JP2009181218A - Authentication device, authentication method and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To make a shape of a signature track to be remembered without deteriorating security when a registered signature is forgot in signature authentication. <P>SOLUTION: This authentication device has: a storage processing means storing handwritten signature registration; and a display processing means deleting a part of coordinate points of the signature track registered in time of the authentication to deform the shape and to perform reproduction display. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to an authentication device, an authentication method, and a program for inputting a signature by hand and determining whether or not the person is the person himself / herself. In particular, the present invention relates to an authentication device for reminding a signature when the registered signature is forgotten.

  Conventionally, the password association method disclosed in Patent Document 1 includes means for outputting a part of a password as a hint when inputting a password.

  The password forgetting prevention system disclosed in Patent Document 2 includes means for registering a true password and a hint character string in association with each other, a hint character string display input command means, and a hint character string display means. .

  The information processing apparatus disclosed in Patent Document 3 has means for inputting multi-item personal information when a password is forgotten, and means for starting a means for restoring the password. Further, the information processing apparatus has a recovery information creation unit for restoring the password and a unit that provides a plurality of recovery information to the user little by little.

  The password notification method disclosed in Patent Literature 4 includes means for recording a user's email address and password, and means for determining whether the user address is transmitted from a user terminal whose email address cannot be changed by the user. Yes. Furthermore, a password lost mail receiving means from the user, a means for identifying the user from the mail address, and a mail transmitting means for sending a password to the user by e-mail when the means is determined to be a specific user of the specific terminal; have.

JP-A-6-177872 JP-A-6-243099 JP-A-10-177551 JP 2003-242114 A

  In the password associating method disclosed in Patent Document 1, when an instruction is given, a part of the password is displayed by means for outputting a part of the password as a hint. However, if the character string registered as the password is a word or the like, there is a possibility that it can be inferred by a third party from a part of the display. In addition, in the case of a character string that is randomly generated by the system or the like, there is no fear that even if the first part is displayed, there is a problem that the user cannot remember other parts.

  The password forgetting prevention system disclosed in Patent Document 2 includes means for registering a true password and a hint character string in association with each other, and a hint character string display input command means. For example, assume that the true password is “with a song name” and the hint is “my favorite song”. Therefore, it is simply not understood by a third party. However, there is a possibility that a password is predicted by a hint, user's incidental information (such as age), and a program. In consideration of security, if a true password is a character string that is not a word, it is almost impossible to think of a hint to remember the character string. For example, if the true password is “h3jwg8k9”, the hint can be registered only as “a character string mixed with lowercase letters and numbers”.

  In the information processing apparatus disclosed in Patent Document 3, personal information may be known by other means. If the personal information is the person's birthday, address, and parent's maiden name, it is not impossible to obtain information if the person is identified. Therefore, the password may be recovered and identified.

  In the password notification method disclosed in Patent Document 4, when a user uses a mobile phone mail as a registration means, if the phone is lost, the password may be stolen by a third party. If the password is exchanged by e-mail or the like, even if the password is encrypted, the e-mail may be intercepted and the password may be stolen.

  The present invention has been made in view of the above-described problems, and an object of the present invention is to remember the shape of a signature trajectory without degrading security when a registered signature is forgotten in signature authentication. .

An authentication apparatus according to the present invention includes a storage processing unit that stores handwritten signature registration, a display processing unit that performs reproduction display by deforming a shape by deleting a part of coordinate points of a signature locus registered at the time of authentication, and It is characterized by having.
The authentication method of the present invention includes a storage processing step for storing handwritten signature registration, and a display processing step for performing reproduction display by deforming the shape by deleting a part of the coordinate points of the signature locus registered at the time of authentication. It is characterized by having.
The program of the present invention includes a storage processing step for storing handwritten signature registration, a display processing step for performing reproduction display by deforming a shape by deleting a part of coordinate points of a signature locus registered at the time of authentication, Is a program for causing a computer to execute.

