JP2003323344A - Access control system, access control method and access control program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To prevent an illicit access by a theft and loss. <P>SOLUTION: This access control system has a basic authentication processing means 32c for determining the possibility of authentication by collating user ID received from a portable terminal 1, a password, user ID prestored in a basic authentication data storage device 33, and a password, and an access control means 32a for transmitting a collating result to the portable terminal 1 by determining whether or not access restriction is imposed on the portable terminal 1 by collating a terminal identification number received from the portable terminal 1 with access control information prestored in an access control information storage device 35. <P>COPYRIGHT: (C)2004,JPO

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an access control system, an access control method and an access control program for controlling access to another computer using a computer such as a terminal.

[0002]

2. Description of the Related Art Conventionally, when a portable terminal such as a notebook computer is used to access another computer such as a host computer, the terminal itself may or may not perform online authentication processing. In most cases, only the user ID and password were authenticated, and other authentication was not performed. Further, even if the authentication process is performed, the terminals already registered as being unusable cannot only perform the online business, and the countermeasures against leakage of confidential information such as when the terminal is lost have not been sufficiently taken. Therefore, when the mobile terminal is lost, the person who found the lost terminal can refer to the information recorded in the mobile terminal by obtaining the authorized user ID and password. As a result, the information stored in the host computer can be retrieved at the time of connection via the Web or the like.

[0003]

As described above, an unauthorized user such as a terminal finder can easily refer to confidential information in the terminal only by the conventional authentication processing for determining the accessibility. As a result, it becomes possible to illegally obtain the information recorded in the host computer or the like.

The present invention has been made to solve the above problems, and an object of the present invention is to provide an access control system, an access control method and an access control program which prevent unauthorized access due to theft or loss. It is in.

[0005]

According to one aspect of the present invention, the user identification information received from the terminal and the user identification information stored in advance in the first storage device are collated to determine whether or not authentication is possible. Basic authentication processing means for judging, terminal identification information received from a terminal, and access control information stored in advance in the second storage device are collated to determine whether or not access is restricted to the terminal. An access control system provided with a management means is provided.

According to such a configuration, even if the user identification information such as the user ID and the password is stolen, it is possible to determine the presence or absence of the access restriction based on the terminal identification information unique to the terminal, and the confidential information. Can be prevented from leaking.

According to one embodiment of the present invention, when the access management means determines that access is restricted, at least one of the data and the program stored in the third storage device of the terminal. Data including an instruction to delete the data is transmitted to the terminal. As a result, when an unauthorized access is made, the data and the program stored in the terminal are erased, so that the confidential information can be leaked out without fail.

According to another embodiment of the present invention, the terminal identification information received from the terminal is collated with the used terminal history stored in the fourth storage device to newly use the terminal. It is determined whether the terminal is a terminal, and if it is determined that the terminal is a newly used terminal, the terminal identification information is associated with the user identification information received from the terminal and used as a used terminal history.
And a used terminal history management means for storing in the storage device. As a result, even if the user does not know the terminal identification information, it is possible to manage which terminal the user is using as the used terminal history. From this used terminal history, it is possible to determine whether or not the terminal is registered as access control information. Preferably, the used terminal history management means stores the use start date and time of the terminal as a used terminal history in the fourth storage device in association with the terminal identification information. As a result, the later of the use start date and time of the terminal can be used when determining the terminal that has been the object of access control, and it is possible to more reliably specify the object of access control.

According to another embodiment of the present invention, the used terminal history stored in the fourth storage device is displayed on the display device to allow the administrator to select the terminal to be access-controlled. Access control information registration means for registering access control information including the presence or absence of access control in the second storage device in association with the terminal identification information of the terminal selected by the administrator is further provided. As a result, even if the user is lost or stolen and cannot know the terminal identification information,
Based on the used terminal history, the administrator can easily determine which terminal is subject to access control.
As a result, accurate access control information can be registered.

