JP2023028538A - Access control system, information management system, access control method, information management method, and program - Google Patents

Abstract

To improve user convenience.SOLUTION: An access control system 2 includes a communication unit 41 and a management unit 421. The communication unit 41 is configured to communicate with an information management system 3. The management unit 421 manages the authority for identification information used for authentication. The management unit 421 is configured to be able to assign authority to the identification information of the cooperating party. The identification information of the cooperating party is identification information for the information management system 3 to identify a terminal.SELECTED DRAWING: Figure 1

Description

The present disclosure generally relates to an entrance/exit management system, an information management system, an entrance/exit management method, an information management method, and a program. The present invention relates to a withdrawal management method, an information management method, and a program.

Patent Literature 1 discloses an entrance/exit management system that manages the entrance of users to a controlled area within a facility and the exit of users from the controlled area. The entrance/exit management system described in Patent Literature 1 unlocks an electric lock if the second unique information read by the non-contact reading unit from the recording medium possessed by the user is genuine unique information.

JP 2014-211015 A

In systems such as the entrance/exit management system described in Patent Literature 1, it is desired to improve user convenience.

An object of the present disclosure is to improve user convenience.

An entrance/exit management system according to one aspect of the present disclosure includes a communication unit and a management unit. The communication unit is configured to be communicable with an information management system. The management unit manages authority for identification information used for authentication. The management unit is configured to be able to assign the authority to the cooperation-side identification information. The cooperation-side identification information is identification information for the information management system to identify the terminal.

An information management system according to one aspect of the present disclosure is a system with which the entrance/exit management system communicates. The information management system includes a cooperation side communication section and a cooperation side management section. The cooperation-side communication unit is configured to communicate with the entrance/exit management system regarding the cooperation-side identification information. The cooperation-side management unit manages the cooperation-side identification information.

An entrance/exit management method according to an aspect of the present disclosure is a method used in an entrance/exit management system that is a system different from an information management system. The entrance/exit management method has a communication step, a management step, and an allocation step. The communicating step communicates with the information management system. The management step manages authority for identification information used for authentication. In the assigning step, the authority is assigned to the collaborating side identification information. The cooperation-side identification information is identification information for the information management system to identify the terminal.

An information management method according to one aspect of the present disclosure is a method used in the information management system that communicates with the entrance/exit management system. The information management method has a communication step and a management step. In the communication step, communication regarding the cooperation side identification information is performed with the entrance/exit management system. The management step manages the cooperation side identification information to which authority is assigned by the entrance/exit management system.

A program according to one aspect of the present disclosure is a program for causing one or more processors to execute the entrance/exit management method.

A program according to an aspect of the present disclosure is a program for causing one or more processors to execute the information management method.

According to the entrance/exit management system, the information management system, the entrance/exit management method, the information management method, and the program according to the above aspects of the present disclosure, user convenience can be improved.

FIG. 1 is a schematic diagram showing the overall configuration of the entrance/exit cooperation system according to the first embodiment. FIG. 2 is an explanatory diagram showing an installation example of the entry/exit management system of the same. FIG. 3 is a sequence diagram showing the operation of the entrance/exit cooperation system. FIG. 4 is a sequence diagram showing the operation of the entry/exit cooperation system according to the second embodiment. FIG. 5 is a schematic diagram showing the overall configuration of the entrance/exit cooperation system according to the third embodiment.

Preferred embodiments of the present disclosure will be described in detail below with reference to the drawings. Elements common to each other in the embodiments described below are denoted by the same reference numerals, and overlapping descriptions of the common elements are omitted. The following embodiment is but one of various embodiments of the present disclosure. The embodiments can be modified in various ways according to design and the like as long as the object of the present disclosure can be achieved.

(Embodiment 1)
(1) Overview First, an overview of the entrance/exit cooperation system 1 according to the first embodiment will be described with reference to FIG.

As shown in FIG. 1 , the entrance/exit cooperation system 1 includes an entrance/exit management system 2 and an information management system 3 . The entrance/exit management system 2 and the information management system 3 are different systems. That is, the information management system 3 is another system when viewed from the entrance/exit management system 2, and the entrance/exit management system 2 is another system when viewed from the information management system 3. The entrance/exit management system 2 and the information management system 3 of Embodiment 1 are configured to be able to communicate with each other. The term “communicable” as used in the present disclosure means that information can be exchanged directly or indirectly via a network, a repeater, or the like, using an appropriate communication method such as wired communication or wireless communication.

The entrance/exit management system 2 of Embodiment 1 includes a communication section 41 and a management section 421 . More specifically, the entrance/exit management system 2 includes an entrance/exit management server 4 having a communication section 41 and a management section 421 .

The communication unit 41 is configured to communicate with the information management system 3 . More specifically, the communication unit 41 is configured to communicate with the information management server 6 of the information management system 3 .

The management unit 421 manages authority for identification information used for authentication. "Authentication" as used in the present disclosure may include confirming the reliability and legitimacy of the object, and confirming the eligibility and authority of the object. "Authority" as used in the present disclosure may include rights (for example, rights related to entry/exit) possessed by the subject of authentication. "Authority" may be different for each authentication target. The entrance/exit management system 2 of Embodiment 1 confirms the authority assigned to the identification information read by the card reader 11, and unlocks the electric lock 12 provided in the facility 10 according to the authority.

"Facility" as used in this disclosure includes residential facilities used for residential purposes, as well as non-residential facilities such as shops (tenants), offices, welfare facilities, educational facilities, hospitals and factories. Non-residential facilities include restaurants, playgrounds, hotels, Japanese inns, kindergartens, nursery schools and public halls. That is, the facility 10 may be a residential facility such as an apartment building or a non-residential facility such as an office building. Furthermore, the facility 10 includes a facility in which residential facilities and non-residential facilities are mixed, for example, stores on the lower floors and residential units on the upper floors. In the first embodiment, it is assumed that the facility 10 is an office including multiple managed spaces.

Further, the management unit 421 of the first embodiment is configured to be able to assign authority to the cooperation side identification information. is identification information for identifying the

The entrance/exit management system 2 of Embodiment 1 can assign (grant) authority to the cooperation side identification information of the information management system 3 side, which is a system different from the entrance/exit management system 2 . For example, the electric lock 12 included in the entrance/exit management system 2 (facility 10) can be unlocked by the portable terminal 7 corresponding to the cooperation-side identification information to which authority has been assigned. For example, the electric lock 12 included in the entrance/exit management system 2 can be unlocked by the mobile terminal 7 of another system, so the convenience of the user H1 (see FIG. 2) who owns the mobile terminal 7 is improved. can be achieved.

(2) Configuration of entrance/exit cooperation system Details of the entrance/exit cooperation system 1 according to the first embodiment will be described below with reference to FIGS. 1 and 2. FIG. As shown in FIG. 1 , the entrance/exit cooperation system 1 includes an entrance/exit management system 2 and an information management system 3 . As described above, the entrance/exit management system 2 and the information management system 3 are different systems. For example, the entrance/exit management system 2 and the information management system 3 are different from each other in terms of system operating entities (management entities). In other words, when company A operates the entrance/exit management system 2, company B, which is different from company A, operates the information management system 3. FIG. The entrance/exit management system 2 and the information management system 3 are configured to communicate with each other.

