JP2013046299A - Portable terminal system for personal identification, portable terminal method for personal identification, and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To reliably provide official personal identification and signature generation on a portable terminal.SOLUTION: A portable terminal electronic certificate obtained by adding a signature value, by the secret key 222 of a second authentication station 2, to data provided with the public key 321 of a portable terminal 3 and the specific number of the portable terminal 3 is stored in the tamper-resistant region of the portable terminal 3. An official electronic certificate copy with a signature obtained by adding a signature value, by the secret key 422 of a tamper-resistant portable recording medium 4, to data provided with an official electronic certificate 424 and the specific number extracted from the portable terminal electronic certificate is stored in the tamper-resistant region of the portable terminal 3.

Description

  The present invention relates to a personal identification portable terminal system, a personal identification portable terminal method, and a program.

  In the past, identity verification services using tamper-resistant portable recording media such as IC cards for public personal identification (hereinafter referred to as “IC cards”) have been specified and implemented as public personal identification services. In addition, various public services that use the Basic Resident Register Card (Juki Card) as an IC card for identity verification and signature generation have been introduced to local governments, enabling the digitization of applications when moving or the finalization of tax returns. (For example, Non-Patent Document 1). The Juki card uses a PKI-based signature based on public key cryptography to ensure that there is no identity verification or falsification of the document, and the tamper-resistant IC inside the Juki card is used when generating the signature. The signature value is calculated using the private key stored in the chip, and the data with the signature value is presented. On the receiving side, the signature value is verified to confirm the identity of the data creation and whether the data has been tampered with. be able to.

“Public Personal Authentication Service Portal Site”, Public Personal Authentication Service Prefectural Council, [online], [Search July 15, 2011], Internet <http://www.jpki.go.jp/>

  However, since the personal identification method using the prior art is a method using an IC card, a public personal authentication service using a mobile terminal such as a mobile phone cannot be realized. In particular, since a method for safely porting public personal information inside an IC card to a mobile terminal has not been established, it has been difficult to reliably provide public identification and signature generation on a mobile terminal. It was.

  The present invention has been made in view of the above, and is guaranteed by a public certificate authority in a portable terminal without porting the secret key of a portable recording medium having tamper resistance such as an IC card to the portable terminal. Using the personal information of portable recording media with tamper resistance and personal information (such as mobile phone numbers) that are not guaranteed by public certificate authorities, the reliability is as high as that of portable recording media with tamper resistance. Providing technology to realize secured identity verification and signature generation.

In order to solve the above-described problem, a personal identification personal digital assistant system according to the present invention includes:
A tamper-resistant portable recording medium having a first certificate authority, a public electronic certificate signed with a private key of the first certificate authority, a portable terminal having a tamper-resistant area, and a second A personal identification terminal device comprising a certificate authority of
The second certificate authority is
In the data including the public key of the portable terminal and the unique number of the portable terminal, a portable terminal electronic certificate attached with a signature value by the secret key of the second certificate authority is generated and transmitted to the portable terminal,
The mobile terminal is
Storing the portable terminal electronic certificate in the tamper-resistant area;
The portable terminal electronic certificate and the portable terminal side identification information are transmitted to the portable recording medium having the tamper resistance,
A portable recording medium having the tamper resistance,
The person is verified by the personal identification information on the mobile terminal side,
Based on the identity verification, data including the public electronic certificate and the unique number extracted from the portable terminal electronic certificate is signed with a secret key of the portable recording medium having the tamper resistance. A signed public electronic certificate copy attached is generated and sent to the mobile device,
The mobile terminal further includes
Storing the signed public electronic certificate copy in the tamper-resistant area;
The portable terminal side identification information is stored in the tamper-resistant region as information for identification that is necessary when transmitting the portable terminal electronic certificate to the opposite device.

In addition, the personal identification method mobile terminal method according to the present invention includes:
A tamper-resistant portable recording medium having a first certificate authority, a public electronic certificate signed with a private key of the first certificate authority, a portable terminal having a tamper-resistant area, and a second A personal identification terminal device comprising a certificate authority of
The second certificate authority is
Generating a portable terminal electronic certificate with a signature value added to the data including the public key of the portable terminal and the unique number of the portable terminal using the secret key of the second certificate authority, and transmitting the certificate to the portable terminal; ,
The mobile terminal is
Storing the portable terminal electronic certificate in the tamper-resistant region;
Transmitting the portable terminal electronic certificate and portable terminal side identification information to a portable recording medium having the tamper resistance;
A portable recording medium having the tamper resistance,
Verifying the identity by the mobile terminal side identity identification information;
Based on the identity verification, data including the public electronic certificate and the unique number extracted from the portable terminal electronic certificate is signed with a secret key of the portable recording medium having the tamper resistance. Generating a signed public electronic certificate copy attached and sending it to the mobile terminal;
The mobile terminal further includes
Storing the signed public electronic certificate copy in the tamper resistant area;
Storing the personal identification information on the mobile terminal side in the tamper-resistant region as personal identification information required when transmitting the mobile terminal electronic certificate to the opposite device;
It is characterized by including.

The program according to the present invention is
A tamper-resistant portable recording medium having a first certificate authority, a public electronic certificate signed with a private key of the first certificate authority, a portable terminal having a tamper-resistant area, and a second A computer functioning as a portable terminal in a portable terminal system for personal identification comprising a certificate authority of
Receiving the mobile terminal electronic certificate in which the signature value is attached to the data including the public key of the mobile terminal and the unique number of the mobile terminal with the secret key of the second certificate authority; and Procedure to store in tamper-resistant area,
A procedure for transmitting the portable terminal electronic certificate and portable terminal side identification information to a portable recording medium having the tamper resistance;
Based on the identity verification by the personal identification information on the mobile terminal side, the portable record having the tamper resistance is included in the data including the public electronic certificate and the unique number extracted from the mobile terminal electronic certificate. A procedure for receiving a signed public digital certificate copy signed with the medium's private key;
Storing the signed public electronic certificate copy in the tamper resistant area;
Storing the portable terminal side identification information in the tamper-resistant region as identification information necessary for transmitting the portable terminal electronic certificate to the opposite device;
Is executed.

  According to the personal identification portable terminal system, the personal identification portable terminal method and the program of the present invention, in the portable terminal, the portable key of the portable recording medium having tamper resistance such as an IC card is ported to the portable terminal. Tamper resistance using personal information on portable recording media with tamper resistance guaranteed by public certificate authorities and personal information not guaranteed by public certificate authorities (mobile phone number such as mobile phone number) It is possible to realize public identity verification and signature generation with high reliability as high as identity verification using a portable recording medium equipped with.

