JP5295320B2 - Information processing apparatus and method - Google Patents

Description

  The present invention relates to authentication in web services.

  2. Description of the Related Art Conventionally, in many information processing services provided on websites or the like, a user who uses the service is required to register a member with registration of various information such as age, sex, and e-mail address. Conventionally, user authentication is performed using a password such as a user ID and a password (hereinafter collectively referred to as “password”).

JP 2009-93273 A

  By the way, a registered member who is a registered member of a service informs the other person who is not a member that he / she wants to see the photos uploaded to the member's website for that service. You may want to use it.

  However, in the past, there was a problem in that in many cases, the other party would be required to register for membership in the same way as in this case, and the registration would be inconvenient and could be avoided. In such a case, the convenience of the registered member and the other party is impaired, and business opportunities such as promotion of use and advertisement display are lost for the website operator.

  In particular, the conventional authentication requires the user to remember the ID and password, and as in recent years, one person has already registered and used several services, and the burden of managing several IDs and passwords has increased. In this situation, psychological resistance is even greater for new member registration.

  In addition, personal authentication using cryptographic techniques such as public key cryptography is also possible, but it requires a server that performs key management and certificate management, etc. There was also a limit that the vulnerability to the risk of key leakage remained unchanged.

  As another authentication technique, there is a proposal for recording user behavior history data and authenticating the user by correctly answering questions related to the contents (for example, see Patent Document 1), but the burden of acquiring and managing the behavior history data in the system In addition, privacy concerns have also been a problem at the time of authentication in that some of the user's behavior is disclosed to the subject or unknown subject.

  In view of the above problems, an object of the present invention is to allow other users to easily use a web service by simple authentication by a user.

  Based on the above object, one aspect (1) of the present invention provides a second service from a first user who provides a web service to a terminal and uses the web service using a first terminal. An information processing apparatus that accepts an authentication result for a second user who intends to use the web service using the second service, and receives an access for using the web service from a second terminal used by the second user Request transmitting means for accepting a request for authentication for the access or designation of attribute information from the first terminal and transmitting a request based on the designation to the second terminal of the access source A response transmission means for receiving a response content for the transmitted request from the second terminal and transmitting the response content to the first terminal; and for the transmitted response content An authentication result receiving means for receiving an authentication result by the first user from the first terminal; and a service providing means for providing the web service to the second terminal based on the received authentication result. It is characterized by having.

  According to another aspect (6) of the present invention, the above aspect is captured in a method category, and a computer provides a web service to a terminal and uses the web service using a first terminal. An information processing method for accepting an authentication result for a second user who intends to use the web service from a first user using a second terminal, wherein access for using the web service is performed by the second user When receiving from the second terminal used by the user of the user, a request for authentication for the access or specification of attribute information is received from the first terminal, and a request based on the specification is received from the first terminal of the access source. Request transmission processing to be transmitted to the second terminal, and response transmission to receive the content of the response to the transmitted request from the second terminal and transmit to the first terminal And authentication result acceptance processing for accepting an authentication result by the first user for the transmitted response content from the first terminal, and the web to the second terminal based on the accepted authentication result A service execution process for providing a service is executed by a computer.

  In this way, for the second user who intends to newly use the web service through the web service device, the question and the attribute information of the second user who should have a correct response as expected if the person himself / herself is sent to the web The first user who already uses the service designates the second user to request it, and provides the service through simple authentication based on the response to it. Can be used. In addition to avoiding the risk of password leakage, an arbitrary security level can be realized by controlling the first user to change the content and number of information requested according to the situation and the other party.

  According to another aspect (2) of the present invention, in any one of the above aspects, when the service providing unit is based on the authentication result received from the first terminal, the web service is based on a predetermined restriction. It is characterized by providing.

  In this way, when using with simple authentication by an existing first user, the web service provided to the first user is restricted such as the browsing range and writing restrictions, and the use of the web service for a predetermined period of time becomes unavailable. By providing it, it is possible to limit non-member behavior within the service to a range according to non-strict authentication accuracy and maintain information security.

  According to another aspect (3) of the present invention, in any one of the aspects described above, an operation for inviting an arbitrary transmission destination is performed from the first user using the web service via the first terminal. Invitation accepting means for accepting and invitation sending means for sending invitation information based on the accepted operation of the invitation to the transmission destination, the request transmitting means for accessing based on the information of the sent invitation A request based on the designation received from the first terminal on which the invitation operation is performed, which is requested from the second terminal when the invitation or the attribute information is requested for authentication for the access when received from the second terminal. Is transmitted to the second terminal as the access source.