(2.1) Configuration of Entrance/Exit Management System First, the configuration of the entrance/exit management system 2 will be described with reference to FIGS. 1 and 2. FIG.

As shown in FIG. 1 , the entrance/exit management system 2 includes an entrance/exit management server 4 , a control device 5 , a card reader 11 , an electric lock 12 and an authentication terminal 13 .

(2.1.1) Configuration of Entrance/Exit Management Server As shown in FIG. 1, the entrance/exit management server 4 of Embodiment 1 is installed, for example, outside the facility 10 (office). The entrance/exit management server 4 has a communication section 41 , a control section 42 and a storage section 43 .

The communication unit 41 is configured to be able to communicate with the information management system 3 as another system and the control device 5 installed in the facility 10 . The communication section 41 has a first communication section 411 and a second communication section 412 .

The first communication unit 411 is configured to be able to communicate with the control device 5 via an external network such as the Internet. Note that the entrance/exit management server 4 may be installed in the facility 10 . When the entrance/exit management server 4 is installed in the facility 10, the first communication unit 411 may be configured to communicate with the control device 5 via an internal network such as a LAN (Local Area Network).

The second communication unit 412 is configured to be able to communicate with the information management system 3 via an external network such as the Internet. More specifically, the second communication unit 412 is configured to communicate with the information management server 6 included in the information management system 3 .

Also, the second communication unit 412 of the first embodiment transmits the cooperation-side identification information generated by the entrance/exit management system 2 (management unit 421 ) to the information management system 3 . For example, the second communication unit 412 transmits the cooperation-side identification information generated by the entrance/exit management system 2 (management unit 421 ) in response to a cooperation request from the information management system 3 to the information management system 3 .

In the following description, each of the first communication unit 411 and the second communication unit 412 will be referred to as the communication unit 41 when the first communication unit 411 and the second communication unit 412 are not distinguished from each other.

The control unit 42 is mainly composed of a computer system having one or more processors and one or more memories. In the control unit 42, the functions of the control unit 42 are realized by one or more processors executing programs recorded in the memory. The program may be prerecorded in a memory, may be provided through an electric communication line such as the Internet, or may be provided by being recorded in a non-temporary recording medium such as a memory card.

The control unit 42 has a management unit 421, an input unit 422, and an output unit 423, as shown in FIG.

The management unit 421 manages identification information used for authentication. The management unit 421 is configured to be able to assign authority to entrance/exit side identification information, which is identification information for the entrance/exit management system 2 to authenticate the authentication terminal 13 . In other words, the entrance/exit side identification information is identification information that the authentication terminal 13 uses for authentication. The management unit 421 of Embodiment 1 is configured to be able to assign the authority to unlock the electric lock 12 installed in the facility 10 to the entrance/exit side identification information. Specifically, the management unit 421 sets the authority to unlock the electric lock 12 provided at the entrance 103 (see FIG. 2) of the space 102 (see FIG. 2) of the facility 10 to the entrance/exit side identification information. is configured to be assignable to

Further, the management unit 421 is configured to be able to assign authority to cooperation side identification information, which is identification information for the information management system 3 to identify the mobile terminal 7 . The management unit 421 of Embodiment 1 is configured to be able to assign the authority to unlock the electric lock 12 provided at the entrance/exit 103 of the space 102 of the facility 10 to the cooperation side identification information. That is, the authority assigned by the management unit 421 to the cooperation side identification information includes the authority to unlock the electric lock 12 provided at the entrance/exit 103 of the space 102 of the facility 10 . The electric lock 12 included in the facility 10 can be unlocked by the mobile terminal 7 included in the information management system 3, and the convenience for the user H1 (see FIG. 2) of the mobile terminal 7 is improved.

In the following description, when the entry/exit side identification information and the cooperation side identification information are not distinguished, each of the entry/exit side identification information and the cooperation side identification information may be referred to as identification information.

The management unit 421 of the first embodiment generates cooperation-side identification information based on, for example, a cooperation request (request) from the information management system 3 received by the communication unit 41, and assigns authority to the generated cooperation-side identification information. The cooperation request in the first embodiment is a request to generate cooperation-side identification information and to assign authority to the generated cooperation-side identification information. Since the management unit 421 generates the cooperation side identification information, the information management system 3 side does not need to generate the cooperation side identification information.

The management unit 421 associates the generated cooperation-side identification information with the authority assigned to the cooperation-side identification information, and stores them in the storage unit 43 .

The management unit 421 transmits the generated cooperation-side identification information and the authority assigned to the cooperation-side identification information to the control device 5 via the first communication unit 411 . In other words, the first communication unit 411 of the first embodiment transmits the cooperation-side identification information generated by the management unit 421 to the control device 5 .

In addition, the management unit 421 of the first embodiment manages the entrance/exit side identification information of the authentication terminal 13 used by the user H1 (see FIG. 2) of the mobile terminal 7 and the cooperation side identification information of the mobile terminal 7 in association with each other. do. In other words, the entry/exit side identification information of the authentication terminal 13 used by the same user H1 and the solidarity side identification information of the mobile terminal 7 are associated and managed.

The management unit 421 associates and manages the entrance/exit side identification information and the solidarity side identification information regarding the same user H1, so that the management unit 421 assigns the authority corresponding to the authority assigned to the entrance/exit side identification information, It can be assigned to the collaborating side identification information. ``Allocate the authority corresponding to the authority assigned to the entry/exit side identification information to the cooperation side identification information'' means not only assigning the same authority as the authority of the entry/exit side identification information to the cooperation side identification information, It may include assigning different rights to the cooperating party identity based on the rights of the party identity. For example, the management unit 421 may be configured to assign a narrower (weaker) authority than the authority of the entrance/exit side identification information to the cooperation side identification information.

The input unit 422 is configured to receive information from the information management system 3 , that is, to receive information from the information management system 3 . The input unit 422 is implemented by an API (Application Programming Interface) (hereinafter referred to as input API). The input unit 422 functions when the input API is invoked from the information management system 3 via the network. The input unit 422 of the first embodiment has a function of receiving a request for cooperation from the information management system 3 .

The output unit 423 is configured to output information to the information management system 3 . The output unit 423 is implemented by an API (hereinafter referred to as output API). The output unit 423 of the first embodiment outputs the cooperation side identification information generated by the management unit 421 to the information management system 3 when the input unit 422 receives the cooperation request. The output unit 423 may output, to the information management system 3 , authority information that is information about authority assigned to the cooperation-side identification information together with the cooperation-side identification information generated by the management unit 421 .

The storage unit 43 is a device selected from HDD (Hard Disk Drive), SSD (Solid State Drive), ROM (Read Only Memory), RAM (Random Access Memory), EEPROM (Electrically Erasable Programmable Read Only Memory), and the like. Configured.

