JP2006331192A - Authentication program and authentication method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an authentication program that causes a computer to function as a device capable of easily informing a user of a typing error or an input mode setting error even in the case that the same symbol is displayed in an authentication procedure screen irrespective of a key operated by an input device to prevent the leakage of authentication information. <P>SOLUTION: A computer system 10 that implements the authentication program 19, upon key operation, displays asterisks in a text box 21a, displays an image corresponding to a character string acquired from the key operation in an authentication procedure screen 21, performs authentication determination, and if determining that the authentication fails, displays an image corresponding to a character string acquired from the key operation in each input mode of an input device in the authentication procedure screen 21. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to an authentication program for causing a computer to function as an apparatus for performing an authentication procedure, and an authentication method for authenticating a user through the computer.

As is well known, authentication technology is widely used to restrict the use of information and functions of a computer system to a specific user. More specifically, the authentication technology is an authentication procedure screen (login) on a user's computer when a user accesses a specific website, decrypts an encrypted file, or starts software. Screen) and the authentication information such as personal identification information and personal identification information entered on the authentication procedure screen by the user can be confirmed to be the same as that registered in advance. The software usage restrictions are lifted.
JP 2001-242991 A Japanese Patent Laid-Open No. 2004-220213

  In the above-described authentication technology, if an authentication procedure screen in which authentication information is being entered is seen by a person other than a legitimate user, the unauthorized acquirer may cause the website, file, or software to be It will be used indefinitely, or the personal information of legitimate users will be known to others. In order to prevent such leakage, conventionally, when a key is operated on an input device such as a keyboard while the authentication procedure screen is displayed, one type of symbol such as an asterisk is authenticated instead of the character corresponding to the key. The technology displayed on the procedure screen was used.

  However, if only the symbol is displayed on the authentication procedure screen, there arises a problem that the user cannot confirm whether the intended character is normally input. In particular, the input mode of the input device is different from the input mode (for example, lowercase alphanumeric input mode or kana input mode) that should be used when inputting to the authentication procedure screen. Even if it is set to, the user cannot determine from the symbols displayed on the authentication procedure screen that the input mode is different. For this reason, the user sometimes has to input authentication information many times.

  The present invention has been made in view of the problems of the prior art as described above, and the problem is to display the same symbol on the authentication procedure screen regardless of the key operated on the input device. Therefore, even if the leakage of authentication information is prevented, it is possible to easily notify the user of a typing error or an input mode setting error.

  An authentication program invented to solve the above problem is for performing an authentication procedure based on screen data read from a storage device when a computer accepts an access instruction to a predetermined access target through an input device. Screen display means for displaying an authentication procedure screen on a display device, when a predetermined key operation is performed on the input device, a character string of a predetermined character is output to the authentication procedure screen instead of a character string obtained by the key operation Input information concealment means, determination means for determining whether or not authentication information indicated by the character string obtained by the key operation in the input device matches authentication information stored in a storage device, and the determination means When the authentication information does not match in each of the input modes of the input device, The code information is obtained by performing a predetermined irreversible operation on the character string obtained by the key operation in the input device, and the image data corresponding to the code information includes a plurality of code information, a plurality of image data, and Is displayed on the authentication procedure screen by the image display means for performing processing for displaying on the authentication procedure screen a clickable button in which an image based on the image data is drawn and read out from the storage device that stores the information in association with each other. When any of the clickable buttons is clicked, authentication information indicated by a character string that is a source of code information corresponding to image data of an image drawn on the clickable button is stored in the storage device. Re-determination means for determining whether or not the authentication information matches And, if the authentication information with each other matches in the determination means or said re-determination means, a function as an access permission unit that outputs an access permission instruction to the access target to the access target is characterized.

