JP2017174162A - Unauthorized use detection program, unauthorized use detecting method, and terminal device - Google Patents

Abstract

PROBLEM TO BE SOLVED: To issue a warning only when the possibility of an unauthorized use is high.SOLUTION: There are acquired sensor data 11a generated using a sensor device 11 of a terminal device 10 and sensor data 21a generated using a sensor device 21 of a terminal device 20. The sensor data 11a and the sensor data 21a are compared so that the sensor data 11a and 21a satisfy a specific relation detected when the terminal devices 10 and 20 are owned by the same user. If it has been determined that the specific relation is not satisfied and an operation on the terminal device 20 has been detected, the terminal device 10 is caused to output a warning 14.SELECTED DRAWING: Figure 1

Description

  The present invention relates to an unauthorized use detection program, an unauthorized use detection method, and a terminal device.

  Currently, the functions of mobile terminal devices carried by users are becoming more advanced, and important information such as personal information is often handled using terminal devices. Along with this, there is a high risk that the terminal device is illegally used by a third party and is damaged such as leakage of important information. For example, there is a risk of theft that a third party may take away the terminal device while the user leaves the terminal device on a desk or chair. There is also a risk that a third party illegally operates the terminal device on the spot while the user leaves the terminal device and looks away.

  On the other hand, in recent years, the same user sometimes carries a plurality of mobile terminal devices. For example, the same user may carry both a smartphone and a wristwatch-type wearable terminal. Therefore, a security measure in which a plurality of terminal devices are linked can be considered.

  For example, an apparatus control method using a portable device such as a smartphone and a wearable terminal having a biometric authentication function has been proposed. In the proposed apparatus control method, when the biometric authentication is successful, the wearable terminal notifies the mobile device of the authentication success, and the mobile device releases the lock. When the wearable terminal and the mobile device are separated and communication is disconnected, the mobile device locks itself. Further, when the wearable terminal detects that the wearable terminal has left the human body based on a pulse or the like, the wearable terminal notifies the portable device to that effect, and the portable device locks itself.

  An electronic device that has a touch panel and a speaker and reproduces a signal sound such as a buzzer sound or a click sound according to an operation on the touch panel has been proposed. A system including an information processing apparatus having a display and a wireless mouse having a speaker has been proposed. In the proposed system, when the wireless mouse and the information processing apparatus are separated and communication is disconnected, the information processing apparatus turns off the display. Further, when a search command is input to the information processing apparatus, the wireless mouse reproduces sound from the speaker.

JP-A-4-281607 Japanese Patent Laid-Open No. 2003-241896 JP, 2015-121910, A

  As a security measure in which a plurality of terminal devices are linked together, a method is conceivable in which, when an operation on one terminal device is detected, another terminal device outputs a warning. Thereby, when the one terminal device is illegally operated by a third party, the user who possesses the other terminal device can notice the unauthorized use.

  However, even if an operation on the one terminal device is detected, the operation is not always illegal use by a third party. There is a problem that it is troublesome for the user to output a warning from the other terminal device even in normal use.

  In one aspect, an object of the present invention is to provide an unauthorized use detection program, an unauthorized use detection method, and a terminal device that narrow down and warn when the possibility of unauthorized use is high.

  In one aspect, an unauthorized use detection program to be executed by a computer included in a first terminal device or a second terminal device is provided. First sensor data generated using the first sensor device included in the first terminal device, and second sensor data generated using the second sensor device included in the second terminal device. get. When the first sensor data and the second sensor data are compared, and the first sensor data and the second sensor data are owned by the same user of the first terminal device and the second terminal device It is determined whether or not a predetermined relationship detected in the above is satisfied. If it is determined that the predetermined relationship is not satisfied, and an operation on the second terminal device is detected, a warning is output to the first terminal device.

  In one aspect, an unauthorized use detection method performed by the first terminal device or the second terminal device is provided. In one aspect, a terminal device is provided.

  In one aspect, warnings are made narrowed down when there is a high possibility of unauthorized use.

It is a figure which shows the example of the system of 1st Embodiment. It is a figure which shows the system of 2nd Embodiment. It is a figure which shows the hardware example of a portable terminal. It is a figure which shows the hardware example of a wearable terminal. It is a figure which shows the function example of a portable terminal and a wearable terminal. It is a figure which shows the example of an acceleration table. It is a figure which shows the example of an operation table. It is a figure which shows the example of a received signal strength table. It is a figure which shows a warning screen (the 1). It is a figure which shows a warning screen (the 2). It is a flowchart which shows the example of the transmission process by a wearable terminal. It is a flowchart which shows the example of the warning process by a wearable terminal. It is a flowchart which shows the example (the 1) of the state determination process by a portable terminal. It is a flowchart which shows the example (the 2) of the state determination process by a portable terminal. It is a flowchart which shows the example of the leaving state process by a portable terminal. It is a sequence diagram which shows the process example when pairing is cancelled | released. It is a sequence diagram which shows the process example in case pairing is maintained. It is a figure which shows the specific example of the unauthorized use in a neglected state.

Hereinafter, the present embodiment will be described with reference to the drawings.
[First Embodiment]
A first embodiment will be described.

FIG. 1 is a diagram illustrating an example of a system according to the first embodiment.
The system according to the first embodiment includes terminal devices 10 and 20. The terminal devices 10 and 20 are mobile electronic devices that are assumed to be carried by the same user. The terminal devices 10 and 20 may be the same type of electronic device or different types of electronic devices.

  However, it is assumed that the terminal device 20 may be left on a desk or a chair while on the go, whereas the terminal device 10 is less likely to be left on the go than the terminal device 20. As the terminal device 20, for example, a smartphone, a tablet terminal, a PDA (Personal Digital Assistant), a notebook PC (Personal Computer), or the like can be considered. As the terminal device 10, for example, a wearable terminal such as a smart watch can be considered.

  The terminal devices 10 and 20 implement security measures against the risk that a third party illegally uses the terminal device 20 while the user leaves the terminal device 20 and keeps an eye on it. The terminal device 10 includes a sensor device 11, a communication unit 12, and a control unit 13. The terminal device 20 includes a sensor device 21, a communication unit 22, and a control unit 23.

  The sensor device 11 generates sensor data 11a regarding the possession status of the terminal device 10 by the user. The sensor device 21 generates sensor data 21a regarding the possession status of the terminal device 20 by the user. The sensor devices 11 and 21 are preferably the same type of sensor device. For example, acceleration sensors that measure acceleration are used as the sensor devices 11 and 21. In that case, the sensor data 11 a indicates the acceleration of the terminal device 10, and the sensor data 21 a indicates the acceleration of the terminal device 20. For example, as the sensor devices 11 and 21, input devices such as a touch panel and input keys for detecting a user operation are used. In this case, the sensor data 11a indicates a user operation on the terminal device 10 (for example, touch of the touch panel by the user or pressing of an input key), and the sensor data 21a indicates a user operation on the terminal device 20.

  The communication unit 12 communicates with the terminal device 20 wirelessly. The communication unit 22 communicates with the terminal device 10 wirelessly. The communication unit 12 and the communication unit 22 may communicate directly or indirectly via another communication device. The communication standard used by the communication units 12 and 22 may be arbitrary. When the communication unit 12 and the communication unit 22 communicate directly, a short-range wireless communication standard may be used.