It is a block diagram showing the structure of the personal identification personal digital assistant system which concerns on one Embodiment of this invention. It is a flowchart which shows operation | movement of the portable terminal system for identity verification which concerns on one Embodiment of this invention. It is a figure which shows each data example communicated in the portable terminal system for identifications which concerns on one Embodiment of this invention. It is a figure which shows the copy request | requirement log | history in the portable terminal system for identifications which concerns on one Embodiment of this invention. It is a block diagram in the personal identification of the portable terminal system for personal identification which concerns on one Embodiment of this invention. It is a flowchart which shows the operation example 1 of the personal identification of the portable terminal system for personal identification which concerns on one Embodiment of this invention. It is a flowchart which shows the operation example 2 of the personal identification of the portable terminal system for personal identification which concerns on one Embodiment of this invention. It is a flowchart which shows the operation example 3 of the personal identification of the portable terminal system for personal identification which concerns on one Embodiment of this invention. It is a flowchart which shows the operation example 4 of the personal identification of the portable terminal system for personal identification which concerns on one Embodiment of this invention. It is a figure which shows the example of data which a portable terminal produces | generates in the portable terminal system for identity verification which concerns on one Embodiment of this invention.

  Embodiments of the present invention will be described below.

(Embodiment)
FIG. 1 is a block diagram showing the configuration of a personal identification personal digital assistant system according to an embodiment of the present invention. The personal identification portable terminal system according to Embodiment 1 of the present invention includes a first certificate authority 1, which is a public certificate authority, a second certificate authority 2, a portable terminal 3, and tamper resistance. A portable recording medium 4 is provided.

  The first certificate authority 1 includes a control unit 11, a storage unit 12, and a communication unit 13. The control unit 11 performs public electronic certificate issuance control in the first certificate authority 1 and other various controls. Specifically, the control unit 11 issues a public electronic certificate by signing the public key 421 of the portable recording medium 4 having tamper resistance with the private key 122.

  The storage unit 12 includes a public key 121 of the first certificate authority 1, a private key 122 corresponding to the public key 121, and a revocation list 123 of a public electronic certificate authenticated by the first certificate authority 1. . The public electronic certificate revocation list 123 has revoked the public electronic certificate at the request of the user when the public electronic certificate expires or the public electronic certificate is lost. In this case, the public electronic certificate is a list managed as revoked.

  The communication unit 13 transmits the public key 121 and the revocation list 123 to the second certificate authority 2. The communication unit 13 communicates with the second certificate authority 2 preferably via the Internet.

  The second certificate authority 2 includes a control unit 21, a storage unit 22, and a communication unit 23. The second certificate authority 2 is preferably operated by a mobile phone operator.

  The control unit 21 performs issuance control of the portable terminal electronic certificate and other various controls. Specifically, the control unit 21 generates a signature value of data including the public key 321 of the portable terminal 3 and the unique number of the portable terminal 3 by using the secret key 222 of the second certification authority 2 and stores the signature value in the data. In addition, the mobile terminal electronic certificate related to the mobile terminal 3 is generated. The unique number of the mobile terminal 3 is preferably the telephone number of the mobile terminal 3.

  The control unit 21 verifies the signature of the public electronic certificate in the public electronic certificate copy with the signature received from the mobile terminal 3 based on the public key 121 received from the first certificate authority 1. The control unit 21 adds a signature verification result to a signature-added public electronic certificate copy, which will be described later, and adds a signature value with the private key 222 to generate a signed public digital certificate copy (verified).

  The storage unit 22 includes a public key 221 of the second certificate authority 2, a private key 222 corresponding to the public key 221, and a revocation list 223 of the portable terminal electronic certificate authenticated by the second certificate authority 2. . The revocation list 223 shows the mobile terminal electronic certificate according to a request from the user when the mobile terminal electronic certificate expires, each mobile terminal electronic certificate is lost, or the mobile terminal 3 is changed. When revoked, the portable terminal electronic certificate is a list that is managed as revoked.

  Note that the public key 221 of the second certification authority 2 is preferably signed by a root certification authority, so that a third-party certification authority can masquerade as the second certification authority 2. To prevent.

  The communication unit 23 requests the public key 121 of the first certificate authority 1 from the first certificate authority 1, and receives the public key 121 and the revocation list 123 from the first certificate authority 1. Further, the communication unit 23 receives from the mobile terminal 3 the public key 321 of the mobile terminal 3, the unique number of the mobile terminal 3, and a signed public electronic certificate copy to be described later. The communication unit 23 transmits a mobile terminal electronic certificate and a signed public electronic certificate copy (verified), which will be described later, to the mobile terminal 3. The communication unit 23 communicates with the first certificate authority 1 and the portable terminal 3 preferably via the Internet.

  The mobile terminal 3 includes a control unit 31, a storage unit 32, and a communication unit 33. The control unit 31 generates a key pair of the public key 321 and the secret key 322 of the mobile terminal 3. In addition, the control unit 31 transmits a copy request for public personal information to the portable recording medium 4 having tamper resistance via the communication unit 33.

  In addition, the control unit 31 receives input of personal identification information on the mobile terminal side necessary for obtaining a copy of the public personal information, based on input from the user. And the control part 31 encrypts this portable terminal side identification information with the public key 421 acquired from the portable recording medium 4 provided with tamper resistance. Preferably, the personal identification information on the portable terminal side is a password or biometric authentication information, but is not limited thereto.

  In addition, the control unit 31 stores the portable terminal electronic certificate received from the second certificate authority 2 in the storage unit 32. When the control unit 31 receives a signed public electronic certificate copy (verified), which will be described later, the public key 421 provides tamper resistance to a signed public electronic certificate copy (verified), which will be described later. The signature verification of the signature by the private key 422 of the portable recording medium 4 is performed. In addition, the control unit 31 stores the signed public electronic certificate copy (verified) in the storage unit 32.

  The storage unit 32 includes a tamper-resistant area, and stores a public key 321 generated by the control unit 31 and a secret key 322. The storage unit 32 also stores the portable terminal electronic certificate and a signed public electronic certificate copy (verified). Preferably, the storage unit 32 of the mobile terminal 3 is a UIM card.

  The communication unit 33 transmits the unique number of the mobile terminal 3 and the public key 321 of the mobile terminal 3 to the second certificate authority 2. The communication unit 33 receives the portable terminal electronic certificate from the second certificate authority 2.

  In addition, the communication unit 33 transmits the encrypted personal identification information on the mobile terminal side to the portable recording medium 4 having tamper resistance. When the communication unit 33 receives the success notification based on the result of the collation based on the personal identification information on the mobile terminal side, the communication unit 33 of the mobile terminal 3 reads the mobile terminal electronic certificate stored in the storage unit 32 and the current date and time. (Hereinafter referred to as “copy request date”) is transmitted to the portable recording medium 4 having tamper resistance, a set of data to which the signature value by the secret key 322 is attached.