Further, according to another embodiment of the present invention, the access control information is composed of presence / absence of access restriction, access restriction period, and reason information indicating a reason for the access restriction, and the access management means is the above-mentioned. When the presence or absence of access restriction is present, the access restriction period is compared with the current date and time, and when the current date and time corresponds to the access restriction period, a determination result indicating that the access restriction is performed is generated,
When the reason information is the first reason information, data including a command to delete at least one of the data and the program stored in the third storage device of the terminal is transmitted to the terminal, and the reason information is In the case of the second reason information, data that does not include an instruction to erase at least one of the data and the program stored in the third storage device of the terminal is transmitted to the terminal. As a result, it is possible to manage the access restriction for a predetermined period of time, and it is possible to perform access restriction that matches the event that causes the access restriction, such as loss, theft, or failure. In addition, it is possible to change the presence / absence of destruction of data or programs on the terminal side by the difference in the reason information indicating the phenomenon that causes such access restriction.

The present invention related to a system (apparatus) is
It also holds as an invention of a method realized by the device.

Further, the present invention related to an apparatus or method is for causing a computer to execute a procedure corresponding to the present invention (or for causing a computer to function as means corresponding to the present invention, or for a computer corresponding to the present invention. And a computer readable recording medium storing the program.

[0013]

BEST MODE FOR CARRYING OUT THE INVENTION An embodiment of the present invention will be described below with reference to the drawings.

FIG. 1 is a diagram showing the overall configuration of an access control system according to an embodiment of the present invention. As shown in FIG. 1, this access control system includes a mobile terminal 1, a terminal control system 2, a host authentication system 3, a management console terminal 4, and a host computer 8. The mobile terminal 1 and the terminal control system 2 are connected by a communication line 5, the terminal control system 2 and the host authentication system 3 are connected by a communication line 6, and the host authentication system 3 and the management console terminal 4 are connected by a communication line 7. In FIG. 1, only one of the mobile terminal 1, the terminal control system 2 and the management console terminal 4 is shown for convenience of description,
A plurality may be provided, or only one may be provided. Further, a host computer 8 is connected to the host authentication system 3 via a communication line 9. The mobile terminal 1 that is authenticated by the host authentication system 3 and is determined to have no access restriction can access the host computer 8. The mobile terminal 1 is composed of a lightweight compact computer that can be carried freely by disconnecting from the communication line 5. For example, laptop computers, mobile phones, PDAs (Pers
onal Digital Assistant) as well as mobile information terminals, as well as portable computers designed for door-to-door sales.

The access control system according to this embodiment is a system in which access control is performed on the host authentication system 3 side in response to an access request from the portable terminal 1 to the host authentication system 3.

The terminal control system 2 includes an access log storage device 21 for storing an access log. The terminal control system 2 receives data from the mobile terminal 1 and sends the data to the host authentication system 3, while receiving data from the host authentication system 3 and sends the data to the mobile terminal 1. When data is received from the mobile terminal 1 or the host authentication system 3, the reception history is stored in the access log storage device 21 as an access log. It should be noted that in the following description, it may be explained that the exchange such as data transmission / reception between the mobile terminal 1 and the host authentication system 3 is directly performed, but in reality, the communication is performed via the terminal control system 2. Interaction takes place. Of course, it is also possible to directly exchange data such as data transmission and reception between the mobile terminal 1 and the host authentication system 3 without going through the terminal control system 2.

The mobile terminal 1 is provided with a customer information file storage device 11 and an application program storage device 12 in which data and programs to be managed as confidential information are stored. Customer information file storage device 1
1 stores a customer information file such as a customer's address, date of birth, and enrolled insurance product information. The application program storage device 12 stores application programs such as an insurance design program, a sales support program for supporting the sales of sales staff, and a contract content inquiry program for referring to the contract content that the customer has subscribed to. ing. These application programs read the customer information file from the customer information file storage device 11, execute various data processings and simulations based on the customer information, and display the processing results on the display device of the mobile terminal 1.

