JP2006252307A - Electronic information disclosure certification system, electronic information disclosure certification method, electronic information disclosure certification program, recording medium recording electronic information disclosure certification program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an electronic information disclosure certification system, electronic information disclosure certification method, electronic information disclosure certification program, and recording medium with electronic information disclosure certification program, for preventing false certificate issuance through fraudulence of a web server targeted for disclosure certification. <P>SOLUTION: The electronic information disclosure certification system for certifying that a specified web page in a specific web server connected to a network has been open to public comprises an access target specifying means for specifying a specified page URL as a URL of the specified web page, an access sequence determining means for determining a sequence of URLs to access so as to reach the specified page URL, and an access means for sequentially accessing the URLs according to the sequence determined by the access sequence determining means. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to an electronic information disclosure certification system, an electronic information disclosure certification method, an electronic information disclosure certification program, and a recording medium on which an electronic information disclosure certification program is recorded.

  With the spread of the Internet, official gazettes and corporate financial reports that have been published on paper are now being made electronically. The contents disclosed on the Internet have been left to the discretion of the sender, but in recent years, a mechanism that is proved by a third party is disclosed in Patent Document 1, Patent Document 2, and the like.

  That is, in Patent Document 1, a robot that automatically accesses a target Web server operates to acquire target content and adds time information in response to a request from a client who wants to prove that it is published on the Web server. However, a mechanism has been proposed to record what was released at that time.

  Further, in Patent Document 2, there is an application whose main purpose is to create a public certificate that proves the fact that the content has been collected and to present the certificate to the client.

  It is known that there are other major search engine robots and search robots in addition to the above robots that access the Web server.

By the way, if the behavior of the robot performs a mechanical movement (access) as the name suggests, the malicious web server detects the access of the robot and presents another web information (false information) to the robot. Can be acquired. That is, when a person accesses, normal information that is disclosed can be presented, and when the robot accesses, false information that is not disclosed can be presented.
Japanese Patent No. 3420472 JP 2001-154988 A

  As for the access method of the software robot that accesses the Web server, in Patent Document 1, the first embodiment “starts the acquisition work when a predetermined time has elapsed”, and the second embodiment “acquires twice at different dates and times”. The purpose of the second embodiment is to publish to content that is not publicly available if the content acquired in the first time deletes the page immediately after the first acquisition. This is in order to prevent a proof from being issued, and does not take into account such threats.

  Patent Document 2 describes an example in which access to a target Web server is performed at random timing from a plurality of IP addresses, thereby avoiding illegal behavior on the Web server side to some extent. .

  However, no consideration is given to the possibility that the access state may differ between when the system mechanically accesses and when a person accesses a Web page using a browser.

  For example, when a person accesses a target Web page, the system starts from the “Home” page of the site on which the Web page is posted, and arrives at the target Web page. When accessing the URL, the URL of the target Web page will be accessed directly without following such a method.

  In that case, the target Web server side can recognize that the other party who directly accesses the URL of the target Web page is the “public certification system”, and only the other party can disclose false data. There is a problem that it becomes possible.

  In view of such problems, the present invention provides an electronic information public certification system, an electronic information public certification method, an electronic information public certification program, an electronic information certification system that prevents the issuance of a fake certificate due to fraud of a Web server that is the subject of public certification. An object is to provide a recording medium on which an information disclosure certification program is recorded.

  In order to solve the above-described problems, the present invention provides an electronic information disclosure certification system that certifies that a designated web page is published on a particular web server connected to a network, the designated web page In order to obtain the URL to reach the specified page URL from the URL different from the specified page URL and the access target specifying means for specifying the specified page URL that is the URL of the page, and to reach the specific page URL Access order determining means for determining the order of URLs to be accessed, and access means for sequentially accessing URLs according to the order determined by the access order determining means.

  In order to solve the above-mentioned problems, the present invention is characterized by comprising an administrator notifying means for clearly indicating that the order cannot be determined when the access order determining means cannot determine the order.

  In order to solve the above problem, the present invention is characterized by comprising an access order setting means for a user to set the order of URLs accessed by the access means.

  In order to solve the above problem, the present invention is characterized in that the access means includes an access time determination means for determining a length of time for accessing each URL.

