| 摘要 |
<p><P>PROBLEM TO BE SOLVED: To provide an access management system that dispenses with the storage of an encryption key while ensuring confidentiality of log information. <P>SOLUTION: An access management server 16 includes: log information generation means 20 for generating a full text log describing a history of operation between a client terminal 12 and an EC server 14 and a summary log as an index; a hash value generation section 22 for generating hash values of the full text log and summary log; an encryption key generation section 28 for generating an encryption key from the hash values and a pass phrase; an encryption processing section 30 for encrypting the full text log with the encryption key and deleting the encryption key from memory; and a log information storage section 32 for storing the encrypted full text log and the summary log in a log information memory section 34. When a request to browse a full text log is input from a management terminal 17, the encryption key generation section 28 regenerates an encryption key from the hash values of a corresponding full text log and summary log and the pass phrase, and a decryption processing section 44 uses the encryption key to decrypt the full text log and deletes the encryption key from memory. <P>COPYRIGHT: (C)2012,JPO&INPIT</p> |