  The control unit 13 controls the terminal device 10. The control unit 23 controls the terminal device 20. The control units 13 and 23 include, for example, processors such as a CPU (Central Processing Unit) and a DSP (Digital Signal Processor). However, the control units 13 and 23 may include an electronic circuit for a specific purpose such as an application specific integrated circuit (ASIC) or a field programmable gate array (FPGA). The processor executes a program stored in a memory such as a RAM (Random Access Memory). The program includes an unauthorized use detection program in which processing described below is described. A set of processors may be referred to as a “processor” or “multiprocessor”.

  In the first embodiment, when the terminal device 20 is illegally used, the terminal device 10 outputs a warning 14 to alert the user to notice the unauthorized use. The output of the warning 14 is to operate the output device in a manner that is easy for the user to recognize, and various methods are conceivable. The terminal device 10 may display a warning message on a display (not shown) provided in the terminal device 10. Further, the terminal device 10 may vibrate the terminal device 10 using a vibrator (not shown) included in the terminal device 10. Further, the terminal device 10 may reproduce an electronic sound or a warning message from a speaker (not shown) provided in the terminal device 10.

The terminal device 10 or the terminal device 20 performs the unauthorized use determination. In the following description, it is assumed that the terminal device 20 determines unauthorized use.
The control unit 23 acquires sensor data 11 a generated using the sensor device 11 from the terminal device 10 via the communication units 12 and 22. Further, the control unit 23 acquires sensor data 21 a generated using the sensor device 21. The control unit 23 compares the acquired sensor data 11a with the sensor data 21a and determines whether the sensor data 11a and 21a satisfy a predetermined relationship. Preferably, the predetermined relationship is preferably detected when the same user has the terminal devices 10 and 20 and is rarely detected when the same user does not have the terminal devices 10 and 20. It is a serious relationship.

  When the sensor data 11a and 21a indicate acceleration, for example, the control unit 23 compares the acceleration indicated by the sensor data 11a with the acceleration indicated by the sensor data 21a. When the two accelerations satisfy a predetermined synchronization relationship (for example, when the similarity is equal to or greater than a threshold), that is, when the accelerations are synchronized, the control unit 23 has the terminal devices 10 and 20 by the same user. Estimated. On the other hand, when the two accelerations do not satisfy the predetermined synchronization relationship, that is, when the accelerations are not synchronized, the control unit 23 does not have the terminal devices 10 and 20 by the same user (whether different users have It is estimated that the terminal device 20 is left unattended.

  When the sensor data 11a and 21a indicate a user operation, for example, the control unit 23 compares the operation timing indicated by the sensor data 11a with the operation timing indicated by the sensor data 21a. When the time difference between the two operations is equal to or greater than the threshold, that is, when the terminal devices 10 and 20 are not operated at the same time, the control unit 23 estimates that the same user has the terminal devices 10 and 20. On the other hand, when the time difference between the two operations is less than the threshold value, that is, when the terminal devices 10 and 20 are operated simultaneously, the control unit 23 estimates that different users have the terminal devices 10 and 20. The control unit 23 may determine possession of the same user by combining sensor data of a plurality of types of sensor devices.

  When the sensor data 11a and 21a do not satisfy the predetermined relationship and a user operation on the terminal device 20 is detected, the control unit 23 may detect the unauthorized use of the terminal device 20. Is determined to be high. A user operation on the terminal device 20 is detected using an input device such as a touch panel or input keys. This input device may be the same as the sensor device 21. If it is determined that it is unauthorized use, the control unit 23 notifies the terminal device 10 of unauthorized use via the communication units 22 and 12. As a result, the control unit 13 of the terminal device 10 controls the output device and outputs a warning 14.

  On the other hand, when the sensor data 11a and 21a satisfy a predetermined relationship and a user operation on the terminal device 20 is detected, the control unit 23 detects that the detected operation is normal by the same user as the terminal device 10. It is determined that there is a high possibility of use. If it determines with it being normal use, the control part 23 will suppress the notification of unauthorized use with respect to the terminal device 10. FIG. As a result, the control unit 13 of the terminal device 10 does not output the warning 14.

  When the terminal device 10 determines unauthorized use, the control unit 13 may acquire the sensor data 21a generated using the sensor device 21 from the terminal device 20 via the communication units 12 and 22. The control unit 13 compares the sensor data 11a generated using the sensor device 11 with the sensor data 21a acquired from the terminal device 20, and determines whether the sensor data 11a and 21a satisfy a predetermined relationship. When an operation on the terminal device 20 is detected, for example, the operation is notified from the terminal device 20 to the terminal device 10.

  According to the terminal devices 10 and 20 of the first embodiment, the sensor data 11a generated by the terminal device 10 and the sensor data 21a generated by the terminal device 20 are compared, and the terminal devices 10 and 20 are the same user. It is judged whether it is possessed by. When an operation on the terminal device 20 is detected when it is presumed that the user is not possessed by the same user, a warning 14 is output from the terminal device 10. Therefore, it becomes easier for the user to notice unauthorized use of the terminal device 20, and the security of the terminal device 20 is improved. On the other hand, if an operation on the terminal device 20 is detected when it is estimated that the user is possessed by the same user, the output of the warning 14 is suppressed. Therefore, the user can comfortably use the terminal devices 10 and 20 at the normal time.

[Second Embodiment]
FIG. 2 is a diagram illustrating a system according to the second embodiment. The system according to the second embodiment includes a mobile terminal 100 and a wearable terminal 200. The portable terminal 100 and the wearable terminal 200 are connected using a short-range wireless technology such as Bluetooth (registered trademark).

  The mobile terminal 100 is a computer used by the user U1. The mobile terminal 100 is, for example, a smartphone, a tablet terminal, or a PDA. The wearable terminal 200 is a computer worn by the user U1. Wearable terminal 200 is, for example, a smart watch. Wearable terminal 200 may be a device other than a smart watch as long as it is a device worn by user U1.

  In order to maintain the security of the mobile terminal 100, the mobile terminal 100 has an authentication mechanism such as password authentication. In a state where the authentication has succeeded, operations such as activation of application software installed in the mobile terminal 100 and browsing of data stored in the mobile terminal 100 can be performed on the mobile terminal 100. On the other hand, if authentication is not successful, operations such as application software activation and data browsing are impossible.

  A state where the operation is possible may be referred to as an authenticated state or being logged in, and a state where the operation is not possible may be referred to as an unauthenticated state or being logged out. Further, setting the mobile terminal 100 to the authenticated state by authentication may be referred to as login, and returning the mobile terminal 100 to the non-authenticated state may be referred to as logout. The login is performed by an explicit authentication procedure for the user U1 in the unauthenticated state. The logout is performed by an explicit operation of the user U1 in the authentication state or by an automatic sleep accompanying a certain period of time. In the unauthenticated state, third parties other than the user U1 cannot log in to the mobile terminal 100 as a general rule, and cannot perform operations such as activation of application software and data browsing.

  However, the user U1 may leave the logged-in mobile terminal 100 unattended. Then, there is a possibility that the portable terminal 100 is illegally used by a third party (for example, application software is activated or data is browsed illegally). The system according to the second embodiment provides a function for dealing with such a case.

Next, the hardware of the mobile terminal 100 will be described.
FIG. 3 is a diagram illustrating a hardware example of the mobile terminal. The portable terminal 100 includes a processor 101, a RAM 102, a flash memory 103, wireless units 104 and 105, a display 106, an input device 107, an acceleration sensor 108, and a medium reading unit 109. Each unit is connected to the bus of the mobile terminal 100.

