JP2011159189A - Communication system, portal server, authentication server, service server, communication method, and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a communication system including a portal server which requests authentication to an authentication server in response to a request from the user of a user terminal, and requests service processing to a service server to present menu information to the user terminal. <P>SOLUTION: The portal server 12 includes: an authentication type selection screen generation part 1211 which generates an authentication type selection screen; an authentication request control part 1212 which adds information of an authentication type selected by a user to the authentication request of the user, and then transmits the authentication request to the authentication server; a menu information request control part 1213 which requests menu information indicating available services, to the service server; and a menu screen generation part 1214 which generates the menu screen of menu information available to the user on the basis of at least one of information of information types of services based on the attribute of the user and information types of services based on the authentication type, which are provided by the service server. <P>COPYRIGHT: (C)2011,JPO&INPIT

Description

  The present invention relates to a technology capable of selecting an output item such as a service menu for a user in a user terminal of a portal system, and in particular, communication that enables service provision for each attribute information or authentication type of a user. The present invention relates to a system, a portal server, an authentication server, a service server, and a communication method and program thereof.

  In recent years, portal systems that can handle various services such as e-mail, bulletin boards, messages, and contact of specific services on a user terminal (for example, a personal computer, a portable terminal, etc.) have attracted attention. ing.

  For example, a portal system user can use a user terminal installed in his / her home to pay for medical expenses, receive medical care, receive care insurance, and use citizens such as libraries. It is possible to centrally grasp the usage status of services, information on the qualifications of other available services, and the like.

  In such a conventional portal system, a Web application or the like is used for communication using a service via a user terminal. As an example of a portal system, when available services are different for each user, the available services are specified, and menu information indicating a list of available services (hereinafter also simply referred to as “menu information”) User access right information indicating whether or not the user can use the service and the group access indicating whether or not the group to which the user belongs can be used for the service. A technique for presenting menu information to the user terminal based on the right information is known (see, for example, Patent Document 1).

  For example, as shown in FIG. 10, a schematic diagram of an example of a communication system that presents menu information indicating a list of services available to each user via a communication network to the user terminal 11 is shown. In general, the communication system 1 configuring the portal system includes a portal server 12, an authentication server 13, and a service server 14. In response to a request from the user of the user terminal 11, the portal server 12 issues an authentication request to the authentication server 13 and a service processing request to the service server 14 to send menu information to the user terminal 11. To present.

  FIG. 11 shows an outline of a conventional method for presenting menu information indicating a list of services available to each user by the communication system 1.

  The user terminal 11 accesses the portal server 12 (portal access) when obtaining menu information indicating a list of available services (step S101).

  The portal server 12 makes an authentication request for confirming the identity of the user to the authentication server 13 (step S102), and the authentication server 13 generates an authentication screen (step S103) and presents it to the user terminal 11. (Step S104).

  There are multiple authentication methods for confirming the identity of users, such as ID / password authentication and IC card authentication. When more sophisticated authentication is required depending on the information handled by the service, or when simple authentication is sufficient and so on. Therefore, when the portal server 12 makes an authentication request for confirming the identity of the user to the authentication server 13, it can be made via the user terminal 11.

  The authentication server 13 obtains authentication information for confirming the identity of the user from the user terminal 11 (step S105), verifies the authentication information (step S106), and sends an authentication response representing the verification result to the portal server 12. (Step S107). Here, an authentication response representing the verification result can be notified to the user terminal 11.

  When the portal server 12 obtains an authentication response of a verification result indicating that the identity of the user can be confirmed from the authentication server 13, the portal server 12 requests the service server 14 for menu information (step). S108).

  The service server 14 refers to the “access right information table” illustrated in FIG. 12 on the basis of the access right information related to the service registered in advance by the user, and the service information having the access right (indicated by the information type). Service content) is searched (step S109), menu information of various services with access rights is generated (step S110), and a response from the portal server 12 as a menu information response is made (step S111).

  The portal server 12 generates a menu screen according to the menu information obtained from the service server 14 (step S112) and presents it on the user terminal 11 (step S113).

