JPH0464161A - Security protection system and electronic computer system applying the same - Google Patents

Abstract

PURPOSE:To obtain a security protection system for securing a much stronger user certifying function by executing a user certification furthermore based on a prescribed command input after giving a password and logging in. CONSTITUTION:After giving the password and logging in, the user certification is executed furthermore based on the prescribed command input. That is, when a user inputs a log-in name from a keyboard 4 corresponding to a log-in prompt on a CRT 3, the system requests the password, and executes the user certification process using a command order file 7 as well. Therefore even if an unjust user presumes the password correctly and succeeds to intrude, when an unsuitable command input is executed after the log-in, it is possible to log out the unjust user forcibly. Thus, the strong user certifying function can be obtained.

Description

[Detailed Description of the Invention] [Field of Industrial Application] The present invention relates to a security protection method for a shared computer system, and particularly for electronic systems that require information protection, such as workstations interconnected via a network. This invention relates to a security protection method for a computer system and an electronic computer system to which the same is applied.

[Background Art] With the recent development of computer systems, computer systems that connect many workstations have begun to be used in engineering departments such as design and administrative departments in offices to increase productivity. There is. As computer systems are often shared by multiple users, unless sufficient measures are taken to ensure the security of information, corporate secrets may be leaked outside the company, information may be intentionally altered, etc. There is a high risk of being deleted.

That is, it is necessary to protect information in order to eliminate interference between users and to prevent malicious theft, falsification, and destruction of information. In particular, with the progress of the information society, the amount of confidential corporate information and information regarding personal privacy is increasing, and protection measures for the security of this information are essential technologies. For this reason, conventionally, in shared computer systems, in addition to the user ID, a password known only to the user is used to confirm that the user is the correct user (hereinafter referred to as user authentication).

[Problems to be Solved by the Invention] However, as is clear from the frequent incidents of computer intrusion, user authentication using passwords alone is not sufficient to protect information. It has been reported that password-breaking programs created by so-called backers who intend to infiltrate computers use artificial intelligence technology to guess passwords and infiltrate computers.

Furthermore, as network technology advances, computer systems are connected to local networks such as in-house LANs, and as files can be shared and email exchanges become possible, protection from communication networks must also be considered. moreover,
Considering that in recent years, such local networks have begun to be connected to telephone lines and the like via gateways to form global networks, more robust information protection technology is required.

The present invention has been made in view of the above problems, and
The purpose of this invention is to provide a security protection method that guarantees a stronger user authentication function and a computer system that applies the same.

[Means for Solving the Problems] In order to achieve the above object, the security protection method of the present invention is a security protection method for a shared computer system, in which after logging in by giving a password, The user is further authenticated based on the input of the command.

Here, the further authentication is performed by the first consecutive predetermined number of commands appearing in a predetermined order after login.

Also, the further authentication is performed for the first consecutive M after login.
This is performed by N commands (N5M) appearing at least once among the commands.

Further, the computer system of the present invention is a shared computer system, and after a user logs in by giving a password, commands input by the user to the computer system are monitored until the user is authenticated. a storage means for storing a predetermined command procedure; and a comparison means for comparing a command input by the user with the predetermined command procedure of the storage means; When the command procedure stored in the storage means matches, the user is determined to be an authorized user and user authentication is performed.

Here, the monitoring means starts monitoring the command input by the user after the computer system automatically executes the command or the processing of the command file after the user logs in.

Further, the command procedure is defined in advance by the computer system or by each user.

Further, the command procedure is encrypted.

[Effect] According to the above configuration, even if an unauthorized user guesses the password correctly and succeeds in intruding, the probability that the command string input after logging in will match the contents of the predefined command procedure file is extremely high. Since this value is low, if an inappropriate command is entered, the unauthorized user can be forcibly logged out. Therefore, a stronger user authentication function can be provided, and information security can be further maintained.

[Embodiments] Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings. Although this embodiment will be described using a UNIX workstation as an example, the computer system of this embodiment is not limited to this.

FIG. 1 is a block diagram showing a schematic configuration diagram of the electronic computer system of this embodiment.

1 in the figure is the main body of the workstation.

2 is an input/output device, which includes a CRT 3, a keyboard 4, and the like. 5 is a CPU which controls the entire system; 6 is a memory consisting of ROM and/or RAM, which in this embodiment has a command procedure file 7; Reference numeral 8 denotes an input control section that controls input/output devices and the main body. 9
is a communication control device that controls network communication according to instructions from the CPU 5.

FIG. 2 is a flowchart showing the flow of user authentication processing in the computer system of this embodiment.

FIG. 3 shows an example of a session in which an unauthorized user succeeds in user authentication using a password, but is ultimately prevented from intruding in the user authentication process of the present invention.

On the other hand, FIG. 4 shows an example of a session in which an authorized user legitimately accesses the computer system based on the user authentication process according to the present invention.

FIG. 5 shows an example of a command procedure file in the memory 6 of the computer system of this embodiment.

The processing flow of this embodiment will be explained below using FIGS. 1 to 5.

To start the session, as shown in Figure 3,
Following the login prompt 21 on the CRT 3 (FIG. 1), the user enters a login name from the keyboard 4. When this login name is read into the system in the login name reading processing step Sll in FIG. 2, the system requests a password at the prompt 22, and reads the password input by the user in the password reading processing step S12. Although a password is displayed, this is displayed for convenience and without explanation; in a normal system, the password entered by the user is not displayed to maintain confidentiality.

Next, it is checked in password check processing step S13 whether the previously input login user name and password match. If the password is not valid here, it is determined that the user is not qualified to use it, and the session is not started, as in conventional user authentication processing. Furthermore, here,
If an unauthorized user successfully guesses your password,
The system starts the session as an authorized user.