  The processor 101 controls information processing of the mobile terminal 100. The processor 101 is, for example, a CPU, an MPU (Micro Processing Unit), a DSP, an ASIC, an FPGA, or a PLD (Programmable Logic Device). The processor 101 may be a multiprocessor. The processor 101 may be a combination of two or more elements among CPU, MPU, DSP, ASIC, FPGA, and PLD.

  The RAM 102 is a main storage device of the mobile terminal 100. The RAM 102 temporarily stores at least part of an OS (Operating System) program and application programs to be executed by the processor 101. The RAM 102 stores various data used for processing by the processor 101.

  The flash memory 103 is an auxiliary storage device of the mobile terminal 100. The flash memory 103 stores an OS program, application programs, and various data.

  The wireless unit 104 is a short-range wireless communication interface that performs wireless communication with the wearable terminal 200. The wireless unit 105 is a wide area wireless communication interface that performs wireless communication with an access point. The wireless unit 105 can access a network to which an access point is connected.

  The display 106 outputs an image according to a command from the processor 101. For example, the display 106 is a liquid crystal display, an organic EL (Electro Luminescence) display, or the like.

The input device 107 outputs the input signal to the processor 101. For example, the input device 107 is a button, a touch panel, or the like.
The acceleration sensor 108 is a sensor device for detecting acceleration in three axis directions. Of the three axes, the X axis and the Y axis are two axes perpendicular to each other on a reference plane (for example, the substrate of the mobile terminal 100). Of the three axes, the Z-axis is an axis that intersects the reference plane perpendicularly (intersects the X-axis and Y-axis perpendicularly).

  The medium reading unit 109 reads a program or data from the portable recording medium 31 or writes a program or data to the recording medium 31 in accordance with an instruction from the processor 101. For example, the recording medium 31 is a card-type recording medium (memory card) that can be attached to and detached from the medium reading unit 109. The medium reading unit 109 stores the program and data read from the recording medium 31 in the RAM 102 or the flash memory 103. However, in order to store programs and data, magnetic disks such as flexible disks (FD) and HDDs, optical disks such as CDs (Compact Discs) and DVDs (Digital Versatile Discs), magneto-optical disks (MOs) Various types of recording media such as disk) and non-card type semiconductor memory may be used.

Next, hardware of wearable terminal 200 will be described.
FIG. 4 is a diagram illustrating a hardware example of the wearable terminal. The wearable terminal 200 includes a processor 201, a RAM 202, a flash memory 203, wireless units 204 and 205, a display 206, an input device 207, an acceleration sensor 208, and a vibrator 209. Each unit is connected to the bus of the wearable terminal 200.

  The processor 201 controls information processing of the wearable terminal 200. The processor 201 is, for example, a CPU, MPU, DSP, ASIC, FPGA, or PLD. The processor 201 may be a multiprocessor. The processor 201 may be a combination of two or more elements of CPU, MPU, DSP, ASIC, FPGA, and PLD.

  The RAM 202 is a main storage device of the wearable terminal 200. The RAM 202 temporarily stores at least part of an OS program and application programs to be executed by the processor 201. The RAM 202 stores various data used for processing by the processor 201.

  The flash memory 203 is an auxiliary storage device of the wearable terminal 200. The flash memory 203 stores an OS program, application programs, and various data.

  The wireless unit 204 is a short-range wireless communication interface that performs wireless communication with the wearable terminal 200. The wireless unit 205 is a wide area wireless communication interface that performs wireless communication with an access point. The wireless unit 205 can access a network to which an access point is connected.

The display 206 outputs an image according to a command from the processor 201. For example, the display 206 is a liquid crystal display, an organic EL display, or the like.
The input device 207 outputs the input signal to the processor 201. For example, the input device 207 is a button, a touch panel, or the like.

  The acceleration sensor 208 is a sensor device for detecting acceleration in three axis directions. Of the three axes, the X axis and the Y axis are two axes perpendicular to each other on a reference plane (for example, the substrate of the mobile terminal 100). Of the three axes, the Z-axis is an axis that intersects the reference plane perpendicularly (intersects the X-axis and Y-axis perpendicularly). When the user U1 holds the portable terminal 100 and the wearable terminal 200, the reference plane of the portable terminal 100 and the reference plane of the wearable terminal 200 are not necessarily parallel. For this reason, the X-axis / Y-axis / Z-axis of the mobile terminal 100 and the X-axis / Y-axis / Z-axis of the wearable terminal 200 do not always indicate the same direction.

Vibrator 209 is a device that vibrates wearable terminal 200. Vibrator 209 changes the level of strength to vibrate according to a command from processor 201.
Here, pairing using the short-range wireless technology is performed between the mobile terminal 100 and the wearable terminal 200. For example, the wireless units 104 and 204 continuously search for a device having an ID (identifier) registered in advance. When a signal of a desired device is detected with a received signal strength (RSSI: Received Signal Strength Indicator) equal to or greater than a threshold, the wireless units 104 and 204 automatically establish a connection with the device and perform pairing. maintain. For example, when the RSSI of the device being paired falls below a threshold value, the wireless units 104 and 204 automatically disconnect the connection with the device and cancel the pairing.

  Note that the wireless unit 105 of the mobile terminal 100 may download a program from a server via a wide area network. For example, the wireless unit 105 stores the downloaded program in the RAM 102 or the flash memory 103. The wireless unit 205 of the wearable terminal 200 may download a program from a server via a wide area network. For example, the wireless unit 205 stores the downloaded program in the RAM 102 or the flash memory 103. However, the program downloaded by the mobile terminal 100 can be passed to the wearable terminal 200, and the program downloaded by the wearable terminal 200 can be passed to the mobile terminal 100.

Next, functions of the mobile terminal 100 and the wearable terminal 200 will be described.
FIG. 5 is a diagram illustrating functional examples of the mobile terminal and the wearable terminal. The portable terminal 100 includes a storage unit 110, an acquisition unit 120, a detection unit 130, and a state processing unit 140.

  The storage unit 110 is mounted as a storage area secured in the RAM 102 or the flash memory 103, for example. The storage unit 110 stores an acceleration table, an operation table, and a received signal strength table. Information relating to the mobile terminal 100 and the wearable terminal 200 in the same period is registered in the acceleration table, the operation table, and the received signal strength table.

  In the acceleration table, the accelerations of the mobile terminal 100 and the wearable terminal 200 in the most recent predetermined period are registered. The predetermined period is, for example, several seconds. In the operation table, operation times when the portable terminal 100 and the wearable terminal 200 are operated in the latest predetermined period are registered. In the received signal strength table, the received signal strength (RSSI) measured by the wearable terminal 200 in the latest predetermined period is registered.

At least a part of the acquisition unit 120, the detection unit 130, and the state processing unit 140 is realized, for example, by the processor 101 executing a predetermined program.
The acquisition unit 120 acquires the acceleration measured by the acceleration sensor 108. The acquisition unit 120 registers the acquired acceleration in the acceleration table. The acquisition unit 120 acquires information transmitted from the wearable terminal 200.

  When detecting that the mobile terminal 100 is operated, the detection unit 130 registers the operation time in the operation table. Here, the operation is an input operation on the input device 107 such as pressing an input button or touching the touch panel.