  In this way, the user can acquire menu information of services according to the access right through the communication system 1.

JP 2005-59438 A

  However, in the conventional method shown in FIG. 11, the service server 14 selects the output item only by so-called “access right information” for managing the availability of service on a “per user / per service” basis. Menu information according to information (age, address, etc.) that changes depending on the situation of the user at the time of use could not be flexibly provided.

  More specifically, in the conventional method, since the service server 14 provides the menu information only with the access right information for the service, more advanced authentication is required depending on the information handled by the service, or simple authentication is used. It is difficult to cope with a good case. When you want to make a difference in the services that can be used depending on the authentication type at the time of login, for example, in the case of civic service use and medical consultation status, it is often necessary to specify the user name, so set multiple subnames It is often not possible to make a difference in available services.

  In addition, user attribute information includes information that may change depending on the situation, such as address, age, and work place information. In this way, if you want to make a difference in the services that can be used depending on the conditions of variable users There is.

  Therefore, in the conventional method, the authentication type (ID / password authentication, IC card authentication, etc.) that can be changed every time when logging in, and the attribute of the user (address, age, etc.) that can change depending on the situation of the user at the time of use. If you want to make a difference in the services that can be used by the user, specify the services that can be used only by the access right information that indicates whether the user or the group to which the user belongs can use the service, and present menu information. This causes confusion for the user even if access is denied in the subsequent use of the service.

  An object of the present invention has been made in view of the above-described problems, and provides a communication system, a portal server, an authentication server, and a service that can provide a service for each attribute information and / or authentication type of a user. A server, and a communication method and program thereof are provided.

  The communication system according to the present invention does not select menu information only by so-called “access right information” that manages whether or not a service can be provided “per user and per service”. Menu information is flexibly provided to the user terminal according to attribute information (age, address, etc.) that changes depending on the user's situation. In the communication system of the present invention, the service server indicates whether the user or a group to which the user belongs can be used for the service, and the authentication type (ID / password authentication, IC card authentication) that can be changed at each login. Etc.) for each service, the “user attribute information table” for managing the attribute information for each “user”, and the service provision conditions for “for each attribute information / for each service”. A “service information table” to be managed is held, and usable menu information corresponding to an authentication type and a user attribute is selected and presented.

  That is, the communication system of the present invention makes an authentication request to the authentication server and a service processing request to the service server in response to a request from the user of the user terminal, and sends the menu information to the user terminal. An authentication type selection screen generating means for generating an authentication type selection screen for selecting an authentication type when a user logs in to the communication system. And an authentication request control means for transmitting an authentication request for confirming the identity of the user to the authentication server by adding the authentication type information selected by the user and the corresponding authentication information, and the attribute of the user And / or menu information for requesting the service server for menu information indicating information on services available based on the authentication type. Used by the user based on at least one of the information type of the service based on the attribute of the user and the information type of the service based on the authentication type provided from the service server. Menu screen generating means for generating a menu screen of possible menu information.

  In the communication system of the present invention, the authentication server includes an authentication screen generating unit that generates an authentication screen according to the authentication type selected by the user, and a user from the authentication information input to the authentication screen by the user. Authentication information verification means for verifying whether or not the user is the person.

  Further, in the communication system of the present invention, the service server includes an attribute item corresponding to a user attribute and each attribute item based on a user ID from a user attribute information database holding attribute information for each user. The attribute item and the attribute of each attribute item are specified from user attribute information search means for searching for a value specifying the attribute of the user and a service information database that manages information on the information type of the service for each attribute of the user Based on the value, service information search means for searching for information of information types of services available to the user, and an access right information database for managing the user's access right for each authentication type, by the user Access right information searching means for searching for information of information types of services available to the user based on information of the selected authentication type; Menu information generation that generates menu information in which at least one of the service information type information based on the attribute and the service information type information based on the authentication type is a list of information types available to the user And means.