  In order to solve the above problem, the present invention is characterized in that the access time determination means determines the length of the time based on the information amount of the Web page indicated by each URL.

  In order to solve the above problems, the present invention provides an electronic information disclosure certification method for proving that a designated web page is published on a particular web server connected to a network. An access target designating stage for designating a designated page URL that is the URL of the web page, and a URL that is passed from the URL different from the designated page URL until the designated page URL is reached, and the designated page URL It has an access order determining step for determining the order of URLs to be accessed to arrive, and an access step for sequentially accessing URLs according to the order determined by the access order determining step.

  In order to solve the above problem, the present invention is characterized by having an administrator notification stage that clearly indicates that the order cannot be determined when the order cannot be determined in the access order determination stage.

  In order to solve the above problem, the present invention is characterized by having an access order setting step for the user to set the order of URLs accessed in the access step.

  In order to solve the above-mentioned problem, the present invention is characterized in that the access stage includes an access time determination stage for determining a length of time for accessing each URL.

  In order to solve the above problem, the present invention is characterized in that, in the access time determination stage, the length of the time is determined based on the information amount of the Web page indicated by each URL.

  In order to solve the above problems, the present invention provides an electronic information disclosure certification program for causing a computer to execute the electronic information disclosure certification method according to any one of claims 6 to 10.

  In order to solve the above problems, the present invention provides a computer-readable recording medium on which the electronic information disclosure certification program according to claim 11 is recorded.

  According to the present invention, an electronic information public certification system, an electronic information public certification method, an electronic information public certification program, and an electronic information public certification program that prevent the issuance of a fake certificate due to fraud of a Web server that is the subject of public certification are recorded. Can be provided.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

  An overall configuration diagram in the present embodiment will be described with reference to FIG. FIG. 1 shows a network 1, a server A3, a server B5, a server C7, a server D9, a server E11, a CD-R 63, a storage device 61, and databases 95 and 97.

  Connected to the network 1 are a server A3, a server B5, a server C7, a server D9, a server E11, and a number of computers not shown. The network 1 is the Internet, for example. Further, the storage device 61 stores an electronic information disclosure certification program for executing the processing described below.

  The server A3 is a Web server, and stores a homepage 31 whose URL is http://www.abcd.co.jp, for example, and is published on the network 1. The server B5 is a server managed by the service provider, and accesses the URL specified by the client. The server B5 includes a copy function 51, an attribute information generation function 53, a certificate acquisition function 55, a storage function 57, and a certificate provision function 59.

  The copy acquisition function 51 acquires a copy of the home page. The attribute information generation function 53 generates attribute information including information on the location of electronic information such as a URL and access conditions. The certificate acquisition function 55 uniquely identifies the homepage copy and attribute information together with the date and time, and acquires an electronic certificate to be authenticated. The storage function 57 stores necessary information. The certificate providing function 59 provides an electronic certificate or the like stored in response to the request from the client.

  A storage device 61 is connected to the server B5. The server C7 has a time stamp certificate issuing function 71 for issuing a certificate for uniquely specifying and authenticating specific electronic information together with the date and time. The server C7 receives the certificate issuance request via the network 1, issues the electronic certificate by the time stamp certificate issuance function 71, and sends the electronic certificate back to the request source.

  The server D9 is a server for adding a function to the server B5, and posts a link 91 to a homepage designated by the client as a Web server, for example. However, there is a case where such a database of the links 91 is created and can be searched for the contents of the link destination homepage or the owner. Furthermore, a database 95 is created using data in the storage device 61 connected to the server B5, and the server D9 has a search function 93 that enables the database 95 to be searched via the network.

  Further, a summary of each electronic information may be created from the data in the storage device 61, and the search function 93 may search the database 97 related to this summary via a network. The server E11 is a search engine for the general public. Since this search engine for the general public is not different from the conventional one, its description is omitted.

  The operation flow will be described with reference to FIG. A client who requests public certification designates, for example, a homepage specified by a specific URL of the server A3 as electronic information to be recorded for a considerable period of time, and a homepage stored in the self or another's Web server connected to the network 1 Asks the service provider to record that it has been published on the Internet for a considerable period of time.

