JP2003179609A - Communication authentication device and communication authentication method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a communication authentication device connected with variously constituted mobile terminals and house appliances of a Bluetooth (R) system by radio communication, for authenticating whether or not the connection of individual devices within the radio communication area is permitted before the mobile terminals and the house appliances of the Bluetooth (R) system start 'data communication'. <P>SOLUTION: The communication authentication device authenticates radio connection among the devices such as a portable terminal, a portable telephone, a personal computer and digital audio equipment, and is provided with a communication means performing the radio connection with the respective devices, an authentication means discriminating whether or not to enable transmission or reception of data between the devices, a control means controlling the communication means and the authentication means, and a storage means storing the data for authentication control used in the control means. <P>COPYRIGHT: (C)2003,JPO

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a communication authentication apparatus and a communication authentication method for authenticating wireless connection between devices such as mobile terminals, mobile phones, personal computers and digital audio equipment.

[0002]

2. Description of the Related Art In recent years, with the spread of the Internet and the development of multimedia, information network technology has advanced dramatically, and information on mobile terminals, mobile phones, personal computers, peripheral devices thereof, digital audio equipment, etc. Communication devices and home information appliances are increasingly used on networks centered on personal computers. These information communication devices and information home appliances are
Because it is necessary to place importance on portability, by keeping the functions to the minimum necessary and connecting each device with a cord,
We are improving functions and transferring data. However, in the connection using the cord, the cord is lost, there is an inconvenience that it is necessary to search around, and there is an annoyance due to the cord wiring. Under such circumstances, devices that can be connected by wireless have been proposed, and many companies have begun to promote data sharing by in-house wireless communication. Various portable wireless communication devices have been proposed as electronic approval and information collection means by mobile terminals even in outdoor scenes such as commercialization and shopping. As a relatively short-distance wireless communication means, there are a wireless LAN which is currently in a general use stage and Bluetooth which is expected to become popular in the future. However, both communication methods are almost 100 without cables.
% Compared to wired communication in which data is not stolen by others, wireless communication causes radio waves to fly in the air over a relatively wide range, so confidentiality management technology and encryption technology for wireless communication devices are essential issues. Wireless LAN is a standard for wired LAN, I
Wired LAN, which is an extension of EEE 802.11.
Ethernet (registered trademark) (10base)
An Ethernet (registered trademark) cable is replaced with a radio wave. Therefore, in Ethernet (registered trademark), in order to identify a personal computer or a device connected to a network, an individual number called "IP address" must be assigned to each, and this is the same in a wireless LAN as well. The PC to run must have an IP address. This IP address is automatically assigned from the network device side, which is the "DHCP server function" installed in dial-up routers.
The currently used OS is DHC.
DHC that automatically accepts the address issued by the P server
Equipped with P client function. If you want to use an access point with a router function, enable it and let the computer set the IP address.
There is a method of manually setting the P address. In addition, the Ethernet (registered trademark) board of the computer connected to the Ethernet (registered trademark) has a MAC address (Me
dia AccessControl Addresses
s) has a unique physical address. The MAC address has a length of 6 bytes for Ethernet (registered trademark), and the first 3 bytes are managed / assigned by IEEE (Institute of Electrical and Electronics Engineers) as a vendor code. The remaining 3 bytes are codes managed by each vendor so that they will not be duplicated, so as a result, there is no Ethernet (registered trademark) board with the same physical address in the world, and different addresses are all assigned. . Ethernet (registered trademark) transmits and receives frames based on this address. The MAC address is also called the hardware address, and when connecting to a TCP / IP network, the network administrator must set the TC in advance.
It is necessary to set P / IP. Therefore, wireless LAN
Even if a device that can be connected is brought into the effective range of wireless communication, the MAC address and TCP / IP settings are required. In a wireless LAN environment of a company or the like, since it is placed under the control of the network administrator, it can be one of the confidentiality maintaining means. On the other hand, the target mobile terminals for Bluetooth are assumed to be a wide range of mobile terminals ranging from business terminals to consumer products, and can be easily used by anyone without the need for complicated devices or OS settings. Has become. For example,
If you have a Bluetooth compatible mobile device, you can connect to the Internet without a cable if you have a data access point (Internet station) nearby, or if you have a Bluetooth-equipped mobile phone, you can place it near your computer. It can also be used as a wireless modem. Also, just by bringing a Bluetooth compatible device into the conference room, a peer-to-peer network is automatically configured with the Bluetooth compatible device of the same person, and mutual information such as data and files can be easily exchanged wirelessly as needed. For personal use, upon entering the room after returning home, Bluetooth connection is automatically made between your mobile terminal and your home PC, other handheld devices, mobile phones, etc., and files such as schedules and address books are also automatically created. Can be synchronized to. The Bluetooth standard defines device authentication and cryptographic security services at the data link layer, so the security issues of the Bluetooth communication connection method include devices that incorporate security protocols that cannot ensure safety, and A wireless connection with a device that does not incorporate security protocols. Also, for security reasons, if the wireless network does not accept devices outside the group, communication will not start even if a new device enters the wireless communication area, which is contrary to the original purpose of Bluetooth. . In addition, a complicated ID and password are required for registration work for using this new device as a Bluetooth device. In addition, the current general operation method of passwords is to take a notebook personal computer for work as a mobile personal computer out of the office or home in the form of work. For this reason, a personal computer that stores highly confidential data uses a "BIOS power-on password" that requires a password when the power is turned on, or a password that is used when reading a file, as a means of maintaining confidentiality of the internal data. There are various methods such as "hard disk password" that requires the file and file encryption using dedicated encryption software. That is, although a plurality of passwords are used, as a character of the password, a character string that is easily known to others, such as a birthday or a telephone number related to the user, is not normally used. Actually, it is a work of remembering a meaningless long character string that has nothing to do with the user and entering a different password for each declassification operation. With such a complicated password, the user often takes notes in a notebook or the like so that he / she will not forget it, and it takes time and labor to do away from the original task of managing the password itself confidentially. The reality is that we use our nerves.

[0003]

The Bluetooth type mobile terminals and home appliances that are expected to become popular in the future are expected to have a wide range of products from business terminals to consumer products and general home appliances. Since it is easy for anyone to use without the need for complicated devices or settings on the OS, for example, under the communication environment of a mobile terminal brought into a wireless communication area, the mobile device of another person who has not been authenticated is used. The terminal is connected to the network without permission of the user who is the master in the area,
There is a possibility that confidential information or personal information in the data being communicated will be stolen by others, and in such an unprotected wireless communication area, when starting data communication, the communication method or device Authentication is required. As the authentication method, there is authentication by inputting a password, but if the operation is not easy, the convenience of the Bluetooth type device, which has the advantage that "anyone can easily use it", will be lost. Therefore, there is a demand for a communication authentication method that easily builds a network under certain conditions and has strong security.

Therefore, the present invention is connected to variously configured Bluetooth mobile terminals and home appliances by wireless communication, and before the Bluetooth mobile terminals and home appliances start "data communication", It is an object of the present invention to provide a communication authentication device that authenticates whether a device is permitted to connect within its wireless communication area.

[0005]

