Abstract: [Problem] Provided is an authorization system capable of reducing a load on a host regarding an invitation procedure in a case where there is a large number of guests or guests are frequently invited, and preventing identity theft or invitation of an unwanted third party.

Abstract: A user agent stores user information of a user and user information provided to a service provider server. When a user terminal registers the user in the service provider server, the user agent sends the user information already provided to the service provider server to the user terminal. When the user agent receives a provision permission of the user information from the user terminal, the user agent generates pseudo user identification information, a public key, and a private key, signs a service document of the service provider server, and sends the service document to the service provider server via the user terminal. When the signed service document is received, the user agent verifies the signature and sends user information to the service provider server.

Abstract: [Problem] To provide a terminal registration system and a terminal registration method for improving user convenience in registration of a new terminal to a plurality of service sites. [Solution] The registered terminal 1 includes an Authenticator 10 including service site list information 110 that associates private keys and URLs for access to service sites with each other. A Registration Manager 100 acquires the service site list information 110 from the Authenticator 10 of the registered terminal 1. Then, the Registration Manager 100 performs FIDO authentication for a registration target service site using a private key of the registered terminal 1, on the basis of the acquired service site list information 110, and performs Registration of a newly generated cryptographic key at the new terminal 2.

Abstract: A light source device includes: a light source unit emitting first light in a first polarization direction and second light in a second polarization direction; a polarization separation element receiving the first light and the second light; a phosphor receiving the first light transmitted through the polarization separation element; and a phase conversion element receiving the second light reflected by the polarization separation element. The polarization separation element reflects visible light having a longer wavelength than a polarization transmission wavelength region. The phosphor converts the received first light into third light having a longer wavelength than the polarization transmission wavelength region. The phase conversion element phase-converts the received second light into fourth light in the first polarization direction.

Abstract: [Problem] In guest invitation for a smart lock, a burden on an owner on invitation is reduced and impersonation or invitation of an unintended third party is prevented. [Solution] A representative guest terminal 102 requesting unlocking of a smart lock 400 generates authentication information referred to at the time of a request for unlocking, imparts a signature to the authentication information, and transmits the authentication information to an owner terminal 101. The owner terminal 101 verifies a signature of the representative guest terminal 102, imparts a signature to the authentication information, and transmits the authentication information to a management server 200. The management server 200 verifies the signatures of the representative guest terminal 102 and the owner terminal 101, stores the owner terminal 101 and the representative guest terminal 102 in association with each other, and stores the authentication information and the representative guest terminal 102 in association with each other.

Abstract: An information distribution history management system (10) includes a service user terminal (200) and a service provider server (300) that request an information distribution history management device (100) to make a record of provision in a case where personal information related to a user is provided to the service provider server (300). Also, the service provider server (300) requests the information distribution history management device (100) to make a record of receipt when the service provider server (300) receives the personal information. The information distribution history management device (100) stores records in response to requests and also searches the records. The records include identification information of the user of the service user terminal (200), identification information of the providing service provider server (300), and identification information of the receiving service provider server (300).

Abstract: A user agent stores a private key and a public key of a user, and user information (registered user information). The user agent receives from a user terminal a service document including identification information of a service provider server and a user information classification requested by the service provider server, and adds a signature to the service document by using the private key of the user. The user terminal receives the signed service document and transmits the signed service document to the service provider server. The user agent receives the signed service document from the service provider server, and verifies the signature and transmits back to the service provider server the user information of the user corresponding to the included user information classification.

Abstract: A terminal A transmits an owner identity confirmation start request to a terminal B including owner server association information capable of identifying an owner of the terminal and a terminal management server A of the terminal. The terminal B transmits an owner identity confirmation request to the terminal management server B of the terminal, the owner identity confirmation request including the owner server association information received and the owner server association information including information of the terminal B. The terminal management server B transmits, to the terminal management server A, an inter-server owner identity confirmation request including the identity confirmation information of the owner of the terminal B and the owner server association information of the terminal A.

Abstract: [Problem] To provide a terminal registration system and a terminal registration method for improving user convenience in registration of a new terminal to a plurality of service sites. [Solution] The registered terminal 1 includes an Authenticator 10 including service site list information 110 that associates private keys and URLs for access to service sites with each other. A Registration Manager 100 acquires the service site list information 110 from the Authenticator 10 of the registered terminal 1. Then, the Registration Manager 100 performs FIDO authentication for a registration target service site using a private key of the registered terminal 1, on the basis of the acquired service site list information 110, and performs Registration of a newly generated cryptographic key at the new terminal 2.

Abstract: In a user credential control system (1000), an access control server includes a token issuing unit (110) that issues, to a service provider server (16), a token in which a user credential (23) that can be acquired by the service provider server (16) is described according to the company name and the type of a service of the service provider server (16) described in an electronic certificate, a policy registration unit (130) that registers a policy of an access authority of the service provider server (16) to the user credential (23) based on the company name or the type of the service of the service provider server (16), and a notification reception unit (120) that, when the user credential (23) of the user terminal (11) has been changed, acquires the service provider server (16) with the access authority to the user credential from a token according to the registered policy to notify the service provider server of the change of the user credential (23).

