JP2019046139A - Authentication device and authentication method - Google Patents

Abstract

To provide an authentication technology that can enhance security strength by devising a way to display toward users by at least one authentication device.SOLUTION: An authentication device comprises a storage unit, a display control section, an input information generation section, and an execution section. The storage unit stores authentication information. The display control section causes a display unit to show a display by which an input corresponding to a first authentication method is encouraged. The input information generation section generates input information based on user operations received by an input unit. The execution section executes authentication in a second authentication method different from the first authentication method, by comparing the authentication information with the input information.SELECTED DRAWING: Figure 1

Description

  The present invention relates to a technique for authenticating a user.

  Authentication apparatuses that authenticate users by inputting a personal identification number are widely used.

JP 2000-99801 A

  However, since the personal identification number is composed only of numerals, the authentication device that authenticates the user by inputting the personal identification number has a problem that the security strength is low.

  As a measure for increasing the security strength, it is conceivable to employ authentication having a higher security strength than the authentication based on the input of the personal identification number, instead of the authentication based on the input of the personal identification number. Examples of authentication having higher security strength than authentication by inputting a personal identification number include biometric authentication using fingerprints, veins, irises, and the like.

  However, an authentication apparatus that performs authentication with high security strength has a demerit that the cost is generally high. For example, an authentication apparatus that performs biometric authentication requires a sensor dedicated to biometric authentication, which increases costs.

  In addition, there exists patent document 1 as a literature relevant to this application.

  In view of the above-described problems, an object of the present invention is to provide an authentication technique capable of increasing the security strength by devising display for a user by at least one authentication device.

  An authentication apparatus according to the present invention is based on a storage unit that stores authentication information, a display control unit that causes a display to prompt input corresponding to the first authentication method, and a user operation received by the input unit. An input information generation unit that generates input information; and an execution unit that compares the authentication information with the input information and executes authentication in a second authentication method different from the first authentication method. Configuration (first configuration).

  In the authentication device having the first configuration, the first authentication method may be a fingerprint authentication method, and the authentication in the second authentication method may be a password authentication (second configuration). .

  In the authentication device of the second configuration, the input unit detects contact and receives the user operation, the input information generation unit generates the input information based on the time of the contact, and the user The configuration (third configuration) may further include a notification control unit that causes the notification unit to perform notification for supporting the grasping of the contact time.

  In the authentication device of the third configuration, the authentication in the second authentication method is authentication using a personal identification number and attached information linked to the personal identification number, and the input information generation unit A configuration (fourth configuration) in which the input information is generated based on the area may also be used.

  The authentication device having any one of the first to fourth configurations further includes an authentication information generation unit that generates the authentication information based on the user operation received by the input unit, wherein the display control unit includes the first control unit. The display unit prompts the display unit to set the authentication information in a mode corresponding to the authentication method, and the authentication information generation unit is configured so that the display control unit corresponds to the first authentication method. The authentication information is generated (fifth configuration) based on the user operation received by the input unit when the display unit is instructed to display the setting.

  In the authentication device having any one of the first to fifth configurations, the display control unit is configured to input an input corresponding to the first authentication method based on a situation of a device whose security can be enhanced by the authentication device. It is also possible to adopt a configuration (sixth configuration) in which the degree of security is adjusted by switching whether or not to cause the display unit to perform a display prompting the user.

  An authentication method according to the present invention includes a display control step for causing a display unit to display an input corresponding to a first authentication method, and an input information generation step for generating input information based on a user operation received by the input unit. And an execution step of comparing the authentication information stored in the storage unit with the input information and executing authentication in a second authentication method different from the first authentication method (first step) 7).

  According to the authentication technique according to the present invention, the security strength can be increased by devising the display for the user by at least one authentication device.

The figure which shows the structure of the authentication apparatus which concerns on 1st Embodiment. Flow chart showing the flow of authentication information setting operation Figure showing an example of the setting input screen Flow chart showing the flow of authentication operation Figure showing an example of the input screen The flowchart which shows an example of the process which determines the input completion of a PIN code The figure which shows the structure of the authentication apparatus which concerns on 2nd Embodiment. The figure which shows the structure of the authentication apparatus which concerns on 6th Embodiment.

  Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the drawings.

