JP2003087332A - Relay connection method, network level authentication server and gateway device, information server and program - Google Patents

Abstract

(57) [Summary] [Problem] To identify a user from the information server side. Avoid mismatching or duplication of authentication status in an authentication communication network. Simplify network-level and personal-level authentication procedures. Reduce the processing load on the gateway device. A network-level authentication server holds authentication information in which personal-level authentication information is added to network-level authentication information and personal-level access control information, verifies authenticated information received from a user terminal, and verifies the authentication information. The access control information is added to the authentication result and transferred to the gateway device. The gateway device holds the network address and the user identifier when the authentication is completed, and also holds the individual-level access control information corresponding to these. When the user terminal accesses the authentication communication network, the corresponding access control information is searched from the network address of the user terminal, and the access of the user terminal to the information server is controlled according to the access control information.

Description

Detailed Description of the Invention

[0001]

TECHNICAL FIELD The present invention is used for network security management. Especially suitable for use in private networks.

[0002]

2. Description of the Related Art An authentication communication network, which is a private communication network controlled by a private network address and can be used only by a user who has performed both network level authentication and personal authentication, has traditionally been a network level of the user. Authenticate, set an authentication communication channel at the network level, and if there is an access request from a user who has not completed individual authentication, perform personal authentication of the user using this authentication communication channel. , And permit the user to use the authentication communication network. This conventional example will be described with reference to FIG. FIG. 14 is a diagram for explaining a conventional relay connection method. In the following, the network is shown as NW and the gateway as GW.

In the example shown in FIG. 14, when the gateway device (shown as a GW device) 3 receives a communication start request from the user terminal 1, the gateway device 3 sends a request to the network level authentication server (shown as an NW level authentication server) 6. This is transmitted as a network level authentication request, and network level authentication is performed.

More specifically, the network level authentication server 6 has network level authentication information of a valid user registered in advance, and the network level authentication request transmitted from the gateway device 3 indicates that the user is a valid user. Determine if there is. When it is determined that the user is an authorized user as a result of this determination, the network level authentication server 6 notifies the gateway device 3 to that effect.

When the network level authentication is completed, the public communication network 2 between the gateway device 3 and the user terminal 1
The authentication communication path 5 is formed in the.

When the gateway device 3 detects the use of the inside of the authentication communication network from the user terminal 1 via the authentication communication path 5, when the personal level authentication state of the user is unauthenticated, The gateway device 3 prompts the user terminal 1 to perform personal level authentication.

Therefore, in order to perform the personal level authentication, the user terminal 1 uses the authentication communication path 5 to access the gateway device 3
Send personal authentication information to. Upon receiving this, the gateway device 3 transfers the individual level authentication request including the individual authentication information to the individual level authentication server 7. Upon receiving the individual level authentication request, the individual level authentication server 7 performs the individual level authentication.

Specifically, the personal level authentication information including the user identifier information of the user is registered in advance in the personal level authentication server 7 and included in the personal level authentication request transferred from the gateway device 3. Based on the personal level authentication information including the user identifier, it is determined whether or not the request is a valid access request from a valid user. As a result of this determination, when it is determined that a valid user is making a valid access request, the personal level authentication server 7 notifies the gateway device 3 to that effect. This completes the network level authentication and the individual level authentication.

[0009] Such an authentication communication network 4 and a public communication network 2
When the network level authentication and the personal level authentication are completed, the gateway device 3 between and holds the network level identification information (network address which is an address in the public communication network) and the personal level identification information (user identifier), respectively. Then, the private network address used inside the authentication communication network 4 is assigned, and the network address conversion between the public communication network 2 and the authentication communication network 4 is performed.

The information servers A, B and C inquire the user of the personal authentication status of the user to the gateway device 3 based on the private network address of the accessing user. The gateway device 3 retrieves the user identifier based on the private network address, returns the user identifier as a personal authentication state. The information servers A, B and C accept access from users who have been legitimately authenticated.

[0011]

In such a conventional relay connection system, the following problems occur. After the user a uses the information server A inside the authentication communication network 4 from the user terminal 1, the user b from the same user terminal 1
When using the information server A in the authentication communication network 4, the information server A has already been authenticated by the user a by the private network address assigned to the user a and uses the same private network address. When the user b who is currently using the information server A does not authenticate again. Therefore, it is difficult for the information server side to normally specify the personal authentication state of the user.

Further, in order to execute the personal level authentication after setting the authentication communication path for accessing the inside of the authentication communication network, the gateway device monitors the access to the information server on the authentication communication path, and when the access is detected, , It is necessary to induce various applications executed on the authentication communication path to connect to the personal level authentication server, and therefore, it is necessary to deal with each application. Therefore, the processing load on the gateway device increases.

Further, it is necessary to guide the personal level authentication, hold the packet received during the personal authentication inside the gateway device, and transfer the held packet at the completion of the personal level authentication inside the authentication communication network. There is. Therefore, this also increases the processing load of the gateway device.

The present invention has been made against such a background, and an object thereof is to provide a relay connection system capable of identifying a user from the information server side. It is an object of the present invention to provide a relay connection system that can avoid inconsistency or duplication of authentication states in an authentication communication network. An object of the present invention is to provide a relay connection method that can simplify the procedures of network level authentication and individual level authentication. It is an object of the present invention to provide a relay connection method that can reduce the processing load of a gateway device.

[0015]

SUMMARY OF THE INVENTION The present invention includes an information server that is available to users who have performed both network-level and individual-level authentication and which is controlled by a private network address and provides information to the user. This is a relay connection system that includes an authentication communication network as a private communication network, a public communication network connected to a user terminal that accesses the authentication communication network, and a gateway device that connects the authentication communication network.

Here, a feature of the present invention is that a network level authentication server for holding authentication information in which individual level authentication information is added to network level authentication information is provided, and the network level authentication server is the above A means for adding and holding personal level access control information together with the authentication information, and verifying the authenticated information received as an authentication request from the gateway device, adding the access control information to the authentication result, and adding the access control information And a means for returning the information to the gateway device, the gateway device, the authentication information and user identifier, which is obtained by adding the authentication information of the individual level to the authentication information of the network level,
A means for receiving the expiration date information of the authentication target information from the user terminal, verifying the expiration date information and confirming the validity of the authentication target information, and using the user identifier and the authentication target information. Means for transmitting the authentication request to the network level authentication server, and assigning a private network address to be used inside the authentication communication network to the user of the user terminal when the authentication is completed. The network level authentication information returned from the network level authentication server as the authentication result and the network address and the user identifier as the personal level authentication information are respectively retained and correspondingly the network level authentication server sends the authentication information. The personal level returned with And a means for holding the access control information of the user and, upon completion of authentication, mutually sharing secret information with the user, and an authentication communication path, which is an encryption communication path using this secret information, with the user terminal. Means to generate between
Access to the authentication communication network from the user is permitted only in the authentication communication path, and address translation is performed between the network address in the public communication network and the private address used inside the authentication communication network. A means for performing the access control information corresponding to the network address of the user when the user accesses the authentication communication network, and controls the access of the user to the information server according to the access control information. And means for doing so.

As a result, the network level authentication and the individual level authentication are performed at the same time as one pair, so that the user can be specified from the information server side. Also,
Discrepancies or duplication of authentication status can be avoided.
Also, this can simplify the procedures of network level authentication and individual level authentication. Further, the processing load on the gateway device can be reduced.

The information server has means for acquiring the user identifier by inquiring of the gateway device about the personal authentication status of the user using the private network address of the user when there is access from the user. It is desirable to prepare.

As a result, since the information of the authentication status is centrally managed by the network level authentication server, the user can be identified from the information server side and the mismatch or duplication of the authentication status in the authentication communication network can be avoided. be able to.

Further, it is preferable that the gateway device includes means for not reallocating the private network address in the authentication communication network assigned to the user until the information server releases the personal level authentication state.

[0021] Thus, it is possible to prevent a plurality of private network addresses from being duplicated for one authentication state for one user, so that it is possible to avoid inconsistency of authentication states in the authentication communication network. .

Further, the gateway device responds to a request from a user or at the time of detecting no communication from the user to the inside of the authentication communication network using the authentication communication path for a predetermined time or more, A means for deleting the authentication communication path may be provided.

As a result, it is possible to delete the existing authentication communication path for the convenience of the user and prepare for the execution of a new authentication procedure.

When deleting the authentication communication path, the gateway device deletes the authentication communication path from the information server used by the user of the authentication communication path and sets the personal level The information server may include means for notifying that the authentication state is released, and the information server may be provided with means for releasing the authentication state at the personal level of the corresponding user according to the notification from the gateway device.

As a result, it is possible to avoid inconsistency or duplication of the authentication states in the authentication communication network when the gateway apparatus releases the individual level authentication state.

As described above, according to the present invention, the user can be specified from the information server side. It is possible to avoid inconsistency in the authentication status in the authentication communication network.
The procedure of network level authentication and individual level authentication can be simplified. The processing load on the gateway device can be reduced.

Further, when the gateway device receives a request for setting the authentication communication path from the user, the gateway device sends the user identifier and the authenticated information included in the setting request to the network level authentication server, and A means for setting the network address of the user in the authentication request and transmitting it to the network level authentication server, wherein the network level authentication server receives the authentication request and corresponds to the network address and this network address Means for holding the user identifier, and the information set in the authentication request by searching the information of the authentication communication path in communication held by the network level authentication server upon receiving the authentication request. According to the user identifier and / or the network address Means for detecting whether or not the authentication communication path is set, and when the authentication communication path is already set by the same user identifier or the network address, the authentication communication path is set. Means for transmitting a duplicate request for deleting the authentication communication path to the gateway device, wherein the gateway device receives the request for deleting the authentication communication path and searches for a corresponding authentication communication path; When the corresponding authentication communication path is searched by the search result of the searching means, the authentication communication path is deleted, and means for notifying the network level authentication server of the response of completion of the deletion is provided. Indicates that the authentication communication path has already been set with the same user identifier or the same network address. If not, or when the deletion completion response is received, the user identifier and the authenticated information set in the authentication request are verified, and the address control information of the corresponding user is added to the result of this authentication. The gateway device receives the response to which the address control information is added and sets the authentication communication path, and sends a notification of the authentication communication path setting to the network level authentication server. The network level authentication server receives the notification of the authentication communication path setting and sets the authentication communication path as the set authentication communication path information, the identification information of the gateway device and the user identifier. And a means for holding each of the network addresses inside itself, and the gateway device uses the In response to a request from a user or when detecting no communication from the user to the inside of the authentication communication network using the authentication communication path for a predetermined time or more, a means for deleting the authentication communication path, The network level authentication server is provided with means for discarding information regarding the corresponding authentication communication path held inside and means for notifying the network level authentication server of the deletion of the corresponding authentication communication path. It is also possible to provide means for receiving and discarding the information regarding the corresponding authentication communication path.