The storage unit 43 associates and stores the entry/exit side identification information and the authority assigned to the entry/exit side identification information. Further, the storage unit 43 associates and stores the cooperation-side identification information and the authority assigned to the cooperation-side identification information. Further, the storage unit 43 of the first embodiment associates and stores the entry/exit side identification information of the authentication terminal 13 used by the user H1 (see FIG. 2) of the mobile terminal 7 and the cooperation side identification information of the mobile terminal 7. are doing.

(2.1.2) Configuration of facility As shown in FIG. 2, facility 10 has space 101 and space 102 . Space 102 is one of a plurality of managed spaces, and a certain level of authority is required to enter space 102 . The facility 10 also has an entrance 103 and a door 104 . The entrance/exit 103 is provided between the space 101 and the space 102 . The door 104 is installed so as to block the entrance 103 and is configured to be openable and closable.

(2.1.3) Configuration of Electric Lock The electric lock 12 is provided on the door 104 installed at the entrance 103 of the space 102 . The electric lock 12 is configured to lock the door 104 . The electric lock 12 is basically in a locked state at all times, and is unlocked under the control of the control device 5 .

(2.1.4) Configuration of Card Reader The card reader 11 is installed in the space 101 in front of the entrance/exit 103 of the space 102 included in the facility 10 . More specifically, the card reader 11 is installed near the door 104 installed at the entrance 103 . The card reader 11 of Embodiment 1 is installed so as to correspond one-to-one with the electric lock 12 for locking the door 104 . For example, if five electric locks 12 are installed within the facility 10 , five card readers 11 are also installed within the facility 10 .

The card reader 11 performs short-range wireless communication with the authentication terminal 13 held over the card reader 11 and is configured to be able to read the entrance/exit side identification information from the authentication terminal 13 . Near field communication is, for example, NFC (Near Field Communication). Further, the card reader 11 of the first embodiment is configured to be able to perform short-range wireless communication with the mobile terminal 7 held up to the card reader 11 and read cooperation-side identification information from the mobile terminal 7 . The card reader 11 outputs the read identification information to the control device 5 .

(2.1.5) Configuration of Authentication Terminal The authentication terminal 13 is, for example, an IC (Integrated Circuit) card. In the first embodiment, it is assumed that an employee working at the facility 10 carries the authentication terminal 13 . Entry/exit side identification information is recorded in the authentication terminal 13 .

The authentication terminal 13 is configured to perform short-range wireless communication with the card reader 11 while the authentication terminal 13 is held over the card reader 11, for example. The authentication terminal 13 transmits the stored entrance/exit side identification information or information related to the entrance/exit side identification information to the card reader 11 .

(2.1.6) Configuration of Control Device As shown in FIG. The control device 5 is installed so as to correspond to the electric lock 12 on a one-to-one basis.

The control device 5 includes a first communication section 51 , a second communication section 52 , an authentication section 53 and a storage section 54 .

The first communication unit 51 is configured to be able to communicate with the entrance/exit management server 4 via an external network such as the Internet. If the entrance/exit management server 4 is installed in the facility 10, the first communication unit 51 may be configured to be able to communicate with the entrance/exit management server 4 via an internal network such as a LAN.

The second communication unit 52 is configured to be able to communicate with the card reader 11 and the electric lock 12, for example, by wireless communication conforming to the specified low-power radio standard.

The storage unit 54 is composed of a device selected from ROM, RAM, EEPROM, or the like.

The storage unit 54 associates and stores the entry/exit side identification information and the authority assigned to the entry/exit side identification information. Further, the storage unit 54 associates and stores the collaborating side identification information and the authority assigned to the collaborating side identification information. Further, the storage unit 54 of the first embodiment associates and stores the entry/exit side identification information of the authentication terminal 13 used by the user H1 (see FIG. 2) of the mobile terminal 7 and the cooperation side identification information of the mobile terminal 7. are doing.

The authentication unit 53 is mainly composed of a computer system having one or more processors and one or more memories. The function of the authentication unit 53 is realized by one or more processors executing the program recorded in the memory. The program may be prerecorded in a memory, may be provided through an electric communication line such as the Internet, or may be provided by being recorded in a non-temporary recording medium such as a memory card.

The authentication unit 53 authenticates the identification information read by the card reader 11 . If the identification information read by the card reader 11 is stored in the storage unit 54 and is identification information to which the authority to unlock the electric lock 12 is assigned, the authentication unit 53 issues an unlocking instruction to the electric lock 12 . Output to lock 12 . On the other hand, if the identification information read by the card reader 11 is not stored in the storage unit 54 and if the identification information is not assigned the authority to unlock the electric lock 12, the authentication unit 53 unlocks the electric lock 12. No instructions are output to the electric lock 12.

(2.2) Configuration of Information Management System Next, the configuration of the information management system 3 will be described with reference to FIG.

As shown in FIG. 1, the information management system 3 includes an information management server 6 and a mobile terminal 7 .

(2.2.1) Configuration of Information Management Server As shown in FIG. there is

The cooperation-side communication unit 61 is configured to communicate with the entrance/exit management system 2, which is another system, and the mobile terminal 7, regarding the cooperation-side identification information. The cooperation-side communication section 61 has a first communication section 611 and a second communication section 612 .

The first communication unit 611 is configured to be able to communicate with the mobile terminal 7 via an external network such as the Internet. For example, the first communication unit 611 receives a cooperation request from the mobile terminal 7 .

The second communication unit 612 is configured to be able to communicate with the information management system 3 via an external network such as the Internet. More specifically, the second communication unit 612 is configured to communicate with the entrance/exit management server 4 included in the entrance/exit management system 2 .

Also, the second communication unit 612 of the first embodiment transmits a cooperation request to the entrance/exit management system 2 in response to the cooperation request from the mobile terminal 7 . Also, the second communication unit 612 of the first embodiment receives the cooperation-side identification information generated by the entrance/exit management system 2 .

In addition, when the first communication unit 611 and the second communication unit 612 are not distinguished in the following description, each of the first communication unit 611 and the second communication unit 612 is referred to as the cooperation side communication unit 61 .

The control unit 62 is mainly composed of a computer system having one or more processors and one or more memories. In the control unit 62, the functions of the control unit 62 are realized by one or more processors executing programs recorded in the memory. The program may be prerecorded in a memory, may be provided through an electric communication line such as the Internet, or may be provided by being recorded in a non-temporary recording medium such as a memory card.

As shown in FIG. 1 , the control unit 62 has a cooperation side management unit 621 .

The cooperation-side management unit 621 manages cooperation-side identification information. The cooperation-side identification information is identification information for the cooperation-side management unit 621 to identify the mobile terminal 7 .

When the first communication unit 611 receives a cooperation request from the mobile terminal 7 , the cooperation-side management unit 621 of the first embodiment transmits the cooperation request to the entrance/exit management system 2 via the second communication unit 612 . More specifically, the cooperation-side management unit 621 calls the input API of the entrance/exit management system 2 to input the cooperation request to the entrance/exit management system 2 . Here, the cooperation-side management unit 621 may input user information, which is information about the user H1 (see FIG. 2) of the mobile terminal 7, to the entrance/exit management system 2 together with the cooperation request. Then, the entry/exit management system 2 generates the cooperation side identification information, the output API of the entry/exit management system 2 functions, and the cooperation side identification information is output from the entry/exit management system 2 . Since the cooperating side identification information is generated on the entrance/exit management system 2 side, there is an advantage that the information management system 3 side does not need to generate the cooperating side identification information.

