Privilege management system, privilege management method, and program

Abstract

Provided is a privilege management system 1 that manages privileges in a service executed via a communication network. A setting unit 111 sets, in an account for configuring a service, setting information regarding a device that is a target of the service and an account of a user who uses the service. After the setting information is set by the setting unit 111, a privilege management unit 113 executes restriction processing for restricting an operation on the setting information in the account for configuring the service in response to login to the service with the user account, or in response to input of an operation for handing over the setting information to the user in the account for configuring the service.

Description

Authority Management System, Authority Management Method, and Program 【0001】 The present disclosure relates to an authority management system, an authority management method, and a program. 【0002】 With the acceleration of IT (Information Technology) implementation, the services executed via communication networks are increasing. For example, Patent Document 1 discloses a technology for improving the convenience of access to electronic files and information security in a service for managing folders in which electronic files related to building management operations are stored. 【0003】 Japanese Patent Application Laid-Open No. 2021-196659 【0004】 In services executed via communication networks as described above, there are cases where setting information for a user to use a service is set by a person other than the user and handed over to the user. In such a case, if a person other than the user can access the setting information even after the user starts using the service, security concerns arise. In view of such circumstances, in services executed via communication networks, it is required to improve security without putting the user to trouble. 【0005】 The present disclosure has been made to solve the above problems, and an object thereof is to provide an authority management system and the like capable of improving security without putting the user to trouble in a service executed via a communication network. 【0006】 To achieve the above object, a first aspect of the authority management system according to the present disclosure is an authority management system that manages authorities in a service executed via a communication network, including setting means for setting setting information regarding a device targeted by the service and an account of a user who uses the service in an account for setting the service, and authority management means for executing a restriction process for restricting an operation on the setting information in the setting account in response to the user logging in to the service with the user's account after the setting information is set by the setting means. 【0007】 To achieve the above objective, a second aspect of the access control system relating to this disclosure is an access control system for managing access in a service performed over a communication network, comprising: setting means for setting setting information relating to the equipment subject to the service and the account of a user who uses the service in an account for setting the service; and access control means for executing restriction processing to restrict operations on the setting information in the setting account in response to an input of an operation to transfer the setting information to the user in the setting account after the setting information has been set by the setting means. 【0008】 This disclosure describes how, after configuration information has been set in a service configuration account used for services running over a communication network, operations on the configuration information in the configuration account are restricted in response to a user logging into the service with a user account, or in response to an operation being entered in the configuration account to transfer the configuration information to the user. Therefore, according to this disclosure, security can be improved in services running over a communication network without requiring any effort from the user. 【0009】A diagram showing the overall configuration of the authorization management system according to Embodiment 1. A block diagram showing the hardware configuration of the cloud server according to Embodiment 1. A block diagram showing the functional configuration of the cloud server according to Embodiment 1. A diagram showing an example of property information stored in the property DB according to Embodiment 1. A diagram showing an example of equipment information stored in the equipment DB according to Embodiment 1. A diagram showing an example of account information stored in the account DB according to Embodiment 1. A diagram showing an example of a notification screen displayed on a user terminal according to Embodiment 1. A diagram showing an example of an authorization management table in Embodiment 1. A diagram showing an example of a service provision screen displayed on a user terminal according to Embodiment 1. A sequence diagram showing the flow of initial setup processing executed in the authorization management system according to Embodiment 1. A sequence diagram showing the flow of service execution processing executed in the authorization management system according to Embodiment 1. A diagram showing an example of an authorization management table in Embodiment 2. A sequence diagram showing the flow of service execution processing executed in the authorization management system according to Embodiment 2. A sequence diagram showing the flow of authorization management processing executed in the authorization management system according to Embodiment 3. A diagram showing an example of a handover screen displayed on a contractor terminal according to Embodiment 3. A sequence diagram showing the flow of service execution processing executed in the authorization management system according to Embodiment 4. A diagram showing an example of a notification screen displayed on a contractor terminal according to Embodiment 4. 【0010】 The embodiments will be described in detail below with reference to the drawings. In the drawings, the same or corresponding parts are denoted by the same reference numerals. 【0011】 (Embodiment 1) The authorization management system 1 according to Embodiment 1 is a system for managing authorizations in a service executed via a communication network. As shown in Figure 1, the authorization management system 1 comprises at least one device 3 installed on property H, a contractor terminal 5 operated by contractor C, a user terminal 7 operated by user U, and a cloud server 10 that functions as an authorization management device. The at least one device 3, the contractor terminal 5, the user terminal 7, and the cloud server 10 are connected to each other so as to be able to communicate via a wide-area network N. The wide-area network N is an example of a communication network, such as the Internet. 【0012】 Property H is the target of services provided by the cloud server 10, and specifically refers to buildings such as houses, commercial buildings, factories, and facilities. Equipment 3 is electrical equipment installed in Property H, and specifically refers to home appliances such as air conditioners, water heaters, cookers, lighting, and refrigerators. In the example in Figure 1, two pieces of equipment 3 are installed in Property H, but a single Property H may have only one piece of equipment 3 installed, or it may have three or more pieces of equipment 3 installed. 【0013】 Each device 3 has a built-in or external communication device and communicates with the cloud server 10 via a wide-area network N. For example, each device 3 transmits monitoring data indicating its operating status, energy consumption, etc., to the cloud server 10 and receives control commands for its own device from the cloud server 10. 【0014】 User U is a user of the cloud service provided by the cloud server 10 and is the subject of the cloud service contract. Specifically, User U is the client, owner, etc. of property H. Here, the cloud service is a service related to the equipment 3 installed in property H, and is a service used by User U to manage the equipment 3 installed in property H. As an example, the cloud service provides functions such as remotely monitoring the operating status and energy consumption of the equipment 3 installed in property H, and remotely controlling the equipment 3 installed in property H. The cloud service is an example of a service executed via a communication network. 【0015】Contractor C is the person who will perform the installation and configuration of the cloud service at property H. Contractor C may also be called the installer or the configuration person. Here, installation means performing work such as mechanical work, electrical work, and instrumentation work in order to make at least one piece of equipment 3 usable at property H. Mechanical work is work related to machinery, such as installing equipment 3 at property H and connecting the piping of equipment 3. For example, if equipment 3 is an air conditioner, mechanical work would be installing the indoor and outdoor units at property H and connecting the refrigerant piping and drain piping. Electrical work is work related to electricity, such as connecting power lines to equipment 3. Instrumentation work is work related to instrumentation, such as connecting signal lines to equipment 3 and initial setup of equipment 3. 【0016】 Contractor C performs the construction work on property H based on the contract with user U. Furthermore, Contractor C has the role of performing the initial setup of the cloud service provided by cloud server 10 on behalf of user U. 【0017】 Contractor terminal 5 is a terminal operated by contractor C. User terminal 7 is a terminal operated by user U. Both contractor terminal 5 and user terminal 7 are communication terminals such as PCs (Personal Computers), smartphones, and tablet terminals. Although not shown in the figures, both contractor terminal 5 and user terminal 7 are equipped with a CPU (Central Processing Unit), ROM (Read Only Memory), RAM (Random Access Memory), a user interface, a communication interface, and read / write non-volatile semiconductor memory. The user interface includes an operating section such as a touch panel, touchpad, keyboard, and mouse, and a display section such as an LCD (Liquid Crystal Display) panel and an organic EL (Electro-Luminescence) display. 