  According to the present invention, even when a registered signature is forgotten in signature authentication, the user can be reminded of the shape of the signature trajectory without degrading security.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.
(First embodiment)
FIG. 1 is a diagram showing a configuration of an authentication system according to the present embodiment.
Reference numeral 1 denotes an information device. The information device 1 has a liquid crystal display unit, a display-integrated coordinate input unit, a CPU, a ROM, a RAM, an HD, and a slot into which a recording medium is inserted. The information device 1 has an interface such as a USB for connecting to other information devices, and a network interface unit for connecting to a personal computer having other network connection functions. Based on the position coordinate input value input by the coordinate input unit, a handwritten signature can be input, other operation instructions can be given, and menus can be selected. The information device 1 constitutes an authentication device.

Reference numeral 2 denotes a display unit. The display unit 2 displays the input signature trajectory, the registered signature trajectory, or displays a warning message or the like.
Reference numeral 3 denotes a local area network. The local area network 3 communicates with other personal computers.

  Reference numeral 4 denotes a personal computer (PC). The PC 4 is connected to the information device 1 via an area network or the like. A confidential mail to which the signature authentication data is added is sent from the PC 4 through the local network 3.

FIG. 2 is a diagram illustrating an internal configuration of the information device according to the present embodiment.
Reference numeral 5 denotes a coordinate input unit. The coordinate input unit 5 is composed of a transparent resistive film digitizer or the like. The coordinate input unit 5 is connected to the CPU 7 via the system bus 12.
Reference numeral 6 denotes a liquid crystal display unit. The liquid crystal display unit 6 includes a liquid crystal display element, a liquid crystal control circuit, and a display memory. The liquid crystal display unit 6 is connected to the CPU 7 via the system bus 12. The liquid crystal display unit 6 displays an image in accordance with an instruction from the CPU 7.

7 is a CPU. The CPU 7 is connected to the RAM 8, the ROM 9, the liquid crystal display unit 6 and the like via the system bus 12. The CPU 7 performs a processing operation by a program stored in the ROM 9.
Reference numeral 8 denotes a RAM. The RAM 8 is used as a work area.
Reference numeral 9 denotes a ROM. The ROM 9 stores a program for realizing the second authentication processing means when the signature is forgotten and the display processing means that reproduces and displays the registered signature data at the time of authentication by changing the shape of the signature.

Reference numeral 10 denotes a small hard disk used in the information device 1. The small hard disk 10 is connected to the CPU 7 via the system bus 12. The small hard disk 10 stores a registered signature data dictionary, general files, setting information, and the like.
Reference numeral 11 denotes a local area network interface card. The interface card 11 can communicate with other personal computers.
Reference numeral 12 denotes a system bus. The system bus 12 exchanges data with the CPU 7, ROM 9, RAM 8, and other devices.

FIG. 3 is a diagram showing a mechanism configuration and the like of the signature authentication apparatus.
Reference numeral 5 denotes coordinate input means. The coordinate input means 5 is composed of, for example, a transparent resistance film digitizer. The coordinate input means 5 detects position coordinate data such as a locus written with a pen. The coordinate input means 5 transmits the detected position coordinate data to the CPU 7 shown in FIG. The CPU 7 stores the position coordinate data in a specific area in the RAM 8 of FIG.

Reference numeral 13 denotes sign feature amount extraction means. The signature feature amount extraction unit 13 extracts the feature amount of the signature trajectory to be registered, and sends the extracted feature amount to the signature feature registration unit 14 for storage.
Reference numeral 14 denotes signature feature registration means. Sign dictionary data is created from the feature quantity sent from the signature feature quantity extraction means 13 and the user ID and stored in the signature feature dictionary 15 (storage processing means).
Reference numeral 15 denotes a signature feature dictionary. The signature dictionary data registered in order of user ID is stored as a file in the hard disk 10 of FIG.

  Reference numeral 16 denotes second authentication means. The second authentication means 16 is an authentication means used for reading out signature data when the user has forgotten the registered signature. The second authentication means 16 is composed of questions and answers registered by the user. If the question is displayed and the answer is correct, it is authenticated.