  In this way, by sending the invitation information to an arbitrary destination based on the operation from the existing first user, and accepting the designation of the question or the like for performing the authentication based on the information from the invitation side terminal, An existing user can flexibly utilize a web service for an arbitrary use such as showing an image to an arbitrary partner such as a friend, instead of being responsible for authentication.

  According to another aspect (4) of the present invention, in any one of the above aspects, the apparatus includes an identification information storage unit that stores identification information for identifying the invitation, and the invitation transmission unit transmits the invitation to the transmission destination. Including the identification information in the information, wherein the request transmitting means transmits the identification information related to the invitation information corresponding to the access to the first terminal, and accepts designation of the requested information. Features.

  In this way, identification information such as the name or subject name representing the partner or case of the invitation is included and stored in the invitation information such as the URL to be transmitted to the transmission destination, and transmitted to the first terminal at the time of access by it. To identify the invitation or partner to the existing first user. As a result, the existing first user can easily process a plurality of invitations in parallel, and moreover, it becomes easy to request appropriate information according to the person to be authenticated and the case, and the authentication accuracy can be improved.

  According to another aspect (5) of the present invention, in any one of the aspects described above, the request transmission unit may include, as an option of information requested for authentication for the access, terminal location information regarding the terminal that is the access source. It is characterized by accepting designation.

  In this way, by making it possible to specify the location information of the access source as an option of information required for authentication, anyone can usually know geographical information such as the residence, work place, and place of stay of acquaintances and friends. Therefore, it is possible to realize objective and reliable authentication while omitting the trouble of inputting a question sentence corresponding to the other party.

  Each of the above aspects can also be understood as other categories (methods, programs, systems, etc.) that are not specified. For the method and program categories, the “means” indicated in the device category is used as the “processing”. "Or" step ". In addition, the execution order of processes and steps is not limited to that specified directly in the present application, and can be changed by changing the process order, executing some processes all at once or partly at any time. Furthermore, in the category of methods and programs, computers such as servers and terminals that execute individual processes and steps may be common, or may differ from process to process or from timing to timing. In addition, the present invention includes more specific aspects described later.

  According to the present invention, it is possible to allow other users to easily use a web service by simple authentication by a user.

The functional block diagram which shows a structure about embodiment of this invention. The figure which shows the example of data in embodiment of this invention. The flowchart which shows the process sequence in embodiment of this invention. The figure which shows the example of a screen display in embodiment of this invention (information of an invitation). The figure which shows the example of a screen display in embodiment of this invention (selection of friend authentication). The figure which shows the example of a screen display in embodiment of this invention (designation of information). The figure which shows the example of a screen display in embodiment of this invention (request of information). The figure which shows the example of a screen display in embodiment of this invention (transmission transmission).

  Next, a mode for carrying out the present invention (referred to as “embodiment”) will be illustrated along the drawings. In addition, the assumptions common to the contents already described in the background art and problems are omitted as appropriate.

[1. Constitution〕
In the present embodiment, as shown in FIG. 1 (configuration example), a terminal T (T1, T2, etc.) is used as a server system (also simply referred to as “server”) via a communication network N such as the Internet or a mobile phone network. The present invention relates to an information processing apparatus (hereinafter also referred to as “this apparatus 1” or “this apparatus”) that provides a web service. In particular, the apparatus 1 uses a second terminal to obtain the web service from a first user A (for example, “Mr. A”) who uses the web service using the first terminal T1. An authentication result by authentication (also referred to as “friend authentication”) for a second user B (hereinafter referred to as “Mr. B”) to be used is received.

  Here, it is considered that Mr. A is a registered member who has registered as a member of the web service, and authenticates Mr. B such as an acquaintance, so that the user can use the web service as a guest. Therefore, the first terminal T1 used by Mr. A is hereinafter also referred to as “member terminal T1”, and the second terminal T2 used by the authenticated user such as the terminal used by B is also referred to as “guest terminal T2”. However, membership registration as described above is not essential, and the present invention can be applied to, for example, an upload service for sending and receiving files such as images that does not require registration.

