JP2002223312A - Authentication method and system, communication apparatus, program and recording medium - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an authenticating method, an authentication system, a communication apparatus, a program and a recording medium, by which commu nication reliability and security are improved when a communication apparatus for transmission periodically transmits management data such as process data, weather data and medial data, which change with time, to a communication apparatus for reception. SOLUTION: The management data transmitted and received previously are used as a one-time password between a first communication apparatus 10 and a second communication apparatus 20 while a password is changed each time the management data are transmitted and received, time data corresponding to data to be used as the one-time password is used to synchronize the data between both apparatus, and the data to be used as the one-time password are collated between the both apparatuses while being converted by using the same conversion function.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION First data indicating different values, such as time data, and second data to be continuously recorded in association with each of the first data are transmitted from a transmitting communication device to a receiving device. Authentication method for performing authentication between the communication devices in order to transmit to the communication device, an authentication system to which the method is applied, a communication device used in the system, a program for realizing the device, and recording of the program In particular, the recording medium has a second value indicating a time-varying value such as process data, weather data, and medical data.
The present invention relates to an authentication method, an authentication system, a communication device, a program, and a recording medium for transmitting data from a transmission-side communication device to a reception-side communication device that manages the data via a communication network.

[0002]

2. Description of the Related Art Time-varying values such as process data such as process values of a cogeneration system, weather data such as temperature, and medical data such as heart rate are measured by a measuring instrument, and data obtained by the measurement. Is transmitted from a terminal device to a central device via a communication network such as the Internet, and is managed by the central device in various fields. In such a system, in order to avoid accidents such as data leakage when transmitting data, and to reliably transmit and receive data from a terminal device that is a communication device on the transmitting side to a central device that is a communication device on the receiving side The authentication process is performed between the terminal device and the communication device.

[0003]

However, as an authentication method, processing such as password verification is performed. However, in the case of a fixed password, a third party illegally obtains data by leaking the password. There is a problem that there is a possibility.

[0004] As a method for preventing data leakage due to password leakage, an authentication method using a one-time password whose password changes every time is implemented. In the authentication method using a one-time password, an authentication method using a one-time password is used. Management and synchronization of passwords between both devices are issues in improving the reliability and security of communication.

[0005] The present invention has been made in view of the above-described circumstances, and previously transmits data from a communication device on the transmission side to a communication device on the reception side, and records and manages the data on both the transmission side and the reception side. The data such as process data, weather data, and medical data being used is used as a one-time password, and data such as time data corresponding to the data is used to synchronize the data used as the one-time password between the two devices. And an authentication method capable of improving the reliability and security of communication by performing collation in a state where data used as a one-time password is converted by both devices using a predetermined conversion function. Authentication system, a communication device used in the system, a program for realizing the device, and a description of the program. And an object thereof is to provide a recording medium that is.

[0006]

An authentication method according to a first aspect of the present invention provides a method for transmitting a plurality of first data indicating time and second data to be continuously recorded in association with each of the first data. In an authentication method for performing authentication between two devices in order to transmit from one communication device to a receiving communication device, a part of the first data previously transmitted and received between the two devices is transmitted to one communication device. Transmitting from the device to the other communication device, the other communication device transmits the second data recorded in association with the received first data to the one communication device, the one communication device, The received second data is transmitted to the first transmitted data.
The other communication device is authenticated by collating with the second data recorded in association with the data.

[0007] An authentication system according to a second aspect of the present invention comprises a transmission communication device for transmitting a plurality of different first data and second data to be continuously recorded in association with each of the first data; A receiving communication device for receiving the first and second data transmitted from the transmitting communication device, wherein one of the communication devices is a first and a second data. Recording means for associating and recording, and means for extracting, from the recording means, a part of the first data previously transmitted from the communication device for transmission to the communication device for reception from the recording device. Means for transmitting the first data to the other communication device, the other communication device comprising: a recording means for recording the first and second data in association with each other; and a second means associated with the received first data. Extract data from recording means And a means for transmitting the extracted second data to the one communication device, wherein the one communication device further comprises a recording means in association with the received second data and the transmitted first data. A means for authenticating the other communication device based on the second data recorded in the second communication device.