Reference numeral 17 denotes deformation reproduction display means. The deformation reproduction display means 17 transforms the registered signature trajectory into a form in which the signature authentication is not authenticated even if a third party imitates it as it is (such as deleting a part of a specific coordinate point of the signature trajectory). Means for displaying. This is because even if the characteristics of the registered signature trajectory are modified to some extent, there is no problem if the registered person writes in the normal way.
Reference numeral 6 denotes display means. The display means 6 displays the sign trajectory and the like deformed by the deformation reproduction display means 17.

FIG. 4 is a diagram illustrating an example of a registered signature.
FIG. 5 is a diagram showing an example in which the sign trajectory data shown in FIG. 4 is deformed and displayed by the deformation processing of the present invention.

FIG. 6 is a diagram illustrating an example of an input screen for sign authentication.
Reference numeral 18 denotes an input area for inputting a signature.
Reference numeral 19 denotes a button for calling the second authentication screen. When the registered signature is forgotten, the user presses the button 19.
Reference numeral 20 denotes a clear button that is pressed to cancel the input signature.
Reference numeral 21 denotes an authentication button that is pressed when authentication is started with the input signature. When the user presses the authentication button 21, an authentication process is performed to determine whether the input signature is the same as the signature registered in the dictionary. In the present invention, the authentication algorithm is performed by a conventionally known signature authentication algorithm.

FIG. 7 is a diagram illustrating an example of the second authentication screen when the signature is forgotten. Reference numeral 22 denotes a window of the second authentication screen. The window 22 is displayed on the sign input screen. In the window 22, questions registered in advance are displayed as text. In FIG. 7, “Your elementary school name is” is displayed. The question may be an arbitrary question set by the user.
Reference numerals 23, 24, 25, 26, and 27 are input areas for answers to questions. The input areas 23 to 27 are configured to input one character with a locus in one frame. In the present embodiment, the input is performed using a trajectory. However, the input may be performed using text using a keyboard or the like.
Reference numeral 28 denotes an authentication button. When the user presses the authentication button, authentication is performed to determine whether the answer written in the input areas 23 to 27 is the same as the stored answer.

Processing according to this embodiment will be described with reference to the flowcharts of FIGS. 8, 9, and 11.
FIG. 8 is a flowchart showing the process of the main screen for sign authentication.
Before entering this process, it is assumed that the user ID and the like have already been set by a general login process or the like. If the information device is for personal use, it is set by the user at the time of setting. The process of the flowchart shown in FIG. 8 is an input process on the input screen for sign authentication shown in FIG. The CPU 7 executes the flowchart shown in FIG.

  First, in step 29, the signature authentication main screen process is started. Secure work area and initialize variables. Since the user ID has already been set, the registered signature data dictionary file corresponding to the user ID is read from the hard disk 10 shown in FIG. Further, the display of the input screen for sign authentication shown in FIG. 6 is created and displayed.

In step 30, an input waiting process is performed. It loops and waits within this process until there is any input. When input is performed, the process proceeds to step 31.
In step 31, it is checked whether the clear button has been pressed. If the position coordinates of the clear button 20 area shown in FIG. 6 are input from the coordinate input unit 5 of FIG. 3, it is determined that the clear button has been pressed, and the process proceeds to step 35. If the coordinates are input in other areas, the process proceeds to step 32.

  In step 32, it is checked whether the signature forgetting button 19 has been pressed. If the position coordinates of the sign forgetting button 19 area shown in FIG. 6 are input from the coordinate input unit 5 of FIG. 3, it is determined that the sign forgetting button 19 has been pressed, and the process proceeds to step 36. If the coordinates are input for other areas, the process proceeds to step 33.

  In step 33, it is checked whether the authentication button 21 has been pressed. If the position coordinates of the authentication button 21 area shown in FIG. 6 are input from the coordinate input unit 5 of FIG. 3, it is determined that the authentication button 21 has been pressed, and the process proceeds to step 37. If the coordinates are input for other areas, the process proceeds to step 34.