A communication authentication apparatus of the present invention according to claim 1 is a communication authentication apparatus for authenticating a wireless connection between devices such as a mobile terminal, a mobile phone, a personal computer, and a digital audio device. A communication means for making a wireless connection with each of the devices, an authentication means for determining whether or not data transmission or reception between the devices is possible, and a control means for controlling the communication means and the authentication means. And storage means for storing authentication control data used by the control means. According to a second aspect of the present invention, in the communication authentication apparatus according to the first aspect, the storage means stores a plurality of actual names such as a user's name, date of birth, telephone number, electronic mail address, and license number. It is characterized by storing personal data as a password. According to a third aspect of the present invention, in the communication authentication apparatus according to the first aspect, an input unit for inputting information of a device to be managed into an internal memory of the storage unit, a communication state of the network, and the input unit. And display means for displaying the input information from. According to a fourth aspect of the present invention, in the communication authentication apparatus according to the first aspect, there is provided a starting unit that is connected to the control unit and can be started from the outside. According to a fifth aspect of the present invention, in the communication authentication apparatus according to the first aspect, there is provided position information detection means for performing a control operation only at a predetermined position, which is connected to the control means. To do. According to a sixth aspect of the present invention, in the communication authentication apparatus according to the first aspect, a timer that is connected to the control means and operates a communication command or an authentication command from the control means only at a time set by a user or for a fixed time. It is characterized by having means. The communication authentication method of the present invention according to claim 7, wherein the communication authentication device, the first device, and the second device are connected by wireless communication, respectively, and the communication authentication device is connected between the first device and the second device. A communication authentication method for authenticating communication with the communication authentication device, comprising: a first step of issuing a connection request from the first device to the second device; and a second step after the first step. Second device inquires from the second device to the communication authenticating device whether the device may connect to the first device, and, after the second step, the communication authenticating device performs the second step. A third step of confirming the presence of the first device, and, after the third step, a fourth step of notifying the communication authentication apparatus of the presence information of the first device from the first device. A fifth step in which, after the fourth step, the communication authentication apparatus reports the result of confirmation of the presence of the first device from the communication authentication apparatus to the second device; And the sixth step of starting communication between the first device and the second device. The communication authentication method of the present invention according to claim 8, wherein the communication authentication device, the first device, and the second device are connected by wireless communication, respectively, and between the first device and the second device. A communication authentication method for authenticating communication with the communication authentication device, comprising: a first step of issuing a connection request from the first device to the second device; and a second step after the first step. Second device inquires from the second device to the communication authenticating device whether the device may connect to the first device, and after the second step, the communication authenticating device and the communication authenticating device are connected. A third step of authenticating the first device by transmitting and receiving address information or password information of the first device between the first devices;
The step of reporting from the communication authentication apparatus to the second device that the first device is a communication-permitted apparatus, and after the fourth step, And a fifth step of starting communication between the first device and the second device. In the communication authentication method of the present invention according to claim 9, the communication authentication device, the first device, and the second device are connected by wireless communication, respectively, and the first device and the second device are connected.
A communication authentication method for authenticating communication with another device by the communication authentication device, the first step of issuing a connection request from the first device to the second device, and the first step The second step of inquiring from the second device to the communication authentication device whether the second device may connect to the first device, and, after the second step, A third step of authenticating the second device by transmitting and receiving address information or password information of the second device between the communication authentication device and the second device, and after the third step , Authenticating the first device by transmitting and receiving address information or password information of the first device between the communication authentication device and the first device A fourth step and, after the fourth step, a fifth step of reporting from the communication authentication apparatus to the second device that the first device is a communication-permitted device; The fifth step is followed by a sixth step of starting communication between the first device and the second device. The communication authentication method of the present invention according to claim 10, wherein the communication authentication device, the first device, and the second device are connected by wireless communication, respectively, and the communication authentication device is connected between the first device and the second device. A communication authentication method for authenticating communication with the communication authentication device, comprising: a first step of requesting information from the communication authentication device to the second device; and a second step after the first step. A second step of inquiring from the device to the communication authentication device what kind of the first device is available;
After the second step, the communication authenticator performs a third step of searching for the available first device, and after the third step, from the first device to the communication authenticator. A fourth step of notifying the presence information of the first device; and, after the fourth step, reporting the result of the communication authentication apparatus confirming the presence of the first device to the second device. And a sixth step of starting communication between the first device and the second device after the fifth step. The communication authentication method of the present invention according to claim 11, wherein the communication authentication device, the first device, and the second device are connected by wireless communication, respectively, and the communication authentication method is performed between the first device and the second device. A communication authentication method for authenticating communication with the communication authentication device, comprising: a first step of requesting information from the communication authentication device to the second device; and a second step after the first step. A second inquiry from the device to the communication authentication device as to what kind of the first device is registered;
And the second step, the communication authentication apparatus searches the available first device for a third step, and the first device sends the communication authentication apparatus to the communication authentication apparatus for the first step. A fourth step of transmitting address information or password information of the first device, a fifth step after the fourth step of authenticating the first device by the communication authentication apparatus, and a fifth step after the fifth step. A sixth step of transmitting address information or password information of the first device to be used from the communication authentication device to the second device, and the first device after the sixth step. And a seventh step of starting communication of the second device.
The communication authentication method of the present invention according to claim 12, wherein the communication authentication device, the first device, and the second device are connected by wireless communication, respectively, and the communication device is connected between the first device and the second device. A communication authentication method for authenticating a communication by the communication authentication apparatus, comprising: a first step of requesting information from the second device to the communication authentication apparatus; and the communication authentication apparatus after the first step. From the second step of transmitting an answer notification including information about the first device stored and managed by the communication authentication apparatus to the second device, and the second step after the second step. A third step of making a confirmation request to the first device identified by the device, and transmitting a confirmation result from the first device to the second device after the third step. Characterized in that comprising a fourth step that. According to a thirteenth aspect of the present invention, in the communication authentication apparatus according to the first aspect, the authentication unit is a biometric information authentication unit that reads and authenticates biometric information capable of identifying an individual user, and the storage is performed. The means is characterized by storing biometric information unique to the user. The communication authentication method of the present invention according to claim 14, wherein the communication authentication device, the first device and the second device are respectively connected by wireless communication, and the second device is connected to an external device, A communication authentication method for authenticating communication between a first device and the second device with the communication authentication device, the first device issuing a connection request from the first device to the second device. And a second step, after the first step, inquiring from the second device to the communication authentication device whether the second device may connect to the first device, Second
After the step of, the proof that the owner of the first device is the owner of the communication authentication device, and the communication authentication device is the owner's own property is stored in the biometric information installed in the communication authentication device. If the authentication result of the third step is correct after the third step of authenticating using the authentication means, the authentication result is passed from the communication authentication apparatus via the second device. A fourth step of transmitting to an external device connected to the second device, and, after the fourth step, permitting communication from the external device to the communication authentication device via the second device It is characterized by comprising a fifth step of transmitting a notification and a sixth step of starting communication between the first device and the second device after the fifth step.
The communication authentication method of the present invention according to claim 15 is the method according to claim 14.
In the communication authentication method described in the paragraph (3), it is the third device connected to the second device that starts communication with the second device after the fifth step. The communication authentication method of the present invention according to claim 16, wherein the first device and the second device are wirelessly or wired connected, and the communication authentication device and the second device are wirelessly connected, and the second device. An external device is connected to the device, and a communication authentication method for authenticating communication between the first device and the second device with the communication authentication device, wherein the first device to the second device From the second device to the communication authentication device to determine whether the second device may connect to the first device after the first step of issuing a connection request to the first device. Second step of inquiring to
After the step of, the proof that the owner of the first device is the owner of the communication authentication device, and the communication authentication device is the owner's own property is stored in the biometric information installed in the communication authentication device. If the authentication result of the third step is correct after the third step of authenticating using the authentication means, the authentication result is passed from the communication authentication apparatus via the second device. A fourth step of transmitting to an external device connected to the second device, and a fifth step of transmitting data from the external device to the second device after the fourth step It consists of and. The communication authentication method of the present invention according to claim 17, wherein the communication authentication device and the second device are connected by wireless communication, an external device is connected to the second device, and operation control of the second device is performed. Is a communication authentication method for authenticating the permission to perform from the external device by the communication authentication device, the proof that the communication authentication device is the property of the owner himself, biometric information authentication means mounted on the communication authentication device. If the authentication result of the first step is correct after the first step of authenticating by using the first step, the authentication result is transmitted from the communication authentication apparatus via the second device to the second step. A second step of transmitting to an external device connected to the second device;
The third step of transmitting the permission data from the external device to the second device after the step of, and the third step of transmitting the permission data from the external device to the second device after the third step. The second based on the permission data
And a fourth step of starting operation of the device.

[0006]

BEST MODE FOR CARRYING OUT THE INVENTION A communication authentication apparatus according to a first embodiment of the present invention determines a communication means for making a wireless connection with each device and whether or not data transmission or reception between the devices is possible. The authentication means, the communication means, the control means for controlling the authentication means, and the storage means for storing the authentication control data used by the control means. According to the present embodiment, two or more communication devices within the area can be “data communicated” with each other by the communication authentication device existing separately from the two or more communication devices within the area where wireless communication is possible. Can be controlled. Therefore, if the authentication control data is stored in advance in the communication authentication device, by bringing this communication authentication device into the area, it is registered in the authentication control data stored in the storage means inside the communication authentication device. A communication device can be connected and made available.

The second embodiment of the present invention is the communication authentication apparatus according to the first embodiment, wherein the storage means stores the user's name, date of birth, telephone number, e-mail address, and license number. It stores a plurality of actual personal data as a password. According to this embodiment,
Information such as name, date of birth, telephone number, e-mail address, license number, etc., which is relevant to the user, is registered as a password, so there is little risk of forgetting and there is no need to write down the password.

The third embodiment of the present invention is, in the communication authentication apparatus according to the first embodiment, an input means for inputting information of a device to be managed in an internal memory of a storage means and a communication state of a network. And display means for displaying input information from the input means. According to the present embodiment, by the communication authentication device existing separately from two or more devices in the area where wireless communication is possible,
It is possible to control whether or not two or more devices in the area can perform “data communication” with each other. Therefore, if the authentication control data is stored in advance in the communication authentication device, by bringing this communication authentication device into the area, it is registered in the authentication control data stored in the storage means inside the communication authentication device. Devices can be connected and enabled. Further, by providing a button as the input means and a display window as the display means, it is possible to perform a sudden authentication work in the communication area of the destination.

The fourth embodiment of the present invention is, in the communication authentication apparatus according to the first embodiment, provided with an activation means which is connected to the control means and can be activated from the outside. According to the present embodiment, even in the case of a stationary communication authentication device, it is possible to detect the entry of a user, the insertion of a key, or the communication authentication device can be activated in synchronization with the activation of other devices. Therefore, security can be comfortably maintained without worrying about the existence of the communication authentication device. Therefore, for example, when boarding an automobile in a keyless entry or starting the engine with a key, the communication authentication device is activated to connect the mobile phone and car navigation device with Bluetooth to communicate, and The map information can be received via the base station and transmitted to the car navigation device.

The fifth embodiment of the present invention is, in the communication authentication apparatus according to the first embodiment, provided with position information detecting means connected to the control means and performing a control operation only at a predetermined position. It is a thing. According to the present embodiment, the position information detecting means inside the communication authentication device enables the use of each device only when the user is at the preset coordinates on the earth. Therefore, since the communication authentication is performed only at a fixed place, strong security can be maintained.

The sixth embodiment of the present invention is, in the communication authentication apparatus according to the first embodiment, connected to the control means, and a communication command or authentication from the control means only at a time set by the user or for a fixed time. It is provided with a timer means for operating an instruction. According to the present embodiment, the timer means inside the communication authentication device allows the use of each device by the time preset by the user, after the time set by the user has elapsed, or within the time set by the user. It will be possible.
Therefore, it is possible to prevent communication authentication due to unauthorized use of the communication authentication device of a third party.

The communication authentication method according to the seventh embodiment of the present invention comprises a first step of issuing a connection request from the first device to the second device, and a second step after the first step. The second step of inquiring from the second device to the communication authentication device whether the device may connect to the first device, and, after the second step,
A third step in which the communication authentication device confirms the presence of the first device, and a fourth step in which after the third step, the first device notifies the communication authentication device of the presence information of the first device. After the step and the fourth step, a fifth step of reporting the result of the communication authentication apparatus confirming the existence of the first device from the communication authentication apparatus to the second device, and a fifth step of the fifth step. Later, it comprises a sixth step of initiating communication between the first device and the second device. According to the present embodiment, the communication authentication apparatus is brought into the wireless communication area, and the first device and the second device start data communication with the intervention of the communication authentication apparatus for the first time. Leakage of confidential data does not occur on the connection due to unauthorized access by the person.

The communication authentication method according to the eighth embodiment of the present invention comprises a first step of issuing a connection request from the first device to the second device, and a second step after the first step. The second step of inquiring from the second device to the communication authentication device whether the device may connect to the first device, and, after the second step,
A third step of authenticating the first device by transmitting and receiving address information or password information of the first device between the communication authentication device and the first device, and a communication authentication device after the third step. From the second device to the second device to report that the first device is an authorized device, and after the fourth step, starts communication between the first device and the second device And the fifth step of doing so. According to the present embodiment, the communication authentication device is brought into the wireless communication area,
Since the first device and the second device start data communication for the first time by using an authentication means such as a password for the first device, confidential data can be leaked through a connection by an unauthorized access from a third party. Does not happen.

In the communication authentication method according to the ninth embodiment of the present invention, the first step of issuing a connection request from the first device to the second device, and the second step after the first step The second step of inquiring from the second device to the communication authentication device whether the device may connect to the first device, and, after the second step,
A third step of authenticating the second device by transmitting and receiving address information or password information of the second device between the communication authentication device and the second device, and a communication authentication device after the third step. And a first device, the fourth step of authenticating the first device by transmitting and receiving the address information or the password information of the first device, and, after the fourth step, the communication authentication device to the second step. The first device to the second device to report that the first device is a device permitted to communicate, and after the fifth step, to start communication between the first device and the second device. 6 steps. According to the present embodiment, the first device and the second device start data communication for the first time by bringing the communication authentication device into the wireless communication area and using the authentication means such as the password for the second device. So the third
Leakage of confidential data does not occur on the connection due to unauthorized access by the person.

