displays the login page on the screen. Therefore, when the user inputs the user ID and password, the user terminal 3-j transmits the input user ID and password to the Web server 1-i (step S3). When the Web server 1-i receives the input user ID and password, it performs password authentication (step S4).
  • the Web server 1-i transmits an HTML document of a Web page set in advance after login to the user terminal 3-j (Step S5).
  • the Web server 1-i issues a cookie.
  • the Web server 1-i sets, as a response header, a Set-Cookie header having identification information for specifying a user who has succeeded in password authentication as a cookie value.
  • the Web server 1-i designates, for example, “A1” as the cookie name.
  • the cookie value itself is encrypted.
  • the Web server 1-i designates “.abc.co.jp” as the domain attribute and designates a date indicating an appropriate expiration date as the Expires attribute.
  • the cookie issued here is referred to as “cookie A1”.
  • the user terminal 3-j that has received the response including the HTML document and the cookie A1 receives the Web page after login, and stores the cookie A1 in association with “.abc.co.jp” as the domain attribute. (Step S6).
  • the user performs an operation of some action (for example, input or selection of information, purchase of a product, bid, reservation).
  • the user terminal 3-j transmits a request to the Web server 1-i (step S7).
  • the Web server 1-i that is the request destination at this time may not be the Web server 1-i that issued the cookie A1.
  • Receiving the request the Web server 1-i performs a process set in advance according to the user's action, and transmits the HTML document of the Web page as a result to the user terminal 3-j (step S8). At this time, the Web server 1-i issues a cookie.
  • the Web server 1-i sets, as a response header, a Set-Cookie header in which information related to a user action or a processing result corresponding to the action is a cookie value.
  • the Web server 1-i designates, for example, “A2” as the cookie name.
  • the cookie value itself is encrypted.
  • the Web server 1-i designates “.abc.co.jp” as the domain attribute and designates a date indicating an appropriate expiration date as the Expires attribute.
  • the cookie issued here is referred to as “cookie A2”.
  • the user terminal 3-j Upon receiving the response including the HTML document and the cookie A2, the user terminal 3-j receives the Web page and stores the cookie A2 in association with “.abc.co.jp” as the domain attribute (step S9). ).
  • step S10 When a web page is displayed on the screen of the user terminal 3-j, the user selects a link to the cookie transfer page, so that the user terminal 3-j transfers the cookie to the Web server 1-i.
  • a page request is transmitted (step S10).
  • the Web server 1-i that is the request destination at this time may not be the Web server 1-i that issued the cookie A2.
  • the Web server 1-i transmits the HTML document of the cookie transfer page to the user terminal 3-j (step S11).
  • the user terminal 3-j that has received the HTML document analyzes the received HTML document and displays the cookie transfer page on the screen, and acquires the src attribute of the iframe tag described in the HTML document (step S12).
  • the user terminal 3-j transmits a request with the URL indicated by the acquired src attribute as a request URL (step S13).
  • the request from the user terminal 3-j is transmitted to the cookie processing server 1.
  • the host name of the cookie processing server 1 is the same as “.abc.co.jp”
  • the requests from the user terminal 3-j include cookies A1 and A2. The contents of the request at this time are as shown in FIG.
  • the cookie processing server 1 that has received the request confirms whether or not the cookie name of the cookie A1 or A2 matches the service ID specified as a parameter in the request URL. For example, when the designated service ID is “A2”, the cookie name of the cookie A2 matches the service ID. In this case, the cookie processing server 1 determines that the content information of the cookie A2 may be transferred to the Web server 2. Then, the cookie processing server 1 redirects the cookie processing server 1 again by SSL communication. This is to prevent the third party from intercepting or falsifying information to be transferred from here.
  • the cookie processing server 1 rewrites “http” indicating the protocol of the request URL to “https” (step S15), and sends a response including a Location header that specifies the rewritten URL as a redirect destination URL. 3-j is transmitted (step S16).
  • the content of the response at this time is, for example, as shown in FIG.
  • the user terminal 3-j transmits a request including the cookies A1 and A2 to the cookie processing server 1 (step S17).
  • the content of the request at this time is, for example, as shown in FIG.
  • the cookie processing server 1 acquires from the request the value of the cookie whose cookie name matches the service ID specified as a parameter in the request URL (step S18). Next, if the acquired cookie value is encrypted, the cookie processing server 1 decrypts this value, and then checks the cookie value (step S19). Here, it is checked whether or not the cookie value has been tampered with and whether or not the cookie value contains illegal characters. If the test result is normal, the cookie processing server 1 encrypts and encodes the cookie value (step S20).
  • the cookie processing server 1 generates a URL specified in the Location header (step S21). Specifically, the cookie processing server 1 generates a URL by adding an encoded value as a parameter to a URL including the host name of the Web server 2 as a transfer destination. Next, the cookie processing server 1 transmits a response including a Location header indicating the generated URL as a redirect destination to the user terminal 3-j (step S22). The content of the response at this time is, for example, as shown in FIG.
  • the user terminal 3-j that has received the response transmits a request to the Web server 2 according to the Location header when an SSL session is established between the user terminal 3-j and the Web server 2 (step S23).
  • the content of the request at this time is, for example, as shown in FIG. Since the request URL included in the request at this time is the same as the content of the Location header, a value to be transferred is added to the request URL as a parameter.
  • the Web server 2 that has received the request issues a cookie (step S24). Specifically, the Web server 2 sets, as a response header, a Set-Cookie header in which a parameter value added to the request URL is a cookie value.
  • the Web server 1-i specifies, for example, “B” as the cookie name. Further, the Web server 1-i designates “.xyz.co.jp” as the domain attribute and designates a date indicating an appropriate expiration date as the Expires attribute.
  • the Web server 2 transmits a response including the Set-Cookie header to the user terminal 3-j (Step S25).
  • the cookie issued here is referred to as “cookie B”.
  • the user terminal 3-j that has received the response including the cookie B stores the cookie B in association with “.xyz.co.jp” as the domain attribute (step S26).
  • step S27 when the user selects a link to the Web page of the domain D2 while the cookie transfer page is displayed on the screen (step S27), the user terminal 3-j sends a request including the cookie B to the Web server 2. Transmit (step S28).
  • the Web server 2 that has received the request generates a personalized HTML document based on the value of the cookie B (step S29), and transmits the generated HTML document to the user terminal 3-j (step S30).
  • the value of the cookie transferred to the Web server 2 can be reflected on the Web page for the first time after the screen display of the user terminal 3-j transitions from the cookie transfer page to the Web page of the domain D2. However, it can also be reflected on the cookie transfer page.
  • write a script to rewrite a part of the cookie transfer page in the HTML document of the cookie transfer page For example, write a script to rewrite a part of the cookie transfer page in the HTML document of the cookie transfer page.
  • the script is activated when reading of the entire HTML document including the inline frame is completed by the Web browser program. This can be realized, for example, by describing an onload attribute in the body tag.
  • an instruction for acquiring content for rewriting a part of the cookie transfer page from the Web server 2 is described.
  • the cookie B is stored by the user terminal 3-j as shown in FIG.
  • the user terminal 3-j has already received and stored the cookie B from the Web server 2 until the reading of the entire HTML document is completed.
  • the script is executed at the timing when reading of the entire HTML document is completed, a request is transmitted to the Web server 2 by the user terminal 3-j. Since Cookie B is stored at this point, Cookie B is included in the transmitted request. Therefore, the Web server 2 receives the cookie B. Then, the Web server 2 generates personalized content based on the received cookie B value, and transmits the generated content to the user terminal 3-j.
  • the user terminal 3-j that has received the content rewrites a part of the cookie transfer page by executing the script. As a result, the content received from the Web server 2 is displayed on the cookie transfer page.
  • the user terminal 3-j receives a request including a cookie corresponding to the domain D1 based on the iframe tag described in the cookie transfer page received from the Web server 1-i. Is transmitted to the cookie processing server 1.
  • the cookie processing server 1 sends a response including a Location header having a URL including the domain name of the domain D2 and having the cookie information included in the request as a parameter as a redirect destination URL.
  • the user terminal 3-j transmits a request including the URL specified in the Location header included in the response as a request URL to the Web server 2.
  • the Web server 2 that has received the request transmits a response including the parameter information included in the request as a cookie to the user terminal 3-j.
  • the user terminal 3-j that has received the response stores the cookie included in the response in association with the domain D2.
  • the Web server 2 can acquire the information of the cookie issued in the domain D1 from the user terminal 3-j as the cookie issued by itself, the Web server 2 can acquire the information of the cookie issued in the domain D1. Can be used by the Web server 2 belonging to the domain D2 having a different domain name, and the Web page can be personalized based on the same information as the domain D1.
  • the Web server 2 is displayed with the user terminal 3-j displaying the cookie transfer page on the screen. After the cookie issued by is saved by the user terminal 3-j, when the user selects a link on the cookie transfer page, the screen display changes to the Web page of the domain D2.
  • the Web server 2 immediately before the Web server 2 may use the cookie information corresponding to the domain D1, the Web server 2 acquires the cookie information corresponding to the domain D1, so that the Web server 2 is based on the latest information. And the probability that the information of the cookie corresponding to the domain D1 will be transmitted to the Web server 2 until it is unnecessary.
  • a plurality of pieces of information may be collectively set in one cookie depending on the service content, purpose of use, and the like. For example, information corresponding to items such as the user's name, nickname, age, and gender are collected.
  • all the information of the cookie designated by the service ID is transferred to the Web server 2 regardless of whether or not a plurality of pieces of information are set in the cookie.
  • it is desired to limit the information to be transferred For example, when there is no capital relationship between the organization that operates the website of the domain D1 and the organization that operates the website of the domain D2, avoid unnecessarily leaking information related to the user. Therefore, it is desirable to transfer only necessary information.
  • the cookie processing server 1 performs processing so that only necessary information is transferred to the Web server 2 among the cookie information designated by the service ID. Therefore, for example, the cookie control information is stored in the storage unit 12 of the cookie processing server 1.
  • the cookie control information includes a control ID as identification information of the cookie control information, a host name of a transfer destination Web server, a service ID indicating a cookie to be transferred, and an item as identification information of an item of information to be transferred.
  • An ID, an encryption key for encrypting information to be transferred, and the like are set for each domain to which information is to be transferred.
  • a plurality of item IDs are set as necessary.
  • the cookie control information is preset by an administrator, for example. Since setting is possible for each transfer destination domain, it is possible to transfer cookie information to domains other than the domain D2.
  • the information encrypted in the cookie processing server 1 is decrypted with the decryption key in the transfer destination domain, but the cookie value is encrypted in the domain D1 as an encryption key for encrypting the information to be transferred. If the same key as the encryption key is used, the decryption key for decrypting the value of the cookie in the domain D1 is shown outside the domain D1, which is not preferable in terms of security. Therefore, the encryption key for encrypting the information to be transferred is different from the encryption key for encrypting the value of the cookie in the domain D1.
  • a control ID is described in the src attribute of the iframe tag instead of the service ID. This control ID indicates which cookie control information is used.
  • the cookie processing server 1 When the cookie processing server 1 receives a request including a cookie from the user terminal 3-j that acquired the HTML document of the cookie transfer page, the cookie processing server 1 processes based on the cookie control information corresponding to the control ID added as a parameter to the request URL. I do.
  • FIG. 8 is a sequence diagram showing a processing example of the information providing system S according to the present embodiment.
  • the processes in steps S1 to S12 and the processes in steps S23 to S29 are the same as those in the first embodiment, and therefore, these processes are not shown in FIG. .
  • the cookie processing server 1 that has received a request including the cookies A1 and A2 from the user terminal 3-j that has acquired the HTML document of the cookie transfer page, receives the control ID specified as a parameter in the request URL. Cookie control information corresponding to is acquired (step S51). Next, the cookie processing server 1 checks whether or not the cookie name of the cookie A1 or A2 matches the service ID of the cookie control information (step S52). When the service ID is “A2”, the cookie name of the cookie A2 matches the service ID. Therefore, the cookie processing server 1 rewrites “http” indicating the protocol of the request URL to “https” (step S15), and sends a response including a Location header for designating the rewritten URL as a redirect destination URL. j (step S16).
  • the cookie processing server 1 When the cookie processing server 1 receives a request including the cookies A1 and A2 from the user terminal 3-j that has received the response while the SSL session is established (step S17), the control ID specified as a parameter in the request URL Cookie control information corresponding to is acquired (step S53).
  • the cookie processing server 1 acquires the value of the cookie whose cookie name matches the service ID of the acquired cookie control information from the request (step S54).
  • the cookie processing server 1 decrypts the acquired cookie value with the decryption key for the domain D1, and then checks the cookie value (step S55).
  • the cookie processing server 1 acquires information corresponding to the item ID of the acquired cookie control information from the decrypted value (step S56).
  • the cookie processing server 1 encrypts and encodes the information corresponding to the item ID with the encryption key of the acquired cookie control information (step S57). If the item ID is not set in the cookie control information, the process in step S56 is skipped, and the entire cookie value is encrypted and encoded.
  • the cookie processing server 1 generates a URL specified in the Location header (step S58). Specifically, the cookie processing server 1 generates a URL by adding an encoded value as a parameter to a URL including the host name of the acquired cookie control information. Next, the cookie processing server 1 transmits a response including a Location header indicating the generated URL as a redirect destination to the user terminal 3-j (step S22).
  • the host name of the cookie control information is the host name of the Web server 2
  • the same processing as in steps S23 to S30 in FIG. 6 is performed.
  • one of the cookies corresponding to the domain D1 includes a plurality of pieces of information each corresponding to a preset item
  • the cookie processing apparatus 1 is Of the cookie information included in the request received from the terminal 3-j, a Location where the URL to which the information corresponding to the item previously associated with the domain D2 indicated by the cookie control information is added as a parameter is the redirect destination URL A response including the header is transmitted to the user terminal 3-j.
  • the information that can be acquired and used by the Web server 2 belonging to the domain D2 can be restricted.
  • the cookie information transferred to the Web server 2 is specified in units of items.
  • the information may be specified in units of cookies.
  • the administrator sets the control ID, the host name of the transfer destination Web server, and the service ID indicating the cookie to be transferred in the cookie control information, and does not set the item ID.
  • the administrator sets a plurality of corresponding service IDs.
  • the cookie processing server 1 When the cookie processing server 1 receives a request in which the control ID is added to the request URL from the user terminal 3-j in the processing shown in FIG. 8, the cookie processing server 1 acquires cookie control information corresponding to the control ID. Next, the cookie processing server 1 determines whether there is a cookie included in the received request that has a cookie name that matches the service ID of the acquired cookie control information. The cookie processing server 1 acquires only the value of the cookie whose cookie name matches the service ID of the cookie control information from the received request. Then, the cookie processing server 1 transmits to the user terminal 3-j a response in which the URL added with the acquired cookie value as a parameter is specified in the Location header.
  • the cookie processing server 1 transmits a response including, for example, the status code 204 to the user terminal 3-j.
  • the user terminal 3-j that has received this response does not transmit a request to the Web server 2.
  • the cookie processing server 1 belongs to the domain D1, and the Web server 2 belongs to the domain D2.
  • the cookie processing server 1 and the Web server 2 belonging to the domains may be provided in each of two or more domains having different domain names. Thereby, the information of the cookie issued in each domain can be mutually shared between domains.
  • each cookie processing server 1 stores, as cookie control information, for example, the control ID and the host name of the transfer destination Web server 2 in association with each other.
  • a Web server 2 belonging to a domain different from the domain to which the cookie processing server belongs is specified.
  • a host name that does not match the domain name of the domain to which the cookie processing server that stores the cookie control information belongs is set in the cookie control information as the host name of the transfer destination Web server 2.
  • the administrator or the like describes the control ID set in the cookie control information in the src attribute of the iframe tag in the HTML document of the cookie transfer page, so that the URL indicated by the src attribute and the cookie information It is associated with the transfer destination domain.
  • the Web server 2 may determine whether to issue a cookie. As the Web server 2, unnecessary information may exist in the transferred cookie information. Therefore, the Web server 2 issues a cookie only for information necessary for each cookie among the transferred cookie information.
  • condition information indicating a cookie issuing condition is stored in the storage unit 22 in advance.
  • this condition information for example, a cookie name (an example of cookie identification information) of a cookie to be issued is set.
  • the cookie processing device 1 may add all the cookies received from the user terminal 3-j as transfer targets and add the information to the URL. For example, if no service ID is set in the cookie control information, all cookies are subject to transfer.
  • the Web server 2 determines whether the cookie name added to the request URL is set in the condition information.
  • the Web server 2 issues a cookie when the cookie name added to the request URL is set in the condition information.
  • the Web server 2 performs determination for each cookie name. Then, the Web server 2 issues a cookie only for the cookie information corresponding to the cookie name determined to be set in the condition information.
  • the cookie name of the cookie excluded from the issue target may be set as the condition information.
  • the Web server 2 issues a cookie when the cookie name added to the request URL is not set in the condition information.
  • information for identifying a cookie information obtained by hashing the cookie name, for example, instead of the cookie name may be set as the condition information and added to the URL of the Location header.
  • the Web server 2 may determine whether or not to issue a cookie for each domain from which the cookie information is transferred.
  • a domain name an example of domain identification information
  • a transfer source domain to be issued is set in the condition information.
  • the Web server 2 When the Web server 2 receives a request including such a URL as a request URL from the user terminal 3-j, the Web server 2 determines whether the domain name added to the request URL is set in the condition information. Then, the Web server 2 issues a cookie when the domain name added to the request URL is set in the condition information.
  • the domain name of the domain excluded from the issue target may be set as the condition information.
  • the Web server 2 issues a cookie when the domain name added to the request URL is not set in the condition information.
  • information for identifying a domain information obtained by, for example, hashing the domain name instead of the domain name may be set as the condition information and added to the URL of the Location header.
  • the Web server 2 may determine whether or not to issue a cookie based on a combination of a cookie information transfer source domain and a cookie name. That is, the Web server 2 may issue a cookie only for information on a specific cookie transferred from a specific domain, and does not issue a cookie for information on a specific cookie transferred from a specific domain.
  • the cookie processing server 1 when the cookie processing server 1 receives a request from the user terminal 3-j, the request is redirected once in the SSL session. However, this processing may be omitted.
  • the cookie processing server 1 transmits a response including a Location header, but the command information is not limited to the Location header.
  • the web server 2 transmits a request including a request URL to which cookie information is added.
  • the request is transmitted to the cookie processing server 1 by the description of the iframe tag of the HTML document of the cookie transfer page, but the acquisition command information is not limited to the iframe tag. Absent.
  • the request may be transmitted to the user terminal 3-j, such as an instruction by an img tag or a script.
  • the anchor tag indicating the link to the Web page of domain D2 does not have to be described in the HTML document of the cookie transfer page.
  • the technical specification of the state management mechanism related to cookies is not limited to a specific specification.
  • it may be an initial specification proposed by Netscape ⁇ Communications, or a specification prescribed in RFC2965. May be.
  • Cookie processing server 1-i 2 Web server 3-j User terminal 11, 21 Communication unit 12, 22 Storage unit 13, 23 Input / output interface unit 14, 24 CPU 15, 25 ROM 16, 26 RAM 17, 27 System controller 18, 28 System bus NW Network S Information providing system

Abstract

The cookie processing device, cookie processing method, cookie processing program, cookie processing system, and information communication system can enable cookie information issued at a terminal device in a certain first domain to be used by a server device belonging to a second domain having a domain name different from that of the first domain, whereby the server device belonging to the second domain can perform, for example, personalization, on the basis of the same information as the first domain. The cookie processing device is provided with a reception means for receiving request information, including a cookie that has been stored in correspondence with the first domain by way of the terminal device, that has been transmitted by the terminal device on the basis of acquisition command information for commanding resource acquisition that has been received by the terminal device from a predetermined server device; and a transmission means for transmitting, to the terminal device, command information for commanding retransmission of the request information, together with identification information as identification information that is to be included in the request information; wherein the identification information includes a domain name of a second domain that is different from the domain name of the first domain, and in which cookie information that has been included in the received request information has been added.