  In step 34, it is checked whether or not the input is to the sine locus input area 18. If the position coordinates in the sign trajectory input area 18 shown in FIG. 6 are input from the coordinate input unit 5 in FIG. 3, it is determined that the input is a sign trajectory, and the process proceeds to step 38. If the coordinates are input for other areas, the process proceeds to step 39.

In step 35, clear processing in the sign locus input area 18 of FIG. 6 is performed. Further, the locus display in the area 18 is erased, and the locus data stored in the sine locus buffer is erased.
In step 36, the process proceeds to the signature second authentication process. The display screen shown in FIG. 7 is a transition to the processing of the second authentication screen when the signature is forgotten, and the detailed processing will be described with reference to the flowchart of FIG.

In step 37, the signature authentication process is called. Since the signature authentication process itself may be a known method, detailed description thereof is omitted. A feature amount is extracted from the position coordinate data of the trajectory input in the region 18 shown in FIG. 6, and the matching processing is performed between the feature amount and the feature amount read from the signature registration dictionary. Otherwise, access is denied.
In step 38, a signature trajectory data input process is performed. When pen-down is performed in the area 18 shown in FIG. 6, the input coordinate points are drawn with straight lines until pen-up, and the position coordinate points are stored in the sine locus buffer as input locus data. If the pen is up, the process proceeds to step 30 after drawing the locus and waits for the next pen-down input.
In step 39, since there are other inputs, the sign input process is terminated and the process proceeds to another process.

In the flowchart shown in FIG. 9, the sign second authentication process will be described. This process is a process called when the user has forgotten the signature set. The CPU 7 executes the flowchart shown in FIG.
First, in step 40, the sign second authentication process is started. Secure work area, initialize variables, etc.

  In step 41, the text data of the question of the signature second authentication is read and displayed on the screen. Based on the set user ID, the signature registration dictionary data file is read out, and the text data of the signature second authentication question is read out from the read signature registration dictionary data file and displayed in the window 22 shown in FIG. To do. In the example shown in FIG. 7, “Your elementary school name is” corresponds to the text data of the question. The text of the question and the locus data of the answer to the question are registered together in advance when the signature locus data is registered.

  In step 42, the data of the answer of the sign second authentication is read and stored. Based on the set user ID, the signature registration dictionary data file is read, and the registered trajectory data as answer data is read from the read signature registration dictionary data file. When the answer is stored as trajectory data, there is a characteristic that the third person who does not know the writing method can imitate because there is a feature of the writing method of the user and the timing (writing order) at the time of input. However, the present invention is not limited to this configuration, and the registered answer may be “Ox Elementary School” as text.

In step 43, input waiting processing is performed. It loops and waits within this process until there is any input. If an input is detected, the process proceeds to step 44. Specifically, it waits for input from the keyboard or position coordinates from the coordinate input means.
In step 44, it is checked whether or not a locus is input. If the input is a locus, the process proceeds to step 45. When there is a coordinate input to the input areas 23 to 27 shown in FIG. If it is any other position coordinate, the process proceeds to step 46.

  In step 45, a locus input process is performed. This process is called when an input of position coordinates in the input areas 23 to 27 shown in FIG. 7 is detected during pen-down. When an input is detected in the input area 23, a trajectory is drawn in the input area 23, and a position coordinate data string which is the trajectory data is stored in a trajectory storage buffer corresponding to the input area 23. This drawing and storing process is performed until the pen is raised. When the pen is raised, the process proceeds to step 43 and waits for input.

  In step 46, it is checked whether the authentication button has been pressed. When the pen is lowered and raised on the authentication button 28 shown in FIG. 7, it is determined that the authentication button 28 has been pressed from the position of the position coordinates, and the process proceeds to step 47. If the input is other than that, the position coordinate input data is ignored, and the process proceeds to step 43 to wait for input.