  Furthermore, the present invention provides a configuration unique to the portal server itself, and the portal server of the present invention makes an authentication request to the authentication server in response to a request from the user of the user terminal, A portal server in a communication system that makes a service processing request to a service server and presents menu information to a user terminal, and an authentication type for selecting an authentication type when the user logs in to the communication system An authentication type selection screen generating means for generating a selection screen and an authentication request for confirming the identity of the user are added to the authentication server selected by the user and the corresponding authentication information is transmitted to the authentication server. Menu information indicating information on services that can be used based on the authentication request control means and the user attributes and / or the authentication type. At least one of menu information request control means for requesting the service server, information of the service information type based on the user attribute provided from the service server, and information type of the service based on the authentication type And a menu screen generating means for generating a menu screen of menu information that can be used by the user.

  Furthermore, the present invention provides a configuration specific to the authentication server itself, and the authentication server of the present invention makes a service processing request to the service server in response to a request from the user of the user terminal. An authentication server in a communication system that accepts an authentication request from a portal server that presents menu information on a user terminal and verifies authentication information from the user, and displays an authentication screen corresponding to the authentication type selected by the user. The authentication screen generating means to generate, and the authentication information verification means to verify whether or not the user is the user from the authentication information input to the authentication screen by the user.

  Furthermore, the present invention provides a configuration specific to the service server itself, and the service server of the present invention is a portal server that makes an authentication request to the authentication server in response to a request from the user of the user terminal. A service server in a communication system that accepts a service processing request from a user terminal and presents menu information to a user terminal, from a user attribute information database that holds attribute information for each user, based on the user ID From the attribute information corresponding to the attribute of the user and a user attribute information search means for searching for a value specifying the attribute of each attribute item, and a service information database for managing information on the information type of service for each attribute of the user, Service information for searching for information types of services that can be used by the user based on attribute items and values specifying the attributes of the attribute items And an access right information database for managing the access right of the user for each authentication type, based on the information of the authentication type selected by the user, the information type of the service available to the user Information that allows the user to use at least one of access right information search means for searching for information, information on the service information type based on the user attribute, and information on the service information type based on the authentication type Menu information generating means for generating menu information as a list of types.

  Furthermore, the communication method of the present invention makes an authentication request to the authentication server in response to a request from the user of the user terminal, a service processing request to the service server, and the menu information to the user terminal. A communication method of a communication system including a portal server presented in the above, wherein the processing procedure of the portal server generates an authentication type selection screen for selecting an authentication type when a user logs in to the communication system. A step of transmitting an authentication request for confirming the identity of the user to the authentication server by adding the authentication type information selected by the user and the corresponding authentication information to the authentication server; and Or requesting the service server for menu information indicating service information available based on the authentication type; and A menu screen of menu information that can be used by the user based on at least one of the information type of the service based on the attribute of the user and the information type of the service based on the authentication type provided from the service server Generating.

  Furthermore, each of the portal server, the authentication server, and the service server of the present invention can be configured as a computer, and the present invention is also characterized as a program for executing each function.

  According to the present invention, the service server adds the item of the authentication type to the access right information table indicating whether the user or the group to which the user belongs can be used for the service, and holds it in the access right information database. Therefore, the portal server can present a menu screen of only available services on the user terminal according to the authentication type at the time of user login.

  Further, according to the present invention, the service server holds a user attribute information table indicating attribute information for each user and a service information table to which an item indicating availability is added according to the user attribute information in the database. As a result, the portal server can present a menu screen of only available services according to the attribute of the user on the user terminal.

It is a block diagram which illustrates the specific function of the portal server in the communication system of one Example by this invention. It is a block diagram which illustrates the specific function of the authentication server in the communication system of one Example by this invention. It is a block diagram which illustrates the specific function of the service server in the communication system of one Example by this invention. FIG. 4 is a flowchart of a method for presenting menu information indicating a list of services available to each user by the communication system according to an embodiment of the present invention. It is a figure which shows the example of an authentication classification selection screen in the communication system of one Example by this invention. It is a figure which shows the example of an authentication screen in the communication system of one Example by this invention. It is a figure which shows the example of a user attribute information table in the communication system of one Example by this invention. It is a figure which shows the example of a service information table in the communication system of one Example by this invention. It is a figure which shows the example of an access right information table in the communication system of one Example by this invention. It is the schematic of the example of a communication system which presents the menu information which shows the service list which can be utilized by each user via a communication network with respect to a user terminal. It is a flowchart of the conventional method which presents the menu information which shows the service list which can be utilized by each user. It is a figure which shows the example of the access right information table in the conventional method which presents the menu information which shows the service list which can be utilized by each user.

