INFORMATION ACCESS CONTROL DEVICE, METHOD, AND PROGRAM

PROBLEM TO BE SOLVED: To perform appropriate data access control without increasing operational load among devices different in management information architecture.SOLUTION: An information access control device according to an embodiment comprises: access control rule management means for managing a...

Full description

Saved in:
Bibliographic Details
Main Authors MAEDA YUJI, YOSHIDA YOSHIHIRO, MIYAJIMA ASAMI, IKEDA YOSHIO, MORIMURA KAZUO
Format Patent
LanguageEnglish
Japanese
Published 01.09.2016
Subjects
CALCULATING
COMPUTING
COUNTING
DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FORADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORYOR FORECASTING PURPOSES
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE,COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTINGPURPOSES, NOT OTHERWISE PROVIDED FOR
Online AccessGet full text

Cover

More Information
Summary:PROBLEM TO BE SOLVED: To perform appropriate data access control without increasing operational load among devices different in management information architecture.SOLUTION: An information access control device according to an embodiment comprises: access control rule management means for managing an access control rule in which a condition of whether an information acquisition request for information managed by a first information system is permitted or not is described; information management means for managing second identification information included in the request and indicating a second user or an attribute thereof imparted according to architecture of a second information system, and a character string for identifying the second identification information in association with each other; acquisition means for, on the basis of the character string, acquiring the second identification information included in the information acquisition request transmitted from a terminal that the second user uses from the information management means; and setting means for setting the acquired second identification information to the access control rule.SELECTED DRAWING: Figure 1 【課題】管理情報の体系が異なる装置間で運用負荷を増大させることなく適切なデータアクセス制御を行なう。【解決手段】実施形態における情報アクセス制御装置は、第1の情報システムが管理する情報の情報取得要求を許可するか否かの条件が記述されたアクセス制御ルールを管理するアクセス制御ルール管理手段と、要求に含まれる、第2の情報システムの体系に従って付与された第2のユーザまたはその属性を示す第2の識別情報と、この第2の識別情報を特定するための文字列とを対応付けて管理する情報管理手段と、文字列に基づき、第2のユーザが使用する端末から送信される情報取得要求に含まれる第2の識別情報を情報管理手段から取得する取得手段と、取得した第2の識別情報をアクセス制御ルールに設定する設定手段とをもつ。【選択図】図1
Bibliography:Application Number: JP20150035573