  The state processing unit 140 determines the security state of the mobile terminal 100 when the mobile terminal 100 is in an authentication state (logged in). The security state includes a theft state, the same arm normal use state, another arm normal use state, and a neglected state.

  The stolen state is a state in which the mobile terminal 100 exists far away from the wearable terminal 200, and is a dangerous state in which the mobile terminal 100 may have been taken away by a third party. The same arm normal use state is a state in which the mobile terminal 100 and the wearable terminal 200 are held by the same arm of the same user, and is a safe state. The separate arm normal use state is a state in which the mobile terminal 100 and the wearable terminal 200 are held by another arm of the same user, and is a safe state. The neglected state is a state in which the portable terminal 100 and the wearable terminal 200 are not held by the same user, and a third party illegally operates the portable terminal 100 while the user U1 is looking away. It is a potentially dangerous situation. For example, if the user U1 leaves the portable terminal 100 on a desk or chair after logging in, it is determined as being left.

  When the pairing with the wearable terminal 200 is released, the state processing unit 140 determines that the theft is in the stolen state, and releases (logs out) the authentication state of the mobile terminal 100. Note that after the authentication state is canceled, an authentication screen (login screen) is displayed on the display 106 of the mobile terminal 100. For example, authentication (login) is performed by password authentication, touch operation gesture authentication, biometric authentication (fingerprint authentication, face authentication, iris authentication), or the like.

  When the pairing is maintained, the state processing unit 140 uses the acceleration table, the operation table, and the received signal strength table to determine whether the mobile terminal 100 is in the same arm normal use state, the other arm normal use state, or the neglected state. Determine if there is. When it is determined that the state processing unit 140 is in the neglected state, the state processing unit 140 copes with abuse of the mobile terminal 100. Details of the determination of the same arm normal use state, the separate arm normal use state, and the neglected state will be described later.

The wearable terminal 200 includes a storage unit 210, an acquisition unit 220, a detection unit 230, a measurement unit 240, a transmission unit 250, and a state processing unit 260.
The storage unit 210 is mounted as a storage area secured in the RAM 202 or the flash memory 203, for example. The storage unit 210 stores information for transmission to the mobile terminal 100.

  At least a part of the acquisition unit 220, the detection unit 230, the measurement unit 240, the transmission unit 250, and the state processing unit 260 is realized, for example, by the processor 201 executing a predetermined program.

The acquisition unit 220 acquires the acceleration measured by the acceleration sensor 208.
When detecting that the wearable terminal 200 is operated, the detection unit 230 stores the operation time in the storage unit 210. Here, the operation is an input operation to the input device 207 such as pressing an input button or touching the touch panel.

While the pairing is maintained, the measurement unit 240 measures the received signal strength (RSSI) of the received signal received by the wireless unit 204 from the mobile terminal 100.
The transmission unit 250 receives acceleration data indicating acceleration measured during the most recent predetermined period, operation data indicating operation time of the operation detected during the most recent predetermined period, and RSSI measured during the most recent predetermined time. Signal strength data is transmitted to the mobile terminal 100. It is preferable that the acceleration data, the operation data, and the received signal strength data are transmitted together at one time. The predetermined period (transmission cycle) indicated by the acceleration data, operation data, and received signal strength data transmitted at one time may be the same as the state determination cycle of the state processing unit 140 or the state determination cycle of the state processing unit 140. It may be shorter.

  The state processing unit 260 issues a warning to a person wearing the wearable terminal 200 according to the security state of the mobile terminal 100. When the pairing with the mobile terminal 100 is canceled due to the decrease in RSSI, the display 206 displays that the mobile terminal 100 may be stolen. Further, the state processing unit 260 vibrates the wearable terminal 200 using the vibrator 209.

  If the pairing with the mobile terminal 100 is maintained, the state processing unit 260 waits for various notifications from the mobile terminal 100. When the state processing unit 260 receives a notification that the mobile terminal 100 is in the neglected state, the state processing unit 260 displays on the display 206 that there is a possibility that a third party may illegally use it. In addition, after receiving the notification that the mobile terminal 100 is operated from the mobile terminal 100 after the status processing unit 260 is notified that the mobile phone 100 is in the neglected state, the state processing unit 260 vibrates the wearable terminal 200 using the vibrator 209. Further, after being notified that the state processing unit 260 is in the neglected state, the state processing unit 260 transmits an instruction to the mobile terminal 100 to cancel the authentication state of the mobile terminal 100 in response to an input operation on the input device 207.

Next, information stored in the storage unit 110 will be described in detail.
FIG. 6 is a diagram illustrating an example of the acceleration table. The acceleration table 111 is stored in the storage unit 110. The acceleration table 111 includes items of time, portable terminal, and wearable terminal. In the time item, information indicating the measured time is registered. In the item of the mobile terminal, the triaxial acceleration measured at the mobile terminal 100 at a certain time is registered. In the item of the wearable terminal, the triaxial acceleration measured at the wearable terminal 200 at a certain time is registered. In each of the mobile terminal 100 and the wearable terminal 200, acceleration is continuously measured at a predetermined period. In the acceleration table 111, time-series acceleration data of at least the most recent predetermined period (for example, several seconds) is registered.

  For example, in the acceleration table 111, the time is “T1”, the portable terminal (X axis, Y axis, Z axis) is “AX1, AY1, AZ1”, and the wearable terminal (X axis, Y axis, Z axis) is “AX11”. , AY11, AZ11 "are registered. This indicates that the acceleration of the mobile terminal 100 at time “T1” is “AX1, AY1, AZ1”. It also indicates that the acceleration of wearable terminal 200 at time “T1” is “AX11, AY11, AZ11”.

  FIG. 7 is a diagram illustrating an example of an operation table. The operation table 112 is stored in the storage unit 110. The operation table 112 includes items of mobile terminals and wearable terminals. The time when the portable terminal 100 is operated is registered in the item of the portable terminal. The time when the wearable terminal 200 is operated is registered in the item of the wearable terminal. In each of the mobile terminal 100 and the wearable terminal 200, the operation is continuously monitored. In the operation table 112, operation data for at least the latest predetermined period (for example, several seconds) is registered.

  For example, information that the mobile terminal is “T11” and the wearable terminal is “T21” is registered in the operation table 112. This indicates that the mobile terminal 100 is operated at time “T11”. It also indicates that wearable terminal 200 has been operated at time “T21”.

  FIG. 8 is a diagram illustrating an example of a received signal strength table. The received signal strength table 113 is stored in the storage unit 110. The received signal strength table 113 includes items of time and RSSI. In the time item, information indicating the measured time is registered. In the RSSI item, the RSSI of the received signal from the mobile terminal 100 measured at the wearable terminal 200 at a certain time is registered.

  For example, information indicating that the time is “T1” and the radio wave intensity is “RS1” is registered in the received signal strength table 113. This indicates that the RSSI measured by the wearable terminal 200 at time “T1” is “RS1”. Note that the RSSI measured by the wearable terminal 200 and the RSSI measured by the mobile terminal 100 are considered to be approximate. In the second embodiment, RSSI is measured by wearable terminal 200, but RSSI may be measured by portable terminal 100.