  In step 47, authentication processing is performed. In step 45, the locus data in the locus storage buffer corresponding to the stored input areas 23 to 27 is normalized by a general recognition process, and the feature points are extracted. The trajectory data of the answer read in step 42 is also extracted by the same method and the matching is performed to determine whether it is the same. If almost identical, authentication is OK. In this embodiment, the trajectories are authenticated. However, when the answer is text data, whether the text data is the same is authenticated by testing the text code.

In step 48, it is checked whether or not the authentication is OK. If the authentication is OK, the process proceeds to step 51; otherwise, the process proceeds to step 49. In step 47, if the stored question answer trajectory is the same as the input trajectory, it is determined that the authentication is OK.
In step 49, the authentication screen is closed. Since authentication failed, close this authentication screen.
In step 50, the sign second authentication process is terminated. Release the secured work area.

  In step 51, the process proceeds to a signature display process. In step 51, since it is determined in step 47 that the stored question answer trajectory is the same as the input trajectory, the stored sign trajectory is reproduced and displayed.

  The sign display process of the present embodiment will be described with reference to the flowchart shown in FIG. This is a process of transforming and displaying a stored signature within a range that can be understood by the user. For the user who has registered the signature, the detailed writing method itself is always written, so there is no need to look at it. Therefore, a part of the registered signature handwriting data is omitted for display. Even if the omitted handwriting is written as it is, signature authentication is not authenticated, so security is not lowered. The CPU 7 executes the flowchart shown in FIG.

First, in step 54, sign display processing is started. Allocate work area and initialize variables.
In step 55, a window 52 as shown in FIG. In FIG. 10, reference numeral 52 denotes a window of a signature reproduction screen. The window 52 displays a deformed sign. 53 is a close button. When the button 53 is pressed, the window 52 of the signature reproduction screen is closed. In addition, as shown in FIG. 10, a description text portion is drawn.

  In step 56, processing for reading the coordinate data of the locus of the registered signature data is performed. When read, the number of strokes of the registered signature data is set, and the stroke number counter is set to ST = 1. Based on the user ID, the coordinate data of the registered signature data trajectory in the registered signature data dictionary file is read into the storage buffer from the signature feature dictionary 15 shown in FIG.

In step 57, processing for reading one stroke data is performed.
In step 56, data for one stroke is read from the data of the coordinate points in the locus of the registered signature data stored in the storage buffer.
In step 58, the total length of the stroke is calculated, the process stored in STlength and the initial values of variables are set. The distance between the coordinate points of the trajectory is calculated in order from the start point, the distance is added to the end point, the total length is obtained, and stored in the variable STlength. The number of coordinate points from the start point to the end point is stored in the variable point number. The point number counter pt = 1 is initialized, the variable length = 0 is set, and the start point coordinates XY are stored in X1Y1.

In step 59, XY of the coordinate point currently focused on is stored in XptYpt.
In step 60, a process of counting up the point number counter pt is performed.
pt = pt + 1
In step 61, it is checked whether pt> 2. If it is 3 or more, the process proceeds to step 62. That is, if only one point has been read, the process does not proceed to step 62.

In step 62, the distance between the current point and the previous point is calculated and added. The distance between the point of Xpt-1, Ypt-1 and the point of Xpt, Ypt is calculated, and the value is added to length.
In step 63, the length calculated in step 62 is compared with 1/10 of the total stroke length. If it is larger than 1/10 of the total length of the stroke, the process proceeds to step 64, and if it is less, the process proceeds to step 59 to read the next point. This is because the approximate shape of the trajectory shape can be expressed even if the stroke is represented by about 10 points. In addition, the number of 10 points is shown as an example, and is not limited to this number.

In step 64, a straight line is drawn between X1Y1 and Xpt, Ypt, the values of Xpt, Ypt are stored in X1Y1, and length = 0 is set.
In step 65, it is checked whether processing has been performed up to the end point of the stroke. If pt <the number of points, the end point is not yet reached, so the process proceeds to step 59. Otherwise, the end point is processed and the process proceeds to step 66.