The application program storage device 12 also stores a data destruction program for protecting confidential information in the case of unauthorized access by a thief or a finder of the portable terminal 1. The program stored in the application program storage device 12 may be recorded in a recording medium such as a flexible disk or a CD-ROM, and the recording medium reading device may read the program to execute the program.

A terminal identification number management program for functioning as terminal identification number management means for reading the terminal identification number and transmitting it to the host authentication system 3 in response to the terminal identification number transmission request from the host authentication system 3. It may be stored in the application program storage device 12. The terminal identification number management means may read out the terminal identification number embedded in the IC chip or the like inside the mobile terminal 1, or the terminal identification number stored in another storage device such as a magnetic disk or an optical disk. It may be read out.

FIG. 2 is a diagram showing a detailed configuration of the host authentication system 3. As shown in FIG. 2, the host authentication system 3 includes a communication control device 31, a processor 32 connected to the communication control device 31, a basic authentication data storage device 33 connected to the processor 32, and a used terminal history storage. It is composed of a device 34, a terminal access control information storage device 35, an application data storage device 36, and a program storage device 37.

The communication control device 31 controls data communication with the terminal control system 2 and the management console terminal 4 via the communication line 6 and the communication line 7. The processor 32
The access control processing is executed in response to an access request from the mobile terminal 1, and is realized by, for example, a CPU.

The processor 32 has access control means 32.
a, used terminal history management means 32b and basic authentication processing means 32c. That is, the access management program, the used terminal history management program, and the basic authentication processing program are read from the program storage device 37 and executed by the processor 32, so that the processor 32 executes the access management means 32a and the used terminal history management means 32b.
And the basic authentication processing means 32c. The program stored in the program storage device 37 may be recorded in a recording medium such as a flexible disk or a CD-ROM, and the recording medium reading device may read the program to execute the program.

The basic authentication data storage device 33 stores a user ID and a password for each user as data to be the basis of authentication. FIG. 3 is a diagram showing an example of basic authentication data.

The used terminal history storage device 34 is the portable terminal 1
The use terminal history indicating the use history of is stored. Specifically, using the user ID of the user who uses the mobile terminal 1 as a key, the terminal machine number as terminal identification information for identifying the terminal and the use start date and time of the terminal are stored. The terminal machine number is the mobile terminal 1 for identifying the mobile terminal 1.
Is a unique number. FIG. 4 is a diagram showing an example of a history of used terminals. FIG. 4 shows the used terminal history for a certain user ID, and the used terminal history as shown in FIG. 4 is stored for each user ID.

The terminal access control information storage device 35 stores terminal access control information. The access control information is information for controlling access to the mobile terminal 1, and is composed of a terminal machine number, an access control classification, a user ID, an institution code, a reason code, a registrant, and the like.
The access control classification indicates whether or not access is controlled and whether or not a date for controlling access is set.
For example, it is possible to select no limit, date designation, and limit. Further, when the date designation is selected as the access control classification, both or one of the control start date and the control end date can be designated as the access control period. The institution code is a code for identifying the institution to which the user whose access is to be controlled belongs. The reason code is a code that identifies the reason information that is a factor of access control, and can be designated by, for example, loss, theft, failure, or the like. Depending on the reason code, the presence / absence of a data erasing instruction in the mobile terminal 1 described later can be changed. The registrant is data that identifies the person in charge who performs access control and registers access control information.
FIG. 5 is a diagram showing an example of the terminal access control information.

The application data storage device 36 stores application data received from the portable terminal 1 or the like when registering access control information.

The program storage device 37 stores an access management program, a used terminal history management program, and a basic authentication processing program.

The management console terminal 4 functions as the access control information registration means 42 by reading the access control information registration program from the program storage device 41. The program stored in the program storage device 41 may be recorded in a recording medium such as a flexible disk or a CD-ROM, and the recording medium reading device may read the program to execute the program. Further, the management console terminal 4 is provided with a display device 43 and an input device 44, which can display various data necessary for access management and input various data necessary for access management. it can.