A communication authentication method according to a tenth embodiment of the present invention comprises a first step of requesting information from a communication authentication apparatus to a second device, and a second device after the first step. From the device to the communication authentication device as to what kind of first device is available, and after the second step, the communication authentication device identifies the available first device. A third step of searching, a fourth step of, after the third step, of notifying the communication authentication apparatus of the presence information of the first device from the first device, and a communication of after the fourth step The authentication device confirms the existence of the first device,
The fifth step of reporting the first device to the second device and the sixth step of starting communication between the first device and the second device after the fifth step. According to the present embodiment, the communication authentication device is brought into the wireless communication area, the second device to be connected to the first device is authenticated by using the second device, and the authentication information is used as the first information.
Since the first device and the second device start data communication for the first time by transmitting the data to the device of No. 3, confidential data does not leak in the connection due to the arbitrary access from the third party.

A communication authentication method according to an eleventh embodiment of the present invention is the first step of requesting information from the communication authentication apparatus to the second device, and the second device after the first step. From the communication authentication apparatus to inquire what kind of the first device is registered, and after the second step, the communication authentication apparatus determines the available first device. Third to search
And a fourth step of transmitting the address information or password information of the first device from the first device to the communication authentication apparatus, and after the fourth step,
A fifth step in which the communication authentication apparatus authenticates the first device, and after the fifth step, the communication authentication apparatus transmits the address information or password information of the first device to be used to the second device. The sixth step to do,
After the sixth step, it comprises a seventh step of starting communication between the first device and the second device. According to the present embodiment, the communication authentication device is brought into the wireless communication area, the first device is first determined, and then the second device to be connected to the first device by using the second device is selected. By authenticating and transmitting the authentication information to the first device, the first device and the second device start data communication for the first time. Therefore, confidential data in a connection by a third party is arbitrarily accessed. No outflow occurs.

The communication authentication method according to the twelfth embodiment of the present invention comprises a first step of requesting information from the second device to the communication authentication apparatus and a communication authentication apparatus from the communication authentication apparatus after the first step. A second step of transmitting an answer notification including information about the first device stored and managed by the communication authentication apparatus to the second device, and identified by the second device after the second step Comprising a third step of making a confirmation request to the first device, and a fourth step of transmitting a confirmation result from the first device to the second device after the third step Is. According to the present embodiment, the communication authentication device is brought into the wireless communication area to authenticate the first device and the second device, and then the correctness of the data transmitted from the second device to the first device is checked. The user of the first device confirms the result and reports the result to the second device, so that the second device uses another communication line for the first time to transfer and calculate the data sent from the first device. Therefore, personal information such as credit card and amount information is
It will not be leaked to the outside due to connection by unauthorized access from the person.

The thirteenth embodiment of the present invention is, in the communication authentication device according to the first embodiment, biometric information authentication for authenticating by reading biometric information capable of identifying an individual user. The storage means stores biometric information unique to the user. According to the present embodiment, since the biometric information such as the fingerprint, cornea, and gene of the user himself is used for the person authentication to determine the user himself, the owner of the communication authentication apparatus and the communication authentication apparatus are More accurate confirmation can be obtained that the owner of the system that contains it and the current user are the same person. In addition, since the same biometric information does not exist in almost 100% of cases of establishment, a plurality of authentication keys such as passwords for improving the user's identification accuracy are not required, and as a result, the user's authentication operation is simplified. Further, even if the authentication target is only one piece of biometric information, the individual can be sufficiently specified, so that it is possible to easily downsize the communication authentication device for authenticating the person and simplify the authentication algorithm.

A communication authentication method according to a fourteenth embodiment of the present invention is the first step of issuing a connection request from the first device to the second device, and the second step after the first step. The second step of inquiring from the second device to the communication authentication device whether the device may connect to the first device, and, after the second step,
A third step of authenticating the proof that the owner of the first device is the owner of the communication authentication apparatus and the communication authentication apparatus is the property of the owner by using the biometric information authentication means mounted in the communication authentication apparatus. After step 3 and step 3,
If the authentication result of the third step is correct, a fourth step of transmitting the authentication result from the communication authentication device to the external device connected to the second device via the second device; After the step, a fifth step of transmitting a communication permission notification from the external device to the communication authentication apparatus via the second device, and the first step after the fifth step.
And a sixth step of starting communication between the device and the second device. According to this embodiment,
A system including a first and second device including an external device and a communication authentication device, or a proof that the first device and the communication authentication device are owned by the user himself at the start of system use. Own biometric information (fingerprint, cornea,
Since it is performed using genes, etc., confidential information will not be leaked from the entire system or individual devices. Also,
If communication permission is transmitted from the communication authentication device to the second device after the fifth step and the communication between the first device and the second device is started according to the permission information, the communication will be more robust. You can keep confidential. In addition,
The second device monitors the flow of communication data in the fifth step, detects that the communication permission is reliably sent from the second device to the communication authentication apparatus, and the first result is detected. Even with the method of starting communication between the second device and the second device, the communication confidentiality can be sufficiently maintained.

The communication authentication method according to the fifteenth embodiment of the present invention is the communication authentication method according to the fourteenth embodiment of the present invention, in which communication with the second device is started after the fifth step. Is a third device connected to the second device. According to the present embodiment, the system including the first, second and third devices including the external device and the communication authentication device, or the first device and the communication authentication device being owned by the user himself. Since the certification is performed using the user's own biometric information (fingerprint, cornea, gene, etc.) at the start of system use, confidential information does not leak from the entire system or individual devices. Further, it is possible to construct a system having a high degree of freedom such that the first device is a highly confidential operation-related device and the third device is a highly public display-related device. Of course, the third device is also a personal device, and may be a device that is secured by the communication authentication device.

The communication authentication method according to the sixteenth embodiment of the present invention is the first step of issuing a connection request from the first device to the second device, and the second step after the first step. The second step of inquiring from the second device to the communication authentication device whether the device may connect to the first device, and, after the second step,
A third step of authenticating the proof that the owner of the first device is the owner of the communication authentication apparatus and the communication authentication apparatus is the property of the owner by using the biometric information authentication means mounted in the communication authentication apparatus. After step 3 and step 3,
If the authentication result of the third step is correct, a fourth step of transmitting the authentication result from the communication authentication device to the external device connected to the second device via the second device; And the step of transmitting data from the external device to the second device. According to the present embodiment, a system including first and second devices including an external device and a communication authentication device, or proof that the first device and the communication authentication device are owned by the user himself / herself. Is carried out using the user's own biometric information (fingerprint, cornea, gene, etc.) at the start of system use, so that confidential information does not leak from the entire system or individual devices. Also, the first
Proof that the device is owned by you
Since it has been completed between the first device and the communication authentication device,
There is no need to newly inquire confidential data such as personal information (including a credit card number) inside the second device or an external device connected to the second device.

In the communication authentication method according to the seventeenth embodiment of the present invention, the proof that the communication authentication device is the property of the owner himself is authenticated by using the biometric information authentication means mounted in the communication authentication device. If the authentication result of the first step is correct after the first step and the first step, the authentication result is transmitted from the communication authentication apparatus to the second device via the second device.
Second step of transmitting to the external device connected to the device of the second step, and the second step from the external device after the second step.
Third step of transmitting the permission data to the second device, and after the third step, the second device starts operating based on the permission data transmitted from the external device to the second device. And the fourth step. According to the present embodiment, the system including the second device including the external device and the communication authentication device, or the second device and the communication authentication device, or the communication authentication device is the property of the user himself. The proof of this is that the user's own biological information (fingerprint, cornea,
Since it is performed using genes, etc., confidential information will not be leaked from the entire system or individual devices. Also,
Since the proof that the second device is the property of the user himself / herself has been completed between the second device and the communication authentication device, the second device and the external device connected to the second device are internally protected. There is no need to newly inquire about confidential data such as personal information.

[0023]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS A communication authentication device according to an embodiment of the present invention will be described below with reference to the drawings. FIG. 1 is a block diagram showing a connection form of a pair of devices and the simplest communication authentication device, and showing the communication authentication device as a function realizing means. First,
The basic function of the communication authentication device will be described with reference to FIG. The first device 2, the second device 3, and the communication authentication device 1 are connected by a short-distance wireless communication via a communication line 8. For example, Bluetooth can be used as the short-range wireless communication. Bluetooth is a wireless communication technology that operates in the 2.4 GHz ISM band. In FIG. 1, the communication means 4 of the communication authentication device 1 includes a first device 2 and a second device 3.
Are connected via the communication line 8. Here, the first device 2 and the second device 3 do not immediately start communication, but communication authentication data (password or the like) stored in the storage means 7 inside the communication authentication apparatus 1 or communication. Authentication is performed by the authentication means 5 according to the configuration, and the control means 6
Data communication between the first device 2 and the second device 3 is started only after controlling the communication means 4 by.
Here, the communication authentication device 1 is preferably an extremely lightweight and small (thin) portable device such as an IC card,
It may be a stationary type, or may be a mobile terminal such as a personal computer, a mobile phone, a PHS, or a PDA having the same function as an additional function. In the case of a mobile terminal having a communication function, the program required for the authenticating means 5 can be downloaded from a server via a communication line and used even if the authenticating means 5 is not provided in advance. For example, the Java applet WWW
Download from the server and use. Further, the device 2 and the device 3 are devices having a communication function,
Communication such as computer peripherals such as keyboard, mouse, printer, image scanner, terminal adapter, mobile devices such as digital camera, navigation device, Palm OS computer, information home appliances and mobile phones that support general home appliances It is a device that includes electrical products that are expanded in various ways according to functions. The authentication means 5 may be one that detects biometric information specific to the human body, such as a user's fingerprint, cornea, or gene, and performs authentication.

FIG. 2 is a block diagram showing a communication authenticating device according to an embodiment of the present invention by a function realizing means. The communication authenticating device 1 of FIG. 1 is provided with a display means 10 and an input means 11 as additional functions. It is a thing. The display unit 10 displays the communication status, the password input by the input unit 11, and the like. Here, the display unit 10 is generally a liquid crystal display, but may be a display of another system such as plasma or CRT. A keyboard or a numeric keyboard is generally used as the input means 11, but a touch panel or voice recognition input can be used. The authentication means 5 may be one that detects biometric information specific to the human body, such as a user's fingerprint, cornea, or gene, and performs authentication.