  Hereinafter, a communication system, a portal server, an authentication server, a service server, and a communication method and program thereof according to an embodiment of the present invention will be described.

〔System configuration〕
As shown in FIG. 10 described above, the communication system 1 according to an embodiment of the present invention presents menu information indicating a list of services available to each user via a communication network to the user terminal 11. The portal system includes a portal server 12, an authentication server 13, and a service server 14. The portal server 12 sends an authentication request to the authentication server 13 in response to a request from the user of the user terminal 11. At the same time, a service processing request is made to the service server 14 and the menu information is presented to the user terminal 11. Therefore, the same apparatus shown in FIG. 10 will be described with the same reference numerals.

  However, the communication system 1 according to an embodiment of the present invention differs from the conventional method shown in FIG. 11 in that the attribute information (age) changes depending on the user authentication method and the user's situation when using the service. Menu information can be flexibly provided to the user terminal 11 according to the address.

  FIG. 1 is a block diagram illustrating specific functions of a portal server in a communication system according to an embodiment of the present invention. FIG. 2 is a block diagram illustrating specific functions of the authentication server in the communication system according to an embodiment of the present invention. FIG. 3 is a block diagram illustrating functions specific to the service server in the communication system according to an embodiment of the present invention.

[Portal Server]
Referring to FIG. 1, the portal server 12 includes a communication interface 121, a control unit 122, and a storage unit 123. The control unit 122 includes an authentication type selection screen generation unit 1211, an authentication request control unit 1212, a menu information request control unit 1213, and a menu screen generation unit 1214. Note that these functions particularly indicate functions different from the conventional ones, and are not intended to exclude other functions. Further, the portal server 12 can be preferably configured by a computer, and the communication interface 121 can be configured by an arbitrary interface that communicates with an external device. Each function of the control unit 122 is controlled by a central processing unit (CPU). ), A program to be executed by the CPU can be stored in a predetermined area of the storage unit 123. In addition, data necessary for realizing each function can be temporarily or permanently stored in the storage unit 123. Such a storage unit 123 can be appropriately configured by a ROM, RAM, hard disk, or the like inside the computer, or can be configured by using an external storage device (for example, an external hard disk).

  The authentication type selection screen generation unit 1211 confirms that the user is not logged in, and if the user is not logged in, the authentication type (ID / password authentication, IC card authentication) can be changed every time when logging in. Etc.) for generating an authentication type selection screen. Information on the generated authentication type selection screen (FIG. 5) is transmitted to the user terminal 11 via the communication interface 121. Note that the authentication type selection screen generation unit 1211 may be configured to present a screen for requesting confirmation of the authentication type used while the user is logged in.

  The authentication request control unit 1212 transmits an authentication request for confirming the identity of the user via the communication interface 121 to the authentication server 13 with the authentication type information selected by the user and the corresponding authentication information added. It has a function.

  The menu information request control unit 1213 uses this menu to request the service server 14 for menu information indicating service information that can be used based on the user's attribute and / or authentication type via the communication interface 121. It has a function of adding authentication type information and a user ID to the information request and transmitting it to the service server 14.

  Based on at least one of the information type of the service based on the attribute of the user and the information type of the service based on the authentication type provided from the service server 14, the menu screen generation unit 1214 It has a function of generating a menu screen showing a list of available information types.

  Accordingly, the portal server 12 transmits a menu information request to which the authentication type information and the user ID of the correctly authenticated user are added to the service server 14 in response to the request from the user. A menu screen is presented to the user terminal 11 based on the menu information.

