摘要 |
PROBLEM TO BE SOLVED: To inhibit authentication related information of an application from being leaked to a maliciously created data server.SOLUTION: A server system 9 comprises an application server 2 and a data server 3. The application server 2 comprises: an application authentication unit 22 which authenticates an application 10 of a communication terminal 1 on the basis information related to the application 10 received from the communication terminal 1; and a token issuing unit 23 which issues signature information including server information specifying a server that stores data to be accessed by the application 10, when authenticity of the application 10 is authenticated. The data server 3 comprises: an authentication unit 32 which determines whether the server information included in the signature information specifies the data server 3 on the basis of the signature information received from the communication terminal 1; and a control unit 33 which authorizes the application 10 of the communication terminal 1 to access data when the server information specifies the data server 3. |