  With this configuration, according to the computer on which this authentication program has been started, if there is an error in key operation when inputting authentication information to the authentication procedure screen, an image different from the image that is always seen Is displayed on the authentication procedure screen, the user can immediately confirm that there was a typo even if the character string associated with the key operation was not shown on the authentication procedure screen to prevent leakage of the secret information. Judgment can be made.

  Further, when the key operation is performed in an input mode different from the original input mode, and authentication is not received, an output in each input mode of the key operation performed on the input device can be obtained. A clickable button is displayed on the authentication procedure screen. At this time, since the image that can be seen at all times will be displayed on the clickable button, the user must set the original character string even if the character string accompanying the key operation is not displayed on the authentication procedure screen in order to prevent the leakage of the secret information. It can be immediately determined that an input mode different from the input mode to be set has been set.

  If it is determined from the image on the authentication procedure screen that an input mode that is different from the input mode that should have been originally set has been set, the clickable button can be clicked without having to press the key again. Since the character string obtained when the same key operation is performed in the input mode corresponding to the button is used for authentication, it is not necessary to perform the key operation again. Furthermore, since only an image is displayed on the authentication procedure screen, even if an image is seen by a third party, it is impossible to infer authentication information from the image. For this reason, it is still possible to prevent leakage of authentication information.

  In addition, an authentication method invented to solve the above problem is based on screen data read from a storage device when a computer accepts an access instruction for a predetermined access target on an input device. An authentication procedure screen for performing is displayed on the display device, and when a predetermined key operation is performed on the input device, a character string of a predetermined character is displayed on the authentication procedure screen instead of a character string obtained by the key operation. It is determined whether the authentication information indicated by the character string obtained by the key operation in the input device matches the authentication information stored in the storage device, and the authentication information does not match In each case, for each of the input modes of the input device, the characters obtained by the key operation in the input device in that input mode Code information is obtained by performing a predetermined irreversible operation on the image data, and image data corresponding to the code information is read from a storage device storing a plurality of code information and a plurality of image data in association with each other. When a clickable button on which an image based on image data is drawn is displayed on the authentication procedure screen and any one of the clickable buttons displayed on the authentication procedure screen is clicked, the clickable button It is determined whether or not the authentication information indicated by the character string that is the source of the code information corresponding to the image data of the drawn image matches the authentication information stored in the storage device. If the authentication information matches, the access permission instruction to the access target is issued to the access target. That are characterized.

  Therefore, a computer that implements this authentication method functions in the same manner as a computer that executes the above-described authentication program of the present invention.

  As described above, according to the present invention, it is possible to prevent leakage of authentication information by displaying the same symbol on the authentication procedure screen regardless of the difference in the keys operated on the input device. Even in such a case, it is possible to easily notify the user of a typing error or an input mode setting error.

  Hereinafter, one embodiment for carrying out the present invention will be described with reference to the accompanying drawings.

  First, the configuration of the computer system of this embodiment will be described.

  FIG. 1 is a configuration diagram of a computer system 10 according to the present embodiment. The computer system 10 is a personal computer that is generally commercially available. As is well known, the computer system 10 includes a display device 10a such as a liquid crystal display, an input device 10b such as a keyboard and a mouse, and a main body 10c connected to these devices. ,It is configured. The main body 10c incorporates known hardware such as a CPU [Central Processing Unit] 11, a DRAM [Dynamic Random Access Memory] 12, a multi-disk drive 13, and an HDD [Hard Disk Drive] 14. The HDD 14 includes basic software 15 for providing basic functions such as input / output control in the display device 10a and the input device 10b and control of the DRAM 12, the multi-disk drive 13, and the HDD 14 to many application software. Is remembered.

  The HDD 14 of the computer system 10 is installed with data and a program that provide a function for determining whether to cancel the use restriction for another application (for example, an encrypted file decryption program) (not shown). Has been. Specifically, the data and the program are the image data 16, the image data management table 17, the display area definition table 18, and the authentication program 19.

