JP6322271B2 - Mobile terminal, authentication method and program - Google Patents

Description

  The present invention relates to a portable terminal, an authentication method, and a program for performing usage authentication based on a user operation.

  A user terminal such as a smartphone or a mobile phone stores personal information such as an address book, a photo, a video, and an email, and other important information unique to the user. Therefore, in recent years, a lock function that requires input of a password or the like when accessing the home screen from the sleep state has attracted attention, and a mechanism for releasing the lock according to the input of a pattern, number, or character tracing the touch panel, Already implemented in many terminal devices.

  While user terminals such as smartphones have a very high frequency of on / off, they tend to be used in places where third parties exist such as in trains, so the lock function is convenient and safe for users. It is necessary to implement in consideration of the balance between the two. In this regard, the currently used lock function often uses a 4-digit number as the password, and although the convenience of the user is high, the security of the password is weak and vulnerable to theft or brute force attacks by being seen There is a problem of sex.

  Many devices for the lock function of the terminal device have been developed so far, and Patent Document 1 discloses an authentication information input device that generates a password from a combination of operations in which a user moves a mobile terminal and performs authentication using the password. Has been.

JP 2012-168802 A

  According to the authentication information input device of Patent Literature 1, although the lock can be released by an intuitive operation, it is difficult to satisfy both user convenience and safety as in the conventional case. For example, when the operation for permitting authentication is a simple operation, the user's convenience is high, but there is a high possibility that the operation is stolen by a third party, and the safety is lowered. On the other hand, if the operation that permits authentication is a complicated operation, it is difficult to memorize, the user's convenience is reduced, and a characteristic operation is likely to be stolen by a third party. This is also not preferable from the viewpoint of safety.

  The present invention has been made in view of such problems, and an object of the present invention is to provide a portable terminal, an authentication method, and a program capable of improving both convenience and safety in use authentication.

  In the first aspect of the present invention, a portable terminal that performs usage authentication based on a user's operation, a reception unit that receives authentication information input based on the user's operation, and the authentication information is input A detection unit that detects an authentication operation of the user at any timing in between, any one of the plurality of authentication information, one of the plurality of authentication operations, and one of a plurality of functions included in the mobile terminal The authentication received based on the storage unit that stores a plurality of combinations, the authentication information received by the reception unit, the authentication operation detected by the detection unit, and the combination stored in the storage unit When it is determined that both the information and the detected authentication operation are correct, use of a plurality of predetermined functions provided in the mobile terminal is permitted, and the received authentication is accepted. And distribution, if only one of the detected the authentication operation is determined to be correct, to provide a mobile terminal and an authentication unit to permit use of a portion of the predetermined plurality of functions.

  Moreover, the said detection part is good also as detecting the angle of the said portable terminal at the time of the input of the said authentication information as said authentication operation | movement.

  Moreover, the said detection part is good also as detecting the holding state of the said portable terminal by the said user at the time of the input of the said authentication information as said authentication operation | movement.

  The reception unit may receive the authentication information via a touch panel, and the detection unit may detect a pressing force applied to the touch panel when the authentication information is input as the authentication operation.

  Moreover, the said detection part is good also as detecting the rhythm of input operation at the time of the input of the said authentication information as said authentication operation | movement.

  According to a second aspect of the present invention, there is provided an authentication method for authenticating use of a mobile terminal, wherein the authentication information input based on a user operation is received, and either of the authentication information is input Detecting the user's authentication operation at timing, any of the plurality of authentication information stored in a storage unit, any of the plurality of authentication operations, and any of a plurality of functions of the portable terminal. When it is determined that both the received authentication information and the detected authentication operation are correct based on the plurality of associated combinations, the received authentication information, and the detected authentication operation, The use of a plurality of predetermined functions provided in the mobile terminal is permitted, and either the received authentication information or the detected authentication operation is correct When constant, it provides an authentication method including the steps of permitting the use of a portion of the predetermined plurality of functions.

