Information processing method, information processing device, and information processing program
The method quickly and accurately determines website authenticity by using a whitelist database and image processing to verify the presence of a brand security seal, addressing the limitations of existing blacklist-based methods.
Patent Information
- Authority / Receiving Office
- JP · JP
- Patent Type
- Applications
- Current Assignee / Owner
- GMO BRAND SECURITY INC
- Filing Date
- 2024-12-04
- Publication Date
- 2026-06-16
AI Technical Summary
Existing techniques for determining website authenticity rely on blacklists, requiring time-consuming comparisons and cannot immediately distinguish genuine from unauthorized or fake websites.
A method and device that register legitimate websites with a whitelist database, verify the presence of a brand security seal in a website's screen image, and determine authenticity based on database registration, using image processing and machine learning techniques to quickly identify fraudulent sites.
Enables rapid and accurate determination of website authenticity by identifying the presence of a brand security seal and database registration, ensuring credibility and security for internet users.
Smart Images

Figure 2026097131000001_ABST
Abstract
Description
Technical Field
[0001] The present invention relates to a technique suitable for determining the authenticity of a website.
Background Art
[0002] As a conventional technique for determining a web page to be restricted from access, there is known a communication control device including: a holding unit that holds a list of addresses of web pages to be restricted from access; a receiving unit that receives communication data for requesting access to content via a network; a comparison unit that compares the address of the content included in the communication data with the address of the web page to be restricted from access included in the list; and an access control unit that prohibits access to the content when the address of the content matches the address of the web page to be restricted from access (see Patent Document 1).
Prior Art Documents
Patent Documents
[0003]
Patent Document 1
Summary of the Invention
Problems to be Solved by the Invention
[0004] In the technique described in Patent Document 1, a so-called black list is used to compare the address of the content with the addresses included in the black list each time, that is, a processing step of comparing the address of the content with the addresses included in the black list each time is required, and there is a problem that it is impossible to immediately determine whether the accessed website / web page is genuine / official or unauthorized / fake.
[0005] Therefore, in one aspect, the present invention aims to provide a technology that can quickly and accurately determine whether any website accessible, for example, via a communication network, is authentic. [Means for solving the problem]
[0006] To solve the above problems, the information processing method according to the present invention is a method executed by an information processing device and may include the steps of: registering a domain name or URL of a website or web page that meets certain criteria in a whitelist database; obtaining a screen image of the website or web page of the domain name or URL to be judged; determining whether a predetermined brand security seal is included in the screen image; determining whether the domain name or URL to be judged is registered in the whitelist database if the screen image includes the brand security seal; and determining that the website or web page of the domain name or URL to be judged is a fraudulent or disguised website or web page if the domain name or URL to be judged is not registered in the whitelist database.
[0007] The information processing method according to the present invention may be configured such that the domain name or URL to be determined is obtained as the domain name or URL of a website / web page that has been successfully accessed by traversing the internet.
[0008] The information processing method according to the present invention may also include reporting that the domain name or URL to be determined to be a fraudulent or disguised website or webpage is a fraudulent or disguised website or webpage when it is determined to be a fraudulent or disguised website or webpage.
[0009] Furthermore, the information processing device according to the present invention may include: a storage means for storing a whitelist database in which domain names or URLs of websites or web pages that meet certain criteria are registered; an acquisition means for acquiring a screen image of the website or web page of the domain name or URL to be determined; a detection means for determining whether or not a predetermined brand security seal is included in the screen image; and a determination means for determining that the website or web page of the domain name or URL to be determined is a fraudulent or spoofed website or web page if the screen image includes the brand security seal and the domain name or URL to be determined is not registered in the whitelist database.
[0010] The information processing device according to the present invention may also have a crawling means that obtains the domain name or URL to be determined as the domain name or URL of a website / web page that has been successfully accessed by crawling the internet.
[0011] The information processing device according to the present invention may have a notification means for notifying that the domain name or URL to be determined to be a fraudulent or spoofed website or webpage is a fraudulent or spoofed website or webpage when it is determined to be a fraudulent or spoofed website or webpage.