【0018】The contractor terminal 5 and the user terminal 7 each communicate with the cloud server 10 via the wide-area network N. For example, the contractor terminal 5 transmits information input from the contractor C to the cloud server 10 via its control unit, and receives information transmitted from the cloud server 10 and displays it on its display unit. Similarly, the user terminal 7 transmits information input from the user U to the cloud server 10 via its control unit, and receives information transmitted from the cloud server 10 and displays it on its display unit. 【0019】 The cloud server 10 is an information processing device installed under the management of the administrator of the access control system 1. The cloud server 10 functions as an access control device that manages the access rights of contractor C and user U. More specifically, as shown in Figure 2, the cloud server 10 comprises a control unit 11, a storage unit 12, and a communication unit 13. 【0020】 The control unit 11 comprises a CPU, ROM, and RAM. The CPU, also called a central processing unit, central computing unit, processor, microprocessor, or microcomputer, functions as a central computing unit that executes processing and calculations related to the control of the cloud server 10. In the control unit 11, the CPU reads programs and data stored in the ROM and uses the RAM as a work area to comprehensively control the cloud server 10. 【0021】 The storage unit 12 is equipped with non-volatile semiconductor memory such as flash memory, EPROM (Erasable Programmable ROM), and EEPROM (Electrically Erasable Programmable ROM), and plays the role of a so-called secondary storage device or auxiliary storage device. The storage unit 12 stores programs and data used by the control unit 11 for various processing. It also stores data generated or acquired by the control unit 11 through various processing. 【0022】The communication unit 13 provides an interface for the cloud server 10 to communicate with external devices. The communication unit 13 communicates with external devices via the wide-area network N. Specifically, the communication unit 13 communicates with the equipment 3, contractor terminal 5, and user terminal 7 installed at property H via the wide-area network N. For example, the communication unit 13 transmits screen data to the contractor terminal 5 and user terminal 7 to display various screens. The communication unit 13 also receives input information entered at the contractor terminal 5 and user terminal 7. In this way, the communication unit 13 functions as a user interface for the contractor C and user U. 【0023】 Next, the functional configuration of the cloud server 10 will be described with reference to Figure 3. The cloud server 10, in its control unit 11, functionally includes a setting unit 111, which is an example of a setting means; a notification unit 112, which is an example of a notification means; an access control unit 113, which is an example of an access control means; and a service execution unit 114, which is an example of a service execution means. Each of these functions is realized in the control unit 11 by software, firmware, or a combination of software and firmware. The software and firmware are written as programs and stored in the ROM or storage unit 12. Then, in the control unit 11, the CPU executes the programs stored in the ROM or storage unit 12 to realize each of the functions shown in Figure 3. 【0024】 Furthermore, the cloud server 10 includes a property database 121, an equipment database 122, and an account database 123. These are stored in appropriate storage areas in the storage unit 12. 【0025】 The configuration unit 111 sets configuration information for user U to use the cloud service based on the operation of contractor C. Here, the configuration information is information that enables the cloud server 10 to provide the cloud service, and specifically includes property information relating to property H which is the target of the cloud service, equipment information relating to the equipment 3 installed in property H, and account information relating to the account of user U who will use the cloud service. 【0026】 To explain in more detail, Contractor C performs work to enable User U to use the cloud services provided by the cloud server 10, based on the contract with User U. This work by Contractor C is performed, for example, when installing at least one device 3 that will use the cloud services at Property H, or when starting to use the cloud services at at least one device 3 that is already installed at Property H. 【0027】 First, Contractor C performs construction work at property H to make at least one piece of equipment 3 usable. Specifically, as described above, Contractor C performs mechanical work, electrical work, instrumentation work, etc., on at least one piece of equipment 3. After the construction work is completed, Contractor C then performs initial setup so that user U can use the cloud service provided by the cloud server 10. To do this, Contractor C operates the contractor terminal 5 and logs into the cloud service using the contractor account, which is an account for Contractor C. The contractor account is a configuration account used by Contractor C to configure the cloud service. If a contractor account does not exist, Contractor C creates a new contractor account and logs into the cloud service using the newly created contractor account. 【0028】 When user U logs into the cloud service, contractor C operates the contractor terminal 5 to input configuration information for user U to use the cloud service. The configuration unit 111 sets the cloud service configuration information based on the operations entered by contractor C in the contractor account. Specifically, the configuration unit 111 performs the following: (1) setting up the property H that is the target of the cloud service, (2) setting up at least one piece of equipment 3 that is the target of the cloud service, and (3) setting up the account of user U who will use the cloud service. 【0029】(1) Firstly, the configuration unit 111 configures property H, which is the target of the cloud service. Specifically, contractor C enters property information, which is information related to property H, in the contractor account that is logged in. Specifically, property information is information that indicates the location of property H, the type of property H, etc. In the cloud server 10, the configuration unit 111 communicates with the contractor terminal 5 via the communication unit 13 and receives the property information entered by contractor C from the contractor terminal 5. Then, the configuration unit 111 stores the received property information in the property DB 121. 【0030】 Property DB 121 is a database that stores property information for multiple properties under the management of the cloud server 10, including property H. As shown in Figure 4 as an example, Property DB 121 stores information such as the property's location and type as property information for each registered property. Property DB 121 stores each of this information linked to a property ID. The property ID is identification information used to uniquely identify each property. When the configuration unit 111 receives new property information from the contractor terminal 5, it issues a new property ID different from other registered properties, links the issued property ID, and adds the received property information to Property DB 121. In this way, the configuration unit 111 registers property H, which is subject to the cloud service, with the cloud server 10 based on the operations of contractor C in the contractor account. 【0031】 (2) Secondly, the configuration unit 111 configures at least one device 3 that is subject to the cloud service. Specifically, Contractor C inputs device information in the Contractor Account, which is information about at least one device 3 installed in property H that is registered with the cloud server 10. Specifically, the device information is information that indicates the model, serial number, IP (Internet Protocol) address, etc. of the device 3. 【0032】In this case, if there is only one device 3 that is the target of the cloud service, Contractor C inputs device information for that one device 3. On the other hand, if there are multiple devices 3 that are the target of the cloud service, Contractor C inputs device information for each of the multiple devices 3. In the cloud server 10, the configuration unit 111 communicates with the contractor terminal 5 via the communication unit 13 and receives the device information input by Contractor C from the contractor terminal 5. The configuration unit 111 then stores the received device information in the device DB 122. 【0033】 The device database 122 is a database that stores device information for at least one device 3 installed in each property stored in the property database 121. As an example, as shown in Figure 5, the device database 122 stores information such as the model, serial number, and IP address of the device 3. When the configuration unit 111 receives new device information from the contractor terminal 5, it adds the received device information to the device database 122. At this time, the configuration unit 111 stores the device information in the device database 122, linking it to the property ID of the property H in which the device 3 is installed. In this way, the configuration unit 111 registers the devices 3 that are subject to the cloud service with the cloud server 10 based on the operations of contractor C in the contractor account. 【0034】 Furthermore, when the configuration unit 111 receives device information for multiple devices 3, it adds the device information for each of those multiple devices 3 to the device DB 122, linking it to the property ID of the property where each device 3 is installed. In the example in Figure 5, two devices 3, an air conditioner and a water heater, installed in one property with property ID "P0001", are registered as targets for the cloud service. Also, three devices 3, an air conditioner, lighting, and a cooking appliance, installed in one property with property ID "P0002", are registered as targets for the cloud service. In this way, when there are multiple devices 3 that are targets for the cloud service in one property, the configuration unit 111 links the device information of those multiple devices 3 to a single property ID and registers it in the device DB 122. 【0035】(3) Thirdly, the configuration unit 111 configures the user account, which is the account of user U who will use the cloud service. The user account is an account for user U to use the cloud service. Specifically, contractor C enters user U's account information in the contractor account. Specifically, user U's account information includes user U's account ID, email address, date of birth, etc. 