Next, warning information displayed on the wearable terminal 200 will be described.
FIG. 9 is a diagram showing a warning screen (No. 1). The warning screen 200a in FIG. 9 is displayed on the display 206 when the wearable terminal 200 cancels the pairing (when the portable terminal 100 is in a stolen state). For example, the warning screen 200a is displayed on the wearable terminal 200 when the portable terminal 100 is present at a distance that can cause the connection with the wearable terminal 200 to be disconnected when the portable terminal 100 is stolen by a third party. Information indicating that the mobile terminal 100 may be stolen is displayed on the warning screen 200a. The user U1 recognizes that the portable terminal 100 has been stolen by visually recognizing the warning screen 200a.

  FIG. 10 is a diagram showing a warning screen (No. 2). In the warning screen 200b of FIG. 10, pairing is maintained between the wearable terminal 200 and the mobile terminal 100, but the mobile terminal 100 is not present at the user U1 (when the mobile terminal 100 is in an unattended state). ) And displayed on the display 206. When the mobile terminal 100 is not present at the user U1, there is a possibility that a third party may operate the mobile terminal 100 and misuse it when the user U1 keeps an eye on the mobile terminal 100. Therefore, the warning screen 200b displays that the mobile terminal 100 may be abused. The warning screen 200b also displays a lock button 200c for releasing (logout) authentication of the mobile terminal 100 so that the mobile terminal 100 is not misused. When the user U1 presses the lock button 200c, the authentication of the mobile terminal 100 is released. As a result, a third party cannot operate the mobile terminal 100.

Next, a process in which wearable terminal 200 transmits acceleration data, operation data, and received signal strength data within a predetermined period to portable terminal 100 will be described.
FIG. 11 is a flowchart illustrating an example of transmission processing by the wearable terminal. The process of FIG. 11 is continuously executed by the wearable terminal 200 while the pairing with the mobile terminal 100 is maintained. In the following, the process illustrated in FIG. 11 will be described in order of step number.

  (S11) The acquisition unit 220 acquires the acceleration measured by the acceleration sensor 208. The acceleration sensor 208 is a three-axis acceleration sensor, and the measured acceleration is expressed as a three-dimensional acceleration vector. The acquisition unit 220 associates the time at which the acceleration is acquired (for example, the current time) with the acceleration and stores them in the storage unit 210.

  (S12) The detection unit 230 determines whether or not an operation of the wearable terminal 200 has been detected. The detected operation includes touching the touch panel and pressing an input key. If an operation of wearable terminal 200 is detected, the process proceeds to step S13. If the operation of wearable terminal 200 has not been detected, the process proceeds to step S14.

(S13) The detection unit 230 stores the operation time (for example, current time) when the wearable terminal 200 is operated in the storage unit 210.
(S14) The measurement unit 240 measures the received signal strength (RSSI) of the short-range wireless signal received from the mobile terminal 100. The measurement unit 240 stores the time when RSSI is measured (for example, the current time) and the RSSI in the storage unit 210 in association with each other.

  (S15) The transmission unit 250 determines whether or not a predetermined period has elapsed since the previous step S16 was executed (the previous data was transmitted to the mobile terminal 100). For example, the predetermined period is set to about several seconds in advance. If the predetermined period has elapsed, the process proceeds to step S16. If the predetermined period has not elapsed, the process proceeds to step S11. In addition, the process of step S11-S14 is repeatedly performed with a predetermined period. The predetermined period is set in advance, for example, from several tens of milliseconds to several hundreds of milliseconds.

  (S16) The transmission unit 250 transmits the acceleration data, the operation data, and the received signal strength data to the portable terminal 100 by short-range wireless communication. The acceleration data is time-series data in which the accelerations acquired in step S11 are arranged in time order. The operation data is time-series data in which the operation times acquired in step S13 are arranged. The received signal strength data is time series data in which RSSIs measured in step S14 are arranged in time order.

  Thereafter, the acquisition unit 120 of the mobile terminal 100 receives the acceleration data, the operation data, and the received signal strength data from the wearable terminal 200 and registers them in the acceleration table 111, the operation table 112, and the received signal strength table 113, respectively.

  In addition, the acquisition unit 120 and the detection unit 130 of the mobile terminal 100 execute the same processing as in steps S11 to S13. The acquisition unit 120 registers acceleration data indicating the acceleration acquired from the acceleration sensor 108 in the acceleration table 111. The detection unit 130 registers operation data indicating the operation time when the mobile terminal 100 is operated in the operation table 112.

Next, warning processing of wearable terminal 200 will be described. The warning process is repeatedly executed while the pairing with the mobile terminal 100 is maintained.
FIG. 12 is a flowchart illustrating an example of warning processing by the wearable terminal. In the following, the process illustrated in FIG. 12 will be described in order of step number.

  (S21) The state processing unit 260 determines whether pairing with the mobile terminal 100 is maintained. When the mobile terminal 100 leaves the wearable terminal 200 and the RSSI of the received signal from the mobile terminal 100 falls below a threshold value, the connection with the mobile terminal 100 is disconnected and pairing is released. At this time, the portable terminal 100 is determined to be in a stolen state. If pairing is maintained, the process proceeds to step S22. If the pairing has been canceled, the process proceeds to step S25.

  (S22) The state processing unit 260 determines whether a neglected state notification has been received from the mobile terminal 100. If the neglected state notification is received, the process proceeds to step S26. If the neglected state notification has not been received, the process proceeds to step S23.

  (S23) The state processing unit 260 determines whether or not an operation notification has been received from the portable terminal 100. If an operation notification is received, the process proceeds to step S27. If no operation notification has been received, the process proceeds to step S24.

  (S24) The state processing unit 260 determines whether or not the pressing of the lock button 200c is detected when the warning screen 200b is displayed on the display 206. The pressing of the lock button 200c is, for example, that the user U1 has touched an area of the display 206 where the lock button 200c is displayed, and can be detected by the touch panel. If the pressing of the lock button 200c is detected, the process proceeds to step S28. If the pressing of the lock button 200c is not detected, the process is terminated.

  (S25) The state processing unit 260 instructs the vibrator 209 to vibrate. This instruction instructs a high level of vibration (vibrating the wearable terminal 200 strongly). Further, the state processing unit 260 displays a warning screen 200 a on the display 206. That is, the state processing unit 260 outputs a strong level warning by displaying the vibration and warning screen 200a. Then, the process ends.

  The user U1 notices that the wearable terminal 200 vibrates strongly, and has a high possibility of visually recognizing the warning screen 200a displayed on the display 206. Thereby, the user U1 recognizes that the portable terminal 100 has been stolen.

  (S26) The state processing unit 260 displays the warning screen 200b on the display 206. The warning screen 200b includes the lock button 200c as described above. That is, the state processing unit 260 outputs a warning at a level weaker than that in step S25 by displaying the warning screen 200b. Then, the process ends.

Thereby, the user U1 recognizes the possibility that the mobile terminal 100 is abused by visually recognizing the warning screen 200b displayed on the display 206.
(S27) The state processing unit 260 instructs the vibrator 209 to vibrate. The instruction is for instructing low level vibration (vibrating the wearable terminal 200 weakly). That is, the state processing unit 260 outputs a warning at a level weaker than that in step S25 due to vibration. Then, the process ends.

Thereby, the user U1 recognizes that the mobile terminal 100 is operated.
(S28) The state processing unit 260 transmits a lock instruction to the mobile terminal 100 by short-range wireless communication. Then, the process ends.