Conventional computer systems do not perform any authentication process beyond user authentication using this password, and are therefore powerless to protect information after a password is entered. However, the computer system in this embodiment continues the user authentication process by further monitoring commands input by the user.

First, the system reads the command procedure file 7 in the memory 6 in step S14. Figure 5 shows an example of a command procedure file, in this case UNIX I
The file contents include the S command 28 and two uptime commands. At this time, if the 1s command and the uptime command are not executed in this order after the session starts, the system determines that the user is not eligible. That is, this command procedure file is also used to perform user authentication processing.

When a user passes an authentication process using a password and starts a session, the user attempts to obtain information within the computer system by giving commands to the system.

For example, in FIG. 3, the user uses IS command 23 to examine the contents of the current directory. The command input here (Is command) is read in command input reception processing step S15.

Then, in command procedure check step S16, this command is compared with the contents of the previously read command procedure file. Since the file content in the first line of the command procedure file is also the IS command 28, the user is determined to be legitimate at this stage, the command processing step S17 is executed, and the processing result is displayed on the CRTa.

When the command processing step S17 is completed, a check processing step S1.8 is executed to determine whether or not to end the user authentication using the command procedure file. Here, the second line of the command procedure file, upti
Since the me command processing has not ended, the system returns to command input reception processing step S15.

Next, in Figure 3, look at the result of the 1s command and
cd to access the directory c
A command 24 called doc is input.

This input is read by the command input reception processing step S15 as before, and control is passed to the command procedure check processing step S16. In the command procedure check processing step S16, the input command is compared with the contents of the command procedure file.
doc is different from uptime29 on the second line of the file. Therefore, the system determines that the user of this session is an unauthorized user and displays message 25,
This session forced termination process step S19 is performed to forcibly log out the user.

On the other hand, as shown in Figure 4, the user's second input is up.
When the time command 26 matches the command procedure file, the system determines that the user is legitimate and displays a message 27 to that effect on the CRTS. At this point, the user authentication process is completed for the first time.

In the above embodiment, an example was shown in which the order of commands in the command procedure file was defined and user authentication was performed.
A checking method is also possible in which the user is authenticated when N commands (N≦M) out of M commands predefined in the file are input at least once in an arbitrary order.

Furthermore, if an unauthorized user successfully guesses the password and tries a combination of command procedures in an attempt to pass the user authentication process in this embodiment, the user in this embodiment will This appears as a phenomenon in which sessions are frequently forced to log out due to authentication processing. Therefore, by monitoring such phenomena by the operating system, it becomes possible to discover such attempts and prevent intrusion by unauthorized users.

Furthermore, the command procedure file of this embodiment can be encrypted and stored in a predetermined file in the computer system.

That is, taking the U.N.X system as an example, it is possible to use the /etc/passwd file that records the user's password in an encrypted form, or it is also possible to use other files.

As described above, this embodiment is automatically executed after the user logs in with an operating system such as UNIX. By performing user authentication by monitoring commands input after executing files such as login, .cshrc, etc., it is possible to perform stronger user authentication while maintaining normal usage without any discomfort.

[Effects of the Invention] According to the present invention, by performing the authentication process by monitoring the user's command input even after the user authentication process using the password, it is possible to provide a higher security protection method and a computer system to which the same is applied.

[Brief explanation of drawings]

FIG. 1 is a block diagram showing a schematic configuration diagram of the computer system of this embodiment, FIG. 2 is a flowchart showing the flow of user authentication processing in the computer system of this embodiment, and FIG. 3 is a block diagram showing the flow of user authentication processing in the computer system of this embodiment. Figure 4 shows an example of a session where user authentication using a password is successful, but intrusion is ultimately blocked in the user authentication process of the present invention. FIG. 5 is a diagram showing an example of a session accessing the computer system. FIG. 5 is a diagram showing an example of a command procedure file in the memory 6 of the computer system of this embodiment. In the figure, 1...workstation body, 2...input/output equipment, 3...-CRT, 4...keyboard, 5...
CPU, 6...Memory unit, 7...Command procedure file, 8...I/O control unit, 9...Communication control device,
21... User login prompt, 22... Password manual prompt, 23... IS command input,
24... cd command input, 25... user authentication failure message, 26... uptime command input,
27... User authentication success message, 28... IS command on the first line of the command procedure file contents, 29.
...This is the uptime command on the second line of the command procedure file.

Claims (7)

[Claims] (1) A security protection method for a shared computer system, which is characterized by further authenticating the user based on inputting a predetermined command after logging in by providing a password. (2) The security protection system according to claim 1, wherein the further authentication is performed by the first consecutive predetermined number of commands appearing in a predetermined order after login. (3) The further authentication is performed by N commands (N≦M) appearing at least once among the first M consecutive commands after login. security protection method. (4) A shared computer system comprising: a monitoring means for monitoring commands input by a user into the computer system after the user has given a password and logged in until the user is authenticated; a storage means for storing a command procedure, and a comparison means for comparing a command input by the user with a predetermined command procedure of the storage means, the command input by the user and the command stored in the storage means; 1. A computer system characterized in that when a procedure matches, the user is determined to be an authorized user and user authentication is performed. (5) The monitoring means starts monitoring the command input by the user after the computer system automatically executes the command or the processing of the command file after the user logs in. The electronic computer system according to item 4. (6) The computer system according to claim 4, wherein the command procedure is defined in advance by the computer system or by each of the users. (7) The computer system according to claim 6, wherein the command procedure is encrypted.