  By the way, the present apparatus 1 has at least an arithmetic control unit 6 such as a CPU, a storage device 7 such as a main memory and an auxiliary storage device, and a communication means 8 (communication gateway device, mobile communication) with a communication network N as a computer configuration. A communication circuit with a network, a wireless LAN adapter, and the like. The terminal T is an information processing terminal such as a smartphone, a mobile phone terminal, or a personal computer. Although not shown, in addition to the computer configuration as described above, a liquid crystal display panel, a touch panel, a push button, a keyboard, a mouse, and the like are provided. It has functions such as a used input / output unit and a browser for displaying a web page, and there are actually many according to the number of users regardless of the schematic FIG.

  Further, in the present apparatus 1, elements (10, 20, etc.) such as each means shown in FIG. 1 are realized by a predetermined computer program stored (installed) in the storage device 7 controlling the arithmetic control unit 6. . Among these elements, the information storage means can be realized in any data format such as a file on the storage device 7, or may be remote storage by network computing (cloud). The storage means may include not only a data storage area but also functions such as data input / output and management. In addition, the unit of the storage means shown in this application is for convenience of explanation, and the configuration can be divided or integrated as appropriate, and the processing data and processing results of each means are stored in addition to the explicit storage means. A storage means is used as appropriate.

  The specific storage contents of the storage means will be described later. Correspondences between elements in the data examples shown in FIGS. 2 (1) and 2 (2) are indicated by broken arrows or the like.

  Further, the arrows in the drawings such as FIG. 1 indicate the main direction of the flow of data and control, and do not deny other flows or imply a limitation of the direction. For example, when data is acquired in a certain direction, a prior data request and a subsequent acknowledge (ACK) are transmitted in the reverse direction. In addition, each means other than the storage means is a processing means for realizing and executing the functions and operations of information processing as described below, but these are functional units arranged for explanation, and actual hardware It doesn't matter if it matches elements or software modules.

[2. Action and effect)
A processing procedure in the present embodiment configured as described above is shown in the flowchart of FIG. As a prerequisite for the situation setting, suppose that Mr. A who is a registered member of a web service wants to show a picture of the alumni association held in Tokyo the other day to Mr. B, an alumni in Ehime. In the present embodiment, Mr. A who is a registered member can send invitation information via the apparatus 1 to any other party such as Mr. B who wants to use the web service with friend authentication.

[2-1. (Invitation accepted)
Therefore, Mr. A wanted to invite Mr. B after uploading a picture he wanted to show to the XX photo sharing service as a part of the web service. In this case, the invitation accepting means 10 of the apparatus 1 accepts an invitation operation for an arbitrary transmission destination (in this case, Mr. B) from the Mr. A who uses the web service via the member terminal T1 (step S1). S1).

  In order to specify the destination of the invitation to the other party, such as Mr. B, in the invitation operation, for example, the email address or instant messenger ID of Mr. B is registered as the contact information of an acquaintance in the address book service on the web service In such a case, such information is stored in, for example, the friend storage means 15 in the form of friend registration data illustrated in FIG. 2 (1), and can be selected therefrom. In addition, Mr. B's e-mail address may be newly entered.

[2-2. Send invitation
And the invitation transmission means 20 of this apparatus 1 transmits the information of the invitation based on the operation of the invitation received as mentioned above to Mr. B's e-mail address which is a transmission destination (step S2). As the invitation information, for example, an e-mail including a description that the invitation is from Mr. A, a URL for accessing the invited web service, and the like can be considered (for example, FIG. 4).

  In addition, the present apparatus 1 includes an identification information storage unit 25 that stores identification information for identifying an invitation, and the invitation transmission unit 20 determines different identification information for each invitation item and includes it in the invitation information transmitted to the transmission destination. At the same time, it is stored in the identification information storage means 25. The specific content of the identification information is free, but the character string processed by combining the date and time of the invitation operation, email address or instant messenger ID as the destination, hash calculation, encryption, etc. Or any case number for identifying the invitation item.

  In the example of FIG. 2 (2), a registered member A (user ID “A123”) has an e-mail address (“b-san • @ isp1 ••” in the friend registration data (FIG. 2 (1)). -) Includes invitation data representing the invitation item that sent the invitation.The invitation data of this invitation item includes an invitation ID (for example, "A123-to-x59874") as a character string as identification information. And the project name designated by the user (for example, “alumni association photo”).

