摘要 |
For access to sensitive data or regions of an EDP system (2), by a user (9), said user is only guaranteed access on correctly logging in (16) to the EDP system with a user name and password and furthermore is able to prove authorisation by means of an access code (21), only available to the user from a data bank (5.2). The data bank is stored on a chipcard (5) and access to the data bank is doubly secured. Access to the access codes in the data bank can only be achieved by those users who can identify themselves correctly (12) with regards to the chipcard, for example, by means of biometric data. Furthermore, access to the access codes in the data bank can only be achieved by means of a program (5.1), stored on the chipcard, which is first activated on a correct identification of the user with regard to the chipcard and which must have been correctly identified (20) directly in the data bank by means of an ID built into the program code. |