In this way, the network level authentication server holds the network address of the authentication communication paths set in all the gateway devices and the user identifier corresponding to this network address, and You can check for duplicate addresses and user identifiers.

Further, the gateway device holds the network address of the user who has established the authentication communication path after completion of authentication and the user identifier corresponding to this network address, and a request for setting the authentication communication path. Of the user identifier corresponding to the network address and / or the network address of the user who is currently using the authentication communication path currently set by the user when receiving the According to the search result, the network address of the user included in the setting request and / or the user identifier corresponding to this network address and the network address of the user who is currently using the authentication communication path currently set by the user. And / or before corresponding to this network address When the user identifier is the same, a means for deleting the existing authentication communication path set by the self and setting the authentication communication path based on the setting request, and the search result of the searching means The network address of the user included in the setting request and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or this network A means for notifying the other gateway device of the network address and the user identifier corresponding to this network address when the user identifier corresponding to the address does not match, and when this notification is received from the other gateway device The authentication communication path setting that the user holds Means for searching whether or not the network address of the user and / or the user identifier corresponding to the network address is the same as the network address and / or the user identifier included in the notification, and this search is performed. When the search results of the means are not the same, means for responding to that effect to the gateway device that is the sender of the notification, and when the search results of the means for searching are the same, delete the duplicated authentication communication path held by itself. And means for discarding information regarding the duplicated authentication communication channel held by itself, and means for responding to the sender of the notification that there is a corresponding user of the duplicated authentication communication channel and completion of deletion, Means for setting a new authentication communication path when the self is the sender of the notification and receives the response Can also be provided.

In this way, the gateway device holds the network address of the user regarding the authentication communication path set by the gateway device and the user identifier corresponding to the network address. You can check for duplicates.

Alternatively, the gateway device holds the network address of the user who has established the authentication communication path after completion of authentication and the user identifier corresponding to this network address, and a request for setting the authentication communication path. Of the user identifier corresponding to the network address and / or the network address of the user who is currently using the authentication communication path currently set by the user when receiving the According to the search result, the network address of the user included in the setting request and / or the user identifier corresponding to this network address and the network address of the user who is currently using the authentication communication path currently set by the user. And / or correspond to this network address When the user identifier is the same, a means for deleting the existing authentication communication path set by the self and setting the authentication communication path based on the setting request, and a search result of the searching means The network address of the user included in the setting request and / or the user identifier corresponding to the network address and the network address of the user who is using the authentication communication path currently set by the user and / or this Means for notifying the other gateway device of the network address and the user identifier corresponding to the network address when the user identifier corresponding to the network address does not match,
When the notification is received from another gateway device, the network address of the user in the authentication communication path setting held by itself and / or the user identifier corresponding to the network address is included in the notification. Means for searching whether the address and / or the user identifier are the same; means for responding to the gateway device which is the sender of the notification if the search results of the searching means are not the same; When the search results of the search means are the same, means for responding to that effect to the gateway device that is the sender of the notification, and when the self is the sender of the notification and receives this response, the sender of this response For the gateway device, the overlapping authentication communication path held by the gateway device Means for making a request to delete the duplicated information relating to the authentication communication path held by the gateway device, and the duplicate held by itself when the request is the sender of the response and the request is received. A means for deleting the authentication communication path and discarding the information related to the duplicated authentication communication path held by itself, and a message indicating that there is a corresponding user of the authentication communication path overlapping the sender of the request and the deletion completion. Means to respond,
It may be provided with means for setting a new authentication communication path when the self is the sender of the request and receives the response.

Further, the gateway device holds the network address of the user who has established the authentication communication path after the completion of the authentication and the user identifier corresponding to the network address, and the holding means. A means for notifying the other gateway device of the information of the network address and the user identifier corresponding to the network address, and setting the authentication communication path when the notification is received from the other gateway device. A means for holding information of the gateway device, the network address, and information of the user identifier corresponding to the network address, and all the gateway devices currently held by itself when the authentication communication path setting request is received. Is set in The network address of the user who is using the authentication communication path and / or the user identifier corresponding to this network address is searched, and when either is the same, the gateway device that sets the authentication communication path is confirmed. Means for deleting the corresponding authentication communication path and setting the newly requested authentication communication path when the gateway device setting the authentication communication path is its own, and the authentication communication path When the set gateway device is another gateway device, the network address and the user identifier corresponding to the network address are set to the corresponding gateway device to request the deletion of the authentication communication path. The means of sending, and when it receives this delete request, Means for searching the authentication communication path that matches the network address being requested and / or the user identifier corresponding to this network address, deleting the authentication communication path, and responding to the gateway device of the deletion request source that deletion has been completed And a means for setting the newly requested authentication communication path when the self is the deletion request source and receives the deletion completion response.

In this way, all the gateway devices respectively hold the network address of the user of the authentication communication path set by all the gateway devices and the user identifier corresponding to this network address. You can check for duplicate network addresses and / or user identifiers.

When an information server whose personal authentication is limited to the application level is provided, an access control server is provided between the gateway device and the information server, and the access control server is provided. Means for acquiring the user identifier of the user by inquiring the gateway device of the personal authentication status of the user using the private address of the user, and the information server for personal authentication information at the application level. And means for transmitting the user identifier as

At this time, the access control server recognizes the application corresponding to the user based on the personal authentication information and the information server according to the application recognized by the recognition means. It is desirable to have means for performing access control at the application level.

As a result, it is possible to provide the single sign-on service by the relay connection method of the present invention to the information server which can carry out the personal authentication only at the application level.

A second aspect of the present invention is applied to the relay connection system of the present invention, and includes means for holding authentication information in which personal level authentication information is added to network level authentication information and the authentication information. Means for additionally holding individual level access control information; means for verifying the authenticated information received as an authentication request from the gateway device, adding the access control information to the authentication result, and returning the result to the gateway device. It is a network level authentication server characterized by having.

When the gateway device receives a request for setting the authentication communication path from a user, the authentication request in which the user identifier and the authenticated information included in the setting request and the network address of the user are set is displayed. Means for receiving and holding the network address and the user identifier corresponding to the network address; and the authentication request by searching the information of the authentication communication path during communication which is held by receiving the authentication request. Means for detecting whether or not the authentication communication path has already been set according to the user identifier and / or the network address set therein, and the authentication communication by the same user identifier or the network address. When the communication path is set, the game Means for transmitting a request for deletion of the authentication communication path overlapping relative way device, when not already has the authentication communication path by the same the user identifier or the network address, or,
When the deletion completion response is received, the user identifier and the authenticated information set in the authentication request are verified, and the address control information of the corresponding user is added to the result of this authentication, or the authentication request or Means for responding to the gateway device that has transmitted the deletion completion response, and the gateway device that has received the notification of the authentication communication path setting from the gateway device and has set the authentication communication path as set authentication communication path information. Means for holding the user identification information and the network address, and means for receiving the notification of the deletion of the authentication communication path from the gateway device and discarding the information on the corresponding authentication communication path. It is desirable to have and.

A third aspect of the present invention is applied to the relay connection system of the present invention, in which the authentication information and user identifier obtained by adding the authentication information at the personal level to the authentication information at the network level and this authentication information. Means for receiving the expiration date information from the user terminal and verifying the expiration date to confirm the validity of the authenticated information; and the network level authentication using the user identifier and the authenticated information. A means for transmitting the authentication request to the server, and a private network address to be used inside the authentication communication network when the authentication is completed is assigned to the user. The private network address and the network level authentication server return the result as the authentication result. Public network of the user as network level authentication information and personal level authentication information. A means for holding a network address and a user identifier, which are addresses in the network, and holding the personal level access control information returned together with the authentication result from the network level authentication server, and the completion of the authentication. At times, a means for sharing secret information with the user and generating an authentication communication path, which is an encrypted communication path using the secret information, with the user terminal, Access to the authentication communication network is limited only to the authentication communication path, and means for performing address conversion between a network address in the public communication network and a private address used inside the authentication communication network,
A means for retrieving the corresponding access control information from the network address of the user when the user accesses the authentication communication network, and controlling access of the user to the information server according to the access control information. It is a gateway device characterized by being provided.

Further, means for holding the network address of the user who established the authentication communication path after the completion of the authentication and the user identifier corresponding to this network address, and the present self-address when the authentication communication path setting request is received. Included in the setting request according to the means for searching the network address of the user using the authentication communication path set by the user and / or the user identifier corresponding to the network address, and the search result of the searching means. The network address of the user and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or the network address corresponding to this network address When the user identifier is the same as before Means for deleting the existing authentication communication path set by itself and setting the authentication communication path based on the setting request; and the network of the user included in the setting request according to the search result of the searching means. An address and / or the user identifier corresponding to this network address and the network address of the user who is currently using the authentication communication path currently set by the user and / or the user identifier corresponding to this network address A means for notifying the other gateway device of the network address and the user identifier corresponding to the network address when they do not match, and the authentication communication path held by itself when the notification is received from the other gateway device. The network address of the user who is setting Bimatawa means for searching whether the user identifier corresponding to the network address is the same as the network address and or the user identifier included in the notification,
When the search results of the searching means are not the same, a means for responding to that effect to the gateway device that is the sender of the notification, and when the search results of the searching means are the same, the duplicate authentication communication held by itself. A means for deleting the route and discarding the information regarding the duplicated authentication communication route held by itself, and responding to the sender of the notification that there is a corresponding user of the duplicated authentication communication route and completion of deletion. It is preferable to include means and means for setting a new authentication communication path when the self is the sender of the notification and receives the response.