  In addition, the communication unit 33 receives a signed public electronic certificate copy to be described later from the portable recording medium 4 having tamper resistance. Then, the communication unit 33 transmits the received signed public electronic certificate copy to the second certificate authority 2.

  The communication unit 33 also receives a signed public electronic certificate copy (verified) from the second certificate authority 2.

  Preferably, communication between the portable terminal 3 and the second certificate authority 2 is performed using a secure wireless communication network. Preferably, communication between the portable terminal 3 and the portable recording medium 4 having tamper resistance is performed when the portable terminal 3 operates in the reader / writer mode.

  The portable recording medium 4 having tamper resistance includes a control unit 41, a storage unit 42, and a communication unit 43. The portable recording medium 4 having tamper resistance is preferably a personal authentication IC card, but is not limited thereto.

  Upon receiving a public personal information copy request from the mobile terminal 3, the control unit 41 transmits a request for personal identification information on the mobile terminal side to the mobile terminal 3 via the communication unit 43. Then, when receiving the encrypted portable terminal side identification information from the portable terminal 3, the control unit 41 decrypts the portable terminal side identification information with the secret key 422. Then, the control unit 41 collates the obtained personal identification information on the mobile terminal side with the personal identification information stored in the storage unit 42 in advance.

  Further, the control unit 41 verifies the signature value of the portable terminal electronic certificate with the public key 423 of the second certificate authority 2. Further, the control unit 41 stores the copy request date and time and the mobile terminal unique number of the mobile terminal 3 as the copy request history in the storage unit 42. In addition, the control unit 41 assigns a signature value with the secret key 422 to the data including the public electronic certificate 424 received from the mobile terminal 3, the copy request date and time, and the mobile terminal unique number. Data including the public electronic certificate 424, the copy request date and time, the mobile terminal unique number, and the signature value is referred to as “signed public electronic certificate copy”.

  The storage unit 42 includes a public key 421 of the portable recording medium 4 having tamper resistance, a secret key 422 corresponding to the public key 421, a public key 423 of the second certificate authority 2, and a first authentication. And a public electronic certificate 424 issued by the station 1. These pieces of information are safely stored inside the tamper resistant area of the storage unit 42. The public key 423 of the second certificate authority 2 is preferably secure and reliable, for example, if it is installed in advance at the store of the mobile phone operator when the second certificate authority 2 is a mobile phone operator. Stored in the storage unit 42 by various methods.

  The communication unit 43 receives from the mobile terminal 3 a public personal information copy request and the encrypted mobile terminal side identification information. If the verification based on the identification information received from the mobile terminal 3 is successful, the communication unit 43 transmits a notification that the verification is successful, that is, a success notification to the mobile terminal 3. In addition, the communication unit 43 receives a set of data in which a signature value by the secret key 322 is added to the data including the mobile terminal electronic certificate and the copy request date and time. Then, the communication unit 43 transmits a signed public electronic certificate copy to the portable terminal 3 based on the result of the signature examination or the like for the data set.

  Here, in order to function as the portable terminal 3 in the portable terminal system for personal identification, a computer can be preferably used, and such a computer stores a program describing processing contents for realizing each function of the portable terminal 3. This can be realized by storing the program in a storage unit of the computer and reading and executing the program by a central processing unit (CPU) of the computer.

  Next, the operation of the personal identification personal digital assistant system according to the present invention will be described with reference to the flowchart shown in FIG.

  First, the control unit 31 of the mobile terminal 3 generates a key pair of the public key 321 and the secret key 322 of the mobile terminal 3 (Step S1). The control unit 31 stores the key pair of the public key 321 and the secret key 322 in the storage unit 32. Preferably, the control unit 31 stores the key pair of the public key 321 and the secret key 322 in the tamper resistant area of the storage unit 32.

  Next, the communication unit 33 of the mobile terminal 3 transmits the public key 321 and the unique number of the mobile terminal 3 to the second certificate authority 2 (step S2). Preferably, the unique number of the portable terminal 3 is the telephone number of the portable terminal 3, but is not limited to this.

  Subsequently, when the communication unit 23 of the second certification authority 2 receives the public key 321 and the unique number of the portable terminal 3, the control unit 21 of the second certification authority 2 performs the public key 321 and the portable terminal 3. The signature value of the data including the unique number is generated by the secret key 222 of the second certificate authority 2 and attached to the data (step S3). The data with the signature value becomes a portable terminal electronic certificate related to the portable terminal 3.

  FIG. 3A shows an example of a portable terminal electronic certificate. In the example of the portable terminal electronic certificate shown in FIG. 3A, “090-1234-5678” as the portable terminal unique number, “0xb364...” As the public key 321 of the portable terminal 3, the second certificate authority 2 “0x1c97...” Is shown as the signature value by the private key 222 of the respective.

  Subsequently, the communication unit 23 of the second certificate authority 2 transmits the portable terminal electronic certificate to the portable terminal 3 (step S4).

  When the communication unit 33 of the mobile terminal 3 receives the mobile terminal electronic certificate, the control unit 31 of the mobile terminal 3 stores the mobile terminal electronic certificate in the storage unit 32 (step S5). The control unit 31 stores the portable terminal electronic certificate in the tamper resistant area of the storage unit 32.

  Subsequently, the control unit 31 of the portable terminal 3 transmits a copy request for public personal information to the portable recording medium 4 having tamper resistance via the communication unit 33 (step S6). Preferably, the portable terminal 3 transmits and receives various types of information by operating in a card reader / writer mode of NFC (Near Field Communication). Note that the communication method between the portable terminal 3 and the portable recording medium 4 having tamper resistance is not limited to this, and communication may be performed using BlueTooth (registered trademark), infrared communication, or the like.

  Subsequently, when the communication unit 43 of the portable recording medium 4 with tamper resistance receives a copy request for public personal information, the control unit 41 of the portable recording medium 4 with tamper resistance The request for identification information and the public key 421 are transmitted to the mobile terminal 3 via the communication unit 43. (Step S7).

  Subsequently, the control unit 31 of the mobile terminal 3 receives input of personal identification information on the mobile terminal side by a user input. Then, the control unit 31 encrypts the personal identification information on the mobile terminal side with the public key 421 (step S8). Preferably, the personal identification information on the mobile terminal side is a password (PIN) or biometric authentication information, but is not limited thereto.

  Subsequently, the communication unit 33 transmits the encrypted personal identification information on the mobile terminal side to the portable recording medium 4 having tamper resistance (step S9).

  When the communication unit 43 of the portable recording medium 4 with tamper resistance receives the encrypted personal identification information on the portable terminal side, the control unit 41 of the portable recording medium 4 with tamper resistance The mobile terminal side identification information is decoded by 422 (step S10).