  The service provider B performs processing using the server B5. The copy acquisition function 51 of the server B5 accesses a specific URL of the server A3 in FIG. 1 at an arbitrary timing, for example, through the route (A), and acquires a copy of the home page 31 through the route (B), for example.

  The copy is held in the main memory of the server B5, for example. The copy acquisition function 51 stores the access source IP address in the storage device for each access. The copy acquisition function 51 includes a function for determining an access condition. For example, the copy acquisition function 51 determines at which timing and which access source IP address is used during a considerable period designated by the client. Further, when the client designates the frequency, access is scheduled so as to satisfy the designation of the frequency.

  The attribute information generation function 53 generates attribute information including the access source IP address and the URL specified by the client. In addition to the IP address and URL, for example, when the server B5 is connected to the network 1 via a proxy server (not shown), the attribute information includes the IP address of the proxy server and the access date and time. Also good.

  The certificate acquisition function 55 acquires an electronic certificate for the acquired copy of the homepage 31 and the generated attribute information. In the configuration of FIG. 1, the certificate acquisition function 55 receives an electronic certificate issuance request issued via the route (C) of the network 1 by the time stamp certificate issuance function 71 of the server C7, and the time stamp An electronic certificate issued by the certificate function 71 is received via, for example, the route (D) of the network 1.

  The storage function 57 stores the copy of the home page 31 acquired by the copy acquisition function 51, the attribute information generated by the attribute information generation function 53, and the electronic certificate acquired by the certificate acquisition function 55 in the storage device 61. . However, it is optional to save a copy of the homepage 31 acquired by the copy acquisition function 51. For example, the client may save it by himself.

  Further, when the content of the home page 31 copied last time and the content of the home page 31 accessed this time are the same, the storage function 57 may determine that the copy of the home page 31 acquired this time is not stored.

  The storage function 57 stores data for each client or each designated URL so that the data necessary for the certificate providing function 59 can be easily extracted later. At the same time as the recording request or at an arbitrary timing, the client offers to provide the recording contents.

  At this time, the certificate providing function 59 reads a copy of the homepage 31 to be requested, attribute information, and an electronic certificate from the storage device 61 according to the request, and in a storage medium such as the CD-R 63 in the example of FIG. Store and provide to client.

  A copy of the home page 31, attribute information, and an electronic certificate are stored for each access. However, the certificate providing function 59 may provide all of them by storing them in a storage medium such as a CD-R. If there is no change in the copy of the home page 31, a copy of the home page 31 at the time of the first access, all the attribute information, and all the electronic certificates may be provided.

  Further, the certificate providing function 59 creates an access record including the URL, the access source IP address, and the certificate date and time using the attribute information and the electronic certificate, and the access record and the home page 31 at the time of the first access. It is also possible to provide all attribute information and all electronic certificates as certificates by the service provider. If the saving function 57 does not save a copy of the home page 31, the certificate providing function 59 naturally does not provide the client A with a copy of the home page 31.

  A processing flow of the service is shown in FIG. When a request is sent from the client to the service provider specifying information about the location of a URL such as a home page and recording conditions such as a recording period (step S1), a copy is made so as to meet the recording conditions. The acquisition function 51 determines an access condition (step S2). The attribute information generation function 53 accesses the URL from a predetermined access source IP address at a predetermined timing, and obtains a copy of the home page (step S3).

  Then, the attribute information generation function 53 generates attribute information including the URL of the home page and the access source IP address as an access condition (step S4). Thereafter, the certificate acquisition function 55 acquires an electronic certificate for identifying and authenticating the attribute information and the acquired homepage copy together with the date and time from the time stamp certificate issuing function 71 (step S5).

  The server B5 may be configured to include the time stamp certificate issuing function 71. In this case, the certificate obtaining function 55 is replaced with the time stamp certificate issuing function 71.

  Then, the saving function 57 stores at least the attribute information and the electronic certificate in the storage device 61 (step S6). As described above, it is optional to save a copy of the home page in the storage device. This process is repeated until the condition for ending recording is satisfied (step S7). The recording end condition is, for example, when the recording period specified by the client ends or when the number of recordings specified by the client is reached.