According to a third aspect of the present invention, there is provided a communication apparatus for transmitting and / or receiving a plurality of different first data and second data to be continuously recorded in association with each of the first data. A communication device for authenticating a partner device to be a partner, a recording unit for recording the first and second data in association with each other, and a first part of a part of the first data previously transmitted and received.
Means for extracting data from the recording means;
Means for transmitting data to the partner device;
Means for receiving second data corresponding to data from the partner device, and the second device recorded on the recording device in association with the received second data and the first data transmitted, based on the second data. Authentication means for authenticating the

The communication device according to a fourth aspect of the present invention is the communication device according to the third aspect, wherein means for recording a conversion function for converting data, and wherein the second data received from the partner device is converted by a conversion function similar to the conversion function. Means for converting the second data recorded in association with the transmitted first data using the recorded conversion function,
The authentication unit is configured to authenticate the partner device based on the converted second data received from the partner device and the second data recorded in the recording unit converted using the conversion function. It is characterized by.

According to a fifth aspect of the present invention, there is provided a communication apparatus for transmitting and / or receiving a plurality of different first data and second data to be continuously recorded in association with each of the first data. In a communication device that receives authentication of a partner device as a partner, a recording unit that records first and second data in association with each other, a unit that receives first data from the partner device, and a device that corresponds to the received first data It is characterized by comprising: means for extracting the second data from the recording means; and transmission means for transmitting the extracted second data as authentication data to the partner device.

A communication device according to a sixth aspect of the present invention is the communication device according to the fifth aspect, further comprising means for recording a conversion function for converting data, and means for converting the second data to be transmitted extracted using the conversion function. The transmitting means is adapted to transmit the converted second data.

According to a seventh aspect of the present invention, in the communication device according to any one of the third to sixth aspects, the first data is a time and the second data is a value that changes with time. Features.

According to an eighth aspect of the present invention, there is provided a program for causing a computer to transmit and / or receive a plurality of different first data and second data to be continuously recorded in association with each of the first data. In a program for authenticating a partner device to be transmitted / received, a recording unit that records a part of first data in previously transmitted / received first data in association with the first data and the second data by a computer. The procedure for causing the computer to extract the first extracted
Transmitting the data to the partner device; and, when the computer receives second data corresponding to the transmitted first data from the partner device, receiving the second data;
And a step of authenticating the partner device based on the second data recorded in the recording means in association with the transmitted first data.

According to a ninth aspect of the present invention, a computer readable recording medium transmits and / or transmits a plurality of different first data and second data to be continuously recorded in association with each of the first data. Alternatively, in order to receive the data, a computer-readable recording medium storing a program for authenticating a partner device to be transmitted / received is stored in a computer-readable recording medium. A step of extracting the first data of the unit from a recording unit that records the first data and the second data in association with each other, a step of causing a computer to transmit the extracted first data to the partner device, and a step of transmitting to the computer. When receiving second data corresponding to the first data from the partner device, the second data is associated with the received second data and the transmitted first data. Are recorded in the recording means Te second
And a step of authenticating the partner device based on data.

In the first to third inventions, the fifth invention, and the seventh to ninth inventions, temporal data such as process data, weather data, and medical data are associated with first data such as time data. When the second data to be continuously recorded is transmitted from a communication device on the transmission side such as a terminal device used for measurement of the second data to a communication device on the reception side such as the central device, The first data that has been transmitted and received is randomly extracted using, for example, a random number, and the second data corresponding to the extracted first data is used as a one-time password that changes every time authentication is performed. Since the password changes every time, it is possible to prevent data leakage due to the leakage of the password, and the second data corresponding to the extracted first data is used as the password. The password can be easily synchronized, and since there is no fixed password, there is no need to perform any special processing for managing the password, and the processing load can be reduced, thus ensuring the reliability of communication. And safety can be improved.

In the fourth invention and the sixth invention, the second data is converted by both devices and used as a password for authentication, so that even if the second data used for authentication is leaked, it is misused. It is possible to reduce the risk of communication and improve the security of communication.

[0017]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS Hereinafter, the present invention will be described in detail with reference to the drawings showing the embodiments. FIG. 1 is an explanatory view conceptually showing the authentication system of the present invention, and FIG. 2 is a block diagram showing the configuration of the authentication system of the present invention. In the figure, reference numeral 10 denotes a first communication device of the present invention using a terminal device (client computer). The first communication device 10 uses a central device (server computer) via a communication network NW such as the Internet. Can communicate with the second communication device 20.