<1. First Embodiment>
<1-1. Configuration of authentication device>
FIG. 1 is a diagram showing a configuration of an authentication device 1a according to the present embodiment. The authentication device 1a is mounted on a vehicle such as an automobile, for example, and is incorporated in the navigation device to be used for enhancing the security of the navigation device. For example, when a specific setting is changed in the navigation device, it is only necessary that the authentication device 1a succeeds in authentication. The authentication device 1a employs a fingerprint authentication method as an example of the first authentication method, and employs a password authentication method as an example of the second authentication method. The first authentication method and the second authentication method are different authentication methods. Specifically, the object confirmed in the authentication by the first authentication method is different from the object confirmed in the authentication by the second authentication method. For example, an object confirmed in fingerprint authentication is a feature point of a fingerprint, and an object confirmed in PIN code authentication is a number. As described above, the authentication device 1a uses a plurality of authentication methods with different confirmation targets (methods for releasing security).

  The authentication device 1a includes a control unit 11 and a storage unit 12.

  The control unit 11 is a computer including a CPU (Central Processing Unit), a RAM (Random Access Memory), and a ROM (Read Only Memory) (not shown). The control unit 11 is connected to a storage unit 12 included in the authentication device 1 a and operates based on a program 12 a stored in the storage unit 12. The control unit 11 is connected to the display unit 2 and the input unit 3.

  The control unit 11 includes a display control unit 11a, an input information generation unit 11b, an execution unit 11c, and an authentication information generation unit 11d. Various functions of the control unit 11 such as the display control unit 11a are realized by the CPU executing arithmetic processing according to the program 12a stored in the storage unit 12.

  The display control unit 11 a performs control to display an image on the display unit 2.

  The input information generation unit 11 b generates input information based on a user operation received by the input unit 3.

  The execution unit 11c performs authentication by comparing the authentication information stored in the storage unit 12 with the input information generated by the input information generation unit 11b.

  The authentication information generation unit 11d generates authentication information based on the user operation received by the input unit 3.

  The storage unit 12 stores a program 12a and authentication information 12b in a nonvolatile manner. As the storage unit 12, for example, an EEPROM, a flash memory, a hard disk drive, or the like can be used. Further, a part or all of the storage unit 12 is composed of a portable storage medium such as an SD memory card (registered trademark) or a USB (Universal Serial Bus) memory, and can be attached to and detached from the main body of the authentication device 1a. Also good.

  The program 12 a is so-called system software that is read by the control unit 11 and executed to realize various functions of the control unit 11. The authentication information 12b is updated every time authentication information is generated by the authentication information generation unit 11d.

  The display unit 2 is a display device that displays an image. As the display unit 2, for example, a liquid crystal display, an organic EL (Electro Luminescence) display, a head-up display that projects an image on a windshield, or the like can be used.

  The input unit 3 is a device that accepts user operations. As the input unit 3, for example, a touch panel integrated with the display unit 2, a touch pad disposed at a position away from the display unit 2, or the like can be used. In the following description, various operations will be described by taking the case where the input unit 3 is a touch panel integrated with the display unit 2 as an example.

<1-2. Authentication information setting operation>
FIG. 2 is a flowchart showing the flow of the authentication information setting operation executed by the authentication device 1a. In the present embodiment, the authentication information is information indicating a 4-digit password. As the number of digits of the personal identification number, four digits are the most common, and thus this embodiment adopts four digits, but other digits may be used. Further, in order for the authentication device 1a to start the operation for setting authentication information, it is desirable that the authentication device 1a needs to be successfully authenticated.

  When the authentication device 1a starts the authentication information setting operation, the display control unit 11a displays the setting input screen shown in FIG. 3 on the display unit 2 (step S1). The setting input screen shown in FIG. 3 is a display screen including a numeric keypad K1, a “OK” key K2, a “reset” key K3, and a “return” key K4. In this embodiment, the “0” key, “6” key to “9” key of the numeric keypad K1 is used as an invalid key, and the “0” key and “6” key are used to inform the user that the key is invalid. ~ “9” key is grayed out. When the user wants to correct the input contents of the password, the user can input the password again from the beginning by touching the “reset” key K3 with a finger. Further, when the user wants to cancel the setting of the authentication information, the user can touch the “return” key K4 with his / her finger to return the display on the display unit 2 to the display immediately before the authentication information setting operation is started. When the “return” key K4 is touched during the processes of steps S2 and S3, the setting operation of the authentication information is forcibly ended.

  In step S2 following step S1, the authentication information generation unit 11d determines whether or not the input of the 4-digit password has been completed.

