摘要 |
<p><P>PROBLEM TO BE SOLVED: To impart user authority reflecting daily consciousness to security of a user. <P>SOLUTION: This user authority controller 1 quantitatively calculating a security management level of the user on the basis of periodically acquired IDS log data, and imparting the user authority reflecting the security management level to the user has: an authentication part 11 performing user authentication when the user accesses an information system 10; an inspection part 12 periodically acquiring the IDS log data from an IDS 6; a calculation part 13 calculating a security point from the acquired IDS log data by a prescribed calculation method; a decision part 14 deciding whether the presently given user authority is proper or not from the calculated security point; an authority control part 15 changing the user authority to proper user authority when the user authority is not proper; and a user authority control information storage part 16 storing various kinds of information related to control of the user authority. <P>COPYRIGHT: (C)2006,JPO&NCIPI</p> |