  Subsequently, the control unit 41 collates the personal identification information obtained by decoding with the personal identification information stored in the storage unit 42 in advance (step S11). Preferably, the personal identification information is a password or biometric authentication information, but is not limited thereto. If the verification is successful, the process proceeds to step S12. If the verification fails, the process ends.

  When the collation in step S11 is successful, the communication unit 43 transmits a notification that the collation is successful, that is, a success notification to the mobile terminal 3 (step S12).

  When the communication unit 33 of the mobile terminal 3 receives the success notification, the communication unit 33 of the mobile terminal 3 uses the private key 322 to store the data including the mobile terminal electronic certificate and the copy request date / time stored in the storage unit 32. The data set with the signature value is transmitted to the portable recording medium 4 having tamper resistance (step S13). An example of data transmitted at this time is shown in FIG.

  In the data example shown in FIG. 3B, “090-1234-5678” as the mobile terminal unique number, “0xb364...” As the public key 321 of the mobile terminal 3, and the signature value by the second certificate authority 2 , “0x1c97...”, “2011/4/10 10:32:43” as the copy request date and time, and “0xf65a” as the signature value by the private key 322 of the portable terminal 3. Among these, the mobile terminal unique number, the public key 321 of the mobile terminal 3, and the signature value by the second certificate authority 2 correspond to the mobile terminal electronic certificate.

  When the communication unit 43 of the portable recording medium 4 having tamper resistance receives the set of data, the control unit 41 of the portable recording medium 4 having tamper resistance has the public key of the second certificate authority 2. By 423, the signature value of the portable terminal electronic certificate is verified (step S14). Note that the portable recording medium 4 having tamper resistance acquires the public key 423 of the second certificate authority 2 from the second certificate authority 2 in advance. The public key 423 of the second certificate authority 2 and the public key 221 are the same public key. If the signature verification is successful, the process proceeds to step S15. If it fails, the process ends.

  If the signature verification in step S14 is successful, it is confirmed that the mobile terminal unique number has not been falsified and is authentic. In this case, the control unit 41 stores the copy request date and time and the mobile terminal unique number of the mobile terminal 3 as the copy request history in the storage unit 42 (step S15).

  FIG. 4 shows a copy request history stored in the storage unit 42. In FIG. 4, "2011/4/10 10:32:43" is stored as the copy request date and time, and "090-1234-5678" is stored as the copy destination portable terminal unique number.

  Subsequently, the control unit 41 assigns a signature value to the data including the public electronic certificate 424, the copy request date and time, and the mobile terminal unique number using the private key 422, and copies the signed public electronic certificate. Generate (step S16).

  FIG. 3C shows an example of a signed public electronic certificate copy. In FIG. 3C, “0x825c...” As the public key 421 of the portable recording medium 4 having predetermined “name, address, date of birth, gender” as personal information, and tamper resistant, "0xd34a ..." as the signature value of the certificate authority 1, "2011/4/10 10:32:43" as the copy request date and time, "090-1234-5678" as the mobile terminal unique number, and tamper resistance “0x6c7e...” Is shown as a signature value by the private key 422 of the portable recording medium 4. Among these, the personal information, the public key 421 of the portable recording medium 4 having tamper resistance, and the signature value of the first certificate authority 1 correspond to the public electronic certificate 424.

  And the communication part 43 transmits a public electronic certificate copy with a signature to the portable terminal 3 (step S17).

  Subsequently, when the communication unit 33 of the portable terminal 3 receives the signed public electronic certificate copy from the tamper-resistant portable recording medium 4, the communication unit 33 receives the signed public electronic certificate copy. The data is transmitted to the second certificate authority 2 (step S18).

  When the communication unit 23 of the second certificate authority 2 receives the signed public electronic certificate copy, the communication unit 23 requests the first certificate authority 1 for the public key 121 of the first certificate authority 1. (Step S19). Further, the communication unit 23 requests the first certificate authority 1 to transmit the revocation list 123. When receiving the request, the communication unit 13 of the first certificate authority 1 transmits the public key 121 and the revocation list 123 to the second certificate authority 2 (step S20).

  When the communication unit 23 of the second certificate authority 2 receives the public key 121 and the revocation list 123, the control unit 21 of the second certificate authority 2 verifies the signature of the signature value of the public electronic certificate 424 (step) S21). If the signature verification is successful, the process proceeds to step S22. If signature verification fails, the process ends. If the public electronic certificate 424 has expired, the process ends.

  When the signature verification in step S21 is successful, the control unit 21 adds the signature verification result to the signed public electronic certificate copy, adds the signature value with the private key 222, and verifies the signed public electronic certificate copy (verification). Generated). Since the signature verification in step S22 is successful, it is confirmed that the public electronic certificate 424 in the signed public electronic certificate copy is authentic. The communication unit 23 transmits the public electronic certificate copy (verified) to the mobile terminal 3 (step S22).

  FIG. 3D is an example of a signed public electronic certificate copy (verified). In FIG. 3D, “0x825c...” As the public key 421 of the portable recording medium 4 having predetermined “name, address, date of birth, sex” as personal information, tamper resistance, and the first "0xd34a ..." as the signature value of the certificate authority 1, "2011/4/10 10:32:43" as the copy request date and time, "090-1234-5678" as the mobile terminal unique number, and tamper resistance “0x6c7e...” As the signature value by the private key 422 of the portable recording medium 4, “OK” as the signature verification result of the second certificate authority 2, and “signature value by the secret key 222 of the second certificate authority 2” 0x743d... "Are shown respectively. Among these, the personal information, the public key 421 of the portable recording medium 4 having tamper resistance, the signature value of the first certificate authority 1, the copy request date and time, the mobile terminal unique number, and the tamper resistance. The signature value by the private key 422 of the portable recording medium 4 provided corresponds to a signed public electronic certificate copy.

  When the communication unit 33 of the mobile terminal 3 receives the signed public electronic certificate copy (verified), the control unit 31 of the mobile terminal 3 uses the public key 421 to copy the signed public electronic certificate (verified). The signature verification of the signature using the private key 422 of the portable recording medium 4 having tamper resistance is performed (step S23). If the signature verification is successful, the process proceeds to step S24. If signature verification fails, the process ends.

  When the signature verification is successful in step S23, the control unit 31 stores the signed public electronic certificate copy (verified) in the storage unit 32 (step S24). Since the signature verification in step S24 has been successful, it is confirmed that the copy has been transmitted to the mobile terminal unique number at the copy request date and time described in the signed public electronic certificate copy. Preferably, the control unit 31 stores a signed public electronic certificate copy (verified) in the tamper resistant area of the storage unit 32. At this time, the control unit 31 stores the personal identification information on the portable terminal side used in step S8 in the storage unit 32 as information for accessing the signed public electronic certificate copy (verified). Complete.