  When the input of the 4-digit password has been completed, the authentication information generation unit 11d determines whether or not the “OK” key K2 has been touched (step S3).

  When the “OK” key K2 is touched, the authentication information generation unit 11d generates authentication information that is information indicating the input four-digit password (step S4), and the authentication stored in the storage unit 12 The information 12b is updated to the authentication information generated by the authentication information generation unit 11d (step S5). At the time of factory shipment of the authentication device 1a, information indicating a predetermined password (for example, “1”, “1”, “1”, “1”, etc.) is stored in the storage unit 12 as authentication information 12b.

  When the process of step S5 ends, the authentication information setting operation ends.

<1-3. Authentication operation>
FIG. 4 is a flowchart showing the flow of the authentication operation executed by the authentication device 1a.

  When the authentication device 1a starts the authentication operation, the display control unit 11a displays the input screen shown in FIG. 5 on the display unit 2 (step S11). The input screen illustrated in FIG. 5 is a display screen that prompts input corresponding to fingerprint authentication, and images 101 to 104 simulating the belly of a finger, a “decision” key K2, a “reset” key K3, and “return” ”Key K4. The functions of the “OK” key K2, the “reset” key K3, and the “return” key K4 are the same as those in the setting input screen shown in FIG.

  Although the authentication device 1a actually performs the password authentication, the input screen shown in FIG. 5 can make it appear as if the fingerprint authentication is performed. Therefore, the security strength of the authentication device 1a can be increased with respect to a third party who has not obtained the instruction manual of the authentication device 1a without being limited to the scene where the third party observes the operation of the operator. it can. Further, since both the password authentication and the fingerprint authentication are performed using the finger pad, it is assumed that the fingerprint authentication is performed instead of the password authentication for a third party who does not obtain the instruction manual of the authentication device 1a. It is easy to remind.

  In step S12 following step S11, the input information generation unit 11b determines whether or not the input of the 4-digit password has been completed. As a specific example of the processing in step S12, for example, the processing shown in FIG. 6 may be performed.

  In the process shown in FIG. 6, the input information generation unit 11b first sets the internal parameter n to 1 (step S12-1). Next, the input information generation unit 11b detects the time during which the user's finger is in contact with the nth image from the left (for example, the image 101 in FIG. 5 when n = 1) (step S12-2). . Then, the input information generation unit 11b temporarily stores the contact time detected in step S12-1 as the nth number (step S12-3). For example, if the contact time is 3 seconds, the input information generation unit 11b temporarily stores “3” as the nth number. Next, the input information generation unit 11b determines whether or not the internal parameter n is 4 (step S12-4). If the internal parameter n is not 4, the input information generation unit 11b increases the value of the internal parameter n by 1 (step S12-5), and returns to the process of step S12-2. On the other hand, if the internal parameter n is 4, the process proceeds to step S13 in FIG.

  By performing the processing shown in FIG. 6, the input information generation unit 11 b generates input information based on the contact time in step S <b> 14 described later. Thus, when the number input by the contact time is performed, it is not necessary for the user to move the finger frequently, so that an excessive operation burden is not imposed on the user.

  Moreover, in this embodiment, since the contact time is limited to 1 to 5 seconds, erroneous input is reduced. For example, when the user tries to input the number “9” with a contact time of 9 seconds, the actual contact time is larger than when the user tries to input the number “5” with a contact time of 5 seconds. There is a high possibility that the difference from the target time becomes large. In addition, since the limitation of 1 to 5 seconds is an example, it may be limited by another number of seconds.

  Returning to FIG. 4, step S13 and subsequent steps will be described. When the input of the 4-digit password has been completed, the input information generation unit 11b determines whether or not the “OK” key K2 has been touched (step S13).

  When the “decision” key K2 is touched, the input information generating unit 11b generates input information that is information indicating the input 4-digit password (step S14).

  In step S15 subsequent to step S14, the execution unit 11c compares the authentication information 12b stored in the storage unit 12 with the input information generated in step S14, performs password authentication, and the authentication is successful (password). It is determined whether the number has been matched or failed (the PIN has not been matched).

  If the authentication is successful, the security release is executed by the authentication device 1a (step S20), and then the authentication operation ends.

