摘要 |
PROBLEM TO BE SOLVED: To provide an authenticating device which makes it difficult to pretend to be someone else in accessing information and also can be applied to the existing portable telephone. SOLUTION: When an access request is received from a portable telephone, an authentication server receives a user ID and a password from the portable telephone. In the case the user ID and password are legal, the telephone number of a CTI(computer telephony integration) device is notified to make the portable telephone to call the telephone number. In the case a detected telephone number is legal, the authentication server generates a session key to distinguish the telephone number from the other telephone numbers. The session key is embedded in a connection URL requested to be viewed by the portable telephone T to be sent to the portable telephone. In the case the portable telephone selects the connection URL for identification and the connection URL for identification is returned to the authentication server, the authentication server decides the propriety of the session key embedded in the connection URL for identification. If the session key is legal, the authentication server decides that the access request is legal. |