When the second communication unit 612 receives the cooperation-side identification information from the entrance/exit management system 2, the cooperation-side management unit 621 stores the cooperation-side identification information received by the second communication unit 612 (cooperation-side communication unit 61) in the storage unit 63. be memorized. Furthermore, the cooperation-side management unit 621 transmits the cooperation-side identification information received by the second communication unit 612 to the portable terminal 7 that has output the cooperation request via the first communication unit 611 .

The storage unit 63 is configured by a device selected from HDD, SSD, ROM, RAM, EEPROM, or the like.

The storage unit 63 stores cooperation side identification information. Note that the storage unit 63 may associate and store the collaborating side identification information and the authority assigned to the collaborating side identification information.

(2.2.2) Configuration of Mobile Terminal The mobile terminal 7 is a mobile information terminal (smartphone, wearable terminal, or the like). In the first embodiment, it is assumed that the mobile terminal 7 is a smart phone possessed by an employee who works at the facility 10 or a trader who enters and exits the facility 10 .

As shown in FIG. 1 , the mobile terminal 7 includes a first communication section 71 , a second communication section 72 , a terminal control section 73 , a storage section 74 and a touch panel 75 .

The first communication unit 71 is configured to be able to communicate with the information management server 6 via an external network such as the Internet.

The second communication unit 72 is configured to perform short-range wireless communication with the card reader 11 in a state where the portable terminal 7 is held over the card reader 11, for example. The second communication unit 72 transmits the cooperation-side identification information stored in the storage unit 74 or information related to the cooperation-side identification information to the card reader 11 .

The touch panel 75 accepts an operation by the user H1 (see FIG. 2) of the mobile terminal 7 . Further, the touch panel 75 can present (display) information to the user H1.

The terminal control unit 73 is mainly composed of a computer system having one or more processors and one or more memories. In the terminal control unit 73, functions of the terminal control unit 73 are realized by one or more processors executing programs recorded in the memory. The program may be prerecorded in a memory, may be provided through an electric communication line such as the Internet, or may be provided by being recorded in a non-temporary recording medium such as a memory card.

As shown in FIG. 1 , the terminal control section 73 has a cooperation section 731 .

The cooperation unit 731 functions when the user H1 of the portable terminal 7 performs a predetermined operation on the touch panel 75, and transmits a cooperation request to the information management server 6 via the first communication unit 71. FIG. Further, when the first communication unit 71 receives the cooperation side identification information generated by the entrance/exit management system 2, the cooperation unit 731 causes the storage unit 74 to store the cooperation side identification information.

The storage unit 74 is configured by a device selected from ROM, RAM, EEPROM, or the like.

The storage unit 74 stores cooperation side identification information. Note that the storage unit 74 may associate and store the cooperation-side identification information and the authority assigned to the cooperation-side identification information.

(3) Operation of entrance/exit cooperation system Next, operation of the entrance/exit cooperation system 1 will be described with reference to FIG.

First, when the user H1 of the mobile terminal 7 performs a predetermined operation on the touch panel 75, the mobile terminal 7 transmits a cooperation request to the information management server 6 (S1).

When the information management server 6 receives the cooperation request from the mobile terminal 7, it transmits the cooperation request to the entrance/exit management system 2, which is another system (S2). Specifically, the information management server 6 calls the input API of the entrance/exit management server 4 to input a cooperation request to the entrance/exit management server 4 .

The entrance/exit management server 4 performs an input process (S3). Specifically, the entrance/exit management server 4 receives an input of a cooperation request.

The entrance/exit management server 4 generates cooperation side identification information (S4). Further, the entrance/exit management server 4 assigns authority to the generated cooperation side identification information (S5). Here, when user information is input together with the request for cooperation, the entrance/exit management server 4 identifies the entrance/exit side of the authentication terminal 13 used by the user H1 of the portable terminal 7 based on the user information. Authority corresponding to information may be assigned to the collaborating side identification information.

Then, the entrance/exit management server 4 registers the generated cooperation-side identification information (S6). Specifically, the entrance/exit management server 4 causes the storage unit 43 of the entrance/exit management server 4 to store the generated cooperation-side identification information. When user information is input together with the cooperation request, the entry/exit management server 4 receives the entry/exit side identification information of the authentication terminal 13 used by the user H1 of the mobile terminal 7 and the cooperation of the mobile terminal 7. It may be registered in association with the side identification information.

Next, the entrance/exit management server 4 transmits the generated cooperation side identification information to the control device 5 (S7). When user information is input together with the cooperation request, the entry/exit management server 4 may transmit the user information to the control device 5 together with the cooperation side identification information.

When receiving the cooperation side identification information from the entrance/exit management server 4, the control device 5 registers the cooperation side identification information (S8). Specifically, the control device 5 causes the storage unit 54 of the control device 5 to store the cooperation-side identification information received from the entrance/exit management server 4 . When user information is received from the entry/exit management server 4 together with the cooperation-side identification information, the control device 5 authenticates the authentication terminal 13 used by the user H1 of the portable terminal 7 based on the user information. The entry/exit side identification information of the mobile terminal 7 and the cooperation side identification information of the portable terminal 7 may be associated and registered.

The entrance/exit management server 4 performs output processing (S9, S10). Specifically, the entrance/exit management server 4 transmits the generated cooperation-side identification information to the information management server 6 . The entrance/exit management server 4 may output to the information management server 6 authority information, which is information about authority assigned to the cooperation-side identification information, together with the generated cooperation-side identification information.

The information management server 6 registers the cooperation side identification information received from the entrance/exit management server 4 (S11). Specifically, the information management server 6 causes the storage unit 63 of the information management server 6 to store the cooperation side identification information generated by the entrance/exit management server 4 .

The information management server 6 transmits the cooperation side identification information generated by the entrance/exit management server 4 to the portable terminal 7 (S12).

The portable terminal 7 registers the cooperation side identification information received from the information management server 6 (S13). Specifically, the mobile terminal 7 causes the storage unit 74 of the mobile terminal 7 to store the cooperation-side identification information generated by the entrance/exit management server 4 .

Note that the sequence diagram shown in FIG. 3 is merely an example, and the order of processing may be changed as appropriate, and processing may be added or deleted as appropriate.

(4) Modifications Embodiment 1 is merely an example of various embodiments of the present disclosure. Embodiment 1 can be modified in various ways according to design and the like, as long as the object of the present disclosure can be achieved.