FIG. 3 is a block diagram showing a communication authenticating device according to an embodiment of the present invention by a function realizing means, and further includes other additional functions. The additional functions will be described below. The removable memory means 12 is a storage area in which all or a part of the storage area of the storage means 7 is configured as a removable area.
Authentication data can be created with a device other than the above (for example, a personal computer). The host interface means 13 connects the host computer 51 to the outside and performs maintenance such as addition, deletion and correction of the authentication data inside the storage means 7, or inspects whether the communication authentication device 1 itself is operating normally. It is provided for such purposes. The activation means 14 activates the communication authentication device 1 from the standby state by inserting the key 52, and in particular considers battery consumption in the case of the portable communication authentication device 1. Although the key 52 is described as a contact insertion type in FIG. 3, it may be a non-contact type key such as a keyless entry system. The position detection means 15 detects the position of the communication authentication device 1, and activates the communication authentication device 1 from the standby state according to the position information.
Communication authentication can be started and stopped. The position information detection method includes a position detection method using GPS or PHS, but other methods may be used. Further, it may be a device (D-GPS) capable of removing the error at the position detection point. The timer means 16 is used for the purpose of setting the authentication time, starting or stopping the communication authentication after a certain period of time elapses. By setting the timer means 16, it is possible to ensure the unattended use of the communication authentication device 1 and the security when the owner of the communication authentication device 1 is absent. The external input terminal 17 is a terminal for connecting an input device such as the keyboard 53 to the outside of the communication authentication device 1. The display output means 18 is the communication authentication device 1
The display means such as the monitor 54 is connected to the outside of the. Like the external output terminal 17, the display output means 18 connects the monitor 54 to
Maintenance such as setting changes can be performed.

In this embodiment, the storage means 7 storing the authentication control data in the control means is provided with the removable memory means 12 in which all or a part of the storage area is formed by the removable area. The authentication control data in the control means 6 of the communication authentication device 1 can be created in advance by using another personal computer or a Palm OS computer, and then stored in the communication authentication device 1. Therefore, maintenance such as device registration and device reconfiguration according to the network configuration of the next connection can be performed relatively easily. Further, in the present embodiment, it is connected to the control means 6 for controlling the communication means 4 and the authentication means 5, and is used for inputting the information of the managed device into the internal memory of the storage means 7 and for displaying the communication state of the network. By providing the host interface unit 13 for connecting the host computer 51, the authentication control data in the control unit 6 of the communication authentication apparatus 1 can be created by using the host computer 51 connected by wire or wirelessly, or by the next connection. It is possible to easily perform maintenance such as device reconfiguration according to the network configuration and confirm whether the communication state is operating normally. Further, in the present embodiment, by providing the activation means 14 capable of contact or non-contact activation from the outside, even in the case of the communication authentication apparatus 1 which is deferred, it is possible to detect the entry of the user or the insertion of the key 52. Alternatively, since the communication authentication apparatus 1 can be started in synchronization with the start of other apparatuses, security can be comfortably maintained without having to worry about the existence of the communication authentication apparatus 1. Therefore,
For example, when you board a car with keyless entry,
When the engine is started using the key, the communication authentication device is activated, the mobile phone and the car navigation device are connected by Bluetooth to communicate, and the map information is received from the mobile phone via the base station and sent to the car navigation device. Can be sent.

Further, in the present embodiment, the position information detecting means 15
Since the device is provided, it can be set so that each device can be used only when the user is at coordinates on the earth set in advance. In this way, strong authentication can be maintained by performing communication authentication only at a fixed place. Further, in this embodiment, the timer means 16 for operating the communication command and the authentication command from the control means 6 only at the time set by the user or for a certain period of time is provided, so that the time set by the user in advance or set by the user is set. It is possible to set such that each device can be used after the lapse of a predetermined time or within the time set by the user. Therefore,
It is possible to prevent communication authentication due to unauthorized use of the communication authentication device 1 of a third party. Further, in the present embodiment, by providing the external input terminal 17 for inputting by the external input device 53, it is possible to save time and effort such as connecting a host computer.
Since the authentication control data in the control means 6 of the communication authentication device 1 can be input and stored in the internal memory of the storage means 7, it is relatively easy to register the device or select the device suitable for the network configuration for the next connection. Maintenance such as reconfiguration can be performed. Therefore, since the setting of the communication authentication device can be changed only by connecting the keyboard or the like, it is possible to prevent the communication authentication by unauthorized use of the communication authentication device of a third party. Further, in the present embodiment, by providing the display output terminal 18 for displaying on the external monitor 54, the external monitor 54 is connected to the communication authentication device 1 having no display function, so that the communication status is confirmed, the device is registered, and the maintenance is performed. The internal information and the communication form can be displayed only when the user needs it. Therefore, only the administrator (user) of the communication authentication device can view the communication form stored therein and the current communication status, so that the communication authentication by unauthorized use of the communication authentication device of a third party can be prevented. The authentication means 5
May detect biometric information unique to the human body, such as a user's fingerprint, cornea, or gene, to perform authentication. Although the communication authentication device 1 of the present embodiment has been described as a different configuration for explaining each function, it may be provided with all means, or with some means according to the purpose. It may be

4 and 5 are block diagrams showing a communication authentication method according to an embodiment of the present invention. The communication authentication device 1 described in the following embodiments can apply the configuration of the communication authentication device described in FIGS. 1 to 3. In FIG. 4, the first device 2 is a headphone, the second device 3 is a music player, and the communication authentication device 1 authenticates the connection between them. When the headphone 2 issues a connection request to the music player 3 (S40
1), the music player 3 inquires of the communication authentication device 1 whether the device is connectable or not (S402). The communication authentication device 1 checks the presence of the headphones 2 (S403) and receives the presence information from the headphones 2 (S404). Then, the communication authentication device 1 notifies the music player 3 of the presence of the headphones 2 (S405), and the music player 3 completes the connection with the headphones 2 (S406). Therefore, the music reproduced by the music player 3 can be received and used by the headphones 2.

In FIG. 5, the first device 2 is a small handset device, the second device 3 is a mobile phone, and the communication authentication device 1 authenticates the connection between them. Here, the mobile phone 3 is connected to another mobile phone or another communication device via the communication network 55 to transmit and receive voice and other data. Small handset 2 is mobile phone 3
When a connection request is issued to the communication authentication device 1 (S501), the mobile phone 3 inquires of the communication authentication device 1 whether the device can be connected (S502). The communication authentication device 1 checks the existence of the small handset device 2 (S503), and receives the presence information from the small handset device 2 (S504). The communication authentication device 1 notifies the mobile phone 3 of the presence of the small handset device 2 (S505), and the mobile phone 3 completes the connection with the small handset device 2 (S506). Therefore, the data transmitted / received by the mobile phone 3 can be transmitted / received by the small-sized handset 2 for use.

6 to 10 are block diagrams showing a communication authentication method according to another embodiment of the present invention. FIG. 6 shows the first
The device 2 is a music data recording device, the second device 3 is a digital radio, and the communication authentication device 1 authenticates the connection between them. Music data recording device 2
Sends a connection request to the digital radio 3 (S601), and the digital radio 3 inquires of the communication authentication apparatus 1 whether the device is a connectable device or not (S602).
The communication authentication device 1 checks the device address of the music data recording device 2 (S603), and causes the music data recording device 2 to return the device address (S604). The communication authentication device 1 verifies whether the returned device address is the address stored in the storage means 7 inside the communication authentication device 1 (S605). The communication authentication device 1 permits the digital radio 3 to transmit data to the music data recording device 2 (S60
6), the digital radio 3 transmits the music data received from the broadcasting station 54 to the music data recording device 2 (S60).
7).

In FIG. 7, the first device 2 is a portable terminal device, the second device 3 is a file storage device, and the communication authentication device 1 performs connection authentication of both. The mobile terminal device 2 issues a file request to the file storage device 3 (S701), and the file storage device 3 inquires of the communication authentication device 1 whether the device can be connected (S702). The communication authentication device 1 checks the device address of the mobile terminal device 2 (S7
03), the device address is returned from the mobile terminal device 2 (S704). The communication authentication device 1 verifies whether the returned device address is the address stored in the storage means 7 inside the communication authentication device (S705). The communication authentication device 1 permits the file storage device 3 to open the file to the mobile terminal device 2 (S706), and the file storage device 3 opens the file to the mobile terminal device 2 for transmission (S707).

In FIG. 8, the first device 2 is a telephone device, the second device 3 is a public network gateway, and the communication authentication device 1 performs connection authentication of both. The telephone device 2 issues a connection request to the public network gateway 3 (S801), and the public network gateway 3 inquires of the communication authentication device 1 whether the device is a connectable device or not (S802). The communication authentication device 1 checks the device address of the telephone device 2 (S803) and returns the device address from the telephone device 2 (S804). The communication authentication device 1 verifies whether the returned device address is the address stored in the storage means 7 inside the communication authentication device (S805). The communication authentication device 1 permits the public network gateway 3 to connect to the telephone device 2 (S806), and the public network gateway 3 relays the communication from the public network 55 and transfers it to the telephone device 2 (S807).

In FIG. 9, the first device 2 sends an electronic mail / W
This is an eb terminal device, the second device 3 is an internet access device, and the communication authentication device 1 performs connection authentication of both. E-mail / Web terminal device 2
Issues a connection request to the Internet access device 3 (S
901), the Internet access device 3 inquires of the communication authentication device 1 whether the device is connectable or not (S902). The communication authentication device 1 checks the device address of the electronic mail / Web terminal device 2 (S9
03), the device address is returned from the electronic mail / Web terminal device 2 (S904). The communication authentication device 1 verifies whether the returned device address is the address stored in the storage means 7 inside the communication authentication device (S90).
5). The communication authentication device 1 is an internet access device 3
To the electronic mail / Web terminal device 2 (S906), and transfers the electronic mail or Web data from the Internet 57 to the electronic mail / Web terminal device 2 via the Internet access device 3 (S90).
7).

In FIG. 10, the first device 2 is a telephone device, and the second device 3 is a voice data recording device.
The communication authentication device 1 performs connection authentication of both parties. The telephone device 2 issues a call recording request to the voice data recording device 3 (S101), and the voice data recording device 3 causes the communication authentication device 1 to operate.
An inquiry is made as to whether or not the device is connectable (S102). The communication authentication device 1 checks the device address of the telephone device 2 (S103), and returns the device address from the telephone device 2 (S104). The communication authentication device 1 checks whether the returned device address is the address stored in the storage means 7 inside the communication authentication device (S105). The communication authentication device 1 is a voice data recording device 3
The recording permission of the voice data from the telephone device 2 is issued to (S1
06), the voice data recorded by the telephone device 2 from the public network 55 via the public network gateway 56 is recorded by the voice data recording device 3 (S107).