Abstract: The owner sameness confirmation system determines whether or not the owners of two terminals (200A, 200B) are the same. The terminals (200A, 200B) store identity confirmation information stored in association with electronic certificates issued to the terminals by authentication station servers (100A, 100B). The terminal (200A) transmits information obtained by encrypting the identity confirmation information of the owner through homomorphic encryption to the terminal (200B). The terminal (200B) transmits response encrypted information including information obtained by encrypting the identity confirmation information of the owner of the terminal (200B), as a response to the terminal (200A). The terminal (200A) decrypts the response encrypted information and determines the sameness of the owners based on whether or not the decryption result matches a predetermined value.

Abstract: [Problem] To provide a terminal registration system and a terminal registration method for improving user convenience in registration of a new terminal to a plurality of service sites. [Solution] The registered terminal 1 includes an Authenticator 10 including service site list information 110 that associates private keys and URLs for access to service sites with each other. A Registration Manager 100 acquires the service site list information 110 from the Authenticator 10 of the registered terminal 1. Then, the Registration Manager 100 performs FIDO authentication for a registration target service site using a private key of the registered terminal 1, on the basis of the acquired service site list information 110, and performs Registration of a newly generated cryptographic key at the new terminal 2.

Abstract: To provide a terminal registration system and a terminal registration method for improving user convenience in registration of a new terminal to a plurality of service sites. The registered terminal 1 includes an Authenticator 10 including service site list information 110 that associates private keys and URLs for access to service sites with each other. A Registration Manager 100 acquires the service site list information 110 from the Authenticator 10 of the registered terminal 1. Then, the Registration Manager 100 performs FIDO authentication for a registration target service site using a private key of the registered terminal 1, on the basis of the acquired service site list information 110, and performs Registration of a newly generated cryptographic key at the new terminal 2.

Abstract: The owner sameness confirmation system determines whether or not the owners of two terminals (200A, 200B) are the same. Authentication station servers (100A, 100B) store electronic certificates issued to the terminals and identity confirmation information of the owners of the terminals in association with each other. The terminal (200B) transmits information obtained by encrypting the identity confirmation information of the owner of the terminal (200B) through homomorphic encryption and the electronic certificate of the partner terminal (200A) to the authentication station server (100A). The authentication station server (100A) transmits response encrypted information including information obtained by encrypting the identity confirmation information of the owner of the terminal (200A) as a response. The terminal (200B) decrypts the response encrypted information and determines the sameness of the owners based on whether or not the decryption result matches a predetermined value.

Abstract: The owner sameness confirmation system determines whether or not the owners of two terminals (200A, 200B) are the same. Authentication station servers (100A, 100B) store electronic certificates issued to the terminals and identity confirmation information of the owners of the terminals in association with each other. The authentication station server (100A) transmits information obtained by encrypting the identity confirmation information of the owner of the terminal (200A) through homomorphic encryption and the electronic certificate of the partner terminal (200B) to the authentication station server (100B). The authentication station server 100B transmits response encrypted information including information obtained by encrypting the identity confirmation information of the owner of the terminal (200B) as a response.

Abstract: [Problem] A terminal registration system and a terminal registration method that enable the number of communication operations between terminals to be reduced are provided.

Abstract: [Problem] In guest invitation for a smart lock, a burden on an owner on invitation is reduced and impersonation or invitation of an unintended third party is prevented. [Solution] A representative guest terminal 102 requesting unlocking of a smart lock 400 generates authentication information referred to at the time of a request for unlocking, imparts a signature to the authentication information, and transmits the authentication information to an owner terminal 101. The owner terminal 101 verifies a signature of the representative guest terminal 102, imparts a signature to the authentication information, and transmits the authentication information to a management server 200. The management server 200 verifies the signatures of the representative guest terminal 102 and the owner terminal 101, stores the owner terminal 101 and the representative guest terminal 102 in association with each other, and stores the authentication information and the representative guest terminal 102 in association with each other.

Abstract: [Problem] A terminal registration system and a terminal registration method that enable the number of communication operations between terminals to be reduced are provided.

Abstract: [Problem] Provided is an authorization system capable of reducing a load on a host regarding an invitation procedure in a case where there is a large number of guests or guests are frequently invited, and preventing identity theft or invitation of an unwanted third party.

Abstract: [Problem] To provide a terminal registration system and a terminal registration method for improving user convenience in registration of a new terminal to a plurality of service sites. [Solution] The registered terminal 1 includes an Authenticator 10 including service site list information 110 that associates private keys and URLs for access to service sites with each other. A Registration Manager 100 acquires the service site list information 110 from the Authenticator 10 of the registered terminal 1. Then, the Registration Manager 100 performs FIDO authentication for a registration target service site using a private key of the registered terminal 1, on the basis of the acquired service site list information 110, and performs Registration of a newly generated cryptographic key at the new terminal 2.