  In a third aspect of the present invention, there is provided a program for authenticating use of a mobile terminal, wherein the mobile terminal receives an authentication information input based on a user operation, and the authentication information is input. The mobile terminal includes: a detection unit that detects an authentication operation of the user at any timing during the period; and a plurality of the authentication information stored in the storage unit; a plurality of the authentication operations; The received authentication information and the detected authentication based on a plurality of combinations associated with any of a plurality of functions, the authentication information received by the receiving unit, and the authentication operation detected by the detection unit When it is determined that both of the operations are correct, the use of a plurality of predetermined functions provided in the mobile terminal is permitted, and the received authentication information and the detected authentication When one of the work is determined to be correct, it provides the program to function as the authentication unit, the permission of the use of a portion of the predetermined plurality of functions.

  According to the present invention, usage authentication can be performed while improving both convenience and safety.

It is a figure which shows the function structure of a user terminal. It is a figure which shows an example of the authentication method of a user terminal. It is a figure which shows an example of the authentication method of a user terminal. It is a figure which shows an example of the authentication method of a user terminal. It is a flowchart which shows the flow of a process of an authentication method. It is a flowchart which shows the flow of a process of an authentication method. It is a flowchart which shows the flow of a process of an authentication method.

[Overview of authentication method]
First, an outline of a user terminal usage authentication method in the present embodiment will be described. In the authentication method of the present embodiment, when the user terminal is activated from the sleep state, the user authentication is performed by using both the input of a password and the operation of the user or the user terminal at the time of the input. Improve both convenience and safety.

  For example, when the use authentication is performed based on only one of the input and the operation, the surrounding third party can easily grasp whether the authentication condition is the input or the operation. In order to improve safety in such an authentication method, it is necessary to complicate the input content and the operation content that are permitted for authentication, which impairs convenience. On the other hand, in order to improve convenience, it is necessary to simplify the input contents and operation contents that are permitted for authentication, which impairs safety.

  On the other hand, when performing user authentication based on both input and operation, the third party is authenticated based on the input of a password or the like, or is authenticated based on the user's operation. It is impossible to determine whether or not the authentication condition is correct. For example, a third party who has contacted a user who has entered a password realized that it was difficult to grasp that the authentication conditions were hidden in the operation content other than the password, and that the operation was characterized. However, it is difficult to steal both input contents and operation contents at the same time.

As a result, the method of performing usage authentication based on both the input and the operation can improve the safety without complicating the input content and the operation content, for example, even if the number of digits of the password is reduced. Therefore, both user convenience and safety can be improved.
Moreover, since not only the operation content but also the input content is a condition, even if an operation that is performed by the user on a daily basis or an operation that is slightly different from the operation is adopted, it is accidentally authenticated unintentionally in a daily usage scene. There is no end. For this reason, it is possible to avoid an operation apparent from a third party as a condition for authentication, and as a result, further improvement in convenience and safety can be expected.

[Configuration of user terminal 1]
Next, a specific configuration of the user terminal 1 for performing usage authentication will be described. FIG. 1 is a block diagram showing a functional configuration of the user terminal 1. The user terminal 1 is an arbitrary portable terminal device such as a smartphone, a mobile phone, a tablet PC, or a portable game machine, and includes a display unit 11, various sensors 12, a camera 13, a storage unit 14, and a control unit 15. Is done.

  The display unit 11 includes a liquid crystal display, an organic EL (Electro-Luminescence) display, and the like, and displays various information based on the control of the control unit 15. The display unit 11 is provided with a touch panel 111 and receives a user operation.

The various sensors 12 are arbitrary sensors provided in the user terminal 1 and detect the operation of the user or the user terminal 1 when inputting a password or the like.
As an example of various sensors 12, an acceleration sensor that detects acceleration of the user terminal 1, a gyro sensor that detects angular velocity of the user terminal 1, an illuminance sensor that detects ambient illuminance, and a temperature sensor / humidity sensor that detects ambient temperature and humidity A geomagnetic sensor for detecting the ground, a pressure sensor for detecting the pressure applied to the user terminal 1, a proximity sensor for detecting the approach of an object, and the like can be used. In this embodiment, a sensor corresponding to the operation to be detected is used. Will be used.

The camera 13 is a digital camera provided on the front side and the back side of the display unit 11. The camera 13 provided on the surface side of the display unit 11 is a so-called in-camera, and photographs the user of the user terminal 1 himself / herself. The camera 13 provided on the back side of the display unit 11 is a so-called out camera, and shoots a subject other than the user of the user terminal 1.
The camera 13 is used, for example, to detect a user's operation (gripping state or line of sight) when inputting a password or the like.