Description

クッキー処理装置、クッキー処理方法、クッキー処理プログラム、クッキー処理システム及び情報通信システムCookie processing device, cookie processing method, cookie processing program, cookie processing system, and information communication system
 本発明は、端末装置からクッキーを受信し、受信したクッキーの情報に基づいて処理を行うクッキー処理装置、クッキー処理方法、クッキー処理プログラム、クッキー処理システム及び情報通信システムの技術分野に関する。 The present invention relates to a technical field of a cookie processing device, a cookie processing method, a cookie processing program, a cookie processing system, and an information communication system that receives a cookie from a terminal device and performs processing based on the received cookie information.
 従来から、パーソナルコンピュータ等の端末装置を用いてインターネット等のネットワークに接続し、サーバ装置から提供されるWebページ等を通じて、各種のサービスが提供されるシステムが知られている。こうしたシステムにおいては、端末装置とサーバ装置とのセッション中における状態を管理するための一手法として、クッキーが用いられている。 2. Description of the Related Art Conventionally, there are known systems in which various services are provided through a Web page provided from a server device by connecting to a network such as the Internet using a terminal device such as a personal computer. In such a system, a cookie is used as a technique for managing a state during a session between a terminal device and a server device.
 クッキーには、セッション中における状態だけではなく、様々な情報を含ませることができる。例えば、端末装置のユーザの個人情報、ユーザの嗜好に関する情報、商品の購入履歴やサービスの利用履歴等、ユーザに関連する情報をクッキーに含ませることができる。そして、サーバ装置が、Webページ等のリクエストとともに端末装置から送信されてきたクッキーの情報を利用してWebページ等を作成し、送信することにより、パーソナライズ化された情報をユーザに提供することができる。 Cookies can contain various information as well as the state during the session. For example, information related to the user such as personal information of the user of the terminal device, information related to the user's preference, product purchase history, service usage history, and the like can be included in the cookie. Then, the server device creates personal information by using the cookie information transmitted from the terminal device together with the request for the web page, and transmits the personal information to the user. it can.
 また、複数のサーバ装置が同一のドメインに属するのであれば、これらのサーバ装置がクッキーの情報を共用することが可能である。例えば、特許文献1には、第1ウェブサーバと第2ウェブサーバで構成されるシングルサインオンシステムが開示されている。このシステムでは、ユーザコンピュータが第1ウェブサイトにアクセスする際、第1ウェブサーバが、パスワード認証を行った後、個人顧客コード、有効期限及びセッションIDを含むクッキーをユーザコンピュータに送信する。その後、ユーザコンピュータが第2ウェブサイトにアクセスすると、第2ウェブサーバが、ユーザコンピュータからクッキーを取得し、クッキーに含まれる個人顧客コードが有効である場合には、サイトへのアクセスを許可する。 Also, if a plurality of server devices belong to the same domain, these server devices can share cookie information. For example, Patent Document 1 discloses a single sign-on system including a first web server and a second web server. In this system, when the user computer accesses the first website, the first web server transmits a cookie including a personal customer code, an expiration date, and a session ID to the user computer after password authentication. Thereafter, when the user computer accesses the second website, the second web server obtains a cookie from the user computer, and permits access to the site if the personal customer code included in the cookie is valid.
特開2003-323409号公報JP 2003-323409 A
 しかしながら、サーバ装置が属するドメインが異なる場合、例えば、或る第1のドメインのWebサイトへのアクセスによって端末装置に保存された第1のクッキーは、別の第2のドメインのWebサイトにアクセスする際には送信されない。従って、第2のドメインのWebサイトにおいては、第2のドメインのWebサイトへのアクセスによって端末装置に保存された第2のクッキーの情報については取得しているが第1のクッキーの情報を取得していないため第1のドメインと同様の条件では、ユーザに対してパーソナライズ化された情報を提供することができなかった。 However, when the domain to which the server device belongs is different, for example, the first cookie stored in the terminal device by accessing the website of a certain first domain accesses the website of another second domain. Will not be sent. Therefore, in the second domain website, the second cookie information stored in the terminal device is obtained by accessing the second domain website, but the first cookie information is obtained. Therefore, personalized information cannot be provided to the user under the same conditions as in the first domain.
 一方で、端末装置が第2のドメインのWebサイトにアクセスする際にサーバ装置がユーザ認証を行うことによって、第2のドメインにおけるパーソナライズ化された情報を提供することはできる。 On the other hand, personalized information in the second domain can be provided by the server device performing user authentication when the terminal device accesses the Web site of the second domain.
 しかしながら、認証によってユーザが特定されたとしても、第1のドメインと第2のドメインとの間でユーザに関連する情報を共有することができる環境になければ、第1のドメインと第2のドメインとで同じ条件でパーソナライズすることはできない。さらにクッキーとして端末装置に保存させた情報の全てを第1及び第2のドメインのサーバ装置側で必ずしも保持しているとも限らない。従って、第2のドメインにおいては、第1のドメインと同じ条件でパーソナライズ化された情報を提供することは難しかった。 However, even if the user is specified by authentication, the first domain and the second domain are not in an environment where information related to the user can be shared between the first domain and the second domain. And cannot be personalized under the same conditions. Furthermore, not all information stored in the terminal device as cookies is necessarily held on the server device side of the first and second domains. Therefore, in the second domain, it has been difficult to provide personalized information under the same conditions as the first domain.
 本発明は以上の点に鑑みてなされたものであり、或る第1のドメインにおいて端末装置に発行されたクッキーの情報を、第1のドメインとはドメイン名が異なる第2のドメインに属するサーバ装置が利用することを可能とし、もって、第2のドメインに属するサーバ装置が、第1のドメインと同じ情報に基づいて例えばパーソナライズを行うことを可能とするクッキー処理装置、クッキー処理方法、クッキー処理プログラム、クッキー処理システム及び情報通信システムを提供することを目的とする。 The present invention has been made in view of the above points. A server belonging to a second domain having a domain name different from that of the first domain is used to store information on cookies issued to a terminal device in a certain first domain. Cookie processing device, cookie processing method, and cookie processing that can be used by the device and that allows a server device belonging to the second domain to perform personalization based on the same information as the first domain, for example An object is to provide a program, a cookie processing system, and an information communication system.
 上記課題を解決するために、請求項1に記載の発明は、要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能なクッキー処理装置であって、予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信手段と、前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第1のドメインとドメイン名が異なる第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段と、を備えることを特徴とする。 In order to solve the above-described problem, the invention described in claim 1 is configured such that request information having identification information including a domain name indicating a request destination domain is included in a domain indicated by the domain name as identification information of a requested resource. The terminal device that transmits to the server device to which it belongs is a cookie processing device that can be accessed via the network, and is based on the acquisition command information that orders the resource acquisition received by the terminal device from the preset server device. Included in the request information is a receiving means for receiving the request information including the transmitted cookie stored corresponding to the first domain by the terminal device, and command information for ordering retransmission of the request information The identification information to be included includes a domain name of a second domain having a domain name different from that of the first domain. Transmitting means for transmitting together with the identification information cookie information is added to the terminal device included in has been requested information, characterized in that it comprises a.
 この発明によれば、端末装置が受信した取得命令情報に基づいて第1のドメインに対応するクッキーが含まれる要求情報がクッキー処理サーバに送信される。クッキー処理装置が、第1のドメインに対応するクッキーを含む要求情報を端末装置から受信した場合、第2のドメインのドメイン名を含み且つクッキーの情報が付加された識別情報を命令情報とともに端末装置に送信する。命令情報及び識別情報を受信した端末装置は、命令情報に基づいて、識別情報を有する要求情報を送信する。ここで、識別情報には第2のドメインのドメイン名が含まれるので、要求情報は第2のドメインに属するサーバ装置へ送信される。また、識別情報にはクッキーの情報が付加されているので、要求情報を受信した第2のドメインに属するサーバ装置は、当該情報を取得することができる。 According to the present invention, request information including a cookie corresponding to the first domain is transmitted to the cookie processing server based on the acquisition command information received by the terminal device. When the cookie processing device receives request information including a cookie corresponding to the first domain from the terminal device, the terminal device includes the identification information including the domain name of the second domain and appended with the cookie information together with the command information. Send to. The terminal device that has received the command information and the identification information transmits request information having the identification information based on the command information. Here, since the identification information includes the domain name of the second domain, the request information is transmitted to the server apparatus belonging to the second domain. Further, since the cookie information is added to the identification information, the server device belonging to the second domain that has received the request information can acquire the information.
 従って、第1のドメインにおいて端末装置に発行されたクッキーの情報を、第1のドメインとはドメイン名が異なる第2のドメインに属するサーバ装置が利用することが可能となり、第1のドメインと同じ情報に基づいて例えばパーソナライズを行うことが可能となる。 Accordingly, the information of the cookie issued to the terminal device in the first domain can be used by the server device belonging to the second domain having a domain name different from that of the first domain, and is the same as that of the first domain. For example, personalization can be performed based on the information.
 請求項2に記載の発明は、請求項1に記載のクッキー処理装置において、前記クッキーの情報に、夫々が予め設定された項目に対応する複数の項目対応情報が含まれており、前記送信手段は、前記クッキーの情報に含まれる前記複数の項目対応情報のうち、前記第2のドメインに予め対応付けられた項目に対応する項目対応情報が付加された前記識別情報を前記命令情報とともに送信することを特徴とする。 According to a second aspect of the present invention, in the cookie processing apparatus according to the first aspect, the cookie information includes a plurality of item correspondence information each corresponding to a preset item, and the transmission means Transmits, together with the command information, the identification information to which item correspondence information corresponding to an item associated in advance with the second domain among the plurality of item correspondence information included in the cookie information is added. It is characterized by that.
 この発明によれば、1つのクッキーに複数の情報が含まれている場合に、第2のドメインに属するサーバ装置が取得し利用することができる情報を制限することができる。 According to the present invention, when a plurality of pieces of information are included in one cookie, information that can be acquired and used by a server device belonging to the second domain can be restricted.
 請求項3に記載の発明は、請求項1又は請求項2に記載のクッキー処理装置において、前記受信された要求情報に含まれるクッキーのクッキー名に基づいて、当該クッキーの情報を送信するか否かを判定する判定手段を更に備え、前記送信手段は、前記判定手段により送信すると判定されたクッキーの情報が付加された前記識別情報を、前記命令情報とともに送信することを特徴とする。 The invention according to claim 3 is the cookie processing apparatus according to claim 1 or 2, wherein the cookie information is transmitted based on the cookie name of the cookie included in the received request information. And determining means for determining whether or not the transmission means transmits the identification information to which the information of the cookie determined to be transmitted by the determining means is added together with the command information.
 この発明によれば、第2のドメインに属するサーバ装置が取得し利用することができる情報を、クッキー単位で制限することができる。 According to the present invention, information that can be acquired and used by server devices belonging to the second domain can be limited in units of cookies.
 請求項4に記載の発明は、請求項1乃至3の何れか1項に記載のクッキー処理装置において、前記第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報は、前記予め設定されたサーバ装置から前記端末装置が受信した予め設定されたハイパーテキストデータに含まれる前記取得命令情報に基づいて前記端末装置により送信され、前記予め設定されたハイパーテキストデータには、前記第2のドメインに属するサーバ装置により送信されるハイパーテキストデータへのリンクが含まれていることを特徴とする。 According to a fourth aspect of the present invention, in the cookie processing device according to any one of the first to third aspects, the request information including a cookie stored corresponding to the first domain is preliminarily stored in the cookie processing apparatus. Based on the acquisition command information included in the preset hypertext data received by the terminal device from the set server device, the second hypertext data includes the second hypertext data. It includes a link to hypertext data transmitted by a server device belonging to the domain.
 この発明によれば、端末装置が受信した予め設定されたハイパーテキストデータに基づいてページが画面表示され、当該ハイパーテキストデータに含まれる取得命令情報に基づいて第1のドメインに対応するクッキーが含まれる要求情報がクッキー処理サーバに送信される。その後、画面に表示されているページ上のリンクをユーザが選択することによって、端末装置から要求情報が第2のドメインに属するサーバ装置に送信され、第2のドメインに属するサーバ装置から端末装置にハイパーテキストが送信される。そして、端末装置の画面表示が第2のドメインのページに遷移する。 According to this invention, the page is displayed on the screen based on the preset hypertext data received by the terminal device, and the cookie corresponding to the first domain is included based on the acquisition command information included in the hypertext data. Request information is sent to the cookie processing server. Thereafter, when the user selects a link on the page displayed on the screen, the request information is transmitted from the terminal device to the server device belonging to the second domain, and from the server device belonging to the second domain to the terminal device. Hypertext is sent. And the screen display of a terminal device changes to the page of a 2nd domain.
 従って、第1のドメインに対応するクッキーの情報を第2のドメインに属するサーバ装置が利用する可能性がある直前に、第2のドメインに属するサーバ装置が第1のドメインに対応するクッキーの情報を取得するので、第2のドメインに属するサーバ装置が最新の情報に基づいて処理を行うことができるとともに、不必要な場合にまで第1のドメインに対応するクッキーの情報が第2のドメインに属するサーバ装置に送信される確率を減らすことができる。 Therefore, immediately before the server device belonging to the second domain may use the cookie information corresponding to the first domain, the server device belonging to the second domain may use the cookie information corresponding to the first domain. Therefore, the server device belonging to the second domain can perform processing based on the latest information, and the cookie information corresponding to the first domain is stored in the second domain until it is unnecessary. The probability of being transmitted to the server apparatus to which it belongs can be reduced.
 請求項5に記載の発明は、要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能なクッキー処理装置により実行されるクッキー処理方法であって、予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信工程と、前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第1のドメインとドメイン名が異なる第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信工程と、を有することを特徴とする。 The invention according to claim 5 is a terminal device for transmitting request information having identification information including a domain name indicating a requested domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name. Is a cookie processing method executed by a cookie processing device accessible via a network, and transmitted by the terminal device based on acquisition command information for instructing resource acquisition received by the terminal device from a preset server device And receiving the request information including the cookie stored corresponding to the first domain by the terminal device, and including the command information instructing the retransmission of the request information in the request information. The identification information includes a domain name of a second domain having a domain name different from that of the first domain, Together with the identification information cookie information is added that is included in the serial received request information and the transmission step of transmitting to the terminal device, characterized by having a.
 請求項6に記載の発明は、要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能なクッキー処理装置に含まれるコンピュータを、予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信手段、及び、前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第1のドメインとドメイン名が異なる第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段、として機能させることを特徴とする。 The invention according to claim 6 is a terminal device that transmits request information having identification information including a domain name indicating a request destination domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name. The terminal included in the cookie processing device accessible via the network is transmitted by the terminal device based on acquisition command information for instructing resource acquisition received by the terminal device from a preset server device As the identification information for causing the request information to include the receiving means for receiving the request information including the cookie stored corresponding to the first domain by the device, and the command information for requesting retransmission of the request information. Including a domain name of a second domain that is different in domain name from the first domain and received Transmitting means for transmitting to said terminal device together with the identification information cookie information is added in the request information, wherein the function as.
 請求項7に記載の発明は、要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能なクッキー処理装置に含まれるコンピュータを、予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信手段、及び、前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第1のドメインとドメイン名が異なる第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段、として機能させるクッキー処理プログラムがコンピュータ読み取り可能に記録されていることを特徴とする。 The invention according to claim 7 is a terminal device that transmits request information having identification information including a domain name indicating a request destination domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name. The terminal included in the cookie processing device accessible via the network is transmitted by the terminal device based on acquisition command information for instructing resource acquisition received by the terminal device from a preset server device As the identification information for causing the request information to include the receiving means for receiving the request information including the cookie stored corresponding to the first domain by the device, and the command information for requesting retransmission of the request information. Including a domain name of a second domain that is different in domain name from the first domain and received Transmitting means for transmitting to said terminal device together with the identification information cookie information is added in the request information, the cookie processing program to function as is characterized by being recorded in a computer-readable.
 請求項8に記載の発明は、要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能な第1のドメインに属するクッキー処理装置と、前記第1のドメインとはドメイン名が異なる第2のドメインに属するサーバ装置と、を備えるクッキー処理システムであって、前記クッキー処理装置は、予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信手段と、前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段と、を備え、前記第2のドメインに属するサーバ装置は、前記命令情報を受信した前記端末装置から、前記クッキーの情報が付加された前記識別情報を有する前記要求情報を受信する要求情報受信手段と、前記受信された要求情報が有する前記識別情報に付加された情報をクッキーとして前記端末装置に送信するクッキー送信手段と、を備えることを特徴とする。 The invention according to claim 8 is a terminal device that transmits request information having identification information including a domain name indicating a requested domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name. A cookie processing system comprising: a cookie processing device belonging to a first domain accessible via a network; and a server device belonging to a second domain having a domain name different from that of the first domain, The cookie processing device is stored in correspondence with the first domain by the terminal device, transmitted by the terminal device based on acquisition command information for instructing resource acquisition received by the terminal device from a preset server device. Receiving means for receiving the request information including a cookie and command information for ordering retransmission of the request information. Is transmitted to the terminal device together with the identification information including the domain name of the second domain and the cookie information included in the received request information as the identification information to be included in the request information. Request information for receiving the request information having the identification information to which the cookie information is added from the terminal device that has received the command information. Receiving means; and cookie sending means for sending information added to the identification information included in the received request information as a cookie to the terminal device.