An access control method using the access control system according to this embodiment will be described below. The access control method according to the present embodiment roughly includes two processes: registration of access control information and access management for an access request from the mobile terminal 1.

Registration of the terminal access control information shown in FIG. 5 is performed using the management console terminal 4 based on an application from the portable terminal 1 or the like. The registration flow of the terminal access control information will be described with reference to the timing chart shown in FIG.

In the case of registration based on an application from the mobile terminal 1 or the like, the user ID, access control reason, access control reason occurrence date and time from the mobile terminal 1 as application data.
Send the terminal user status to the host authentication system 3 (s
1). The host authentication system 3 stores the received application data in the application data storage device 36 (s2). This (s
1) may be performed from any terminal other than the mobile terminal 1 that can perform data communication with the host authentication system 3.

The access control reason corresponds to the reason code and is specified by any one of loss, theft, failure, and the like. The access control reason occurrence date and time is data for identifying the date and time when the reason for controlling the access occurred. For example, when the access control reason is lost, the lost date and time of the mobile terminal 1 corresponds to the access control reason. If the reason is theft, the date and time of the theft of the mobile terminal 1 is applicable. When the access control reason is a failure, the date and time when the mobile terminal 1 fails is applicable.

The terminal user status is data indicating the terminal usage status of the user of the mobile terminal 1 to be subjected to access control. For example, data indicating that another terminal is currently being used, currently the terminal is being used. The data etc. which show that it has not done correspond.

On the other hand, when the management console terminal 4 reads the access control information registration program from the program storage device 41 and activates the access control information registration means 42, it requests the host authentication system 3 for necessary data for registration. Perform (s3). In response to this request, the host authentication system 3 reads the application data stored in the application data storage device 36, and acquires the used terminal history associated with the user ID included in the application data from the used terminal history storage device 34. Is read from (s4). Then, together with the application data, this used terminal history is transmitted to the management console terminal 4 as data necessary for registering access control information (s5). The access control information registration means 42 of the management console terminal 4, which has received the application data and the used terminal history, displays the received used terminal history on the display device 43 (s6).

In (s1) to (s5), the management console terminal 4 acquires the application data received from the terminal that has accessed the host authentication system 3 by data communication, but the present invention is not limited to this. Not a thing. For example, the application data may be transmitted to the management console terminal 4 by direct data communication, or a document corresponding to the application data may be passed to the host operation manager who manages the management console terminal 4. That is, the application data may be acquired by any route such as telephone, FAX, or data communication as long as the information corresponding to the application data is transmitted to the person who should input the access control information.

FIG. 7 is a diagram showing an example of the used terminal history screen. As shown in FIG. 7, the used terminal history regarding the user ID applied as the application data is displayed as a list in the order of the use start date and time. The host operation manager is
From the used terminal history screen shown in, it is possible to specify the terminal machine number of the terminal to be subjected to access control. Although not shown in FIG. 7, it is desirable to display the terminal user status included in the application data together on this used terminal history screen. The host operation manager refers to the terminal user status and refers to the mobile terminal 1 targeted for access control.
The terminal machine number is selected using the input device 44. For example, if the terminal user status is found to be application data for a terminal that was lost in October 2001, a new terminal was provided a few days later, and the terminal was lost after being provided, It can be seen that the mobile terminal 1 displayed as the mobile terminal 01 is the newly provided terminal, the mobile terminal 02 is the lost mobile terminal 1, and is the target of access control. Therefore, the host operation manager uses the input device 4
The mobile terminal 02 is selected using 4 (s7). The access control information registration means 42 transmits the terminal machine number of the mobile terminal selected by the input device 44 to the host authentication system 3 and requests transmission of the access control information of the mobile terminal (s8). Host authentication system 3
Reads the access control information about the received terminal machine number from the access control information storage device 35 (s
9), and transmits to the management console terminal 4 (s10). Access control information registration means 42 of the management console terminal 4
Displays the received access control information on the display device 43 (s11).