The storage unit 14 is a memory such as a ROM and a RAM, or a storage medium such as a hard disk. The storage unit 14 stores a program for causing the control unit 15 to function and data generated when the control unit 15 operates.
In addition, the storage unit 14 stores conditions (a combination of input content and operation content) for obtaining use authentication of the user terminal 1. The conditions for obtaining the usage authentication are stored in the storage unit 14 when the user performs registration in advance via a registration menu screen (not shown).

  The control unit 15 is configured by, for example, a CPU, and functions as the reception unit 151, the detection unit 152, the authentication unit 153, and the activation control unit 154 by executing various programs stored in the storage unit 14.

  The accepting unit 151 accepts authentication information input based on a user operation. Note that the authentication information is characters, numbers, symbols, or combinations thereof that are input based on user operations, and corresponds to the above-described input content. In the present embodiment, since the user terminal 1 is provided with the touch panel 111, the reception unit 151 receives a touch operation position on the touch panel 111, an operation locus, and the like as authentication information. Of course, when the user terminal 1 is provided with a button instead of the touch panel 111, the reception unit 151 receives authentication information input via the button.

  The detection unit 152 detects the state of the user terminal 1 at any timing while the authentication information is input as state information. The state of the user terminal 1 is an arbitrary state detected by the various sensors 12. In the example shown below, the operation of the user or the user terminal 1 (hereinafter referred to as “authentication operation”) is used. The authentication operation corresponds to the above-described operation content, and the detection unit 152 detects the authentication operation based on the detection results of the various sensors 12 and the imaging results of the camera 13. As the authentication operation, any operation that can be detected by the various sensors 12 and the camera 13 can be used, and an example thereof will be described below.

[Authentication operation: inclination of user terminal 1]
As the authentication operation, the inclination (angle) of the user terminal 1 when the user inputs authentication information such as a password can be used. For example, when correct authentication information is input in a state where the user terminal 1 is tilted by 10 degrees, the use of the user terminal 1 is permitted, and the angle of the user terminal 1 is not 10 degrees even with correct authentication information. Can be suitably used in usage scenes where usage is not permitted.
The detection unit 152 can detect the inclination of the user terminal 1 by using the detection result of the acceleration sensor or the gyro sensor. As the inclination of the user terminal 1, the inclination of the XYZ axes with respect to an arbitrary axis can be used.

[Authentication operation: gripping state of user terminal 1]
As the authentication operation, a gripping state of the user terminal 1 by a user who has entered authentication information such as a password can be used. For example, when correct authentication information is input while the user is holding the user terminal 1 with three fingers, use of the user terminal 1 is permitted, and even with correct authentication information, the user can hold with three fingers. If not, it can be suitably used in a usage scene where usage is not permitted.
The detection unit 152 can detect the gripping state of the user terminal 1 by the user by using the detection result of the pressure sensor provided in the frame part of the user terminal 1.

As an example of the gripping state, the number of fingers of the user holding the user terminal 1 is taken as an example. However, the present invention is not limited to this. For example, the user can use the illuminance sensor, the camera 13, or the like of the user terminal 1. Whether or not it is covered with a finger may be used as a gripping state. Specifically, when correct authentication information is input with the illuminance sensor or the like covered with a finger, use of the user terminal 1 is permitted, and even if the correct authentication information is provided, the illuminance sensor or the camera 13 is not covered. If not, usage may be prohibited.
In this case, the detection unit 152 can detect the gripping state of the user terminal 1 by the user by using the detection result of the illuminance sensor and the photographing result of the camera 13.

[Authentication Operation: Pressing Force on Touch Panel 111]
As the authentication operation, a pressing force on the touch panel 111 accompanying the input of authentication information can be used. For example, when the pressing force on the touch panel 111 when correct authentication information is input is equal to or greater than the threshold, the user terminal 1 is permitted to be used, and the pressing force on the touch panel 111 is less than the threshold even if the authentication information is correct. In this case, it can be suitably used in a usage scene where usage is not permitted.
Based on the detection result of the pressure sensor provided on the touch panel 111 and the contact area of the finger with the touch panel 111 (the contact area increases when the pressing force is high), the detection unit 152 detects the touch panel 111 associated with the input of authentication information. The pressing force can be detected.