【0036】 In addition, Contractor C specifies the property ID issued when User U's property information was registered in the property DB 121 as account information. The property ID is used as information to link User U, who uses the service, with the property H and equipment 3 that are the subject of that service. In the cloud server 10, the configuration unit 111 communicates with the contractor terminal 5 via the communication unit 13 and receives the account information entered by Contractor C from the contractor terminal 5. The configuration unit 111 then stores the received account information in the account DB 123. 【0037】 Account DB 123 is a database that stores account information for multiple individuals involved in the cloud service, including User U and Contractor C. As shown in Figure 6 as an example, if the account is a user account, Account DB 123 stores information such as account ID, password, email address, date of birth, and property ID for each account. If the account is a contractor account, Account DB 123 stores information such as account ID, password, email address, date of birth, and user account for each account. 【0038】Here, if the account is a user account, the property ID in account DB123 indicates the property information of the user of that account from the property information stored in property DB121. In contrast, if the account is a contractor account, the user account in account DB123 indicates the account ID of the user account set up by the contractor of that contractor account. In the example in Figure 6, the contractor with account ID "C001" has created an account for the user with account ID "U001", and the contractor with account ID "C002" has created an account for the user with account ID "U002". 【0039】 When the configuration unit 111 receives new user U account information from the contractor terminal 5, it adds the received account information to the user account area of ​​the account DB 123. In this way, the configuration unit 111 creates a user account based on the operations of contractor C in the contractor account. At this time, the configuration unit 111 stores the account ID of the created user account in the account information of contractor C that created the user account. In the example in Figure 6, if a user account with account ID "U001" is created in the contractor account with account ID "C001", the configuration unit 111 stores the account ID "U001" of the created user account in the account information of that contractor account. As a result, the configuration unit 111 associates user U of the user account created by contractor C with contractor C. With this, the configuration of the cloud service by the configuration unit 111 is completed. 【0040】If an account for user U already exists before contractor C creates the account for user U, the configuration unit 111 omits the process of creating a new user account. In this case, as part of the process of setting up the user account, the configuration unit 111 stores the property ID issued when user U's property H was registered in the property DB 121 in the account information of user U that already exists in the account DB 123. Then, the configuration unit 111 stores the account ID of the configured user account in the account information of contractor C. In this way, the configuration unit 111 links property H and equipment 3 with user U by storing the property ID, and links user U with contractor C by storing the account ID. 【0041】 Returning to Figure 3, the notification unit 112 communicates with the contractor terminal 5 or user terminal 7 via the communication unit 13 and notifies user U or contractor C of various information. When an event occurs in the authority management system 1, such as the completion of initial setup, transfer of setting information, account switching, or change of authority, the notification unit 112 sends an email, short message, etc., to the contractor terminal 5 or user terminal 7. In this way, the notification unit 112 notifies of the occurrence of an event in real time. User U or contractor C can respond quickly to the occurrence of an event by receiving a notification from the notification unit 112. 【0042】As an example, when the setting information of the user U is set by the setting unit 111, the notification unit 112 notifies the user U that the setting information has been set. Specifically, when the setting of the cloud service by the setting unit 111 is completed, the notification unit 112 sends a notification indicating that the setting is completed to the email address registered as the user U's account information in the account DB 123. Thereby, the notification unit 112 causes the display unit of the user terminal 7 to display, for example, the notification screen shown in FIG. 7. In the notification screen shown in FIG. 7, the notification unit 112 notifies that the setting of the cloud service is completed. Further, in the notification screen, the notification unit 112 displays a hyperlink for accessing the cloud service and guides the user U to log in to the cloud service with the user account set by the setting unit 111. In this way, the notification unit 112 invites the user U to the cloud service. 【0043】 In such a notification screen, when the user U operates the user terminal 7 and selects the displayed hyperlink, a login screen (not shown) is displayed. On the login screen, when the user U inputs his / her account ID and password, he / she can log in to the cloud service with the user account created by the constructor C. When the user U logs in to the cloud service, the user account associated with the property H is activated. 【0044】 Returning to FIG. 3, the authority management unit 113 manages the authorities for operations on the user account and the constructor account. Here, the operation means creation, registration, viewing, editing, deletion, etc. of information, and the authority for an operation means whether operations such as creation, registration, viewing, editing, deletion, etc. of information are possible. Specifically, the authority for an operation corresponds to whether creation, registration, viewing, editing, deletion, etc. of information are possible with respect to the property information stored in the property DB 121, the device information stored in the device DB 122, or the account information stored in the account DB 123. 【0045】More specifically, as shown in the permission management table in Figure 8, operational permissions are set for each operation, separately for user accounts and contractor accounts. In the permission management table in Figure 8, "○" indicates that permission is granted, and "×" indicates that permission is not granted. Specifically, when user U logs into the cloud service with a user account, they have permission for all functions except "property handover" for each operation related to property information, equipment information, and account information associated with them. In contrast, when contractor C logs into the cloud service with a contractor account, regarding property information permissions, they have permission to register all properties but not delete them, and only have permission to view and edit property information for properties registered with their own contractor account. Furthermore, contractor C has full permission regarding equipment information. In addition, regarding account information permissions, contractor C has permission to create accounts for all accounts, and only has permission other than account creation for accounts set up with their own contractor account. 【0046】 The authorization management unit 113, after the cloud service configuration information has been set by the configuration unit 111, executes a restriction process in response to the fulfillment of specific conditions, which restricts operations on the configuration information set by the configuration unit 111 in the contractor account. Here, the restriction process means narrowing or eliminating the range of operations that contractor C can perform in the contractor account with respect to the property information, equipment information, or account information, which are the configuration information set by the configuration unit 111. More specifically, the restriction process means eliminating or reducing the authority for operations that contractor C can perform on the configuration information in the contractor account. 【0047】More specifically, as shown in FIG. 8, the contractor C has the authority to view and edit the property information of the property H registered by itself in the contractor account, the authority for all operations related to device information, and the authority to view, edit, and delete the account information of the user account created by itself. Therefore, even after the contractor C creates a user account and transfers it to the user U, the contractor C can access the property information, device information, or account information of the user U, and perform operations unintended by the user U. In order to prevent such unauthorized operations by the contractor C and protect the setting information of the user U from the contractor C, it is desirable to improve security. 【0048】 Therefore, the authority management unit 113 executes a restriction process that restricts operations on the setting information set by the setting unit 111 in the contractor account. Specifically, the restriction process includes a process of stopping the contractor account. In other words, the authority management unit 113 executes a process of stopping the contractor account as the restriction process. Here, stopping the contractor account means taking measures so that the contractor C cannot log in to the contractor account. Specifically, it corresponds to deleting the contractor account, invalidating the contractor account, etc. 【0049】 Specifically, the authority management unit 113 stops the contractor account after the contractor C sets the setting information of cloud services such as property information, device information, account information, etc. in the contractor account, thereby enabling the user U to use the cloud services. By stopping the contractor account in this way, the contractor C cannot log in to the cloud services again, so it is possible to prevent the contractor C from performing operations unintended by the user U. 【0050】The access control unit 113 executes such restriction processing in response to the fulfillment of a specific condition after the cloud service configuration information has been set by the configuration unit 111, that is, triggered by the fulfillment of the specific condition. Here, the specific condition is one that is fulfilled without any explicit instruction from user U regarding the restriction processing. Specifically, the specific condition is fulfilled when the user logs into their account. 