  The image data 16 is data for displaying an image. In the present embodiment, the image data 16 is data for displaying a picture in which animals such as mammals and birds, plants such as plants, vehicles such as cars and airplanes, and other objects are designed, or “clock” ”And“ phone ”and data for displaying country names such as“ Japan ”and“ United States ”. A plurality of image data 16 is installed in the HDD 14.

  The image data management table 17 is a table 17 for managing the image data 16. FIG. 2 is a diagram illustrating an example of the data structure of the image data management table 17. As shown in FIG. 2, the image data management table 17 has the same number of records as the image data 16. Each record has fields of “image code” and “file path”. In the “image code” field, an image code which is identification information for individually identifying each image data 16 among all the image data 16 is recorded. In the “file path” field, a file path indicating the storage position of each image data 16 is recorded.

  The display area definition table 18 is a table for defining the correspondence between several image display areas prepared on an authentication procedure screen (see FIG. 6) described later and the input mode of the input device (keyboard) 10b. . FIG. 3 is a diagram showing an example of the data structure of the display area definition table 18. As shown in FIG. 3, the display area definition table 18 has the same number of records as the input mode of the input device 10b. Each record has fields of “input mode” and “display area”. In the “input mode” field, the name of each input mode is recorded. In the “display area” field, numbers assigned to the display areas of images prepared on the authentication procedure screen are recorded. The display area definition table 18 in FIG. 3 is an example when there are three input modes, but when the input device 10b has three or more input modes, the number of records in the display area definition table is It may increase accordingly.

  The authentication program 19 is a program that provides a function for determining whether to cancel the use restriction for other applications (not shown) using the image data 16, the image data management table 17, and the display area definition table 18. is there. Details of processing executed by the CPU 11 in accordance with the authentication program 19 will be described later.

  Next, processing executed by the computer system 10 will be described.

  In the computer system 10, when an application (not shown) is activated, the authentication program 19 is read using it as a trigger, and authentication processing is started. 4 and 5 are diagrams showing the flow of the authentication process.

  After starting the authentication process, the CPU 11 displays an authentication procedure screen on the display device 10a based on screen data (not shown) read from the HDD 14 (S101). This step S101 corresponds to the screen display means described above. FIG. 6 is a diagram illustrating an example of the authentication procedure screen 21. The authentication procedure screen 21 includes a text box 21a for inputting a password which is authentication information. In this text box 21a, each time a key is pressed, one character is input. The authentication procedure screen 21 includes an OK button 21b that is clicked when input to the text box 21a is completed, and a cancel button 21c that is clicked when canceling the authentication procedure. Further, the authentication procedure screen 21 includes three image display areas 21d to 21f described above. However, no image is displayed in the display areas 21d to 21f in the step S101. Note that after the authentication procedure screen 21 is displayed and before the buttons 21b and 21c are clicked, characters can be entered in the text box 21a, but any key operation on the input device 10b is possible. Even if is performed, only an asterisk is displayed in the text box 21a. However, the undisplayed character string acquired by these key operations is recorded in a predetermined area of the DRAM 12 as an input code. The function of displaying this asterisk corresponds to the input information concealment means described above.

  After displaying such an authentication procedure screen 21 on the display device 10a, the CPU 11 stands by until one of the buttons 21b and 21c is clicked (S102; NO). When any button is clicked (S102; YES), the CPU 11 determines whether or not the clicked button is the OK button 21b (S103).

  Then, when the clicked button is a cancel button (S103; NO), the CPU 11 ends the processing according to FIGS. 4 and 5, and when the clicked button is an OK button (S103; YES). Then, image display processing is executed (S104). FIG. 7 is a diagram showing the flow of the image display process.

  After starting the image display process, the CPU 11 reads an input code from a predetermined area of the DRAM 12, inputs the input code to a hash function, and acquires a result value as a conversion code (S201). In the present embodiment, the hash function is employed, but the present invention is not limited to this, and any device that performs an irreversible operation can be employed.