Alternatively, means for holding the network address of the user who has established the authentication communication path after the completion of the authentication and the user identifier corresponding to this network address, and the present self-address when the request for setting the authentication communication path is received. Means for retrieving the network address of the user who is using the authentication communication path set by and / or the user identifier corresponding to this network address,
Utilization using the network address of the user included in the setting request and / or the user identifier corresponding to this network address and the authentication communication path currently set by the search result of the searching means. If the network address of a person and / or the user identifier corresponding to this network address is the same, the existing authentication communication path set by the self is deleted and the authentication communication path based on the setting request is deleted. Setting means, the network address of the user included in the setting request according to the search result of the searching means, and / or the user identifier corresponding to the network address and the authentication communication path currently set by the user. The network address of the user using When the user identifier corresponding to the network address does not match, means for notifying the other gateway device of the network address and the user identifier corresponding to the network address, and the notification received from the other gateway device. Occasionally, the network address of the user in the authentication communication path setting that he / she holds and / or the user identifier corresponding to this network address is the same as the network address and / or the user identifier included in the notification. The means for searching whether or not there is a search result, and the search result of the search means are the same, and the search result of the search means is the same when the search result of the search means is not the same. Occasionally the sender of the notification A means for responding to the gateway device, and when the self is the sender of the notification and receives this response, deletes the duplicated authentication communication path held by the gateway device for the gateway device which is the sender of this response And means for making a request to delete information regarding the duplicated authentication communication path held by the gateway device, and the duplicated authentication held by itself when the requester is the sender of the response and receives this request. A means for deleting the communication channel and discarding the information regarding the duplicated authentication communication channel held by itself, and a response indicating that there is a corresponding user of the duplicated authentication communication channel for the sender of the request and deletion completion And a means for setting a new authentication communication path when it is the sender of the request and receives the response. It can be provided.

Alternatively, means for holding the network address of the user who has established the authentication communication path after completion of authentication and a user identifier corresponding to this network address, and the network address and this network address held in this holding means Means for notifying the information of the user identifier corresponding to the other gateway device, and information of the gateway device which has set the authentication communication path when the notification is received from the other gateway device and the network. Means for holding information of the address and the user identifier corresponding to this network address, and the authentication set in all the gateway devices currently held by itself when a request for setting the authentication communication path is received Utilization using communication channel Of the network address and / or the user identifier corresponding to this network address, and when either of them is the same, a means for confirming the gateway device setting the authentication communication path, and setting the authentication communication path. Means for setting the newly requested authentication communication path and deleting the corresponding authentication communication path when the gateway apparatus is its own, and the gateway apparatus setting the authentication communication path is When the device is the gateway device, a means for setting the network address and the user identifier corresponding to the network address to the corresponding gateway device and transmitting a request for deleting the authentication communication path; Is received, the network ad And and / or means for searching the authentication communication path that matches the user identifier corresponding to this network address, deleting the authentication communication path, and responding to the gateway device of the deletion request source that the deletion is completed, It is also possible to provide a means for setting the newly requested authentication communication channel when the deletion request response is received and the deletion completion response is received.

A fourth aspect of the present invention is applied to the relay connection system of the present invention, and when there is an access from the user, the personal network of the user is authenticated by the gateway device using the private network address of the user. It is an information server comprising means for acquiring the user identifier by inquiring about the status.

A fifth aspect of the present invention is applied to the relay connection system of the present invention, and is provided between the gateway device and an information server whose personal authentication is limited to an application level, and a user private Means for acquiring the user identifier of this user by inquiring of the gateway device about the personal authentication state of this user using an address; and a user identifier as personal authentication information at the application level in the information server. And an access control server.

Means for recognizing an application corresponding to the user based on the personal authentication information, and means for performing access control at the application level to the information server according to the application recognized by the recognizing means. Is desirable.

A sixth aspect of the present invention is that, when installed in an information processing device, the information processing device has a network level authentication function corresponding to the network level authentication server applied to the relay connection system of the present invention. A function for holding authentication information obtained by adding personal level authentication information to the authentication information, a function for holding personal level access control information together with the authentication information, and an authentication request received from the gateway device. The program realizes a function of verifying the information to be authenticated, adding the access control information to the authentication result, and returning the result to the gateway device.

Further, when the gateway device receives a request for setting the authentication communication path from the user, the program stores the user identifier and the authenticated information included in the setting request and the network address of the user. A function of receiving the set authentication request and holding the network address and the user identifier corresponding to this network address, and a function of receiving the authentication request and holding the information of the authentication communication path during communication The same user identifier or the same network as the function of searching and detecting whether or not the authentication communication path is already set according to the user identifier and / or the network address set in the authentication request If the authentication communication path has already been set by the address, When the authentication communication path is not already set by the same user identifier or the same network address as the function of transmitting a deletion request for the duplicated authentication communication path to the gateway device that has set a path, Alternatively, when the deletion completion response is received, the user identifier and the authenticated information set in the authentication request are verified, and the address control information of the corresponding user is added to the result of this authentication to perform the authentication. A function of responding to a gateway device that has transmitted a request or a response indicating that the deletion has been completed; The identification information of the gateway device, the user identifier, and the network address are self-internally provided. And the function of holding,
It is desirable to realize a function of receiving a notification of deletion of the authentication communication path from the gateway device and discarding information on the corresponding authentication communication path.

Alternatively, when the information processing apparatus is installed in the information processing apparatus, as a function corresponding to the gateway apparatus applied to the relay connection system of the present invention, the information to be authenticated at the network level is added to the authentication information at the personal level. A function of receiving authenticated information to which authentication information is added, a user identifier, and expiration date information of this authenticated information from the user terminal, verifying the expiration date, and confirming the validity of the authenticated information; A function of transmitting the authentication request to the network level authentication server using the user identifier and the authenticated information, and assigning a private network address to be used inside the authentication communication network to the user when the authentication is completed From this private network address and the network level authentication server, A network address and a user identifier, which are addresses of the user in the public communication network as the returned network-level authentication information and personal-level authentication information, are respectively retained, and correspondingly, from the network-level authentication server, It is a cryptographic communication path that uses the secret information and the function of holding the personal level access control information returned together with the authentication result, and sharing the secret information with the user upon completion of the authentication. A function of generating an authentication communication path with the user terminal, and permitting access from the user into the authentication communication network by limiting to the authentication communication path and a network address in the public communication network. Address conversion is performed with the private address used inside the authentication communication network. Functions, and when the user accesses the authentication communication network, retrieves the corresponding access control information from the network address of the user and controls the access of the user to the information server according to the access control information. It is a program characterized by realizing functions and.

Further, this program receives the function of holding the network address of the user who established the authentication communication path after the completion of the authentication and the user identifier corresponding to this network address, and the request for setting the authentication communication path. Sometimes the function of searching the network address of the user who is currently using the authentication communication path set by himself and / or the user identifier corresponding to this network address, and the setting by the search result of this searching function The network address of the user included in the request and / or the user identifier corresponding to this network address and the network address of the user who is currently using the authentication communication path currently set by the user and / or this network address Is the same as the user identifier corresponding to And a function of deleting the existing authentication communication path set by the self and setting the authentication communication path based on the setting request, and a use included in the setting request according to the search result of the searching function. Person's network address and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or the use corresponding to this network address The function of notifying the other gateway device of the network address and the user identifier corresponding to the network address when the user identifier does not match, and the function of owning the notification when the notification is received from the other gateway device. The network of the user who is setting the authentication communication path. A function for searching whether the work address and / or the user identifier corresponding to the network address is the same as the network address and / or the user identifier included in the notification, and the search result of the search function is If they are not the same, the function that responds to the gateway device that sent the notification to that effect, and if the search results of the function to be searched are the same, delete the duplicated authentication communication path held by itself and hold A function of discarding information regarding the duplicated authentication communication channel, a function of responding to the sender of the notification that there is a corresponding user of the duplicated authentication communication channel and completion of deletion, It is desirable to realize the function of setting the new authentication communication path when it is the sender and receives the response. Good

Alternatively, the function of holding the network address of the user who established the authentication communication path after the completion of the authentication and the user identifier corresponding to this network address, and the present self-identification when the authentication communication path setting request is received. A function of searching for a network address of a user who is using the authentication communication path set by and / or a user identifier corresponding to this network address,
Use of the network address of the user included in the setting request and / or the user identifier corresponding to the network address and the authentication communication path currently set by the user based on the search result of the search function. If the network address of a person and / or the user identifier corresponding to this network address is the same, the existing authentication communication path set by the self is deleted and the authentication communication path based on the setting request is deleted. And the network identifier of the user included in the setting request and / or the user identifier corresponding to this network address and the authentication communication path currently set by the user. The network address of the user using When the user identifier corresponding to the network address does not match, the function of notifying the other gateway device of the network address and the user identifier corresponding to this network address, and the notification received from the other gateway device. Occasionally, the network address of the user in the authentication communication path setting that he / she holds and / or the user identifier corresponding to this network address is the same as the network address and / or the user identifier included in the notification. The search result of the function for searching whether or not there is, and the function of responding to the gateway device that is the transmission source of the notification when the search result of the function for searching is not the same, and the search result of the function for searching are the same. Occasionally the sender of the notification The function of responding to the gateway device, and when the self is the sender of the notification and receives this response, deletes the duplicated authentication communication path held by the gateway device for the gateway device of the sender of this response And the function of making a request to delete the information regarding the duplicated authentication communication path held by the gateway device, and the duplicated authentication held by itself when the requester is the sender of the response and receives this request. A function that deletes the communication channel and discards information about the duplicated authentication communication channel held by itself, and responds to the sender of the request that there is a corresponding user of the duplicated authentication communication channel and that deletion has been completed. And a function of setting a new authentication communication path when the self is the sender of the request and receives the response. It can also be realized.