【0051】 More specifically, the specific condition is met when the user first logs into the user account after the cloud service configuration information has been set by the configuration unit 111. Here, "when the user first logs into the user account after the configuration information has been set" specifically corresponds to when user U logs into the cloud service with their user account from the notification screen shown in Figure 7. 【0052】 To explain in more detail, after Contractor C configures the cloud service settings, User U operates User Terminal 7 and performs the initial login by following the instructions for the cloud service displayed on the notification screen. When the Authority Management Unit 113 detects this initial login to the user account, it identifies the contractor account associated with the logged-in user account from among the multiple contractor accounts registered in the Account DB 123, and suspends the identified contractor account. 【0053】Here, the contractor account associated with the logged-in user account is the contractor account associated with the account ID that identifies the user of the logged-in user account. Specifically, in the example in Figure 6, when the user account with account ID "U001" is logged in for the first time, the contractor account associated with the logged-in user account is the contractor account "C001" in which "U001" is stored in the user account field. Therefore, in this case, the authorization management unit 113 suspends the contractor account with account ID "C001". As a result, contractor C will not be able to log in to the cloud service with the contractor account that has user U's configuration information set. Therefore, after user U is able to use the cloud service, it is possible to prevent contractor C from performing operations unintended by user U. 【0054】 The access control unit 113 executes this restriction process when user U first logs in after becoming able to use the cloud service. In other words, the access control unit 113 automatically executes the restriction process even if user U or contractor C does not explicitly input instructions to the cloud server 10 to execute the restriction process of their own volition. This prevents contractor C from continuing to be able to manipulate user U's settings information without requiring any effort from user U or contractor C. 【0055】 Returning to Figure 3, the service execution unit 114 executes the cloud service based on the configuration information set by the setting unit 111 and the instructions entered in the user account. The cloud service is a service executed via the wide area network N and relates to at least one piece of equipment 3 installed in property H. Specifically, as a cloud service, the service execution unit 114 executes at least one of the following: a monitoring process that monitors the status of the equipment 3 installed in property H via the wide area network N, and a control process that controls the equipment 3 installed in property H via the wide area network N. 【0056】More specifically, when user U logs into the cloud service with their user account, the service execution unit 114 displays, for example, the service provision screen shown in Figure 9 on the display unit of the user terminal 7. The service provision screen shown in Figure 9 displays, as an example, executable cloud services: a monitoring process that monitors the status of equipment 3 installed in the user's property H, and a control process that remotely controls equipment 3. Here, the status of equipment 3 is, for example, the operating status of equipment 3, energy consumption, etc. Controlling equipment 3 involves switching equipment 3 on or off, changing settings, etc. On such a service provision screen, user U can input instructions to execute the cloud service by operating the user terminal 7 and selecting one of the processes. 【0057】 For example, if user U selects monitoring, the service execution unit 114 communicates with at least one device 3 installed at user U's property H via the communication unit 13 and acquires operating data indicating the operating status of at least one device 3. Then, although not shown in the figures, the service execution unit 114 transmits a monitor screen showing the operating status of at least one device 3 to the user terminal 7 for display. Alternatively, if user U selects control, the service execution unit 114 receives a control command from the user terminal 7 for at least one device 3 installed at user U's property H. Then, the service execution unit 114 communicates with at least one device 3 installed at user U's property H via the communication unit 13 and operates at least one device 3 according to the received control command. In this way, user U can use the cloud service using the user account created by contractor C and the configuration information set by contractor C. 【0058】The service execution unit 114 uses the property ID associated with the user account in the account DB 123 to identify property H associated with the property ID in the property DB 121 and at least one device 3 associated with the property ID in the device DB 122. This allows the service execution unit 114 to identify property H and device 3 that are the target of the cloud service. The service execution unit 114 may also communicate directly with each device 3 when communicating with them. Alternatively, a device management server that manages the data for each device 3 may be located on the wide area network N, and the service execution unit 114 may communicate indirectly with each device 3 via the device management server. 【0059】 Next, with reference to Figures 10 and 11, the flow of processing performed in the authorization management system 1 will be explained. The processing shown in Figures 10 and 11 is an example of an authorization management method. First, with reference to Figure 10, the flow of the initial setup process will be explained. The initial setup process shown in Figure 10 is performed after the contractor C has completed construction work, i.e., mechanical work, electrical work, instrumentation work, etc., on at least one piece of equipment 3 in property H. 【0060】 When the initial setup process begins, Contractor C operates Contractor Terminal 5 to access the cloud service of Cloud Server 10. Contractor C then enters account information to create a contractor account, which is an account for performing the initial setup of the cloud service. Contractor Terminal 5 sends the account information entered by Contractor C to Cloud Server 10 (Step S1). 【0061】 In the cloud server 10, when the control unit 11 receives account information transmitted from the contractor terminal 5, it stores the received account information in the contractor account area of ​​the account DB 123. This allows the control unit 11 to create a contractor account for contractor C (step S2). If an account for contractor C already exists, steps S1 and S2 can be omitted. 【0062】Next, Contractor C operates Contractor Terminal 5 to enter the account ID and password and logs in to the cloud service with the Contractor Account (Step S3). Then, Contractor C operates Contractor Terminal 5 within the logged-in Contractor Account to input property information related to property H, which is the subject of the cloud service. Upon receiving the property information input from Contractor C, Contractor Terminal 5 sends the entered property information to the cloud server 10 (Step S4). 【0063】 In the cloud server 10, when the control unit 11 receives property information transmitted from the contractor terminal 5, it stores the received property information in the property database 121. As a result, the control unit 11 registers property H, which is the target of the cloud service, in the property database 121 (step S5). 【0064】 When property H is registered, contractor C further operates the contractor terminal 5 using the logged-in contractor account to input device information for the equipment 3 installed in the registered property H that is subject to the cloud service. If there are multiple pieces of equipment 3 subject to the cloud service within property H, contractor C inputs device information for each of the multiple pieces of equipment 3. When the contractor terminal 5 receives the input of device information from contractor C, it transmits the entered device information to the cloud server 10 (step S6). 【0065】 In the cloud server 10, when the control unit 11 receives device information transmitted from the contractor terminal 5, it stores the received device information in the device database 122. As a result, the control unit 11 registers at least one device 3 that is the target of the cloud service in the device database 122 (step S7). 【0066】Once device 3 is registered, contractor C operates contractor terminal 5 within the logged-in contractor account to input the account information necessary to create an account for user U who will use the cloud service. Contractor terminal 5 transmits the account information entered by contractor C to the cloud server 10 (step S8). 【0067】 In the cloud server 10, when the control unit 11 receives account information transmitted from the contractor terminal 5, it stores the received account information in the user account area of ​​the account DB 123. This allows the control unit 11 to create a user account for user U who will use the cloud service (step S9). In steps S1 to S9, the control unit 11 functions as a setting unit 111. 【0068】 When a user account is created, the control unit 11 on the cloud server 10 functions as a notification unit 112 and notifies the user terminal 7 that the cloud service setup is complete (step S10). Specifically, the control unit 11 sends a notification indicating that the cloud service setup is complete to the email address of user U registered in the account DB 123, and displays the notification screen shown in Figure 7 on the display unit of the user terminal 7. In this way, the control unit 11 notifies user U that the setup is complete and invites user U to the cloud service. With this, the initial setup process shown in Figure 10 is completed. Through this initial setup process, it becomes possible to transfer setting information such as property H and user account from contractor C to user U. 【0069】 Next, the service execution process flow will be explained with reference to Figure 11. The service execution process shown in Figure 11 starts when, after the initial setup process shown in Figure 10 is completed, user U operates user terminal 7 at any time and logs in to the cloud service with the user account created in step S9 (step S11). 