  FIG. 3 shows an example of a processing flow when the main service of the present invention is performed. The main service is a service that records that a homepage stored in its own Web server connected to the Internet has been open on the Internet for a considerable period of time. The main service is a service for recording a home page stored in another person's Web server. Further, the main service is a service for recording version transition of a home page stored in the self or another person's Web server.

  Recording is performed when a request for recording, for example, information on the location of the electronic information to be recorded, such as a URL, and recording conditions such as a recording period is submitted to the service provider (step S21). The copy acquisition function 51 determines the access conditions so as to match the conditions (step S22).

  The copy acquisition function 51 accesses the URL from a predetermined access source IP address at a predetermined timing, and acquires a copy of the home page (step S23). Then, the attribute information generation function 53 generates attribute information including the URL of the home page and the access source IP address as the access condition (step S24).

  Thereafter, the certificate acquisition function 55 acquires an electronic certificate for identifying and authenticating the attribute information and the acquired homepage copy together with the date and time from the time stamp certificate issuing function 71 (step S25). The server B5 may include a time stamp certificate issuing function 71. Here, the storage function 57 next checks whether there is any change between the contents of the home page when accessed last time and the contents of the home page when accessed this time (step S26). This check is performed by reading a copy of the homepage when the latest change stored in the storage device 61 is detected and comparing it with the copy of the homepage at the time of this access.

  When the change is detected, the home page copy, the electronic certificate, and the attribute information are associated with each other and stored in the storage device (step S27). On the other hand, if no change is detected, the certificate and attribute information are stored in the storage device (step S28). Such a process is repeated until the condition for ending recording is satisfied (step S29).

  In the configuration described above, it is assumed that a client who desires a Web public certificate is designated to certify the service provider, for example, a http://www.a2.co.jp/b3/c4.html page. If the above-mentioned robot accesses the page of http://www.a2.co.jp/b3/c4.html at a fixed time every day, it is clearly an access from the robot. Is easily understood. Then, there is a possibility that the Web server to be proved will be fraudulent.

  Therefore, a method for anthropomorphizing the access method will be described in the present embodiment. By doing this, it is possible to prevent fraud that presents normal information that is disclosed when a person accesses, and presents false information that is not disclosed when a robot accesses. Become.

  For this purpose, an anthropomorphic access method for accessing from the top page, instead of directly accessing the Web page designated by the client, will be described as an access condition determination method in S2 (see FIG. 2).

  First, a configuration for executing the personified access method will be described. FIG. 4 shows software blocks provided in the server B5. FIG. 4 shows an access target designating unit 101, an access order determining unit 102, an access order setting unit 103, an access unit 104, and an access order setting file 201.

  The access target designating unit 101 is an access target designating unit that designates a designated page URL that is a URL of a designated web page. The access order determining unit 102 obtains a URL through which a specified page URL is reached from a URL different from the specified page URL, and determines an order of URLs to be accessed to reach the specified page URL. It is. The access order setting unit 103 sets the order of URLs accessed by the access unit 104 in the access order setting file 201. The access order setting unit 103 is also an access order setting unit for the user to set the order of URLs accessed by the access unit 104. The access unit 104 is an access unit that sequentially accesses URLs according to the order determined by the access order determination unit 102.

  With this configuration, http://www.a2.co.jp/b3/c4.html, which is the URL specified by the client, is specified in the access target specifying unit 101. Next, the access order determination unit 102 actually accesses the top page from the top page different from the above URL for the purpose of obtaining the URL through which the designated URL is reached, and the obtained link information Follow the URLs shown.

  More specifically, access is made to http://www.a2.co.jp/, which is considered to be the top page of the designated URL. Here, up to http://www.a2.co.jp/ is the first level, up to http://www.a2.co.jp/b3/ is the second level, http://www.a2.co. Up to jp / b3 / c4.html is called the third hierarchy.

  Thus, first, the first layer of the URL specified by the access target specifying unit 101 is specified. Next, the access order determination unit 102 acquires link destination information attached to the Web page http://www.a2.co.jp/ from the certification target Web server. Next, sequentially access the links pasted on this web page, and if you get http://www.a2.co.jp/b3, get the link destination information pasted on this web page and get to it The URL that passed through is stored.

