| 发明名称 |
AUTHENTICATION-AUTHORIZATION SYSTEM, AND AUTHENTICATION-AUTHORIZATION METHOD |
| 摘要 |
<p><P>PROBLEM TO BE SOLVED: To provide an authentication-authorization system which performs authorization for determining an access authority to an application server according to a user attribute in addition to personal authentication. <P>SOLUTION: In the authentication-authorization method, an electronic certificate (user certificate 150) issued by a route authentication station or an intermediate authentication station having the route authentication station as a host is used for personal authentication, and an electronic certificate (qualification certificate) issued by the route authentication station or the intermediate authentication station having the route authentication station as the host is used for authorization. The path of reliability from the user certificate to a slave authentication station of the route authentication station and the path of reliability from the qualification certificate to the slave authentication station of the route authentication station are individually formed, and the respective paths of reliability are started from the same route authentication station. One user certificate is issued to the user, and one or two or more qualification certificates are issued based on the user's access authority to the application server. The authorization is performed by use of one selected from these qualification certificates. <P>COPYRIGHT: (C)2009,JPO&INPIT</p> |
| 申请公布号 |
JP2009205230(A) |
申请公布日期 |
2009.09.10 |
| 申请号 |
JP20080044093 |
申请日期 |
2008.02.26 |
| 申请人 |
NIPPON TELEGR &, TELEPH CORP <,NTT>,;KYOTO UNIV |
发明人 |
AOYANAGI MAKIKO;HASHIMOTO SHOICHI;TAKAHASHI KENJI;NAGAI YASUHIRO;KOMURA TAKAAKI |
| 分类号 |
G06F21/20;H04L9/32 |
主分类号 |
G06F21/20 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