Alternatively, a function of holding the network address of the user who has established the authentication communication path after the completion of the authentication and a user identifier corresponding to this network address, and the network address and this network address held by the held function And a function of notifying the information of the user identifier corresponding to the other gateway device, and information of the gateway device that sets the authentication communication path when the notification is received from the other gateway device and the network. A function of holding an address and information of the user identifier corresponding to this network address, and the authentication set by all the gateway devices currently held by itself when a request for setting the authentication communication path is received. Utilization using communication channel Of the network address and / or the user identifier corresponding to this network address, and when either is the same, the function of confirming the gateway device that sets the authentication communication path, and the setting of the authentication communication path. When the gateway device is a self, the function of deleting the corresponding authentication communication path and setting the newly requested authentication communication path, and the gateway device setting the authentication communication path When the device is the gateway device, a function of setting the network address and the user identifier corresponding to the network address to the corresponding gateway device and transmitting a request for deleting the authentication communication path, Is received, the network ad Address and / or a function of searching the authentication communication path that matches the user identifier corresponding to this network address, deleting the authentication communication path, and responding to the gateway device of the deletion request source that the deletion is completed, When the deletion request source is the deletion request source and receives the deletion completion response, it is possible to realize a function of newly setting the requested authentication communication path.

Alternatively, when the information processing apparatus is installed in the information processing apparatus, the user can access the information processing apparatus as a function corresponding to the information server applied to the relay connection method of the present invention when the user accesses the information processing apparatus. The program is characterized by realizing the function of acquiring the user identifier by inquiring of the gateway device about the personal authentication state of the user using the private network address.

Alternatively, when installed in an information processing device, the information processing device is provided with the gateway using the private address of the user as a function corresponding to the access control server applied to the relay connection system of the present invention. Realizes a function of acquiring the user identifier of this user by inquiring the device of the personal authentication state of this user, and a function of transmitting the user identifier as the personal authentication information at the application level to the information server. It is a program that is characterized by

Further, this program recognizes the application corresponding to the user based on the personal authentication information, and according to the application recognized by this recognizing function, the program is applied to the information server at the application level. It is desirable to realize the function of performing access control.

A seventh aspect of the present invention is a recording medium readable by the information processing device, in which the program of the present invention is recorded. The program of the present invention can be installed in the information processing apparatus by using the recording medium of the present invention in which the program of the present invention is recorded. The information processing apparatus can also install the program of the present invention by the information processing apparatus downloading the program of the present invention from a server holding the program of the present invention via a network.

[0056]

BEST MODE FOR CARRYING OUT THE INVENTION A relay connection system according to an embodiment of the present invention will be described with reference to FIGS. FIG. 1 is an overall configuration diagram of a relay connection system according to an embodiment of the present invention. FIG. 12 is an overall configuration diagram of the relay connection system of the sixth embodiment of the present invention.

The present invention is a private facility including information servers A, B and C that can be used by users who have performed both network level and individual level authentication and are controlled by private network addresses and provide information to users. A relay connection system including an authentication communication network 4 as a communication network, and a gateway device 3 connecting the public communication network 2 connected to a user terminal 1 accessing the authentication communication network 4 and the authentication communication network 4 is there.

Here, a feature of the present invention is that a network level authentication server 6 for holding authentication information obtained by adding individual level authentication information to network level authentication information is provided, and the network level authentication server 6 is provided.
Holds and holds personal level access control information together with the authentication information, verifies the authenticated information received from the gateway device 3 as an authentication request, adds the access control information to the authentication result, and adds the access control information to the gateway device. The gateway device 3 returns the authenticated information and the user identifier obtained by adding the authenticated information of the individual level to the authenticated information of the network level and the expiration date information of the authenticated information from the user terminal 1. After receiving and validating the validity of the authenticated information by the expiration date information of the authenticated information, the authentication request is transmitted to the network level authentication server 6 using the user identifier and the authenticated information, When the authentication is completed, the private network address used in the authentication communication network 4 is assigned to the user of the user terminal 1,
The private network address, the network level authentication information returned from the network level authentication server 6 as the authentication result and the network address and the user identifier of the user as the personal level authentication information are held and corresponding to them. Then, the personal level access control information returned from the network level authentication server 6 together with the authentication result is held, and when the authentication is completed, the secret information is shared with the user, and the secret information is shared. The authentication communication path 5 which is the used encryption communication path is generated between the user terminal 1 and
Access to the authentication communication network 4 from the user is allowed only in the authentication communication path 5, and address conversion is performed between the network address in the public communication network 2 and the private address used in the authentication communication network 4. When the user accesses the authentication communication network 4, the access control information is acquired from the network address of the user, and the access to the information servers A, B and C of the user is performed according to the access control information. It's in control.

In order to realize the relay connection system of the embodiment of the present invention, the network level authentication server applied to the relay connection system of the present invention is installed in the computer device which is an information processing device. 6, gateway device 3, information server A, B,
C, D, E, and a program for realizing the functions corresponding to the access control server 8 are used to convert the computer device into the network level authentication server 6, the gateway device 3, and the information servers A, B, C, D, and E of the present invention. The relay connection system of the present invention can be realized as a device corresponding to the access control server 8. It should be noted that the program is recorded in a recording medium that can be read by the computer, and the program is installed in the computer by the recording medium, or the computer that holds the program is connected to the computer via a network. The device can download and install the program.

The embodiments of the present invention will be described in more detail below.

(First Embodiment) The configuration of the relay connection system according to the first embodiment of the present invention will be described with reference to FIG. User terminal 1
Connects to the public communication network 2. The authentication communication network 4 is a private communication network controlled by a private network address, and includes a gateway device 3 and a network level authentication server 6. The authentication communication network 4 also includes information server communication networks # 1 and # 2 including the information servers A, B, and C therein. An authentication communication path 5 is set between the gateway device 3 and the user terminal 1 for a user who has been authenticated at both the network level and the individual level. In the gateway device 3, for communication using the authentication communication path 5, address conversion from the public communication network 2 to a private network address inside the authentication communication network 4 is performed for each information server communication network # 1, # 2. Access control.

Next, the operation of the relay connection system according to the first embodiment of the present invention will be described with reference to FIGS. FIG. 2 is a sequence diagram showing an operation from the detection of the user's access to the authentication communication network 4 by the user terminal 1 to the formation of the authentication communication path 5. FIG. 3 is a sequence diagram showing the operation in the process in which the user of the user terminal 1 starts using the application and continues communication. FIG. 4 is a sequence diagram showing an operation when communication from the user terminal 1 is interrupted for a certain period of time. 5 and 6 are sequence diagrams showing the operation when the user b uses the information server A after using the information server A of the user a.

The overall operation of the relay connection system according to the first embodiment of the present invention will be described in detail with reference to FIG. 1 and the sequence diagrams of FIGS. First, regarding the user who uses the authentication communication network 4, the authentication information in which the individual level authentication information is added to the network level authentication information, and the individual level access control information of the user are stored in the authentication communication network 4. The network level authentication server 6 is registered in advance. The gateway device 3 is provided with an accessible information server communication network # 1 according to the individual-level access control information,
# 2 list is preset.

As shown in FIG. 2, when the user requests access to the information server A in the authentication communication network 4, the user terminal 1 requests the gateway device 3 to start communication. Next, the gateway device 3 that has received the communication start request
Internally generates authentication information and sets it in the response.

In the meantime, the user terminal 1 accepts the input of the personal level authentication information from the user. After that, one piece of authenticated information is generated by combining the input personal level authentication information, network level authentication information, and authentication information received from the gateway device 3, and a user identifier of the user and the user are generated. The authentication request signal is created together with the expiration date information of the authentication target information, and the authentication request is transmitted to the gateway device 3.

The gateway device 3 verifies the validity of this authenticated information based on the received expiration date information of the authenticated information of the user, and then uses the user identifier and the authenticated information as an authentication request to make a network level authentication server. Send to 6.

The network level authentication server 6 performs authentication by recalculating the authentication information held inside the network level authentication server 6 based on each information received as the authentication request. After the authentication, the gateway device 3 is notified of the access control type of the user together with the authentication result.

In the gateway device 3, a private network address used in the authentication server communication network 4 is assigned to the user who is normally authenticated, and a user identifier and a network address of the user in the public communication network 2 are assigned. Private network address information and access control type used inside the authentication communication network 4 when the information and the authentication communication network 4 are used are internally held. Also, the shared secret information is exchanged with the user who has been authenticated successfully. As a result, the authentication communication path 5 encrypted using the shared secret information is set between the user terminal 1 and the gateway device 3.

The operation during setting of the authentication communication path 5 is shown in FIG. When the user uses the information server A in the authentication server communication network 4, the gateway device 3 performs NAT (network address) conversion of the network address between the public communication network 2 and the authentication communication network 4. works as translate).

Further, the user in communication is managed at the network level, and by continuing the communication, the above information is held inside the gateway device 3 during communication to maintain the authentication state.

Further, the gateway device 3 looks at the destination address of the user and performs access control according to the held access control type. The gateway device 3 has a list of accessible information server communication networks # 1 and # 2 for each access control type. If the user is registered with an access control type that allows access only to the information server communication network # 1, the gateway device 3 performs access control at the network level. Only the information server A or the information server B belonging to the information server communication network # 1 can be accessed according to the contract.

In the information server A, when an access from the user occurs, the gateway device 3 is notified to the gateway device 3 based on the private network address assigned by the gateway device 3 which is the address information of the sender of the communication.
Queries the user identifier of the user.

In response to the inquiry about the user identifier from the information server A, the gateway device 3 retrieves the user identifier from the private network address and returns the user identifier.

The information server A holds the private network address and the user identifier acquired from the gateway device 3 during the access from the user, and while the communication using the private network address of the user is performed. , The individual-level authentication status of the user is retained as authenticated.

FIG. 4 shows the operation when communication is disconnected. Upon receiving the disconnection request for the authentication communication path 5 from the user terminal 1, the gateway device 3 releases the authentication state of the corresponding user.

Since the information server A cannot recognize the disconnection of the authentication communication path, the communication status from the user is monitored, and when no communication is detected for a certain time or more, the private network address and the user identifier are detected. Delete the information paired with and release the personal level authentication status.

Therefore, in the gateway device 3, the private network in the authentication communication network 4 assigned to the user is kept until the information server A expires the non-communication monitoring time and the personal level authentication state is released. After the authentication communication path 5 is disconnected, the allocation of private network addresses is suppressed until the monitoring time of non-communication in the information server A expires so that addresses are not reallocated.

FIG. 5 shows the operation when a plurality of users a and b are accessed by the same user terminal 1 or the same network address. In the user terminal 1, when the access to the authentication communication network 4 of the different user b is detected on the same terminal used by the user a, the original authentication communication path 5 is deleted. The gateway device 3 releases the information regarding the authentication communication path 5 of the original user a.

