摘要 |
<p><P>PROBLEM TO BE SOLVED: To change passwords without causing an inconvenience to a user even when the user has forgotten a password, and does not affect an access to an existing file or a service even if passwords are changed. <P>SOLUTION: The method comprises a first step that registers a user ID, a password, and an electronic certificate of the user obtained from a certification body beforehand, in a user information storage means of the information system, a second step that accepts a request for changing passwords including the user ID, a new password, and the user's electronic certificate, compares the accepted electronic certificate with the user's electronic certificate already registered in the user information storage means, and authenticates the user, and a third step that, when the authentication of the user whose request for changing passwords is accepted is successful, updates the password presently registered in the user information storage means to the new password. <P>COPYRIGHT: (C)2005,JPO&NCIPI</p> |