Thereby, the portable terminal 100 is forcibly logged out.
In FIG. 12, the vibration of the wearable terminal 200 in step S25 is strong, and the vibration of the wearable terminal 200 in step S27 is weak. By distinguishing the strength of vibration of the wearable terminal 200, the higher the security risk, the easier it is for the user U1 to notice the warning. Further, when the security risk is low, the troublesomeness of the user U1 can be reduced.

  Note that the warning levels in steps S26 and S27 are lower than in step S25 because the operation of the mobile terminal 100 may not be unauthorized use by a third party (possibility of erroneous determination). In steps S26 and S27, the authentication state of the mobile terminal 100 is not canceled immediately, but the authentication state of the mobile terminal 100 is canceled after the user U1 operates. On the other hand, in the case of step S25, it can be said that the security risk is high.

Next, the state determination process of the portable terminal 100 will be described. The state determination process is repeatedly executed by the mobile terminal 100 during the authentication state (during login).
FIG. 13 is a flowchart illustrating an example (part 1) of the state determination process by the mobile terminal. The state determination process is repeatedly executed in the mobile terminal 100 at a predetermined cycle (for example, a cycle of several seconds) while the mobile terminal 100 is in the authentication state. However, when the mobile terminal 100 detects cancellation of pairing with the wearable terminal 200, it is preferable to immediately execute the state determination process. While the portable terminal 100 is in the non-authenticated state, the state determination process may not be executed. In the following, the process illustrated in FIG. 13 will be described in order of step number.

  (S31) The state processing unit 140 determines whether pairing with the wearable terminal 200 is maintained. When the mobile terminal 100 leaves the wearable terminal 200 and the RSSI of the received signal from the wearable terminal 200 falls below the threshold, the connection with the wearable terminal 200 is disconnected and pairing is released. If pairing is maintained, the process proceeds to step S32. If pairing has been canceled, the process proceeds to step S37.

  (S32) The state processing unit 140 uses the three-dimensional acceleration vector of the portable terminal 100 at each time registered in the acceleration table 111 as the magnitude of acceleration (the absolute value of acceleration, norm, Euclidean distance, etc.). Convert to The state processing unit 140 arranges the magnitudes of the accelerations of the mobile terminal 100 in the last few seconds in time series, and detects the timing of the peak magnitude (maximum value) of the magnitudes of acceleration. For example, the state processing unit 140 determines the time when acceleration greater than any of the previous time and the next time is measured as the peak timing. Further, for example, when an acceleration greater than any other time included in the sliding window having a predetermined time width centered on the time is measured at a certain time, the state processing unit 140 sets the time to the peak timing. Is determined.

  Similarly, the state processing unit 140 converts the three-dimensional acceleration vector of the wearable terminal 200 at each time registered in the acceleration table 111 into the magnitude of acceleration. The state processing unit 140 arranges the acceleration magnitudes of the wearable terminal 200 in the last few seconds in time series, and detects the timing of the peak magnitude (maximum value) of the acceleration magnitude.

  (S33) The state processing unit 140 counts the number of synchronized peaks among the peaks of the mobile terminal 100 and the wearable terminal 200 detected in step S32. The fact that the peaks are synchronized means that both the peak of the mobile terminal 100 and the peak of the wearable terminal 200 are observed at substantially the same time. For example, the state processing unit 140 determines, for each peak of the mobile terminal 100, whether the peak of the wearable terminal 200 is observed within a predetermined time from the peak time. When the peak of wearable terminal 200 is observed within a predetermined time from the peak time, state processing unit 140 increments the synchronization count (adds 1).

  The state processing unit 140 compares the counted number of synchronizations with a threshold value (predetermined number). If the number of synchronizations is equal to or greater than the threshold, the process proceeds to step S39. If the number of synchronizations is less than the threshold, the process proceeds to step S34. If the number of synchronizations is equal to or greater than the threshold value, it can be said that the time series change of the acceleration of the mobile terminal 100 and the time series change of the acceleration of the wearable terminal 200 are synchronized, and both are similar. You can also.

  In determining the synchronization of acceleration, the magnitude of acceleration is used in the above while ignoring the direction of acceleration. This is because the acceleration coordinate axis of the mobile terminal 100 and the acceleration coordinate axis of the wearable terminal 200 may be misaligned. For example, when the user U1 is holding the mobile terminal 100 with the palm and the wearable terminal 200 is wound around the wrist, the vertical direction is the Y axis for the mobile terminal 100, while the vertical direction is the X axis for the wearable terminal 200. there is a possibility. Thus, the direction of the measured acceleration changes depending on the possession method of the mobile terminal 100 and the wearable terminal 200 of the user U1. On the other hand, synchronization can be determined by comparing the peak magnitudes of acceleration.

(S34) The state processing unit 140 refers to the operation table 112 and compares the operation times of the mobile terminal 100 and the wearable terminal 200.
(S35) The state processing unit 140 determines whether the mobile terminal 100 and the wearable terminal 200 are operated simultaneously. For example, the state processing unit 140 determines whether there is at least one operation time of the wearable terminal 200 within a predetermined time from the operation time of the mobile terminal 100. When the operation time of the wearable terminal 200 exists within a predetermined time from the operation time of the mobile terminal 100, the state processing unit 140 determines that the mobile terminal 100 and the wearable terminal 200 are operated simultaneously. In this case, the state processing unit 140 estimates that a third party different from the user U1 holding the wearable terminal 200 has operated the mobile terminal 100. This is because it is unnatural for the user U1 to operate the mobile terminal 100 and the wearable terminal 200 simultaneously.

  On the other hand, when the operation time of the wearable terminal 200 does not exist within a predetermined time from the operation time of the mobile terminal 100, the state processing unit 140 determines that the mobile terminal 100 and the wearable terminal 200 are not operated at the same time. When the portable terminal 100 and the wearable terminal 200 are operated simultaneously, the process proceeds to step S40. If the portable terminal 100 and the wearable terminal 200 are not operated simultaneously, the process proceeds to step S36.

  (S36) The state processing unit 140 estimates the distance between the mobile terminal 100 and the wearable terminal 200 at each time from the received signal strength (RSSI) at each time registered in the received signal strength table 113. For example, distance conversion information indicating the correspondence between RSSI and distance is stored in the storage unit 110, and the state processing unit 140 estimates the distance corresponding to the RSSI with reference to the distance conversion information. Then, the process proceeds to step S51.

(S37) The state processing unit 140 determines that the mobile terminal 100 is in a stolen state.
(S38) The state processing unit 140 cancels the authentication state of the mobile terminal 100. That is, the state processing unit 140 forcibly executes logout of the mobile terminal 100. Thus, unless user authentication is performed again and login is performed, operations such as application software activation and data reference cannot be performed. Then, the process ends.

Thereby, when the portable terminal 100 is stolen, the third party who has stolen the portable terminal 100 cannot abuse the portable terminal 100.
(S39) The state processing unit 140 determines that the arm is in a normal use state. The same arm normal use state is a state in which the mobile terminal 100 and the wearable terminal 200 are held by the same arm of the same user. For example, it is conceivable that the user U1 is wearing the wearable terminal 200 around the wrist of the left arm and the user U1 is holding the mobile terminal 100 with the palm of the left arm. Further, for example, it is conceivable that the user U1 is wearing the wearable terminal 200 around the wrist of the right arm and the user U1 is holding the mobile terminal 100 with the palm of the right arm. Then, the process proceeds to step S53.