In step 66, a process of adding 1 to the stroke counter is performed.
ST = St + 1
In step 67, it is checked whether all strokes have been processed. If all strokes have been processed, the process proceeds to step 68. If not, the process proceeds to step 57 to read the next stroke.
In step 68, the sign display process is terminated. As a result, a display representing the shape of the signature trajectory is reproduced in the window 52 shown in FIG. That is, input reproduction display is performed.

By configuring the processing in this way, when the user forgets the signature, the approximate shape of the registered signature can be displayed by the second authentication means. Therefore, the user can be reminded of the shape of the sign trajectory.
Further, since the second authentication means is a question based on the conventional text and an answer based on the locus based on the answer based on the code input, the security is higher. Further, since the displayed sign has an approximate shape, it is an authentication device with higher security than the answer by the conventional password method.

<Second Embodiment>
In the first embodiment, the sign is deformed for display. However, in the case of a registered signature, there may be a case where the stroke order is forgotten. In that case, I want to remember the stroke order, but the speed of writing the signature part is unique to the person, so I can't forget it. Therefore, in this embodiment, different input reproduction display means for performing display at a timing different from the actual input timing is provided instead of the deformation reproduction display means.

FIG. 12 is a diagram illustrating a functional configuration of the authentication apparatus according to the second embodiment.
The same components as those of the authentication device according to the first embodiment shown in FIG.
69 is a different input reproduction display means. The different input reproduction display means 69 displays the coordinate point of the registered sign trajectory data at a speed different from the input timing when the trajectory data is input, so that the input timing of the sign is not reproduced. It is means to do.

FIG. 13 is a diagram illustrating an example of a signature reproduction screen.
Reference numeral 70 denotes a window of a signature reproduction screen.
Reference numeral 71 denotes a playback button. When the play button 71 is pressed, the signature display is played back.
Reference numeral 72 denotes a close button. When the close button 72 is pressed, the signature reproduction screen window 70 is closed.

FIG. 14 is a flowchart showing the signature reproduction process. The sign reproduction process according to the present embodiment will be described with reference to the flowchart shown in FIG. Note that the flowchart shown in FIG. 14 is executed by the CPU 7.
In step 73, the signature reproduction process is started. Allocate a work area and initialize variables.
In step 74, the signature reproduction screen window 70 is drawn. That is, as shown in FIG. 13, the frame of the sign reproduction screen window 70, the text for explanation, the reproduction button 71, and the close button 72 are drawn.

In step 75, processing for reading the registered signature data is performed. The locus data of the signature data registered from the signature feature dictionary is read and stored in the buffer area. When read, the number of registered signatures is set, and the stroke counter ST = 1.
In step 76, one stroke of data is read from the stored signature data in the buffer area. One stroke data is stored in the stroke buffer, and the number of coordinate points of the stroke is stored in the variable PC. Set P = 1.

In step 77, the coordinate point XpYp of the stroke is stored.
In step 78, the coordinate point counter is counted up.
p = p + 1
In step 79, it is checked whether p <3 or less. If it is 3 or less, the process proceeds to step 77. Otherwise, the process proceeds to step 80.

In step 80, the straight line between the previous point and the current point is drawn, the actual sampling rate at the time of registration of the coordinate point (coordinate point acquisition interval) x a random value is obtained from the random function, and the random time Draw with.
A straight line between (Xp−1, Yp−1) (Xp, Yp) is drawn with a time of sampling time × rand ().

  In step 81, it is checked whether all stroke coordinate points have been processed. If processed, go to step 82 to process the next stroke, otherwise go to step 77. If p <pc and the coordinate point counter is less than or equal to the number of coordinate points stored, if there is no unprocessed coordinate point yet, the process has been completed.

In step 82, the stroke counter is increased. ST = ST + 1
In step 83, it is checked whether or not the stroke counter is equal to or less than the number of strokes. If it is below, there is an unprocessed stroke, so the process proceeds to step 76. If not, the process ends and the process proceeds to step 84. .
In step 84, the process ends. The work area, variable area, etc. are released.