  Subsequently, the CPU 11 refers to the image data management table 17 to identify the same image code as a part of the conversion code (the last two digits in this embodiment), and image data from the file path corresponding to the image code. 16 is read (S202).

  Then, the CPU 11 refers to the display area definition table 18 and specifies the display area corresponding to the input mode when this input code is generated on the authentication procedure screen 21 (S203).

  Thereafter, the CPU 11 displays a clickable button on which an image based on the read image data 16 is drawn in the specified display area (S204). The click button has a function of overwriting the input code over the input code recorded in a predetermined area of the DRAM 21. Thereafter, the CPU 11 ends the image display process according to FIG. 7 and executes the authentication process of FIG. 5 (S105). This authentication process is a general process for determining whether the authentication information recorded in advance in the HDD 14 or the DRAM 12 matches the input code in the DRAM 12. Therefore, this authentication process corresponds to the determination means described above.

  When the CPU 11 determines that the authentication information and the input code match in this authentication process (S106; YES), the CPU 11 outputs an access permission instruction to an application (not shown), assuming that the authentication is successful, After the display of the authentication procedure screen 21 is continued for a certain period, the authentication procedure screen 21 is closed (S115), and the processes according to FIGS. 4 and 5 are ended. This step S115 corresponds to the access permission means described above.

  On the other hand, if the CPU 11 determines that the authentication information and the input code do not match (S106; NO), the authentication procedure screen is displayed with clickable buttons corresponding to all the input modes of the input device 10b as being unsuccessful. The process (S107-S110) displayed on 21 is performed.

  Specifically, the CPU 11 first identifies one unprocessed input mode as a processing target (S107), and executes an alternative code generation process for the input mode (S108). FIG. 8 shows the flow of this alternative code generation process.

  After starting the substitute code generation process, the CPU 11 reads an input code from a predetermined area of the DRAM 12 (S301), and an input obtained when a key operation performed to generate the input code is performed on the process target input code. A code is generated (S302), and the input code is overwritten with an input code in a predetermined area of the DRAM 12 to be updated (S303).

  Thereafter, the CPU 11 ends the alternative code generation process of FIG. 8 and executes the image display process of FIG. 5 (S109). Since this image display processing has been described above, description thereof is omitted here. With this image display process, a clickable button is displayed in the display area corresponding to the input mode to be processed on the authentication procedure screen 21.

  Thereafter, the CPU 11 determines whether or not this process has been executed for all the input modes after finishing the processes of steps S108 and S109 for the input mode to be processed (S110).

  If the processing in steps S108 and S109 has not been completed for any input mode (S110; NO), the CPU 11 newly specifies one unprocessed input mode as a processing target (S107). Steps S108 and S109 are executed for the target input mode.

  As a result of such loop processing (corresponding to the image display means described above), when the processing of steps S108 and S109 is completed for all input modes (S110; YES), the CPU 11 determines which of the buttons on the authentication procedure screen 21. Wait until is clicked (S111; NO). When any button is clicked (S111; YES), the CPU 11 determines whether or not the clicked button is a button other than the clickable button on which the image is drawn (S112).

  If the clicked button is a clickable button on which an image is drawn (S112; NO), the CPU 11 records an input code corresponding to the clicked clickable button in a predetermined area of the DRAM 12 (S113). Then, an authentication process is executed (S105). Therefore, step S105 also corresponds to the re-determination means described above.

  On the other hand, when the clicked button is a button other than the clickable button on which an image is drawn (S112; YES), the CPU 11 determines whether or not the clicked button is a cancel button (S114).

  If the clicked button is an OK button (S114; NO), the CPU 11 executes an image display process and an authentication process for the input code input before the OK button is clicked (S104, S104). S105).

  On the other hand, when the clicked button is a cancel button (S114; YES), the CPU 11 ends the processes according to FIGS.

  Next, operations and effects of the computer system of this embodiment will be described.