 この発明によれば、端末装置が受信した取得命令情報に基づいて第1のドメインに対応するクッキーが含まれる要求情報がクッキー処理サーバに送信される。クッキー処理装置が、第1のドメインに対応するクッキーを含む要求情報を端末装置から受信した場合、第2のドメインのドメイン名を含み且つクッキーの情報が付加された識別情報を命令情報とともに送信する。命令情報及び識別情報を受信した端末装置は、命令情報に基づいて、識別情報を有する要求情報を送信する。ここで、識別情報には第2のドメインのドメイン名が含まれるので、要求情報は第2のドメインに属するサーバ装置へ送信される。また、識別情報にはクッキーの情報が付加されているので、要求情報を受信した第2のドメインに属するサーバ装置は、当該情報を取得することができる。第2のドメインに属するサーバ装置は、取得した情報をクッキーとして端末装置に送信する。クッキーを受信した端末装置は当該クッキーを記憶する。以後、端末装置が第2のドメインに属するサーバ装置に要求情報を送信する際には、記憶したクッキーを含めて要求情報を送信する。 According to the present invention, request information including a cookie corresponding to the first domain is transmitted to the cookie processing server based on the acquisition command information received by the terminal device. When the cookie processing device receives the request information including the cookie corresponding to the first domain from the terminal device, the identification information including the domain name of the second domain and appended with the cookie information is transmitted together with the command information. . The terminal device that has received the command information and the identification information transmits request information having the identification information based on the command information. Here, since the identification information includes the domain name of the second domain, the request information is transmitted to the server apparatus belonging to the second domain. Further, since the cookie information is added to the identification information, the server device belonging to the second domain that has received the request information can acquire the information. The server device belonging to the second domain transmits the acquired information as a cookie to the terminal device. The terminal device that has received the cookie stores the cookie. Thereafter, when the terminal device transmits the request information to the server device belonging to the second domain, the request information is transmitted including the stored cookie.
 従って、第2のドメインに属するサーバ装置は、第1のドメインにおいて発行されたクッキーの情報を、自身が発行したクッキーとして端末装置から取得することができるので、第1のドメインにおいて発行されたクッキーの情報を、第1のドメインとはドメイン名が異なる第2のドメインに属するサーバ装置が利用することが可能となり、第1のドメインと同じ情報に基づいて例えばパーソナライズを行うことが可能となる。 Accordingly, the server device belonging to the second domain can acquire the information of the cookie issued in the first domain from the terminal device as the cookie issued by itself, so that the cookie issued in the first domain This information can be used by a server device belonging to a second domain having a domain name different from that of the first domain, and for example, personalization can be performed based on the same information as the first domain.
 請求項9に記載の発明は、請求項8に記載のクッキー処理システムにおいて、前記第2のドメインに属するサーバ装置は、クッキーの発行条件を示す条件情報を記憶する条件情報記憶手段と、前記条件情報に基づいて、前記受信された要求情報が有する前記識別情報に付加されたクッキーの情報を、クッキーとして発行するか否かを判定する発行判定手段と、を更に備え、前記第2のドメインに属するサーバ装置の前記クッキー送信手段は、前記発行判定手段によりクッキーとして発行すると判定された情報を、クッキーとして前記端末装置に送信することを特徴とする。 The invention according to claim 9 is the cookie processing system according to claim 8, wherein the server device belonging to the second domain includes condition information storage means for storing condition information indicating a cookie issuing condition, and the condition Issuing means for determining whether to issue the cookie information added to the identification information included in the received request information as a cookie based on the information; and in the second domain The cookie transmitting unit of the server apparatus to which the server belongs belongs transmits information to the terminal device as a cookie, which is determined to be issued as a cookie by the issue determining unit.
 この発明によれば、端末装置から送信された要求情報に付加されているクッキーの情報が、第2のドメインに属するサーバ装置が必要としない情報である場合に、クッキーの発行対象から除外することができる。 According to this invention, when the information of the cookie added to the request information transmitted from the terminal device is information that is not necessary for the server device belonging to the second domain, the cookie is excluded from being issued. Can do.
 請求項10に記載の発明は、請求項9に記載のクッキー処理システムにおいて、前記条件情報は、クッキーを識別するクッキー識別情報を含み、前記クッキー処理装置の前記送信手段は、前記受信された要求情報に含まれるクッキーの情報及び当該クッキーの前記クッキー識別情報が付加された前記識別情報を、前記命令情報とともに送信し、前記第2のドメインに属するサーバ装置の前記発行判定手段は、前記条件情報に含まれる前記クッキー識別情報と、前記受信された要求情報が有する前記識別情報に付加された前記クッキー識別情報と、に基づいて、当該識別情報に付加されたクッキーの情報を、クッキーとして発行するか否かを判定することを特徴とする。 According to a tenth aspect of the present invention, in the cookie processing system according to the ninth aspect, the condition information includes cookie identification information for identifying a cookie, and the transmission means of the cookie processing device receives the received request. The cookie information included in the information and the identification information to which the cookie identification information of the cookie is added are transmitted together with the command information, and the issue determination means of the server device belonging to the second domain includes the condition information The cookie information added to the identification information is issued as a cookie based on the cookie identification information included in the request information and the cookie identification information added to the identification information included in the received request information It is characterized by determining whether or not.
 この発明によれば、第2のドメインに属するサーバ装置が必要としない情報を、クッキー単位でクッキーの発行対象から除外することができる。 According to the present invention, information that is not required by the server device belonging to the second domain can be excluded from cookie issue targets in units of cookies.
 請求項11に記載の発明は、請求項9又は請求項10に記載のクッキー処理システムにおいて、前記条件情報は、ドメインを識別するドメイン識別情報を含み、前記クッキー処理装置の前記送信手段は、前記受信された要求情報に含まれるクッキーの情報及び前記第1のドメインの前記ドメイン識別情報が付加された前記識別情報を、前記命令情報とともに送信し、前記第2のドメインに属するサーバ装置の前記発行判定手段は、前記条件情報に含まれる前記ドメイン識別情報と、前記受信された要求情報が有する前記識別情報に付加された前記ドメイン識別情報と、に基づいて、当該識別情報に付加されたクッキーの情報を、クッキーとして発行するか否かを判定することを特徴とする。 According to an eleventh aspect of the present invention, in the cookie processing system according to the ninth or tenth aspect, the condition information includes domain identification information for identifying a domain, and the transmission unit of the cookie processing apparatus includes: The cookie information included in the received request information and the identification information added with the domain identification information of the first domain are transmitted together with the command information, and the issuance of the server device belonging to the second domain Based on the domain identification information included in the condition information and the domain identification information added to the identification information included in the received request information, the determination unit determines the cookie added to the identification information. It is characterized by determining whether information is issued as a cookie.
 この発明によれば、第2のドメインに属するサーバ装置が必要としない情報を、クッキーの発行元のドメインの単位でクッキーの発行対象から除外することができる。 According to the present invention, information that is not required by the server device belonging to the second domain can be excluded from the cookie issue target in units of domains from which the cookie is issued.
 請求項12に記載の発明は、請求項8乃至11の何れか1項に記載のクッキー処理システムにおいて、前記第1のドメインに属する前記クッキー処理装置及び前記第2のドメインに属する前記サーバ装置として、ドメイン名が互いに異なる予め設定された複数のドメイン夫々につき、当該ドメインに属する前記クッキー処理装置及び前記サーバ装置を備え、前記クッキー処理装置の前記送信手段は、当該クッキー処理装置が属するドメインとドメイン名が異なるドメインであり、前記受信された要求情報に含まれる前記識別情報に予め対応付けられたドメインのドメイン名を含む前記識別情報を、前記命令情報とともに送信することを特徴とする。 A twelfth aspect of the present invention is the cookie processing system according to any one of the eighth to eleventh aspects, wherein the cookie processing device belonging to the first domain and the server device belonging to the second domain. Each of a plurality of preset domains having different domain names includes the cookie processing device and the server device belonging to the domain, and the transmission means of the cookie processing device includes the domain to which the cookie processing device belongs and the domain The identification information including a domain name of a domain that is a domain having a different name and previously associated with the identification information included in the received request information is transmitted together with the command information.
 この発明によれば、各ドメインに属するクッキー処理装置とサーバ装置とによって、クッキーの情報をドメイン間で相互に共用することができる。 According to the present invention, the cookie information and the server device belonging to each domain can share the cookie information between the domains.
 請求項13に記載の発明は、要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置と、前記端末装置がネットワークを介してアクセス可能な第1のドメインに属するクッキー処理装置と、前記第1のドメインとはドメイン名が異なる第2のドメインに属するサーバ装置と、を備える情報通信システムであって、前記クッキー処理装置は、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を当該端末装置から受信する受信手段と、前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段と、を備え、前記第2のドメインに属するサーバ装置は、前記命令情報を受信した前記端末装置から、前記クッキーの情報が付加された前記識別情報を有する前記要求情報を受信する要求情報受信手段と、前記受信された要求情報が有する前記識別情報に付加された情報をクッキーとして前記端末装置に送信するクッキー送信手段と、を備え、前記端末装置は、クッキーを記憶する記憶手段と、リソース取得を命ずる取得命令情報を予め設定されたサーバ装置から受信する取得命令情報受信手段と、前記受信された取得命令情報に基づいて、前記第1のドメインに対応して前記記憶手段に記憶されたクッキーを含む前記要求情報を前記クッキー処理装置に送信する第1要求情報送信手段と、前記クッキー処理装置から送信された前記命令情報及び前記識別情報を受信する命令情報受信手段と、前記受信された命令情報に基づいて、前記受信された識別情報を有する前記要求情報を前記第2のドメインに属するサーバ装置に送信する第2要求情報送信手段と、前記第2のドメインに属するサーバ装置から送信されたクッキーを受信するクッキー受信手段と、前記受信されたクッキーを前記第2のドメインに対応して前記記憶手段に記憶させる記憶制御手段と、を備えることを特徴とする。 The invention according to claim 13 is a terminal device that transmits request information having identification information including a domain name indicating a request destination domain as identification information of a requested resource to a server device belonging to the domain indicated by the domain name. An information communication system comprising: a cookie processing device belonging to a first domain accessible by the terminal device via a network; and a server device belonging to a second domain having a domain name different from that of the first domain The cookie processing device receives the request information including the cookie stored by the terminal device corresponding to the first domain from the terminal device, and retransmits the request information. Including the domain name of the second domain as the identification information for causing the command information to be included to be included in the request information, Transmission means for transmitting to the terminal device together with the identification information to which the cookie information included in the received request information is added, and the server device belonging to the second domain receives the command information Request information receiving means for receiving the request information including the identification information to which the cookie information is added from a terminal device, and the terminal using the information added to the identification information included in the received request information as a cookie. Cookie transmission means for transmitting to a device, wherein the terminal device stores storage means for storing cookies, acquisition command information receiving means for receiving acquisition command information for instructing resource acquisition from a preset server device, and The request information including a cookie stored in the storage means corresponding to the first domain based on the received acquisition command information On the basis of the received command information, first request information transmitting means for transmitting the cookie processing device, command information receiving means for receiving the command information and the identification information transmitted from the cookie processing device, and A second request information transmitting means for transmitting the request information having the received identification information to a server device belonging to the second domain; and a cookie for receiving a cookie transmitted from the server device belonging to the second domain. Receiving means; and storage control means for storing the received cookie in the storage means corresponding to the second domain.
 本発明によれば、第1のドメインにより発行されたクッキーの情報が付加された要求情報を第2のドメインに属するサーバ装置が受信することにより、第1のドメインにおいて端末装置に発行されたクッキーの情報を、第1のドメインとはドメイン名が異なる第2のドメインに属するサーバ装置が利用することが可能となり、第1のドメインと同じ情報に基づいて例えばパーソナライズを行うことが可能となる。 According to the present invention, the cookie issued to the terminal device in the first domain when the server device belonging to the second domain receives the request information to which the cookie information issued by the first domain is added. This information can be used by a server device belonging to a second domain having a domain name different from that of the first domain, and for example, personalization can be performed based on the same information as the first domain.
一実施形態に係る情報提供システムSの概要構成の一例を示す図である。It is a figure which shows an example of schematic structure of the information provision system S which concerns on one Embodiment. クッキー転送ページのHTML文書の記述例を示す図である。It is a figure which shows the example of a description of the HTML document of a cookie transfer page. 一実施形態に係るクッキー処理サーバ1の概要構成の一例を示すブロック図である。It is a block diagram which shows an example of schematic structure of the cookie processing server 1 which concerns on one Embodiment. 一実施形態に係るWebサーバ1-i及びWebサーバ2の概要構成の一例を示すブロック図である。2 is a block diagram illustrating an example of a schematic configuration of a Web server 1-i and a Web server 2 according to an embodiment. FIG. 一実施形態に係る情報提供システムSの処理例を示すシーケンス図である。It is a sequence diagram which shows the process example of the information provision system S which concerns on one Embodiment. 一実施形態に係る情報提供システムSの処理例を示すシーケンス図である。It is a sequence diagram which shows the process example of the information provision system S which concerns on one Embodiment. (a)乃至(f)は、ユーザ端末3-jとサーバ装置との間で送受信されるリクエスト及びレスポンスの内容の一例である。(A) to (f) are examples of contents of requests and responses transmitted and received between the user terminal 3-j and the server device. 一実施形態に係る情報提供システムSの処理例を示すシーケンス図である。It is a sequence diagram which shows the process example of the information provision system S which concerns on one Embodiment.
 以下、図面を参照して本発明の最良の実施形態について詳細に説明する。なお、以下に説明する実施の形態は、情報提供システムに対して本発明を適用した場合の実施形態である。 Hereinafter, the best embodiment of the present invention will be described in detail with reference to the drawings. The embodiment described below is an embodiment when the present invention is applied to an information providing system.
 [1.第1実施形態]
 [1.1 情報提供システムの構成及び機能概要]
 先ず、第1実施形態に係る情報提供システムSの構成及び概要機能について、図1を用いて説明する。 [1. First Embodiment]
[1.1 Configuration and function overview of information provision system]
First, the configuration and outline function of the information providing system S according to the first embodiment will be described with reference to FIG.
 図1は、本実施形態に係る情報提供システムSの概要構成の一例を示す図である。 FIG. 1 is a diagram illustrating an example of a schematic configuration of the information providing system S according to the present embodiment.
 図1に示すように、情報提供システムSは、ドメインD1に属するクッキー処理サーバ1及び複数のWebサーバ1-i(i=1,2・・・m)と、ドメインD2に属するWebサーバ2と、複数のユーザ端末3-j(j=1,2・・・n)と、を含んで構成されている。ドメインD1においては、例えば、SSL(Secure Sockets Layer)アクセラレータやロードバランサ等の装置が存在するが、図示は省略している。なお、何れかのWebサーバ1-iがクッキー処理サーバ1を兼ねても良い。 As shown in FIG. 1, the information providing system S includes a cookie processing server 1 belonging to a domain D1, a plurality of Web servers 1-i (i = 1, 2,... M), a Web server 2 belonging to a domain D2, , A plurality of user terminals 3-j (j = 1, 2,... N). In the domain D1, for example, there are devices such as an SSL (Secure Sockets Layer) accelerator and a load balancer, but the illustration is omitted. Any one of the Web servers 1-i may also serve as the cookie processing server 1.
 クッキー処理サーバ1、Webサーバ1-i及びWebサーバ2と、ユーザ端末3-jとは、ネットワークNWを介して、例えば、通信プロトコルにTCP/IP等を用いて相互にデータの送受信が可能になっている。なお、ネットワークNWは、例えば、インターネット、専用通信回線(例えば、CATV(Community Antenna Television)回線)、移動体通信網(基地局等を含む)、及びゲートウェイ等により構築されている。 The cookie processing server 1, the Web server 1-i, the Web server 2, and the user terminal 3-j can transmit / receive data to / from each other via the network NW, for example, using TCP / IP as a communication protocol. It has become. The network NW is constructed by, for example, the Internet, a dedicated communication line (for example, a CATV (CommunityCommunAntenna Television) line), a mobile communication network (including a base station, etc.), a gateway, and the like.
 このような構成の情報提供システムSにおいて、クッキー処理サーバ1及びWebサーバ1-1~1-mは、例えば、或る企業が、各種のサービスを提供するWebサイトを運営するために、設置したサーバ装置である。このWebサイトで提供されるサービスとしては、例えば、ネットショッピング、オークション、宿泊施設の予約、チケット販売、ブログ、ソーシャルネットワーキングサービス、アフィリエイト等がある。各Webサーバ1-iは、夫々特定のサービスに関する情報提供を担っている。そして、各Webサーバ1-iは、ユーザ端末3-jからのリクエストに応じて、自身が担っているサービスに関するWebサイトを構成するWebページ等のコンテンツをユーザ端末3-jに送信する。 In the information providing system S having such a configuration, the cookie processing server 1 and the Web servers 1-1 to 1-m are installed, for example, for a certain company to operate a Web site that provides various services. It is a server device. Examples of services provided on this Web site include online shopping, auctions, accommodation reservations, ticket sales, blogs, social networking services, and affiliates. Each Web server 1-i is responsible for providing information regarding a specific service. Each Web server 1-i transmits content such as a Web page that constitutes a Web site related to a service that the Web server 1-i owns to the user terminal 3-j in response to a request from the user terminal 3-j.
 また、クッキー処理サーバ1及びWebサーバ1-1~1-mは、前記の企業が取得したドメインD1(第1のドメインの一例)に属するサーバ装置である。このドメインD1には、例えば、「abc.co.jp」というドメイン名が割り当てられている。そして、クッキー処理サーバ1及びWebサーバ1-1~1-mには、ドメイン名である「abc.co.jp」を含んだホスト名が夫々割り当てられている。例えば、クッキー処理サーバ1には、「cookie.abc.co.jp」というホスト名が割り当てられている。また、各Webサーバ1-iには、例えば、「www.abc.co.jp」、「auction.abc.co.jp」、「travel.abc.co.jp」、「ticket.abc.co.jp」、「bank.abc.co.jp」等が割り当てられている。なお、ホスト名もドメイン名であるが、本実施形態においては説明を分かりやすくするため、ドメイン名が示すドメインよりも下位にサブドメインがある場合(例えば、「www.abc.co.jp」、「grp01.xd.abc.co.jp」は、何れも「abc.co.jp」のサブドメインである。)には、ドメイン名と称し、ドメイン名が示すドメインよりも下位にサブドメインがない場合、つまり、そのドメイン名が特定のサーバ装置(ホスト)を示す場合には、ホスト名と称する。 The cookie processing server 1 and the Web servers 1-1 to 1-m are server devices belonging to the domain D1 (an example of the first domain) acquired by the company. For example, a domain name “abc.co.jp” is assigned to the domain D1. A host name including the domain name “abc.co.jp” is assigned to each of the cookie processing server 1 and the Web servers 1-1 to 1-m. For example, a host name “cookie.abc.co.jp” is assigned to the cookie processing server 1. Each Web server 1-i has, for example, “www.abc.co.jp”, “auction.abc.co.jp”, “travel.abc.co.jp”, “ticket.abc.co.jp”. jp "," bank.abc.co.jp ", etc. are assigned. Although the host name is also a domain name, in the present embodiment, in order to make the explanation easier to understand, there is a subdomain below the domain indicated by the domain name (for example, “www.abc.co.jp”, “Grp01.xd.abc.co.jp” is a subdomain of “abc.co.jp”)), which is called a domain name and has no subdomain below the domain indicated by the domain name. In other words, when the domain name indicates a specific server device (host), it is referred to as a host name.
 一方、Webサーバ2(第2のドメインに属するサーバ装置の一例)は、例えば、ドメインD1のWebサイトを運営する企業の関連企業が予め設定されたサービスを提供するWebサイトを運営するために、設置したサーバ装置である。Webサーバ2は、ユーザ端末3-jからのリクエストに応じて、予め設定されたサービスに関するWebサイトを構成するWebページ等のコンテンツをユーザ端末3-jに送信する。 On the other hand, the Web server 2 (an example of a server device belonging to the second domain), for example, operates a Web site that provides a service set in advance by an affiliated company that operates the Web site in the domain D1. It is an installed server device. In response to a request from the user terminal 3-j, the Web server 2 transmits content such as a Web page constituting a Web site related to a preset service to the user terminal 3-j.
 また、Webサーバ2は、ドメインD1とはドメイン名が異なるドメインD2(第2のドメインの一例)に属するサーバ装置である。このドメインD2には、例えば、「xyz.co.jp」というドメイン名が割り当てられている。そして、Webサーバ2には、例えば、「www.xyz.co.jp」というホスト名が割り当てられている。 The Web server 2 is a server device belonging to a domain D2 (an example of a second domain) having a domain name different from that of the domain D1. For example, a domain name “xyz.co.jp” is assigned to the domain D2. For example, a host name “www.xyz.co.jp” is assigned to the Web server 2.
 ユーザ端末3-j(端末装置の一例)は、Webサーバ1-iやWebサーバ2にHTTP(Hyper Text Transfer Protocol)リクエスト(要求情報の一例)を送信してWebページ等の情報を取得し、画面に表示するようになっている。このHTTPリクエストには、要求するリソースを識別するリクエストURL(Uniform Resource Locator:識別情報の一例)が含まれている。リソースは、例えばURI(Uniform Resource Identifier)の一般構文の仕様であるRFC(Request for Comments)3896に開示されているように、具体的なものであれ抽象的なものであれ、URI等の識別情報(本実施形態においてはURL)によって識別可能なものであると一般的には定義される。もっとも、HTTPのGETメソッドにおけるリクエストURLにより識別されるリソースは、クライアントとしてのユーザ端末3-jが取得する情報を意味する。リソースの例としては、HTML(Hyper Text Markup Language)文書、XML(Extensible Markup Language)文書、その他の電子文書、テキストデータ、画像データ、動画データ、音声データ等がある。なお、以降においては、HTTPリクエストを、単に「リクエスト」という。ユーザは、画面に表示された情報を通じて各種のサービスの提供を受けることができる。ユーザ端末3-jには、例えば、予め設定されたオペレーティングシステム、Webブラウザプログラム等がインストールされている。ユーザ端末3-jには、例えば、パーソナルコンピュータ、PDA(Personal Digital Assistant)、STB(Set Top Box)、携帯電話機等が適用される。 User terminal 3-j (an example of a terminal device) transmits an HTTP (Hyper Text Transfer Protocol) request (an example of request information) to Web server 1-i or Web server 2 to acquire information such as a Web page, It is displayed on the screen. This HTTP request includes a request URL (Uniform Resource Locator: an example of identification information) for identifying a requested resource. A resource may be specific or abstract, such as URI (Uniform に Resource Identifier), which is a general syntax specification of URI (Uniform Resource Identifier) 3896. It is generally defined that it can be identified by (URL in this embodiment). However, the resource identified by the request URL in the HTTP GET method means information acquired by the user terminal 3-j as a client. Examples of resources include HTML (Hyper Text Markup Language) documents, XML (Extensible Markup Language) documents, other electronic documents, text data, image data, video data, audio data, and the like. Hereinafter, the HTTP request is simply referred to as “request”. The user can receive various services through information displayed on the screen. For example, a preset operating system, a Web browser program, and the like are installed in the user terminal 3-j. For example, a personal computer, a PDA (Personal Digital Assistant), an STB (Set Top Box), a mobile phone, or the like is applied to the user terminal 3-j.
