摘要 |
PROBLEM TO BE SOLVED: To provide user authentication technology which obtains a user authentication without disclosing user information to the enterprise B when acquiring the user authentication from the enterprise B different from an enterprise A, to which the user terminal registers the user information, on the basis of the user information registered to the enterprise A. SOLUTION: A user management server applies concealment processing to predetermined information in the user information stored in the server to produce first identification information and executes concealment processing by using a predetermined prescribed value within a range of the prescribed information to produce second identification information, and respectively transmits the first and second identification information items to a user authentication server and the user terminal. The user terminal encrypts the second identification information, which is transmitted and stored, by using a private key Ks and transmits the encrypted second identification information to the user authentication server. The user authentication server decrypts the encrypted second identification information, which is transmitted, by using a public key Kp, and authenticates the user terminal by verifying the obtained second identification information and the first identification information, which is transmitted and stored. COPYRIGHT: (C)2008,JPO&INPIT
|