To control an access to user resources.
This device consists of a user terminal C, a seller terminal R, a provider terminal P and an access controller A. The user terminal C receives an application specifying an article and a seller and issues an application certificate. The application certificate includes a user's electronic signature Xc(I, Kr) with respect to identification information I and a public key Kr. A qualification certificate is issued by the seller terminal R. The qualification certificate includes an electronic signature Xr(I, Kp) of the seller with respect to discrimination information I and the public key Kp of a provider in addition to contents of the application certificate. The provider terminal P performs an access demand to a schedule DB based on a certificate demand and a qualification certificate to the access controller A. The access controller A judges whether or not the seller and the provider are proper on the basis of the qualification certificate after it performs certification processing of the provider terminal P and decides whether the access demand is to be permitted or not.
SUGANO HIROYASU
OTANI KOJI
Next Patent: PROCESS CONTROL SYSTEM AND COMPUTER-READABLE MEDIUM WHERE PROGRAM IS RECORDED