【0070】When user U logs into the cloud service with their user account, the control unit 11 on the cloud server 10 determines whether the login is the first login to that user account (step S12). If the login is the first login (step S12; YES), the control unit 11 functions as the authorization management unit 113 and stops the contractor account created in step S2 (step S13). Specifically, the control unit 11 identifies the contractor account associated with the logged-in user account's account ID from among the multiple contractor accounts registered in the account DB 123, and stops the identified contractor account. On the other hand, if the login is not the first login but a second or subsequent login (step S12; NO), the control unit 11 skips step S13. 【0071】 Subsequently, in the cloud server 10, the control unit 11 functions as a service execution unit 114 and displays, for example, the service provision screen shown in Figure 9 on the user terminal 7 (step S14). User U operates the user terminal 7 and inputs an execution instruction for the cloud service on the service provision screen. When the user terminal 7 receives the execution instruction for the cloud service from user U, it sends the received execution instruction to the cloud server 10 (step S15). In the cloud server 10, the control unit 11 functions as a service execution unit 114 and executes the cloud service according to the execution instruction received from the user terminal 7 (step S16). 【0072】 As described above, the authorization management system 1 according to Embodiment 1 sets configuration information in the contractor account regarding the property H and equipment 3 that are subject to the cloud service, and the user account which is the account of user U who uses the cloud service. Then, after the configuration information has been set, the authorization management system 1 according to Embodiment 1 executes a process to suspend the contractor account as a restriction process that restricts operations on the configuration information in the contractor account when the user account is logged in. 【0073】In this way, since the contractor account is suspended when a user account is logged into, security in the cloud service can be improved even when contractor C, who is not user U, is configuring the cloud service. In particular, even if user U does not take any explicit action to suspend the contractor account, contractor C will not be able to access user U's configuration information automatically. Therefore, unauthorized access by contractor C can be prevented without any effort on user U's part, thereby improving security. 【0074】 Furthermore, in B2C services aimed at general consumers, user U often configures the service themselves, whereas in B2B services aimed at businesses, contractor C, who is a different person from user U, often configures the service. Since configuring the service may require personal information such as user U's date of birth and email address, having someone other than user U configure the service may lead to a risk of information leakage. In contrast, the authorization management system 1 according to Embodiment 1 suspends the contractor account when a user account is logged in, thus avoiding the risk of malicious contractor C performing operations unintended by user U. 【0075】 Furthermore, when the cloud service configuration is complete, the authorization management system 1 according to Embodiment 1 notifies user U via the notification screen shown in Figure 7 that the configuration is complete and guides user U to log in to the cloud service with their user account. As a result, user U can quickly log in to the cloud service with the created user account. Consequently, the time during which contractor C can access user U's configuration information using the original contractor account can be reduced, thereby improving security. 【0076】 (Embodiment 2) Next, Embodiment 2 will be described. The same configuration and functions as in Embodiment 1 will be omitted from the description as appropriate. 【0077】In Embodiment 1 described above, the authority management unit 113 performed a process to suspend the contractor account as a restriction process to limit operations on the contractor account. In contrast, in Embodiment 2, the authority management unit 113 performed a process to reduce the operational privileges on the configuration information set by the configuration unit 111 for the contractor account as a restriction process. 【0078】 Here, the process of reducing operational privileges means narrowing the scope of operational privileges that Contractor C can perform in the contractor account with respect to the configuration information, such as property information, equipment information, or account information, which is set by the configuration unit 111. The privilege management unit 113 executes a privilege reduction process to reduce the operational privileges for the configuration information in the contractor account in response to the first login to the user account after the cloud service configuration information has been set by the configuration unit 111. 【0079】 To explain in more detail, the authorization management unit 113 executes a process to remove the authorization to change the configuration information in the contractor account as part of the authorization reduction process. Here, the authorization to change the configuration information means authorization to edit or delete configuration information, to register a new property H or device 3, to create new account information, etc. 【0080】 As an example, Figure 12 shows the permissions for each operation of the contractor account before and after the permission reduction process by the permission management unit 113. In the permission management table shown in Figure 12, the contractor account before permission reduction is the construction and configuration account used by contractor C when performing construction work on project H. The permissions for each operation in the contractor account before permission reduction are the same as the permissions in the contractor account shown in Figure 8. 【0081】In contrast, the contractor account after the privilege reduction is an account used by Contractor C for cloud service maintenance after they have completed the cloud service setup. Compared to the contractor account before the privilege reduction, the contractor account after the privilege reduction has lost or reduced privileges for several operations. Specifically, the contractor account after the privilege reduction has the privilege to view property information, equipment information, and equipment monitoring for properties registered with that contractor account, and to view account information for accounts it has created, but it does not have any other privileges. 【0082】 The authorization management unit 113 executes the authorization reduction process according to this authorization management table. Specifically, when the authorization management unit 113 executes the authorization reduction process, it removes the authorizations for the following operations from the contractor account before the authorization reduction: property registration, property information editing, property handover, equipment registration, equipment information editing, equipment operation, equipment deletion, account creation, account information editing, and account deletion. In the contractor account after the authorization reduction, contractor C will no longer be able to perform these operations. In other words, in the contractor account after the authorization reduction, contractor C will have read authorizations such as viewing and monitoring property information, equipment information, or account information, but will not have write authorizations such as editing and deleting this information, i.e., the authorization to change the configuration information. In this way, the authorization management unit 113 removes the authorization to change the configuration information in the contractor account according to the authorization management table. 【0083】 Next, with reference to Figure 13, the flow of the service execution process in Embodiment 2 will be described. Note that the initial setup process in Embodiment 2 is the same as in Embodiment 1. Also, in the service execution process shown in Figure 13, the processes other than step S13a, namely steps S11 to S12 and S14 to S16, are the same as the processes of each step in Embodiment 1, so their explanation will be omitted. 【0084】In Embodiment 2, if the login in step S12 is the first login, the control unit 11 performs a process to reduce the operational privileges of the contractor account created in step S2 (step S13a), instead of the process to stop the contractor account in step S13 of Embodiment 1. Specifically, the control unit 11 identifies the contractor account associated with the account ID of the logged-in user account from among the multiple contractor accounts registered in the account DB 123, and reduces the operational privileges of the identified contractor account according to the privilege management table shown in Figure 12. On the other hand, if the login in step S12 is not the first login but the second or subsequent login, the control unit 11 skips step S13a. 【0085】 As described above, the authorization management system 1 according to Embodiment 2 executes an authorization reduction process as a restriction process to restrict operations on the configuration information in the contractor account in response to a user account login after the cloud service configuration information has been set in the contractor account. In this way, the authorization management system 1 according to Embodiment 2 executes the authorization reduction process without suspending the contractor account, as in Embodiment 1. Therefore, while contractor C's access to user U's configuration information is restricted, even after user U is able to use the cloud service, contractor C can still refer to information necessary for cloud service maintenance using the contractor account. This ensures the convenience of contractor C while preventing unauthorized access by contractor C, thereby improving security. 【0086】In the above embodiment 2, the authority management unit 113 performed a process to delete the authority to change the configuration information in the contractor account as an authority reduction process. However, the authority management unit 113 may also perform a process to delete the authority to operate on some types of information among the configuration information in the contractor account as an authority reduction process. In other words, the authority management unit 113 may reduce the types of information among the configuration information that contractor C can access. Here, some types of information among the configuration information specifically refer to any of the multiple types of information included in the configuration information, namely property information, equipment information, and account information. 