[Authentication Server]
Referring to FIG. 2, the authentication server 13 includes a communication interface 131, a control unit 132, a storage unit 133, and an authentication information database 134. The control unit 132 includes an authentication screen generation unit 1321 and an authentication information verification unit 1322. Note that these functions particularly indicate functions different from the conventional ones, and are not intended to exclude other functions. Further, the authentication server 13 can be preferably configured by a computer, the communication interface 131 can be configured by an arbitrary interface that communicates with an external device, and each function of the control unit 132 is controlled by a central processing unit (CPU). ), A program to be executed by the CPU can be stored in a predetermined area of the storage unit 133. In addition, data required for realizing each function can be temporarily or permanently stored in the storage unit 133. Such a storage unit 133 can be appropriately configured by a ROM, RAM, hard disk, or the like inside the computer, or can be configured by using an external storage device (for example, an external hard disk).

  The authentication screen generation unit 1321 has a function of generating an authentication screen according to the authentication type selected by the user. Information on the generated authentication screen (FIG. 6) is transmitted to the user terminal 11 via the communication interface 131.

  The authentication information verification unit 1322 has a function of verifying whether or not the user is the user from the authentication information input on the authentication screen by the user.

[Service Server]
Referring to FIG. 3, the service server 14 includes a communication interface 141, a control unit 142, a storage unit 143, a service information database 144, a user attribute information database 145, and an access right information database 146. The control unit 142 includes a user attribute information search unit 1421, a service information search unit 1422, an access right information search unit 1423, and a menu information generation unit 1424. Note that these functions particularly indicate functions different from the conventional ones, and are not intended to exclude other functions. In addition, the service server 14 can be preferably configured by a computer, the communication interface 141 can be configured by any interface that communicates with an external device, and each function of the control unit 142 is controlled by a central processing unit (CPU). ), A program to be executed by the CPU can be stored in a predetermined area of the storage unit 143. In addition, data necessary for realizing each function can be temporarily or permanently stored in the storage unit 143. Such a storage unit 143 can be appropriately configured by a ROM, RAM, hard disk, or the like inside the computer, or can be configured by using an external storage device (for example, an external hard disk).

  The user attribute information search unit 1421 obtains a user attribute information table from the user attribute information database 145 that stores a user attribute information table (FIG. 7) that holds attribute information for each user, based on the user ID. And obtains an attribute item corresponding to the attribute of the user and a value specifying the attribute of each attribute item.

  The service information search unit 1422 is a value that identifies the attribute item and the attribute of each attribute item from the service information database 144 that stores a service information table (FIG. 8) that manages information on the information type of the service for each user attribute. The service information table is searched based on the service information, and the information type of the service available to the user is acquired.

  The access right information search unit 1423 is based on the authentication type information selected by the user from the access right information database 146 that stores the access right information table (FIG. 9) for managing the access right of the user for each authentication type. In addition, the access right information table is searched based on the user ID and the authentication type, and the information of the information type of the service available to the user is acquired.

  The menu information generation unit 1424 obtains at least one of the information of the service information type based on the user attribute and the information of the service information type based on the authentication type as a list of information types usable by the user. Has a function of generating the menu information.

  Accordingly, the service information database 144, the user attribute information database 145, and the access right information database 146 are respectively a “service information table” (FIG. 8), a “user attribute information table” (FIG. 7), and an “access right information table”. (FIG. 9). The service server 14 can be used by the user by referring to the access right information table, the user attribute information table, and the service information table from the authentication type information and the user attribute information at the time of login of the user. A list of various information types can be specified, and the specified menu information can be generated.

  As shown in FIG. 7, the “user attribute information table” is a table for managing attribute information “for each user”.

  Further, as shown in FIG. 8, the “service information table” manages service provision conditions “per attribute information / per service”, and selects and presents usable menu information according to user attributes. It is a table to do.

  As shown in FIG. 9, the “access right information table” manages whether or not a user or a group to which the user belongs can be used for the service, and can change an authentication type (ID / Password authentication, IC card authentication, etc.) is a table for associating with each service.

  Hereinafter, with reference to FIG. 4, the operation of the communication system according to the present embodiment in which the communication system 1 presents menu information indicating a service list that can be used by each user will be described.