  When the play button in FIG. 13 is pressed, the sign locus displayed in the sign play screen window 70 is deleted, the process is executed from step 75, and the sign is drawn. At this time, the sign to be drawn is drawn at a timing at which the partial drawing speed differs depending on the random function of rand ().

  As described above, according to the present embodiment, display is performed at a timing different from the input timing of the coordinate points of the actually registered sine locus. Therefore, even if a third party sees the sign display and inputs it at that timing, the possibility of authentication is low, and security can be improved.

  Even if the third person passes the second authentication and sees the sign shape, the input writing speed or the writing pressure is important as a feature of the authentication. For this reason, if it is not reproduced, even if it writes with a different writing speed or writing pressure, it will not be authenticated, Therefore Security can be improved.

<Third Embodiment>
In the first and second embodiments, the sign shape is roughly reproduced. However, if the registered sign shape is a standard writing method, it may be recognized as a character. In this case, the user should have memorized how to write the character, and since it is statistically common that the writing method of the character is constant for each user, it may be displayed as a font. In the present embodiment, a case of displaying as a font will be described.

FIG. 15 is a diagram illustrating a functional configuration of the authentication apparatus according to the third embodiment.
The same components as those of the authentication device according to the first embodiment shown in FIG.
Reference numeral 85 denotes font locus display means. The font trajectory display means 85 recognizes the registered signature data, displays the recognized signature data in font, and displays the other trajectories as a trajectory deformed by the deforming means as described in the first embodiment. .

  FIG. 16 is a diagram showing an example of a registered signature data locus and an example of a screen that recognizes and displays the locus. The registered signature data are trajectories 86 and 87. When the trajectory is cut and recognized, the trajectory 86 is recognized and displayed with the “new” font display 88. If the locus 87 is unrecognizable, the locus 87 is deformed and displayed as a locus 89.

FIG. 17 is a flowchart showing registered signature data recognition display processing. Processing according to this embodiment will be described with reference to a flowchart shown in FIG. Note that the CPU 7 executes the flowchart shown in FIG.
In step 90, the registered signature data recognition display process is started. Secure work area, initialize variables, etc.
In step 91, the registered signature data is read. For example, signature trajectories 86 and 87 shown in FIG. 16 are stored in the registered signature storage buffer.

  In step 92, character cut processing is performed. This uses a general character string cutting algorithm. For example, a virtual character frame is calculated from the height information of the circumscribed rectangle of the stroke data, thereby extracting trajectory data for one character. Thereby, for example, if the trajectories 86 and 87, the characters are cut into two characters.

In step 93, the number of characters resulting from character cutting is set. In the example shown in FIG. 16, two are set.
In step 94, a process for reading the trajectory for one character of the trajectory of the registration signature with the characters cut is performed.
In step 95, a character recognition process is performed. The locus of the registered signature data for one character read in step 94 is recognized by a standard online handwriting recognition algorithm. Recognition is possible as long as a trace 86 or a pattern that is a general abbreviation and registered in the recognition dictionary. If it is the pattern of the locus 86, it is recognized as “new”. Since the figure such as the locus 87 does not exist in the recognition dictionary, an unrecognizable result is output from the recognition process.

In step 96, it is checked whether it has been recognized. When the recognition result is output, the process proceeds to step 97, and when the recognition result cannot be recognized, the process proceeds to step 98.
In step 97, the recognition result is displayed in font. The result is displayed in a font with a size of a circumscribed rectangle of the locus of the registered signature data for one character used for recognition. In the case of signature authentication, since the relationship between the size and position of each locus is also important as information, even if it is displayed in font, it is displayed so as to reflect the information.

  In step 98, sign deformation display processing is performed. Since this processing is the same as the processing of the flowchart shown in FIG. 11 described in the first embodiment, the description thereof is omitted. The trajectory of the separated signature data for one character is drawn according to the process of the flowchart shown in FIG. In the example shown in FIG.