【0087】 As an example, the authority management unit 113 executes a process to remove the authority to operate on account information as part of the authority reduction process. As a result, contractor C will no longer be able to access user U's account information and will not be able to perform any operations on user U's account information, including viewing, editing, and deleting it. This prevents access to user U's personal information such as date of birth and email address, thereby improving security. 【0088】 (Embodiment 3) Next, Embodiment 3 will be described. The same configurations and functions as in Embodiments 1 and 2 will be omitted from the description as appropriate. 【0089】 In embodiments 1 and 2 described above, the authorization management unit 113 performed a restriction process to restrict operations on the configuration information in the contractor account in response to the user logging in after the cloud service configuration information was set by the setting unit 111. In contrast, in embodiment 3, after the cloud service configuration information was set by the setting unit 111, the restriction process is performed in response to the input of an operation to transfer the configuration information to user U in the contractor account. In other words, in embodiment 3, a specific condition that is met without explicit instruction from user U is met when an operation to transfer the configuration information to user U is input in the contractor account. 【0090】Referring to Figure 14, the flow of the authorization management process in Embodiment 3 will be described. Note that the initial setup process in Embodiment 3 is the same as in Embodiment 1, so the explanation will be omitted. Once the initial setup process is complete, Contractor C operates Contractor Terminal 5 to input a handover operation to hand over the setting information set during the initial setup process to User U (Step S31). 【0091】 Here, the handover operation refers to the operation in which Contractor C transfers the information of property H, equipment 3, and user account, which were set in the contractor account, to User U so that User U can use the cloud service. Specifically, Contractor Terminal 5 displays the handover screen shown in Figure 15 on the display unit of Contractor Terminal 5. Contractor C inputs the handover operation to transfer the setting information set in the contractor account to User U by selecting the "Hand over to user" icon on this handover screen. 【0092】 When the contractor terminal 5 receives a handover operation from the contractor C, it transmits the received handover operation to the cloud server 10 (step S32). In the cloud server 10, the control unit 11, in response to receiving the handover operation from the contractor terminal 5, functions as an authority management unit 113 and executes restriction processing (step S33). Here, as restriction processing, the control unit 11 may execute the process of suspending the contractor account as described in Embodiment 1, or it may execute the authority reduction process as described in Embodiment 2. 【0093】 Although not shown in Figure 15, the authorization management system 1 according to Embodiment 3 executes the login process in step S11 and the service execution processes in steps S14 to S16, similar to Embodiments 1 and 2. This allows user U to log in to their user account and use the cloud service at any time. Other processes are the same as in Embodiments 1 and 2, so their explanation is omitted. 【0094】As described above, the authorization management system 1 according to Embodiment 3 executes a restriction process to restrict operations on the configuration information in the contractor account in response to an input from the contractor account to transfer the configuration information to user U after the cloud service configuration information has been set in the contractor account. In Embodiments 1 and 2, when the restriction process is executed in response to login to the user account, the contractor C can continue to manipulate the configuration information until user U logs into the user account. In contrast, the authorization management system 1 according to Embodiment 3 automatically executes the restriction process in response to the input of the transfer operation, thus improving security from the time of transfer until login to the user account. Furthermore, since the restriction process is executed without user U having to input an explicit instruction to the cloud server 10 to execute the restriction process of their own volition, it is possible to prevent contractor C from continuing to manipulate user U's configuration information without requiring any effort from user U. 【0095】 (Embodiment 4) Next, Embodiment 4 will be described. The same configuration and functions as in Embodiments 1 to 3 will be omitted from the description as appropriate. 【0096】 In embodiments 1 to 3 described above, the authority management unit 113 performed a process to suspend the contractor account or a process to reduce the authority as a restriction process. In contrast, in embodiment 4, the authority management unit 113 performs a process to suspend the contractor account, which is an account for configuring the cloud service, and to create a contractor account for cloud service maintenance, which is different from the configuration account, as a restriction process. 【0097】 Referring to Figure 16, the flow of the service execution process in Embodiment 4 will be described. Note that the initial setup process in Embodiment 3 is the same as in Embodiment 1. Also, in the service execution process shown in Figure 16, the processes of steps S11 to S16 are the same as the processes of each step in the service execution process in Embodiment 1. 【0098】In Embodiment 4, if the login in step S12 is the first login, the control unit 11 functions as the authorization management unit 113, and in step S13, it stops the contractor account, which is the account used for configuration, and then creates a maintenance account as a new contractor account (step S41). 【0099】 Here, the control unit 11 sets the account information for the maintenance account to the same information as the account information for the configuration account. Specifically, the account information for the contractor account shown in Figure 6, such as account ID, password, email address, date of birth, and user account, is carried over directly from the pre-configuration account to the maintenance account. 【0100】 On the other hand, the control unit 11 sets the operational privileges for the maintenance account so that the operational privileges for the configuration information in the maintenance account are reduced compared to the operational privileges for the configuration information in the configuration account. Specifically, the control unit 11 sets the operational privileges for the maintenance account to be the same as the operational privileges for each operation in the contractor account after the privilege reduction shown in Figure 12 in Embodiment 2. As a result, the maintenance contractor account becomes substantially the same as the contractor account after the privilege reduction process described in Embodiment 2 is executed. In this way, the control unit 11 creates a maintenance account with reduced operational privileges for the configuration information compared to the configuration account. 【0101】 When a contractor account for maintenance is created, the control unit 11 functions as a notification unit 112 and notifies contractor C that a contractor account for maintenance has been created (step S42). 【0102】As an example, the control unit 11 displays the notification screen shown in Figure 17 on the display unit of the contractor terminal 5. In the notification screen shown in Figure 17, the control unit 11 notifies contractor C that a new maintenance account has been created. Furthermore, the control unit 11 displays a hyperlink to access the cloud service on the notification screen and guides contractor C to log in to the cloud service with the newly created maintenance account. When contractor C operates the contractor terminal 5 on such a notification screen and logs in to the cloud service with the maintenance account, the new contractor account linked to user U is activated. 【0103】 If the login in step S12 in Figure 16 is not the first login but a subsequent login, the control unit 11 skips steps S13, S41, and S42. Other processes are the same as in Embodiments 1 and 2, so their explanation is omitted. 【0104】 As described above, the authorization management system 1 according to Embodiment 4, after the cloud service configuration information has been set in the contractor account, responds to the user account logging in by suspending the configuration contractor account and creating a new maintenance contractor account with reduced operational privileges over the configuration information. As a result, similar to Embodiment 2, even after user U can use the cloud service, contractor C can use the newly created maintenance contractor account to access the information necessary for maintaining the cloud service. Consequently, while ensuring the convenience of contractor C, unauthorized access by contractor C can be prevented, thereby improving security. 【0105】 (Variations) The embodiments have been described above, but it is possible to combine the embodiments or modify or omit the embodiments as appropriate. 【0106】For example, in Embodiments 1 or 3 described above, the authorization management unit 113 stopped the contractor account in response to the fulfillment of specific conditions after the configuration information had been set by the configuration unit 111. However, stopping the contractor account necessitates the creation of a new contractor account when Contractor C performs cloud service installation and configuration for another user in the future. Therefore, as a restriction process to limit operations on the configuration information, the authorization management unit 113 may, instead of stopping the contractor account, execute a process to delete the association between the contractor account and the user account associated with it. Specifically, in the example shown in Figure 6, when a user account with account ID "U001" is logged in for the first time, the authorization management unit 113 deletes the association between the logged-in user account and the contractor account "C001" associated with that user account. 