The first communication device 10 changes over time, such as process data such as process values of the cogeneration system, weather data such as temperature, and medical data such as heart rate, and should be recorded and managed continuously. It is installed in various places for measuring and / or collecting management data (second data) indicating a value. In addition, management data such as process data, weather data, and medical data correspond to time data (first data) such as a measurement time at which the data was measured, and the time data and management data are periodically transmitted through the first communication. The data is transmitted from the device 10 to the second communication device 20, and the second communication device 20 centrally manages the management data and the time data collected from the first communication devices 10 installed in various places.

The first communication device 10 includes a CPU 11 for controlling the entire device, and a recording medium REC such as a CD-ROM on which information such as a program and data for the communication device of the present invention is recorded.
CD-R that reads information such as programs and data from
Auxiliary storage means 12 such as an OM drive, auxiliary storage means 12
Recording means 13 such as a hard disk for recording information such as programs and data read by
A RAM 14 that reads and temporarily stores information such as programs and data from the CPU, and a communication unit 15 that is connected to a communication network NW. The program of the present invention stored in the RAM 14 is executed by the CPU 11,
The terminal device operates as the first communication device 10 of the present invention.

A part of the recording area of the recording means 13 is used as various databases such as a first database 10a for recording time data and management data in association with each other. Data recording / reading processing is performed. Instead of using a part of the recording area of the recording unit 13 as various databases, another device including the recording unit may be connected to the first communication device 10 and used as various databases. Further, a conversion function such as a hash function, for example, MD5 is recorded in the recording unit 13. By using the recorded conversion function, the data is converted into a fixed-length character string, for example, “d4”.
1d8cd98f00b204e9800998ecf8427e "is irreversibly converted to a character string.

The second communication device 20 includes a CPU 21, an auxiliary storage unit 22, a recording unit 23, a RAM 24, and a communication unit 25.
The central device operates as the second communication device 20 of the present invention by storing information such as the program and data for the communication device of the present invention recorded in the reading and recording means 23 by the CPU 2 and executing the information by the CPU 21. .

A part of the recording area of the recording means 23 is used as various databases such as a second database 20a for recording time data and management data in association with each other. Data recording / reading processing is performed. Instead of using a part of the recording area of the recording unit 23 as various databases, another device including the recording unit may be connected to the second communication device 20 and used as various databases. Furthermore, a conversion function similar to the conversion function recorded in the first communication device 10 is recorded in the recording unit 23.

Embodiment 1 Next, Embodiment 1 of the present invention
Will be described with reference to the flowchart shown in FIG. 3 for the processing of the first communication device 10 and the second communication device 20. In the first embodiment, the first communication device 1
This is a method of connecting from 0 to the second communication device 20 and performing an authentication process to transmit time data and management data.

The first communication device 10 continuously measures the management data and records it in association with the time data. Each time a predetermined period elapses, the recorded time data and the management data are transferred to the second communication device 10. Access the second communication device 20 via the communication network NW to transmit to the communication device 20.

After the connection between the first communication device 10 and the second communication device 20 is established, the first communication device 10 transmits the data to the second communication device 20 previously and records the time recorded in the first database 10a. Time data is extracted from the data by random extraction using random numbers (S101), and the extracted time data is transmitted to the second communication device 20 as a command for requesting transmission of management data serving as a one-time password. (S102).

The second communication device 20 receives the time data (S103), and extracts the management data associated with the received time data from the second database 20a (S1).
04), convert the extracted management data using a conversion function (S105). Then, time data is extracted by random extraction using random numbers from the time data previously received from the first communication device 10 and recorded in the second database 20a (S106), and the extracted time data and The converted management data is transmitted to the first communication device 10 (S10
7).

The first communication device 10 receives the time data and the converted management data (S108). Then, the management data associated with the time data transmitted in step S102 is extracted from the first database 10a (S102).
109), the extracted management data is converted using a conversion function (S110), and the converted management data received in step S108 is compared with the management data converted in step S110, Second communication device 2
0 is authenticated (S111). Further, management data associated with the time data received in step S108 is extracted from the first database 10a (S112), and the extracted management data is converted using a conversion function (S11).
3), transmitting the converted management data to the second communication device 20 (S114).

