Energy management device and power management system

The invention claimed is: 1. An energy management system comprising: an application storage to store at least one or more application including an application for power management; an application executor to execute an application stored in the application storage; a plurality of network interfaces arranged corresponding to a plurality of networks, respectively; a policy storage to store identification information and access permit or inhibit information showing whether the application is permitted to access each of the network interfaces; a registration state manager to determine whether the policy storage is permitted to register identification information of the application and access permit or inhibit information; a policy setter to set whether each application should be permitted to access each of the network interfaces when the registration state manager permits the registration; an interface manager to manage a correspondence relationship between a network address and each of the network interfaces, and to specify a network interface used by the application executed by the application executor; and a controller to judge whether the application executed by the application executor is permitted to access the network interface to be used thereby, based on the access permit or inhibit information stored in the policy storage. 2. The energy management system of claim 1 , wherein the controller permits access to a network interface when access permit or inhibit information showing access permission thereto is stored in the policy storage, and inhibits access to the network interface when such access permit or inhibit information is not stored in the policy storage. 3. The energy management system of claim 1 , wherein the application executor notifies the access controller about an IP address used by an execution target application and identification information for the application, the interface manager specifies a network interface to be used based on the IP address used by the execution target application, and notifies the controller about the network interface, and the controller inquires of the interface manager about the network interface corresponding to the IP address used by the execution target application, and inquires of the policy storage about whether access to the network interface notified by the interface manager is permitted. 4. The energy management system of claim 1 , wherein the network interfaces includes a private network interface and a public network interface. 5. The energy management system of claim 4 , wherein the policy setter permits an application requesting access to a device connected to a private network to access the private network interface, but inhibits the application from using the public network interface. 6. The energy management system of claim 4 , wherein the policy setter permits an application requesting access to a device connected to a public network to access the public network interface, but inhibits the application from accessing the private network interface. 7. The energy management system of claim 1 , further comprising: a network configuration manager to detect a change in configuration of a private network; and a network configuration information storage configured to store configuration information about the private network, and to update the stored configuration information regarding the private network when the network configuration manager detects a change in configuration of the private network, wherein when the network interface used by the application executed by the application executor is a private network interface, the controller reads latest configuration information from the network configuration information storage, and detects whether access to each network corresponding to the read configuration information is permitted based on the policy storage. 8. The energy management system of claim 7 , further comprising: an application execution manager manage the application currently being executed by the application executor, wherein the application execution manager creates and manages a management table including identification information for each application, access permit or inhibit information showing whether the application is permitted to access each private network, and access permit or inhibit information showing whether the application is permitted to access a public network interface for a public network, based on the latest configuration information read from the network configuration information storage and the access permit or inhibit information stored in the policy storage, and the controller judges whether access to the network interface used by the application executed by the application executor is permitted based on the access permit or inhibit information managed by the application execution manager. 9. The energy management system of claim 8 , wherein when the application executor terminates execution of the application, the application execution management unit eliminates the identification information and access permit or inhibit information for the application from the management table, and the policy storage stores the identification information and access permit or inhibit information for each application regardless of whether each application is being executed. 10. An energy management system comprising: an application storage configured to store at least one or more application including an application for power management; an application executor to execute an application stored in the application storage; a plurality of network interfaces arranged corresponding to a plurality of networks including a public network and a private network, respectively; a policy setter to set whether each application should be permitted to access each of the network interfaces; a policy storage to store identification information, and access permit or inhibit information showing whether the application is permitted to access each of the network interfaces; a controller to judge whether the application executed by the application executor is permitted to access the network interface to be used thereby, based on the access permit or inhibit information stored in the policy storage; and an application execution manager to manage an application currently being executed by the application executor, by creating a management table registering identification information for the application and access permit or inhibit information showing whether the application is permitted to access the network interfaces, wherein the application execution manager has: a start mode setter to judge whether the application executed by the application executor is permitted to access the private network based on the access permit or inhibit information stored in the policy storage, in order to set the access permit or inhibit information for the application in the management table to a permit mode if permitted or to an inhibit mode if not permitted; a termination mode setter to judge, when terminating the application, whether the application is inhibited from accessing the private network based on the access permit or inhibit information stored in the policy storage, in order to promptly terminate the application if not inhibited or to detect whether another application is registered in the management table if inhibited and set every application being executed to the inhibit mode for inhibiting access to the private network if registered or to the permit mode for permitting access to the private network if not registered; and a registration eliminator to eliminate the registration information regarding the terminated application from