  On the other hand, when the authentication fails, the execution unit 11c determines whether or not the number of authentication failures has reached 5 (step S16). If the number of authentication failures has not reached 5, the process returns to step S12. If the number of authentication failures has reached 5, the control unit 11 locks the state of the authentication device 1a so as not to accept the input of the personal identification number (step S17).

  In step S18 following step S17, the display control unit 11a causes the display unit 2 to display the previous unlock code. The previous unlock code may be stored in the storage unit 12, for example. If the lock state in step S17 is the first lock state, the previous unlock code may be the initial unlock code stored in the storage unit 12 at the time of factory shipment.

  The user obtains the information on the current unlock code from the sales company of the authentication device 1a by contacting the previous sales code of the lock device and other necessary information to the sales company of the authentication device 1a. Use to enter the current unlock code.

  In step S19 following step S18, the control unit 11 determines whether or not the current unlock code has been input. If there is no input of the current unlock code, the process returns to step S17, and if there is an input of the current unlock code, the process proceeds to step S20.

  The authentication device 1a according to the present embodiment described above causes the display unit 2 to display an input screen that prompts input corresponding to the first authentication method in the authentication operation after the authentication information is set, so that the first authentication is performed. By performing authentication using a second authentication method different from the method, security can be improved. In other words, since a third party who is not a true user does not understand the correct authentication method (second authentication method) necessary for releasing security, the wrong authentication method (first authentication method) associated with the input screen It is very difficult to unlock security. On the other hand, since the true user understands the correct authentication method (second authentication method) necessary for releasing the security, the user is confused by the wrong authentication method (first authentication method) associated with the input screen. Security can be released properly.

<2. Second Embodiment>
FIG. 7 is a diagram showing the configuration of the authentication device 1b according to this embodiment. The authentication device 1b is different from the authentication device 1a in that the control unit 11 includes a voice control unit 11e, and the control unit 11 is connected to the voice output unit 4, and is otherwise the same as the authentication device 1a. .

  The audio output unit 4 is a device that converts an audio signal into audio. As the audio output unit 4, for example, a speaker or the like can be used.

  The sound control unit 11e performs control to cause the sound output unit 4 to output sound. In the present embodiment, the voice control unit 11e causes the voice output unit 4 to output a short electronic sound every second from the start of the process of step S11 in FIG. 4 until immediately before the start of the process of step S12. . The output of the electronic sound can assist the user to grasp the contact time described above. Therefore, for example, even if the user tries to input the number “9” with a contact time of 9 seconds, the user actually tries to input the number “5” with a contact time of 5 seconds. It can be expected that the difference between the contact time and the target time can be reduced. For this reason, unlike 1st Embodiment, the limitation of 1-5 seconds regarding contact time may be abolished, and the number of each digit of a PIN code may be selected from 1-9.

  Instead of assisting the user in understanding the contact time described above by voice, or in addition to assisting the user in understanding the contact time described above by voice, the display unit 2 displays the user. You may support grasping | ascertaining the contact time mentioned above. For example, the display control unit 11a may change the display on the display unit 2 every second.

  In the first embodiment, although there is a concern about the difference between the actual contact time and the target time, the user may perform an input operation while looking at the clock. Similar to the second embodiment, the limitation on the contact time of 1 to 5 seconds may be abolished.

  The authentication device 1b according to the present embodiment described above, like the authentication device 1a according to the first embodiment, is an input that prompts an input corresponding to the first authentication method in the authentication operation after the authentication information is set. By displaying the screen on the display unit 2 and executing authentication using a second authentication method different from the first authentication method, security can be improved.

  Furthermore, since the authentication device 1b according to the present embodiment can assist the user in grasping the contact time in which the finger is in contact with the input unit 3, it is possible to input a wrong password in the input operation based on the contact time. Can be reduced.

<3. Third Embodiment>
The configuration of the authentication device in this embodiment is the same as that in the first embodiment. In the first embodiment, the input information generation unit 11b generates input information based on the contact time. In the present embodiment, the input information generation unit 11b generates input information based on the number of times of contact. .

  For example, in the input screen shown in FIG. 5, the enter key K2 is touched after the image 101 is touched once, then the enter key K2 is touched after the image 102 is touched twice, and the image 103 is touched 3 times. When the determination key K2 is touched later and the determination key K2 is touched after the image 104 is touched four times, the input information generation unit 11b may generate input information indicating the personal identification number “1234”.