Also, functions equivalent to those of the entry/exit management system 2 according to the first embodiment may be embodied by an entry/exit management method, a (computer) program, or a non-temporary recording medium recording the program. An entrance/exit management method according to one aspect is a method used in an entrance/exit management system 2 that is a system different from the information management system 3 . The entrance/exit management method has a communication step, a management step, and an allocation step. In the communication step, communication with the information management system 3 is performed. In the management step, authority for identification information used for authentication is managed. In the assignment step, authority is assigned to the collaborating side identification information. The cooperation-side identification information is identification information for the information management system 3 to identify the terminal (portable terminal 7). A program according to one aspect is a program for causing one or more processors to execute the entrance/exit management method.

Also, functions equivalent to those of the information management system 3 according to the first embodiment may be embodied by an information management method, a (computer) program, or a non-temporary recording medium recording the program. An information management method according to one aspect is a method used in an information management system 3 that communicates with an entrance/exit management system 2 . The information management method has a communication step and a management step. In the communication step, the entrance/exit management system 2 communicates with the identification information on the cooperation side. In the management step, the cooperation side identification information to which authority is assigned by the entrance/exit management system 2 is managed. A program according to one aspect is a program for causing one or more processors to execute the above information management method.

The entrance/exit management system 2 and the information management system 3 in the present disclosure include, for example, computer systems. A computer system is mainly composed of a processor and a memory as hardware. The functions of the entrance/exit management system 2 and the information management system 3 in the present disclosure are realized by the processor executing a program recorded in the memory of the computer system. The program may be recorded in advance in the memory of the computer system, may be provided through an electric communication line, or may be recorded in a non-temporary recording medium such as a computer system-readable memory card, optical disk, or hard disk drive. may be provided. A processor in a computer system is made up of one or more electronic circuits, including semiconductor integrated circuits (ICs) or large scale integrated circuits (LSIs). The integrated circuit such as IC or LSI referred to here is called differently depending on the degree of integration, and includes integrated circuits called system LSI, VLSI (Very Large Scale Integration), or ULSI (Ultra Large Scale Integration). In addition, a field-programmable gate array (FPGA) that is programmed after the LSI is manufactured, or a logic device capable of reconfiguring the bonding relationship inside the LSI or reconfiguring the circuit partitions inside the LSI may also be adopted as the processor. can be done. A plurality of electronic circuits may be integrated into one chip, or may be distributed over a plurality of chips. A plurality of chips may be integrated in one device, or may be distributed in a plurality of devices. A computer system, as used herein, includes a microcontroller having one or more processors and one or more memories. Accordingly, the microcontroller also consists of one or more electronic circuits including semiconductor integrated circuits or large scale integrated circuits.

The entrance/exit management system 2 may include at least the communication section 41 and the management section 421 .

The information management system 3 may include at least the cooperation side communication section 61 and the cooperation side management section 621 .

It is not an essential configuration of the entrance/exit management system 2 that at least some functions of the entrance/exit management server 4 are integrated in one housing, and at least some functions of the entrance/exit management server 4 are provided in a plurality of units. They may be provided dispersedly in the housing. For example, at least some functions of the entrance/exit management server 4 may be provided in the control device 5 .

It is not an essential configuration of the information management system 3 that at least some of the functions of the information management server 6 are integrated in one housing, and at least some of the functions of the information management server 6 are integrated into a plurality of housings. It may be distributed and provided. For example, at least part of the functions of the information management server 6 may be provided in another server included in the information management system 3 .

The facility 10 may be an apartment complex such as an apartment. If the facility 10 is an apartment building, the control device 5 is, for example, a lobby intercom.

The entrance/exit management system 2 (management unit 421 ) may generate cooperation-side identification information regardless of the cooperation request (request) received from the information management system 3 . The entrance/exit management system 2 may generate cooperation-side identification information based on setting inputs and the like performed on the entrance/exit management system 2 side. In addition, the entrance/exit management system 2 may assign authority to the cooperation side identification information regardless of the cooperation request (request) received from the information management system 3 . In other words, the cooperation request transmitted by the information management system 3 to the entrance/exit management system 2 may be a request for transmission of the cooperation-side identification information generated by the entrance/exit management system 2 . For example, the entrance/exit management system 2 may generate cooperation-side identification information in advance and assign authority to the generated cooperation-side identification information. In this case, the entrance/exit management system 2 transmits the cooperation side identification information to the information management system 3 in response to the setting input performed on the entrance/exit management system 2 side or the cooperation request received from the information management system 3 .

The management unit 421 does not need to associate and manage the entry/exit side identification information of the authentication terminal 13 used by the user H1 of the mobile terminal 7 and the cooperation side identification information of the mobile terminal 7 . For example, the management unit 421 may uniformly assign the same authority to the cooperation side identification information without allocating the authority corresponding to the authority assigned to the entrance/exit side identification information to the cooperation side identification information. .

In the above embodiment, the control device 5 and at least one of the card reader 11 and the electric lock 12 may be configured integrally. For example, the control device 5, the card reader 11, and the electric lock 12 may be configured integrally.

The mobile terminal 7 causes the touch panel 75 to display an authentication code corresponding to the cooperation side identification information, and the card reader 11 reads the authentication code displayed on the touch panel 75, so that the entrance/exit management system 2 authenticates the cooperation side identification information. may be configured to perform The authentication code may be, for example, a two-dimensional code such as a QR code (registered trademark), or a one-dimensional code (bar code).

Note that the authentication terminal 13 is not limited to an IC card, and may be a mobile information terminal (smartphone, wearable terminal, or the like). However, even if the authentication terminal 13 is a mobile information terminal, the authentication terminal 13 and the mobile terminal 7 are different terminals.

(Embodiment 2)
In the entrance/exit cooperation system 1 according to the second embodiment, the information management system 3 generates cooperation side identification information, and the entrance/exit management system 2 assigns authority to the cooperation side identification information generated by the information management system 3. , is different from the entrance/exit cooperation system 1 according to the first embodiment.

The entrance/exit cooperation system 1 of the second embodiment will be described below with reference to FIG.

First, when the user H1 of the mobile terminal 7 performs a predetermined operation on the touch panel 75, the mobile terminal 7 transmits a cooperation request to the information management server 6 (S21). The cooperation request of the second embodiment is a request to assign authority to the cooperation side identification information generated by the information management system 3 side.

When receiving the cooperation request from the mobile terminal 7, the information management server 6 generates cooperation side identification information corresponding to the mobile terminal 7 that has sent the cooperation request (S22). Specifically, the cooperation-side management unit 621 generates cooperation-side identification information.

Next, the information management server 6 transmits the cooperation-side identification information to the entrance/exit management system 2, which is another system (S23). That is, the cooperation-side communication unit 61 (second communication unit 612 ) of the information management server 6 transmits the cooperation-side identification information generated by the cooperation-side management unit 621 to the entrance/exit management system 2 . Specifically, the information management server 6 calls the input API of the entrance/exit management server 4 and inputs the cooperation side identification information to the entrance/exit management server 4 . Here, the information management server 6 may input the user information related to the portable terminal 7 to the entrance/exit management server 4 together with the cooperation-side identification information. The information management server 6 transmitting (inputting) the cooperation side identification information to the entrance/exit management system 2 is one aspect of the cooperation request. Since the information management system 3 side generates the cooperation side identification information and transmits the generated cooperation side identification information to the entrance/exit management system 2 side, the need to generate the cooperation side identification information on the entrance/exit management system 2 side can be eliminated. can.

