| 摘要 |
PROBLEM TO BE SOLVED: To provide a user authentication system which prevents an illegal access even in the case that a user ID or a password has come to known to others or an authenticated cookie is stolen. SOLUTION: When a user terminal 1a is used to first access a web server 200, the user terminal 1a is redirected to an authenticating server 300. The authenticating server transmits an IP address of the user terminal 1a to an information storage server 400 and requests an address for connection and transmits a ticket having an authority to be authenticated, to the obtained address for connection. The user terminal 1a receives the ticket to transmit the ticket to the authentication server and performs authentication procedures. The authentication server transmits an authentication screen to the user terminal, and a user inputs a user ID or the like. When the user is a normal user, the registered terminal IP address is extracted from the information storage server on the basis of the user ID, and an encrypted registered terminal IP address is caused to be included in the authenticated cookie and is returned to the user terminal. When receiving the authenticated cookie, the user tries to access the web server again. COPYRIGHT: (C)2005,JPO&NCIPI |