  The authentication apparatus according to the present embodiment described above, like the authentication apparatus 1a according to the first embodiment, has an input screen that prompts input corresponding to the first authentication method in the authentication operation after the authentication information is set. Can be displayed on the display unit 2 and the security can be improved by executing authentication using a second authentication method different from the first authentication method.

  Furthermore, since the authentication device according to the present embodiment does not cause an erroneous input of a personal identification number due to a difference between the actual contact time and the target time, it is possible to reduce erroneous input of the personal identification number.

<4. Fourth Embodiment>
The configuration of the authentication device in this embodiment is the same as that in the first embodiment. In the first embodiment, the password authentication is an authentication using only the password. In the present embodiment, the password authentication is performed using the password and the attached information associated with the password. And This attached information becomes part of the input information and part of the authentication information.

  For example, for the personal identification number “1234”, the attached information associated with “1” is associated with “large contact area”, and the associated information associated with “2” is associated with “small contact area” and “3”. The attached attached information may be “small contact area”, and the attached information associated with “4” may be “large contact area”.

  In the setting input screen, a selection key capable of selecting “large contact area” and “small contact area” is provided. In the input screen shown in FIG. 5, the type of finger to be touched (for example, thumb or little finger) It is only necessary to input either “large contact area” or “small contact area” by appropriately changing the part of the finger to touch (for example, the belly of the finger or the side of the finger).

  The authentication apparatus according to the present embodiment described above, like the authentication apparatus 1a according to the first embodiment, has an input screen that prompts input corresponding to the first authentication method in the authentication operation after the authentication information is set. Can be displayed on the display unit 2 and the security can be improved by executing authentication using a second authentication method different from the first authentication method.

  Furthermore, since the authentication apparatus according to the present embodiment performs authentication using the personal identification number and the attached information associated with the personal identification number, the security strength can be improved as compared with the authentication using only the personal identification number. .

<5. Fifth Embodiment>
The configuration of the authentication device in this embodiment is the same as that in the first embodiment. In the first embodiment, the setting input screen shown in FIG. 3 is used. In the present embodiment, the setting input screen also prompts the user to set authentication information in a manner corresponding to fingerprint authentication in the same manner as the input screen. The authentication information generation unit 11d generates authentication information that is information on a personal identification number.

  The authentication apparatus according to the present embodiment described above, like the authentication apparatus 1a according to the first embodiment, has an input screen that prompts input corresponding to the first authentication method in the authentication operation after the authentication information is set. Can be displayed on the display unit 2 and the security can be improved by executing authentication using a second authentication method different from the first authentication method.

  Furthermore, the authentication device according to the present embodiment may give the user an experience of setting a personal identification number using a display screen that prompts the user to set authentication information in a mode corresponding to fingerprint authentication at the authentication information setting stage. it can. Therefore, it is possible to reduce the possibility that the user will be confused when inputting the password using the display screen that prompts the input corresponding to the fingerprint authentication.

<6. Sixth Embodiment>
FIG. 8 is a diagram showing a configuration of the authentication device 1c according to the present embodiment. The authentication device 1c includes a communication unit 13, the control unit 11 is not connected to the display unit 2 and the input unit 3, and information on the status of the device that can improve security by the authentication device 1c is transmitted to the control unit. 11 is different from the authentication device 1a in that it is acquired, and the other points are the same as the authentication device 1a.

  The user terminal 5 is a portable electronic device carried by the user, and includes a display unit corresponding to the display unit 2 described above, an input unit corresponding to the input unit 3 described above, and a communication unit capable of communicating with the communication unit 13. And comprising. The control unit 11 of the authentication device 1c can exchange data with the display unit and the input unit of the user terminal 5 via the communication unit 13 and the communication unit of the user terminal 5. As the user terminal 5, for example, a smartphone, a tablet, a mobile phone, a PDA (Personal Digital Assistant), or the like can be used.

  As an apparatus which can improve security by the authentication device 1c, for example, a door lock control apparatus for a vehicle can be cited.

  For example, when the vehicle is used for commuting, the door lock control device of the vehicle is used in a fixed time zone in the morning and evening, so the display control unit 11a displays the display unit of the user terminal 5 in the fixed time zone in the morning and evening. 5 is displayed without displaying the input screen shown in FIG. 5, and the display control unit 11a is displayed on the display unit of the user terminal 5 at midnight when the risk of theft is high. An input screen may be displayed. As a result, the convenience of the user can be improved during the time when the vehicle door lock control device is normally used, and the security can be improved during the time when the vehicle door lock control device is not normally used. it can.