  After the authentication procedure screen 21 is displayed on the display device 10a of the computer system 10 (S101), the user performs an operation of inputting characters in the text box 21a on the input device 10b. Then, a character string consisting of an asterisk is displayed on the authentication procedure screen 21. When the user clicks the OK button (S102; YES, S103; YES), one clickable button on which an image is drawn is displayed on the authentication procedure screen 21 (S104), and the undisplayed input by the user is displayed. Authentication is determined for the input code indicated by the character string (S105). When the input code matches the pre-registered authentication information (S106; YES), the access restriction to the application is released (S115). FIG. 9 is a diagram illustrating an example of the authentication procedure screen 21 when the correct key operation is performed in the correct input mode.

  In addition, when the user performs an incorrect key operation on the text box 21a of the authentication procedure screen 21 and clicks the OK button 21a (S102; YES, S103; YES), the characters acquired by the key operation The image data 16 is identified from the input code indicated by the column, and a clickable button having the image of the image data 16 is displayed on the authentication procedure screen 21 (see FIG. 10) (S104). Is performed (S105). Then, after it is determined that the input code does not match the previously registered authentication information (S106; NO), the authentication procedure screen 21 has three clickable buttons (FIG. 11) with different pictures drawn on them. Is displayed (S107 to S110). At this time, the authentication procedure screen 21 (see FIG. 11) includes an image of the clickable button (car in FIG. 9) shown on the authentication procedure screen 21 when the correct character string is input in the correct input mode. Absent. For this reason, the user can immediately know that a typo has been made because there is no image (car in FIG. 9) he / she is always looking at on the authentication procedure screen 21.

  In addition, when the user performs a correct key operation on the text box 21a of the authentication procedure screen 21 but performs the input operation in an incorrect input mode (S102; YES, S103; YES), the key The image data 16 is identified from the input code indicated by the character string obtained by the operation, and a clickable button having an image of the image data 16 is displayed on the authentication procedure screen 21 (see FIG. 12) (S104). Authentication is determined for the input code (S105). Then, after determining that the input code does not match the authentication information registered in advance (S106; NO), the authentication procedure screen 21 has three clickable buttons (FIG. 13) with different pictures drawn thereon. Is displayed (S107 to S110). At this time, the authentication procedure screen 21 (see FIG. 13) includes an image of the clickable button (car in FIG. 9) shown on the authentication procedure screen 21 when the correct character string is input in the correct input mode. . For this reason, the user can immediately know that the input mode has been mistaken by having the authentication procedure screen 21 for the image (car in FIG. 9) that he / she is always looking at.

  As described above, according to the computer system 10 of the present embodiment, when there is an error in the key operation when inputting authentication information, an image different from the image that is always seen is displayed on the authentication procedure screen 21. Therefore, the user can immediately determine that there is a typo even if the character string accompanying the key operation is not shown in the text box 21a of the authentication procedure screen 21 in order to prevent the leakage of the personal identification information. Can do.

  Further, when the key operation is performed in an input mode different from the original input mode, and authentication is not received, an output in each input mode of the key operation performed on the input device can be obtained. A clickable button for doing so is displayed on the authentication procedure screen 21. At this time, since the image that can be seen at all times is displayed on the clickable button, the user cannot display the character string accompanying the key operation in the text box 21a of the authentication procedure screen 21 in order to prevent the leakage of the password information. However, it can be immediately determined that an input mode different from the input mode to be originally set has been set. However, when it is found through the image of the authentication procedure screen 21 that the input mode is different, it is the same in the input mode corresponding to the clickable button by simply clicking on the clickable button without performing the key operation again. Since the character string obtained when the key operation is performed determines the authentication, there is no need to perform the key operation again. Furthermore, since an image is only displayed on the authentication procedure screen 21, even if an image is seen by a third party, it is impossible to infer authentication information from the image. For this reason, it is still possible to prevent leakage of authentication information.