FIG. 11 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the first device 2 is a mobile terminal device, the second device 3 is an internet access device, and the communication authentication device 1 authenticates the connection between them. The communication authentication device 1 issues an information request to the internet access device 3 (S1
11), the internet access device 3 inquires of the communication authentication device 1 which portable terminal device 2 can be connected (S112). The communication authentication device 1 searches for an available mobile terminal device 2 (S113), and the user operates the mobile terminal device 2 (S114), whereby the device address is returned from the mobile terminal device 2 to the communication authentication device 1. (S115). The communication authentication device 1 notifies the internet access device 3 of the returned device address (S1).
16). The internet access device 3 transmits information from the internet 57 to the mobile terminal device 2 having the notified device address (S117).

FIG. 12 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the first device 2 is a mobile terminal device, the second device 3 is an internet access device, and the communication authentication device 1 authenticates the connection between them. The communication authentication device 1 issues an information request to the internet access device 3 (S1
11), the internet access device 3 inquires of the communication authentication device 1 which portable terminal device 2 can be connected (S112). The communication authentication device 1 searches for an available mobile terminal device 2 (S113), and the user operates the mobile terminal device 2 (S114), whereby the device address is returned from the mobile terminal device 2 to the communication authentication device 1. (S115). The communication authentication device 1 verifies whether the returned device address is the address stored in the storage means 7 inside the communication authentication device (S126). The communication authentication device 1 notifies the internet access device 3 of the returned device address (S127). The internet access device 3 transmits information from the internet 57 to the mobile terminal device 2 having the notified device address (S128).

FIG. 13 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the first device 2 is a terminal device having a display function such as a mobile phone, the second device 3 is a register device, and the communication authentication device 1 performs connection authentication of both. is there. The register device 3 requests the approval information from the communication authentication device 1 (S131), and the communication authentication device 1 stores the register device address for which the approval request is issued in the storage means 7 inside the communication authentication device.
It is checked whether the address is stored in (S13
2). The communication authentication device 1 notifies the register device 3 of information that can be approved (including information that identifies the display device 2 that performs display) (S133). The register device 3 notifies the specified mobile phone 2 of the total amount (S134),
The user of the mobile phone 2 sends confirmation of the total amount to the register device 3 (S135), and the financial institution or the like approves it via the Internet 57. Here, the approval information of S131 is transmitted including the device address of the mobile phone 2 of the customer to be settled, and the communication authentication device 1 determines whether or not the approval is possible by determining whether the customer is a registered customer. This can further strengthen security.

FIG. 14 is a block diagram showing a communication authentication method according to another embodiment of the present invention. The present embodiment is a communication authentication method in which the number of the first devices 2 is one and the number of the second devices 3 is plural up to n. A connection request is issued from the second device 3 to the first device 2 (S14
1), whether the first device 2 may connect to the second device 3 is checked from the first device 2 to the communication authentication device 1
(S142), the communication authentication device 1 checks the existence of the second device 3 (S143), and returns the device address from the second device 3 (S144). The communication authentication device 1 verifies whether the returned device address is the address stored in the storage means 7 inside the communication authentication device (S145). The communication authentication apparatus 1 sends a connection permission to the second device 3 to the first device 2 (S
146), data communication between the first device 2 and the second device 3 is started (S147). The above communication authentication will be sequentially performed for a plurality of units. Further, by registering the communication form in the communication authentication device 1 in advance, it is possible to determine the device relationship between the master and the slave defined in the Bluetooth communication.

In the communication authentication method according to the present embodiment, the second device, which is connected to the communication authentication apparatus by wireless communication and is wirelessly connected to the first device in a 1: 1 relationship with each other, starts from the second device. Is a natural number), the step of issuing a connection request from the first device to the second device, and whether the first device is allowed to connect to the second device To the communication authentication device, confirming the device address of the second device, returning the device address from the second device, and storing the returned device address in storage means inside the communication authentication device. A step of verifying whether the address is a registered address, and a step of the communication authentication apparatus transmitting a connection permission with the second device to the first device. The connection of the first and second devices and a step of completing. Then, the steps until the connection between the first device and the second device is completed are sequentially repeated until the nth device. According to the present embodiment, the number 1 in the wireless communication area is
It is possible to sequentially authenticate up to n devices by using a single communication authentication device in a 1: 1 relationship with the first device. Further, according to this embodiment, even when a mobile computer equipped with a Bluetooth owned by a conference participant is brought into the conference room and materials are distributed to the conference participants, the security can be firmly maintained.

Further, the communication authentication method according to the present embodiment is connected to the communication authentication apparatus by wireless communication, and is connected to the first device wirelessly in a 1: 1 relationship from the second device to the n-th device. n is a natural number)
The connection request from the device to the second device, the step of inquiring from the first device to the communication authentication device whether the first device can connect to the second device, and the communication authentication device A step of confirming the device address of the second device, a step of returning the device address from the second device, and a check of whether the returned device address is an address stored in a storage means inside the communication authentication device. The communication authentication apparatus includes a step of transmitting, to the first device, a connection permission with the second device, and a step of completing the connection between the first device and the second device. Then, according to the communication mode preset in the communication authentication device, the steps until the connection between the first device and the second device is completed are sequentially repeated until the nth device. According to the present embodiment, one communication authentication device within the wireless communication area is used, and up to n devices are sequentially connected in a 1: 1 relationship with the first device in accordance with the communication form preset and registered in the communication authentication device. You can authenticate. Further, according to the present embodiment, since the mobile computer equipped with the Bluetooth possessed by the members participating in the conference is authenticated based on the communication mode set in advance in the conference room or the like, the security is more firmly maintained. be able to. In addition, in the present embodiment, the communication authentication is performed sequentially for a plurality of devices, but a configuration may be adopted in which a plurality of devices are simultaneously authenticated.

FIG. 15 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In the present embodiment, the first device 2 is one, and the second device 3 is plural up to n, but each device is a master device for Bluetooth communication, and each slave device has plural slave devices. This is the communication authentication method when the units are connected.
Connection authentication is sequentially performed from the second device (3 to the nth device 3n) (S151), and at the same time, the slaves connected to each are disconnected from the network according to the configuration preset in the communication authentication device 1 (S152). Next, the communication authentication device 1 selects the first device 2 as a master device (S153), and data communication between the first device 2 and the second device (slave device) 3 is started.
Then, data communication is performed up to the n-th second device (slave device) 3n. In addition, the communication authentication apparatus 1 is used as a master apparatus, and the first to n-th second devices 3
After the communication is authenticated as a slave device, one of the second devices 3 which is a slave device may be configured as a new master device. Further, in the communication authentication method of the present embodiment, a person who wears a personal computer, which is made into a wearable product in the future, as a master device, and has various mobile devices connected as slave devices around the personal computer, has a plurality of people to form a conference. When gathered in a room, it is possible to easily move to a preset communication mode while ensuring security.

In the communication authentication method according to the present embodiment, one communication authentication device is installed, and the second device is wirelessly connected to the first device in a 1: 1 relationship.
Is a natural number).
It is premised on communication forms that are concentrated in the same wireless communication area. Then, one of the representative devices in each of the gathered networks is sequentially authenticated based on the address information registered in advance in the communication authentication device by the number equal to or less than the number of gathered networks. Step, a step of collecting a plurality of representative devices (devices that have completed authentication) to form a network preset in the communication authentication device, and one of the plurality of devices that serves as a master And the step of starting communication with other representative devices in a 1: 1 relationship with the master device.
According to the present embodiment, when one communication authentication device is installed in the wireless communication area and a plurality of 1: n networks are gathered in the area, one of the gathered individual networks is A device can be authenticated based on device address information registered in advance in a communication authentication device, and one of the authenticated devices can be used as a master to start communication as a central device of a newly configured network. Therefore, it is possible to prevent disorderly communication such as a Bluetooth terminal device.

FIG. 16 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the number of the first device 2 is one, and the number of the second devices 3 is plural up to n. This is a communication authentication method when one authentication device and a plurality of slave devices are connected. In the present embodiment, a plurality of communication authentication devices are first connected by short-range wireless communication,
The highest-level communication authentication device is determined based on the priority order information registered in advance in the communication authentication device 1 (S16).
1) Each communication authentication device notifies the highest-level communication authentication device of the address information of one representative device among the devices connected to each communication authentication device (S).
162), other devices are disconnected from the network (S163). The highest-level communication authentication device sequentially authenticates the devices based on the registered address information and the device configuration (S164), and designates one of the authenticated devices as the master device (S165). , Start communication with other devices as slave devices (S1
66). In addition, in the present embodiment, the description has been given in the form of authenticating all n devices, but a smaller number than the n devices set in the communication authentication device 1 is authenticated, and the device that was the former master device becomes the slave device. The device connected as described above may be capable of communicating in the final communication form. Further, the communication authentication method in the present embodiment, the wearable personal computer wears as a master device in the future, a plurality of people in the state where the communication authentication device and various mobile devices are connected as slave devices in the vicinity thereof. When gathered in one conference room, it is possible to easily shift to a preset communication mode while ensuring security.

In the communication authentication method according to the present embodiment, the second device, which is connected to the communication authentication apparatus by wireless communication and is wirelessly connected to the first device in a 1: 1 relationship with each other, starts from the second device. Is a natural number), and it is premised on a communication form in which a plurality of networks composed of devices are concentrated in the same wireless communication area. Then, in each of the gathered networks, one representative communication authentication device is determined as the highest-level communication authentication device based on the priority information registered in advance in the communication authentication device, and each communication authentication device. To notify the top-level communication authentication device of the address information of the representative device in each of the gathered networks, and one of the representative devices in each of the gathered networks is set to the highest-order communication device. Based on the address information registered in the authentication device, a step of sequentially performing authentication, and collecting a plurality of representative one devices (devices that have completed authentication) to establish a network that is set in advance in the communication authentication device. A step of forming, a step of selectively authenticating one of a plurality of devices as a master, and a device of the master , 1: 1 in relation and a step of initiating communication with the other representative devices. According to the present embodiment, when a combination of n devices and one communication authentication device is gathered in the same wireless communication area, one of the gathered communication authentication devices becomes the communication authentication device in advance. One of the authenticated devices is determined as the highest-level communication authentication device based on the registered priority information, and the devices connected to other communication authentication devices are sequentially authenticated based on the device address information. As the master, the communication can be started as the central device of the newly configured network, so that the chaotic communication of the Bluetooth terminal device or the like can be prevented. As the authentication means in each of the communication authentication devices 1 shown in FIGS. 4 to 16, a user's fingerprint, cornea,
Confidentiality can be further strengthened by adding the function of detecting biometric information unique to the human body such as a gene and performing authentication.

