摘要 |
PROBLEM TO BE SOLVED: To detect and protect against such unauthorized logons using an account and a password as an account lock can not eliminate. SOLUTION: An authentication information input part 32 receives an authentication result and an authentication requester address about an authentication request including an account and a password from an authentication processing part 20. A policy matching part 34 holds a failure count of each address obtained from authentication results in an IP address management table 42, and if the failure count reaches a predetermined threshold, invalidates the address. An authentication result notification part 38 notifies the address invalidation result by the policy matching part 34 to the authentication processing part 20 to cause it to respond to the authentication requester by an address lock. The policy matching part 34 also employs an account lock for invalidating and locking the account if a failure count reaches a predetermined threshold. COPYRIGHT: (C)2006,JPO&NCIPI |