Note that when the pressing force on the touch panel 111 is used as an authentication operation, a part of the operation on the touch panel 111 may be noted.
For example, when a 4-digit number is used as the authentication information, it is based on whether or not the pressing force required for inputting a predetermined number of digits (for example, the second digit) is higher than the pressing force required for inputting another number of digits. It is also possible to grant usage permission. Further, when characters, numbers, symbols, etc. drawn on the touch panel 111 are used as authentication information, the pressing force required to input a predetermined stroke number (for example, the second stroke) of the drawn characters or the like is input for another stroke number. The use permission may be made based on whether or not the pressing force required for the above is higher.

Moreover, it is good also as using not the pressing force with respect to the touch panel 111 but the pressing force with respect to the terminal main body of the user terminal 1 as authentication operation | movement. For example, when correct authentication information is input and a pressing force equal to or greater than a threshold is applied to a predetermined part of the terminal body, the user terminal 1 is permitted to be used, and even if the correct authentication information is correct When the pressing force on the part is lower than the threshold value, it can be suitably used in a use scene where use is not permitted.
In this case, the detection unit 152 can detect the pressing force applied to the terminal body by using the detection result of the pressure sensor provided in the user terminal 1.

[Authentication action: User's line of sight]
As the authentication operation, a user's line of sight when inputting authentication information can be used. For example, when correct authentication information is input in a state where the user has removed his / her line of sight from the display unit 11, the user terminal 1 is allowed to be used, and even if the authentication information is correct, the user directs his / her line of sight to the display unit 11. In such a case, it can be suitably used in a usage scene where usage is not permitted.
The detection unit 152 can detect the user's line of sight when the authentication information is input by cooperating with the camera 13 (in-camera) provided on the surface side of the display unit 11 and following the user's line of sight.

[Authentication action: Input operation rhythm]
As the authentication operation, a rhythm of an input operation when inputting authentication information can be used. As the rhythm, the length of time between two points and the strength of input can be used. For example, when a 4-digit number is used as authentication information, a rhythm (interval or strength) for inputting a 4-digit number is used. It can be suitably used in a usage scene where usage is permitted based on the above.
The detection unit 152 can detect the rhythm of the input operation when inputting authentication information based on the time of the input operation received by the reception unit 151 and the detection result of the pressure sensor provided on the touch panel 111.

  Although an example of the authentication operation has been described above, what operation is adopted as the authentication operation is determined as appropriate, and is not limited to the above-described operation. Further, as the authentication operation, the above-described operation may be used alone or in combination as appropriate.

The detection unit 152 detects the operation of the user (user terminal 1) who is inputting the authentication information as the authentication operation, and can detect the authentication operation at an arbitrary timing. For example, the detection unit 152 operates at the timing immediately before inputting authentication information, operation at the start of input of authentication information, operation during input of authentication information, operation at the end of input of authentication information, immediately after input of authentication information. It is possible to detect an operation at an arbitrary timing such as the above-described operation as an authentication operation.
In other words, the temporal determination of whether or not the authentication operation is satisfied can be performed at any timing immediately before the input of authentication information, at the start of input, during input, at the end of input, or immediately after the end of input. Similarly, the determination may be to determine whether the user or the like satisfies the authentication operation at a momentary temporary point, or may determine whether the user or the like satisfies the authentication operation in a predetermined period.

Returning to FIG. 1, the authentication unit 153 determines whether to permit use of the user terminal 1 based on the authentication information received by the reception unit 151 and the authentication operation detected by the detection unit 152. Specifically, when the authentication unit 153 matches the conditions stored in the storage unit 14 with the authentication information and the authentication operation, the authentication unit 153 unlocks the user terminal 1 and permits the use, but does not match the conditions. The user terminal 1 is not unlocked and is kept in an unusable state.
As an example, as shown in FIG. 2A, when the condition for obtaining usage authentication is the authentication information “9876” and the authentication operation is “tilt 10 degrees”, as shown in FIG. When the user terminal 1 is tilted 10 degrees and a correct number is input, authentication is performed and use of the user terminal 1 is permitted.