  Next, access the link destinations on the page of http://www.a2.co.jp/b3 in order, and the third level http://www.a2.co.jp/b3/c4.html Repeat access to the link destination until they match. If http://www.a2.co.jp/b3/c4.html is obtained, it stores the URL through which it arrived.

  As described above, in the configuration shown in FIG. 5, from the access target designating stage for designating the designated page URL, which is the URL of the designated web page, to the designated page URL from the URL different from the designated page URL. And an access order determination stage for determining the order of URLs to be accessed to reach the designated page URL, and an access stage for sequentially accessing the URLs according to the order determined by the access order determination stage. .

  FIG. 5 shows an example of sequentially following the link information up to the third layer. The sequential access to the link destination is performed from the first line of html obtained from the Web server, but another access method may be used. First, http://www.a2.co.jp/, which seems to be the top page, is acquired from the specified URL http://www.a2.co.jp/b3/c4.html.

  Assume that the Web page 301 has A, B, and C as link destinations. In this case, the access order determination unit 102 accesses in the order of A, B, and C. Further, it is assumed that the Web page 302 of the link destination A includes Aa, Ab, and Ac as link destinations. Similarly in this case, the access order determination unit 102 accesses in this order. Further, it is assumed that the Web page 303 of the link destination A-a includes A-a-a, A-a-b, and A-a-c as link destinations. Similarly in this case, the access order determination unit 102 accesses in this order.

  By doing this, the access order to the designated URL can be determined by following the stored URL. The access order setting unit 103 stores the access order thus determined in the server B as the access order setting file 201.

FIG. 6 shows an example of the access order setting file. In this access order setting file,
http://www.a2.co.jp/
http://www.a2.co.jp/b3
http://www.a2.co.jp/b3/c4.html
Three URLs are written. As shown in FIG. 6, in the access order setting file, a URL that passes from the URL different from the designated URL until reaching the designated URL is set.

  In the next access, the Web server is accessed according to the order of the access order setting file. As a result, even a page designation request in a deep hierarchy of the Web server can be accessed from the first page of the Web server, and the behavior of the robot can be personified.

  The processing for sequentially following the link information up to the third hierarchy described above will be described with reference to the sequence diagram of FIG. This sequence diagram shows processing between the server B5 and the Web server 302 that is the target of public certification.

  In step S401, the server B5 requests a first-tier web page designated by the client, and acquires the first-tier web page in step S402. The server 5 sequentially accesses the link destinations in step S403, and acquires the second hierarchy Web page in step S404. The server B5 sequentially accesses the link destinations in step S405, and acquires web pages up to the third hierarchy in step S406.

  By the way, there is a concern that an error response may be returned when the access order determination unit has many links from the public certification target Web server.

  FIG. 8 shows a configuration example for dealing with such a case. In this configuration, an administrator notification unit 105 is provided in the configuration of FIG. The administrator notification unit 105 specifies that the order cannot be determined when the order cannot be determined while the access order determination unit 102 automatically sets the access order. This indication is to notify the administrator, etc., and prompts the administrator to set the access order. In addition, with this configuration, when the order cannot be determined, an administrator notification stage that clearly indicates that the order cannot be determined is executed. Furthermore, an access order setting step for setting the order of URLs to be accessed by the user is also executed.

  The administrator notifying unit 105 is not particularly limited as long as it can notify the administrator when there is an error response, and may display an error display on a general server display unit or sound an alarm with the display. But you can. In this way, even when the access order cannot be automatically determined due to an error from the certification target Web server, the access order can be set manually.

  Next, a process for determining the length of time during which a URL is accessed in order to realize access closer to a human will be described. This is because when a person views a homepage or the like, each Web page cannot be viewed in an instant, so the time for accessing one URL is not an instant. Therefore, if the time during which each URL is accessed is reasonably long, an access method closer to a human can be realized.

  FIG. 9 is obtained by adding an access time determination unit 106 that determines the length of time for accessing each URL to the configuration of FIG. With this configuration, an access time determination step for determining the length of time for accessing each URL is executed.

  The access time determination unit 106 acquires the URL set in the access order setting file from the access order determination unit 102, determines the time for accessing the URL, and notifies the access order determination unit 102 of the content. is there.

