System and method for authentication
First Claim
1. An authentication system comprising a management apparatus that manages private information and a service providing apparatus that provides service to an information terminal, wherein:
- said management apparatus comprises;
a private information database in which private information is registered, associating the private information with personal identification information therein;
a providing condition database in which service providing conditions required for private information are registered when said service providing apparatus provides the service therein;
a determination processing unit that reads the private information associated with personal identification information sent from said service providing apparatus, from said private information database, makes a judgment on whether said private information satisfies the service providing conditions registered in said providing condition database, and determines approval or denial of providing the service depending on a result of the judgment; and
a notification processing unit that notifies said service providing apparatus of approval or denial information indicating the judgment result of said determination processing unit, and said service providing apparatus comprises;
a personal identification information acquisition processing unit that acquires personal identification information from said information terminal;
an approval or denial information acquisition processing unit that sends the personal identification information acquired by said personal identification information acquisition processing unit to said management apparatus, to acquire approval or denial information from said management apparatus; and
a service providing processing unit that provides the service to said information terminal when the approval or denial information acquired by said approval or denial information acquisition processing unit indicates permission to provide the service.
1 Assignment
0 Petitions
Accused Products
Abstract
A system that can reduce possibility of outflow of private information in authentication of a user of an information terminal. A management apparatus has a user certificate DB in which a user certificate is registered in association with certificate identification information. Further, the management apparatus reads the user certificate associated with the certificate identification information sent from a service providing apparatus, from the user certificate DB, and judges whether the user certificate satisfies certain Web browsing conditions, to determine approval or denial of browsing the Web page concerned. Then, the management apparatus sends the service providing apparatus approval or denial information indicating the determination result. On the other hand, the service providing apparatus receives the certificate identification information from the information terminal, sends the certificate identification information to the management apparatus, and acquires the approval or denial information from the management apparatus. When the acquired approval or denial information indicates permission to browse the Web page, the service providing apparatus permits the information terminal to browse the Web page.
52 Citations
15 Claims
-
1. An authentication system comprising a management apparatus that manages private information and a service providing apparatus that provides service to an information terminal, wherein:
-
said management apparatus comprises;
a private information database in which private information is registered, associating the private information with personal identification information therein;
a providing condition database in which service providing conditions required for private information are registered when said service providing apparatus provides the service therein;
a determination processing unit that reads the private information associated with personal identification information sent from said service providing apparatus, from said private information database, makes a judgment on whether said private information satisfies the service providing conditions registered in said providing condition database, and determines approval or denial of providing the service depending on a result of the judgment; and
a notification processing unit that notifies said service providing apparatus of approval or denial information indicating the judgment result of said determination processing unit, and said service providing apparatus comprises;
a personal identification information acquisition processing unit that acquires personal identification information from said information terminal;
an approval or denial information acquisition processing unit that sends the personal identification information acquired by said personal identification information acquisition processing unit to said management apparatus, to acquire approval or denial information from said management apparatus; and
a service providing processing unit that provides the service to said information terminal when the approval or denial information acquired by said approval or denial information acquisition processing unit indicates permission to provide the service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method of authentication, in which authentication of an information terminal to which service can be provided is performed using an authentication system comprising a management apparatus that manages private information and a service providing apparatus that provides the service to the information terminal, wherein said method comprises:
-
a first step in which said service providing apparatus acquires personal identification information from said information terminal, and sends acquired personal identification information to said management apparatus;
a second step in which said management apparatus judges whether private information that the management apparatus manages in association with the personal identification information received from said service providing apparatus satisfies predetermined service providing conditions, and determines approval or denial of providing the service depending on a result of judgment;
a third step in which said management apparatus sends approval or denial information, which indicates a content of the determination of approval or denial of providing the service, to said service providing apparatus; and
a fourth step in which said service providing apparatus provides the service to said information terminal, only when the approval or denial information sent from said management apparatus indicates permission to provide the service. - View Dependent Claims (11, 12, 13, 14, 15)
-
Specification