[0012] Furthermore, the information processing program according to the present invention may cause the information processing device to execute the following processes: registering domain names or URLs of websites or web pages that meet certain criteria in a whitelist database; acquiring a screen image of the website or web page of the domain name or URL to be judged; determining whether a predetermined brand security seal is included in the screen image; determining whether the domain name or URL to be judged is registered in the whitelist database if the screen image includes the brand security seal; and determining that the website or web page of the domain name or URL to be judged is a fraudulent or spoofed website or web page if it is not registered in the whitelist database.
[0013] The information processing program according to the present invention may be configured such that the domain name or URL to be determined is obtained as the domain name or URL of a website / web page that has been successfully accessed by traversing the internet.
[0014] The information processing program according to the present invention may cause the information processing device to execute a process to report that the domain name or URL to be determined is a fraudulent or spoofed website or webpage when it is determined to be a fraudulent or spoofed website or webpage. [Effects of the Invention]
[0015] In one aspect, according to the present invention, it becomes possible to quickly and accurately determine whether any website accessible via a communication network is authentic. [Brief explanation of the drawing]
[0016] [Figure 1] This is a schematic diagram of the overall configuration of the truth / false determination system in an embodiment of the present invention. [Figure 2]It is a block diagram showing the configuration of the authenticity determination device and the user terminal of the authenticity determination system in FIG. 1. [Figure 3] It is a block diagram showing the configuration of the authenticity determination device of the authenticity determination system in FIG. 1. [Figure 4] It is a diagram showing an example of the brand security seal used in the authenticity determination system in FIG. 1. [Figure 5] It is a flowchart showing the processing procedure in the authenticity determination system in FIG. 1.
Embodiments for Carrying Out the Invention
[0017] Hereinafter, embodiments of the present invention will be described with reference to the accompanying drawings. In the following embodiments, a case where the information processing method according to the present invention is implemented in an authenticity determination system will be described as an example.
[0018] In the present invention, a user is a person who uses information regarding the authenticity (in other words, legitimacy, officialness, reliability) of a website (Web site), for example, a person who has introduced a service implemented and provided by the authenticity determination system according to the present invention into a website operated by himself / herself.
[0019] In this embodiment, a case where the authenticity (legitimacy, officialness, reliability) of an arbitrary website 91 is determined will be described as an example.
[0020] (Overall Configuration) FIG. 1 is a schematic diagram of the overall configuration of an authenticity determination system 10 to which an authenticity determination method according to an embodiment, as an example of a specific configuration aspect of the information processing method according to the present invention, is applied.
[0021] The authenticity determination system 10 in the embodiment includes an authenticity determination device 1 and a user terminal 2. The number of user terminals 2 constituting the authenticity determination system 10 may be one or a plurality. [[ID=S37]]
[0022] The authenticity determination device 1 is connected to the user terminal 2 so as to be able to communicate with it via a communication network 9 that includes, for example, at least one of wired communication and wireless communication, and is also connected so as to be able to access any website 91 (in other words, to be able to communicate with any external server 90).
[0023] The communication network 9 is a communication network for performing communications, including the transmission and reception of data signals, and consists of a communication network that includes at least one of the following: the Internet, an intranet, a WAN (Wide Area Network), a Wireless WAN (Wireless WAN), a LAN (Local Area Network), a Wireless LAN (Wireless LAN), and a Virtual Private Network (VPN).
[0024] The authenticity determination device 1 includes a function to determine the authenticity of any website 91. The authenticity determination device 1 determines the authenticity of a website 91 accessible via the communication network 9, and if it determines that the website 91 is a fraudulent / fake website, it notifies the user terminal 2 accordingly.
[0025] User terminal 2 is a device used by a person who uses information regarding the authenticity (in other words, legitimacy, officialness, and reliability) of a website.