The second communication device 20 receives the converted management data (S115), and extracts the management data associated with the time data transmitted in step S107 from the second database 20a (S116). The converted management data is converted by using a conversion function (S117), and the converted management data received in step S115 is compared with the converted management data in step S117, so that the first communication device 10 Is authenticated (S11
8).

Steps S111 and S11
In the authentication process performed in step 8, when the respective matched data match, the subsequent processes are performed, and a signal indicating that the authentication has been performed is transmitted to the communication device of the other party, and the respective matched data are transmitted. If the data does not match, it is determined that the access is unauthorized, authentication is not performed, and the subsequent processing is interrupted.

After performing mutual authentication between the first communication device 10 and the second communication device 20 by the processing of steps S101 to S118, the first communication device 10 and the second communication device 20
The second communication device 20 records the received time data and management data in the second database 20a. At this time, the time data and the management data that have been transmitted and received and recorded in both devices are used for the authentication processing from the next time.

Embodiment 2 Next, Embodiment 2 of the present invention
The processing of the first communication apparatus 10 and the second communication apparatus 20 will be described with reference to the flowchart shown in FIG. In the second embodiment, the second polling is performed by center polling.
This is a method in which a connection is made from the communication device 20 to the first communication device 10 and an authentication process is performed to transmit time data and management data.

The first communication device 10 continuously measures the management data and records it in association with the time data. The second terminal device 20 performs the first communication every time a predetermined period elapses. The first communication device 10 is accessed via the communication network NW to request transmission of the time data and management data recorded by the device 10.

After the connection between the first communication device 10 and the second communication device 20 has been established, the second communication device 20 previously received the first communication device 10 from the first database 10a.
The time data is extracted by random extraction using a random number from the time data recorded in (1) (S201), and the extracted time data is used as a command for requesting transmission of management data as a one-time password. 1 to the communication device 10 (S202).

The first communication device 10 receives the time data (S203), and extracts the management data associated with the received time data from the first database 10a (S2).
04), convert the extracted management data using a conversion function (S205). Then, the time data previously transmitted to the second communication device 20 and extracted from the time data recorded in the first database 10a by random extraction using random numbers (S206), and the extracted time data and The converted management data is transmitted to the second communication device 20 (S20
7).

The second communication device 20 receives the time data and the converted management data (S208). Then, the management data associated with the time data transmitted in step S202 is extracted from the second database 20a (S20).
209), the extracted management data is converted using a conversion function (S210), and the converted management data received in step S208 is compared with the management data converted in step S210, First communication device 1
0 is authenticated (S211). Further, management data associated with the time data received in step S208 is extracted from the second database 20a (S212), and the extracted management data is converted using a conversion function (S21).
3) The converted management data is transmitted to the first communication device 10 (S214).

The first communication device 10 receives the converted management data (S215), extracts management data associated with the time data transmitted in step S207 from the first database 10a (S216), and extracts the management data. The converted management data is converted by using a conversion function (S217), and the converted management data received in step S215 is compared with the management data converted in step S217, thereby obtaining the second communication device 20. Is authenticated (S21
8).

Steps S211 and S21
In the authentication process performed in step 8, if the respective matched data match, the subsequent process is performed, and a signal indicating that the authentication has been performed is transmitted to the communication device of the other party, and the respective matched data are transmitted. If the data does not match, it is determined that the access is unauthorized, authentication is not performed, and the subsequent processing is interrupted.

After performing mutual authentication between the first communication device 10 and the second communication device 20 by the processing of steps S201 to S218, the first communication device 10 and the second communication device 20
The second communication device 20 records the received time data and management data in the second database 20a. At this time, the time data and the management data that have been transmitted and received and recorded in both devices are used for the authentication processing from the next time.

In Embodiments 1 and 2, the mutual authentication is performed between the first communication device 10 and the second communication device 20. However, the present invention is not limited to this, and the present invention is not limited to this.
The second communication device 20 (first
Only the authentication of the communication device 10) may be performed, which can reduce the processing load of the entire system. However, in order to prevent the management data from being intercepted due to fraud such as spoofing, it is desirable to perform mutual authentication.