  In step S13, the communication unit 33 of the portable terminal 3 transmits the copy request date and time. However, for example, when the network synchronization between the portable terminal 3 and the wireless base station (not shown) is released, the copy request date and time is displayed. It does not have to be issued. In this case, the data of the copy request date and time is not included in the signed public electronic certificate copy and signed public electronic certificate copy (verified). In this case, in step S15, the control unit 41 of the portable recording medium 4 having tamper resistance does not store the copy request history in the storage unit.

  The contents of the signed public electronic certificate copy (verified) are not limited to this. The public key 421 of the portable recording medium 4 with tamper resistance, the signature value of the first certificate authority 1 and the signature value of the portable recording medium 4 with tamper resistance are signed public electronic certificates. It does not have to be included in the contents of the copy (verified). In this case, the contents of the signed public electronic certificate copy (verified) include personal information, copy request date and time, portable terminal unique number, verification result of the second certificate authority 2, and second certificate authority. 2 with a signature value of the second secret key 222.

  In addition, in the signed public electronic certificate copy (verified), in FIG. 3D, the personal information includes predetermined “name, address, date of birth, gender”, but is not limited thereto. . For example, based on the input operation of the user, the portable terminal 3 copies the personal information that is not desired to be disclosed out of the personal information included in the signed public electronic certificate copy (verified). It may not be included in (verified).

  Specifically, when not including in the signed public electronic certificate copy (verified), the communication unit 33 of the portable terminal 3 transmits the signed public electronic certificate copy in step S18. At the same time, a request for personal information not included in the signed public electronic certificate copy (verified) is transmitted to the second certificate authority 2. Then, the control unit 21 of the second certificate authority 2 applies the second certificate authority to information (subset information) excluding personal information requested from the portable terminal 3 in the signed public electronic certificate copy. A signature value and a signature verification result are attached using the second private key 222, and a signed public electronic certificate copy (verified) is generated. For example, the communication unit 33 of the portable terminal 3 makes a request for personal information that does not include the date of birth and gender in the signed public electronic certificate copy (verified) based on the input from the user. Send to. Then, the control unit 21 of the second certificate authority 2 includes a signed public electronic certificate copy (verified) that includes a predetermined “name and address” as personal information and does not include “birth date and gender”. ) Is generated. In addition, for example, the communication unit 33 of the mobile terminal 3 may transmit a request not to include information below the municipality in the “address” to the second certification authority 2 based on the input from the user. . In this case, the signed public electronic certificate copy (verified) includes only prefecture information as address information.

  Then, the communication unit 23 of the second certificate authority 2 transmits the signed public electronic certificate copy (verified) to the mobile terminal 3. In this way, it is possible to limit the content of personal information included in a signed public electronic certificate copy (verified), and the mobile terminal 3 can provide personal information to be presented at the time of personal identification operation described later. Can be limited to some personal information. Also, the mobile terminal 3 prepares a plurality of signed public electronic certificate copies (verified) with different ranges of personal information included in advance, and the signed public electronic certificate is used in the personal identification operation described later. You may make it use a copy (verified) properly based on the disclosure range of personal information.

  Although the second certificate authority 2 performs signature verification using the public key 121 of the first certificate authority 1 in steps S19 to S21, the signature verification need not be performed. When the signature verification is not performed, the opposing device 5 performs the signature verification using the public key 121 of the first certificate authority 1 in the operation of the personal authentication or signature generation described below. In this case, what is stored in the storage unit 32 of the portable terminal 3 is a signed public electronic certificate copy.

(Configuration of identity verification in this system)
Next, FIG. 5 shows a configuration and an operation in the case where the personal identification is performed in the personal identification portable terminal system according to the present invention. The same components as those in FIG. 1 are denoted by the same reference numerals.

  As shown in FIG. 5, when authenticating a person, the first certificate authority 1 (not shown), the second certificate authority 2, the portable terminal 3, and the counter device 5 are used. The counter device 5 is preferably configured by a reader / writer device, a server device, or a request-side mobile terminal, but is not limited thereto.

  The communication unit 23 of the second certificate authority 2 transmits the public key 221 of the second certificate authority 2 to the opposite device 5 based on the request from the opposite device 5.

  The control unit 31 of the mobile terminal 3 performs collation processing for personal identification based on the decoding of the mobile terminal side personal identification information and the mobile terminal side personal identification information obtained by the decoding. Alternatively, the control unit 31 acquires personal identification information on the mobile terminal side based on input from the user, and performs verification processing for personal identification.

  In addition, the control unit 31 adds non-public personal information, date and time, or a random number to the signed public electronic certificate copy (verified), and adds the signature using the private key 322 of the portable terminal 3.

  The communication unit 33 of the mobile terminal 3 transmits a request for personal identification information on the mobile terminal side to the opposite device 5 with respect to the collation processing for the personal identification. Then, the encrypted personal identification information on the portable terminal side is received from the opposite device 5.

  Further, the communication unit 33 transmits the portable terminal electronic certificate to the opposite device 5 based on the result of the collation process for identifying the person. In addition, the communication unit 33 adds non-public personal information, date / time or random number to the signed public electronic certificate copy (verified), and adds the signature with the private key 322 of the portable terminal 3 to the opposite device. Send to 5.

  The opposing device 5 includes a control unit 51, a storage unit 52, and a communication unit 53.

  The control unit 51 performs various controls related to the opposing device 5. For example, the control unit 51 receives input of personal identification information on the mobile terminal side by user input. Then, the control unit 51 encrypts the personal identification information on the mobile terminal side with the public key 321. The control unit 51 communicates with the second certificate authority 2 via the communication unit 53. Then, the control unit 51 confirms whether the portable terminal electronic certificate has been revoked based on the revocation list 223 stored in the storage unit 22 of the second certificate authority 2. The control unit 51 also includes a portable terminal unique number described in the portable terminal electronic certificate acquired from the portable terminal 3 and a signed portable electronic certificate (verified) portable terminal unique number acquired from the portable terminal 3. Is determined to match. Further, the control unit 51 generates a date and time or a random number. When the date and time information is generated, the control unit 51 generates the information by a method using GPS information or a method of supplying time information from the network side.

  The storage unit 52 stores the mobile terminal electronic certificate acquired from the mobile terminal 3, and stores various other information.

  The communication unit 53 communicates with the first certificate authority 1, the second certificate authority 2, and the mobile terminal 3. The communication unit 53 requests the first certificate authority 1 and the second certificate authority 2 to transmit the public key 121 and the public key 221, respectively. The communication unit 53 receives the public key 121 and the public key 221 from the first certificate authority 1 and the second certificate authority 2.