That is, the input unit 422 of the entrance/exit management system 2 of the second embodiment receives the cooperation side identification information from the information management system 3 (information management server 6) via the communication unit 41 using the input API. In other words, the communication unit 41 (second communication unit 412 ) of the entrance/exit management system 2 of the second embodiment receives the cooperation-side identification information generated by the information management system 3 . The entrance/exit management system 2 of Embodiment 2 can receive identification information from another system (information management system 3) by using the input API.

The entrance/exit management server 4 performs input processing (S24). Specifically, the entrance/exit management server 4 receives an input of cooperation side identification information.

The management unit 421 of the entrance/exit management server 4 assigns authority to the cooperation side identification information received by the communication unit 41 (second communication unit 412) (S25). In other words, the management unit 421 of the entrance/exit management server 4 assigns authority to the cooperation side identification information received by the input unit 422 . Here, when user information is input together with the cooperation side identification information, the entrance/exit management server 4, based on the user information, enters/exits the authentication terminal 13 used by the user H1 of the portable terminal 7. An authority corresponding to the side identification information may be assigned to the cooperation side identification information.

Then, the entrance/exit management server 4 registers the cooperation side identification information received from the information management system 3 (S26). Specifically, the entrance/exit management server 4 causes the storage unit 43 of the entrance/exit management server 4 to store the cooperation-side identification information received from the information management system 3 . In addition, when user information is input together with the cooperation side identification information, the entrance/exit management server 4 stores the entrance/exit side identification information of the authentication terminal 13 used by the user H1 of the mobile terminal 7 and the mobile terminal 7 may be registered in association with the collaborating side identification information.

Next, the entrance/exit management server 4 transmits the cooperation side identification information received from the information management system 3 to the control device 5 (S27). When user information is input together with the cooperation-side identification information, the entrance/exit management server 4 may transmit the user information to the control device 5 together with the cooperation-side identification information.

When receiving the cooperation side identification information from the entrance/exit management server 4, the control device 5 registers the cooperation side identification information (S28). Specifically, the control device 5 causes the storage unit 54 of the control device 5 to store the cooperation-side identification information received from the entrance/exit management server 4 . When user information is received from the entry/exit management server 4 together with the cooperation-side identification information, the control device 5 authenticates the authentication terminal 13 used by the user H1 of the portable terminal 7 based on the user information. The entry/exit side identification information of the mobile terminal 7 and the cooperation side identification information of the portable terminal 7 may be associated and registered.

The entrance/exit management server 4 transmits a registration notification to the information management server 6 (S29). The entrance/exit management server 4 may transmit the authority information to the information management server 6 together with the registration notification.

When the information management server 6 receives the registration notification from the entrance/exit management server 4, the information management server 6 registers the cooperation side identification information (S30). Specifically, the information management server 6 causes the storage unit 63 of the information management server 6 to store the cooperation side identification information generated by the entrance/exit management server 4 .

The information management server 6 transmits the cooperation side identification information generated by the information management server 6 to the portable terminal 7 (S31).

The portable terminal 7 registers the cooperation side identification information received from the information management server 6 (S32). Specifically, the mobile terminal 7 causes the storage unit 74 of the mobile terminal 7 to store the cooperation-side identification information generated by the entrance/exit management server 4 .

Note that the sequence diagram shown in FIG. 4 is merely an example, and the order of processing may be changed as appropriate, and processing may be added or deleted as appropriate.

For example, the information management server 6 may perform the process of registering the cooperation side identification information (S30) after the process of generating the cooperation side identification information (S22), for example, before the process of step S23.

Further, the cooperation side identification information corresponding to the mobile terminal 7 may be registered in advance in the information management server 6 before the mobile terminal 7 transmits the cooperation request.

Alternatively, the portable terminal 7 may generate the cooperation side identification information and transmit the cooperation side identification information to the information management server 6 together with the cooperation request.

Embodiment 2 is but one example of various embodiments of the present disclosure. Embodiment 2 can be modified in various ways according to the design, etc., as long as the object of the present disclosure can be achieved.

Functions equivalent to those of the entrance/exit management system 2 according to the second embodiment may be embodied by an entrance/exit management method, a (computer) program, or a non-temporary recording medium recording the program.

Also, functions equivalent to those of the information management system 3 according to the second embodiment may be embodied by an information management method, a (computer) program, or a non-temporary recording medium recording the program.

Various configurations (including modifications) described in the second embodiment can be employed in appropriate combination with various configurations (including modifications) described in the first embodiment.

(Embodiment 3)
The entrance/exit linkage system 1 according to Embodiment 3 is different from the entrance/exit linkage system 1 according to Embodiments 1 and 2 in that the information management system 3 further includes a control device 8, a reader 14, and an electric lock 15. differ from

The entry/exit cooperation system 1 of the third embodiment will be described below with reference to FIG.

As described above, the information management system 3 of Embodiment 3 further includes the control device 8 , the reader 14 and the electric lock 15 .

The electric lock 15 is provided, for example, at a door, a shutter, a locker, or the like installed in a facility other than the facility 10 . In Embodiment 3, it is assumed that the electric lock 15 is provided on a door installed in a facility other than the facility 10 . The electric lock 15 is configured to lock the door. The electric lock 15 is basically in a locked state at all times, and is unlocked under the control of the control device 8 .

The reader 14 is installed so as to correspond to the electric lock 15 on a one-to-one basis. The reader 14 is configured to perform short-range wireless communication with the mobile terminal 7 held over the reader 14 and read the cooperation side identification information from the mobile terminal 7 . The reader 14 outputs the read cooperation side identification information to the control device 8 .

The control device 8 is installed so as to correspond to the electric lock 15 on a one-to-one basis.

The control device 8 includes a first communication section 81 , a second communication section 82 , an authentication section 83 and a storage section 84 .

The first communication unit 81 is configured to be able to communicate with the information management server 6 via an external network such as the Internet. If the information management server 6 is installed in the same facility as the control device 8, the first communication section 81 may be configured to communicate with the information management server 6 via an internal network such as a LAN.

The second communication unit 82 is configured to be able to communicate with the reader 14 and the electric lock 15 by short-range wireless communication conforming to the specified low-power wireless communication standard, for example.

The storage unit 84 is composed of a device selected from ROM, RAM, EEPROM, or the like. The storage unit 84 stores cooperation side identification information.

The authentication unit 83 is mainly composed of a computer system having one or more processors and one or more memories. The function of the authentication unit 83 is realized by one or more processors executing the program recorded in the memory. The program may be prerecorded in a memory, may be provided through an electric communication line such as the Internet, or may be provided by being recorded in a non-temporary recording medium such as a memory card.