FIG. 8 is a diagram showing an example of the access control information registration screen. As shown in FIG. 8, as the received access control information, the terminal machine number, access control classification, control start date, control end date, user ID, institution code, reason code, and registrant are displayed. As described above, by requesting the registered access control information from the host authentication system 3 and confirming it on the display screen, it is possible to confirm whether or not there is an error in the identification of the access control target by the host operation administrator.

The display step (s11) of the access control information registration screen requests the host authentication system 3 for the access control information about the terminal machine number selected by the host operation manager, and the host authentication system 3 Although the example of displaying the received data is shown, it is not always necessary to perform such steps. Before requesting the host authentication system 3, for example, at step (s5), access control information about the terminal machine number included in the used terminal history related to the application data is received and the received data is displayed. Alternatively, the access control information may be newly displayed without receiving the access control information from the host authentication system 3 and confirming the already registered access control information.

After confirming the registered access control information shown in FIG. 8, the host operation manager sets the date and time of occurrence of the access control reason and the control start date included in the application data.
Access control information is newly input (s12).

If the mobile terminal 1 is lost, stolen, or broken, the current date and time is input as the control start date, so that the mobile terminal 1 lost, stolen, or broken can be used for access control. As a target, it is possible to prevent access by unauthorized persons.

For example, when a lost or stolen terminal is found, or when a defective terminal is used again, the control end date is entered to input the portable terminal 1 which is the object of access control. Access is set to be permitted from that date. As a result, the mobile terminal 1 that has been the target of access control can be used again.

The input access control information is transmitted from the management console terminal 4 to the host authentication system 3 (s13). The host authentication system 3 stores the received access control information in the access control information storage device 35 (s14). With the above, the process of registering the access control information in the host authentication system 3 is completed.

Next, a timing chart of access control for access to the host computer 8 by the portable terminal 1 is shown in FIG. As shown in FIG. 9, the portable terminal 1 is connected to the terminal control system 2 via the communication line 5, and an authentication request is made to the host authentication system 3 (s21).
In response to this authentication request, the host authentication system 3
The authentication process is executed (s22), and the authentication process result is transmitted to the mobile terminal 1 as a return code (s23). Mobile terminal 1
Executes post-authentication processing based on the received return code (s24). In this (s24), different processing is executed depending on the type of the return code.

Details of the processing of the authentication request in (s21) will be described. The application program of the mobile terminal 1 reads the user ID and the password stored in the storage device of the mobile terminal 1, and also reads the terminal machine number embedded in the IC chip of the mobile terminal 1, for example. These user ID, password and terminal machine number are transmitted to the host authentication system 3 via the terminal control system 2 as authentication data.

The terminal machine number is transmitted by the terminal identification number management means provided in the portable terminal 1 in response to the number request from the terminal machine number request processing means provided in the host authentication system 3. The identification number may be read from a storage device or the like and transmitted.

Next, in the host authentication system 3, (s
The details of the authentication process of 22) will be described with reference to the flowchart of FIG.

As shown in FIG. 10, the access management means 32a of the host authentication system 3 which has received the authentication data from the portable terminal 1 (s101) first reads the terminal machine number included in the received authentication data, and then the terminal machine. The access control information associated with the number is read from the access control information storage device 35. Then, based on the access control information, it is determined whether or not the mobile terminal 1 that has made an access is a terminal that is a target of access control (s102).
Specifically, when the access control classification included in the access control information is 0, that is, when there is no access restriction, the access management unit 32a determines that it is not the target of access control, and proceeds to (s103). If the access control classification is 2, that is, if there is access control, it is determined that the access control is performed and the process proceeds to (s104). When the access control classification is 1, that is, when there is an access restriction with a designated date, the current time is compared with the control start date and the control end date. If the current time is earlier than the control start date or later than the control end date, it is determined that it is out of the access control target,
Proceed to (s103).

