| 摘要 |
<P>PROBLEM TO BE SOLVED: To provide a distributed authentication system and a distributed authentication program allowing a user to freely manage authentication information. <P>SOLUTION: A Peer-2 transmits to a Peer-B an access request to a Peer-1. The Peer-B establishes Internet connection with a Peer-A by PKI, and transmits the access request. The Peer-A decides access authority on the basis of an access control policy, and transmits a token added with a signature to the Peer-B. The token is acquired by the Peer-2 through the Peer-B. When the Peer-2 uses the service of the Peer-1, the Peer-2 transfers the token to the Peer-A. The Peer-A decides whether the signature and the token are rightful or not, and transmits the result to the Peer-1. The Peer-A transmits a session key to the Peer-B, and establishes connection between the Peer-2 and the Peer-1. <P>COPYRIGHT: (C)2004,JPO |