  Further, the communication unit 53 transmits a request for a portable terminal electronic certificate to the portable terminal 3. Further, the communication unit 53 receives a request for personal identification information on the mobile terminal side and the public key 321 from the mobile terminal 3. Then, the communication unit 53 transmits the encrypted mobile terminal side identification information to the mobile terminal 3.

  Further, the communication unit 53 receives the mobile terminal electronic certificate from the mobile terminal 3. In addition, the communication unit 53 transmits the date and time or the random number generated by the control unit 51. The communication unit 53 receives a signed public electronic certificate copy (verified) from the mobile terminal 3.

(Operation example 1 of identity verification)
Next, with regard to the portable terminal system for personal identification according to the present invention, an operation example 1 of personal identification will be described with reference to the flowchart shown in FIG.

  First, the communication unit 53 of the opposite apparatus 5 transmits a request for the public key 221 to the second certificate authority 2 (step S31). When the communication unit 23 of the second certificate authority 2 receives the request, the communication unit 23 transmits the public key 221 stored in the storage unit 22 to the opposing device 5 (step S32).

  Next, the communication unit 53 of the opposite apparatus 5 transmits a request for the public key 121 to the first certificate authority 1 (step S33). When the communication unit 13 of the first certificate authority 1 receives the request, the communication unit 13 transmits the public key 121 stored in the storage unit 12 to the opposing device 5 (step S34).

  Subsequently, the communication unit 53 of the opposite device 5 transmits a request for the portable terminal electronic certificate to the portable terminal 3 (step S35).

  When the communication unit 33 of the mobile terminal 3 receives the request for the mobile terminal electronic certificate, the communication unit 33 transmits the request for the personal identification information on the mobile terminal side and the public key 321 to the opposite device 5 (step S36). .

  When the communication unit 53 of the opposing device 5 receives the request for the personal identification information on the mobile terminal side and the public key 321, the control unit 51 of the opposing device 5 receives the input of the personal identification information on the mobile terminal side by the user's input. Then, the control unit 31 encrypts the personal identification information on the mobile terminal side with the public key 321 (step S37). Subsequently, the communication unit 53 transmits the encrypted portable terminal side identification information to the portable terminal 3 (step S38).

  When the communication unit 33 of the portable terminal 3 receives the encrypted portable terminal side identification information, the control unit 31 of the portable terminal 3 decrypts the encrypted portable terminal side identification information with the secret key 322. (Step S39).

  Subsequently, the control unit 31 collates the decrypted mobile terminal side identification information based on the mobile terminal side identification information stored in the storage unit 32 in step S24 of FIG. 2 (step S40). If the verification is successful, the process proceeds to step S41. If the verification fails, the process ends.

  When collation succeeds in step S40, the communication part 33 transmits the portable terminal electronic certificate stored in the memory | storage part 32 to the opposing apparatus 5 (step S41).

  When the communication unit 53 of the opposite device 5 receives the portable terminal electronic certificate, the control unit 51 of the opposite device 5 communicates with the second certificate authority 2 via the communication unit 53. And the control part 51 confirms whether the portable terminal electronic certificate has expired based on the revocation list | wrist 223 stored in the memory | storage part 22 of the 2nd certification | authentication authority 2 (step S42). If the mobile terminal electronic certificate has expired, the process ends.

  Subsequently, when the portable terminal electronic certificate is valid without being revoked, the control unit 51 verifies the signature of the portable terminal electronic certificate with the public key 221 of the second certificate authority 2 (step S43). If the signature verification is successful, it is confirmed that the public key in the portable terminal electronic certificate is authentic. If the title verification is successful, the process proceeds to step S44. If signature verification fails, the process ends.

  If the signature verification is successful in step S43, the control unit 51 generates a date and time or a random number. When the control unit 51 generates the date and time, the date and time information is generated by a method using GPS information or a method of supplying time information from the network side. The communication unit 53 transmits the date and time or a random number to the mobile terminal 3 (step S44). When the date and time information cannot be acquired, such as when reception of GPS is stopped, the control unit 51 generates a random number, and the communication unit 53 transmits the random number to the mobile terminal 3.

  When the communication unit 33 of the mobile terminal 3 receives the date and time or a random number, the control unit 31 of the mobile terminal 3 stores the signed public electronic certificate copy (verified) stored in the storage unit 32 as a private person. Data in which the signature value is added by the secret key 322 to the data in which the information and the date or time or the random number are added is generated (step S45). Preferably, the private personal information is an email address.

  FIG. 7 shows an example of data generated in step S45. In FIG. 7, “0x825c...” As the public key 421 of the portable recording medium 4 having predetermined “name, address, date of birth, sex” as personal information, and tamper resistance, the first certificate authority 1 “0xd34a...”, Copy request date and time “2011/4/10 10:32:43”, portable terminal unique number “090-1234-5678”, portable recording with tamper resistance “0x6c7e...” As the signature value by the private key 422 of the medium 4, “OK” as the signature verification result of the second certificate authority 2, and “0x743d as the signature value by the secret key 222 of the second certificate authority 2. “”, “Xxx@xxx.jp” as private personal information, “2011/6/12 14:12:47” as the date and time issued by the opposite device 5, and the signature value by the private key 322 of the portable terminal 3 0x4efa "are shown, respectively. Among these, the personal information, the public key 421 of the portable recording medium 4 having tamper resistance, the signature value of the first certificate authority 1, the copy request date and time, the mobile terminal unique number, and the tamper resistance. The signature value by the private key 422 of the portable recording medium 4 provided, the verification result by the second certificate authority 2, and the signature value by the secret key 222 of the second certificate authority 2 are the signed public electronic certificate Corresponds to copy (verified).

  Subsequently, the communication unit 33 adds, to the signed public electronic certificate copy (verified), the data obtained by adding the signature value with the private key 322 to the data obtained by adding the non-public personal information and the date and time or the random number, It transmits to the opposite apparatus 5 (step S46).

  Data obtained by adding a signature value using a secret key 322 to the data obtained by adding the private personal information and the date and time or a random number to the signed public electronic certificate copy (verified) Then, the control unit 51 of the opposite apparatus 5 verifies the signature value by the public key 321 acquired in Step S36 with respect to the signature value by the secret key 322 (Step S47). If the signature verification is successful, the signature value is added to the signed public digital certificate copy (verified) by adding the private personal information and the date and time or a random number to the signature with the private key 322. And that the data has not been tampered with. That is, it can be confirmed that the mobile terminal 3 has the secret key 322 and the data has not been tampered with. If the signature verification is successful, the process proceeds to step S48. If signature verification fails, the process ends. In this case, the identity verification has failed.

  If the signature verification is successful in step S47, the control unit 51 copies the mobile terminal unique number described in the mobile terminal electronic certificate acquired in step S41 and the signed public electronic certificate acquired in step S46. It is determined whether the (verified) mobile terminal unique numbers match (step S48). If the mobile terminal unique numbers match, the process is completed assuming that the personal identification is successful. On the other hand, if the mobile terminal unique numbers do not match, the process ends as the identity verification has failed.