FIG. 5 is an explanatory diagram conceptually showing a situation in which an unauthorized act is performed on the authentication system of the present invention. FIG. 5A shows a case where time data and management data are transmitted and received by authenticating only one device.
This shows a situation in which unauthorized acquisition by spoofing has been attempted on the management data recorded in the first communication device 10. The fraudulent person who performs the fraud is the fraudulent communication device 20X.
Is used to access the first communication device 10 to prepare time data estimated to be recorded, and transmit the prepared time data to the first communication device 10 as a process simulating step S202. The first communication device 10 extracts and transmits the management data associated with the received time data, and the unauthorized communication device 20X outputs a signal indicating that the received management data has been authenticated to the second communication device. 1) Perform spoofing authentication to be transmitted to the communication device 10. First communication device 1
In the case of 0, when a signal indicating that the authentication has been performed is received, the time data and the management data are transmitted.

FIG. 5B shows a case where time data and management data are transmitted and received by performing mutual authentication.
This shows a situation in which unauthorized acquisition by spoofing has been attempted on the management data recorded in the first communication device 10. In the situation shown in FIG. 5B, the unauthorized communication device 20X is connected to the first communication device 1 by the same processing as that shown in FIG.
Even if the authentication is performed by impersonating 0, the first communication device 10 receives the management data transmitted from the unauthorized communication device 20X as a process imitating step S214, and the first communication device 10 detects the impropriety at the time of collation. No data is sent or received. By performing mutual authentication in this way, the security of communication is strengthened. In particular, when there is a risk that management data may be leaked, by setting the management data not to be used as a one-time password And safety is further enhanced.

For the purpose of reducing the processing load, conversion processing is not always necessary, but in the communication system of the present invention, the management data itself used as the one-time password has confidentiality. Therefore, it is desirable to perform a conversion process.

Further, in the above-described embodiment, the form in which management data corresponding to one piece of time data extracted by random sampling is used for authentication has been described. However, the present invention is not limited to this.
A form in which a plurality of pieces of time data are extracted and a plurality of management data corresponding to each piece of time data are used for authentication may be used.

In the above embodiment, the first time data is transmitted from the accessing communication device side. However, the present invention is not limited to this, and the first time data is transmitted from the accessed communication device side. Data may be transmitted.

In the above embodiment, the management data is recorded in association with the time data. However, the present invention is not limited to this. It may be an ID.

[0046]

As described in detail above, in the authentication method, the authentication system, the communication device, the program, and the recording medium according to the present invention, process data, weather data, and medical data are associated with first data such as time data. The second data that changes with time and should be continuously recorded, such as data, is transmitted from a communication device on the transmission side such as a terminal device used for measurement of the second data to a communication device on the reception side such as a central device. In this case, the first data that has been transmitted / received before is randomly extracted using, for example, a random number, and the second data corresponding to the extracted first data is changed in a one-time manner every time authentication is performed. By using it as a password, it is possible to prevent data leakage due to password leakage since the password changes every time, and it is possible to prevent the second data corresponding to the extracted first data.
Since data is used as a password, it is possible to easily synchronize the password between the two devices, and since there is no dedicated password, there is no need to perform any special processing for managing the password, thus reducing the processing load Therefore, it is possible to improve the reliability and security of the communication, and to achieve excellent effects.

Further, in the present invention, the second data is converted by both devices and then used as a password for authentication, so that even if the second data used for authentication is leaked, there is a danger of misuse. Excellent effects are obtained, such as reduction in communication speed and improvement in communication security.

[Brief description of the drawings]

FIG. 1 is an explanatory view conceptually showing an authentication system of the present invention.

FIG. 2 is a block diagram showing a configuration of an authentication system of the present invention.

FIG. 3 is a flowchart illustrating processing of a first communication device and a second communication device according to Embodiment 1 of the present invention.

FIG. 4 is a flowchart illustrating processing of a first communication device and a second communication device according to Embodiment 2 of the present invention.

FIG. 5 is an explanatory diagram conceptually showing a situation when an unauthorized act is performed on the authentication system of the present invention.