After the release process is completed, the user terminal 1 performs a process for setting the authentication communication path 5 by the user b who is newly used, and sets the authentication communication path 5 again.

FIG. 6 shows a case in which the authentication communication path 5 is set for the user terminal 1 and a request for setting the authentication communication path 5 is received from the same user terminal 1 or the same network address. Indicates processing.

In the gateway device 3, when the access from the user terminal 1 to the authentication communication network 4 is detected by the same network address as that of the user terminal 1 for which the authentication communication path 5 is set, the original authentication communication path is detected. The information regarding 5 is released, the authentication process for setting the authentication communication path 5 is accepted by the newly used user b, and the authentication communication path 5 is set again.

(Second Embodiment) A second embodiment of the present invention will be described with reference to FIG. FIG. 7 is a sequence diagram showing an operation of disconnecting the authentication communication path 5 according to the authentication communication path disconnection request from the user terminal 1.

In the first embodiment described above, the information server A,
Although the detection of the non-communication time is used to match the personal authentication states between B and C and the gateway device 3, in the second embodiment,
When the information server A is monitoring the usage status of the information server A at the application level, the information server A
Then, the user holds the authentication state only while using the application on the information server A, and releases the individual-level authentication state when detecting the completion of use of the application.

As shown in FIG. 7, when a disconnection request for the authentication communication path 5 is received from the user while the application-level use state is in use, the gateway device 3 notifies the user of the user. By notifying the used information server A of the release due to the disconnection of the authentication communication path 5, both the gateway device 3 and the information server A can release the personal authentication state.

In the gateway device 3, as the personal authentication state is released, the network level authentication state of the corresponding user is also released. Therefore, in the gateway device 3, the network address and the user identifier of the corresponding user, which are held while the authentication state is maintained, are deleted. Furthermore, the access control information of the corresponding user is also deleted. By doing so, the gateway device 3 can immediately reassign the private network address after disconnecting the authentication communication path 5.

(Third Embodiment) A third embodiment of the present invention will be described with reference to FIG. FIG. 8 is a sequence diagram showing a procedure for checking duplication of a network address and a user identifier according to the third embodiment of the present invention. In the third embodiment of the present invention, the network level authentication server 6 includes all gateway devices 3.
It is an embodiment showing a procedure for checking the duplication of the network address and the user identifier by holding the network address of the user of the authentication communication path 5 set by and the user identifier corresponding to this network address.

As shown in FIG. 8, the gateway device 3
When receiving the setting request for the authentication communication path 5 from the user, the user requests the network level authentication server 6 to send the user identifier and the authentication information included in the setting request and the network address of the user as the authentication request. Set and send to the network level authentication server 6.

The network level authentication server 6 receives this authentication request, holds the network address of the user and the user identifier corresponding to this network address, and the network level authentication server 6 concerned.
The information of the authentication communication path 5 being communicated held by is searched to determine whether the authentication communication path 5 is already set according to the user identifier and the network address set in the authentication request. If the authentication communication path 5 is detected and the authentication communication path 5 has already been set with the same user identifier or the same network address, a request to delete the duplicated authentication communication path 5 is made to the gateway device 3 that has set the authentication communication path 5. To send.

The gateway device 3 receives the request for deleting the authentication communication path 5, searches for the corresponding authentication communication path 5, and when the corresponding authentication communication path 5 is searched based on the search result, the authentication communication path 5 is searched. The network level authentication server 6 is notified of the deletion completion response.

The network level authentication server 6 which has received this notification, when the authentication communication path 5 is not already set by the same user identifier or the same network address, or when it receives the deletion completion response, The user identifier and the authenticated information set in the authentication request are verified, and the address control information of the corresponding user is added to the result of this authentication and a response is sent.

The gateway device 3 receives the response to which the address control information is added, sets the authentication communication path 5, and sends a notification of the authentication communication path setting to the network level authentication server 6.

The network level authentication server 6 receives the notification of the authentication communication path setting and sets the authentication communication path 5 as the set authentication communication path information.
And the user identifier and the network address of each of the above.

The gateway device 3 receives the authentication communication path 5 from the user in response to the request from the user.
The authentication communication path 5 is deleted when no communication to the inside of the authentication communication network 4 is detected for a certain time or more, and the information about the corresponding authentication communication path 5 held in the self is deleted, and the corresponding authentication communication is performed. The network level authentication server 6 is notified of the deletion of the path 5.

The network level authentication server 6 receives this deletion notice and discards the information regarding the corresponding authentication communication path 5.

(Fourth Embodiment) A fourth embodiment of the present invention will be described with reference to FIGS. 9 and 10. 9 and 10 are sequence diagrams showing the procedure for checking the duplication of the network address and the user identifier according to the fourth embodiment of the present invention. In the fourth embodiment of the present invention, each gateway device 3 holds the network address of the user of the authentication communication path 5 set by the gateway device 3 and the user identifier corresponding to this network address. It is an Example which shows the procedure which checks duplication.

As shown in FIG. 9, the gateway device 3
Holds the network address of the user who established the authentication communication path 5 after the completion of the authentication and the user identifier corresponding to this network address, and is currently set by itself when the setting request of the authentication communication path 5 is received. Authentication channel 5
The network address of the user who is using and the user identifier corresponding to this network address are searched, and the network address of the user included in the setting request and the user corresponding to this network address are searched based on this search result. When the identifier is the same as the network address of the user who is currently using the authentication communication path 5 set by himself and the user identifier corresponding to this network address, the existing one set by himself The authentication communication path 5 is deleted and the authentication communication path 5 based on the setting request is set. Alternatively, according to the search result, the network address of the user included in the setting request, the user identifier corresponding to the network address, and the user of the authentication communication path 5 currently set by the user. When the network address and the user identifier corresponding to this network address do not match, the other gateway device 3 is notified of the network address and the user identifier corresponding to this network address.

When the gateway device 3 receives this notification from another gateway device 3, the notification of the user's network address in the setting of the authentication communication path 5 held by itself and the user identifier corresponding to this network address are given to the notification. It is searched for the same as the network address and the user identifier included in the above. When the search results are not the same, the fact is returned to the gateway device 3 which is the sender of the notification. Alternatively, when the search results are the same, the duplicated authentication communication path 5 held by itself is deleted, and the information regarding the duplicated authentication communication path 5 held by itself is discarded, and the information is overlapped with the sender of the notification. It responds that there is a corresponding user of the authentication communication path 5 and that the deletion is completed.

The gateway device 3 which is the sender of the notification and which has received the response sets a new authentication communication path 5.

Alternatively, as shown in FIG. 10, the gateway device 3 sets the network address of the user included in the setting request according to the search result, the user identifier corresponding to the network address, and the current setting. If the network address of the user who is using the authentication communication path and the user identifier corresponding to this network address do not match, the other gateway device 3 receives the network address and the network address corresponding to this network address. The gateway device 3 that has notified the user identifier and has received this notification notifies the user of the network address of the user in the authentication communication path 5 that he or she holds and the user identifier corresponding to this network address. The net included in Whether or not the search address is the same as the user identifier, and when the search results are not the same, the fact is replied to the gateway device 3 that is the sender of the notification, and when the search results are the same, the fact is notified. To the gateway device 3 which is the sender of the notification.

The gateway device 3 which is the sender of the notification and has received this response deletes the duplicate authentication communication path 5 held by the gateway device 3 from the gateway device 3 which is the sender of this response. Together with the duplicated authentication communication path 5 held by the gateway device 3
Make a request to delete information about.

The gateway device 3 which is the transmission source of the response and which has received this request deletes the duplicated authentication communication channel 5 held by itself and also provides information on the duplicated authentication communication channel 5 held by itself. Is discarded, and a response indicating that there is a corresponding user of the authentication communication path 5 overlapping with the transmission source of the request and deletion is completed is returned.

The gateway device 3 which is the sender of the request and has received the response sets a new authentication communication path 5.

(Fifth Embodiment) FIG. 11 shows the fifth embodiment of the present invention.
Will be described with reference to. FIG. 11 is a sequence diagram showing a network address and user identifier duplication check procedure according to the fifth embodiment of the present invention. In the fifth embodiment of the present invention, the network addresses of the users of the authentication communication paths 5 set by all the gateway devices 3 and the user identifiers corresponding to the network addresses are held respectively, so that the network addresses and the user identifiers It is an Example which shows the procedure which checks duplication.

As shown in FIG. 11, the gateway device 3
Holds the network address of the user who established the authentication communication path 5 after the completion of the authentication and the user identifier corresponding to this network address, and the information of the held network address and the user identifier corresponding to this network address Other gateway device 3
To notify.

When this notification is received from another gateway device 3, the information of the gateway device 3 that sets the authentication communication path 5 and the information of the network address and the user identifier corresponding to this network address are held. ..

Upon receiving the request for setting the authentication communication path 5, the gateway device 3 receives the network address of the user who uses the authentication communication path 5 set in all the gateway devices 3 currently held by the gateway device 3. Also, the user identifier corresponding to this network address is searched, and when any of them is the same, the gateway device 3 which sets the authentication communication path 5 is confirmed.

When the gateway device 3 that sets the authentication communication path 5 is itself, the corresponding authentication communication path 5
And the newly requested authentication communication path 5 is set.

When the gateway device 3 that sets the authentication communication path 5 is another gateway device 3, the network address and the user identifier corresponding to this network address are set to the corresponding gateway device 3. And sends a request to delete the authentication communication path 3.

Upon receiving this deletion request, the gateway device 3 searches for the authentication communication path 5 that matches the requested network address and the user identifier corresponding to this network address, deletes this, and completes the deletion. To that effect is returned to the gateway device 3 which is the source of the deletion request.

The gateway device 3 which is the source of the deletion request and which has received this deletion completion response sets the newly requested authentication communication path 5.

(Sixth Embodiment) A sixth embodiment of the present invention is shown in FIG.
And it demonstrates with reference to FIG. FIG. 12 is an overall configuration diagram of the relay connection system of the sixth embodiment. FIG. 13 is a sequence diagram for explaining the operation of the access control server of the sixth embodiment.