 [1.2 クッキーの情報の利用及び転送]
 次に、ドメインD1とドメインD2におけるクッキーの利用と転送について、図2を用いて説明する。 [1.2 Use and transfer of cookie information]
Next, use and transfer of cookies in the domains D1 and D2 will be described with reference to FIG.
 図2は、クッキー転送ページのHTML文書の記述例を示す図である。 FIG. 2 is a diagram showing a description example of the HTML document of the cookie transfer page.
 各Webサーバ1-iは、クッキーを発行する。つまり、各Webサーバ1-iは、ユーザ端末3-jからのリクエストに対し、必要に応じてSet-Cookieヘッダを含むレスポンスを送信する。このクッキーの情報(具体的には、クッキー名に対応付けられて設定されているクッキーの値)は、基本的にユーザ端末3-jを利用するユーザに関連する情報である。このクッキーの情報としては、例えば、ユーザ認証が行われた後にユーザを特定するための識別情報であったり、ユーザのプロフィール(例えば、氏名、ニックネーム、年齢、住所、電話番号等)であったり、サービスの利用履歴や商品の購入履歴であったり、アンケートの回答情報であったりする。各クッキーには、例えば、サービスの内容や利用目的等に応じて、夫々が予め設定された項目に対応する1つ又は複数の情報が含まれている。 Each Web server 1-i issues a cookie. That is, each Web server 1-i transmits a response including a Set-Cookie header as necessary in response to a request from the user terminal 3-j. This cookie information (specifically, the cookie value set in association with the cookie name) is basically information related to the user who uses the user terminal 3-j. As information of this cookie, for example, identification information for specifying a user after user authentication is performed, a user profile (for example, name, nickname, age, address, telephone number, etc.), It may be service usage history, product purchase history, or questionnaire response information. Each cookie includes one or more pieces of information corresponding to items set in advance, for example, depending on the content of the service, the purpose of use, and the like.
 各Webサーバ1-iは、クッキーを発行する際、Set-Cookieヘッダにおいてドメイン属性に「.abc.co.jp」を指定すると、ユーザ端末3-jは、Webサーバ1-iから受信したクッキーを「.abc.co.jp」(つまりドメインD1)に対応付けて保存する。以降、ユーザ端末3-jからドメインD1に属するWebサーバ1-1~1-m及びクッキー処理サーバ1へのリクエストには、ドメインD1に対応付けて保存されたクッキーが含まれるようになる。これによって、Webサーバ1-1~1-mは、何れかのWebサーバ1-iによって発行されたクッキーを共用することができる。そして、クッキーの共用によってWebサーバ1-1~1-mは、夫々同じ条件に基づいて(同じクッキーの情報に基づいて)、Webページ等のパーソナライズを行うことができる。 When each Web server 1-i issues “Cookie” and designates “.abc.co.jp” as the domain attribute in the Set-Cookie header, the user terminal 3-j receives the cookie received from the Web server 1-i. Is stored in association with “.abc.co.jp” (that is, domain D1). Thereafter, a request from the user terminal 3-j to the Web servers 1-1 to 1-m and the cookie processing server 1 belonging to the domain D1 includes a cookie stored in association with the domain D1. As a result, the Web servers 1-1 to 1-m can share the cookie issued by any one of the Web servers 1-i. By sharing cookies, the Web servers 1-1 to 1-m can personalize Web pages and the like based on the same conditions (based on the same cookie information).
 一方、Webサーバ2においてもドメインD1のWebサイトで提供されるサービスとの関連等において、ドメインD1と同じ条件でWebページ等のパーソナライズを行いたい場合がある。この場合、例えば、ドメインD2のWebサイトを紹介するドメインD1のWebページがユーザ端末3-jの画面に表示されているときに、ユーザがリンクを選択すること等によってドメインD2のWebページに遷移する場合に、ドメインD1において発行されたクッキーの情報をWebサーバ2が利用することができれば、ドメインD1と同じ条件のパーソナライズが可能となる。 On the other hand, the Web server 2 may want to personalize a Web page or the like under the same conditions as the domain D1 in relation to the service provided on the website of the domain D1. In this case, for example, when the Web page of the domain D1 that introduces the Web site of the domain D2 is displayed on the screen of the user terminal 3-j, the user transitions to the Web page of the domain D2 by selecting a link or the like. In this case, if the Web server 2 can use the information of the cookie issued in the domain D1, personalization under the same conditions as the domain D1 is possible.
 例えば、ユーザの氏名やニックネーム等を利用することができれば、「○○さん、こんにちは」といったWebページを生成することができる。また、例えば、ドメインD2で提供されるサービスのユーザ登録を行うための入力フォームを含むWebページが生成される場合、ユーザの個人情報等を利用することができれば、予めこれらの情報がフォーム中に入力されたWebページを生成することができる。また、例えば、ユーザのプロフィール情報、サービスの利用履歴、商品の購入履歴等の情報を利用することができれば、ユーザの嗜好にあったサービスや商品を推薦(レコメンド)するWebページを生成することができる。 For example, if it is possible to use the user's name or nickname, etc., it is possible to generate a Web page, such as "○○'s, Hello". Also, for example, when a Web page including an input form for performing user registration for a service provided in the domain D2 is generated, if the user's personal information can be used, the information is included in the form in advance. An input Web page can be generated. For example, if information such as user profile information, service usage history, product purchase history, and the like can be used, a web page that recommends (recommends) a service or product that meets the user's preference may be generated. it can.
 しかしながら、Webサーバ2は、ドメインD1において発行されたクッキーを取得することはできない。それは、ドメインD1のドメイン名とドメインD2のドメイン名とが異なるからである。つまり、ドメインD1において発行されたクッキーのドメイン属性と、ユーザ端末3-jがWebサーバ2にリクエストを送信する際のリクエストホスト名とが後方一致しないので、ユーザ端末3-jは、ドメインD1において発行されたクッキーをWebサーバ2には送信しない。 However, the Web server 2 cannot obtain a cookie issued in the domain D1. This is because the domain name of the domain D1 is different from the domain name of the domain D2. That is, since the domain attribute of the cookie issued in the domain D1 and the request host name when the user terminal 3-j transmits a request to the Web server 2 do not match backward, the user terminal 3-j The issued cookie is not transmitted to the Web server 2.
 そこで、本実施形態においては、ドメインD1に属するクッキー処理サーバ1(クッキー処理装置の一例)が、ユーザ端末3-jから送信されてきたクッキーの情報がユーザ端末3-jによりWebサーバ2に送信されるように制御を行う。 Therefore, in the present embodiment, the cookie processing server 1 (an example of a cookie processing device) belonging to the domain D1 transmits the cookie information transmitted from the user terminal 3-j to the Web server 2 by the user terminal 3-j. Control to be done.
 具体的に、クッキー処理サーバ1は、ユーザ端末3-jからドメインD1において発行されたクッキーを含むリクエストを受信すると、リクエストをWebサーバ2にリダイレクトするよう、ユーザ端末3-jにLocationヘッダ(命令情報の一例)を含むレスポンスを送信する。このLocationヘッダには、Webサーバ2のホスト名を含むURLが設定される。また、このURLには、受信したクッキーの情報がパラメータとして付加される。例えば、LocationヘッダのURLに「http://www.xyz.co.jp?cookie=XXXXXXXXX」が設定されている場合、「XXXXXXXXX」の部分が、パラメータとして付加された情報である。そうすると、レスポンスを受信したユーザ端末3-jは、Locationヘッダが示すURLをリクエストURLとするリクエストを送信するので、このリクエストはWebサーバ2に受信される。そして、リクエストURLには、クッキーの情報がパラメータとして付加されているので、Webサーバ2は、このクッキーの情報を値とする新たなクッキーを発行することにより、以降は、ドメインD1において発行されたクッキーの情報を、自身が発行したクッキーの情報として取得することができる。 Specifically, when the cookie processing server 1 receives a request including a cookie issued in the domain D1 from the user terminal 3-j, the cookie processing server 1 sends a location header (command) to the user terminal 3-j to redirect the request to the Web server 2. A response including an example of information is transmitted. In this Location header, a URL including the host name of the Web server 2 is set. Also, the received cookie information is added to this URL as a parameter. For example, when “http://www.xyz.co.jp?cookie=XXXXXXXXX” is set in the URL of the Location header, the “XXXXXXXXX” portion is information added as a parameter. Then, the user terminal 3-j that has received the response transmits a request having the URL indicated by the Location header as the request URL, and the request is received by the Web server 2. Since the cookie information is added as a parameter to the request URL, the Web server 2 issues a new cookie with the value of the cookie information as a value. Cookie information can be acquired as cookie information issued by the user.
 上記した処理を行うタイミングをクッキー処理サーバ1に与えるため、ユーザ端末3-jからクッキーを含むリクエストをクッキー処理サーバ1へ送信させる必要がある。そのため、情報処理システムSにおいては、このリクエスト送信のためのWebページが用いられる。以下、このWebページを「クッキー転送ページ」という。 In order to give the cookie processing server 1 the timing for performing the above processing, it is necessary to send a request including a cookie from the user terminal 3-j to the cookie processing server 1. For this reason, the information processing system S uses a Web page for request transmission. Hereinafter, this Web page is referred to as a “cookie transfer page”.
 クッキー転送ページは、例えば、ドメインD2のWebサイトにおいて提供されるサービスを紹介する情報等を表示するWebページである。クッキー転送ページのHTML文書(ハイパーテキストデータの一例)は、例えば、図2に示すように記述されている。クッキー転送ページのHTML文書には、ユーザの選択によってドメインD2のWebページに遷移することができるよう、このドメインD2のWebページへのリンクを示すアンカータグが記述されている。このアンカータグのsrc属性には、Webサーバ2のホスト名を含むWebページのURLが記述されている。 The cookie transfer page is, for example, a web page that displays information that introduces services provided on the website of the domain D2. The HTML document (an example of hypertext data) of the cookie transfer page is described as shown in FIG. 2, for example. In the HTML document of the cookie transfer page, an anchor tag indicating a link to the Web page of domain D2 is described so that the user can select the Web page of domain D2. The URL of the Web page including the host name of the Web server 2 is described in the src attribute of this anchor tag.
 また、クッキー転送ページのHTML文書には、iframeタグ(取得命令情報の一例)が記述されている。このiframeタグのsrc属性には、インラインフレームのWebページのURLとして、クッキー処理サーバ1のホスト名を含むURLが記述されている。さらにこのsrc属性には、パラメータとしてサービスIDが記述されている。このサービスIDは、情報の転送対象となるクッキーを指定する識別情報である。情報の転送対象となるクッキーが複数ある場合には、サービスIDも複数記述される。例えば、iframeタグのsrc属性として「http://cookie.abc.co.jp?id=A2」が記述されている場合、「A2」の部分がサービスIDを示す。 Also, an iframe tag (an example of acquisition command information) is described in the HTML document of the cookie transfer page. In the src attribute of the iframe tag, a URL including the host name of the cookie processing server 1 is described as the URL of the Web page of the inline frame. Further, in this src attribute, a service ID is described as a parameter. This service ID is identification information for designating a cookie to be transferred. When there are a plurality of cookies to which information is to be transferred, a plurality of service IDs are also described. For example, when “http://cookie.abc.co.jp?id=A2” is described as the src attribute of the iframe tag, the “A2” portion indicates the service ID.
 ユーザ端末3-jにインストールされているWebブラウザプログラムによってクッキー転送ページのHTML文書が読み込まれると、記述されているiframeタグによってユーザ端末3-jはクッキー処理サーバ1にリクエストを送信する。これによって、クッキー処理サーバ1は上記した処理を行うので、ユーザ端末3-jがクッキー転送ページを表示したときとほぼ同じタイミングで、Webサーバ2により発行されたクッキーがユーザ端末3-jに保存される。 When the HTML document of the cookie transfer page is read by the Web browser program installed in the user terminal 3-j, the user terminal 3-j transmits a request to the cookie processing server 1 by the described iframe tag. As a result, the cookie processing server 1 performs the above-described processing, so that the cookie issued by the Web server 2 is stored in the user terminal 3-j at almost the same timing as when the user terminal 3-j displays the cookie transfer page. Is done.
 クッキー転送ページが表示されている状態で、ユーザの選択によりクッキー転送ページからリンクしているドメインD2のWebページのリクエストがユーザ端末3-jからWebサーバ2に送信されると、Webサーバ2により発行されたクッキーもWebサーバ2に送信される。そこで、Webサーバ2は受信したクッキーの値に基づいて、送信すべきWebページを必要に応じてパーソナライズすることができる。その後もユーザ端末3-jからWebサーバ2へのリクエストにはWebサーバ2により発行されたクッキーが含まれているので、Webサーバ2はその都度必要に応じてWebページをパーソナライズすることができる。 When a request for a web page of the domain D2 linked from the cookie transfer page is transmitted from the user terminal 3-j to the web server 2 in the state where the cookie transfer page is displayed, the web server 2 The issued cookie is also transmitted to the Web server 2. Therefore, the Web server 2 can personalize the Web page to be transmitted as necessary based on the received cookie value. Thereafter, since the cookie issued by the Web server 2 is included in the request from the user terminal 3-j to the Web server 2, the Web server 2 can personalize the Web page whenever necessary.
 なお、クッキー転送ページのHTML文書自体は、何れかのWebサーバ1-iから送信されるようにしても良いし、Webサーバ2から送信されるようにしても良い。或いは、クッキー転送ページのHTML文書は、ドメインD1にもドメインD2にも属さない予め設定されたWebサーバから送信されるようにしても良い。 Note that the HTML document itself of the cookie transfer page may be transmitted from any of the Web servers 1-i or may be transmitted from the Web server 2. Alternatively, the HTML document of the cookie transfer page may be transmitted from a preset Web server that does not belong to the domain D1 or the domain D2.
 [1.3 クッキー処理サーバの構成及び機能]
 次に、クッキー処理サーバ1の構成及び機能について、図3を用いて説明する。 [1.3 Configuration and function of cookie processing server]
Next, the configuration and function of the cookie processing server 1 will be described with reference to FIG.
 図3は、本実施形態に係るクッキー処理サーバ1の概要構成の一例を示すブロック図である。 FIG. 3 is a block diagram showing an example of a schematic configuration of the cookie processing server 1 according to the present embodiment.
 図3に示すように、クッキー処理サーバ1は、通信部11と、記憶部12と、入出力インターフェース部13と、システム制御部17と、を備えている。そして、システム制御部17と入出力インターフェース部13とは、システムバス18を介して接続されている。 As shown in FIG. 3, the cookie processing server 1 includes a communication unit 11, a storage unit 12, an input / output interface unit 13, and a system control unit 17. The system control unit 17 and the input / output interface unit 13 are connected via a system bus 18.
 通信部11は、ネットワークNWに接続して、ユーザ端末3-j等との通信状態を制御するようになっている。記憶部12は、例えば、ハードディスクドライブ等により構成されており、オペレーティングシステム及びWWWサーバプログラム(クッキー処理プログラムの一例を含む)等の各種プログラムを記憶するとともに、各種データ等を記憶するようになっている。各種プログラムは、例えば、他のサーバ装置等からネットワークを介して取得されるようにしても良いし、記録媒体に記録されてドライブ装置を介して読み込まれるようにしても良い。入出力インターフェース部13は、通信部11及び記憶部12とシステム制御部17との間のインターフェース処理を行うようになっている。 The communication unit 11 is connected to the network NW and controls the communication state with the user terminal 3-j and the like. The storage unit 12 includes, for example, a hard disk drive and the like, and stores various programs such as an operating system and a WWW server program (including an example of a cookie processing program), as well as various data. Yes. For example, the various programs may be acquired from another server device or the like via a network, or may be recorded on a recording medium and read via a drive device. The input / output interface unit 13 performs interface processing between the communication unit 11 and the storage unit 12 and the system control unit 17.
 システム制御部17は、CPU(Central Processing Unit)14、ROM(Read Only Memory)15、RAM(Random Access Memory)16等により構成されている。そして、システム制御部17は、CPU14が、ROM15や記憶部12に記憶された各種プログラムを読み出し実行することにより、装置全体を統括制御するようになっている。また、システム制御部17は、WWW(World Wide Web)サーバアプリケーションプログラムを実行することにより、受信手段及び送信手段等として機能するようになっている。 The system control unit 17 includes a CPU (Central Processing Unit) 14, a ROM (Read Only Memory) 15, a RAM (Random Access Memory) 16, and the like. The system control unit 17 controls the entire apparatus by the CPU 14 reading and executing various programs stored in the ROM 15 and the storage unit 12. The system control unit 17 functions as a receiving unit, a transmitting unit, and the like by executing a WWW (World Wide Web) server application program.
 例えば、受信手段としてのシステム制御部17は、ユーザ端末3-jからドメインD1に対応するクッキーを含むリクエストを受信する。 For example, the system control unit 17 as a receiving unit receives a request including a cookie corresponding to the domain D1 from the user terminal 3-j.
 また、送信手段としてのシステム制御部17は、ユーザ端末3-jからクッキーを含むリクエストを受信した場合、Locationヘッダを含むレスポンスをユーザ端末3-jに送信する。具体的に、システム制御部17は、受信したリクエストに含まれるクッキーの値を取得し、Webサーバ2のホスト名を含むURLであって取得した値をパラメータとして付加したURLを生成する。そして、システム制御部17は、生成したURLをリダイレクト先のURLとしてLocationヘッダに設定する。 Further, when receiving a request including a cookie from the user terminal 3-j, the system control unit 17 as a transmission unit transmits a response including a Location header to the user terminal 3-j. Specifically, the system control unit 17 acquires the value of the cookie included in the received request, and generates a URL including the host name of the Web server 2 and adding the acquired value as a parameter. Then, the system control unit 17 sets the generated URL as a redirect destination URL in the Location header.
 [1.4 Webサーバの構成及び機能]
 次に、Webサーバ1-i及びWebサーバ2の構成及び機能について、図4を用いて説明する。 [1.4 Web server configuration and functions]
Next, configurations and functions of the Web server 1-i and the Web server 2 will be described with reference to FIG.
 図4は、本実施形態に係るWebサーバ1-i及びWebサーバ2の概要構成の一例を示すブロック図である。 FIG. 4 is a block diagram showing an example of a schematic configuration of the Web server 1-i and the Web server 2 according to the present embodiment.
 図4に示すように、Webサーバ1-i及びWebサーバ2は、夫々通信部21と、記憶部22と、入出力インターフェース部23と、システム制御部27と、を備えている。そして、システム制御部27と入出力インターフェース部23とは、システムバス28を介して接続されている。 As shown in FIG. 4, each of the Web server 1-i and the Web server 2 includes a communication unit 21, a storage unit 22, an input / output interface unit 23, and a system control unit 27. The system control unit 27 and the input / output interface unit 23 are connected via a system bus 28.
 通信部21は、ネットワークNWに接続して、ユーザ端末3-j等との通信状態を制御するようになっている。記憶部22は、例えば、ハードディスクドライブ等により構成されており、オペレーティングシステム及びWWWサーバプログラム等の各種プログラムを記憶するとともに、各種データ等を記憶するようになっている。各種プログラムは、例えば、他のサーバ装置等からネットワークを介して取得されるようにしても良いし、記録媒体に記録されてドライブ装置を介して読み込まれるようにしても良い。また、記憶部22には、夫々のWebサーバ1-i又はWebサーバ2が担当しているサービスに関する情報が登録されるデータベースが構築されている。入出力インターフェース部23は、通信部21及び記憶部22とシステム制御部27との間のインターフェース処理を行うようになっている。 The communication unit 21 is connected to the network NW and controls the communication state with the user terminal 3-j and the like. The storage unit 22 includes, for example, a hard disk drive, and stores various programs such as an operating system and a WWW server program, as well as various data. For example, the various programs may be acquired from another server device or the like via a network, or may be recorded on a recording medium and read via a drive device. In the storage unit 22, a database is registered in which information related to services handled by each Web server 1-i or Web server 2 is registered. The input / output interface unit 23 performs interface processing between the communication unit 21 and the storage unit 22 and the system control unit 27.
 システム制御部27は、CPU24、ROM25、RAM26等により構成されている。そして、システム制御部27は、CPU24が、ROM25や記憶部22に記憶された各種プログラムを読み出し実行することにより、装置全体を統括制御するようになっている。 The system control unit 27 includes a CPU 24, a ROM 25, a RAM 26, and the like. The system control unit 27 performs overall control of the entire apparatus when the CPU 24 reads and executes various programs stored in the ROM 25 and the storage unit 22.
 また、Webサーバ2において、システム制御部27は、WWW(World Wide Web)サーバプログラムを実行することにより、要求情報受信手段及びクッキー送信手段等として機能するようになっている。 In the Web server 2, the system control unit 27 functions as a request information receiving unit, a cookie transmitting unit, and the like by executing a WWW (World Wide Web) server program.
 例えば、要求情報受信手段としてのシステム制御部27は、クッキー処理サーバ1のリダイレクトによってユーザ端末3-jから送信されてきたリクエストを受信する。 For example, the system control unit 27 as request information receiving means receives a request transmitted from the user terminal 3-j by redirection of the cookie processing server 1.
 また、クッキー送信手段としてのシステム制御部27は、クッキーを発行する。具体的に、システム制御部27は、ユーザ端末3-jから受信したリクエストに含まれるリクエストURLから、パラメータとして付加された値を取得し、取得した値を新たなクッキーの値としてSet-Cookieヘッダを含むレスポンスをユーザ端末3-jに送信する。これによって新たなクッキーがユーザ端末3-jにより保存される。 Also, the system control unit 27 as a cookie transmission means issues a cookie. Specifically, the system control unit 27 acquires a value added as a parameter from the request URL included in the request received from the user terminal 3-j, and sets the acquired value as a new cookie value as a Set-Cookie header. Is transmitted to the user terminal 3-j. As a result, a new cookie is stored by the user terminal 3-j.
 [1.5 情報提供システムの動作]
 次に、情報提供システムSの動作について、図5乃至図7を用いて説明する。 [1.5 Operation of information provision system]
Next, the operation of the information providing system S will be described with reference to FIGS.
 図5及び図6は、本実施形態に係る情報提供システムSの処理例を示すシーケンス図である。また、図7は、ユーザ端末3-jとサーバ装置との間で送受信されるリクエスト及びレスポンスの内容の一例である。なお、図7において、本実施形態を説明するために必要な情報は記載されているが、それ以外の情報においては適宜記載が省略されている。 5 and 6 are sequence diagrams showing an example of processing of the information providing system S according to the present embodiment. FIG. 7 is an example of the contents of a request and a response that are transmitted and received between the user terminal 3-j and the server device. In FIG. 7, information necessary for describing the present embodiment is described, but description is appropriately omitted in other information.
 図5及び図6において、ユーザ端末3-jにおける処理は、ユーザ端末3-jが備える制御部がWebブラウザプログラムを実行することにより行われる。また、クッキー処理サーバ1、Webサーバ1-i及びWebサーバ2夫々における処理は、夫々が備えるシステム制御部がWWWサーバプログラム等を実行することにより行われる。 5 and 6, the processing in the user terminal 3-j is performed by the control unit provided in the user terminal 3-j executing the Web browser program. Further, processing in each of the cookie processing server 1, the Web server 1-i, and the Web server 2 is performed by executing a WWW server program or the like by a system control unit included therein.
 ユーザ端末3-jにおいて、Webブラウザプログラムが起動している状態で、ユーザがログインするためのURLを指定すると、図5に示すように、ユーザ端末3-jは、ログインページのリクエストをWebサーバ1-iに送信する(ステップS1)。これに応じて、Webサーバ1-iは、ログインページのHTML文書をユーザ端末3-jに送信する(ステップS2)。 When the user terminal 3-j specifies a URL for logging in while the Web browser program is running, as shown in FIG. 5, the user terminal 3-j sends a login page request to the Web server. 1-i is transmitted (step S1). In response to this, the Web server 1-i transmits the HTML document of the login page to the user terminal 3-j (step S2).
 ユーザ端末3-jは、ログインページのHTML文書を受信すると、ログインページを画面に表示する。そこで、ユーザがユーザID及びパスワードを入力すると、ユーザ端末3-jは、入力されたユーザID及びパスワードをWebサーバ1-iに送信する(ステップS3)。Webサーバ1-iは、入力されたユーザID及びパスワードを受信すると、パスワード認証を行う(ステップS4)。 When the user terminal 3-j receives the HTML document of the login page, the user terminal 3-j displays the login page on the screen. Therefore, when the user inputs the user ID and password, the user terminal 3-j transmits the input user ID and password to the Web server 1-i (step S3). When the Web server 1-i receives the input user ID and password, it performs password authentication (step S4).
