摘要 |
PROBLEM TO BE SOLVED: To realize an access control system that has a configuration easily understood even by laymen and adopts an access control rule where an artificial error can be prevented to the utmost in the case of making a revision. SOLUTION: The system is provided with an access control rule storage means 100 that stores an access control rule RA including an access subject (s), an access object (t) and an operation class, a restriction condition storage means 200 that stores a restriction condition C for deciding an access possibility from the (s) to the (t) in the rule RA, an access control rule search means 300 that searches the RA including the (s), (t) and the operation class of an incident access request, and a restriction condition discrimination means 400 that discriminates whether or not the (s), (t) of the detected RA satisfy the corresponding C. Access execution is permitted when it is satisfied.
|