  In addition, it is free to include the identification information as described above in the invitation information. However, as shown in the example of FIG. 4, it can be included in the body of the email as in the case name “Alumni Association Photo” or accessed in the email. If you include an argument (... /? A123-to-x59874) in the destination URL, the invited second user (Mr. B, etc.) can understand the requirements, and input screens when accessing. For this reason, it is possible to save the trouble of copying the identification information such as a character string from the screen and pasting it in the input field, or making a note on paper and manually inputting it.

[2-3. (Access and friend authentication start)
Including the case where the invitation is not made as described above, an access for using the web service, that is, an access request is issued from the guest terminal T2 used by the second user who is a user who intends to use the web service from now on. Is received (step S3), the request transmission means 30 of the apparatus 1 accepts designation of information required for authentication for the access from the member terminal T1 (step S7), and accesses the request based on the designation. It transmits to the original guest terminal T2 (step S8). The requested information may be a question based on an arbitrary sentence or a fixed sentence, or attribute information of the second user.

  The specific processing procedure for starting the friend authentication as described above is also free. For example, when the access request receiving means 27 receives an access from the guest terminal T2, that is, an access request (step S3), the access is accepted. It is determined from the cookie information of the terminal that the terminal is not logged in or authenticated. Then, for such a terminal, the WEB page generation / transmission means 28 generates a WEB page for selecting login, new registration or friend authentication and transmits it to the guest terminal T2, as illustrated in FIG. (Step S4).

  Then, when the friend authentication request receiving means 29 receives a selection operation such as a button operation on the WEB page (step S5) and detects that the friend authentication is selected by operating the "friend authentication" button B5, in particular. (Step S6: “YES”), the friend authentication is started by taking over the processing of access from the guest terminal T2 to the request transmission means 30 (after Step S7). Note that the operation and configuration corresponding to the case of selecting “login” or “new registration” in FIG.

[2-4. (Specify information and send request)
The processing will be described below by taking as an example the access from Mr. B who received the invitation from Mr. A. That is, when an access based on the transmitted invitation information is received from the guest terminal T2 used by Mr. B (step S3), the request transmission means 30 is a member on the side where the invitation operation corresponding to the access is performed. For example, after identifying the terminal T1 from the invitation data (such as the “user ID” field in FIG. 2 (2)), the member terminal T1 asks B to authenticate the access or B's attribute information. (May be specified by the attribute information of Mr. A or other third party) (step S7), and transmits a request based on the specification to the guest terminal T2 that is the access source (step S8).

  In particular, in the present embodiment, when receiving the designation of requested information from the member terminal T1 as described above, the request transmission means 30 transmits identification information related to the invitation information corresponding to the access to the member terminal T1. The specification of information required for authentication for the access is accepted. FIG. 6 is an example of a screen that accepts designation of information requested for authentication. As identification information related to the invitation information, a character string “Alumni Photo” input by Mr. A is displayed as the project name. Therefore, even if Mr. A sends invitations to a plurality of people in various cases, he can grasp the requirement for this access from Mr. B.

  Further, regarding the above-mentioned question or the specification of Mr. B's attribute information (for example, FIG. 4), the request transmission means 30 uses the terminal location related to the guest terminal T2 as the access source as an option of information required for authentication for access. Information designation is accepted (for example, “location confirmation” button B6 on the screen of FIG. 6).

  Of course, it is possible to request other information by operating the “Create Question” button B16 on the screen of FIG. 6 and inputting a free text of the question text, but here, Mr. B should be in Ehime. Assume that Mr. A who knows in advance operates the “location confirmation” button B6 on the screen of FIG. 6 in order to specify terminal position information which is Mr. B's attribute information as requested information. A request based on this designation is transmitted by the request transmission means 30 to the guest terminal T2 as a screen for requesting information (for example, FIG. 7).

[2-5. Response sending and authentication)
In the screen example of FIG. 7, when Mr. B operates the “Send GPS position” button B7 as a response to the information request, the guest terminal T2, which is a smartphone or a mobile phone terminal, stores the terminal position information measured by GPS. The response transmission means 40 of the apparatus 1 transmits the response content to the request transmitted as described above from the guest terminal T2, and transmits or transfers it to the member terminal T1 (step S9).