If only the control start date is set and the current time is later than the control start date, it is determined that the access control is performed and the process proceeds to (s104). When only the control end date is set and the current time is earlier than the control end date, it is determined that the access control is performed and the process proceeds to (s104). When the control start date and the control end date are set and the current time is after the control start date and before the control end date, it is determined that the access control is performed (s104).
Proceed to.

At (s103), the host authentication system 3
The basic authentication processing means 32c includes the user ID and password included in the authentication data, and the basic authentication data storage device 3
The user ID and password registered in advance in 3 are compared and collated, and if they match, basic authentication is determined to be permitted, and (s
Proceed to 105). On the other hand, if the user ID or password do not match, it is determined that basic authentication is not permitted, and (s
Proceed to 106).

It is determined that the basic authentication is not permitted (s10
When the process proceeds to 6), the basic authentication processing means 32c transmits the data indicating the authentication request error to the mobile terminal 1 as a return code. This return code does not include a command to erase the data and programs stored in the storage devices 11 and 12 of the mobile terminal 1. This step corresponds to (s23) in FIG. As a result, the access control process in the host authentication system 3 ends. The mobile terminal 1 that has received the return code based on the data indicating the authentication request error may issue the access request again by reentering the user ID and the password, or may give up the access request.

Basic authentication is determined to be permitted (s105)
If the process proceeds to step 3, the used terminal history management unit 32b of the host authentication system 3 uses the used terminal history associated with the user ID included in the authentication data as the used terminal history storage device 34.
Read from the mobile terminal 1 and determine whether or not the terminal machine number of the used terminal history includes the terminal machine number included in the authentication data. It is determined whether the access is from the mobile terminal 1.

When the terminal machine number included in the authentication data is included in the used terminal history, the portable terminal 1 used before is used.
It is determined that the access is from, and the process proceeds to (s108).
If the terminal machine number included in the authentication data is not included in the used terminal history, it is determined that the access is not from the previously used mobile terminal 1 but from the newly used terminal (s107). Proceed to.

At (s107), the used terminal history management means 32b associates the terminal machine number included in the authentication data with the current time, the authentication data transmission time, etc. as the use start date and time, and the used terminal history shows the terminal machine number. It is newly registered. When the registration of this used terminal history is completed, (s
Proceed to 108).

At (s108), the data indicating that the authentication is permitted is transmitted to the portable terminal 1 as a return code.
This return code includes the storage devices 11 and 1 of the mobile terminal 1.
It does not include a command to erase the data and programs stored in 2. This transmission step is performed by (s2
It corresponds to 3). As a result, the access control process on the host authentication system 3 side ends. The mobile terminal 1 that has received the return code of the authentication permission recognizes the host authentication system 3
It is possible to freely access the host computer 8 via the. When the access to the host computer 8 by the portable terminal 1 is once interrupted, the host authentication system 3 can execute the steps (s101) to (s108) again to enable the access again. .

In (s102), it is determined that the portable terminal 1 that has made the access request is the target of access control, and (s102)
When the process proceeds to step 104), the access management unit 32a sends to the mobile terminal 1 a return code indicating an unauthorized access, which includes an instruction to erase the data and programs stored in the storage devices 11 and 12 of the mobile terminal 1. Send. This transmission step corresponds to (s23) in FIG. As a result, the access control process on the host authentication system 3 side ends. On the side of the mobile terminal 1 that receives the return code indicating the unauthorized access, one data destruction program of the application programs is activated. This data destruction program deletes the customer information file and the application program in the customer information file storage device 11 and the application program storage device 12 provided in the mobile terminal 1 so that they cannot be read or executed, and the data and the program are deleted. Destroy. In this (s104), the type of the return code may be changed depending on whether the reason code corresponds to a failure or loss or theft. That is, when the reason code corresponds to a failure, it indicates that the access is unauthorized, but does not include a command to erase the data and the programs stored in the storage devices 11 and 12 of the mobile terminal 1. Is transmitted to the mobile terminal 1 and includes a command to erase the data and programs stored in the storage devices 11 and 12 of the mobile terminal 1 only when it is lost or stolen. The return code may be transmitted to the mobile terminal 1. As a result, appropriate measures can be taken for each reason for access restriction.