[0026] The authenticity determination device 1 and the user terminal 2 each have a control unit 4, a storage unit 5, a communication unit 6, an input unit 7, and an output unit 8, as shown in Figure 2 (Note that Figure 2 shows the configuration common to both the authenticity determination device 1 and the user terminal 2).
[0027] The control unit 4 is configured to include a processor such as a CPU (Central Processing Unit) that performs calculations.
[0028] The storage unit 5 is configured to include a storage device such as memory for storing data.
[0029] The storage unit 5 may be configured to include, for example, volatile memory such as RAM (Random Access Memory) that provides a working area (memory) and non-volatile memory such as ROM (Read Only Memory) that provides a storage area (storage). The storage unit 5 may also be configured to include auxiliary storage devices such as HDD (Hard Disk Drive) or SSD (Solid State Drive) that provide storage areas (storage), as needed.
[0030] The communication unit 6 is configured to include a communication interface / network interface that performs at least one of wired communication and wireless communication, and is connected to the communication network 9 so as to be able to communicate with it. The communication interface / network interface constituting the communication unit 6 has at least the function of sending and receiving data signals with other external devices via the communication network 9 (i.e., a communication processing function).
[0031] The input unit 7 is configured to include an input device that accepts input operations. The input device that makes up the input unit 7 may be, for example, a keyboard, a mouse, a touch panel, a microphone, or the like.
[0032] The output unit 8 includes an output device that displays and outputs the content of input operations performed via the input unit 7 and various other information. The output device constituting the output unit 8 may be, for example, a display, a speaker, or an audio jack. The output unit 8 may also include an interface for outputting print data to a printer (not shown).
[0033] The truth / false determination device 1 may be configured, for example, by a server computer or a desktop PC.
[0034] User terminal 2 may consist of, for example, a desktop computer, a laptop computer, a notebook computer, or a tablet device.
[0035] (authenticity determination device) Figure 3 is a block diagram showing the configuration of a truth determination device 1 according to an embodiment, which is an example of a specific configuration of the information processing device according to the present invention.
[0036] The authenticity determination device 1 determines whether a website accessed via the communication network 9 is a genuine / official website or a fraudulent / fake website.
[0037] The truth / false determination device 1 includes a control unit 4A, a storage unit 5A (corresponding to the storage means of the information processing device according to the present invention), a communication unit 6A, an input unit 7A, and an output unit 8A (the control unit 4A, storage unit 5A, communication unit 6A, input unit 7A, and output unit 8A correspond to the control unit 4, storage unit 5, communication unit 6, input unit 7, and output unit 8 described above, respectively).
[0038] The truth / false determination device 1 may specifically consist of, for example, a server computer or desktop PC including a CPU (in other words, a processor) and memory.
[0039] The memory unit 5A stores a truth / false determination program 51 (corresponding to the information processing program according to the present invention), which is a computer program that is read by the control unit 4A, including the CPU (processor), and executed to realize various control processes for the overall operation of the truth / false determination device 1 and each function of the control unit 4A. When the truth / false determination program 51 stored in the memory unit 5A is executed by the control unit 4A, including the CPU (processor), the server computer or desktop PC operates and the functions of the truth / false determination device 1 are realized.
[0040] When a predetermined program (including the truth / false determination program 51) stored in the memory unit 5A is read and executed in the control unit 4A, the control unit 4A generates a patrol unit 41 (corresponding to the patrol means of the information processing device according to the present invention), an acquisition unit 42 (corresponding to the acquisition means of the information processing device according to the present invention), a detection unit 43 (corresponding to the detection means of the information processing device according to the present invention), a determination unit 44 (corresponding to the determination means of the information processing device according to the present invention), and a notification unit 45 (corresponding to the notification means of the information processing device according to the present invention). In this description of the present invention, "transmission" includes the exchange of information and data carried out through storage in the memory unit 5A and reading from the memory unit 5A.
[0041] The whitelist database 52 is also stored in the memory unit 5A.
[0042] The whitelist database 52 records and stores the URLs (Uniform Resource Locators) of websites / web pages that are legitimately authorized to display the brand security seal on their websites / web pages. The whitelist database 52 may also record and store the domain names of the websites / web pages.