  If the authentication device 1c acquires vehicle position information from a navigation device or the like, the display control unit 11a displays the input screen shown in FIG. 5 on the display unit of the user terminal 5 in an area where the vehicle is normally used. If a general numeric keypad input screen is displayed without displaying, and the display control unit 11a displays the input screen shown in FIG. 5 on the display unit of the user terminal 5 in an area where the vehicle is not normally used. Good. This is particularly useful when the area where the vehicle is normally used is a relatively safe area, and the area where the vehicle is not normally used can include a relatively insecure area.

  If the authentication apparatus 1c according to the present embodiment described above has a specific situation in which a device that can improve security by the authentication apparatus 1c is in a specific situation, the authentication apparatus 1c performs the first operation in the authentication operation after the authentication information is set. By displaying an input screen for prompting input corresponding to the authentication method on the display unit of the user terminal 5 and executing authentication using a second authentication method different from the first authentication method, security can be improved. . On the other hand, in the authentication operation after the authentication information is set, the authentication device 1c according to the present embodiment, in the authentication operation after the authentication information is set, if the device that can improve security by the authentication device 1c is not in a specific situation. By displaying an input screen that prompts input corresponding to the method on the display unit of the user terminal 5, the convenience of the user can be improved. That is, it is possible to achieve both improvement in crime prevention and improvement in user convenience.

<7. Other>
Various technical features disclosed in the present specification can be variously modified within the scope of the technical creation in addition to the above-described embodiment. In addition, a plurality of embodiments and modification examples shown in the present specification may be implemented in combination within a possible range.

  For example, in the above-described embodiment, four images imitating the finger belly are displayed, but only one image imitating the finger belly is displayed, and for example, the input operation relating to each digit of the code number is completed. The user may touch the enter key K2 each time. This makes it appear as if fingerprint authentication is executed.

  In addition, on the input screen of the display unit 2, the position of each numeric key of the numeric keypad is displayed at random to make it appear as if the password authentication is executed, and the input information and registration information are displayed on the display unit. 2 may be information relating to a route touched by the input unit 3 that is not related to the display content. In this case, the target to be confirmed in the authentication in the first authentication method is a number, and the target to be confirmed in the authentication in the second authentication method is a path.

DESCRIPTION OF SYMBOLS 1a, 1b, 1c Authentication apparatus 2 Display part 3 Input part 4 Audio | voice output part 5 User terminal 11 Control part 12 Storage part 13 Communication part

Claims (7)

A storage unit for storing authentication information;
A display control unit for causing the display unit to perform a display prompting an input corresponding to the first authentication method;
An input information generation unit that generates input information based on a user operation received by the input unit;
An execution unit that compares the authentication information with the input information and executes authentication in a second authentication method different from the first authentication method;
An authentication device comprising:   The authentication apparatus according to claim 1, wherein the first authentication method is a fingerprint authentication method, and the authentication in the second authentication method is a password authentication. The input unit detects contact and accepts the user operation;
The input information generation unit generates the input information based on the contact time,
The authentication apparatus according to claim 2, further comprising: a notification control unit that causes a notification unit to perform notification for assisting a user to grasp the contact time. Authentication in the second authentication method is authentication using a personal identification number and attached information linked to the personal identification number;
The authentication apparatus according to claim 3, wherein the input information generation unit generates the input information based on the contact area. An authentication information generating unit that generates the authentication information based on the user operation received by the input unit;
The display control unit causes the display unit to perform a display prompting the setting of the authentication information in a mode corresponding to the first authentication method;
The authentication information generation unit is configured to receive the user received by the input unit when the display control unit causes the display unit to perform a display prompting the setting of the authentication information in a mode corresponding to the first authentication method. The authentication device according to any one of claims 1 to 4, wherein the authentication information is generated based on an operation.   The display control unit switches whether or not to cause the display unit to perform a display prompting an input corresponding to the first authentication method, based on a state of a device capable of enhancing security by the authentication device. The authentication device according to any one of claims 1 to 5, wherein the degree of security is adjusted. A display control step for causing the display unit to perform a display prompting input corresponding to the first authentication method;
An input information generation step for generating input information based on a user operation received by the input unit;
An execution step of comparing authentication information stored in a storage unit with the input information, and executing authentication in a second authentication method different from the first authentication method;
An authentication method comprising: