摘要 |
<P>PROBLEM TO BE SOLVED: To determine affirmative/negative of service use without any intervention of manpower when performing an account registration and collaboration in a process of SSO. <P>SOLUTION: Policy storage means of an ID provider device stores, for every service provider ID, a plurality of policy information items indicating affiliations and positions of users for which transmission of service data is permitted. The ID provider device, upon success of login processing, transmits a policy evaluation request including a user ID used in the login processing and the service provider ID within an authentication collaboration request. The ID provider device reads policy information from the policy storage means on the basis of the policy evaluation request. Transmission permission assessment means of the ID provider device determines whether or not to permit transmission of the service data depending upon whether or not the affiliation and the position within user attribute information comply with the affiliations and positions indicated in the policy information. <P>COPYRIGHT: (C)2012,JPO&INPIT |