  If the mobile terminal unique numbers match, the mobile terminal 3 copies the mobile terminal electronic certificate associated with the mobile terminal 3 and the signed public electronic certificate (verified) corresponding to the mobile terminal electronic certificate. ) Can be confirmed. On the other hand, if the mobile terminal unique numbers do not match, the mobile terminal 3 has a mobile terminal electronic certificate associated with the mobile terminal 3 and a signed public electronic certificate copy (verified) that does not correspond to the mobile terminal electronic certificate. ) Can be confirmed.

  As described above, according to the portable terminal system for personal identification in the present invention, the portable terminal 3 can perform public authentication without porting the secret key 122 of the portable recording medium 4 having tamper resistance to the portable terminal 3. Personal information of the portable recording medium 4 with tamper resistance guaranteed by the first certification authority 1 and the personal information not guaranteed by the first certification authority 1 (mobile phone number such as a mobile phone number) By using the portable recording medium 4 having tamper resistance, it is possible to realize the identity verification that ensures the same high reliability as the identity verification.

  That is, according to the personal identification mobile terminal system of the present invention, the personal verification is performed based on the personal identification information on the mobile terminal side, and the mobile terminal 3 has the public key 221 of the second certificate authority 2. Can the signature verification that the digital certificate is authentic, and whether the unique number extracted from the mobile terminal electronic certificate matches the unique number extracted from the signed public digital certificate copy (verified)? By determining whether or not the portable terminal electronic certificate and the signed public electronic certificate copy (verified) are compatible, the portable recording medium 4 having tamper resistance is used. It is possible to realize identity verification that ensures high reliability equivalent to identity verification.

  Note that the counter device 5 acquires the public key 221 from the second certificate authority 2 through steps S31 and S32, and the counter device 5 receives the public key 121 from the first certificate authority 1 through steps S33 and S34. However, the order of steps S31 and S32 and steps S33 and S34 may be reversed. That is, the opposing device 5 may first obtain the public key 121 from the first certificate authority 1 and then obtain the public key 221 from the second certificate authority 2.

  In step S45, when reliable time information cannot be used, the control unit 51 may generate a nonce from a random number or other information.

  If a signed public electronic certificate copy is stored in the storage unit 32 of the portable terminal 3 and the signature verification of the public electronic certificate 424 by the second certificate authority 2 has not been performed, step S45 and In step S <b> 46, the control unit 31 of the mobile terminal 3 performs processing using the signed public electronic certificate copy instead of the signed public electronic certificate copy (verified). In this case, the opposing device 5 also performs signature verification of the public electronic certificate 424 using the public key 121 of the first certificate authority 1 in addition to signature verification using the public key 321 of the portable terminal 3 in step S47. If the signature verification fails, the process ends.

  In the above example, the unique number of the mobile terminal 3 is the telephone number of the mobile terminal 3, but the present invention is not limited to this. In addition, for example, the unique number of the mobile terminal 3 may be a hash value based on the telephone number of the mobile terminal 3, a manufacturing number of the mobile terminal 3, or the like. In addition, when the hash value based on the telephone number of the portable terminal 3 is used as the unique number of the portable terminal 3, the person who has acquired the unique number of the portable terminal 3 is not aware of the telephone number of the portable terminal 3 and is more secure. The system can be configured. When the hash value based on the phone number of the mobile terminal 3 is used, the second certificate authority 2 may have a correspondence table between the phone number of the mobile terminal 3 and the hash value based on the phone number of the mobile terminal 3. . By doing so, the second certificate authority 2 can specify the telephone number from the hash value of the telephone number of the mobile terminal 3 based on the correspondence table when a problem occurs. Can be secured.

(Operation example 2 of identity verification)
Next, with respect to the personal identification portable terminal system according to the present invention, an operation example 2 of personal identification will be described with reference to the flowchart shown in FIG. The same operations as those in the flowchart shown in FIG. 6A are denoted by the same reference numerals, and description thereof is omitted. 6B is different from the operation example 1 in that the mobile terminal 3 inputs the terminal side identification information according to an instruction from the user.

  Similar to the operation in FIG. 6A, in step S35, when the communication unit 53 of the opposite device 5 transmits a request for the portable terminal electronic certificate to the portable terminal 3, the control unit 31 of the portable terminal 3 Based on the instruction from the mobile terminal, the personal identification information on the portable terminal side is input (step S36B). Preferably, the control unit 31 inputs the personal identification information on the portable terminal side based on a user input to a keyboard (not shown) or a fingerprint sensor. The following steps S40 to S48 are the same as those described with reference to FIG.

(Operation example 3 of identity verification)
Next, with reference to the flowchart shown in FIG. 6C, an operation example 3 of the personal identification will be described for the personal identification portable terminal system according to the present invention. The same operations as those in the operation example 1 are denoted by the same reference numerals, and the description thereof is omitted. FIG. 6C is different from Operation Example 1 in that signature target data is used instead of non-public personal information in step S45C and step S46C.

  That is, when the communication unit 33 of the mobile terminal 3 receives the date and time or a random number from the opposite device 5, the control unit 31 of the mobile terminal 3 copies the signed public electronic certificate stored in the storage unit 32 (verified). In addition, data in which a signature value is added by the secret key 322 to the data to which the signature target data and the date / time or random number are added is generated (step S45C). The data to be signed may be any data that is desired to be signed with the private key 322 for transmission to the opposite apparatus 5.

  Subsequently, the communication unit 33 of the portable terminal 3 adds the signature target data and the data obtained by adding the date and time or the random number to the signed public electronic certificate copy (verified), and the data obtained by adding the signature value with the secret key 322. Is transmitted to the opposite apparatus 5 (step S46C). The subsequent steps S47 and S48 are the same as those described with reference to FIG.

(Operation example 4 of identity verification)
Next, with regard to the personal identification portable terminal system according to the present invention, an operation example 4 of personal identification will be described with reference to the flowchart shown in FIG. The same operations as those in the operation example 3 are denoted by the same reference numerals, and description thereof is omitted. The same operations as those in the flowchart shown in FIG. 6C are denoted by the same reference numerals, and description thereof is omitted. 6D is different from the operation example 3 in that the mobile terminal 3 inputs the terminal side identification information in accordance with an instruction from the user.

  Similar to the operation in FIG. 6C, in step S35, when the communication unit 53 of the opposite device 5 transmits a request for the mobile terminal electronic certificate to the mobile terminal 3, the control unit 31 of the mobile terminal 3 Based on the instruction from the mobile terminal, the personal identification information on the portable terminal side is input (step S36D). Preferably, the control unit 31 inputs the personal identification information on the portable terminal side based on a user input to a keyboard (not shown) or a fingerprint sensor. Steps S40 to S48 below are the same as those described with reference to FIG. 6A or 6C, and thus description thereof is omitted.

