Control method, control program, and control system

US 20070050850A1
Filed: 12/09/2005
Published: 03/01/2007
Est. Priority Date: 08/30/2005
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented control method, comprising:

identifying an abnormal level according to abnormal level reference data stored in advance in an abnormal level reference data storage, from context relating to abnormalities, which has been collected in advance and stored in a context storage; and

converting the identified abnormal level to an authentication strength level according to a predetermined authentication strength level setting rule, and causing an authentication server to carry out an authentication processing corresponding to said authentication strength level.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

This invention is to appropriately cope with abnormal states. A control method according to the present invention includes: identifying an abnormal level according to abnormal level reference data stored in advance in an abnormal level reference data storage, from context relating to abnormalities, which has been collected in advance and stored in a context storage; and converting the identified abnormal level to an authentication strength level according to a predetermined authentication strength level setting rule, and causing an authentication server to carry out an authentication processing according to the authentication strength level. By carrying out such a processing, it becomes possible to cause the authentication server to carry out an authentication having an authentication strength level corresponding to an abnormal state.

Citations

24 Claims

1. A computer-implemented control method, comprising:
- identifying an abnormal level according to abnormal level reference data stored in advance in an abnormal level reference data storage, from context relating to abnormalities, which has been collected in advance and stored in a context storage; and
  
  converting the identified abnormal level to an authentication strength level according to a predetermined authentication strength level setting rule, and causing an authentication server to carry out an authentication processing corresponding to said authentication strength level.
- View Dependent Claims (2, 5, 6, 7, 8, 9, 11, 13, 14, 15, 16, 17, 18, 19, 20)
- - 2. The computer-implemented control method as set forth in claim 1, wherein said predetermined authentication strength level setting rule includes a rule based on whether or not a combination of a calling party and a called party is preregistered.
  - 5. The computer-implemented control method as set forth in claim 1 to 4, wherein said identifying is carried out by a policy management server, and said context storage is provided in a context management server, and said computer-implemented control method further comprises notifying said policy management server of data representing a change of said context relating to said abnormalities, which has been stored in said context storage, from said context management server.
  - 6. The computer-implemented control method as set forth in claim 1 to 4, wherein said identifying is carried out by a policy management server, and said context storage is provided in a context management server, and said computer-implemented control method further comprises, in response to a request from said policy management server, transmitting, to said policy management server, data of said context relating to said abnormalities, which has been stored in said context storage, from said context management server.
  - 7. The computer-implemented control method as set forth in claim 1 to 4, wherein said identifying is carried out by said context management server, and said converting and causing are carried out by the policy management server, and said computer-implemented control method further comprises transmitting said abnormal level identified in said identifying from said context management server to said policy management server.
  - 8. The computer-implemented control method as set forth in claim 7, wherein said transmitting is carried out by said context management server in response to a request from said policy management server.
  - 9. The computer-implemented control method as set forth in claim 1, further comprising:
    - lowering said authentication strength level when the connection request is an emergency call.
  - 11. The computer-implemented control method as set forth in claim 2, wherein said rule based on whether or not said combination of said calling party and said called party is preregistered includes a rule that said authentication strength level is lowered when said combination of said calling party and said called party has been registered, compared with a case when the combination of the calling party and the called party has not been registered.
  - 13. The computer-implemented control method as set forth in claim 1, wherein said authentication strength level is defined by using at least one type of a user authentication, a device authentication, and an environment authentication.
  - 14. The computer-implemented control method as set forth in claim 13, wherein said predetermined authentication strength level setting rule defines heightening or lowering a default authentication strength level, and when said authentication strength level is lowered, the number of authentication types defined for said authentication strength level is reduced, and when said authentication strength level is heightened, the number of authentication types defined for said authentication strength level is increased.
  - 15. The computer-implemented control method as set forth in claim 13, wherein said predetermined authentication strength level setting rule defines heightening or lowering a default authentication strength level, and when said authentication strength level is lowered, a level in a predefined authentication type to be used is lowered, and when said authentication strength level is heightened, a level in said predefined authentication type to be used is heightened.
  - 16. The computer-implemented control method as set forth in claim 1 or 2, wherein said predetermined authentication strength level setting rule is defined to select one of authentication patterns respectively registered in association with predefined cases including an abnormal level as a condition.
  - 17. The computer-implemented control method as set forth in claim 13, wherein said environment authentication includes confirming at least one of a type of an operating system, a version of said operating system, a virus detection capability, a phishing detection capability, and a device performance or capacity.
  - 18. The computer-implemented control method as set forth in claim 1 or 2, wherein said authentication server includes an individual servers, each carrying out an authentication processing required for each authentication type or level, and said converting and causing comprise selecting an individual server for said authentication type or level corresponding to the identified authentication strength level, by said policy management server that carries out said converting and causing.
  - 19. The computer-implemented control method as set forth in claim 18, further comprising:
    - transmitting a request of authentication information required in the identified authentication strength level to a terminal of a calling party by said policy management server; and
      