Next, regarding communication authentication by the password of the communication authentication apparatus 1, a password registration method in the communication authentication apparatus 1 and a password cancellation method for authenticating the device will be described.
This will be described with reference to FIGS. 17 to 22. 17 to 22
FIG. 6 is a flow chart showing a communication authentication method using a password according to an embodiment of the present invention.

In the communication authentication method shown in FIG. 17, first, when a user inputs a password to obtain communication permission, the communication authentication apparatus asks a question in advance (S171). , When registering with a password, the user's name, date of birth, phone number,
A plurality of actual personal data such as an e-mail address and a license number are input as a password (S172), and the input password is stored in the memory unit 7 of the communication authentication device 1 (S173). Next, when enabling communication with a plurality of wireless devices within a communication area, the device inputs data to the communication authentication apparatus 1 and transmits an answer to the question in a question format set in advance by the user. (S174), the data answered by the input is compared with the personal data of the user stored in the memory unit 7 of the communication authentication device 1 (S17).
5), if the compared results match, communication is permitted,
A plurality of wireless devices can be used (S176). S
If they do not match in 175, the answer is again input and transmitted (S174), and the input data is compared with the personal data of the user stored in the memory unit 7 of the communication authentication device 1 (S).
175). From the viewpoint of security, it is preferable to limit the number of responses in the case of this disagreement to a predetermined number. When setting the question format at the time of authentication, for example, one password among a plurality of questions is asked, two passwords among a plurality of questions are asked, or a predetermined number of passwords among a plurality of questions are asked, and the registered password is asked. Allow communication if a password that matches the question format is entered from the. Further, the question form may be changed for each device and a device-specific password may be selected. Alternatively, a unique password may be selected from among a plurality of passwords by two devices connected by communication. Alternatively, a unique password may be selected from among a plurality of passwords depending on the connection time zone of communication and the area. Further, regarding the password, in the present embodiment, the case where the actual personal data is input as the password has been described, but it may be a unique identification number or identification symbol set by the user. The question format setting and the password described here are applicable not only to the present embodiment but also to the embodiments described below.

In the communication authentication method according to the present embodiment, in a communication system that handles a plurality of wireless devices, at the stage of registering a plurality of wireless devices with a password and then using the plurality of wireless devices, a password is entered to permit communication. It is a communication authentication method of the communication authentication device. The communication authentication method according to the present embodiment has a format in which the communication authentication device asks a question when the user obtains communication permission by inputting a password,
Steps to set in advance, and when registering multiple wireless devices with a password, the user's name,
A step of inputting a plurality of actual personal data such as a date of birth, a telephone number, an email address, and a license number as a password, a step of storing the input password in the memory unit of the communication authentication device, and a plurality of wireless devices. When enabling communication within the communication area, the step of inputting data to the communication authentication device as an answer to the question in a question format set in advance by the user, the input data and the memory part of the communication authentication device are stored. And comparing the personal data of the users with each other, and permitting the communication if the compared results match and enabling a plurality of wireless devices. According to the present embodiment, in addition to the device address of the device used in the communication area, information such as name, date of birth, telephone number, e-mail address, license number, etc., which is relevant to the user himself, is used as a password. Since you register, there is little risk of forgetting it, and you do not need to write down your password. In addition, the password input for use authentication is
For the question format defined by the user in advance,
Since a plurality of answers are manually input, the user can enter the correct answer, which is a measure for preventing unauthorized use of the communication authentication device by a third party. Further, in the present embodiment, the password is described as being manually input, but an input method by voice recognition may be used.

In the communication authentication method shown in FIG. 18, first, when a user obtains communication permission by inputting a password, a format for asking a question from the communication authentication apparatus is set in advance (S171), and a plurality of wireless devices are set. , When registering with a password, the user's name, date of birth, phone number,
A plurality of actual personal data such as an email address and a license number are input as a password (S172), and the input password is stored in the memory unit of the communication authentication device (S).
173). Next, when enabling communication with a plurality of wireless devices within the communication area, the devices automatically send an answer to the question in a question format set by the user to the communication authentication apparatus 1. (S184), a plurality of wireless devices can be used (S176).

In the communication authentication method according to the present embodiment, in a communication system that handles a plurality of wireless devices in a specific wireless communication area, at the stage of registering the plurality of wireless devices with a password and then using the plurality of wireless devices, This is a communication authentication method of a communication authentication device that allows communication by inputting a password. In the communication authentication method according to the present embodiment, when the user obtains communication permission by inputting a password, a step of previously setting a format in which the communication authentication apparatus asks a question in the communication authentication apparatus, and a plurality of wireless devices,
When registering using a password, the step of entering multiple actual personal data such as the user's name, date of birth, telephone number, e-mail address, license number, etc. as a password, and the entered password of the communication authentication device When the user brings the communication authentication device into a specific wireless communication area, the step of storing it in the memory section and the answer of the content of the question automatically set by the user in advance are automatically provided. The data input step, the step of comparing the input data with the personal data of the user stored in the memory section of the communication authentication device, and the communication is permitted when the compared results match, and a plurality of wireless Enabling the device. According to the present embodiment, in addition to the device address of the device used in the communication area, information such as name, date of birth, telephone number, e-mail address, license number, etc., which is relevant to the user himself, is used as a password. Since you register, there is little risk of forgetting it, and you do not need to write down your password. Further, when the communication authentication device is brought into a specific wireless communication area, the password is automatically input, so that security can be comfortably maintained without being aware of the existence of the communication authentication device.

In the communication authentication method shown in FIG. 19, first, when a user inputs a password to obtain communication permission, the communication authentication apparatus asks a question beforehand (S171). , When registering with a password, the user's name, date of birth, phone number,
A plurality of actual personal data such as an email address and a license number are input as a password (S172), and the input password is stored in the memory unit of the communication authentication device (S).
173). Next, when the user enters a specific wireless communication area, it is detected that the key is inserted or used (S1
91), by inputting data from the device to the communication authentication device 1 and transmitting an answer to the question in a question format set in advance by the user (S174), the data answered by the input and the memory of the communication authentication device 1 The personal data of the user stored in the unit 7 are compared (S175), and if the compared results match, communication is permitted and a plurality of wireless devices can be used (S176). Further, in this embodiment,
The authentication may be performed by a communication authentication device installed in a fixed location, or may be performed when the communication authentication device is installed in a moving area such as an automobile. Also,
The communication authentication device may be carried around. Further, in the present embodiment, the user inputs the answer to the question in S174, but if it is automatically input, authentication can be performed more quickly.

In the communication authentication method according to the present embodiment, when the user enters the specific wireless communication area, the key is inserted into the communication authentication apparatus or the key is inserted to recognize and confirm the specific wireless communication area. The position detecting means based on the electric signal that is detected to have been used in a specific place is used. According to the present embodiment, it can be used for interlocking with a door lock system of a house or for a centralized management system with a key. In addition, whether the communication authentication device is installed or carried around, the communication area is specified and communicated by the secondary action of the operation for another purpose of using the key. Since the authentication is started, the security can be firmly maintained without being aware of the existence of the communication authentication device. Further, even if the specific wireless communication area is a moving space such as an interior of an automobile, communication authentication can be reliably performed by using a key.

In the communication authentication method shown in FIG. 20, a format in which the communication authentication device asks a question when the user receives a communication permission by inputting a password is set in advance (S1).
71) When registering a plurality of wireless devices with a password, a plurality of actual personal data such as a user's name, date of birth, telephone number, e-mail address, and license number are input as a password (S172). ), The entered password is stored in the memory unit of the communication authentication device (S17).
3). Next, when the user enters a specific wireless communication area and detects that the key has been inserted or used, the communication authentication device is activated from the standby mode (S20).
1), the device inputs data to the communication authentication apparatus 1 and transmits an answer to the question in a question format set in advance (S174), and the data answered by the input and the memory of the communication authentication apparatus 1 The personal data of the user stored in the unit 7 are compared (S175), and if the compared results match, communication is permitted and a plurality of wireless devices can be used (S176). In addition, in the present embodiment, in addition to the case where the communication authentication apparatus installed in a fixed place is used for authentication, the authentication may be performed when the communication authentication apparatus is installed in a moving area such as an automobile. Good. Alternatively, the communication authentication device may be carried around. Further, in the present embodiment, the user inputs the answer to the question in S174, but if it is automatically input, authentication can be performed more quickly.

In the communication authentication method according to the present embodiment, when the user enters the specific wireless communication area, the key is inserted into the communication authentication device or the key is inserted to recognize and confirm the specific wireless communication area. By utilizing the position detecting means based on the electric signal which is detected to have been used in the specific space, the communication authentication device is changed from the standby state to the activated state based on the position information detected by the position detecting means. According to the present embodiment, whether the communication authentication device is installed or carried around, the communication area is affected by the secondary action of the operation for another purpose of using the key. Is specified and the communication authentication apparatus is activated, so that security can be firmly maintained without being aware of the existence of the communication authentication apparatus. In addition, the power consumption of the communication authentication device can be reduced.

In the communication authentication method shown in FIG. 21, first, a format for prompting the communication authentication apparatus to ask a question when the user receives communication permission by inputting a password is set in advance (S171), and a plurality of wireless devices are connected. , When registering with a password, the user's name, date of birth, phone number,
A plurality of actual personal data such as an email address and a license number are input as a password (S172), and the input password is stored in the memory unit of the communication authentication device (S).
173). Next, when the user brings the communication authentication device into a specific wireless communication area, the position is determined by using the position detection means such as GPS or PHS mounted on the communication authentication device (S211), and is used in advance. An answer to the question in the question format set by the person is input from the device to the communication authentication apparatus 1 and transmitted (S174), and the data answered by the input and the memory unit 7 of the communication authentication apparatus 1 are stored. The personal data of the users are compared (S175), and if the compared results match, communication is permitted and a plurality of wireless devices can be used (S176). Further, in the present embodiment, the user inputs the answer to the question in S174, but if it is automatically input, authentication can be performed more quickly. Also,
If you register multiple specific wireless communication areas, you can authenticate at multiple locations.

In the communication authentication method according to the present embodiment, when the user brings the communication authentication device into a specific wireless communication area, the GPS installed in the communication authentication device is used to recognize and confirm the specific wireless communication area. The position detecting means such as PHS is used. According to the present embodiment, only when the user carries the communication authentication device carrying the position detecting means by GPS or PHS and brings the communication authentication device to the place (wireless communication area) where the user has set the position in advance, Since the communication authentication by the password is started, the security can be firmly maintained.