  (S40) The state processing unit 140 determines that the mobile terminal 100 is in a neglected state. The neglected state is a state in which the portable terminal 100 and the wearable terminal 200 are not held by the same user although the portable terminal 100 is not carried away. That is, the neglected state is a state that does not correspond to any of the theft state, the same arm normal use state, and the other arm normal use state. For example, a state in which the user U1 leaves the portable terminal 100 on a desk or chair after logging in can be considered. At this time, there is a possibility that a third party may illegally use the mobile terminal 100 without taking the mobile terminal 100 away when the user U1 leaves the mobile terminal 100.

(S41) The state processing unit 140 transmits a neglected state notification to the wearable terminal 200.
(S42) The state processing unit 140 sets the mobile terminal 100 to start transmitting an operation notification to the wearable terminal 200 when the operation of the mobile terminal 100 is detected. Then, the process ends.

FIG. 14 is a flowchart illustrating an example (part 2) of the state determination process by the mobile terminal. In the following, the process illustrated in FIG. 14 will be described in order of step number.
(S51) The state processing unit 140 compares the distance at each time estimated in step S36 with a predetermined value “2 meters (2 m)”, and counts the number of times the distance has become 2 m or more. The state processing unit 140 determines whether the counted number is equal to or greater than a threshold value (a predetermined number, preferably a plurality of times such as 3).

  Here, the length from the tip of the left arm to the tip of the right arm when a human spreads both arms in the horizontal direction generally approximates the height and is often less than 2 m. Therefore, for example, even when the user U1 holds the mobile terminal 100 in his left hand and wears the wearable terminal 200 around his right arm, the distance between the mobile terminal 100 and the wearable terminal 200 is less than 2 m. When the distance is 2 m or more, it is unlikely that the user U1 has both the mobile terminal 100 and the wearable terminal 200. Therefore, even if the pairing is maintained, the state processing unit 140 holds the portable terminal 100 when the user U1 holding the wearable terminal 200 holds the estimated distance when the estimated distance is 2 m or more. Judge that it is not.

If the number of times the distance has become 2 m or more is greater than or equal to the threshold, the process proceeds to step S40. If the number of times the distance has become 2 m or more is less than the threshold, the process proceeds to step S52.
(S52) The state processing unit 140 determines that the separate arm is in a normal use state. The separate arm normal use state is a state in which the mobile terminal 100 and the wearable terminal 200 are held by another arm of the same user. For example, it is conceivable that the user U1 is wearing the wearable terminal 200 around the wrist of the left arm and the user U1 is holding the mobile terminal 100 with the palm of the right arm. Further, for example, it is conceivable that the user U1 is wearing the wearable terminal 200 around the wrist of the right arm and the user U1 is holding the mobile terminal 100 with the palm of the left arm.

  (S53) The state processing unit 140 sets the mobile terminal 100 to stop sending an operation notification to the wearable terminal 200 when an operation of the mobile terminal 100 is detected. That is, in the neglected state, when the mobile terminal 100 is operated, an operation notification is transmitted from the mobile terminal 100 to the wearable terminal 200 for alerting. On the other hand, in the same arm normal use state and the other arm normal use state, even if the mobile terminal 100 is operated, the possibility of unauthorized use by a third party is low, so the mobile terminal 100 sends an operation notification to the wearable terminal 200. Not sent. Then, the process ends.

  As described above, when the mobile terminal 100 and the wearable terminal 200 are separated such that they cannot communicate with each other, it is determined that the theft state has occurred. Further, when the measured acceleration satisfies a predetermined condition observed when the mobile terminal 100 and the wearable terminal 200 are held by the same arm of the same user, it is determined that the arm is in a normal use state. Further, when the operation time and the estimated distance do not satisfy the predetermined relationship observed when the portable terminal 100 and the wearable terminal 200 are not held by the same user, it is determined that the other arm is in a normal use state. Otherwise, it is determined as being left unattended. Thereby, the mobile terminal 100 and the wearable terminal 200 can execute an appropriate countermeasure according to the security state of the mobile terminal 100.

  The acceleration table 111, the operation table 112, and the reception signal strength table 113 need only register data for the last several seconds. After performing the state determination process, the state processing unit 140 may delete unnecessary old data from the acceleration table 111, the operation table 112, and the received signal strength table 113.

Next, the leaving state process of the mobile terminal 100 will be described. The neglected state process is repeatedly executed while it is determined that the security state of the mobile terminal 100 is the neglected state.
FIG. 15 is a flowchart illustrating an example of the neglected state process performed by the mobile terminal. In the following, the process illustrated in FIG. 15 will be described in order of step number.

  (S61) The state processing unit 140 determines whether an operation of the mobile terminal 100 is detected. The detected operation includes touching the touch panel and pressing an input key. If an operation of the mobile terminal 100 is detected, the process proceeds to step S62. If the operation of the mobile terminal 100 is not detected, the process proceeds to step S63.

(S62) The state processing unit 140 transmits an operation notification to the wearable terminal 200.
(S63) The state processing unit 140 determines whether or not a lock instruction has been received from the wearable terminal 200. If a lock instruction has been received, the process proceeds to step S64. If a lock instruction has not been received, the process ends.

  (S64) The state processing unit 140 cancels the authentication state of the mobile terminal 100. That is, the state processing unit 140 forcibly executes logout of the mobile terminal 100. Thus, unless user authentication is performed again and login is performed, operations such as application software activation and data reference cannot be performed. Then, the process ends.

As a result, third parties other than the user U1 cannot illegally use the portable terminal 100 that is left unattended.
Here, in the processing of FIGS. 13 and 14, when the mobile terminal 100 does not fall into any of the theft state, the same arm normal use state, and the other arm normal use state, it is determined to be a neglected state. When it is determined that the device is left as it is, the wearable terminal 200 vibrates weakly according to the operation of the mobile terminal 100 according to the processing of FIG. On the other hand, when the mobile terminal 100 is determined to be in the same arm normal use state or the other arm normal use state in the processes of FIGS. 13 and 14, the wearable terminal 200 does not vibrate even when the mobile terminal 100 is operated. Therefore, the user U1 can comfortably use the mobile terminal 100 and the wearable terminal 200.

Next, processing executed between the mobile terminal 100 and the wearable terminal 200 will be described using a sequence diagram.
FIG. 16 is a sequence diagram illustrating a processing example when pairing is released. In the following, the process illustrated in FIG. 16 will be described in order of step number.

  (ST111) The portable terminal 100 and the wearable terminal 200 establish a connection for short-range wireless communication and perform pairing. Thereafter, it is assumed that the mobile terminal 100 is stolen by a third party, and the mobile terminal 100 is moved to such a distance that the connection with the wearable terminal 200 is disconnected and pairing is released.

(ST112) The mobile terminal 100 cancels the authentication state.
(ST113) Wearable terminal 200 displays a warning screen 200a on wearable terminal 200 while vibrating wearable terminal 200. At this time, the wearable terminal 200 generates a strong level of vibration.

FIG. 17 is a sequence diagram illustrating a processing example when pairing is maintained. In the following, the process illustrated in FIG. 17 will be described in order of step number.
(ST121) Wearable terminal 200, after pairing with portable terminal 100, transmits acceleration data, operation data, and received signal strength data for the most recent predetermined period to portable terminal 100. The mobile terminal 100 receives acceleration data, operation data, and received signal strength data from the wearable terminal 200. The mobile terminal 100 registers the received acceleration data in the acceleration table 111, registers the received operation data in the operation table 112, and registers the received reception signal strength data in the reception signal strength table 113.