      transmitting said authentication information received from said terminal of said calling party to the selected individual server by said policy management server.
  - 20. The computer-implemented control method as set forth in claim 18, further comprising:
    - transmitting an authentication request to the selected individual server by said policy management server; and
      
      transmitting a request of necessary authentication information to a terminal of a calling party from said selected individual server.

3. A computer-implemented control method, comprising:
- identify an abnormal level according to abnormal level reference data stored in advance in an abnormal level reference data storage, from context relating to abnormalities, which has been collected in advance and stored in a context storage; and
  
  converting the identified abnormal level to a connection priority including reject of a connection setup request according to a predetermined connection control rule, and setting said connection priority to an equipment.
- View Dependent Claims (4, 10, 12)
- - 4. The computer-implemented control method as set forth in claim 3, wherein said predetermined connection control rule include a rule based on whether or not a combination of a calling party and a called party is preregistered.
  - 10. The computer-implemented control method as set forth in claim 3, further comprising:
    - compulsively accepting a connection request when the connection request is an emergency call.
  - 12. The computer-implemented control method as set forth in claim 4, wherein said rule based on whether or not said combination of said calling party and said called party is preregistered includes a rule that said connection priority is heightened when said combination of said calling party and said called party has been registered, compared with a case when said combination of said calling party and said called party has not been registered.

21. A program embodied on a medium, for causing a computer to carry out a control processing, comprising:
- identifying an abnormal level according to abnormal level reference data stored in advance in an abnormal level reference data storage, from context relating to abnormalities, which has been collected in advance and stored in a context storage; and
  
  converting the identified abnormal level to an authentication strength level according to a predetermined authentication strength level setting rule, and causing an authentication server to carry out an authentication processing corresponding to said authentication strength level.

22. A program embodied on a medium, for causing a computer to carry out a control processing, comprising:
- identify an abnormal level according to abnormal level reference data stored in advance in an abnormal level reference data storage, from context relating to abnormalities, which has been collected in advance and stored in a context storage; and
  
  converting the identified abnormal level to a connection priority including reject of a connection setup request according to a predetermined connection control rule, and setting said connection priority to an equipment.

23. A control apparatus, comprising:
- a unit that identifies an abnormal level according to abnormal level reference data stored in advance in an abnormal level reference data storage, from context relating to abnormalities, which has been collected in advance and stored in a context storage; and
  
  a converter that converts the identified abnormal level to an authentication strength level according to a predetermined authentication strength level setting rule, and causes an authentication server to carry out an authentication processing corresponding to said authentication strength level.

24. A control apparatus, comprising:
- a unit that identifies an abnormal level according to abnormal level reference data stored in advance in an abnormal level reference data storage, from context relating to abnormalities, which has been collected in advance and stored in a context storage; and
  
  a converter that converts the identified abnormal level to a connection priority including reject of a connection setup request according to a predetermined connection control rule, and sets said connection priority to an equipment.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Fujitsu Limited
Original Assignee
Fujitsu Limited
Inventors
Inomata, Akihiro, Katoh, Masafumi

Granted Patent

US 8,056,116 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/27
CPC Class Codes

G06F 21/31   User authentication

G06F 21/316   by observing the pattern of...

G06F 21/34   involving the use of extern...

G06F 21/46   by designing passwords or c...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2111   Location-sensitive, e.g. ge...

G06F 2221/2113   Multi-level security, e.g. ...

H04L 63/105   Multiple levels of security

Control method, control program, and control system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Control method, control program, and control system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links