[Description of Signs] 10 First communication device 20 Second communication device NW communication network REC Recording medium

Continued on the front page (72) Inventor Takuhiro Yamada 4-1-2 Hirano-cho, Chuo-ku, Osaka-shi, Osaka F-term in Osaka Gas Co., Ltd. (reference) 5B085 AC05 AE04 AE23 5J104 AA07 KA02 KA06 KA09 KA21 NA05 NA12 5K030 GA15 HB06 HB19 HC01 MC09 5K101 KK19 KK20 LL01 MM07 NN01 NN14 NN21

Claims (9)

[Claims] A plurality of first data indicating time;
In an authentication method for performing authentication between two devices so as to transmit second data to be continuously recorded in association with each of the data from a communication device for transmission to a communication device for reception, A part of the first data among the first data transmitted and received is transmitted from one communication device to the other communication device, and the other communication device is recorded in association with the received first data. The second data is transmitted to the one communication device, and the one communication device compares the received second data with the second data recorded in association with the transmitted first data to thereby transmit the second data. An authentication method characterized in that the communication device is authenticated. 2. A plurality of different first data and a plurality of different first data.
Transmission communication device for transmitting second data to be continuously recorded in association with each of the data, and reception communication device for receiving the first and second data transmitted from the transmission communication device An authentication system for performing authentication between the two devices, wherein one of the communication devices includes a recording unit that records the first and second data in association with each other, and a communication device that transmits from the transmission communication device to the reception communication device. Means for extracting a part of the first data from the first data transmitted from the recording means, and means for transmitting the extracted first data to the other communication device. The other communication device comprises: Recording means for recording the first data and the second data in association with each other; means for extracting the second data associated with the received first data from the recording means; Means for transmitting to The one communication device further includes means for authenticating the other communication device based on the received second data and the second data recorded in the recording means in association with the transmitted first data. An authentication system characterized by the following. 3. A plurality of different first data and the first data, respectively.
A communication device that authenticates a partner device as a transmission / reception partner to transmit and / or receive second data to be continuously recorded in association with each of the data, and records the first and second data in association with each other. Recording means for extracting, from the recording means, a part of the first data previously transmitted and received, means for transmitting the extracted first data to the partner device, Means for receiving second data corresponding to data from the partner device; and means for receiving the second data based on the received second data and the second data recorded in the recording means in association with the transmitted first data. A communication device, comprising: an authentication unit that authenticates a user. 4. A means for recording a conversion function for converting data, and a conversion function recorded when the second data received from the partner device is converted by a conversion function similar to the conversion function. Means for converting the second data recorded in association with the transmitted first data, wherein the authentication means converts the converted second data and the conversion function received from the partner device. 4. The communication device according to claim 3, wherein the communication device is configured to authenticate the partner device based on the second data recorded in the recording unit converted by using the communication device. 5. A plurality of different first data and said first data
In a communication device that is authenticated by a partner device that is a transmission / reception partner to transmit and / or receive second data to be continuously recorded in association with each of the data, the first and second data are associated with each other. Recording means for recording; means for receiving first data from the partner device; means for extracting second data corresponding to the received first data from the recording means; and using the extracted second data as authentication data. And a transmitting means for transmitting to the partner device. 6. A means for recording a conversion function for converting data, and means for converting second data to be transmitted extracted using the conversion function, wherein the transmitting means converts the converted second data into The communication device according to claim 5, wherein the communication device is configured to transmit. 7. The communication device according to claim 3, wherein the first data is a time, and the second data is a value that changes over time. 8. A plurality of different first data and the first data, respectively.
In order to transmit and / or receive second data to be continuously recorded in association with each of the data, a program for causing a computer to authenticate a partner device to be transmitted / received includes: A procedure for extracting a part of the first data from the recording unit that records the first data and the second data in association with each other; a procedure for causing a computer to transmit the extracted first data to the partner apparatus. When the computer receives second data corresponding to the transmitted first data from the partner device, the second data recorded in the recording unit in association with the received second data and the transmitted first data. And a procedure for authenticating the partner device based on two data. 9. A plurality of different first data and said first data
In order to transmit and / or receive the second data to be continuously recorded in association with each of the data, the computer reads a program that authenticates a partner device to be transmitted / received. In a possible recording medium, a procedure for causing a computer to extract a part of the first data among the first data transmitted and received previously from a recording unit that records the first data and the second data in association with each other; Transmitting the extracted first data to the partner device; and, when the computer receives second data corresponding to the transmitted first data from the partner device, the received second data and the transmitted second data. Authenticating the partner device based on the second data recorded in the recording means in association with the first data. Recording medium readable on a computer, characterized in that the are recorded.