  The display example of FIG. 8 is for receiving the authentication result based on the response content as described above, and the transferred terminal location information of the guest terminal T2 is within Ehime Prefecture. Is shown. Note that the terminal location information is not limited to that based on GPS, but may be terminal location information measured based on location information of a wireless LAN base station, a mobile phone base station, an ISP (Internet Service Provider) network facility, or the like.

  And the authentication result reception means 50 receives the authentication result by Mr. A with respect to the transmitted response content from the member terminal T1 (step S10). Here, Mr. A should be in Mr. B in Ehime Prefecture. I have knowledge. Therefore, since the display content of FIG. 8 is consistent with this knowledge, Mr. A is convinced that Mr. B is authentic. Therefore, by operating the “authenticate” button B8 in FIG. 8, an authentication result indicating that the authentication is OK is input, and the authentication result receiving means 50 receives the authentication result (step S10).

  It is also possible to respond by re-questioning from the screen of FIG. That is, the request transmitting means 30 or the authentication result accepting means 50 or other means responds to a predetermined re-question request such as an operation of the “re-question” button B9 in FIG. Then, if other questions are received and transmitted to the guest terminal T2, the first user, Mr. A, adjusts the security level according to the number of questions according to the situation, If you are not sure, you can re-question carefully and make sure security without over-reaching.

  In this case, based on the authentication result received by the authentication result receiving unit 50, that is, because the authentication is OK (step S11: “YES”), the service providing unit 60 provides a web service to the guest terminal T2 (step S12). ). Thereby, Mr. B who is the user of the guest terminal T2 can browse the photos of the alumni association uploaded by Mr. A, as Mr. A intended.

[2-6. (Restriction of usage range)
In addition, a restriction | limiting can be provided in utilization of the said web service based on the above friend authentication. Specifically, the service providing means 60 provides the web service to the guest terminal T2 within a predetermined limit when based on the authentication result received from the member terminal T1, that is, the result of friend authentication. Restrictions can be set freely such as restrictions on the range of access such as images and directories that can be browsed, time restrictions such as being unusable within a predetermined time (eg, several hours, several days, etc.) after authentication.

[3. effect〕
As described above, a question that should be the correct response as expected to the second user (for example, Mr. B) who intends to newly use the web service through the device 1 which is a web service device. The attribute information of the second user is designated by the first user (for example, Mr. A) who already uses the web service (for example, step S7, FIG. 6) and requests the second user (for example, step S8). FIG. 7). Then, the service is provided (for example, step S12) through simple authentication (for example, step S10, S11) through a response (for example, step S9, FIG. 8).

  Thereby, it becomes possible to make others easily use the web service with a simple configuration. In addition to avoiding the risk of password leakage, an arbitrary security level can be realized by controlling the first user to change the content and number of information requested according to the situation and the other party. Note that the configuration of the key management server, certificate management server, and the like is not required as compared with other authentication methods using a public key encryption method, and the system burden can be reduced.

  In particular, in the present embodiment, as described above, based on an operation from an existing first user (for example, Mr. A) (for example, Step S1), information on invitation to an arbitrary destination (for example, Mr. B's e-mail address) (For example, step S2. FIG. 4), and by accepting designation of a question or the like for authentication based on it from the inviting terminal (for example, the member terminal T1) (for example, step S7, FIG. 6), the existing user (For example, Mr. A), instead of having the responsibility of authenticating himself / herself, the web service can be flexibly used for arbitrary purposes such as showing an image to an arbitrary partner (for example, Mr. B) such as a friend.

  Further, in the present embodiment, as described above, identification information such as a name or a subject name representing an invitation partner or a case is included in the invitation information such as a URL transmitted to the transmission destination (for example, FIG. 4) and stored ( For example, FIG. 2 (2)) is transmitted to the first terminal at the time of access (for example, FIG. 6), and the existing first user (for example, Mr. A) is identified by the invitation or the other party. As a result, the existing first user can easily process a plurality of invitations in parallel, and moreover, it becomes easy to request appropriate information according to the person to be authenticated and the case, and the authentication accuracy can be improved.

  Furthermore, in the present embodiment, as described above, by making it possible to specify the terminal location information of the access source as an option of information required for authentication (for example, FIG. 6), the residence or work place of an acquaintance or friend Since everyone knows geographical information such as where to stay, it is possible to achieve objective and highly reliable authentication while omitting the trouble of inputting a question sentence according to the other party.