Configuration diagram of the computer system of this embodiment It is a figure which shows an example of the data structure of an image data management table. It is a figure which shows an example of the data structure of a display area definition table. Diagram showing the flow of authentication processing Diagram showing the flow of authentication processing The figure which shows an example of the certification procedure screen which does not include the clickable button Diagram showing the flow of image display processing Diagram showing the flow of alternative code generation processing Figure showing an example of the authentication procedure screen when the correct key operation is performed in the correct input mode Figure showing an example of the authentication procedure screen when an incorrect key operation is performed Figure showing an example of the authentication procedure screen when an incorrect key operation is performed The figure which shows an example of the certification procedure screen when correct key operation is done with wrong input mode The figure which shows an example of the certification procedure screen when correct key operation is done with wrong input mode

Explanation of symbols

DESCRIPTION OF SYMBOLS 10 Computer system 10a Display apparatus 10b Input device 10c Main body 11 CPU
12 DRAM
13 Multi-disk drive 14 HDD
15 Basic Software 16 Image Data 17 Image Data Management Table 18 Display Area Definition Table 19 Authentication Program

Claims (5)

Computer
Screen display means for displaying on the display device an authentication procedure screen for performing an authentication procedure based on screen data read from the storage device when an access instruction to a predetermined access target is received through the input device;
Input information concealment means for outputting a character string of a predetermined character on the authentication procedure screen instead of a character string obtained by the key operation when a predetermined key operation is performed in the input device;
Determination means for determining whether or not authentication information indicated by the character string obtained by the key operation in the input device matches authentication information stored in a storage device;
When authentication information does not match in the determination means, a predetermined irreversible calculation is performed on the character string obtained by the key operation on the input device in the input mode for each of the input modes of the input device. Code information is obtained by applying, and image data corresponding to the code information is read from a storage device that stores a plurality of pieces of code information and a plurality of image data in association with each other, and an image based on the image data is drawn Image display means for performing a process of displaying a clickable button on the authentication procedure screen;
When any of the clickable buttons displayed on the authentication procedure screen by the image display means is clicked, the character that is the source of the code information corresponding to the image data of the image drawn on the clickable button Re-determination means for determining whether or not the authentication information indicated by the column matches the authentication information stored in the storage device; and
An authentication program that functions as an access permission unit that outputs an access permission instruction to the access target when the authentication information matches in the determination unit or the re-determination unit. The authentication program according to claim 1, wherein the image display unit reads image data corresponding to the last two digits of the code information from the storage device. The image display means displays the clickable button in an area in which an input mode corresponding to the clickable button is defined among areas defined in the input mode on the authentication procedure screen. The authentication program according to claim 1 or 2. 3. The authentication program according to claim 1, wherein the image based on the image data is a picture. Computer
When an input instruction for an access to a predetermined access target is received by the input device, an authentication procedure screen for performing an authentication procedure is displayed on the display device based on the screen data read from the storage device,
When a predetermined key operation is performed on the input device, a character string of a predetermined character is output to the authentication procedure screen instead of a character string obtained by the key operation,
Determining whether the authentication information indicated by the character string obtained by the key operation in the input device matches the authentication information stored in the storage device;
When the authentication information does not match, for each of the input modes of the input device, by performing a predetermined irreversible operation on a character string obtained by the key operation in the input device in the input mode A clickable button that obtains code information, reads image data corresponding to the code information from a storage device that stores a plurality of code information and a plurality of image data in association with each other, and draws an image based on the image data Is displayed on the authentication procedure screen,
When any of the clickable buttons displayed on the authentication procedure screen is clicked, the authentication information indicated by the character string that is the source of the code information corresponding to the image data of the image drawn on the clickable button Determines whether it matches the authentication information stored in the storage device,
An authentication method characterized by outputting an access permission instruction to the access target to the access target when the authentication information matches in any determination.