  Note that the user of the communication system 1 has registered the authentication information for each authentication type with the authentication server 13 by operating the user terminal 11, for example, It is assumed that user attribute information (age, gender, address, etc.) necessary for the “attribute information table” (FIG. 7) and “access right information table” (FIG. 9) has been registered together with the access right for each authentication type.

  Since the user of the communication system 1 operates the user terminal 11 and receives various services from the service server 14, the user can use the communication system 1 to obtain menu information indicating a list of available services. Therefore, the portal server 12 is accessed through a browser operation of a Web application prepared in advance (step S1).

  The portal server 12 confirms that the user is not logged in, and if not logged in, generates an authentication type selection screen (step S2). An example of the authentication type selection screen is shown in FIG.

  The portal server 12 transmits an authentication type selection screen to the user terminal 11 (step S3).

  The user terminal 11 transmits information on one authentication type arbitrarily selected by the user among the authentication types presented on the authentication type selection screen to the portal server 12 (step S4).

  The portal server 12 sends an authentication request for confirming the identity of the user to the authentication server 13 with the authentication type information selected by the user and the corresponding authentication information added (step S5).

  The authentication server 13 generates an authentication screen corresponding to the authentication type (step S6). An example of the authentication screen is shown in FIG.

  The authentication server 13 transmits an authentication screen to the user terminal 11 (step S7).

  The user terminal 11 transmits authentication information (for example, ID / password corresponding to the selected authentication type) input on the authentication screen by the user to the authentication server (step S8).

  The authentication server 13 verifies whether or not the user is the user from the received authentication information (step S9). It is assumed that how the authentication server 13 is verified is arbitrary, and the portal server 12 trusts the verification result of the authentication server 13.

  There are a number of authentication methods for confirming the identity of the user, such as ID / password authentication and IC card authentication. When authentication requires more advanced authentication based on information handled by the service, simple authentication can be used. There are good cases. Therefore, when the portal server 12 makes an authentication request for confirming the identity of the user to the authentication server 13, it can be made via the user terminal 11.

  The authentication server 13 transmits the authentication result and the user ID as an authentication response to the portal server 12 (step S10).

  Here, the authentication server 13 obtains authentication information for confirming the identity of the user from the user terminal 11, verifies the authentication information, and notifies the portal server 12 of an authentication response indicating the verification result. Note that authentication information corresponding to the authentication type selected by the person is registered and held in advance in the authentication information database 134 in the authentication server 13. Further, an authentication response representing the verification result can be notified to the user terminal 11.

  When the portal server 12 obtains an authentication response of a verification result indicating that the identity of the user can be confirmed from the authentication server 13, the portal server 12 displays menu information indicating available service information. In order to make a request to 14, the authentication information and the user ID are added to the menu information request and transmitted to the service server 14 (step S11).

  The service server 14 searches the user attribute information table based on the user ID (for example, “A”) from the user attribute information database 145 in the service server 14, and sets the attribute item corresponding to the user attribute. In addition to acquiring the corresponding value, the service information table 144 is searched based on the obtained attribute item and the corresponding value, and information on the information type of the service available to the user is acquired. (Step S12).

  Furthermore, the service server 14 searches the access right information table from the access right information database based on the authentication type information and the user ID, and acquires the information on the information type of the service available to the user (step S13). ).

  Therefore, the service server 14 can acquire both information of the service information type based on the user attribute and information of the service information type based on the authentication type, and at least one of the information of the two information types. Generates menu information that is a list of information types that can be used by the user (eg, AND or OR of information of each information type) (step S14), and requests from the portal server 12 as a menu information response (Step S15).

  The portal server 12 generates a menu screen according to the menu information obtained from the service server 14 (step S16) and presents it on the user terminal 11 (step S17).

  On the presented menu screen, at least one of the two types of information in the menu information generated by the service server 14 is presented to the user terminal 11, for example, according to the examples of FIGS. / "Medical expense payment information" based on the authentication type of the password and "medical consultation status" and / or "care insurance information" based on the user attribute are presented to the user terminal 11.

  Therefore, the menu information that can be used by the user includes the access right information that sets whether the information type can be used according to the authentication type at the time of login of the user, and the attribute of the user. It takes into account.