 Webサーバ1-iは、パスワード認証が成功すると、ログイン後に予め設定されたのWebページのHTML文書をユーザ端末3-jに送信する(ステップS5)。このとき、Webサーバ1-iは、クッキーを発行する。具体的に、Webサーバ1-iは、パスワード認証が成功したユーザを特定するための識別情報をクッキーの値とするSet-Cookieヘッダを、レスポンスのヘッダとして設定する。ここで、Webサーバ1-iは、クッキー名として例えば「A1」を指定する。また、クッキーの値そのものは暗号化される。また、Webサーバ1-iは、ドメイン属性に「.abc.co.jp」を指定し、Expires属性に適切な有効期限を示す日付を指定する。なお、ここで発行されたクッキーを、「クッキーA1」と称する。 When the password authentication is successful, the Web server 1-i transmits an HTML document of a Web page set in advance after login to the user terminal 3-j (Step S5). At this time, the Web server 1-i issues a cookie. Specifically, the Web server 1-i sets, as a response header, a Set-Cookie header having identification information for specifying a user who has succeeded in password authentication as a cookie value. Here, the Web server 1-i designates, for example, “A1” as the cookie name. Also, the cookie value itself is encrypted. Further, the Web server 1-i designates “.abc.co.jp” as the domain attribute and designates a date indicating an appropriate expiration date as the Expires attribute. The cookie issued here is referred to as “cookie A1”.
 HTML文書とクッキーA1とを含むレスポンスを受信したユーザ端末3-jは、ログイン後のWebページを受信するとともに、クッキーA1をドメイン属性としての「.abc.co.jp」に対応付けて保存する(ステップS6)。 The user terminal 3-j that has received the response including the HTML document and the cookie A1 receives the Web page after login, and stores the cookie A1 in association with “.abc.co.jp” as the domain attribute. (Step S6).
 その後、或るWebページがユーザ端末3-jの画面に表示されている状態で、ユーザが何らかのアクション(例えば、情報の入力や選択、商品の購入、入札、予約等)の操作を行うことにより、ユーザ端末3-jはWebサーバ1-iにリクエストを送信する(ステップS7)。このときのリクエスト先のWebサーバ1-iは、クッキーA1を発行したWebサーバ1-iではなくても良い。リクエストを受信したWebサーバ1-iは、ユーザのアクションに応じて予め設定された処理を行い、その結果としてのWebページのHTML文書をユーザ端末3-jに送信する(ステップS8)。このとき、Webサーバ1-iは、クッキーを発行する。具体的に、Webサーバ1-iは、ユーザのアクション又はアクションに応じた処理結果に関連する情報をクッキーの値とするSet-Cookieヘッダを、レスポンスのヘッダとして設定する。ここで、Webサーバ1-iは、クッキー名として例えば「A2」を指定する。クッキーの値そのものは暗号化される。また、Webサーバ1-iは、ドメイン属性に「.abc.co.jp」を指定し、Expires属性に適切な有効期限を示す日付を指定する。なお、ここで発行されたクッキーを、「クッキーA2」と称する。 Thereafter, when a certain web page is displayed on the screen of the user terminal 3-j, the user performs an operation of some action (for example, input or selection of information, purchase of a product, bid, reservation). The user terminal 3-j transmits a request to the Web server 1-i (step S7). The Web server 1-i that is the request destination at this time may not be the Web server 1-i that issued the cookie A1. Receiving the request, the Web server 1-i performs a process set in advance according to the user's action, and transmits the HTML document of the Web page as a result to the user terminal 3-j (step S8). At this time, the Web server 1-i issues a cookie. Specifically, the Web server 1-i sets, as a response header, a Set-Cookie header in which information related to a user action or a processing result corresponding to the action is a cookie value. Here, the Web server 1-i designates, for example, “A2” as the cookie name. The cookie value itself is encrypted. Further, the Web server 1-i designates “.abc.co.jp” as the domain attribute and designates a date indicating an appropriate expiration date as the Expires attribute. The cookie issued here is referred to as “cookie A2”.
 HTML文書とクッキーA2とを含むレスポンスを受信したユーザ端末3-jは、Webページを受信するとともに、クッキーA2をドメイン属性としての「.abc.co.jp」に対応付けて保存する(ステップS9)。 Upon receiving the response including the HTML document and the cookie A2, the user terminal 3-j receives the Web page and stores the cookie A2 in association with “.abc.co.jp” as the domain attribute (step S9). ).
 その後、或るWebページがユーザ端末3-jの画面に表示されている状態で、ユーザがクッキー転送ページへのリンクを選択することにより、ユーザ端末3-jはWebサーバ1-iにクッキー転送ページのリクエストを送信する(ステップS10)。このときのリクエスト先のWebサーバ1-iは、クッキーA2を発行したWebサーバ1-iではなくても良い。リクエストを受信したWebサーバ1-iは、クッキー転送ページのHTML文書をユーザ端末3-jに送信する(ステップS11)。 Thereafter, when a web page is displayed on the screen of the user terminal 3-j, the user selects a link to the cookie transfer page, so that the user terminal 3-j transfers the cookie to the Web server 1-i. A page request is transmitted (step S10). The Web server 1-i that is the request destination at this time may not be the Web server 1-i that issued the cookie A2. Receiving the request, the Web server 1-i transmits the HTML document of the cookie transfer page to the user terminal 3-j (step S11).
 HTML文書を受信したユーザ端末3-jは、受信したHTML文書を解析してクッキー転送ページを画面に表示するとともに、HTML文書に記述されているiframeタグのsrc属性を取得する(ステップS12)。次いで、ユーザ端末3-jは、取得したsrc属性が示すURLをリクエストURLとするリクエストを送信する(ステップS13)。図2に示すように、iframeタグのsrc属性には、クッキー処理サーバ1のホスト名が記述されているので、ユーザ端末3-jからのリクエストはクッキー処理サーバ1に送信される。また、クッキー処理サーバ1のホスト名は「.abc.co.jp」と後方一致するので、ユーザ端末3-jからのリクエストには、クッキーA1及びA2が含まれる。このときのリクエストの内容は、例えば、図7(a)に示すとおりとなる。 The user terminal 3-j that has received the HTML document analyzes the received HTML document and displays the cookie transfer page on the screen, and acquires the src attribute of the iframe tag described in the HTML document (step S12). Next, the user terminal 3-j transmits a request with the URL indicated by the acquired src attribute as a request URL (step S13). As shown in FIG. 2, since the host name of the cookie processing server 1 is described in the src attribute of the iframe tag, the request from the user terminal 3-j is transmitted to the cookie processing server 1. Further, since the host name of the cookie processing server 1 is the same as “.abc.co.jp”, the requests from the user terminal 3-j include cookies A1 and A2. The contents of the request at this time are as shown in FIG.
 リクエストを受信したクッキー処理サーバ1は、クッキーA1又はA2のクッキー名と、リクエストURLにパラメータとして指定されているサービスIDと一致するか否かを確認する。例えば、指定されているサービスIDが「A2」である場合、クッキーA2のクッキー名とサービスIDとが一致する。この場合、クッキー処理サーバ1は、クッキーA2の中身の情報をWebサーバ2に転送しても良いと判断する。すると、クッキー処理サーバ1は、SSL通信で再度クッキー処理サーバ1にリダイレクトさせる。これは、こらから転送しようとする情報の第3者による傍受や改竄等を防止するためである。具体的に、クッキー処理サーバ1は、リクエストURLのプロトコルを示す「http」を「https」に書き換えて(ステップS15)、書き換えたURLをリダイレクト先のURLとして指定するLocationヘッダを含むレスポンスをユーザ端末3-jに送信する(ステップS16)。このときのレスポンスの内容は、例えば、図7(b)に示すとおりとなる。 The cookie processing server 1 that has received the request confirms whether or not the cookie name of the cookie A1 or A2 matches the service ID specified as a parameter in the request URL. For example, when the designated service ID is “A2”, the cookie name of the cookie A2 matches the service ID. In this case, the cookie processing server 1 determines that the content information of the cookie A2 may be transferred to the Web server 2. Then, the cookie processing server 1 redirects the cookie processing server 1 again by SSL communication. This is to prevent the third party from intercepting or falsifying information to be transferred from here. Specifically, the cookie processing server 1 rewrites “http” indicating the protocol of the request URL to “https” (step S15), and sends a response including a Location header that specifies the rewritten URL as a redirect destination URL. 3-j is transmitted (step S16). The content of the response at this time is, for example, as shown in FIG.
 次いで、ユーザ端末3-jとクッキー処理サーバ1との間でSSLセッションが確立されると、ユーザ端末3-jは、クッキーA1及びA2を含むリクエストをクッキー処理サーバ1に送信する(ステップS17)。このときのリクエストの内容は、例えば、図7(c)に示すとおりとなる。 Next, when an SSL session is established between the user terminal 3-j and the cookie processing server 1, the user terminal 3-j transmits a request including the cookies A1 and A2 to the cookie processing server 1 (step S17). . The content of the request at this time is, for example, as shown in FIG.
 図6に示すように、クッキー処理サーバ1は、リクエストを受信すると、リクエストURLにパラメータとして指定されているサービスIDとクッキー名が一致するクッキーの値をリクエストから取得する(ステップS18)。次いで、クッキー処理サーバ1は、取得したクッキーの値が暗号化されている場合はこの値を復号し、その後、クッキーの値の検査を行う(ステップS19)。ここでは、クッキーの値が改竄されているか否かや、クッキーの値に不正な文字が含まれているか等が検査される。そして、検査結果が正常である場合、クッキー処理サーバ1は、クッキーの値を暗号化し、符号化する(ステップS20)。 As shown in FIG. 6, when the cookie processing server 1 receives the request, the cookie processing server 1 acquires from the request the value of the cookie whose cookie name matches the service ID specified as a parameter in the request URL (step S18). Next, if the acquired cookie value is encrypted, the cookie processing server 1 decrypts this value, and then checks the cookie value (step S19). Here, it is checked whether or not the cookie value has been tampered with and whether or not the cookie value contains illegal characters. If the test result is normal, the cookie processing server 1 encrypts and encodes the cookie value (step S20).
 次いで、クッキー処理サーバ1は、Locationヘッダに指定するURLを生成する(ステップS21)。具体的に、クッキー処理サーバ1は、転送先としてのWebサーバ2のホスト名を含むURLに、符号化した値をパラメータとして付加してURLを生成する。次いで、クッキー処理サーバ1は、生成したURLをリダイレクト先として示すLocationヘッダを含むレスポンスをユーザ端末3-jに送信する(ステップS22)。このときのレスポンスの内容は、例えば、図7(d)に示すとおりとなる。 Next, the cookie processing server 1 generates a URL specified in the Location header (step S21). Specifically, the cookie processing server 1 generates a URL by adding an encoded value as a parameter to a URL including the host name of the Web server 2 as a transfer destination. Next, the cookie processing server 1 transmits a response including a Location header indicating the generated URL as a redirect destination to the user terminal 3-j (step S22). The content of the response at this time is, for example, as shown in FIG.
 レスポンスを受信したユーザ端末3-jは、ユーザ端末3-jとWebサーバ2との間でSSLセッションが確立されると、Locationヘッダに従ってリクエストをWebサーバ2に送信する(ステップS23)。このときのリクエストの内容は、例えば、図7(e)に示すとおりとなる。このときのリクエストに含まれるリクエストURLはLocationヘッダの内容と同じとなるので、リクエストURLには、転送すべき値がパラメータとして付加されている。 The user terminal 3-j that has received the response transmits a request to the Web server 2 according to the Location header when an SSL session is established between the user terminal 3-j and the Web server 2 (step S23). The content of the request at this time is, for example, as shown in FIG. Since the request URL included in the request at this time is the same as the content of the Location header, a value to be transferred is added to the request URL as a parameter.
 リクエストを受信したWebサーバ2は、クッキーを発行する(ステップS24)。具体的に、Webサーバ2は、リクエストURLに付加されているパラメータの値をクッキーの値とするSet-Cookieヘッダを、レスポンスのヘッダとして設定する。ここで、Webサーバ1-iは、クッキー名として例えば「B」を指定する。また、Webサーバ1-iは、ドメイン属性に「.xyz.co.jp」を指定し、Expires属性に適切な有効期限を示す日付を指定する。そして、Webサーバ2は、Set-Cookieヘッダを含むレスポンスをユーザ端末3-jに送信する(ステップS25)。なお、ここで発行されたクッキーを、「クッキーB」と称する。 The Web server 2 that has received the request issues a cookie (step S24). Specifically, the Web server 2 sets, as a response header, a Set-Cookie header in which a parameter value added to the request URL is a cookie value. Here, the Web server 1-i specifies, for example, “B” as the cookie name. Further, the Web server 1-i designates “.xyz.co.jp” as the domain attribute and designates a date indicating an appropriate expiration date as the Expires attribute. Then, the Web server 2 transmits a response including the Set-Cookie header to the user terminal 3-j (Step S25). The cookie issued here is referred to as “cookie B”.
 クッキーBを含むレスポンスを受信したユーザ端末3-jは、クッキーBをドメイン属性としての「.xyz.co.jp」に対応付けて保存する(ステップS26)。 The user terminal 3-j that has received the response including the cookie B stores the cookie B in association with “.xyz.co.jp” as the domain attribute (step S26).
 その後、クッキー転送ページが画面に表示されている状態で、ユーザがドメインD2のWebページへのリンクを選択すると(ステップS27)、ユーザ端末3-jは、クッキーBを含むリクエストをWebサーバ2に送信する(ステップS28)。リクエストを受信したWebサーバ2は、クッキーBの値に基づいてパーソナライズ化したHTML文書を生成し(ステップS29)、生成したHTML文書をユーザ端末3-jに送信する(ステップS30)。 Thereafter, when the user selects a link to the Web page of the domain D2 while the cookie transfer page is displayed on the screen (step S27), the user terminal 3-j sends a request including the cookie B to the Web server 2. Transmit (step S28). The Web server 2 that has received the request generates a personalized HTML document based on the value of the cookie B (step S29), and transmits the generated HTML document to the user terminal 3-j (step S30).
 [1.6 変形例]
 これまでの説明においては、ユーザ端末3-jの画面表示がクッキー転送ページからドメインD2のWebページに遷移して初めてWebサーバ2に転送されたクッキーの値をWebページに反映することができたが、クッキー転送ページにおいて反映させることも可能である。 [1.6 Modification]
In the description so far, the value of the cookie transferred to the Web server 2 can be reflected on the Web page for the first time after the screen display of the user terminal 3-j transitions from the cookie transfer page to the Web page of the domain D2. However, it can also be reflected on the cookie transfer page.
 例えば、クッキー転送ページのHTML文書にクッキー転送ページの一部を書き換えるスクリプトを記述する。具体的には、Webブラウザプログラムによってインラインフレームを含むHTML文書全体の読み込みが完了したときに、スクリプトが起動するようにする。これは、例えば、bodyタグにonload属性を記述することにより実現することができる。そして、スクリプトにおいては、クッキー転送ページの一部を書き換えるためのコンテンツをWebサーバ2から取得するような命令が記述される。 For example, write a script to rewrite a part of the cookie transfer page in the HTML document of the cookie transfer page. Specifically, the script is activated when reading of the entire HTML document including the inline frame is completed by the Web browser program. This can be realized, for example, by describing an onload attribute in the body tag. In the script, an instruction for acquiring content for rewriting a part of the cookie transfer page from the Web server 2 is described.
 このようなHTML文書に基づいてクッキー転送ページが画面に表示されると、図6に示したように、クッキーBがユーザ端末3-jにより保存される。このとき、HTML文書全体の読み込みが完了するまでには、ユーザ端末3-jはWebサーバ2から既にクッキーBを受信し、保存している。HTML文書全体の読み込みが完了したタイミングでスクリプトが実行されると、ユーザ端末3-jによりWebサーバ2にリクエストが送信される。この時点でクッキーBは保存されているので、送信されるリクエストにはクッキーBが含まれる。よって、Webサーバ2はクッキーBを受信する。そして、Webサーバ2は、受信したクッキーBの値に基づいてパーソナライズしたコンテンツを生成し、生成したコンテンツをユーザ端末3-jに送信する。コンテンツを受信したユーザ端末3-jは、スクリプトの実行によってクッキー転送ページの一部を書き換える。これによって、Webサーバ2から受信したコンテンツがクッキー転送ページ上に表示される。 When the cookie transfer page is displayed on the screen based on such an HTML document, the cookie B is stored by the user terminal 3-j as shown in FIG. At this time, the user terminal 3-j has already received and stored the cookie B from the Web server 2 until the reading of the entire HTML document is completed. When the script is executed at the timing when reading of the entire HTML document is completed, a request is transmitted to the Web server 2 by the user terminal 3-j. Since Cookie B is stored at this point, Cookie B is included in the transmitted request. Therefore, the Web server 2 receives the cookie B. Then, the Web server 2 generates personalized content based on the received cookie B value, and transmits the generated content to the user terminal 3-j. The user terminal 3-j that has received the content rewrites a part of the cookie transfer page by executing the script. As a result, the content received from the Web server 2 is displayed on the cookie transfer page.
 以上説明したように、本実施形態によれば、ユーザ端末3-jが、Webサーバ1-iから受信したクッキー転送ページに記述されたiframeタグに基づいて、ドメインD1に対応するクッキーを含むリクエストをクッキー処理サーバ1に送信する。リクエストを受信したクッキー処理サーバ1は、ドメインD2のドメイン名を含むURLであってリクエストに含まれるクッキーの情報がパラメータとして付加されたURLをリダイレクト先のURLとするLocationヘッダを含むレスポンスをユーザ端末3-jに送信する。レスポンスを受信したユーザ端末3-jは、レスポンスに含まれるLocationヘッダに指定されたURLをリクエストURLとして含むリクエストをWebサーバ2に送信する。リクエストを受信したWebサーバ2は、リクエストに含まれるパラメータの情報をクッキーとして含むレスポンスをユーザ端末3-jに送信する。レスポンスを受信したユーザ端末3-jは、レスポンスに含まれるクッキーをドメインD2に対応付けて保存する。 As described above, according to the present embodiment, the user terminal 3-j receives a request including a cookie corresponding to the domain D1 based on the iframe tag described in the cookie transfer page received from the Web server 1-i. Is transmitted to the cookie processing server 1. Upon receiving the request, the cookie processing server 1 sends a response including a Location header having a URL including the domain name of the domain D2 and having the cookie information included in the request as a parameter as a redirect destination URL. Send to 3-j. Receiving the response, the user terminal 3-j transmits a request including the URL specified in the Location header included in the response as a request URL to the Web server 2. The Web server 2 that has received the request transmits a response including the parameter information included in the request as a cookie to the user terminal 3-j. The user terminal 3-j that has received the response stores the cookie included in the response in association with the domain D2.
 従って、Webサーバ2は、ドメインD1において発行されたクッキーの情報を、自身が発行したクッキーとしてユーザ端末3-jから取得することができるので、ドメインD1において発行されたクッキーの情報を、ドメインD1とはドメイン名が異なるドメインD2に属するWebサーバ2が利用することが可能となり、ドメインD1と同じ情報に基づいてWebページをパーソナライズすることが可能となる。 Accordingly, since the Web server 2 can acquire the information of the cookie issued in the domain D1 from the user terminal 3-j as the cookie issued by itself, the Web server 2 can acquire the information of the cookie issued in the domain D1. Can be used by the Web server 2 belonging to the domain D2 having a different domain name, and the Web page can be personalized based on the same information as the domain D1.
 また、クッキー転送ページのHTML文書には、ドメインD2のWebページへのリンクを示すアンカータグが記述されているので、ユーザ端末3-jがクッキー転送ページを画面表示している状態でWebサーバ2により発行されたクッキーがユーザ端末3-jにより保存された後、クッキー転送ページ上のリンクをユーザが選択することによって、画面表示がドメインD2のWebページに遷移する。 Further, since the HTML document of the cookie transfer page describes an anchor tag indicating a link to the Web page of the domain D2, the Web server 2 is displayed with the user terminal 3-j displaying the cookie transfer page on the screen. After the cookie issued by is saved by the user terminal 3-j, when the user selects a link on the cookie transfer page, the screen display changes to the Web page of the domain D2.
 従って、ドメインD1に対応するクッキーの情報をWebサーバ2が利用する可能性がある直前に、Webサーバ2がドメインD1に対応するクッキーの情報を取得するので、Webサーバ2が最新の情報に基づいて処理を行うことができるとともに、不必要な場合にまでドメインD1に対応するクッキーの情報がWebサーバ2に送信される確率を減らすことができる。 Therefore, immediately before the Web server 2 may use the cookie information corresponding to the domain D1, the Web server 2 acquires the cookie information corresponding to the domain D1, so that the Web server 2 is based on the latest information. And the probability that the information of the cookie corresponding to the domain D1 will be transmitted to the Web server 2 until it is unnecessary.
 [2.第2実施形態]
 次に、第2実施形態について、図8を用いて説明する。 [2. Second Embodiment]
Next, a second embodiment will be described with reference to FIG.
 上述したように、サービスの内容や利用目的等に応じて1つのクッキーに複数の情報(複数の項目対応情報の一例)がまとめて設定される場合がある。例えば、ユーザの氏名、ニックネーム、年齢、性別等の項目に対応する情報がまとめられたりする。第1実施形態においては、クッキーに複数の情報がまとめて設定されているか否かにかかわらず、サービスIDにより指定されたクッキーの情報は全てWebサーバ2に転送されるようになっていた。しかしながら、転送する情報を制限したい場合がある。例えば、ドメインD1のWebサイトを運営する組織とドメインD2のWebサイトを運営する組織との間で資本的な関連性が無い場合においては、ユーザに関連する情報が必要以上に流出することを避けるため、必要な情報のみ転送することが望まれる。そうであれば、転送対象とする情報を別のクッキーに分けるという手法もとれないことではないが、そのために、Webサーバ1-i側のプログラムの修正が必要になる。また、1つのホスト或いは1つのドメインに対して20個を超えるクッキーをユーザ端末3-jが保存することを期待してはならないという制約があるので、必要以上にクッキーを増やすことも躊躇される。 As described above, a plurality of pieces of information (an example of a plurality of item correspondence information) may be collectively set in one cookie depending on the service content, purpose of use, and the like. For example, information corresponding to items such as the user's name, nickname, age, and gender are collected. In the first embodiment, all the information of the cookie designated by the service ID is transferred to the Web server 2 regardless of whether or not a plurality of pieces of information are set in the cookie. However, there are cases where it is desired to limit the information to be transferred. For example, when there is no capital relationship between the organization that operates the website of the domain D1 and the organization that operates the website of the domain D2, avoid unnecessarily leaking information related to the user. Therefore, it is desirable to transfer only necessary information. If this is the case, it is not impossible to divide the information to be transferred into different cookies, but for that purpose, it is necessary to modify the program on the Web server 1-i side. Also, since there is a restriction that the user terminal 3-j should not expect to store more than 20 cookies for one host or one domain, it is hesitated to increase cookies more than necessary. .
 そこで、第2実施形態においては、クッキー処理サーバ1が、サービスIDにより指定されたクッキーの情報のうち、必要な情報のみがWebサーバ2に転送されるように処理する。そのため、例えば、クッキー処理サーバ1の記憶部12には、クッキー制御情報が記憶される。このクッキー制御情報には、クッキー制御情報の識別情報としての制御ID、転送先のWebサーバのホスト名、転送対象とするクッキーを示すサービスID、転送対象とする情報の項目の識別情報としての項目ID、転送する情報を暗号化するための暗号鍵等が、情報の転送先となるドメイン毎に設定されている。なお、項目IDは必要に応じて複数設定される。クッキー制御情報は、例えば、管理者によって予め設定される。転送先のドメイン毎に設定が可能となるので、ドメインD2以外のドメインに対してもクッキーの情報を転送することが可能となる。 Therefore, in the second embodiment, the cookie processing server 1 performs processing so that only necessary information is transferred to the Web server 2 among the cookie information designated by the service ID. Therefore, for example, the cookie control information is stored in the storage unit 12 of the cookie processing server 1. The cookie control information includes a control ID as identification information of the cookie control information, a host name of a transfer destination Web server, a service ID indicating a cookie to be transferred, and an item as identification information of an item of information to be transferred. An ID, an encryption key for encrypting information to be transferred, and the like are set for each domain to which information is to be transferred. A plurality of item IDs are set as necessary. The cookie control information is preset by an administrator, for example. Since setting is possible for each transfer destination domain, it is possible to transfer cookie information to domains other than the domain D2.