[0043] If a website / webpage undergoes a prescribed review and meets certain criteria, it is permitted to display the brand security seal on that website / webpage, and the URL of that website / webpage is registered in the whitelist database 52 (in other words, recorded and stored).
[0044] The review process for permitting the display of a brand security seal on a website / webpage may include, for example, verifying the identity (in other words, legitimacy) of the operator of the website / webpage in question (referred to as the "site operator").
[0045] The content of the review may include, for example, at least one of the following (a) through (c). a) Verification of the existence of the website operator i) Verification of site ownership by the site operator (c) Confirmation of the existence of intellectual property rights such as trademark rights of the site operator.
[0046] Furthermore, certain criteria for the review process may be based on the above, for example, that at least one of the following conditions (k) through (h) must be met. (c) The existence of the website operator must be objectively confirmed. (i) The site operator's ownership of the site must be objectively confirmed. (c) The intellectual property rights, such as trademark rights, of the site operator must be objectively confirmed.
[0047] The decision on whether or not to display the brand security seal on a website / web page may be made, for example, by the operator of the authenticity verification system 10.
[0048] A brand security seal is specifically an image displayed on a website / web page. The brand security seal is not limited to a specific image; an appropriate image is selected as appropriate, taking into consideration factors such as the fact that it should not be a commonly used, generic image. An example of a brand security seal is shown in Figure 4. The brand security seal may be a black and white binary image, a grayscale image, or a color image. Furthermore, "brand security seal" is the term used in this embodiment to refer to the image used to realize the configuration specific to the present invention, and the name of the image is not limited to "brand security seal."
[0049] Websites / web pages that meet certain criteria and pass the review may, for example, use JavaScript to place and display a brand security seal (specifically, an image) as one of the objects, that is, they may be embedded in the website / web page (specifically, website 91 in this embodiment) using a predetermined embedding code.
[0050] Websites / web pages that meet certain criteria, pass the review process, are registered in the whitelist database 52, and legitimately display the brand security seal can be considered highly reliable. On the other hand, websites / web pages that display the brand security seal without undergoing or passing the review process (i.e., displaying it without authorization or fraudulently) can be considered unreliable and potentially fraudulent or deceptive.
[0051] (User terminal) User terminal 2 has a control unit 4B, a storage unit 5B, a communication unit 6B, an input unit 7B, and an output unit 8B (the control unit 4B, storage unit 5B, communication unit 6B, input unit 7B, and output unit 8B correspond to the control unit 4, storage unit 5, communication unit 6, input unit 7, and output unit 8 described above, respectively).
[0052] User terminal 2 may specifically consist of, for example, a desktop computer including a CPU (in other words, a processor) and memory, a laptop computer, a notebook computer, or a tablet device.
[0053] (Processing details) Figure 5 is a flowchart showing the processing procedure in the truth / false determination system 10, which includes the truth / false determination device 1 according to the embodiment.
[0054] The method for determining authenticity according to the embodiment includes the steps of: registering the URL (or domain name) of a website (or web page) that meets certain criteria in a whitelist database 52, obtaining a screen image of the website 91 of the URL to be determined (step S2); determining whether a predetermined brand security seal is included in the screen image (step S3); determining whether the URL to be determined is registered in the whitelist database 52 if the screen image includes a brand security seal (step S3: Yes) (step S4); and determining that the website 91 of the URL to be determined is a fraudulent or spoofed website if the URL to be determined is not registered in the whitelist database 52 (step S4: No) (step S6).
[0055] The authenticity determination device 1 according to this embodiment includes: a storage unit 5A that stores a whitelist database 52 in which URLs (or domain names) of websites (or web pages) that meet certain criteria are registered; a crawling unit 41 that crawls the internet and acquires the URL of a website that has been successfully accessed as the URL of the URL to be determined; an acquisition unit 42 that acquires a screen image of the website 91 of the URL to be determined; a detection unit 43 that determines whether or not a predetermined brand security seal is included in the screen image; a determination unit 44 that determines that the website 91 of the URL to be determined is a fraudulent or spoofed website if the screen image includes a brand security seal and the URL to be determined is not registered in the whitelist database 52; and a notification unit 45 that notifies that the URL to be determined is a fraudulent or spoofed website if it is determined to be a fraudulent or spoofed website.