【0107】 Specifically, the authorization management unit 113 deletes the information for "U001" stored in the "User Account" field of the contractor account "C001" in the account DB 123. As a result, the authorization management unit 113 deletes the record indicating that the contractor account "C001" is the account that configured the user account "U001". This keeps the contractor account "C001" active, but prevents contractor C from accessing the configuration information for the user account "U001". Consequently, when contractor C performs installation and configuration of the cloud service for another user in the future, they can log in to the cloud service again using the contractor account, eliminating the need to recreate the contractor account and improving convenience. 【0108】The authorization management unit 113 may display the contents of the authorization management table shown in Figure 8 or Figure 12 on the display unit of the contractor terminal 5 or the user terminal 7. Specifically, in response to a request from the contractor terminal 5, the authorization management unit 113 sends and displays information indicating the authorization for operations set for contractor C to the contractor terminal 5. Also, in response to a request from the user terminal 7, the authorization management unit 113 sends and displays information indicating the authorization for operations set for user U to the user terminal 7. This allows user U and contractor C to visually confirm whether or not they have authorization for each operation set for them. In particular, for example, in the case where the authorization of contractor C is changed by the authorization reduction process in Embodiment 2, contractor C can check their current authorization. Therefore, contractor C can perform their work with peace of mind even after the authorization reduction. 【0109】 In the above embodiment, the cloud server 10, which functions as an access control device, was equipped with the parts shown in Figure 3. However, these parts are not limited to being housed in a single device; they may be located in separate, independent devices. For example, the configuration unit 111, the notification unit 112, the access control unit 113, and the service execution unit 114 may be located in different devices. Also, the property DB 121, the equipment DB 122, or the account DB 123 may be located in a device outside of the cloud server 10. In such a case, the parts located in different devices cooperate to function as the access control system 1. 【0110】In the above embodiment, the control unit 11 of the cloud server 10 functioned as the respective parts shown in Figure 3 by the CPU executing a program stored in the ROM or storage unit 12. However, the control unit 11 may be dedicated hardware. Dedicated hardware includes, for example, a single circuit, a complex circuit, a programmed processor, an ASIC (Application Specific Integrated Circuit), an FPGA (Field-Programmable Gate Array), or a combination thereof. If the control unit 11 is dedicated hardware, each function of the respective parts may be implemented with separate hardware, or the functions of each part may be implemented together with a single piece of hardware. 【0111】 Furthermore, some of the functions of each part may be implemented by dedicated hardware, while other parts may be implemented by software or firmware. In this way, the control unit 11 can implement the above-mentioned functions by hardware, software, firmware, or a combination thereof. 【0112】 It is also possible to make an existing computer, such as a personal computer or information terminal device, function as a cloud server 10 by applying a program that defines the operation of the cloud server 10 to that computer. 【0113】 Furthermore, the method of distribution of such programs is optional. For example, they may be distributed by storing them on computer-readable recording media such as CD-ROMs (Compact Disk ROMs), DVDs (Digital Versatile Disks), MOs (Magneto Optical Disks), or memory cards, or they may be distributed via communication networks such as the Internet. 【0114】This disclosure allows for various embodiments and modifications without departing from the broad spirit and scope of this disclosure. Furthermore, the embodiments described above are for illustrative purposes only and do not limit the scope of this disclosure. In other words, the scope of this disclosure is indicated by the claims, not by the embodiments. Various modifications made within the scope of the claims and the equivalent significance of the disclosure are considered to be within the scope of this disclosure. 【0115】 This application is based on Japanese Patent Application No. 2024-218384, filed on 13 December 2024. The entire specification, claims, and drawings of Japanese Patent Application No. 2024-218384 are incorporated herein by reference. 【0116】 The various aspects of this disclosure are summarized below as an appendix. 【0117】(Note 1) An access control system for managing access in a service performed over a communication network, comprising: setting means for setting setting information relating to the equipment targeted by the service and the user account of a user who uses the service in an account for setting the service; and access control means for executing a restriction process to restrict operations on the setting information in the setting account in response to the user logging into the service with the user account after the setting information has been set by the setting means. (Note 2) An access control system for managing access in a service performed over a communication network, comprising: setting means for setting setting information relating to the equipment targeted by the service and the user account of a user who uses the service in an account for setting the service; and access control means for executing a restriction process to restrict operations on the setting information in the setting account in response to the user inputting an operation to transfer the setting information to the user after the setting information has been set by the setting means. (Note 3) The access control system according to Note 1 or 2, wherein the access control means executes a process to suspend the setting account as the restriction process. (Note 4) The authority management means, as the restriction process, executes an authority reduction process to reduce the authority to operate on the configuration information in the configuration account, as the authority management system according to any one of Notes 1 to 3. (Note 5) The authority management means, as the authority reduction process, executes a process to delete the authority to change the configuration information in the configuration account, as the authority management system according to Note 4. (Note 6) The authority management means, as the authority reduction process, executes a process to delete the authority to operate on some types of information among the configuration information in the configuration account, as the authority management system according to Note 4 or 5.(Note 7) The authority management system according to any one of Notes 1 to 6, wherein the authority management means, as the restriction process, executes a process to suspend the account for setting and create a maintenance account for the service that is different from the account for setting, and the authority to operate on the setting information in the maintenance account is reduced compared to the authority to operate on the setting information in the account for setting. (Note 8) The authority management system according to any one of Notes 1 to 7, further comprising notification means for notifying the user that the setting information has been set when the setting means has set the setting information. (Note 9) The authority management system according to any one of Notes 1 to 8, further comprising service execution means for executing the service based on the setting information set by the setting means, wherein the service execution means executes at least one of the following as the service: monitoring process for monitoring the status of the device via the communication network and control process for controlling the device via the communication network. (Note 10) A permission management method comprising setting configuration information relating to the equipment targeted by the service and the user account that will use the service in an account for configuring a service executed over a communication network, and after the configuration information has been set, restricting operations on the configuration information in the configuration account in response to the user logging into the service with the user account. (Note 11) A permission management method comprising setting configuration information relating to the equipment targeted by the service and the user account that will use the service in an account for configuring a service executed over a communication network, and after the configuration information has been set, restricting operations on the configuration information in the configuration account in response to an input of an operation to transfer the configuration information to the user.(Note 12) A program that causes a computer to function as a setting means for setting up a service account that is executed over a communication network, relating to the equipment that is the target of the service and the user account that uses the service; and a permission management means that, after the setting means has set up the setting information, executes a restriction process to restrict operations on the setting information in the setting account in response to the user account logging in to the service. (Note 13) A program that causes a computer to function as a setting means for setting up a service account that is executed over a communication network, relating to the equipment that is the target of the service and the user account that uses the service; and a permission management means that, after the setting means has set up the setting information, executes a restriction process to restrict operations on the setting information in the setting account in response to the user account logging in to the service. 【0118】 1. Authority Management System, 3. Equipment, 5. Contractor Terminal, 7. User Terminal, 10. Cloud Server, 11. Control Unit, 12. Storage Unit, 13. Communication Unit, 111. Configuration Unit, 112. Notification Unit, 113. Authority Management Unit, 114. Service Execution Unit, 121. Property DB, 122. Equipment DB, 123. Account DB, C. Contractor, H. Property, N. Wide Area Network, U. User