  Note that when only one of the authentication information and the authentication operation is correct and the other is incorrect, the authentication unit 153 permits the use of the user terminal 1 by limiting the functions that can be used as compared to the case where both are correct. It is good. The restriction of some functions can be arbitrarily set, for example, accepting incoming calls, not accepting outgoing calls, allowing some browsing and use of the address book, and not allowing other viewing and use.

In addition, it is arbitrary whether the authentication unit 153 employs authentication information or an authentication operation as a condition for restricting a part of the function, and a part of use is permitted when the authentication information is correct and the authentication operation is incorrect. It is also possible to allow some use when the authentication operation is correct and the authentication information is incorrect, and when either one is correct regardless of the type of authentication information or authentication operation. It is good also as permitting use of a part.
Further, the function permitted when only the authentication information is correct may be different from the function permitted when only the authentication operation is correct.

Returning to FIG. 1, when the authentication unit 153 permits the use, the activation control unit 154 activates a function of a type corresponding to the received authentication information or the detected authentication operation.
For example, as shown in FIG. 3A, when the first condition for obtaining usage authentication is the authentication operation “tilt 10 degrees” and the authentication information “M”, as shown in FIG. When the user draws the letter “M” on the touch panel 111 with the user terminal 1 tilted by 10 degrees, the activation control unit 154 activates the mailer. Further, as shown in FIG. 3A, when the second condition for obtaining the use authentication is the authentication operation “tilt 10 degrees” and the authentication information “W”, as shown in FIG. When the user draws the letter “W” on the touch panel 111 with the user terminal 1 tilted by 10 degrees, the activation control unit 154 activates the browser.

  Even in this case, the use of functions other than the predetermined function to be activated may be permitted, or the use may be prohibited. Specifically, in the case of the example shown in FIG. 3 (A), the mailer may be activated and use may be permitted for functions other than the mailer. It may be denied. Even if the use of functions other than the function to be activated is not permitted, the use of functions related to the function to be activated (for example, the address book when mailer is activated) is permitted. Also good.

  In the example shown in FIG. 3, different authentication information is set for a common authentication operation to change the function to be started after use authentication. However, the present invention is not limited to this. Specifically, as shown in FIG. 4A, different functions may be set up by setting different authentication operations for common authentication information. Also, as shown in FIG. As described above, the function to be activated may be different for each combination of authentication information and authentication operation.

[Processing of user terminal 1]
The configuration of the user terminal 1 has been described above. Subsequently, a processing flow of the user terminal 1 will be described with reference to FIGS. 5 to 7. 5 to 7 are flowcharts showing an example of the processing flow of the user terminal 1.

FIG. 5 shows an example of the flow of processing for permitting use when both the authentication information and the authentication operation are correct.
As shown in FIG. 5, in step S <b> 1, the accepting unit 151 accepts input of authentication information via an input unit such as the touch panel 111. Subsequently, in step S <b> 2, the detection unit 152 detects an authentication operation based on the detection results of the various sensors 12 and the imaging results of the camera 13.

  Subsequently, in step S3, the authentication unit 153 determines whether the authentication information is correct, and in step S4, determines whether the authentication operation is correct. If it is determined in step S3 and step S4 that both the authentication information and the authentication operation are correct, in step S5, the authentication unit 153 permits the use of the user terminal 1 and ends the process. On the other hand, if at least one of the authentication information and the authentication operation is not correct in the determinations in step S3 and step S4, the authentication unit 153 ends the process without permitting the use of the user terminal 1 in step S6.

Subsequently, FIG. 6 shows an example of a flow of processing for permitting the use of all functions when both the authentication information and the authentication operation are correct, and permitting the use of some functions when only one of them is correct.
As shown in FIG. 6, in step S11, the accepting unit 151 accepts input of authentication information, and in subsequent step S12, the detecting unit 152 detects an authentication operation.

  Subsequently, in step S13, the authentication unit 153 determines whether or not the authentication information is correct. If the authentication information is correct, the authentication unit 153 adds 1 to the score in step S14. In step S15, the authentication unit 153 determines whether the authentication operation is correct. If the authentication operation is correct, the authentication unit 153 adds 1 to the score in step S16.

  Subsequently, in step S17, the authentication unit 153 determines whether the score is 2, that is, whether both the authentication information and the authentication operation are correct. If this determination is YES, in step S18, the authentication unit 153 permits the use of the user terminal 1 and ends the process.