[0056] The authenticity determination program 51 according to the embodiment causes the information processing device to execute the following processes: registering URLs (or domain names) of websites (or web pages) that meet certain criteria in a whitelist database 52; acquiring a screen image of the website 91 of the URL to be determined (step S2); determining whether a predetermined brand security seal is included in the screen image (step S3); determining whether the URL to be determined is registered in the whitelist database 52 if the screen image includes a brand security seal (step S3: Yes) (step S4); and determining that the website 91 of the URL to be determined is a fraudulent or spoofed website and reporting that the URL to be determined is a fraudulent or spoofed website (step S6) if the URL to be determined is not registered in the whitelist database 52 (step S4: No).
[0057] The patrol unit 41 of the control unit 4A of the truth / false determination device 1 obtains the URL of a certain arbitrary website 91 that is subject to truth / false determination (in other words, legitimacy, officialness, reliability) (step S1).
[0058] Specifically, the patrolling unit 41 patrols the internet and obtains the URLs of websites / web pages that it successfully accesses. The websites / web pages of the URLs in question become subject to authenticity determination; that is, the domain names included in the URLs or the URLs themselves become the domain names or URLs subject to determination.
[0059] When the patrol unit 41 patrols the internet, it may, for example, use a pre-prepared list of URLs or a threat intelligence feed. The patrol unit 41 may, for example, attempt to access websites / web pages by using so-called blacklists or databases of malicious / impersonated websites / web pages that have been created and prepared by various methods.
[0060] In addition to URL and domain name blacklists and databases provided by threat intelligence feeds, so-called blacklists of fraudulent / fake websites / web pages may also be used, for example, URL and domain name blacklists and databases provided by open source, URL and domain name blacklists and databases provided by security vendors, and URL and domain name blacklists and databases provided by internet regulatory bodies.
[0061] The patrolling unit 41 transmits the URL of the website / web page (in this case, website 91) that it successfully accessed to the acquisition unit 42.
[0062] When the URL of the website 91 is transmitted, the acquisition unit 42 of the control unit 4A accesses the website 91 at the URL and acquires a screen image (i.e., a screenshot, captured image) of the website 91 (step S2).
[0063] The acquisition unit 42 transmits the URL of the website 91 transmitted from the patrolling unit 41, along with the screen image (screenshot, captured image) of the acquired website 91, to the detection unit 43.
[0064] When the URL of the website 91 and a screen image (screenshot, captured image) are transmitted, the detection unit 43 of the control unit 4A determines whether or not the screen image of the website 91 contains a brand security seal (step S3).
[0065] The detection unit 43 performs image processing on the screen image (screenshot, captured image) of the website 91 transmitted from the acquisition unit 42, and determines whether the screen image contains an image that corresponds to, is similar to, or is equivalent to a brand security seal. In other words, the detection unit 43 treats the brand security seal contained in the screen image as the object to be detected, and attempts to detect the brand security seal from the screen image.
[0066] The image processing method used to determine whether a screen image (screenshot, captured image) of website 91 contains an image equivalent to, corresponding to, or similar to the brand security seal is not limited to a specific procedure or technique, but may include, for example, at least one of template matching, ORB (Oriented Fast and Rotated Brief), SIFT (Scale-Invariant Feature Transform), SURF (Speeded-Up Robust Features), and YOLO (You Only Look Once). Alternatively, a pre-trained model with machine learning (specifically, for example, a convolutional neural network (CNN)) or, more specifically, a program that executes an algorithm (including trained parameters) for detecting a given object may be used.