The sixth embodiment is an example in which information servers D and E are provided in which personal authentication is limited to the application level. In this case, the gateway device 3
Access control server 8 between the information server D and the relevant information server D, E
The access control server 8 obtains the user identifier of the user by inquiring the gateway device 3 of the personal authentication state of the user using the private address of the user, and the information server D, A user identifier as personal authentication information at the application level is transmitted to E. At this time, the access control server 8 recognizes the application corresponding to the user based on the personal authentication information, and performs access control at the application level on the information servers D and E according to the recognized application. To do.

As a result, the single sign-on service according to the relay connection method of the present invention can be provided to the information servers D and E which can carry out personal authentication only at the application level.

(Summary of Embodiment) By using the relay connection method of the embodiment of the present invention, the network level authentication and the personal level authentication are executed at the same time, and the gateway device 3 collectively manages the authentication state. It is possible to avoid inconsistency or duplication of authentication status between authentication and personal level authentication. In addition, this can simplify the authentication procedure.

Further, while the information servers A, B and C hold the personal level authentication state, the gateway device 3 does not assign the private network address assigned to the corresponding user, thereby performing the authentication communication. It is possible to prevent inconsistency or duplication of authentication states inside the network 4. Further, the users a or b can be specified on the side of the information servers A, B and C.

Further, individual level access control can be executed at the network level.

Since the individual level authentication is performed for the user who uses the authentication communication network 4 when the network level authentication communication path 5 is set, the execution of the individual level authentication can be standardized and the authentication procedure can be simplified. You can

When the authentication communication path 5 is set, in order to perform individual level authentication, the authentication communication network 4 is connected via the gateway device 3.
Since the communication for accessing the inside is the communication for which the individual level authentication is completed, it is possible to avoid the mismatch or duplication of the authentication states.

While the information servers A, B, and C hold personal authentication, the corresponding private network addresses are not assigned, so that the information servers A, B, and C are not allocated.
It is possible to avoid inconsistency or duplication of the authentication state between the gateway device 3 and the gateway device 3.

An application for monitoring communication accessing the inside of the authentication communication network 4 in the gateway device 3 and guiding a user who has not completed individual level authentication to the individual level authentication according to the application to be used. Since it is not necessary to perform the guiding process to the personal level authentication corresponding to, the processing load of the gateway device 3 can be reduced.

Since the gateway device 3 performs the personal level authentication before setting the authentication communication path 5, the communication packet received when the induction to the personal level authentication is detected is held in the gateway device 3 and the personal level authentication is performed. After the authentication is completed, there is no need to perform the process of transferring the data to the inside of the authentication communication network 4, and the processing load of the gateway device 3 can be reduced.

[0122]

As described above, according to the present invention,
The user can be specified from the information server side. It is possible to avoid inconsistency in the authentication status in the authentication communication network. The procedure of network level authentication and individual level authentication can be simplified. The present invention can reduce the processing load of the gateway device.

[Brief description of drawings]

FIG. 1 is an overall configuration diagram of a relay connection system according to an embodiment of the present invention.

FIG. 2 is a sequence diagram showing an operation from when the user terminal detects access of the user into the authentication communication network to when an authentication communication path is formed.

FIG. 3 is a sequence diagram showing an operation in a process in which a user of a user terminal starts using an application and continues communication.

FIG. 4 is a sequence diagram showing an operation of disconnecting an authentication communication path according to an authentication communication path disconnection request from a user terminal and releasing an authentication state at an individual level in the information server A by no communication of the user.

FIG. 5 is a sequence diagram showing an operation when the user b uses the information server A after using the information server A of the user a.

FIG. 6 is a sequence diagram showing an operation when the user b uses the information server A after using the information server A of the user a.

FIG. 7 shows an operation of disconnecting an authentication communication path in accordance with an authentication communication path disconnection request from a user terminal, and releasing personal authentication by a release notification of an individual-level authentication state to an information server used by the user. Sequence Diagram.

FIG. 8 is a sequence diagram showing a procedure for checking duplication of a network address and a user identifier according to the third embodiment of this invention.

FIG. 9 is a sequence diagram showing a procedure for checking duplication of a network address and a user identifier according to the fourth embodiment of the present invention.

FIG. 10 is a sequence diagram showing a duplication check procedure of a network address and a user identifier according to the fourth embodiment of the present invention.

FIG. 11 is a sequence diagram showing a duplication check procedure of a network address and a user identifier according to the fifth embodiment of the present invention.

FIG. 12 is an overall configuration diagram of a relay connection system according to a sixth embodiment of the present invention.

FIG. 13 is a sequence diagram for explaining the operation of the access control server according to the sixth embodiment of the present invention.

FIG. 14 is a diagram for explaining a conventional relay connection system.

[Explanation of symbols]

1 user terminal 2 public communication network 3 Gateway device 4 Authentication communication network 5 Authentication channel 6 Network level authentication server 7 Personal level authentication server 8 access control server A, B, C, D, E Information server a, b users # 1, # 2 Information server communication network

   ─────────────────────────────────────────────────── ─── Continued front page    (72) Inventor Takuya Inoue             1-1-6 Uchisaiwaicho, Chiyoda-ku, Tokyo             Nutty Communications Inc.             Inside the company (72) Inventor Junnosuke Yamada             1-1-6 Uchisaiwaicho, Chiyoda-ku, Tokyo             Nutty Communications Inc.             Inside the company (72) Inventor Yoichi Mizoguchi             1-1-6 Uchisaiwaicho, Chiyoda-ku, Tokyo             Nutty Communications Inc.             Inside the company F-term (reference) 5K030 GA15 HD03 HD06 LD20

Claims (30)

