AUTHENTICATION-PERMISSION SYSTEM, EQUIPMENT, AUTHENTICATION-PERMISSION METHOD, AND PROGRAM

An authentication and authorization system according to one embodiment includes: a plurality of devices that perform mutual authentication and authorization by an authentication protocol using ID-based encryption; and an authentication and authorization infrastructure that generates an ID and a private key used for the mutual authentication and authorization, in which the authentication and authorization infrastructure includes: an ID generation unit configured to generate an ID including at least an identifier of the device and information regarding the device; a generation unit configured to generate a private key of the device from the ID; and a distribution unit configured to distribute the ID and the private key to a device corresponding to the identifier included in the ID, and the device includes: a mutual authentication unit configured to perform mutual authentication with another device by using the ID and the private key of the own device; a verification unit configured to verify whether or not a predetermined authorization condition is satisfied by using information regarding a device included in the ID of the own device and information regarding a device included in the ID of the other device when the mutual authentication is performed with the other device; and an authorization unit configured to authorize a request from the other device to the own device when is verified that the authorization condition is satisfied.