 ここで、クッキー制御情報に暗号鍵が含まれている意義を説明する。クッキー処理サーバ1において暗号化された情報は転送先のドメインにおいて復号鍵で復号されることとなるが、転送する情報を暗号化するための暗号鍵として、ドメインD1においてクッキーの値を暗号化するための暗号鍵と同じ鍵を用いると、ドメインD1においてクッキーの値を復号するための復号鍵がドメインD1の外部に示されている状態となり、セキュリティ上好ましくない。そこで、転送する情報を暗号化するための暗号鍵はドメインD1においてクッキーの値を暗号化するための暗号鍵とは異なる鍵としている。 Here, the significance of the encryption key included in the cookie control information will be explained. The information encrypted in the cookie processing server 1 is decrypted with the decryption key in the transfer destination domain, but the cookie value is encrypted in the domain D1 as an encryption key for encrypting the information to be transferred. If the same key as the encryption key is used, the decryption key for decrypting the value of the cookie in the domain D1 is shown outside the domain D1, which is not preferable in terms of security. Therefore, the encryption key for encrypting the information to be transferred is different from the encryption key for encrypting the value of the cookie in the domain D1.
 上記のクッキー制御情報に対応し、クッキー転送ページのHTML文書において、iframeタグのsrc属性には、例えば、サービスIDに代えて、制御IDが記述される。この制御IDによって、どのクッキー制御情報が用いられるかが示される。 Corresponding to the above cookie control information, in the HTML document of the cookie transfer page, for example, a control ID is described in the src attribute of the iframe tag instead of the service ID. This control ID indicates which cookie control information is used.
 クッキー処理サーバ1は、クッキー転送ページのHTML文書を取得したユーザ端末3-jからクッキーを含むリクエストを受信すると、リクエストURLにパラメータとして付加されている制御IDに対応するクッキー制御情報に基づいて処理を行う。 When the cookie processing server 1 receives a request including a cookie from the user terminal 3-j that acquired the HTML document of the cookie transfer page, the cookie processing server 1 processes based on the cookie control information corresponding to the control ID added as a parameter to the request URL. I do.
 図8は、本実施形態に係る情報提供システムSの処理例を示すシーケンス図である。図8において、図5又は図6と同様の要素については同様の符号を付してある。また、本実施形態において、ステップS1~S12の処理、及びステップS23~S29の処理は、第1実施形態の場合と同様であるので、図8においては、これらの処理の図示を省略している。 FIG. 8 is a sequence diagram showing a processing example of the information providing system S according to the present embodiment. In FIG. 8, elements similar to those in FIG. 5 or FIG. In the present embodiment, the processes in steps S1 to S12 and the processes in steps S23 to S29 are the same as those in the first embodiment, and therefore, these processes are not shown in FIG. .
 図8に示すように、クッキー転送ページのHTML文書を取得したユーザ端末3-jから、クッキーA1及びA2を含むリクエストを受信したクッキー処理サーバ1は、リクエストURLにパラメータとして指定されている制御IDに対応するクッキー制御情報を取得する(ステップS51)。次いで、クッキー処理サーバ1は、クッキーA1又はA2のクッキー名と、クッキー制御情報のサービスIDと一致するか否かを確認する(ステップS52)。サービスIDが「A2」である場合、クッキーA2のクッキー名とサービスIDが一致する。そこで、クッキー処理サーバ1は、リクエストURLのプロトコルを示す「http」を「https」に書き換えて(ステップS15)、書き換えたURLをリダイレクト先のURLとして指定するLocationヘッダを含むレスポンスをユーザ端末3-jに送信する(ステップS16)。 As shown in FIG. 8, the cookie processing server 1 that has received a request including the cookies A1 and A2 from the user terminal 3-j that has acquired the HTML document of the cookie transfer page, receives the control ID specified as a parameter in the request URL. Cookie control information corresponding to is acquired (step S51). Next, the cookie processing server 1 checks whether or not the cookie name of the cookie A1 or A2 matches the service ID of the cookie control information (step S52). When the service ID is “A2”, the cookie name of the cookie A2 matches the service ID. Therefore, the cookie processing server 1 rewrites “http” indicating the protocol of the request URL to “https” (step S15), and sends a response including a Location header for designating the rewritten URL as a redirect destination URL. j (step S16).
 クッキー処理サーバ1は、レスポンスを受信したユーザ端末3-jから、SSLセッションが確立した状態でクッキーA1及びA2を含むリクエストを受信すると(ステップS17)、リクエストURLにパラメータとして指定されている制御IDに対応するクッキー制御情報を取得する(ステップS53)。 When the cookie processing server 1 receives a request including the cookies A1 and A2 from the user terminal 3-j that has received the response while the SSL session is established (step S17), the control ID specified as a parameter in the request URL Cookie control information corresponding to is acquired (step S53).
 次いで、クッキー処理サーバ1は、取得したクッキー制御情報のサービスIDとクッキー名が一致するクッキーの値をリクエストから取得する(ステップS54)。 Next, the cookie processing server 1 acquires the value of the cookie whose cookie name matches the service ID of the acquired cookie control information from the request (step S54).
 次いで、クッキー処理サーバ1は、取得したクッキーの値をドメインD1用の復号鍵で復号し、その後、クッキーの値の検査を行う(ステップS55)。 Next, the cookie processing server 1 decrypts the acquired cookie value with the decryption key for the domain D1, and then checks the cookie value (step S55).
 次いで、クッキー処理サーバ1は、復号化した値から、取得したクッキー制御情報の項目IDに対応する情報を取得する(ステップS56)。このとき、復号化された値において、項目IDと項目に対応する情報とが、例えば、「data01=XXXX」というように対応付けて設定されているような場合には、クッキー処理サーバ1は、復号化した値からクッキー制御情報の項目IDと一致する項目IDを検索し、検索された項目IDに対応付けられている情報を取得すれば良い。 Next, the cookie processing server 1 acquires information corresponding to the item ID of the acquired cookie control information from the decrypted value (step S56). At this time, in the decrypted value, when the item ID and the information corresponding to the item are set in association with each other, for example, “data01 = XXXX”, the cookie processing server 1 An item ID that matches the item ID of the cookie control information is searched from the decrypted value, and information associated with the searched item ID may be acquired.
 次いで、クッキー処理サーバ1は、項目IDに対応する情報を、取得したクッキー制御情報の暗号鍵で暗号化し、符号化する(ステップS57)。なお、クッキー制御情報に項目IDが設定されていない場合は、ステップS56の処理はスキップされ、クッキーの値全体が暗号化、符号化される。 Next, the cookie processing server 1 encrypts and encodes the information corresponding to the item ID with the encryption key of the acquired cookie control information (step S57). If the item ID is not set in the cookie control information, the process in step S56 is skipped, and the entire cookie value is encrypted and encoded.
 次いで、クッキー処理サーバ1は、Locationヘッダに指定するURLを生成する(ステップS58)。具体的に、クッキー処理サーバ1は、取得したクッキー制御情報のホスト名を含むURLに、符号化した値をパラメータとして付加してURLを生成する。次いで、クッキー処理サーバ1は、生成したURLをリダイレクト先として示すLocationヘッダを含むレスポンスをユーザ端末3-jに送信する(ステップS22)。 Next, the cookie processing server 1 generates a URL specified in the Location header (step S58). Specifically, the cookie processing server 1 generates a URL by adding an encoded value as a parameter to a URL including the host name of the acquired cookie control information. Next, the cookie processing server 1 transmits a response including a Location header indicating the generated URL as a redirect destination to the user terminal 3-j (step S22).
 クッキー制御情報のホスト名がWebサーバ2のホスト名である場合には、その後、図6のステップS23~S30と同様の処理が行われる。 If the host name of the cookie control information is the host name of the Web server 2, then the same processing as in steps S23 to S30 in FIG. 6 is performed.
 以上説明したように、本実施形態によれば、ドメインD1に対応するクッキーの1つに、夫々が予め設定された項目に対応する複数の情報が含まれており、クッキー処理装置1は、ユーザ端末3-jから受信したリクエストに含まれるクッキーの情報のうち、クッキー制御情報が示すドメインD2に予め対応付けられた項目に対応する情報がパラメータとして付加されたURLをリダイレクト先のURLとするLocationヘッダを含むレスポンスをユーザ端末3-jに送信する。 As described above, according to this embodiment, one of the cookies corresponding to the domain D1 includes a plurality of pieces of information each corresponding to a preset item, and the cookie processing apparatus 1 is Of the cookie information included in the request received from the terminal 3-j, a Location where the URL to which the information corresponding to the item previously associated with the domain D2 indicated by the cookie control information is added as a parameter is the redirect destination URL A response including the header is transmitted to the user terminal 3-j.
 従って、1つのクッキーに複数の情報が含まれている場合に、ドメインD2に属するWebサーバ2が取得し利用することができる情報を制限することができる。 Therefore, when a plurality of pieces of information are included in one cookie, the information that can be acquired and used by the Web server 2 belonging to the domain D2 can be restricted.
 なお、上記第2実施形態においては、Webサーバ2に転送されるクッキーの情報が項目単位で指定されるようになっていたが、クッキー単位で指定されるようになっていても良い。例えば、管理者が、クッキー制御情報に、制御ID、転送先のWebサーバのホスト名及び転送対象とするクッキーを示すサービスIDを設定し、項目IDは設定しない。管理者は、転送対象とするクッキーが複数存在する場合には、対応するサービスIDを複数設定する。 In the second embodiment, the cookie information transferred to the Web server 2 is specified in units of items. However, the information may be specified in units of cookies. For example, the administrator sets the control ID, the host name of the transfer destination Web server, and the service ID indicating the cookie to be transferred in the cookie control information, and does not set the item ID. When there are a plurality of cookies to be transferred, the administrator sets a plurality of corresponding service IDs.
 クッキー処理サーバ1は、図8に示す処理において、ユーザ端末3-jからリクエストURLに制御IDが付加されたリクエストを受信した場合には、この制御IDに対応するクッキー制御情報を取得する。次いで、クッキー処理サーバ1は、受信したリクエストに含まれるクッキーの中に、取得したクッキー制御情報のサービスIDとクッキー名が一致するものがあるか否かを判定する。クッキー処理サーバ1は、クッキー制御情報のサービスIDとクッキー名が一致するクッキーの値のみを、受信したリクエストから取得する。そして、クッキー処理サーバ1は、取得したクッキーの値をパラメータとして付加したURLをLocationヘッダに指定したレスポンスをユーザ端末3-jに送信する。一方、クッキー制御情報のサービスIDとクッキー名が一致するクッキーが含まれていない場合には、転送対象となるクッキーが存在しない。この場合、クッキー処理サーバ1は、例えばステータスコード204を含むレスポンスをユーザ端末3-jに送信する。このレスポンスを受信したユーザ端末3-jは、Webサーバ2に対してリクエストを送信しないことになる。 When the cookie processing server 1 receives a request in which the control ID is added to the request URL from the user terminal 3-j in the processing shown in FIG. 8, the cookie processing server 1 acquires cookie control information corresponding to the control ID. Next, the cookie processing server 1 determines whether there is a cookie included in the received request that has a cookie name that matches the service ID of the acquired cookie control information. The cookie processing server 1 acquires only the value of the cookie whose cookie name matches the service ID of the cookie control information from the received request. Then, the cookie processing server 1 transmits to the user terminal 3-j a response in which the URL added with the acquired cookie value as a parameter is specified in the Location header. On the other hand, when a cookie whose service ID matches the cookie name in the cookie control information is not included, there is no cookie to be transferred. In this case, the cookie processing server 1 transmits a response including, for example, the status code 204 to the user terminal 3-j. The user terminal 3-j that has received this response does not transmit a request to the Web server 2.
 また、上記実施形態においては、ドメインD1にクッキー処理サーバ1が属し、ドメインD2にWebサーバ2が属していた。しかしながら、ドメイン名が互いに異なる2つ以上のドメインの各ドメインに、そのドメインに属するクッキー処理サーバ1及びWebサーバ2がそれぞれ設けられても良い。これにより、各ドメインで発行されたクッキーの情報を、ドメイン間で相互に共用することができる。この場合、各クッキー処理サーバ1は、クッキー制御情報として、例えば、制御ID及び転送先のWebサーバ2のホスト名等を対応付けて記憶する。転送先のWebサーバ2としては、クッキー処理サーバが属するドメインとは異なるドメインに属するWebサーバ2が指定される。つまり、クッキー制御情報を記憶するクッキー処理サーバが属するドメインのドメイン名と後方一致しないホスト名が、転送先のWebサーバ2のホスト名として、そのクッキー制御情報に設定される。管理者等が、クッキー制御情報中に設定された制御IDを、クッキー転送ページのHTML文書中のiframeタグのsrc属性中に記述しておくことで、src属性が示すURLと、クッキーの情報の転送先のドメインとが対応付けられる。 In the above embodiment, the cookie processing server 1 belongs to the domain D1, and the Web server 2 belongs to the domain D2. However, the cookie processing server 1 and the Web server 2 belonging to the domains may be provided in each of two or more domains having different domain names. Thereby, the information of the cookie issued in each domain can be mutually shared between domains. In this case, each cookie processing server 1 stores, as cookie control information, for example, the control ID and the host name of the transfer destination Web server 2 in association with each other. As the transfer destination Web server 2, a Web server 2 belonging to a domain different from the domain to which the cookie processing server belongs is specified. That is, a host name that does not match the domain name of the domain to which the cookie processing server that stores the cookie control information belongs is set in the cookie control information as the host name of the transfer destination Web server 2. The administrator or the like describes the control ID set in the cookie control information in the src attribute of the iframe tag in the HTML document of the cookie transfer page, so that the URL indicated by the src attribute and the cookie information It is associated with the transfer destination domain.
 また、Webサーバ2は、クッキー処理装置1からのLocationヘッダを含むレスポンスに基づいてユーザ端末3-jから送信されたリクエストを受信したとき、クッキーを発行するか否かを判定しても良い。Webサーバ2としては、転送されてきたクッキーの情報の中に、不要な情報が存在する場合がある。そこで、Webサーバ2は、転送されてきたクッキーの情報のうち、クッキー単位で必要な情報にみについてクッキーを発行する。 Further, when receiving a request transmitted from the user terminal 3-j based on the response including the Location header from the cookie processing device 1, the Web server 2 may determine whether to issue a cookie. As the Web server 2, unnecessary information may exist in the transferred cookie information. Therefore, the Web server 2 issues a cookie only for information necessary for each cookie among the transferred cookie information.
 そのため、Webサーバ2においては、クッキーの発行条件を示す条件情報を予め記憶部22に記憶させる。この条件情報には、例えば、発行対象となるクッキーのクッキー名(クッキー識別情報の一例)が設定される。 Therefore, in the Web server 2, condition information indicating a cookie issuing condition is stored in the storage unit 22 in advance. In this condition information, for example, a cookie name (an example of cookie identification information) of a cookie to be issued is set.
 一方、クッキー処理装置1は、図8に示すステップS58においてLocationヘッダに指定するURLを生成するとき、ユーザ端末3-jから受信したクッキーのクッキー名を、パラメータとしてURLに付加する。例えば、LocationヘッダのURLに「http://www.xyz.co.jp?cookie=A2:XXXXXXXXX」が設定された場合、「A2」の部分がクッキー名である。クッキー処理装置1は、ユーザ端末3-jから受信した全てのクッキーを転送対象として、その情報をURLに付加しても良い。例えば、クッキー制御情報中に、サービスIDが設定されていないと、全てのクッキーが転送対象となる。 On the other hand, when generating the URL specified in the Location header in step S58 shown in FIG. 8, the cookie processing device 1 adds the cookie name of the cookie received from the user terminal 3-j as a parameter to the URL. For example, when “http://www.xyz.co.jp?cookie=A2:XXXXXXXXX” is set in the URL of the Location header, the part “A2” is the cookie name. The cookie processing device 1 may add all the cookies received from the user terminal 3-j as transfer targets and add the information to the URL. For example, if no service ID is set in the cookie control information, all cookies are subject to transfer.
 Webサーバ2は、このようなURLをリクエストURLとして含むリクエストをユーザ端末3-jから受信すると、リクエストURLに付加されているクッキー名が、条件情報中に設定されているか否かを判定する。そして、Webサーバ2は、リクエストURLに付加されているクッキー名が、条件情報中に設定されている場合に、クッキーを発行する。ここで、Webサーバ2は、ユーザ端末3-jからのリクエストに、複数のクッキーの情報が付加されることによってクッキー名が複数付加されている場合には、クッキー名毎に判定を行う。そして、Webサーバ2は、条件情報中に設定されていると判定したクッキー名に対応するクッキーの情報のみについて、クッキーを発行する。 When the Web server 2 receives a request including such a URL as a request URL from the user terminal 3-j, the Web server 2 determines whether the cookie name added to the request URL is set in the condition information. The Web server 2 issues a cookie when the cookie name added to the request URL is set in the condition information. Here, when a plurality of cookie names are added to the request from the user terminal 3-j by adding a plurality of cookie information, the Web server 2 performs determination for each cookie name. Then, the Web server 2 issues a cookie only for the cookie information corresponding to the cookie name determined to be set in the condition information.
 なお、条件情報として、発行対象から除外されるクッキーのクッキー名が設定されても良い。この場合、Webサーバ2は、リクエストURLに付加されているクッキー名が、条件情報中に設定されていない場合に、クッキーを発行する。また、クッキーを識別する情報として、クッキー名に代えて、クッキー名を例えばハッシュ化するなどして得られた情報等を条件情報に設定し、LocationヘッダのURLに付加するようにしても良い。 Note that the cookie name of the cookie excluded from the issue target may be set as the condition information. In this case, the Web server 2 issues a cookie when the cookie name added to the request URL is not set in the condition information. As information for identifying a cookie, information obtained by hashing the cookie name, for example, instead of the cookie name may be set as the condition information and added to the URL of the Location header.
 また、Webサーバ2は、クッキーの情報の転送元のドメイン単位で、クッキーを発行するか否かを判定しても良い。この場合、条件情報には、例えば、発行対象となる転送元のドメインのドメイン名(ドメイン識別情報の一例)が設定される。 In addition, the Web server 2 may determine whether or not to issue a cookie for each domain from which the cookie information is transferred. In this case, for example, a domain name (an example of domain identification information) of a transfer source domain to be issued is set in the condition information.
 一方、クッキー処理装置1は、図8に示すステップS58においてLocationヘッダに指定するURLを生成するとき、そのクッキー処理装置1が属するドメインのドメイン名を、パラメータとしてURLに付加する。例えば、LocationヘッダのURLに「http://www.xyz.co.jp?cookie=XXXXXXXXX&domain=abc.co.jp」が設定された場合、「domain=abc.co.jp」の「abc.co.jp」の部分がドメイン名である。 On the other hand, when generating the URL specified in the Location header in step S58 shown in FIG. 8, the cookie processing device 1 adds the domain name of the domain to which the cookie processing device 1 belongs to the URL as a parameter. For example, when “http://www.xyz.co.jp?cookie=XXXXXXXXX&domain=abc.co.jp” is set in the URL of the Location header, “abc.co” of “domain = abc.co.jp” .jp "is the domain name.
 Webサーバ2は、このようなURLをリクエストURLとして含むリクエストをユーザ端末3-jから受信すると、リクエストURLに付加されているドメイン名が、条件情報中に設定されているか否かを判定する。そして、Webサーバ2は、リクエストURLに付加されているドメイン名が、条件情報中に設定されている場合に、クッキーを発行する。 When the Web server 2 receives a request including such a URL as a request URL from the user terminal 3-j, the Web server 2 determines whether the domain name added to the request URL is set in the condition information. Then, the Web server 2 issues a cookie when the domain name added to the request URL is set in the condition information.
 なお、条件情報として、発行対象から除外されるドメインのドメイン名が設定されても良い。この場合、Webサーバ2は、リクエストURLに付加されているドメイン名が、条件情報中に設定されていない場合に、クッキーを発行する。また、ドメインを識別する情報として、ドメイン名に代えて、ドメイン名を例えばハッシュ化するなどして得られた情報等を条件情報に設定し、LocationヘッダのURLに付加するようにしても良い。 Note that the domain name of the domain excluded from the issue target may be set as the condition information. In this case, the Web server 2 issues a cookie when the domain name added to the request URL is not set in the condition information. Further, as information for identifying a domain, information obtained by, for example, hashing the domain name instead of the domain name may be set as the condition information and added to the URL of the Location header.
 また、Webサーバ2は、クッキーの情報の転送元のドメインとクッキー名との組み合わせに基づいて、クッキーを発行するか否かを判定しても良い。つまり、Webサーバ2は、特定のドメインから転送された特定のクッキーの情報についてのみクッキーを発行しても良いし、特定のドメインから転送された特定のクッキーの情報については、クッキーを発行しないようにしても良い。 Further, the Web server 2 may determine whether or not to issue a cookie based on a combination of a cookie information transfer source domain and a cookie name. That is, the Web server 2 may issue a cookie only for information on a specific cookie transferred from a specific domain, and does not issue a cookie for information on a specific cookie transferred from a specific domain. Anyway.
 また、上記各実施形態においては、クッキー処理サーバ1がユーザ端末3-jからリクエストを受信した時、一度SSLセッションでリクエストするようにリダイレクトしていたが、この処理は省略しても良い。 In each of the above embodiments, when the cookie processing server 1 receives a request from the user terminal 3-j, the request is redirected once in the SSL session. However, this processing may be omitted.
 また、上記各実施形態においては、クッキー処理サーバ1は、Locationヘッダを含むレスポンスを送信していたが、命令情報としてはLocationヘッダに限られるものではない。例えば、クッキーの情報が付加されたリクエストURLを含むリクエストをWebサーバ2に送信させるようなものであれば良い。 In each of the above embodiments, the cookie processing server 1 transmits a response including a Location header, but the command information is not limited to the Location header. For example, what is necessary is just to make the web server 2 transmit a request including a request URL to which cookie information is added.
 また、上記各実施形態においては、クッキー転送ページのHTML文書のiframeタグの記述により、クッキー処理サーバ1にリクエストが送信されるようにしていたが、取得命令情報としてはiframeタグに限られるものではない。例えば、imgタグやスクリプトによる命令等、ユーザ端末3-jにリクエストを送信させるものであっても良い。 Further, in each of the above embodiments, the request is transmitted to the cookie processing server 1 by the description of the iframe tag of the HTML document of the cookie transfer page, but the acquisition command information is not limited to the iframe tag. Absent. For example, the request may be transmitted to the user terminal 3-j, such as an instruction by an img tag or a script.
 また、クッキー転送ページのHTML文書にドメインD2のWebページへのリンクを示すアンカータグが記述されていなくても良い。 Also, the anchor tag indicating the link to the Web page of domain D2 does not have to be described in the HTML document of the cookie transfer page.
 また、上記各実施形態においては、ドメインD1のWebサイトの運営者とドメインD2のWebサイトの運営者との関係について説明したが、これらの説明はあくまでも一例である。つまり、運営者間の関係は上記した関係に限られるものではない。 In each of the above embodiments, the relationship between the website operator of the domain D1 and the website operator of the domain D2 has been described. However, these descriptions are merely examples. That is, the relationship between operators is not limited to the above-described relationship.
 また、クッキーに関する状態管理メカニズムの技術仕様は特定の仕様に限定されるものではなく、例えば、Netscape Communications社により提案された初期の仕様であっても良いし、RFC2965に規定されている仕様であっても良い。 In addition, the technical specification of the state management mechanism related to cookies is not limited to a specific specification. For example, it may be an initial specification proposed by Netscape 社 Communications, or a specification prescribed in RFC2965. May be.
1 クッキー処理サーバ
1―i、2 Webサーバ
3-j ユーザ端末
11、21 通信部
12、22 記憶部
13、23 入出力インターフェース部
14、24 CPU
15、25 ROM
16、26 RAM
17、27 システム制御部
18、28 システムバス
NW ネットワーク
S 情報提供システム  1 Cookie processing server 1-i, 2 Web server 3- j User terminal 11, 21 Communication unit 12, 22 Storage unit 13, 23 Input / output interface unit 14, 24 CPU
15, 25 ROM
16, 26 RAM
17, 27 System controller 18, 28 System bus NW Network S Information providing system