[Claims] 1. An authentication communication network as a private communication network including an information server that can be used by users who have performed both network level and individual level authentication and is controlled by a private network address and provides information to users. In a relay connection system including a public communication network connected to a user terminal that accesses the authentication communication network and a gateway device connecting the authentication communication network, the network level authentication information and the personal level authentication information A network level authentication server that holds authentication information added with is provided, the network level authentication server adds and holds personal level access control information together with the authentication information, and an authentication request from the gateway device. The authenticated information received as Means for adding information to the gateway device and returning the information to the gateway device, wherein the gateway device includes the authenticated information and the user identifier obtained by adding the authenticated information at the personal level to the authenticated information at the network level and the authenticated information. Means for receiving expiration date information from the user terminal and verifying the expiration date to confirm the validity of the authenticated information; and the network level authentication server using the user identifier and the authenticated information. Means for transmitting the authentication request to the user of the user terminal, and a private network address to be used inside the authentication communication network upon completion of the authentication to the user of the user terminal and the authentication result from the network level authentication server. Network-level credentials and personal-level authorization returned as The personal level access control information, which holds a network address and a user identifier, which are addresses of the user in the public communication network as information, and is returned correspondingly with the authentication result from the network level authentication server And a means for holding the authentication information, and at the time of authentication, mutually sharing secret information with the user and generating an authentication communication path, which is an encrypted communication path using this secret information, with the user terminal. Between the network address in the public communication network and the private address used in the authentication communication network while permitting access to the authentication communication network from the user only in the authentication communication path. Means for performing address conversion with, and when the user accesses the authentication communication network, A relay connection method comprising: means for retrieving the corresponding access control information from a user's network address and controlling access of the user to the information server according to the access control information. 2. The information server acquires the user identifier by inquiring of the gateway device about the personal authentication state of the user using the private network address of the user when there is access from the user. The relay connection system according to claim 1, further comprising means. 3. The gateway device comprises means for not reallocating a private network address in the authentication communication network allocated to the user until the information server releases the personal level authentication status. 1
Relay connection method described. 4. The gateway device according to a request from a user, or at the time of detecting no communication from the user to the inside of the authentication communication network using the authentication communication path for a predetermined time or more. The relay connection system according to claim 1, further comprising means for deleting the authentication communication path. 5. The gateway device, when deleting the authentication communication path, deletes the authentication communication path from the information server used by the user of the authentication communication path and performs individual-level authentication. 2. The relay connection method according to claim 1, further comprising means for notifying the release of the status, wherein the information server includes means for releasing the personal-level authentication status of the corresponding user according to the notification from the gateway device. 6. When the gateway device receives a request for setting the authentication communication path from a user, the gateway device sends the user identifier and the authenticated information included in the setting request to the network level authentication server, and the The network level authentication server includes means for setting a network address of a user in the authentication request and transmitting the network request to the network level authentication server, the network level authentication server receiving the authentication request, and the network address and the network address corresponding to the network address. A means for holding a user identifier, and the use set in the authentication request by searching for information on the authentication communication path in communication held by the network level authentication server upon receiving the authentication request Already according to the person identifier and / or the network address Means for detecting whether or not an authentication communication path is set up, and the gateway device which sets up the authentication communication path when the authentication communication path is already set up by the same user identifier or the same network address And a means for transmitting a deletion request for the authentication communication path that is duplicated with respect to the gateway device, wherein the gateway device receives the deletion request for the authentication communication path and searches for a corresponding authentication communication path, When the corresponding authentication communication path is searched by the search result of the means, the authentication communication path is deleted, and means for notifying the network level authentication server of a response of the deletion completion, the network level authentication server, The authentication communication path has not already been set with the same user identifier or the same network address. When, or when the deletion completion response is received, the user identifier and the authenticated information set in the authentication request are verified, and the address control information of the corresponding user is added to the result of this authentication. The gateway device receives the response with the address control information added, and sets the authentication communication path, and transmits a notification of the authentication communication path setting to the network level authentication server. Means, the network level authentication server receives the notification of the authentication communication path setting, the identification information of the gateway device that has set the authentication communication path as the authentication communication path information that has been set, and the user identifier, The gateway device includes means for holding each of the network addresses within itself, In response to a request from the user, or when detecting no communication from the user to the inside of the authentication communication network using the authentication communication path for a predetermined time or more, means for deleting the authentication communication path; And a means for notifying the network level authentication server of the deletion of the corresponding authentication communication path, and the network level authentication server receives the notification of the deletion. The relay connection method according to claim 1, further comprising means for discarding information regarding the corresponding authentication communication path. 7. The gateway device holds a network address of a user who has established the authentication communication path after completion of authentication and a user identifier corresponding to the network address, and receives a request for setting the authentication communication path. And a means for retrieving the network address of the user who is using the authentication communication path currently set by the user and / or a user identifier corresponding to this network address, and the retrieval result of the retrieving means The network address of the user included in the setting request and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or this network Same as the user identifier corresponding to the address And a means for deleting the existing authentication communication path set by the self and setting the authentication communication path based on the setting request; and a use included in the setting request by the search result of the searching means. Person's network address and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or the use corresponding to this network address Means for notifying the other gateway device of the network address and the user identifier corresponding to the network address when the user identifier does not match, and the device itself when the notification is received from the other gateway device. The network of the user who is setting the authentication communication path. A network address and / or a means for searching whether the user identifier corresponding to the network address is the same as the network address and / or the user identifier included in the notification; and a search result of the searching means. When they are not the same, a means for responding to that effect to the gateway device that is the sender of the notification, and when the search results of the searching means are the same, the duplicate authentication communication channel held by itself is deleted and the self-maintained Means for discarding the duplicated information on the authentication communication path, a means for responding to the sender of the notification that there is a corresponding user of the authentication communication path and the completion of deletion, 3. A means for setting a new authentication communication path when being a transmission source and receiving the response. Relay connection method described. 8. The gateway device holds a network address of a user who has established the authentication communication path after completion of authentication and a user identifier corresponding to the network address, and receives a request for setting the authentication communication path. And a means for retrieving the network address of the user who is using the authentication communication path currently set by the user and / or a user identifier corresponding to this network address, and the retrieval result of the retrieving means The network address of the user included in the setting request and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or this network Same as the user identifier corresponding to the address And a means for deleting the existing authentication communication path set by the self and setting the authentication communication path based on the setting request; and a use included in the setting request by the search result of the searching means. Person's network address and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or the use corresponding to this network address Means for notifying the other gateway device of the network address and the user identifier corresponding to the network address when the user identifier does not match, and the device itself when the notification is received from the other gateway device. The network of the user who is setting the authentication communication path. A network address and / or a means for searching whether the user identifier corresponding to the network address is the same as the network address and / or the user identifier included in the notification; and a search result of the searching means. When they are not the same, means for replying to that effect to the gateway device that is the sender of the notification, and when the search results of the searching means are the same, means for replying to that effect to the gateway device that is the sender of the notification. , When it is the sender of the notification and receives this response, the duplicate authentication channel held by the gateway device is deleted from the gateway device of the sender of the response, and the gateway device holds it. Request to delete the duplicated information related to the authentication channel. And means for deleting the duplicated authentication communication channel held by itself and the information on the duplicated authentication communication channel held by itself, when the self is the sender of the response and receives this request. A means for responding that there is a corresponding user of the authentication communication path overlapping with the sender of the request and completion of deletion, and a new authentication communication when the user is the sender of the request and receives the response. The relay connection system according to claim 1, further comprising means for setting a route. 9. The gateway device holds a network address of a user who has established the authentication communication path after completion of authentication and a user identifier corresponding to the network address, and the network held in the holding device. Means for notifying an address and information of the user identifier corresponding to the network address to the other gateway device, and the gateway device which sets the authentication communication path when the notification is received from the other gateway device And information on the network address and information on the user identifier corresponding to the network address, and setting on all the gateway devices currently held by itself when a request for setting the authentication communication path is received. The authentication communication channel A means for retrieving the network address of the user who is using it and / or the user identifier corresponding to this network address, and if any of them is the same, a means for confirming the gateway device that has established its authentication communication path; When the gateway device setting the authentication communication path is its own, the corresponding authentication communication path is deleted and a newly requested authentication communication path is set, and the authentication communication path is set. Means for setting the network address and the user identifier corresponding to the network address to the corresponding gateway device when the gateway device is another gateway device, and transmitting a request for deleting the authentication communication path. , When it receives this delete request, A means for retrieving the authentication communication path that matches the network address and / or the user identifier corresponding to this network address, deleting the authentication communication path, and responding to the gateway device as the deletion request source that the deletion is completed; Is a source of the deletion request, and when the deletion completion response is received, a relay connection method according to claim 1, further comprising means for setting the newly requested authentication communication path. 10. An information server whose personal authentication is limited to an application level is provided, and an access control server is provided between the gateway device and the information server. The access control server is a user's private server. Means for acquiring the user identifier of the user by inquiring the gateway device about the personal authentication state of the user by using an address; and the information server, the user identifier as the personal authentication information at the application level. The relay connection system according to claim 1, further comprising: a transmitting unit. 11. The access control server recognizes an application corresponding to the user based on the personal authentication information, and the application level for the information server according to the application recognized by the recognition means. And means for performing access control according to claim 1.
0 relay connection method. 12. A unit which is applied to the relay connection method according to claim 1 and holds authentication information in which personal level authentication information is added to network level authentication information, and the authentication information. Means for additionally holding individual level access control information, and means for verifying the authenticated information received as an authentication request from the gateway device, adding the access control information to the authentication result, and returning the result to the gateway device. A network level authentication server comprising: 13. When the gateway device receives a request for setting the authentication communication path from a user, the user ID and authentication information included in the setting request, and the authentication in which the network address of the user is set. A unit that receives a request and holds the network address and the user identifier corresponding to the network address; and a unit that searches the information of the authentication communication path during communication that is held by receiving the authentication request, A means for detecting whether or not the authentication communication path has already been set according to the user identifier and / or the network address set in the authentication request; When the authentication communication path is set, the authentication communication path is set. Means for transmitting a deletion request of the duplicated authentication communication path to the gateway device, and when the authentication communication path is not already set by the same user identifier or the same network address, or a response of the deletion completion When the authentication request is received, the user identifier and the authenticated information set in the authentication request are verified, the address control information of the corresponding user is added to the result of this authentication, and the authentication request or the deletion completion response is sent. Means for responding to the gateway device that has transmitted, and the identification information of the gateway device that has received the notification of the authentication communication path setting from the gateway device and has set the authentication communication path as authentication communication path information that has been set, and Means for holding each of the user identifier and the network address inside itself, and Network Level Authentication server according to claim 12, further comprising a means for discarding information about authentication channel in question receiving the authentication communication path deletion notification from the gateway device. 