Next, the processing flow of the authentication response processing of the portable terminal 1 for the access control performed on the host authentication system 3 side will be described with reference to the flowchart of FIG.

As shown in FIG. 11, the return code, which is the authentication processing result in the host authentication system 3, is sent to the mobile terminal 1.
Is received (s201), it is determined based on the received return code whether or not the authentication is permitted (s202).
In this judgment, if it is judged that the authentication is permitted,
Proceed to (s203). In (s203), the mobile terminal 1 normally ends the authentication screen and displays the business screen on the display device provided in the mobile terminal 1. In the judgment of (s202),
When it is determined that the authentication is not permitted, (s2
Go to 04). At (s204), it is determined whether the return code indicates an unauthorized access response. If it is determined to be an unauthorized access response, the process proceeds to (s205). (S2
In 05), the data destruction program is activated. The data destruction program deletes the data and programs in the customer information file storage device 11 and the application program storage device 12 provided in the mobile terminal 1. As a result, the customer information file cannot be read, and the insurance design program or the like using the customer information file cannot be activated, so that leakage or unauthorized use of confidential information can be prevented. The data destruction program may perform processing such as clearing data so that the storage device itself such as a magnetic disk such as a hard disk cannot be used as well as a specific data file or program. Further, by deleting the application program, it is possible to perform processing such that the mobile terminal 1 itself cannot be restarted so that it cannot be restarted.

When it is determined that the response is not an unauthorized access response, the process proceeds to (s206), and an error screen for authentication is displayed on the display device of the portable terminal 1.

With the above, the authentication response process on the portable terminal 1 side is completed.

Although FIG. 11 shows a case in which permission / non-permission of authentication and permission / inhibition of unauthorized access are sequentially determined along the flow chart, the flow shown in FIG. 11 does not necessarily have to be followed. Any flow may be used as long as the response process to the authentication is changed depending on whether the authentication is allowed or not and the unauthorized access response is allowed.

When an unauthorized access is made to the portable terminal 1 for which access control is performed, the user used for the unauthorized access is confirmed by checking the access log of the access log storage device 21 of the terminal control system 2. I
D, mobile terminal 1 and the like can be tracked. That is, it is possible to confirm which terminal control system 2 has been accessed and how, and it is possible to trace a person who has made unauthorized access.

As described above, according to this embodiment, when the user ID is authenticated using the portable terminal 1, the terminal machine number unique to the terminal is transmitted to the host authentication system 3.
It is determined whether or not the terminal is registered for suspension of use. As a result, even if the user ID and password are entered correctly, it is possible to prevent the leakage of information such as various data and software stored in the mobile terminal 1 by disabling the activation of the mobile terminal. .

The present invention is not limited to the above embodiment.

Although the above embodiment has been described by using the portable terminal 1, it goes without saying that the present invention may be applied to a desktop computer which is generally used as a stationary computer. The system configuration shown in FIG. 1 is merely an example, and various modifications can be made without departing from the spirit of the invention.

[0065]

As described in detail above, according to the present invention, it is possible to prevent unauthorized access due to theft or loss.

[Brief description of drawings]

FIG. 1 is a diagram showing an overall configuration of an access control system according to an embodiment of the present invention.

FIG. 2 is a diagram showing a detailed configuration of a host authentication system according to the embodiment.

FIG. 3 is a view showing an example of basic authentication data according to the same embodiment.

FIG. 4 is an exemplary view showing an example of a used terminal history according to the embodiment.

FIG. 5 is an exemplary view showing an example of terminal access control information according to the embodiment.

FIG. 6 is an exemplary view showing a registration flow of terminal access control information according to the embodiment.