Claims (13)

  1.  要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能なクッキー処理装置であって、
     予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信手段と、
     前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第1のドメインとドメイン名が異なる第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段と、
     を備えることを特徴とするクッキー処理装置。     Cookie that can be accessed via a network by a terminal device that transmits request information having identification information including a domain name indicating a requested domain as a request resource identification information to a server device belonging to the domain indicated by the domain name A processing device comprising:
    Includes a cookie stored in correspondence with the first domain by the terminal device, transmitted by the terminal device based on acquisition command information instructing resource acquisition received by the terminal device from a preset server device Receiving means for receiving the request information;
    The request information for requesting retransmission of the request information includes, as the identification information to be included in the request information, a domain name of a second domain having a domain name different from the first domain, and the received request information Transmitting means for transmitting to the terminal device together with the identification information to which the information of the included cookie is added;
    A cookie processing device comprising:
  2.  請求項1に記載のクッキー処理装置において、
     前記クッキーの情報に、夫々が予め設定された項目に対応する複数の項目対応情報が含まれており、
     前記送信手段は、前記クッキーの情報に含まれる前記複数の項目対応情報のうち、前記第2のドメインに予め対応付けられた項目に対応する項目対応情報が付加された前記識別情報を前記命令情報とともに送信することを特徴とするクッキー処理装置。     In the cookie processing apparatus according to claim 1,
    The information of the cookie includes a plurality of item correspondence information each corresponding to a preset item,
    The transmission means uses the command information to identify the identification information to which item correspondence information corresponding to an item previously associated with the second domain among the plurality of item correspondence information included in the cookie information is added. A cookie processing device characterized by being transmitted together.
  3.  請求項1又は請求項2に記載のクッキー処理装置において、
     前記受信された要求情報に含まれるクッキーのクッキー名に基づいて、当該クッキーの情報を送信するか否かを判定する判定手段を更に備え、
     前記送信手段は、前記判定手段により送信すると判定されたクッキーの情報が付加された前記識別情報を、前記命令情報とともに送信することを特徴とするクッキー処理装置。     In the cookie processing apparatus according to claim 1 or 2,
    Based on the cookie name of the cookie included in the received request information, further comprising a determination means for determining whether to transmit the cookie information;
    The said transmission means transmits the said identification information to which the information of the cookie determined to transmit by the said determination means was added with the said command information, The cookie processing apparatus characterized by the above-mentioned.
  4.  請求項1乃至3の何れか1項に記載のクッキー処理装置において、
     前記第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報は、前記予め設定されたサーバ装置から前記端末装置が受信した予め設定されたハイパーテキストデータに含まれる前記取得命令情報に基づいて前記端末装置により送信され、
     前記予め設定されたハイパーテキストデータには、前記第2のドメインに属するサーバ装置により送信されるハイパーテキストデータへのリンクが含まれていることを特徴とするクッキー処理装置。     In the cookie processing apparatus according to any one of claims 1 to 3,
    The request information including a cookie stored corresponding to the first domain is included in the acquisition command information included in preset hypertext data received by the terminal device from the preset server device. Transmitted by the terminal device based on
    The cookie processing device, wherein the preset hypertext data includes a link to hypertext data transmitted by a server device belonging to the second domain.
  5.  要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能なクッキー処理装置により実行されるクッキー処理方法であって、
     予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信工程と、
     前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第1のドメインとドメイン名が異なる第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信工程と、
     を有することを特徴とするクッキー処理方法。     Cookie that can be accessed via a network by a terminal device that transmits request information having identification information including a domain name indicating a requested domain as a request resource identification information to a server device belonging to the domain indicated by the domain name A cookie processing method executed by a processing device,
    Includes a cookie stored in correspondence with the first domain by the terminal device, transmitted by the terminal device based on acquisition command information instructing resource acquisition received by the terminal device from a preset server device Receiving the request information; and
    The request information for requesting retransmission of the request information includes, as the identification information to be included in the request information, a domain name of a second domain having a domain name different from the first domain, and the received request information A transmission step of transmitting to the terminal device together with the identification information to which the information of the included cookie is added;
    And a cookie processing method.
  6.  要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能なクッキー処理装置に含まれるコンピュータを、
     予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信手段、及び、
     前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第1のドメインとドメイン名が異なる第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段、
     として機能させることを特徴とするクッキー処理プログラム。     Cookie that can be accessed via a network by a terminal device that transmits request information having identification information including a domain name indicating a requested domain as a request resource identification information to a server device belonging to the domain indicated by the domain name A computer included in the processing device,
    Includes a cookie stored in correspondence with the first domain by the terminal device, transmitted by the terminal device based on acquisition command information instructing resource acquisition received by the terminal device from a preset server device Receiving means for receiving the request information; and
    The request information for requesting retransmission of the request information includes, as the identification information to be included in the request information, a domain name of a second domain having a domain name different from the first domain, and the received request information Transmitting means for transmitting to the terminal device together with the identification information to which the information of the included cookie is added;
    Cookie processing program characterized by functioning as
  7.  要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能なクッキー処理装置に含まれるコンピュータを、
     予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信手段、及び、
     前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第1のドメインとドメイン名が異なる第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段、
     として機能させるクッキー処理プログラムがコンピュータ読み取り可能に記録されていることを特徴とする記録媒体。     Cookie that can be accessed via a network by a terminal device that transmits request information having identification information including a domain name indicating a requested domain as a request resource identification information to a server device belonging to the domain indicated by the domain name A computer included in the processing device,
    Includes a cookie stored in correspondence with the first domain by the terminal device, transmitted by the terminal device based on acquisition command information instructing resource acquisition received by the terminal device from a preset server device Receiving means for receiving the request information; and
    The request information for requesting retransmission of the request information includes, as the identification information to be included in the request information, a domain name of a second domain having a domain name different from the first domain, and the received request information Transmitting means for transmitting to the terminal device together with the identification information to which the information of the included cookie is added;
    A recording medium in which a cookie processing program that functions as a computer is recorded so as to be readable by a computer.
  8.  要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置がネットワークを介してアクセス可能な第1のドメインに属するクッキー処理装置と、前記第1のドメインとはドメイン名が異なる第2のドメインに属するサーバ装置と、を備えるクッキー処理システムであって、
     前記クッキー処理装置は、
     予め設定されたサーバ装置から前記端末装置が受信したリソース取得を命ずる取得命令情報に基づいて前記端末装置により送信された、前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を受信する受信手段と、
     前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段と、
     を備え、
     前記第2のドメインに属するサーバ装置は、
     前記命令情報を受信した前記端末装置から、前記クッキーの情報が付加された前記識別情報を有する前記要求情報を受信する要求情報受信手段と、
     前記受信された要求情報が有する前記識別情報に付加された情報をクッキーとして前記端末装置に送信するクッキー送信手段と、
     を備えることを特徴とするクッキー処理システム。     The terminal device that transmits request information having identification information including the domain name indicating the requested domain as the identification information of the requested resource to a server device belonging to the domain indicated by the domain name is accessible via the network. A cookie processing system comprising: a cookie processing device belonging to one domain; and a server device belonging to a second domain having a domain name different from that of the first domain,
    The cookie processing device
    Includes a cookie stored in correspondence with the first domain by the terminal device, transmitted by the terminal device based on acquisition command information instructing resource acquisition received by the terminal device from a preset server device Receiving means for receiving the request information;
    As the identification information for causing the request information to include retransmission of the request information in the request information, the cookie information included in the received request information is added, including the domain name of the second domain. Transmitting means for transmitting to the terminal device together with the identification information;
    With
    The server device belonging to the second domain is
    Request information receiving means for receiving the request information having the identification information to which the cookie information is added, from the terminal device that has received the command information;
    Cookie transmission means for transmitting the information added to the identification information included in the received request information as a cookie to the terminal device;
    A cookie processing system comprising:
  9.  請求項8に記載のクッキー処理システムにおいて、
     前記第2のドメインに属するサーバ装置は、
     クッキーの発行条件を示す条件情報を記憶する条件情報記憶手段と、
     前記条件情報に基づいて、前記受信された要求情報が有する前記識別情報に付加されたクッキーの情報を、クッキーとして発行するか否かを判定する発行判定手段と、
     を更に備え、
     前記第2のドメインに属するサーバ装置の前記クッキー送信手段は、前記発行判定手段によりクッキーとして発行すると判定された情報を、クッキーとして前記端末装置に送信することを特徴とするクッキー処理システム。     In the cookie processing system according to claim 8,
    The server device belonging to the second domain is
    Condition information storage means for storing condition information indicating the cookie issuance conditions;
    Issuing determination means for determining whether to issue, as a cookie, cookie information added to the identification information included in the received request information based on the condition information;
    Further comprising
    The cookie transmission system of the server apparatus belonging to the second domain transmits information determined to be issued as a cookie by the issue determination means to the terminal device as a cookie.
  10.  請求項9に記載のクッキー処理システムにおいて、
     前記条件情報は、クッキーを識別するクッキー識別情報を含み、
     前記クッキー処理装置の前記送信手段は、前記受信された要求情報に含まれるクッキーの情報及び当該クッキーの前記クッキー識別情報が付加された前記識別情報を、前記命令情報とともに送信し、
     前記第2のドメインに属するサーバ装置の前記発行判定手段は、前記条件情報に含まれる前記クッキー識別情報と、前記受信された要求情報が有する前記識別情報に付加された前記クッキー識別情報と、に基づいて、当該識別情報に付加されたクッキーの情報を、クッキーとして発行するか否かを判定することを特徴とするクッキー処理システム。     In the cookie processing system according to claim 9,
    The condition information includes cookie identification information for identifying a cookie,
    The transmission means of the cookie processing device transmits the cookie information included in the received request information and the identification information to which the cookie identification information of the cookie is added, together with the command information,
    The issuance determination means of the server device belonging to the second domain includes the cookie identification information included in the condition information and the cookie identification information added to the identification information included in the received request information. Based on this, a cookie processing system for determining whether or not to issue the cookie information added to the identification information as a cookie.
  11.  請求項9又は請求項10に記載のクッキー処理システムにおいて、
     前記条件情報は、ドメインを識別するドメイン識別情報を含み、
     前記クッキー処理装置の前記送信手段は、前記受信された要求情報に含まれるクッキーの情報及び前記第1のドメインの前記ドメイン識別情報が付加された前記識別情報を、前記命令情報とともに送信し、
     前記第2のドメインに属するサーバ装置の前記発行判定手段は、前記条件情報に含まれる前記ドメイン識別情報と、前記受信された要求情報が有する前記識別情報に付加された前記ドメイン識別情報と、に基づいて、当該識別情報に付加されたクッキーの情報を、クッキーとして発行するか否かを判定することを特徴とするクッキー処理システム。     In the cookie processing system according to claim 9 or 10,
    The condition information includes domain identification information for identifying a domain,
    The transmission unit of the cookie processing device transmits the cookie information included in the received request information and the identification information to which the domain identification information of the first domain is added together with the command information,
    The issue determination unit of the server device belonging to the second domain includes the domain identification information included in the condition information and the domain identification information added to the identification information included in the received request information. Based on this, a cookie processing system for determining whether or not to issue the cookie information added to the identification information as a cookie.
  12.  請求項8乃至11の何れか1項に記載のクッキー処理システムにおいて、
     前記第1のドメインに属する前記クッキー処理装置及び前記第2のドメインに属する前記サーバ装置として、ドメイン名が互いに異なる予め設定された複数のドメイン夫々につき、当該ドメインに属する前記クッキー処理装置及び前記サーバ装置を備え、
     前記クッキー処理装置の前記送信手段は、当該クッキー処理装置が属するドメインとドメイン名が異なるドメインであり、前記受信された要求情報に含まれる前記識別情報に予め対応付けられたドメインのドメイン名を含む前記識別情報を、前記命令情報とともに送信することを特徴とするクッキー処理システム。     The cookie processing system according to any one of claims 8 to 11,
    The cookie processing device and server belonging to the domain for each of a plurality of preset domains having different domain names as the cookie processing device belonging to the first domain and the server device belonging to the second domain Equipped with equipment,
    The transmission means of the cookie processing device is a domain whose domain name is different from the domain to which the cookie processing device belongs, and includes a domain name of a domain associated in advance with the identification information included in the received request information A cookie processing system, wherein the identification information is transmitted together with the command information.
  13.  要求するリソースの識別情報として、要求先のドメインを示すドメイン名を含む識別情報を有する要求情報を、当該ドメイン名が示すドメインに属するサーバ装置に送信する端末装置と、前記端末装置がネットワークを介してアクセス可能な第1のドメインに属するクッキー処理装置と、前記第1のドメインとはドメイン名が異なる第2のドメインに属するサーバ装置と、を備える情報通信システムであって、
     前記クッキー処理装置は、
     前記端末装置により第1のドメインに対応して記憶されたクッキーが含まれる前記要求情報を当該端末装置から受信する受信手段と、
     前記要求情報の再送信を命ずる命令情報を、当該要求情報に含めさせる前記識別情報として、前記第2のドメインのドメイン名を含み、前記受信された要求情報に含まれるクッキーの情報が付加された前記識別情報とともに前記端末装置に送信する送信手段と、
     を備え、
     前記第2のドメインに属するサーバ装置は、
     前記命令情報を受信した前記端末装置から、前記クッキーの情報が付加された前記識別情報を有する前記要求情報を受信する要求情報受信手段と、
     前記受信された要求情報が有する前記識別情報に付加された情報をクッキーとして前記端末装置に送信するクッキー送信手段と、
     を備え、
     前記端末装置は、
     クッキーを記憶する記憶手段と、
     リソース取得を命ずる取得命令情報を予め設定されたサーバ装置から受信する取得命令情報受信手段と、
     前記受信された取得命令情報に基づいて、前記第1のドメインに対応して前記記憶手段に記憶されたクッキーを含む前記要求情報を前記クッキー処理装置に送信する第1要求情報送信手段と、
     前記クッキー処理装置から送信された前記命令情報及び前記識別情報を受信する命令情報受信手段と、
     前記受信された命令情報に基づいて、前記受信された識別情報を有する前記要求情報を前記第2のドメインに属するサーバ装置に送信する第2要求情報送信手段と、
     前記第2のドメインに属するサーバ装置から送信されたクッキーを受信するクッキー受信手段と、
     前記受信されたクッキーを前記第2のドメインに対応して前記記憶手段に記憶させる記憶制御手段と、
     を備えることを特徴とする情報通信システム。     As requesting resource identification information, a terminal device that transmits request information having identification information including a domain name indicating a request destination domain to a server device belonging to the domain indicated by the domain name, and the terminal device via a network An information communication system comprising: a cookie processing device belonging to a first domain that can be accessed; and a server device belonging to a second domain having a domain name different from the first domain,
    The cookie processing device
    Receiving means for receiving from the terminal device the request information including a cookie stored in correspondence with the first domain by the terminal device;
    As the identification information for causing the request information to include retransmission of the request information in the request information, the cookie information included in the received request information is added, including the domain name of the second domain. Transmitting means for transmitting to the terminal device together with the identification information;
    With
    The server device belonging to the second domain is
    Request information receiving means for receiving the request information having the identification information to which the cookie information is added, from the terminal device that has received the command information;
    Cookie transmission means for transmitting the information added to the identification information included in the received request information as a cookie to the terminal device;
    With
    The terminal device
    Storage means for storing cookies;
    Acquisition command information receiving means for receiving acquisition command information for instructing resource acquisition from a preset server device;
    First request information transmitting means for transmitting the request information including the cookie stored in the storage means corresponding to the first domain to the cookie processing device based on the received acquisition command information;
    Command information receiving means for receiving the command information and the identification information transmitted from the cookie processing device;
    Second request information transmitting means for transmitting the request information having the received identification information to a server device belonging to the second domain based on the received command information;
    Cookie receiving means for receiving a cookie transmitted from a server device belonging to the second domain;
    Storage control means for storing the received cookie in the storage means corresponding to the second domain;
    An information communication system comprising:
PCT/JP2010/062519 2009-07-31 2010-07-26 Cookie processing device, cookie processing method, cookie processing program, cookie processing system and information communication system WO2011013617A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2009-178856 2009-07-31
JP2009178856 2009-07-31