In step 99, the character counter is increased.
In step 100, it is checked whether there is unprocessed sign trajectory data. If the character count is less than or equal to the number of characters cut, there is still unprocessed data, so the process proceeds to step 94. If not, the process ends and the process proceeds to step 101.

  In step 101, the registered signature data recognition display process is terminated. Release work area. Here, if a trajectory like the shape of the trajectory 87 is registered in the recognition dictionary and “☆” is registered as a recognition result, the trajectories of the trajectories 86 and 87 are recognized as “new ☆” and the display is also “new”. ☆ "

  Thus, according to the present embodiment, as a result of the second authentication, it is possible to provide a sign authentication device that displays a sign trajectory data portion that can be recognized as a character font when displaying sign trajectory data. When the sign trajectory data is displayed as a font, when a third party views it, a plurality of writing methods can be considered from the font. In the case of signature authentication, unlike normal handwritten character recognition, only one writing method registered by the user is allowed. Therefore, when there are multiple characters in the trajectory forming the signature, there are many combinations of writing methods, increasing security. be able to.

  Further, since the signature to be reproduced is a font, a symbol, or the like, it is not the signature data itself registered for authentication. Therefore, there is no problem in security even if the signature shape is leaked due to e-mail interception or the like, which is incorporated in a method of sending out by e-mail or the like and notifying the person. That is, even if the transmitted reproduction signature is input to the signature authentication device, authentication is not performed. By displaying the fonts and symbols, the registered person can remember the registered signature.

  As described above, according to the present invention, when the sign shape is displayed as the authentication result of the second authentication means performed by the user, the sign shape is deformed, or the display timing is set to a speed different from the actual writing speed. Or display as a font. Therefore, the registered user can be reminded of the forgotten sign without being understood by the third party.

It is a figure which shows the structure of an authentication system. It is a figure which shows the structure of an authentication apparatus. It is a figure which shows the function structure of the authentication apparatus which concerns on 1st Embodiment. It is a figure which shows an example of the registered signature. It is a figure showing an example which changed and displayed locus data. It is a figure which shows an example of the input screen for signature authentication. It is a figure which shows an example of the 2nd authentication screen when a signature is forgotten. It is a flowchart which shows the process which concerns on 1st Embodiment. It is a flowchart which shows the process which concerns on 1st Embodiment. It is a figure which shows an example of a signature reproduction screen. It is a flowchart which shows the process which concerns on 1st Embodiment. It is a figure which shows the function structure of the authentication apparatus which concerns on 2nd Embodiment. It is a figure which shows an example of a signature reproduction | regeneration screen. It is a flowchart which shows the process which concerns on 2nd Embodiment. It is a figure which shows the function structure of the authentication apparatus which concerns on 2nd Embodiment. It is a figure which shows an example of the locus | trajectory of the registered signature data, and the screen which recognized and displayed the locus | trajectory. It is a flowchart which shows the process which concerns on 3rd Embodiment.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Information terminal 2 Image display part 3 LAN cable 4 Personal computer 5 Coordinate input part 6 Liquid crystal display part 7 CPU
8 RAM
9 ROM
10 Hard disk 11 Local area network

Claims (4)

Storage processing means for storing handwritten signature registration;
An authentication apparatus, comprising: a display processing unit configured to perform reproduction display by deforming a shape by deleting a part of coordinate points of a sign locus registered at the time of authentication. Storage processing means for storing handwritten signature registration;
Display processing means for displaying the timing for reproducing and displaying the coordinate points in the trajectory at a random timing different from the inputted timing when performing the input reproduction display of the signature trajectory registered at the time of authentication An authentication device. A storage processing step for storing handwritten signature registration;
An authentication method comprising: a display processing step of performing a reproduction display by changing a shape by deleting a part of coordinate points of a sign locus registered at the time of authentication. A storage processing step for storing handwritten signature registration;
A program for causing a computer to execute a display processing step of performing reproduction display by deforming a shape by deleting a part of coordinate points of a sign locus registered at the time of authentication.

Images