FIG. 7 is an exemplary view showing an example of a used terminal history screen according to the embodiment.

FIG. 8 is an exemplary view showing an example of an access control information registration screen according to the embodiment.

FIG. 9 is an exemplary view showing a timing chart of access control according to the embodiment.

FIG. 10 is an exemplary flowchart showing an authentication process in the host authentication system according to the embodiment.

FIG. 11 is a view showing a flowchart of authentication response processing according to the same embodiment.

[Explanation of symbols] 1 ... Mobile terminal 2 ... Terminal control system 3 ... Host authentication system 4 ... Management console terminal 5, 6, 7, 9 ... Communication line 8 ... Host computer 11 ... Customer information file storage device 12 ... Application program storage device 31 ... Communication control device 32 ... Processor 33 ... Basic authentication data storage device 34. Used terminal history storage device 35 ... Terminal access control information storage device 36 ... Application data storage device 37, 41 ... Program storage device 42 ... Access control information registration means 43 ... Display device 44 ... Input device

Continued front page    (72) Inventor Yasuhisa Yada             1-13-1 Yurakucho, Chiyoda-ku, Tokyo             Issei Life Insurance Company F-term (reference) 5B017 AA07 BA06 CA14                 5B085 AA08 AE02 AE23 BE01 BE03                       BG01 BG07 CA02 CA04

Claims (9)

[Claims] 1. Basic authentication processing means for collating user identification information received from a terminal with user identification information stored in a first storage device in advance to determine whether authentication is possible, and terminal identification received from the terminal. An access control system comprising: information and access control means for collating access control information stored in a second storage device in advance to determine whether access is restricted to the terminal. 2. The access management means, when determining that access is restricted, stores the data including a command to erase at least one of the data and the program stored in the third storage device of the terminal. The access control system according to claim 1, wherein the access control system transmits to the terminal. 3. The terminal newly used by comparing the terminal identification information received from the terminal with the used terminal history stored in the fourth storage device to determine whether the terminal is a newly used terminal. The access according to claim 1, further comprising: used terminal history management means for storing the terminal identification information in the fourth storage device as a used terminal history in association with the user identification information received from the terminal when it is determined that Control system. 4. The access control system according to claim 3, wherein the used terminal history management means stores the use start date and time of the terminal as a used terminal history in a fourth storage device in association with the terminal identification information. 5. The used terminal history stored in the fourth storage device is displayed on a display device to allow an administrator to select a terminal to be subjected to access control, and the terminal identification information of the terminal selected by the administrator is used. The access control system according to claim 3, further comprising an access control information registration unit that associates access control information including the presence or absence of access control with the second storage device in association with each other. 6. The access control information comprises presence / absence of access restriction, access restriction period, and reason information indicating a reason for the access restriction, and the access management means, if the presence / absence of the access restriction exists, the access restriction. The period and the current date and time are compared with each other. If the current date and time corresponds to the access restriction period, a determination result indicating that access is restricted is generated. If the reason information is the first reason information, When data including a command to erase at least one of the data and the program stored in the third storage device of the terminal is transmitted to the terminal, and the reason information is the second reason information, the third information of the terminal is transmitted. 6. The access control system according to claim 1, wherein data not including a command to erase at least one of the data and the program stored in the storage device is transmitted to the terminal. Stem. 7. The access control system according to claim 1, wherein the terminal is a mobile terminal. 8. The user identification information received from the terminal and the user identification information stored in advance in the first storage device are compared to determine whether or not the authentication is possible, and the terminal identification information received from the terminal and the first An access control method of collating the access control information stored in the second storage device to determine whether access is restricted to the terminal. 9. A computer receives basic authentication processing means for collating user identification information received from a terminal with user identification information stored in advance in a first storage device to determine whether authentication is possible, and receiving from a terminal. An access control program for causing the terminal identification information to collate with the access control information stored in the second storage device in advance to function as an access management unit that determines whether access is restricted to the terminal.