14. The authentication information and the user identifier, which are applied to the relay connection method according to any one of claims 1 to 11, and which are obtained by adding the authentication information at the personal level to the authentication information at the network level and the user identifier. Means for receiving information expiration date information from the user terminal and verifying the expiration date to confirm the validity of the authenticated information; and the network level using the user identifier and the authenticated information. A means for transmitting the authentication request to the authentication server, and a private network address to be used inside the authentication communication network when the authentication is completed is assigned to the user and returned from the private network address and the network level authentication server as the authentication result. Said use as network level authentication information and personal level authentication information Means for holding a network address and a user identifier, which are addresses in a person's public communication network, and for holding the personal level access control information returned together with the authentication result from the network level authentication server in correspondence therewith. A means for, upon completion of authentication, mutually sharing secret information with the user and generating an authentication communication path, which is an encrypted communication path using the secret information, with the user terminal; Access from the user to the authentication communication network is permitted only in the authentication communication path, and address conversion is performed between the network address in the public communication network and the private address used inside the authentication communication network. Means and a network of the user when the user accesses the authentication communication network Gateway device is characterized in that a means for controlling access according to the access control information by searching the access control information corresponding the address for the information server of the user. 15. A means for holding a network address of a user who has established the authentication communication path after the completion of the authentication and a user identifier corresponding to the network address; Included in the setting request according to the means for searching the network address of the user who is using the authentication communication path set by the user and / or the user identifier corresponding to the network address, and the search result of the searching means. The network address of the user and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or the network address corresponding to this network address If the user ID is the same, Means for setting the authentication communication path based on the setting request by deleting the existing authentication communication path set by, and the network address of the user included in the setting request according to the search result of the searching means. And / or the user identifier corresponding to this network address matches the network address of the user who is currently using the authentication communication path currently set by the user and / or the user identifier corresponding to this network address. If not, means for notifying the other gateway device of the network address and the user identifier corresponding to the network address, and the authentication communication path setting held by itself when the notification is received from the other gateway device. The network address of the user inside and Alternatively, means for searching whether or not the user identifier corresponding to this network address is the same as the network address and / or the user identifier included in the notification, and when the search results of the searching means are not the same. When the search results of the means for responding to the gateway device which is the source of the notification and the search means are the same, the duplicated authentication communication path held by itself is deleted and the self held. Means for discarding information regarding the duplicated authentication communication channel, means for responding to the sender of the notification that there is a corresponding user of the duplicated authentication communication path and completion of deletion, and that the sender of the notification 15. The gateway device according to claim 14, further comprising means for setting the new authentication communication path when the response is received. Place 16. A means for holding a network address of a user who has established the authentication communication path after the completion of authentication and a user identifier corresponding to the network address, and a means for holding the authentication communication path setting request at present. Included in the setting request according to the means for searching the network address of the user who is using the authentication communication path set by the user and / or the user identifier corresponding to the network address, and the search result of the searching means. The network address of the user and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or the network address corresponding to this network address If the user ID is the same, Means for setting the authentication communication path based on the setting request by deleting the existing authentication communication path set by, and the network address of the user included in the setting request according to the search result of the searching means. And / or the user identifier corresponding to this network address matches the network address of the user who is currently using the authentication communication path currently set by the user and / or the user identifier corresponding to this network address. If not, means for notifying the other gateway device of the network address and the user identifier corresponding to the network address, and the authentication communication path setting held by itself when the notification is received from the other gateway device. The network address of the user inside and Alternatively, means for searching whether or not the user identifier corresponding to this network address is the same as the network address and / or the user identifier included in the notification, and when the search results of the searching means are not the same. Means for replying to that effect to the gateway device that is the sender of the notification, and means for replying to that effect to the gateway device that is the sender of the notification when the search results of the searching means are the same; When the response is received from the sender of the notification, the duplicate authentication channel held by the gateway is deleted from the gateway that is the sender of the response, and the duplicate held by the gateway is deleted. Means for making a request to delete information regarding the authentication communication path, And a means for deleting the duplicated authentication communication channel held by itself when receiving this request and discarding the information on the duplicated authentication communication channel held by itself, and the sender of the request Means for responding to the fact that there is a corresponding user of the authentication channel overlapping with the above and completion of deletion, and means for setting a new authentication channel when the user is the sender of the request and receives the response. The gateway device according to claim 14, which is provided. 17. A means for holding a network address of a user who has established the authentication communication path after completion of authentication and a user identifier corresponding to this network address, and the network address and this network address held in this holding means. Means for notifying the information of the user identifier corresponding to the other gateway device, and information of the gateway device and the network for which the authentication communication path is set when the notification is received from the other gateway device. An address and a means for holding information of the user identifier corresponding to the network address, and the authentication set in all the gateway devices currently held by itself when a request for setting the authentication communication path is received. In front of the user using the communication path A means for retrieving the network address and / or the user identifier corresponding to this network address, and if either is the same, a means for confirming the gateway device that has established the authentication communication path, and setting the authentication communication path. Means for deleting the corresponding authentication communication path and setting the newly requested authentication communication path when the gateway apparatus is its own, and the gateway apparatus setting the authentication communication path is the other one. When the device is a gateway device, means for setting the network address and the user identifier corresponding to the network address to the corresponding gateway device and transmitting a request for deleting the authentication communication path; When received, the network address in the request And / or means for searching the authentication communication path that matches the user identifier corresponding to the network address, deleting the authentication communication path, and responding to the gateway device of the deletion request source that the deletion is completed, 15. The gateway device according to claim 14, further comprising means for setting the newly requested authentication communication path when a deletion completion response is received from a request source. 18. The relay connection method according to claim 1, wherein the gateway device uses the private network address of the user when the user accesses the gateway device. An information server comprising means for acquiring the user identifier by inquiring about the authentication status. 19. The relay connection method according to claim 1, wherein the gateway device is provided between an information server limited to an application level for performing personal authentication, and A means for obtaining the user identifier of this user by inquiring the gateway device of the personal authentication state of the user using a private address; and a user identifier as personal authentication information at the application level in the information server. And a means for transmitting the access control server. 20. A means for recognizing an application corresponding to the user based on the personal authentication information, and access control at the application level to the information server according to the application recognized by the recognizing means. And means.
9. The access control server according to item 9. 21. When installed in an information processing apparatus, the information processing apparatus has a network function as a function corresponding to the network level authentication server applied to the relay connection method according to claim 1. A function of holding authentication information in which personal level authentication information is added to level authentication information, a function of holding personal level access control information in addition to the authentication information, and reception as an authentication request from the gateway device And a function of verifying the authenticated information, adding the access control information to the authentication result, and returning the authentication result to the gateway device. 22. When the gateway device receives a request for setting the authentication communication path from a user, the user identifier and authentication information included in the setting request, and the authentication in which the network address of the user is set. A function of receiving a request and holding the network address and the user identifier corresponding to the network address; and searching for information of the authentication communication path during communication which is held by receiving the authentication request, A function for detecting whether or not the authentication communication path has already been set according to the user identifier and / or the network address set in the authentication request, and the same user identifier or the network address has already been used to detect the authentication channel. When the authentication communication path is set, the authentication communication path is set. A function for transmitting a duplicate request for deleting the authentication communication path to a gateway device, when the authentication communication path is not already set by the same user identifier or the network address, or a response indicating that the deletion is completed. When the authentication request is received, the user identifier and the authenticated information set in the authentication request are verified, the address control information of the corresponding user is added to the result of this authentication, and the authentication request or the deletion completion response is sent. And a function of responding to the gateway device that has transmitted, the identification information of the gateway device that has set the authentication communication path as the authentication communication path information that has been set by receiving the notification of the authentication communication path setting from the gateway device and the The function of holding the user identifier and the network address inside itself, and Claim 21, wherein the program for realizing the function discards the information about the authentication communication path to receive notification of deletion of the authentication communication path appropriate from the gateway device. 23. When installed in an information processing device, the information processing device has a network level function as a function corresponding to the gateway device applied to the relay connection method according to any one of claims 1 to 11. The authenticated information obtained by adding the authenticated information at the individual level to the authenticated information, the user identifier, and the expiration date information of the authenticated information are received from the user terminal, the expiration date is verified, and the authenticated information is received. A function of confirming the validity of the authentication request, a function of transmitting the authentication request to the network level authentication server using the user identifier and the authenticated information, and a private used inside the authentication communication network when the authentication is completed. Assign a network address to the user and the private network address and the network level authentication server. Holds the network address and the user identifier, which are the addresses in the public communication network of the user as the network-level authentication information and the personal-level authentication information returned from the authentication result, respectively, and correspond to them. A function to retain the personal level access control information returned from the network level authentication server together with the authentication result, and share the confidential information with the user upon completion of the authentication and use this confidential information. And a function of generating an authentication communication path, which is an encrypted communication path, with the user terminal, and permitting access from the user to the authentication communication network only to the authentication communication path and the public Network address in communication network and private address used inside the authentication communication network A function of performing address conversion between the users, and when the user accesses the authentication communication network, the corresponding access control information is retrieved from the network address of the user, and the user of the user according to the access control information. A program that realizes a function of controlling access to an information server. 24. A function of holding a network address of a user who has established the authentication communication path after completion of authentication and a user identifier corresponding to the network address, and a self-currently present function when the authentication communication path setting request is received. Included in the setting request according to the function of searching the network address of the user who is using the authentication communication path set by the user and / or the user identifier corresponding to this network address, and the search result of this searching function. The network address of the user and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or the network address corresponding to this network address If the user ID is the same, A function of deleting the existing authentication communication path set by the user to set the authentication communication path based on the setting request, and the network address of the user included in the setting request according to the search result of the searching function. And / or the user identifier corresponding to this network address matches the network address of the user who is currently using the authentication communication path currently set by the user and / or the user identifier corresponding to this network address. If not, a function of notifying the other gateway device of the network address and the user identifier corresponding to the network address, and the authentication communication path setting held by itself when the notification is received from the other gateway device. The network address of the user inside and Alternatively, a function for searching whether or not the user identifier corresponding to this network address is the same as the network address and / or the user identifier included in the notification, and when the search results of this searching function are not the same. When the search result of the function that responds to the gateway device that is the sender of the notification is the same, the duplicate authentication communication path that the self holds is deleted and the self holds A function of discarding information regarding the duplicated authentication communication channel, a function of responding to the sender of the notification that there is a corresponding user of the duplicated authentication communication channel and the completion of deletion, and the self is the sender of the notification. 24. The program according to claim 23, which realizes a function of setting the new authentication communication path when the response is received. . 25. A function of holding a network address of a user who has established the authentication communication path after completion of authentication and a user identifier corresponding to the network address, and a self-currently present function when the authentication communication path setting request is received. Included in the setting request according to the function of searching the network address of the user who is using the authentication communication path set by the user and / or the user identifier corresponding to this network address, and the search result of this searching function. The network address of the user and / or the user identifier corresponding to this network address and the network address of the user who is using the authentication communication path currently set by the user and / or the network address corresponding to this network address If the user ID is the same, A function of deleting the existing authentication communication path set by the user to set the authentication communication path based on the setting request, and the network address of the user included in the setting request according to the search result of the searching function. And / or the user identifier corresponding to this network address matches the network address of the user who is currently using the authentication communication path currently set by the user and / or the user identifier corresponding to this network address. If not, a function of notifying the other gateway device of the network address and the user identifier corresponding to the network address, and the authentication communication path setting held by itself when the notification is received from the other gateway device. The network address of the user inside and Alternatively, a function for searching whether or not the user identifier corresponding to this network address is the same as the network address and / or the user identifier included in the notification, and when the search results of this searching function are not the same. A function that responds to the gateway device that is the sender of the notification, and a function that responds to the gateway device that is the sender of the notification when the search results of the search function are the same. When the response is received from the sender of the notification, the duplicate authentication channel held by the gateway is deleted from the gateway that is the sender of the response, and the duplicate held by the gateway is deleted. And a function for making a request to delete the information related to the authentication communication path. When the request is received, the function of deleting the duplicate authentication channel held by itself and discarding the information on the duplicate authentication channel held by itself, and the source of the request A function of responding to the fact that there is a corresponding user of the authentication communication channel overlapping with the above and the completion of deletion, and a function of setting a new authentication communication channel when the user is the sender of the request and receives the response. The program according to claim 23, which is realized. 26. A function of holding a network address of a user who has established the authentication communication path after the completion of authentication and a user identifier corresponding to this network address, and the network address and this network address held in this holding function. And a function of notifying the other gateway device of the information of the user identifier corresponding to the information of the gateway device that sets the authentication communication path when the notification is received from the other gateway device and the network. A function of holding an address and information of the user identifier corresponding to this network address, and the authentication set in all the gateway devices currently held by itself when a request for setting the authentication communication path is received. In front of the user using the communication path The function of searching the network address and / or the user identifier corresponding to this network address and confirming the gateway device that sets the authentication communication path when either is the same, and setting the authentication communication path. When the gateway device is self, the function of deleting the corresponding authentication communication path and setting the newly requested authentication communication path, and the gateway apparatus setting the authentication communication path are When it is a gateway device, a function of setting the network address and the user identifier corresponding to the network address to the corresponding gateway device and transmitting a request for deleting the authentication communication path, and the self When received, the network address in the request And / or a function of searching for the authentication communication path that matches the user identifier corresponding to the network address, deleting the authentication communication path, and responding to the gateway device of the deletion request source that the deletion is completed, 24. The program according to claim 23, which is a request source and, when receiving the deletion completion response, realizes a function of setting the newly requested authentication communication path. 27. As a function corresponding to the information server applied to the relay connection method according to any one of claims 1 to 11, when installed in the information processing device, the user A program that realizes a function of acquiring the user identifier by inquiring of the gateway device about the personal authentication state of the user using the private network address of the user when accessed from. 28. When installed in an information processing device, the information processing device has a user function as a function corresponding to the access control server applied to the relay connection method according to claim 1. A function of inquiring the user of the personal authentication status of the user to the gateway device by using the private address of the user, and a user as the personal authentication information at the application level in the information server. A program that realizes a function of transmitting an identifier. 29. A function of recognizing an application corresponding to the user based on the personal authentication information, and access control at the application level to the information server according to the application recognized by the recognition function. The program according to claim 28, which realizes a function. 30. A recording medium readable by the information processing device, in which the program according to any one of claims 21 to 29 is recorded.