Remote access system, remote access method, and remote access program
First Claim
Patent Images
1. A remote access system for accessing a predetermined resource from a remote place, comprising:
- an access target unit to be accessed;
an accessing unit for accessing the access target unit; and
a connection unit for standing proxy for the access target unit to the accessing unit, wherein the accessing unit comprises;
storage means for storing a certificate in which access privilege with regard to the resource is described; and
presenting means for presenting the certificate stored in the storage means to the access target unit having the resource, the connection unit comprises;
verification means for verifying the certificate received from the accessing unit; and
transmission means for transmitting the certificate verified by the verification means to the access target unit specified by the accessing unit, and the access target unit comprises determination means for determining according to the certificate transmitted by the connection unit whether to permit the accessing unit to access the resource.
1 Assignment
0 Petitions
Accused Products
Abstract
A remote access system includes target units to be accessed, a home gateway serving as an entrance of a home network to which the target units belong, and a portable unit carried by the user to access the target units. When the portable unit sends and presents an attribute certificate in which at least privilege with regard to a resource and information of the home gateway are described, to the target units through the home gateway, an access made by the portable unit to the resource is checked.
-
Citations
13 Claims
-
1. A remote access system for accessing a predetermined resource from a remote place, comprising:
-
an access target unit to be accessed;
an accessing unit for accessing the access target unit; and
a connection unit for standing proxy for the access target unit to the accessing unit, wherein the accessing unit comprises;
storage means for storing a certificate in which access privilege with regard to the resource is described; and
presenting means for presenting the certificate stored in the storage means to the access target unit having the resource, the connection unit comprises;
verification means for verifying the certificate received from the accessing unit; and
transmission means for transmitting the certificate verified by the verification means to the access target unit specified by the accessing unit, and the access target unit comprises determination means for determining according to the certificate transmitted by the connection unit whether to permit the accessing unit to access the resource. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A remote access method for accessing a predetermined resource from a remote place, comprising:
-
a storage step of storing a certificate in which access privilege with regard to the resource is described;
a presenting step of presenting the certificate stored in the storage step to an access target unit having the resource;
a verification step of verifying the certificate received from an accessing unit for accessing the access target unit;
a transmission step of transmitting the certificate verified in the verification step to the access target unit specified by the accessing unit; and
a determination step of determining whether to permit the accessing unit to access the resource, according to the certificate transmitted by a connection unit for standing proxy for the access target unit to the accessing unit. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A remote access program executable by a computer, for accessing a predetermined resource from a remote place, the program comprising:
-
a storage step of storing a certificate in which access privilege with regard to the resource is described;
a presenting step of presenting the certificate stored in the storage step to an access target unit having the resource;
a verification step of verifying the certificate received from an accessing unit for accessing the access target unit;
a transmission step of transmitting the certificate verified in the verification step to the access target unit specified by the accessing unit; and
a determination step of determining whether to permit the accessing unit to access the resource, according to the certificate transmitted by a connection unit for standing proxy for the access target unit to the accessing unit.
-
Specification