The authentication unit 83 authenticates the cooperation side identification information read by the reader 14 . The authentication unit 83 outputs an unlocking instruction to the electric lock 15 when the cooperation side identification information read by the reader 14 is stored in the storage unit 84 . On the other hand, if the cooperation side identification information read by the reader 14 is not stored in the storage unit 84 , the authentication unit 83 does not output the unlocking instruction to the electric lock 15 . The authentication performed by the authentication unit 83 on the cooperation side identification information (mobile terminal 7) is different from the authentication performed by the entry/exit management system 2 on the cooperation side identification information (mobile terminal 7). .

The authentication unit 83 of the third embodiment transmits history information of authentication performed by the authentication unit 83 to the information management server 6 via the first communication unit 81 . In other words, the authentication unit 83 transmits history information, which is authentication information performed by the authentication unit 83 and using the mobile terminal 7 , to the information management server 6 via the first communication unit 81 . do.

The cooperation-side management unit 621 of the third embodiment manages history information received from the control device 8 . In other words, the cooperation-side management unit 621 manages history information that is information about authentication performed by the control device 8 (information management system 3 ) and using the mobile terminal 7 .

When the information management server 6 of Embodiment 3 receives a cooperation request from the portable terminal 7, it transmits the cooperation request and the history information to the entrance/exit management system 2, which is another system. In other words, the cooperation-side communication unit 61 (second communication unit 612) transmits the history information to the entrance/exit management system 2. FIG. Specifically, the information management server 6 calls the input API of the entrance/exit management server 4 to input a cooperation request to the entrance/exit management server 4 . In addition, the information management server 6 may transmit the cooperation-side identification information of the mobile terminal 7 that has transmitted the cooperation request to the entrance/exit management system 2 together with the history information.

The communication unit 41 (second communication unit 412) of the entrance/exit management system 2 (entrance/leaving management server 4) of the third embodiment performs authentication performed by the information management system 3 using the mobile terminal 7. Receive history information, which is information about history.

Then, the management unit 421 of the entrance/exit management server 4 associates and manages the history information received by the communication unit 41 and the cooperation-side identification information. Specifically, when the communication unit 41 receives the cooperation-side identification information together with the history information, the management unit 421 associates and manages the cooperation-side identification information received by the communication unit 41 and the history information. For example, the management unit 421 causes the storage unit 43 to store the cooperation-side identification information received by the communication unit 41 and the history information in association with each other. Further, when the management unit 421 generates the cooperation side identification information based on the cooperation request received by the communication unit 41, the management unit 421 associates the cooperation side identification information generated by the management unit 421 with the history information. to manage. For example, the management unit 421 stores the cooperation-side identification information generated by the management unit 421 and the history information in the storage unit 43 in association with each other.

The information management system 3 transmits history information, which is information for authentication performed on the information management system 3 side, to the entrance/exit management system 2, and the entrance/exit management system 2 associates the received history information with the cooperation side identification information. management. As a result, information relating to authentication performed by the information management system 3 can be managed by the entrance/exit management system 2 .

Instead of the controller 8 sending the history information to the information management server 6 , the mobile terminal 7 may send the history information to the information management server 6 .

Embodiment 3 is but one example of various embodiments of the present disclosure. Embodiment 3 can be modified in various ways according to design and the like as long as the object of the present disclosure can be achieved.

Also, functions equivalent to those of the entry/exit management system 2 according to the third embodiment may be embodied by an entry/exit management method, a (computer) program, or a non-temporary recording medium recording the program.

Also, functions equivalent to those of the information management system 3 according to the third embodiment may be embodied by an information management method, a (computer) program, or a non-temporary recording medium recording the program.

Various configurations (including modifications) described in the third embodiment can be employed in appropriate combination with various configurations (including modifications) described in the first and second embodiments.

(summary)
As described above, the entrance/exit management system (2) according to the first aspect includes a communication section (41) and a management section (421). A communication unit (41) is configured to communicate with an information management system (3). The management unit (421) manages authority for identification information used for authentication. The management unit (421) is configured to be able to assign authority to the cooperation side identification information. Information.

According to this aspect, authorization is given to the cooperation side identification information, which is the identification information of the terminal (portable terminal 7) of the information management system (3), which is a system other than the entrance/exit management system (2). Therefore, the terminal can unlock the electric lock (12) included in the entrance/exit management system (2), for example. To improve the convenience of the user (H1) who owns the terminal because it becomes possible to unlock the electric lock (12) included in the entrance/exit management system (2), for example, with a terminal of another system. can be done.

In the entrance/exit management system (2) according to the second aspect, in the first aspect, the management unit (421) generates the cooperation side identification information. The management unit (421) assigns authority to the generated cooperation side identification information. The communication section (41) transmits the cooperation side identification information generated by the management section (421) to the information management system (3).

According to this aspect, since the entry/exit management system (2) side can generate the cooperation side identification information, the information management system (3) side does not need to generate the cooperation side identification information.

In the entrance/exit management system (2) according to the third aspect, in the first or second aspect, the communication unit (41) receives the cooperation side identification information generated by the information management system (3). The management unit (421) assigns authority to the cooperation side identification information received by the communication unit (41).

According to this aspect, authority is assigned to the cooperation-side identification information generated by the information management system (3), so there is no need to separately generate the cooperation-side identification information by the entrance/exit management system (2).

The entrance/exit management system (2) according to the fourth aspect further comprises an input unit (422) in the third aspect. The input unit (422) receives the cooperation side identification information from the information management system (3) via the communication unit (41) using API. The management unit (421) assigns authority to the cooperation side identification information received by the input unit (422).

According to this aspect, API can be used to link with another system (information management system 3).

In the entrance/exit management system (2) according to the fifth aspect, in any one of the first to fourth aspects, the management unit (421) includes entrance/exit side identification information and cooperation side identification information to which authority is assigned. and are managed in association with each other. The entrance/exit side identification information is identification information used for authentication by an authentication terminal (13) provided in the entrance/exit management system (2), which is used by the user (H1) of the terminal (portable terminal 7).

According to this aspect, by managing the entry/exit side identification information and the cooperation side identification information of the same user (user H1) in association with each other, for example, cooperation side identification can be performed according to the authority assigned to the entry/exit side identification information. Permissions can be assigned to information.

In the entrance/exit management system (2) according to the sixth aspect, in any one of the first to fifth aspects, the authority assigned to the cooperation side identification information by the management unit (421) is the entrance (103) of the space (102). ) to enable the unlocking of the electric lock (12).

According to this aspect, the electric lock (12) can be unlocked by the terminal (portable terminal 7) included in the information management system (3), and the convenience of the user (H1) who owns the terminal is improved. do.

In the entrance/exit management system (2) according to the seventh aspect, in any one of the first to sixth aspects, the communication unit (41) receives history information. The history information is information about the history of authentication performed by the information management system (3) and using the terminal (portable terminal 7). The management unit (421) associates and manages the history information received by the communication unit (41) and the cooperation side identification information.

According to this aspect, the entrance/exit management system (2) side can manage the history information of the authentication performed by the information management system (3).

Configurations other than the first mode are not essential components of the entrance/exit management system (2), and can be omitted as appropriate.