  In this way, the user can acquire service information based on the authentication type and / or user attribute by the user through the communication system 1 and receive the service information based on the authentication type and / or user attribute. By providing the difference in information, it becomes possible to know whether or not the service can be provided.

  In the above-described embodiments, each server is described as an individual server for convenience of explanation. However, it can be configured by combining, for example, one server as appropriate. In addition, the program describing the processing contents can be distributed by selling, transferring, or lending a portable recording medium such as a DVD or CD-ROM, and such a program can be distributed on a server on a network, for example. Can be distributed by transferring the program from the server to another computer via the network. In addition, a computer that executes such a program can temporarily store, for example, a program recorded on a portable recording medium or a program transferred from a server in its own storage unit. As another embodiment of the program, the computer may directly read the program from a portable recording medium and execute processing according to the program, and each time the program is transferred from the server to the computer. In addition, the processing according to the received program may be executed sequentially. Therefore, the present invention is not limited to the above-described embodiments, and various modifications can be made without departing from the spirit of the present invention.

  The present invention can be applied not only to a portal system, but also to an electronic post office box system that acquires, stores, and provides information on users held by an information holding organization, and can be integrated according to requests from users. This is useful for the purpose of providing services.

DESCRIPTION OF SYMBOLS 1 Communication system 11 User terminal 12 Portal server 13 Authentication server 14 Service server 121 Communication interface 122 Control part 123 Storage part 131 Communication interface 132 Control part 133 Storage part 134 Authentication information database 141 Communication interface 142 Control part 143 Storage part 144 Service information Database 145 User attribute information database 146 Access right information database 1211 Authentication type selection screen generation unit 1212 Authentication request control unit 1213 Menu information request control unit 1214 Menu screen generation unit 1321 Authentication screen generation unit 1322 Authentication information verification unit 1421 User attribute information Search unit 1422 Service information search unit 1423 Access right information search unit 1424 Menu information generation unit

Claims (10)