[0067] If the detection unit 43 determines that the screen image (screenshot, captured image) of website 91 does not contain an image equivalent to, corresponding to, or similar to the brand security seal (i.e., not detected) (step S3: No), the detection unit 43 terminates the processing related to the URL of website 91 obtained in step S1 (END).
[0068] On the other hand, if the detection unit 43 determines that the screen image (screenshot, captured image) of website 91 contains an image that is equivalent to, corresponds to, or similar to the brand security seal (i.e., it is detected) (step S3: Yes), the detection unit 43 transmits the URL of website 91 transmitted from the acquisition unit 42 (i.e., the URL of website 91 acquired in the processing of step S1) to the determination unit 44.
[0069] When the URL of the website 91 is transmitted, the determination unit 44 of the control unit 4A determines whether the website 91 at that URL is genuine (step S4).
[0070] Specifically, the determination unit 44 determines whether or not the URL of the website 91 transmitted from the detection unit 43 is registered in the whitelist database 52 stored in the storage unit 5A (in other words, whether it is recorded and included) (or, to put it another way, it checks).
[0071] If the URL is registered in the whitelist database 52 (Step S4: Yes), the determination unit 44 determines that the website 91 of the URL is a genuine / official website (Step S5). The determination unit 44 then terminates processing the URL of the website 91 obtained in the process of Step S1 (END).
[0072] On the other hand, if the URL is not registered in the whitelist database 52 (Step S4: No), the determination unit 44 determines that the website 91 of the URL is a fraudulent / fake website (or at least potentially a fraudulent / fake website).
[0073] The determination unit 44 then transmits the URL of website 91 to the reporting unit 45 as the URL of a fraudulent / fake website (or at least a potentially fraudulent / fake website).
[0074] The determination by the determination unit 44, that is, the determination of whether or not the website 91 is registered in the whitelist database 52, may be performed on a URL basis for the website 91 (in other words, by matching URLs together), or it may be performed on a domain name basis for the website 91 (in other words, by matching domain names together).
[0075] When the URL of website 91 is transmitted, the notification unit 45 of the control unit 4A notifies that website 91 at that URL is a fraudulent / fake website (step S6).
[0076] The reporting method by the reporting unit 45 is not limited to a specific recipient, procedure, or technique. For example, the appropriate recipient, procedure, or technique will be selected based on consideration of the manner desired by the person using the information regarding the authenticity (in other words, legitimacy, officialness, and reliability) of the website, and the purpose for which that person uses the information. The reporting unit 45 may, for example, send a notification to the user terminal 2 used by the operator of the genuine / official website using email or an API (Application Programming Interface).
[0077] The content of reports submitted by Reporting Unit 45 is not limited to specific items, but may include, for example, the existence of fraudulent / fake websites (including URLs), or the use of trademarks by third parties that may constitute trademark infringement (including URLs).
[0078] With the above steps completed, the processing of the URL of website 91 obtained in step S1 is finished (END).
[0079] (Effects and Benefits) According to the authenticity determination device 1 of the embodiment, if the screen image includes a brand security seal (step S3: Yes) and the URL to be determined is not registered in the whitelist database 52 (step S4: No), then the website 91 of the URL to be determined is determined to be a fraudulent / fake website (step S6). Therefore, internet users (in other words, web visitors) can immediately determine the authenticity of a website 91 based on a simple criterion of whether or not a predetermined brand security seal (image) (see Figure 4) is placed and displayed. At the very least, they can immediately determine that a website that places and displays a predetermined brand security seal is a genuine / official website, and it becomes possible to quickly and accurately determine whether any website 91 accessible via the communication network 9 is genuine. This makes it possible to give credibility to genuine / official websites and to provide internet users (web visitors) with a sense of security regarding the website 91.
[0080] According to the embodiment of the authenticity determination device 1, if it is determined that website 91 is a fraudulent / fake website, it will also report the findings. For example, fraudulent / fake websites can be quickly taken down, improving the integrity of the internet, and ultimately improving the safety and reliability of the internet.