An information management system (3) according to an eighth aspect is a system with which the entrance/exit management system (2) according to any one of the first to seventh aspects communicates. The information management system (3) comprises a cooperation side communication section (61) and a cooperation side management section (621). A cooperation-side communication unit (61) is configured to communicate with the entrance/exit management system (2) regarding cooperation-side identification information. The cooperation side management unit (621) manages cooperation side identification information.

According to this aspect, it is possible to cooperate with the entrance/exit management system (2), which is another system.

In the information management system (3) according to the ninth aspect, in the eighth aspect, the cooperation side management section (621) generates the cooperation side identification information. A cooperation side communication section (61) transmits the cooperation side identification information to the entrance/exit management system (2).

According to this aspect, the entrance/exit management system (2) does not need to generate the cooperation side identification information.

In the information management system (3) according to the tenth aspect, in the eighth or ninth aspect, the cooperation side communication section (61) receives the cooperation side identification information. The cooperation side management section (621) causes the storage section to store the cooperation side identification information received by the cooperation side communication section (61).

According to this aspect, for example, the information management system (3) need not generate the cooperation side identification information.

In the information management system (3) according to the eleventh aspect, in any one of the eighth to tenth aspects, the cooperation-side management section (621) manages history information. The history information is information relating to the history of authentication performed by the information management system (3) and in which the terminal (portable terminal 7) was used. A cooperation-side communication unit (61) transmits history information to the entrance/exit management system (2).

According to this aspect, the entrance/exit management system (2) side can manage the history information of the authentication performed by the information management system (3).

Configurations other than the eighth mode are not essential components of the information management system (3), and can be omitted as appropriate.

The entrance/exit management method according to the twelfth aspect is a method used in an entrance/exit management system (2) which is a system different from the information management system (3). The entrance/exit management method has a communication step, a management step, and an allocation step. In the communication step, communication is performed with the information management system (3). In the management step, authority for identification information used for authentication is managed. In the assignment step, authority is assigned to the collaborating side identification information. The cooperation side identification information is identification information for the information management system (3) to identify the terminal (portable terminal 7).

According to this aspect, authorization is given to the cooperation side identification information, which is the identification information of the terminal (portable terminal 7) of the information management system (3), which is a system other than the entrance/exit management system (2). Therefore, the terminal can unlock the electric lock (12) included in the entrance/exit management system (2), for example. To improve the convenience of the user (H1) who owns the terminal because it becomes possible to unlock the electric lock (12) included in the entrance/exit management system (2), for example, with a terminal of another system. can be done.

An information management method according to a thirteenth aspect is a method used in an information management system (3) that communicates with the entrance/exit management system (2) according to any one of the first to seventh aspects. The information management method has a communication step and a management step. In the communication step, communication regarding the identification information on the cooperation side is performed with the entrance/exit management system (2). In the management step, the cooperation side identification information to which authority is assigned by the entrance/exit management system (2) is managed.

According to this aspect, it is possible to cooperate with the entrance/exit management system (2), which is another system.

A program according to a fourteenth aspect is a program for causing one or more processors to execute the entrance/exit management method according to the twelfth aspect.

According to this aspect, in the entrance/exit management system (2), the cooperation side which is the identification information of the terminal (portable terminal 7) of the information management system (3) side which is a system other than the entrance/exit management system (2) Since the authority can be given to the identification information, the terminal can unlock, for example, the electric lock (12) included in the entrance/exit management system (2). To improve the convenience of the user (H1) who owns the terminal because it becomes possible to unlock the electric lock (12) included in the entrance/exit management system (2), for example, with a terminal of another system. can be done.

A program according to a fifteenth aspect is a program for causing one or more processors to execute the information management method according to the thirteenth aspect.

According to this aspect, the information management system (3) can cooperate with the entrance/exit management system (2), which is another system.

102 space 103 entrance 12 electric lock 13 authentication terminal 2 entrance/exit management system 3 information management system 41 communication unit 421 management unit 422 input unit 61 cooperation side communication unit 621 cooperation side management unit 7 portable terminal (terminal)
H1 User

Claims (15)

a communication unit configured to communicate with an information management system;
a management unit that manages authority for identification information used for authentication;
with
The management unit is configured to be able to assign the authority to cooperation side identification information, which is identification information for the information management system to identify a terminal,
Access control system. The management unit generates the cooperation-side identification information, assigns the authority to the generated cooperation-side identification information,
The communication unit transmits the cooperation-side identification information generated by the management unit to the information management system.
The entrance/exit management system according to claim 1. The communication unit receives the cooperation-side identification information generated by the information management system,
wherein the management unit assigns the authority to the cooperation-side identification information received by the communication unit;
The entrance/exit management system according to claim 1 or 2. an input unit that uses an API to receive the cooperation-side identification information from the information management system via the communication unit;
further comprising
The management unit assigns the authority to the cooperation-side identification information received by the input unit.
The entrance/exit management system according to claim 3. The management unit includes entrance/exit side identification information as the identification information used for the authentication by an authentication terminal that is used by the user of the terminal and is provided in the entrance/exit management system, and the to associate and manage the identification information of the cooperating side,
The entrance/exit management system according to any one of claims 1 to 4. The authority assigned by the management unit to the cooperation-side identification information includes authority to enable unlocking of an electric lock provided at the entrance/exit of the space.
The entrance/exit management system according to any one of claims 1 to 5. The communication unit receives history information about a history of authentication performed by the information management system and using the terminal,
The management unit associates and manages the history information received by the communication unit and the cooperation-side identification information.
The entrance/exit management system according to any one of claims 1 to 6. The information management system with which the entrance/exit management system according to any one of claims 1 to 7 communicates,
a cooperation-side communication unit configured to communicate with the entrance/exit management system regarding the cooperation-side identification information;
a collaborating side management unit that manages the collaborating side identification information;
comprising
Information management system. The cooperation-side management unit generates the cooperation-side identification information,
The cooperation-side communication unit transmits the cooperation-side identification information to the entrance/exit management system.
The information management system according to claim 8. The cooperation-side communication unit receives the cooperation-side identification information,
The cooperation-side management unit stores the cooperation-side identification information received by the cooperation-side communication unit in a storage unit.
The information management system according to claim 8 or 9. The cooperation-side management unit manages history information of authentication performed by the information management system and using the terminal,
The cooperation-side communication unit transmits the history information to the entrance/exit management system,
The information management system according to any one of claims 8 to 10. An entrance/exit management method used in an entrance/exit management system that is a system different from the information management system,
a communication step of communicating with the information management system;
a management step for managing authorization for identification information used for authentication;
an assignment step of assigning the authority to the cooperation side identification information, which is identification information for the information management system to identify the terminal;
having
Access control method. An information management method used in the information management system that communicates with the entrance/exit management system according to any one of claims 1 to 7,
a communication step of communicating with the entrance/exit management system regarding the identification information on the cooperating side;
a management step of managing the identification information of the cooperating side to which the authority is assigned by the entrance/exit management system;
having
Information management method. A program for causing one or more processors to execute the entrance/exit management method according to claim 12. A program for causing one or more processors to execute the information management method according to claim 13.

Images