Publications (1)

Publication Number Publication Date
WO2011013617A1 true WO2011013617A1 (en) 2011-02-03

Family

ID=43529272

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2010/062519 WO2011013617A1 (en) 2009-07-31 2010-07-26 Cookie processing device, cookie processing method, cookie processing program, cookie processing system and information communication system

Country Status (2)

Country Link
TW (1) TW201121275A (en)
WO (1) WO2011013617A1 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP5224224B1 (en) * 2012-05-08 2013-07-03 株式会社Kpiソリューションズ Information processing system and information processing method
WO2013098925A1 (en) * 2011-12-26 2013-07-04 株式会社Murakumo Information processing apparatus, information processing system, information processing method, and program
JP2013235561A (en) * 2013-02-28 2013-11-21 Kpi Solutions Co Ltd Information processing system, and information processing method
JP2017194843A (en) * 2016-04-20 2017-10-26 ヤフー株式会社 Transfer device, transfer method, and transfer program

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006185160A (en) * 2004-12-27 2006-07-13 Internatl Business Mach Corp <Ibm> System, web server, method, and program for adding personalized value to a plurality of web sites
JP2006277387A (en) * 2005-03-29 2006-10-12 Nomura Research Institute Ltd Load balancing system and load balancing method
JP2007200331A (en) * 2006-01-27 2007-08-09 Internatl Business Mach Corp <Ibm> Method and device for caching private data for configurable time period

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006185160A (en) * 2004-12-27 2006-07-13 Internatl Business Mach Corp <Ibm> System, web server, method, and program for adding personalized value to a plurality of web sites
JP2006277387A (en) * 2005-03-29 2006-10-12 Nomura Research Institute Ltd Load balancing system and load balancing method
JP2007200331A (en) * 2006-01-27 2007-08-09 Internatl Business Mach Corp <Ibm> Method and device for caching private data for configurable time period

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
AKIRA YOSHIDA: "Katsuyo & Sentaku WWW System no Single Sign-on Soft", NIKKEI OPEN SYSTEMS, no. 109, 15 April 2002 (2002-04-15), pages 126 - 135 *

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2013098925A1 (en) * 2011-12-26 2013-07-04 株式会社Murakumo Information processing apparatus, information processing system, information processing method, and program
JP5383923B1 (en) * 2011-12-26 2014-01-08 株式会社Murakumo Information processing apparatus, information processing system, information processing method, and program
US9762535B2 (en) 2011-12-26 2017-09-12 Murakumo Corporation Information processing apparatus, system, method and medium
JP5224224B1 (en) * 2012-05-08 2013-07-03 株式会社Kpiソリューションズ Information processing system and information processing method
JP2013235561A (en) * 2013-02-28 2013-11-21 Kpi Solutions Co Ltd Information processing system, and information processing method
JP2017194843A (en) * 2016-04-20 2017-10-26 ヤフー株式会社 Transfer device, transfer method, and transfer program

Also Published As

Publication number Publication date
TW201121275A (en) 2011-06-16

Similar Documents

Publication Publication Date Title
US8683201B2 (en) Third-party-secured zones on web pages
US8819109B1 (en) Data network communication using identifiers mappable to resource locators
US9264435B2 (en) Apparatus and methods for access solutions to wireless and wired networks
US8365271B2 (en) Controlling access of a client system to access protected remote resources supporting relative URLs
JP4025268B2 (en) Client / server system, client module, and encrypted communication program
KR100745438B1 (en) Stateless methods for resource hiding and access control support based on uri encryption
CN100581103C (en) Securely processing of client credentials used for WEB-based access to resources
US9684628B2 (en) Mechanism for inserting trustworthy parameters into AJAX via server-side proxy
CN101267299B (en) A method and system for securely display data on the webpage
US20050204148A1 (en) Security session authentication system and method
US20020156905A1 (en) System for logging on to servers through a portal computer
US7421731B2 (en) Transparent authentication using an authentication server
US20090164271A1 (en) System and Method for Tracking Syndication of Internet Content
US8812374B1 (en) Client-to service compatibility framework
CN110213321B (en) Method and device for providing third party service in Internet application and electronic equipment
US20050188008A1 (en) System for communicating with servers using message definitions
EP1360816B1 (en) Network conduit for providing access to data services
EP2813051B1 (en) Dynamic sharing of a webservice
US9392068B2 (en) System and method to provide a network-based service
US20100205236A1 (en) Service providing method, service providing system, terminal, information management device, server, and program
WO2011013617A1 (en) Cookie processing device, cookie processing method, cookie processing program, cookie processing system and information communication system
JP2007058391A (en) Authentication method for broadcast communication cooperation service, authentication cooperation device, its program and program recording medium
US20050131831A1 (en) Web-based digital rights management (DRM) encoder
CN107026828A (en) A kind of anti-stealing link method cached based on internet and internet caching
JP4815481B2 (en) Network relay device, user information management system, and user information management method

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10804363

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10804363

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: JP