  The access time determination unit 106 will explain a time determination method. The access time determination unit 106 basically determines the time based on the information amount of the Web page indicated by the URL. For example, access time (seconds) = number of page characters / 30 is determined. As a result, it is possible to spend time in places where the amount of information is large and to access places where the amount of information is small in a short time. In addition to this determination method, the access time may be determined simply using a random number.

  The access time determined in this way is stored in the access order setting file 101 in association with the URL, as shown in FIG. In FIG. 10, “30” or “60” is written below the URL. This “30” or “60” is the access time.

  As described above, by using a camouflage access method similar to that of a normal person for the robot access method for obtaining predetermined information from the Web server to be certified, a false proof can be obtained from fraud of the Web server to be certified. Can be prevented.

It is a whole block diagram in this Embodiment. It is a flowchart which shows a service process (the 1). It is a flowchart which shows a service process (the 2). It is a block diagram for performing the personification access method (the 1). It is a figure which shows the example which traces link information to a 3rd hierarchy sequentially. It is a figure which shows the example of an access order setting file. It is a sequence diagram which shows the process which follows link information to a 3rd hierarchy sequentially. It is a block diagram for performing the personification access method (the 2). It is a block diagram for performing the personification access method (the 3). It is a figure which shows what added access time to the example of an access order setting file.

Explanation of symbols

1 Network 3 Server A
5 Server B
7 Server C
9 Server D
11 Server E
31 Homepage 51 Copy Acquisition Function 53 Attribute Information Generation Function 55 Certificate Acquisition Function 57 Storage Function 59 Certificate Provision Function 61 Storage Device 63 CD-R
71 Time Stamp Certificate Issuing Function 91 Link 93 Search Function 95, 97 Database 101 Access Control Designating Unit 102 Access Order Determining Unit 103 Access Order Setting Unit 104 Access Unit 105 Administrator Notifying Unit 106 Access Time Determining Unit 150 Administrator 201 Access Order Setting file 301, 302, 303 Web page 400 Web server

Claims (12)

An electronic information disclosure certification system that proves that a designated web page is published on a specific web server connected to a network,
An access target designating unit for designating a designated page URL that is the URL of the designated web page;
An access order determining means for acquiring a URL that is passed through to reach the designated page URL from a URL different from the designated page URL, and for determining an order of URLs to be accessed to reach the specific page URL;
And an access means for sequentially accessing URLs according to the order determined by the access order determination means. 2. The electronic information disclosure certification system according to claim 1, further comprising an administrator notifying unit that clearly indicates that the order cannot be determined when the access order determining unit cannot determine the order. 3. The electronic information disclosure certification system according to claim 1, further comprising an access order setting unit for a user to set an order of URLs accessed by the access unit. The electronic information disclosure certification system according to any one of claims 1 to 3, wherein the access means includes access time determination means for determining a length of time during which each URL is accessed. The electronic information disclosure system according to claim 4, wherein the access time determination unit determines the length of the time based on an information amount of a Web page indicated by each URL. An electronic information disclosure certification method for certifying that a designated web page is published on a particular web server connected to a network,
An access target designating step of designating a designated page URL which is the URL of the designated web page;
An access order determining step for acquiring a URL that is passed through to reach the designated page URL from a URL different from the designated page URL, and for determining an order of URLs to be accessed to reach the designated page URL;
And an access step of sequentially accessing URLs according to the order determined by the access order determination step. The electronic information disclosure certification method according to claim 6, further comprising an administrator notification step that clearly indicates that the order cannot be determined when the order cannot be determined in the access order determination step. 8. The electronic information disclosure certification method according to claim 6, further comprising an access order setting step for a user to set an order of URLs to be accessed in the access step. 9. The electronic information disclosure certification method according to claim 6, further comprising an access time determination step of determining a length of time during which each URL is accessed in the access step. 10. The electronic information disclosure certification method according to claim 9, wherein, in the access time determination step, the length of the time is determined based on an information amount of a Web page indicated by each URL. An electronic information disclosure certification program for causing a computer to execute the electronic information disclosure certification method according to any one of claims 6 to 10. A computer-readable recording medium on which the electronic information disclosure certification program according to claim 11 is recorded.

Images