  (ST122) Wearable terminal 200 transmits acceleration data, operation data, and received signal strength data for the most recent predetermined period (generated after step ST121) to portable terminal 100, as in step ST121.

(ST123) The portable terminal 100 starts a state determination process.
(ST124) As a result of the state determination process, the mobile terminal 100 determines that the security state of the mobile terminal 100 is a normal use state (same arm normal use state or another arm normal use state). In FIG. 17, data transmission from the wearable terminal 200 to the portable terminal 100 is performed twice for one state determination process. However, data transmission from the wearable terminal 200 to the portable terminal 100 may be performed only once or may be performed three or more times for each state determination process. That is, the amount of acceleration data, operation data, and received signal strength data transmitted at a time can be arbitrarily changed.

  (ST125) Wearable terminal 200 transmits acceleration data, operation data, and received signal strength data for the most recent predetermined period (generated after step ST122) to portable terminal 100, as in step ST121.

  (ST126) Wearable terminal 200 transmits acceleration data, operation data, and received signal strength data for the most recent predetermined period (generated after step ST125) to portable terminal 100, as in step ST121.

  Thereafter, it is assumed that the user U1 has left the portable terminal 100 on the desk in an authenticated state. However, it is assumed that the mobile terminal 100 is not carried away and pairing is maintained between the mobile terminal 100 and the wearable terminal 200.

(ST127) The portable terminal 100 starts a state determination process.
(ST128) As a result of the state determination process, the mobile terminal 100 determines that the security state of the mobile terminal 100 is a neglected state.

(ST129) The portable terminal 100 transmits a neglected state notification to the wearable terminal 200.
(ST130) Wearable terminal 200 displays a warning screen 200b on wearable terminal 200.

(ST131) The mobile terminal 100 detects an operation of the mobile terminal 100.
(ST132) The mobile terminal 100 transmits an operation notification to the wearable terminal 200.
(ST133) Wearable terminal 200 vibrates wearable terminal 200. At this time, wearable terminal 200 generates a weak vibration.

(ST134) Wearable terminal 200 detects pressing of lock button 200c by user U1.
(ST135) Wearable terminal 200 issues a lock instruction to portable terminal 100.

(ST136) The mobile terminal 100 cancels the authentication state.
Next, a specific example of unauthorized use in the neglected state will be described.
FIG. 18 is a diagram illustrating a specific example of unauthorized use in a neglected state. After successfully authenticating the user U1, the mobile terminal 100 is left away from the user U1's hand. Wearable terminal 200 is worn by user U1. A range R <b> 1 indicates a range in which the wearable terminal 200 can communicate with the mobile terminal 100. Here, the portable terminal 100 exists in the range R1. Therefore, the pairing of the mobile terminal 100 and the wearable terminal 200 is maintained.

  Here, consider a case where a user U2 who is a third party other than the user U1 operates the mobile terminal 100 on the spot when the user U1 takes his eyes off the mobile terminal 100. For example, it is conceivable that the user U2 browses data stored in the mobile terminal 100 illegally. When the mobile terminal 100 and the wearable terminal 200 are operated simultaneously, or when it is continuously detected that the distance between the mobile terminal 100 and the wearable terminal 200 is 2 m or more, the warning screen 200b is displayed on the wearable terminal 200. Is displayed. Moreover, the wearable terminal 200 vibrates whenever the user U2 operates the portable terminal 100.

  The user U1 visually recognizes the warning screen 200b displayed on the wearable terminal 200 and recognizes that the mobile terminal 100 is left unattended. In addition, the user U1 recognizes that a third party (user U2) is operating the mobile terminal 100 by the wearable terminal 200 vibrating. In order to stop unauthorized use of the mobile terminal 100, the user U1 presses the lock button 200c. Then, the mobile terminal 100 cancels the authentication state. As a result, the user U2 can no longer operate the portable terminal 100, and unauthorized browsing of data can be stopped.

  The information processing according to the first embodiment can be realized by causing the control units 13 and 23 to execute a program. The information processing according to the second embodiment can be realized by causing the processors 101 and 201 to execute a program. The program can be recorded on a computer-readable recording medium.

  For example, the program can be distributed by distributing a recording medium on which the program is recorded. Moreover, the program which implement | achieves the function equivalent to the acquisition part 120, the detection part 130, the state process part 140, the acquisition part 220, the detection part 230, the measurement part 240, the transmission part 250, and the state process part 260 is made into a separate program, The program may be distributed separately. The functions of the acquisition unit 120, the detection unit 130, the state processing unit 140, the acquisition unit 220, the detection unit 230, the measurement unit 240, the transmission unit 250, and the state processing unit 260 may be realized by separate computers. For example, the computer may store (install) the program recorded in the recording medium in a storage device such as the RAM 102 or 202 or the flash memory 103 or 203, and read and execute the program from the storage device.

10, 20 Terminal device 11, 21 Sensor device 11a, 21a Sensor data 12, 22 Communication unit 13, 23 Control unit 14 Warning

Claims (6)

In the computer that the first terminal device or the second terminal device has,
First sensor data generated using a first sensor device included in the first terminal device, and second sensor data generated using a second sensor device included in the second terminal device. And get the
The first sensor data and the second sensor data are compared, and the first sensor data and the second sensor data are used by the same user for the first terminal device and the second terminal device. To determine if it satisfies the predetermined relationship detected when
When it is determined that the predetermined relationship is not satisfied and an operation on the second terminal device is detected, a warning is output to the first terminal device.
Unauthorized use detection program that executes processing. The first sensor device detects a first acceleration of the first terminal device, the second sensor device detects a second acceleration of the second terminal device;
The predetermined relationship includes that a similarity between the first acceleration indicated by the first sensor data and the second acceleration indicated by the second sensor data is equal to or greater than a threshold value.
The unauthorized use detection program according to claim 1. The first sensor device detects a first operation on the first terminal device, the second sensor device detects a second operation on the second terminal device;
The predetermined relationship includes that a time at which the first operation is detected is separated from a time at which the second operation is detected by a predetermined time or more.
The unauthorized use detection program according to claim 1. The warning level is set lower than other warning levels output by the first terminal device when communication between the first terminal device and the second terminal device is disconnected. ,
The unauthorized use detection program according to claim 1. An unauthorized use detection method performed by a first terminal device or a second terminal device,
First sensor data generated using a first sensor device included in the first terminal device, and second sensor data generated using a second sensor device included in the second terminal device. And get the
The first sensor data and the second sensor data are compared, and the first sensor data and the second sensor data are used by the same user for the first terminal device and the second terminal device. To determine if it satisfies the predetermined relationship detected when
When it is determined that the predetermined relationship is not satisfied and an operation on the second terminal device is detected, a warning is output to the first terminal device.
Abuse detection method. A terminal device,
A sensor device;
A communication unit that communicates with other terminal devices;
Obtaining first sensor data from the other terminal device, obtaining second sensor data generated using the sensor device,
The first sensor data and the second sensor data are compared, and the first sensor data and the second sensor data are owned by the same user with the other terminal device and the terminal device. To determine whether the predetermined relationship is detected
When it is determined that the predetermined relationship is not satisfied and an operation on the terminal device is detected, a control unit that notifies a warning to the other terminal device;
A terminal device.

Images