In the communication authentication method shown in FIG. 22, first, a format is set in advance for asking a question from the communication authentication device when the user obtains communication permission by inputting a password (S171), and a plurality of wireless devices are set. , When registering with a password, the user's name, date of birth, phone number,
A plurality of actual personal data such as an email address and a license number are input as a password (S172), and the input password is stored in the memory unit of the communication authentication device (S).
173). Next, when the user brings the communication authentication device into a specific wireless communication area, the position is determined by using the position detection means such as GPS or PHS mounted on the communication authentication device, and the communication authentication device is put on standby. The mode is changed to the activated state (S221), and an answer to the question in the question format preset by the user is sent from the device to the communication authentication apparatus 1
Is input and transmitted (S174), the data replied by the input is compared with the personal data of the user stored in the memory unit 7 of the communication authentication device 1 (S175), and when the compared results match. Permits communication and enables a plurality of wireless devices (S176). Further, in this embodiment, the user inputs the answer to the question in S174,
If it is an automatic input, authentication can be performed more quickly. Also, if a plurality of specific wireless communication areas are registered, it is possible to perform authentication at a plurality of places.

In the communication authentication method according to this embodiment, when the user brings the communication authentication device into a specific wireless communication area, the GPS installed in the communication authentication device is used to recognize and confirm the specific wireless communication area. The position detecting means such as PHS is used, and the communication authentication device is changed from the standby state to the activated state based on the position information detected by the position detecting means. According to the present embodiment, only when the user carries the communication authentication device equipped with the position detection means by GPS or PHS and brings the communication authentication device to the place (wireless communication area) where the user has set the position in advance, Since the communication authentication device is activated, security can be maintained more firmly.

In the above embodiment, in S174, the password preset by the user may be randomly asked when enabling a plurality of wireless devices in the communication area. Further, in S176, the communication may be started after a lapse of time preset by the timer unit of the communication authentication device. In this case, after authenticating the device in the communication area, communication is started after the time set in the communication authentication device elapses.
Members gather in a meeting room, etc., and data communication starts from the beginning of the meeting, and confidential information is not distributed in advance. Further, in S176, after the communication is started, the communication may be forcibly terminated after a preset time has elapsed by the timer unit of the communication authentication apparatus. After the communication is started, the communication is forcibly terminated after a lapse of time preset by the timer means of the communication authentication device.
After the device in the communication area is authenticated and communication is started, the communication is terminated after the time set in the communication authentication device elapses, so when the administrator (user) leaves the communication area or the meeting is held in a conference room, etc. It can be used when you want to end data communication after a while, and confidential information will not be distributed contrary to the intention of the administrator (user). Also,
In the communication authentication method according to the above embodiment, when registering a plurality of wireless devices with the communication authentication device with a password, the user's name, date of birth, telephone number, e-mail address,
A plurality of pieces of actual personal data such as a license number may be input as a password, and the input password may be encrypted and stored in a memory unit of the communication authentication device based on a predetermined encryption algorithm. In this case, since the password used when registering the device or the communication form in the communication authentication device is encrypted and stored, it is possible to cope with the intentional stealing of the password by a third party. Further, in the communication authentication method according to the above-described embodiment, by outputting the passwords from the communication authentication device in a random combination or order, even if the password is stolen at the previous communication authentication password input, the security can be firmly maintained. Further, all or a single or a plurality of combinations of the communication authentication methods according to the present embodiment may be stored in a recording medium in a recording medium or downloaded via a communication network. Then, the program can be used as a communication authentication device by installing or downloading the program in a mobile computer or a palm OS computer capable of Bluetooth communication. The "data communication" in this embodiment is a communication of actual data intended by an official user, and a device such as a connection request between Bluetooth mobile terminals and home appliances before connection is arbitrarily performed. It does not include the protocol to be performed.

FIG. 23 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the first device 2 is a terminal device having a communication function such as a handset, the second device 3 is a mobile router, and the communication authentication device 1 performs connection authentication of both. . When the handset 2 makes a connection request to the mobile router 3 (S231), the mobile router 3 issues a connection confirmation inquiry to the communication authentication device 1 (S23).
2). The communication authentication device 1 verifies that the handset 2 is owned by the user himself and the communication authentication device 1 is also owned by the user himself by fingerprint authentication (S233), and notifies the mobile router 3 of the authentication result. Yes (S234).
The handset 2 is owned by the user himself, and the communication authentication device 1 is also owned by the user himself. The authentication result is sent from the mobile router to the authentication server 5 via the Internet.
It is verified again in 8 and a notification of connection permission comes (S235).
The mobile router 3 starts communication with the handset 2 based on the connection permission notification (S235) (S23).
6). Then, the handset 2 can use the telephone network 55 to talk (S237). In the above embodiment, in the communication authentication device 1, the verification that the handset 2 is the property of the user himself and the communication authentication device 1 is also the property of the user himself is carried out by fingerprint authentication. It is also possible to verify only personal information stored in advance in the communication authentication device 1 without performing fingerprint authentication.

FIG. 24 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the first device 2 is a terminal device having a communication function such as a mail terminal or a Web terminal, the second device 3 is a mobile router, and the communication authentication device 1 performs connection authentication of both. It is something to do. When the mail terminal / Web terminal 2 makes a connection request to the mobile router 3 (S241), the mobile router 3 issues a connection confirmation inquiry to the communication authentication device 1 (S242). The communication authentication apparatus 1 verifies that the mail terminal / Web terminal 2 is the property of the user himself and the communication authentication apparatus 1 is the property of the user himself by fingerprint authentication (S243), and the authentication result is mobile. Notify the router 3 (S244). The mail terminal / Web terminal 2 is the property of the user himself and the communication authentication device 1 is also the property of the user himself. The authentication result is re-verified by the authentication server 58 from the mobile router via the Internet, and the connection permission A notification comes (S245). The mobile router 3 starts communication with the mail terminal 2 based on the connection permission notification (S245) (S246). Then, the mail terminal / Web terminal 2 can be connected to the Internet 57. In the above-described embodiment, in the communication authentication device 1, it is verified by fingerprint authentication that the mail terminal / Web terminal 2 is the property of the user himself and the communication authentication device 1 is also the property of the user himself. Although carried out, it is also possible to verify only the personal information stored in advance in the communication authentication device 1 without fingerprint authentication.

FIG. 25 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the first device 2 is a remote control device, the second device 3 is a mobile router, the third device 59 is a display device, and the communication authentication device 1 performs connection authentication of three parties. It is something to do. When the remote controller 2 issues a program selection instruction (S251) to the mobile router 3, the mobile router 3 issues a connection confirmation inquiry about the user's program viewing contract content to the communication authentication apparatus 1 (S252). The communication authentication device 1 collates the remote control operator's program selection instruction contents with the program viewing contract information and personal information stored in advance in the communication authentication device 1, and the communication authentication device 1 is the property of the remote control operator himself. Perform a certain verification by fingerprint authentication (S
253), and notifies the mobile router 3 of the authentication result (S254). The remote control 2 is owned by the operator himself and the communication authentication device 1 is also owned by the user himself. The authentication result and the selected program are verified again from the mobile router via the Internet by the authentication server 58 and connected. A notification of permission comes (S255). Based on the connection permission notification (S255), the mobile router 3 transmits the program supplied from the broadcasting station 54 (S256) to the display device 59 (S257), and the program is displayed on the display device 59. In the above embodiment, in the communication authentication device 1, the remote controller 2 is the property of the operator himself and the communication authentication device 1
The fingerprint authentication verifies that the user owns the personal information, but it is also possible to verify only the personal information stored in advance in the communication authentication device 1 without fingerprint authentication.

FIG. 26 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the first device 2 is a credit card, the second device 3 is a register, and when the credit card 2 is used for payment, communication authentication for making payment using a communication line is used. This is performed by the communication authentication device 1. When the credit card information is read and notified to the register 3, (S26
1), the data read from the card such as the credit card number is transmitted from the register 3 to the communication authentication device 1 (S262). The communication authentication device 1 verifies that the credit card is the property of the user who is valid and valid, and the communication authentication device 1 is also the property of the user himself by fingerprint authentication (S263), and the authentication result is registered. 3 is notified (S264). The credit card is the proper and valid property of the user himself and the communication authentication device 1 is also the property of the user himself. The authentication result is transmitted from the register to the credit card center 60 via the communication line (S265). Here, for the first time, a detailed verified use permission (payment permission) notification including the inquiry of the card number comes (S265). The register 3 performs payment by a credit card based on the notification of use permission (payment permission) (S245). In the above embodiment, the credit card 2 is assumed to be an ordinary magnetic data type card.
A C card, a card capable of wireless communication, or the like may be provided with a credit card function. Further, in the above embodiment, when the credit card center 60 of the credit card 2 is re-executed, the detailed verification including the inquiry of the card number is performed for the first time. Therefore, the detailed information of the card remains in the register of the store. Therefore, extremely strong confidentiality can be maintained. The credit card center 60 in the above embodiment may be a card center other than credit.

FIG. 27 is a block diagram showing a communication authentication method according to another embodiment of the present invention. In this embodiment, the second device 3 is a gate such as an entrance gate or an entrance door, and the gate 3
When opening the gate, the communication authentication device 1 performs authentication for opening the gate using the communication line. The person who wants to open the gate verifies that the communication authentication apparatus 1 owned by the person who wants to use is a legitimate and valid user's property by fingerprint authentication including personal information stored in advance. After carrying out (S271), the communication authentication apparatus 1 notifies the gate 3 of personal information or entry reservation information stored in advance inside the communication authentication apparatus 1 (S272). Gate 3
Transmits the data received from the communication authentication device to the authentication server 58 via the communication line (S273), and the authentication server 5
8 verifies whether it is effective as data for opening the gate. The authentication server 58 sends a notification that the gate can be opened to the gate 3 (S274), and the gate 3 opens the gate (S275). Further, in the above embodiment, when the verification is performed by the authentication server 58, the fingerprint information of the individual user is not dealt with, but the verification of personal information or entry reservation information stored in advance inside the communication authentication device 1 is performed. It is something to do. Therefore, extremely sensitive biometric information such as fingerprint information will not be leaked to the outside.