A communication system including a portal server that makes an authentication request to an authentication server in response to a request from a user of a user terminal, requests a service process to the service server, and presents menu information to the user terminal Because
The portal server
An authentication type selection screen generating means for generating an authentication type selection screen for selecting an authentication type when a user logs in to the communication system;
An authentication request control means for transmitting an authentication request for confirming the identity of the user to the authentication server by adding information of an authentication type selected by the user;
Menu information request control means for requesting the service server menu information indicating service information available based on the user attribute and / or the authentication type;
Menu information that can be used by the user based on at least one of the information type of the service based on the attribute of the user and the information type of the service based on the authentication type provided from the service server. Menu screen generating means for generating a menu screen;
A communication system comprising: The authentication server is
An authentication screen generating means for generating an authentication screen according to the authentication type selected by the user;
An authentication information verification means for verifying whether or not the user is the user from the authentication information entered on the authentication screen by the user;
The communication system according to claim 1, comprising: The service server
User attribute information search for retrieving attribute items corresponding to user attributes and values for identifying the attributes of each attribute item from a user attribute information database holding attribute information for each user based on the user ID Means,
From the service information database that manages the information type information of the service for each attribute of the user, based on the attribute item and the value that specifies the attribute of each attribute item, the information type of the service that can be used by the user Service information search means for searching for information;
Based on the information of the authentication type selected by the user from the access right information database that manages the access right of the user for each authentication type, information on the information type of the service that can be used by the user is searched. Access right information retrieval means;
A menu that generates menu information in which at least one of the information type of the service based on the attribute of the user and the information of the information type of the service based on the authentication type is a list of information types usable by the user. Information generating means;
The communication system according to claim 1, further comprising: In response to a request from a user of a user terminal, an authentication request is made to the authentication server, a service processing request is made to the service server, and the portal server in the communication system presenting menu information to the user terminal There,
An authentication type selection screen generating means for generating an authentication type selection screen for selecting an authentication type when a user logs in to the communication system;
An authentication request control means for transmitting an authentication request for confirming the identity of the user to the authentication server by adding information of an authentication type selected by the user;
Menu information request control means for requesting the service server menu information indicating service information available based on the user attribute and / or the authentication type;
Menu information that can be used by the user based on at least one of the information type of the service based on the attribute of the user and the information type of the service based on the authentication type provided from the service server. Menu screen generating means for generating a menu screen;
A portal server characterized by comprising: In response to a request from the user of the user terminal, a service processing request is made to the service server, and an authentication request is received from the portal server that presents menu information to the user terminal, and the authentication information from the user is verified. An authentication server in a communication system that
An authentication screen generating means for generating an authentication screen according to the authentication type selected by the user;
An authentication information verification means for verifying whether or not the user is the user from the authentication information entered on the authentication screen by the user;
An authentication server comprising: In response to a request from a user of a user terminal, a service server in a communication system that accepts a service processing request from a portal server that makes an authentication request to an authentication server and presents menu information to the user terminal,
User attribute information search for retrieving attribute items corresponding to user attributes and values for identifying the attributes of each attribute item from a user attribute information database holding attribute information for each user based on the user ID Means,
From the service information database that manages the information type information of the service for each attribute of the user, based on the attribute item and the value that specifies the attribute of each attribute item, the information type of the service that can be used by the user Service information search means for searching for information;
Based on the information of the authentication type selected by the user from the access right information database that manages the access right of the user for each authentication type, information on the information type of the service that can be used by the user is searched. Access right information retrieval means;
A menu that generates menu information in which at least one of the information type of the service based on the attribute of the user and the information of the information type of the service based on the authentication type is a list of information types usable by the user. Information generating means;
A service server comprising: A communication system including a portal server that makes an authentication request to an authentication server in response to a request from a user of a user terminal, requests a service process to the service server, and presents menu information to the user terminal Communication method,
The processing procedure of the portal server is as follows:
Generating an authentication type selection screen for causing the user to select an authentication type when logging in to the communication system;
Transmitting an authentication request for confirming the identity of the user to the authentication server with the information of the authentication type selected by the user;
Requesting the service server for menu information indicating information on services available based on the user attributes and / or the authentication type;
Menu information that can be used by the user based on at least one of the information type of the service based on the attribute of the user and the information type of the service based on the authentication type provided from the service server. Creating a menu screen;
A communication method comprising: As a portal server in a communication system that makes an authentication request to the authentication server in response to a request from the user of the user terminal, requests a service process to the service server, and presents menu information to the user terminal On the computer you are configuring,
Generating an authentication type selection screen for causing the user to select an authentication type when logging in to the communication system;
Transmitting an authentication request for confirming the identity of the user to the authentication server with the information of the authentication type selected by the user;
Requesting the service server for menu information indicating information on services available based on the user attributes and / or the authentication type;
Menu information that can be used by the user based on at least one of the information type of the service based on the attribute of the user and the information type of the service based on the authentication type provided from the service server. Creating a menu screen;
A program for running In response to a request from the user of the user terminal, a service processing request is made to the service server, and an authentication request is received from the portal server that presents menu information to the user terminal, and the authentication information from the user is verified. A computer configured as an authentication server in a communication system
Generating an authentication screen according to the authentication type selected by the user;
Verifying whether the user is the user from the authentication information entered on the authentication screen by the user;
A program for running In response to a request from a user of a user terminal, a computer configured as a service server in a communication system that accepts a service processing request from a portal server that makes an authentication request to the authentication server and presents menu information to the user terminal ,
Searching a user attribute information database holding attribute information for each user based on a user ID for an attribute item corresponding to the user attribute and a value specifying the attribute of each attribute item;
Information on information types of services that can be used by the user based on the attribute items and values that specify the attributes of the attribute items from the service information database that manages information on the information type of the service for each user attribute. Searching for
A step of retrieving information on information types of services available to the user from an access right information database that manages the access rights of the users for each authentication type, based on the information on the authentication type selected by the user. When,
A step of generating menu information in which at least one of information on a service information type based on a user attribute and information on a service information type based on an authentication type is used as a list of information types usable by the user When,
A program for running

Images