  Although the present invention has been described based on the drawings and examples, it should be noted that those skilled in the art can easily make various modifications and corrections based on the present disclosure. Therefore, it should be noted that these variations and modifications are included in the scope of the present invention. For example, the functions included in each means, each step, etc. can be rearranged so that there is no logical contradiction, and a plurality of means, steps, etc. can be combined or divided into one. .

DESCRIPTION OF SYMBOLS 1 1st certification authority 11 Control part 12 Storage part 121 Public key 122 Private key 123 Revocation list 13 Communication part 2 2nd authentication authority 21 Control part 22 Storage part 221 Public key 222 Private key 223 Revocation list 23 Communication part 3 Carrying Terminal 31 Control unit 32 Storage unit 321 Public key 322 Secret key 33 Communication unit 4 Portable recording medium 41 with tamper resistance Control unit 42 Storage unit 421 Public key 422 Private key 423 Second certificate authority public key 424 Public Electronic certificate 5 Opposing device 51 Control unit 52 Storage unit 53 Communication unit

Claims (8)

A tamper-resistant portable recording medium having a first certificate authority, a public electronic certificate signed with a private key of the first certificate authority, a portable terminal having a tamper-resistant area, and a second A personal identification terminal device comprising a certificate authority of
The second certificate authority is
In the data including the public key of the portable terminal and the unique number of the portable terminal, a portable terminal electronic certificate attached with a signature value by the secret key of the second certificate authority is generated and transmitted to the portable terminal,
The mobile terminal is
Storing the portable terminal electronic certificate in the tamper-resistant area;
The portable terminal electronic certificate and the portable terminal side identification information are transmitted to the portable recording medium having the tamper resistance,
A portable recording medium having the tamper resistance,
The person is verified by the personal identification information on the mobile terminal side,
Based on the identity verification, data including the public electronic certificate and the unique number extracted from the portable terminal electronic certificate is signed with a secret key of the portable recording medium having the tamper resistance. A signed public electronic certificate copy attached is generated and sent to the mobile device,
The mobile terminal further includes
Storing the signed public electronic certificate copy in the tamper-resistant area;
The mobile terminal system for personal authentication, wherein the personal identification information on the mobile terminal side is stored in the tamper-resistant area as information for personal verification required when transmitting the mobile terminal electronic certificate to the opposite device. .   The personal identification personal digital assistant system according to claim 1, wherein the personal identification information on the mobile terminal side is a password or biometric authentication information. The opposing device is
Request a mobile terminal electronic certificate from the mobile terminal;
The portable terminal is
The personal identification is performed by the personal identification information stored in the tamper-resistant area.
Based on the identity verification, the mobile terminal electronic certificate is transmitted to the opposite device,
The opposing device further includes
Verifying the signature of the portable terminal electronic certificate with the public key of the second certificate authority,
Based on the signature verification, send date and time data or random numbers to the mobile terminal,
The portable terminal is
Sending data with a signature value with the private key of the mobile terminal to the data provided with the signed public electronic certificate copy and the date / time data or the random number to the opposite device,
The opposing device further includes
Verify whether the mobile terminal unique number extracted from the mobile terminal electronic certificate and the mobile terminal unique number extracted from the signed public electronic certificate copy are the same,
The signature verification of the data with the signature value added by the private key of the portable terminal is performed by using the public key of the portable terminal extracted from the portable terminal electronic certificate. Mobile terminal system for identity verification. The second certificate authority is
Obtaining the public key of the first certificate authority;
Obtaining a copy of the signed public electronic certificate from the mobile terminal;
4. The signature verification of the public electronic certificate extracted from the signed public electronic certificate copy with the public key of the first certificate authority is performed. 5. The mobile terminal system for identification described above. The opposing device is
Obtaining the public key of the first certificate authority;
Obtaining a copy of the signed public electronic certificate from the mobile terminal;
4. The signature verification of the public electronic certificate extracted from the signed public electronic certificate copy with the public key of the first certificate authority is performed. 5. The mobile terminal system for identification described above. The opposing device further includes
6. The identity certificate according to claim 1, wherein it is determined whether or not the portable terminal electronic certificate has been revoked based on a revocation list possessed by the second certificate authority. Mobile terminal system. A tamper-resistant portable recording medium having a first certificate authority, a public electronic certificate signed with a private key of the first certificate authority, a portable terminal having a tamper-resistant area, and a second A personal identification terminal device comprising a certificate authority of
The second certificate authority is
Generating a portable terminal electronic certificate with a signature value added to the data including the public key of the portable terminal and the unique number of the portable terminal using the secret key of the second certificate authority, and transmitting the certificate to the portable terminal; ,
The mobile terminal is
Storing the portable terminal electronic certificate in the tamper-resistant region;
Transmitting the portable terminal electronic certificate and portable terminal side identification information to a portable recording medium having the tamper resistance;
A portable recording medium having the tamper resistance,
Verifying the identity by the mobile terminal side identity identification information;
Based on the identity verification, data including the public electronic certificate and the unique number extracted from the portable terminal electronic certificate is signed with a secret key of the portable recording medium having the tamper resistance. Generating a signed public electronic certificate copy attached and sending it to the mobile terminal;
The mobile terminal further includes
Storing the signed public electronic certificate copy in the tamper resistant area;
Storing the personal identification information on the mobile terminal side in the tamper-resistant region as personal identification information required when transmitting the mobile terminal electronic certificate to the opposite device;
A mobile terminal method for personal identification, comprising: A tamper-resistant portable recording medium having a first certificate authority, a public electronic certificate signed with a private key of the first certificate authority, a portable terminal having a tamper-resistant area, and a second A computer functioning as a portable terminal in a portable terminal system for personal identification comprising a certificate authority of
Receiving the mobile terminal electronic certificate in which the signature value is attached to the data including the public key of the mobile terminal and the unique number of the mobile terminal with the secret key of the second certificate authority; and Procedure to store in tamper-resistant area,
A procedure for transmitting the portable terminal electronic certificate and portable terminal side identification information to a portable recording medium having the tamper resistance;
Based on the identity verification by the personal identification information on the mobile terminal side, the portable record having the tamper resistance is included in the data including the public electronic certificate and the unique number extracted from the mobile terminal electronic certificate. A procedure for receiving a signed public digital certificate copy signed with the medium's private key;
Storing the signed public electronic certificate copy in the tamper resistant area;
Storing the portable terminal side identification information in the tamper-resistant region as identification information necessary for transmitting the portable terminal electronic certificate to the opposite device;
A program characterized by having executed.

Images