[0064]

As is apparent from the above description, according to the present invention, two communication devices in an area can be provided by a communication authentication device existing separately from two or more communication devices in the area where wireless communication is possible. It is possible to perform communication by authenticating whether or not to communicate with the above communication device. Further, by using biometric information (fingerprint, cornea, gene, etc.) of an individual as an authentication method for determining whether or not communication is to be performed, it becomes possible to further secure confidentiality. In addition, by using it in combination with encryption means for maintaining communication confidentiality between communication devices,
Stronger confidentiality can be maintained.

[Brief description of drawings]

FIG. 1 is a functional block diagram of a communication authentication device according to an embodiment of the present invention.

FIG. 2 is a functional block diagram of a communication authentication device according to an embodiment of the present invention.

FIG. 3 is a functional block diagram of a communication authentication device according to an embodiment of the present invention.

FIG. 4 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 5 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 6 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 7 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 8 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 9 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 10 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 11 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 12 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 13 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 14 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 15 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 16 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 17 is a flowchart illustrating a communication authentication method using a password according to an embodiment of the present invention.

FIG. 18 is a flowchart illustrating a communication authentication method using a password according to an embodiment of the present invention.

FIG. 19 is a flowchart illustrating a communication authentication method using a password according to an embodiment of the present invention.

FIG. 20 is a flow diagram illustrating a password-based communication authentication method according to an embodiment of the present invention.

FIG. 21 is a flow diagram illustrating a password-based communication authentication method according to an embodiment of the present invention.

FIG. 22 is a flowchart illustrating a communication authentication method using a password according to an embodiment of the present invention.

FIG. 23 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 24 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 25 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 26 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

FIG. 27 is a configuration diagram for explaining a communication authentication method according to an embodiment of the present invention.

[Explanation of symbols]

1 Communication authentication device 2 First device 3 Second device 4 Communication means 5 Authentication means 6 Control means 7 storage means 8 communication lines 9 Wireless communication area 10 Display means 11 Input means 12 Removable memory means 13 Host interface means 14 Starting means 15 Position information detection means 16 timer means 17 External input terminal 18 Display output means 51 Host computer 52 keys 53 External input device 54 broadcasting stations 55 public network 56 Public network gateway 57 Internet 58 Authentication server 59 Third Device 60 Credit Card Center

   ─────────────────────────────────────────────────── ─── Continued front page    (72) Inventor Shunsuke Matsuda             6-17-17 FINE, Minamioi, Shinagawa-ku, Tokyo             Building Inside E With You (72) Inventor Satoru Muro             6-17-17 FINE, Minamioi, Shinagawa-ku, Tokyo             Building Inside E With You F term (reference) 5B085 AA08 AE02 AE03 AE15 AE23                       BC01 BE01 BE04 BG02                 5J104 AA07 KA02 KA06 KA16 MA01                       NA05 PA01 PA07                 5K033 AA08 CB01 DA19 DB12 EC01                       EC03                 5K067 AA30 BB01 BB21 DD04 DD17                       EE02 EE10 EE16 HH36 KK13                       KK15

Claims (17)

[Claims] 1. A communication authentication apparatus for authenticating wireless connection between devices such as a mobile terminal, a mobile phone, a personal computer, and a digital audio device, and communication means for performing wireless connection with each of the devices, and between the devices. Authentication means for determining whether or not the data can be transmitted or received, control means for controlling the communication means and the authentication means, and storage means for storing authentication control data used by the control means. A communication authentication device comprising: 2. The storage means stores a plurality of actual personal data such as a user's name, date of birth, telephone number, electronic mail address, license number, etc. as a password. The communication authentication device according to. 3. An internal memory of the storage means has an input means for inputting information of a device to be managed, and a display means for displaying a communication state of the network and input information from the input means. The communication authentication device according to claim 1. 4. The communication authentication apparatus according to claim 1, further comprising an activation unit that is connected to the control unit and can be activated from the outside. 5. The communication authentication apparatus according to claim 1, further comprising a position information detection unit that is connected to the control unit and performs a control operation only at a predetermined position. 6. A timer means, which is connected to the control means and operates a communication command or an authentication command from the control means only at a time set by a user or for a certain period of time. Communication authentication device. 7. A communication authentication device, a first device, and a second device are connected by wireless communication, respectively, and communication between the first device and the second device is authenticated by the communication authentication device. And a second step after the first step of issuing a connection request from the first device to the second device.
Second device inquires from the second device to the communication authenticating device whether the device may connect to the first device, and, after the second step, the communication authenticating device A third step of confirming the existence of the first device, and, after the third step, the first device from the first device to the communication authentication apparatus.
From the communication authentication apparatus to the second device, the fourth step of notifying the presence information of the device, and the result of the communication authentication apparatus confirming the existence of the first device after the fourth step. A communication authentication method comprising: a fifth step of reporting to the first device; and a sixth step of starting communication between the first device and the second device after the fifth step. 8. A communication authentication apparatus, a first device, and a second device are connected by wireless communication, respectively, and communication between the first device and the second device is authenticated by the communication authentication apparatus. And a second step after the first step of issuing a connection request from the first device to the second device.
Second device inquires from the second device to the communication authentication device whether or not the device may connect to the first device, and after the second step, the communication authentication device and the device A third step of authenticating the first device by transmitting and receiving address information or password information of the first device between the first devices, and from the communication authentication apparatus after the third step. A fourth step of reporting to the second device that the first device is a communication-permitted device, and after the fourth step, the first device and the second device A communication authentication method comprising the fifth step of starting communication. 9. A communication authentication apparatus, a first device, and a second device are connected by wireless communication, respectively, and communication between the first device and the second device is authenticated by the communication authentication apparatus. And a second step after the first step of issuing a connection request from the first device to the second device.
Second device inquires from the second device to the communication authentication device whether or not the device may connect to the first device, and after the second step, the communication authentication device and the device A third step of authenticating the second device by transmitting and receiving address information or password information of the second device between the second devices, and the communication authentication device after the third step. A fourth step of authenticating the first device by transmitting and receiving address information or password information of the first device between the first devices, and the communication authentication apparatus after the fourth step. From the second device to the second device to report that the first device is an authorized device,
After the fifth step, the first device and the second device
And a sixth step of starting communication of the device. 10. A communication authentication device, a first device, and a second device.
Wirelessly connected to each of the devices of
A communication authentication method for authenticating communication between the second device and the second device by the communication authentication apparatus, the first step of requesting information from the communication authentication apparatus to the second device; , After the first step, the second
Device inquires from the communication authentication apparatus what kind of the first device is available, and the communication authentication apparatus is available after the second step. A third step of searching for the first device, and after the third step, the first step
The second step of notifying the communication authentication apparatus of the existence information of the first device from the device of step 1, and the result of the communication authentication apparatus confirming the existence of the first device after the fourth step. To the second device, and after the fifth step, the first step
Sixth step of starting communication between the second device and the second device
A communication authentication method comprising the steps of. 11. A communication authentication device, a first device, and a second device.
Wirelessly connected to each of the devices of
A communication authentication method for authenticating communication between the second device and the second device by the communication authentication apparatus, the first step of requesting information from the communication authentication apparatus to the second device; , After the first step, the second
Second step of inquiring from the device of the type to the communication authentication apparatus what kind of the first device is registered, and after the second step, the communication authentication apparatus is available. A third step of searching for the first device; a fourth step of transmitting address information or password information of the first device from the first device to the communication authentication apparatus; The fifth step in which the communication authentication device authenticates the first device after the step of, and the first step to be used from the communication authentication device to the second device after the fifth step. A step of transmitting address information or password information of the second device, and after the sixth step, start communication between the first device and the second device Communication authentication method comprising the seventh step. 12. A communication authentication device, a first device, and a second device.
Wirelessly connected to each of the devices of
A communication authentication method for authenticating communication between the second device and the second device by the communication authentication device,
The first step of requesting information from the device to the communication authentication apparatus, and after the first step, the communication authentication apparatus stores and manages the second device from the communication authentication apparatus. A second step of transmitting a reply notification including information about the first device, and a third step of, after the second step, making a confirmation request to the first device identified by the second device. And a third step, the fourth device for transmitting a confirmation result from the first device to the second device.
A communication authentication method comprising the steps of. 13. The authentication means is a biometric information authentication means for reading and authenticating biometric information capable of specifying an individual user, and the storage means stores biometric information unique to each user. The communication authentication device according to claim 1. 14. A communication authentication device, a first device, and a second device.
Wirelessly connected to each device,
An external device is connected to the device, and a communication authentication method for authenticating the communication between the first device and the second device by the communication authentication device, wherein the first device to the second device Issue a connection request to another device
And, after the first step, whether the second device may connect to the first device,
A second step of inquiring from the second device to the communication authentication apparatus, and after the second step, the owner of the first device is the owner of the communication authentication apparatus, and the communication authentication The third step of authenticating the proof that the device is the property of the owner himself using the biometric information authentication means mounted in the communication authentication device, and the authentication result of the third step after the third step. Is correct, a fourth step of transmitting the authentication result from the communication authentication apparatus via the second device to an external apparatus connected to the second device, and after the fourth step A fifth step of transmitting a communication permission notification from the external device to the communication authentication device via the second device
And a sixth step of starting communication between the first device and the second device after the fifth step. 15. The second step after the fifth step
15. The communication authentication method according to claim 14, wherein it is the third device connected to the second device that starts communication with the device. 16. A first device and a second device are connected wirelessly or by wire, a communication authentication device and a second device are connected by wireless communication, and an external device is connected to the second device, A communication authentication method for authenticating communication between the first device and the second device with the communication authentication device, comprising: issuing a connection request from the first device to the second device. Step 1 and first
After the step of, the second step of inquiring from the second device to the communication authentication device whether the second device may connect to the first device; After that, the proof that the owner of the first device is the owner of the communication authentication apparatus, and the communication authentication apparatus is the owner's own property is verified by the biometric information authentication means installed in the communication authentication apparatus. If the authentication result of the third step is correct after the third step of authenticating using, and the third step, the authentication result from the communication authentication apparatus via the second device,
A fourth step of transmitting to an external device connected to the second device, and a fifth step of transmitting data from the external device to the second device after the fourth step. A communication authentication method comprising: 17. A communication authentication device and a second device are connected by wireless communication, an external device is connected to the second device, and permission to perform operation control of the second device from the external device is granted. A communication authentication method for authenticating with the communication authentication device, the first step of authenticating a proof that the communication authentication device belongs to the owner by using a biometric information authentication means mounted in the communication authentication device. If the authentication result of the first step is correct after the first step, the authentication result is connected to the second device from the communication authentication device via the second device. A second step of transmitting to the external device, a third step of transmitting authorization data from the external device to the second device after the second step, and a third step of transmitting the authorization data to the second device. And a fourth step in which the second device starts operation based on the permission data transmitted from the external device to the second device.