Claims

1. An access control system for managing access rights in a service performed over a communication network, comprising: a setting means for setting configuration information relating to the equipment targeted by the service and the user account of a user who uses the service in an account for setting the service; and an access control means for executing restriction processing to restrict operations on the configuration information in the setting account in response to the user logging into the service with the user account after the configuration information has been set by the setting means.

2. An access control system for managing access rights in a service performed over a communication network, comprising: a setting means for setting setting information relating to the equipment targeted by the service and the user accounts of users who use the service in an account for setting the service; and an access control means for executing a restriction process that restricts operations on the setting information in the setting account in response to an input in the setting account for transferring the setting information to the user after the setting information has been set by the setting means.

3. The authorization management system according to claim 1 or 2, wherein the authorization management means performs a process to suspend the account used for configuration as the restriction process.

4. The authority management system according to any one of claims 1 to 3, wherein the authority management means performs an authority reduction process as the restriction process, which reduces the authority to operate on the setting information in the setting account.

5. The authority management system according to claim 4, wherein the authority management means executes a process to delete the authority to modify the setting information in the setting account as the authority reduction process.

6. The authority management system according to claim 4 or 5, wherein the authority management means performs an action to remove the authority to operate on some types of information among the configuration information in the configuration account as the authority reduction process.

7. The authority management system according to any one of claims 1 to 6, wherein the authority management means, as the restriction process, suspends the account for configuration and creates a maintenance account for the service that is different from the account for configuration, and the authority to operate on the configuration information in the maintenance account is reduced compared to the authority to operate on the configuration information in the account for configuration.

8. The authorization management system according to any one of claims 1 to 7, further comprising: a notification means for notifying the user that the setting information has been set when the setting means has set the setting information.

9. The authority management system according to any one of claims 1 to 8, further comprising a service execution means that executes the service based on the setting information set by the setting means, wherein the service execution means executes at least one of the following as the service: a monitoring process that monitors the status of the device via the communication network and a control process that controls the device via the communication network.

10. A permission management method that configures a configuration account for a service executed over a communication network, configures configuration information relating to the equipment targeted by the service and the user account of the user who will use the service, and after the configuration information has been configured, restricts operations on the configuration information in the configuration account in response to the user logging into the service with the user account.

11. A permission management method comprising setting configuration information for a device targeted by a service and an account of a user who uses the service in an account for configuring a service executed over a communication network, and after the configuration information has been set, restricting operations on the configuration information in the configuration account in response to an input from the configuration account to transfer the configuration information to the user.

12. A program that causes a computer to function as a configuration means for configuring a service that is performed over a communication network, in an account for configuring the service, the device that is the target of the service and the account of a user who uses the service; and a permission management means that, after the configuration information has been configured by the configuration means, in response to the user logging into the service with the user's account, executes a restriction process to restrict operations on the configuration information in the configuration account.

13. A program that causes a computer to function as a configuration means for configuring a service that is executed over a communication network, in an account for configuring the service, the configuration information relating to the equipment that is the target of the service and the account of a user who uses the service; and a permission management means that, after the configuration information has been configured by the configuration means, in response to the user logging into the service with the user's account, executes a restriction process to restrict operations on the configuration information in the configuration account.

Images