Processing

Please wait...

Settings

Settings

Goto Application

1. WO2013145517 - INFORMATION PROCESSING DEVICE, INFORMATION PROCESSING SYSTEM, INFORMATION PROCESSING METHOD, AND PROGRAM

Publication Number WO/2013/145517
Publication Date 03.10.2013
International Application No. PCT/JP2013/000390
International Filing Date 25.01.2013
IPC
G06F 21/41 2013.01
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
41where a single sign-on provides access to a plurality of computers
G06F 21/44 2013.01
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
44Program or device authentication
CPC
G06F 21/41
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
41where a single sign-on provides access to a plurality of computers
G06F 21/44
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
44Program or device authentication
G06F 21/62
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60Protecting data
62Protecting access to data via a platform, e.g. using keys or access control rules
G06F 21/6218
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60Protecting data
62Protecting access to data via a platform, e.g. using keys or access control rules
6218to a system of files or objects, e.g. local or distributed file system or database
H04L 63/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
08for supporting authentication of entities communicating through a packet data network
H04L 63/0815
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
08for supporting authentication of entities communicating through a packet data network
0815providing single-sign-on or federations
Applicants
  • ソニー株式会社 SONY CORPORATION [JP]/[JP]
Inventors
  • 島川 真人 SHIMAKAWA, Masato
Agents
  • 大森 純一 OMORI, Junichi
Priority Data
2012-07337428.03.2012JP
Publication Language Japanese (JA)
Filing Language Japanese (JA)
Designated States
Title
(EN) INFORMATION PROCESSING DEVICE, INFORMATION PROCESSING SYSTEM, INFORMATION PROCESSING METHOD, AND PROGRAM
(FR) DISPOSITIF DE TRAITEMENT D'INFORMATIONS, SYSTÈME DE TRAITEMENT D'INFORMATIONS, PROCÉDÉ DE TRAITEMENT D'INFORMATIONS, ET PROGRAMME
(JA) 情報処理装置、情報処理システム、情報処理方法及びプログラム
Abstract
(EN)
[Problem] To reduce the labor of an authentication process necessary to the coordination of a plurality of devices and network services. [Solution] This information processing device has a communication unit, a recording unit, and a control unit. The communication unit communicates with a first apparatus, a second apparatus, and a service on a network having a resource pertaining to the user of the first apparatus. On the basis of an acquired request from the first apparatus for access rights to the resource and acceptance information indicating acceptance by the user regarding the acquisition of the access rights, the control unit controls the communication unit in a manner so as to transmit to the service a request for issuance of an access token that indicates access rights, and receive the access token issued by the service. The control unit additionally controls the recording unit in a manner so as to safely record the received access token, and controls the communication unit in a manner so as to access the resource using the recording access token in response to a request from the second apparatus associated with the user.
(FR)
L'invention a pour objectif de réduire le travail d'un processus d'authentification nécessaire à la coordination d'une pluralité de dispositifs et de services réseau. Pour ce faire, ce dispositif de traitement d'informations comprend une unité de communication, une unité d'enregistrement et une unité de commande. L'unité de communication communique avec un premier appareil, un second appareil et un service sur un réseau comprenant une ressource relative à l'utilisateur du premier appareil. D'après une demande acquise par le premier appareil portant sur les droits d'accès à la ressource et des informations d'acceptation indiquant l'acceptation par l'utilisateur concernant l'acquisition des droits d'accès, l'unité de commande contrôle l'unité de communication de façon à transmettre au service une demande de délivrance d'un jeton d'accès qui indique les droits d'accès, et à recevoir le jeton d'accès délivré par le service. De plus, l'unité de commande contrôle également l'unité d'enregistrement de façon à enregistrer en toute sécurité le jeton d'accès reçu, et contrôle l'unité de communication de façon à accéder à la ressource au moyen du jeton d'accès d'enregistrement en réponse à une demande du second appareil associé à l'utilisateur.
(JA)
【課題】複数のデバイスやネットワークサービスの連携に必要な認証処理の手間を削減すること。 【解決手段】情報処理装置は、通信部と、記憶部と、制御部とを有する。通信部は、第1の機器と、第2の機器と、第1の機器のユーザに関するリソースを有するネットワーク上のサービスと通信する。制御部は、第1の機器からの、上記リソースへのアクセス権の取得要求と、当該アクセス権の取得に対する上記ユーザの承認を示す承認情報とに基づいて、サービスへアクセス権を示すアクセストークンの発行要求を送信し、サービスから発行されたアクセストークンを受信するように通信部を制御する。また制御部は、受信されたアクセストークンを安全に記憶するように記憶部を制御し、ユーザと関連付けられた第2の機器からの要求に応じて、記憶されたアクセストークンを用いてリソースへアクセスするように通信部を制御する。
Latest bibliographic data on file with the International Bureau