  In addition, in the present embodiment, as described above, in the case of using simple authentication by an existing first user (for example, Mr. A), the web service provided to the first user (for example, Mr. A) is used. By restricting the range of viewing, writing, and restrictions such as being unavailable for a certain period of time, the behavior of non-members (for example, Mr. B) within the service is limited to a range that conforms to non-strict authentication accuracy. Information security can be maintained.

[4. Other embodiments]
In addition, the said embodiment is only an illustration and this invention includes what is illustrated below and other embodiment other than that. For example, the configuration diagrams, data diagrams, flowcharts, and the like in the present application are merely examples, and the presence / absence of each element, the order of the arrangement and processing execution, and the specific contents can be changed as appropriate. As an example, the apparatus 1 may be a dedicated authentication server. In this case, as a service providing means for providing a web service to the first terminal or the second terminal, data or a signal permitting the service provision is passed to a device such as another server that provides the web service. You may implement | achieve as a means to provide a web service to arbitrary terminals. Further, the configuration is not limited to this, and a configuration in which each unit is realized by an independent device is also common.

  In addition, the configuration of the present invention can be flexibly changed by, for example, realizing each means shown in the above embodiment by calling an external platform or the like with an API (application program interface) or network computing (so-called cloud). it can. Furthermore, each element such as means relating to the present invention may be realized by other information processing mechanisms such as a physical electronic circuit as well as a computer control unit.

1. Information processing device (this device)
6 Arithmetic Control Unit 7 Storage Device 8 Communication Unit 10 Invite Accepting Unit 15 Friend Storage Unit 20 Invite Transmitting Unit 25 Identification Information Storage Unit 27 Access Request Receiving Unit 28 Web Page Generation Transmitting Unit 29 Friend Authentication Request Receiving Unit 30 Request Transmitting Unit 40 Response Transmission means 50 Authentication result acceptance means 60 Service providing means B5 to B9 Button N Communication network T Terminal T1 First terminal (member terminal)
T2 Second terminal (guest terminal)

Claims (6)

From a first user who provides a web service to a terminal and uses the web service using a first terminal, a second user who intends to use the web service using a second terminal An information processing apparatus that accepts an authentication result,
When an access for using the web service is received from a second terminal used by the second user, a request for authentication for the access or specification of attribute information is accepted from the first terminal. Request transmission means for transmitting a request based on the designation to the second terminal of the access source;
A response transmission means for receiving a response content to the transmitted request from the second terminal and transmitting the response content to the first terminal;
An authentication result receiving means for receiving an authentication result by the first user for the transmitted response content from the first terminal;
Service providing means for providing the web service to the second terminal based on the received authentication result;
An information processing apparatus comprising:   The information processing apparatus according to claim 1, wherein the service providing unit provides the web service within a predetermined range based on the authentication result received from the first terminal. Via the first terminal from the first user using the web service, an invitation receiving means for receiving an invitation operation for an arbitrary destination;
Invitation sending means for sending invitation information based on the accepted operation of the invitation to the destination;
With
When the request transmission means receives an access based on the transmitted invitation information from the second terminal, the request transmission means specifies the question or attribute information required for authentication for the access. The information processing apparatus according to claim 1, wherein the information processing apparatus receives the received request from the first terminal and transmits a request based on the designation to the second terminal that is an access source. Comprising identification information storage means for storing identification information for identifying the invitation,
The invitation transmission means includes the identification information in the invitation information to be transmitted to the transmission destination,
The said request transmission means transmits the said identification information which concerns on the information of the said invitation corresponding to the said access with respect to a said 1st terminal, and receives designation | designated of the said information requested | required. Information processing device.   5. The request transmission unit accepts designation of terminal location information related to the access source terminal as an option of information requested for authentication for the access. 6. The information processing apparatus described in 1. A computer provides a web service to a terminal and a second user who intends to use the web service from a first user who uses the web service using a first terminal. An information processing method for receiving an authentication result for a user,
When an access for using the web service is received from a second terminal used by the second user, a request for authentication for the access or specification of attribute information is accepted from the first terminal. Request transmission processing for transmitting a request based on the designation to the second terminal of the access source;
A response transmission process for receiving the response content to the transmitted request from the second terminal and transmitting it to the first terminal;
An authentication result receiving process for receiving an authentication result by the first user for the transmitted response content from the first terminal;
A service providing process for providing the web service to the second terminal based on the received authentication result;
An information processing method characterized in that a computer executes.

Images