[0081] Although embodiments of the present invention have been described above, the specific configurations of the present invention are not limited to the embodiments described above. The present invention also includes forms in which modifications and changes are made to the above embodiments without departing from the spirit of the invention. [Industrial applicability]
[0082] The information processing device according to the present invention can quickly and accurately determine whether any website is authentic, and is therefore useful, for example, in the fields of website reliability and security evaluation services, fact-checking services, and digital security services. [Explanation of Symbols]
[0083] 10. Truth Determination System 1 Authenticity determination device 2 User terminals 4. Control Unit 4A Control Unit (Authenticity Determination Device 1) 4B Control Unit (User Terminal 2) 41 Patrol Department 42 Acquisition Department 43 Detection unit 44 Judgment section 45 Reporting Department 5 Storage section 5A Storage section (authenticity determination device 1) 5B Memory Unit (User Terminal 2) 51 Truth Determination Program 52 Whitelist Database 6 Communications Department 6A Communication Unit (Authenticity Determination Device 1) 6B Communication Unit (User Terminal 2) 7 Input section 7A Input section (truth determination device 1) 7B Input section (User terminal 2) 8 Output section 8A output section (authenticity determination device 1) 8B Output section (User terminal 2) 9. Communication Network 90 External Servers 91 Websites
Claims
1. This is a method performed by an information processing device. The steps include registering the domain name or URL of a website or webpage that meets certain criteria in a whitelist database, The steps include obtaining a screenshot of the website or web page of the target domain name or URL, The steps include determining whether the screen image contains a predetermined brand security seal, The steps include determining whether the target domain name or URL is registered in the whitelist database when the screen image includes the brand security seal, The process includes the step of determining that if the domain name or URL to be judged is not registered in the whitelist database, then the website or webpage of the domain name or URL to be judged is a fraudulent or disguised website or webpage. An information processing method characterized by the following:
2. The domain name or URL subject to determination is obtained as the domain name or URL of a website / web page that has been successfully accessed by traversing the internet. The information processing method according to feature 1.
3. If a website or webpage is determined to be fraudulent or disguised, the domain name or URL subject to determination will be reported as a fraudulent or disguised website or webpage. The information processing method according to feature 1.
4. A storage means for storing a whitelist database in which domain names or URLs of websites or web pages that meet certain criteria are registered, A means for obtaining a screen image of the website or web page of the target domain name or URL, A detection means for determining whether or not a predetermined brand security seal is included in the aforementioned screen image, The system includes a determination means that determines if the screen image includes the brand security seal and the domain name or URL to be determined is not registered in the whitelist database, then the website or webpage of the domain name or URL to be determined is a fraudulent or disguised website or webpage. An information processing device characterized by the following:
5. The system has a crawling mechanism that obtains the domain name or URL to be determined as the domain name or URL of a website / web page that has been successfully accessed by crawling the internet. The information processing apparatus according to feature 4.
6. If a website or webpage is determined to be fraudulent or disguised, the domain name or URL subject to determination has a means of reporting that it is a fraudulent or disguised website or webpage. The information processing apparatus according to feature 4.
7. The process involves registering the domain names or URLs of websites or web pages that meet certain criteria in a whitelist database. The process involves obtaining a screen image of the website or web page of the target domain name or URL, A process to determine whether or not a predetermined brand security seal is included in the aforementioned screen image, If the screen image includes the brand security seal, the process determines whether the target domain name or URL is registered in the whitelist database. The information processing device is instructed to perform a process to determine that if the domain name or URL to be judged is not registered in the whitelist database, the website or webpage of the domain name or URL to be judged is a fraudulent or disguised website or webpage. An information processing program characterized by the following features.
8. The domain name or URL subject to determination is obtained as the domain name or URL of a website / web page that has been successfully accessed by traversing the internet. The information processing program according to feature 7.
9. If a website or webpage is determined to be fraudulent or disguised, the information processing device is instructed to perform a process to report that the domain name or URL in question is a fraudulent or disguised website or webpage. The information processing program according to feature 7.