On the other hand, when the determination in step S17 is NO, in step S19, the authentication unit 153 determines whether or not the score is 1, that is, only one of the authentication information and the authentication operation is correct. If this determination is YES, in step S20, the authentication unit 153 restricts some functions of the user terminal 1 to permit use, and ends the process.
On the other hand, if the determination in step S19 is NO, that is, if neither the authentication information nor the authentication operation is correct, in step S21, the authentication unit 153 ends the process without permitting the use of the user terminal 1.

The authentication determination history may be stored as appropriate. For example, by counting the number of scores 2, the number of scores 1, and the number of scores 0 as histories, it may be possible to grasp that another person is trying to unlock. The number of times counted in this manner may be appropriately notified to the user (more preferably, a user with a score of 2).
For example, if there is a history of score 1 or score 0 between the authentication of score 2 and the next authentication of score 2, the history (number of times or score 1 is given to the user who performed the authentication of score 2 , The presence / absence of score 0) can be reported, so that the user can grasp that there is a possibility that another user has tried to use the user terminal 1, which is preferable.

Subsequently, FIG. 7 shows an example of a flow of processing for automatically starting a predetermined function when use is permitted.
As shown in FIG. 7, in step S31, the accepting unit 151 accepts input of authentication information, and in the subsequent step S32, the detecting unit 152 detects an authentication operation.

Subsequently, the authentication unit 153 determines whether or not the authentication information is correct in Step S33, and determines whether or not the authentication operation is correct in Step S34. If it is determined in step S33 and step S34 that both the authentication information and the authentication operation are correct, the authentication unit 153 permits the use of the user terminal 1 in step S35, and then, in step S36, the activation control unit 154. Automatically activates the function of the type corresponding to the authentication information or the authentication operation, and ends the process.
Specifically, the activation control unit 154 automatically activates specific functions such as a mailer and a telephone. At this time, for example, the activation control unit 154 may automatically perform functions such as direct transition from a specific user to a mail inbox or a call function such as a telephone call to a specific user. The contents to be executed can be registered in advance by the user via the registration menu screen.

On the other hand, if at least one of the authentication information and the authentication operation is not correct in the determinations in step S33 and step S34, the authentication unit 153 ends the process without permitting the use of the user terminal 1 in step S37.
As described with reference to FIG. 6, when only one of the authentication information and the authentication operation is correct, the authentication unit 153 may restrict the partial function of the user terminal 1 and permit the use.

[Effect in this embodiment]
According to this embodiment described above, the following effects can be expected. In the present embodiment, it is determined whether to permit the use of the user terminal 1 by using both the user input and the user (user terminal 1) operation. Thereby, even if the conditions necessary for obtaining usage authentication are simplified, the strength of security can be maintained as compared to the case where usage authentication is performed based on only one of the input and operation. Both user convenience and safety can be improved.

Such an effect is prominent in a portable user terminal 1 such as a smartphone or a mobile phone. While these user terminals 1 have a very high frequency of on / off, they are not only in places where there is no need to worry about the eyes of third parties such as in the house or in the office, but also in the vicinity such as in trains. It is frequently used even in situations where there are people. For this reason, the user terminal 1 is strongly required to have both user convenience and safety as compared to other terminal devices (for example, desktop personal computers or the like) that receive authentication only at a limited timing in a limited place.
In this respect, by using both input and operation as a condition, a third party can determine whether usage authentication is performed based on the input of a password or the like, based on the operation of the user (user terminal 1). It is not possible to determine whether or not there is an authentication condition. As a result, even if the conditions necessary for obtaining the usage authentication are simplified, the safety can be improved, and it can be suitably used in the user terminal 1 having a high usage frequency regardless of the usage location.

  In particular, when the operation content is simplified, the user can obtain usage authentication with a simple operation, while the third party understands that the authentication conditions are hidden in operations other than input. This makes it more difficult to improve both user convenience and safety. Further, even if it is a simple operation, the input is also used as an authentication condition, so that it is possible to avoid accidental use authentication unintentionally, and as a result, further improvement in convenience and safety can be expected.

In addition, when the use is permitted and the function of the type corresponding to the input or operation is started, the user can immediately use the function desired by the user after the authentication, and the convenience of the user terminal 1 can be improved. Further improvement can be expected.
Also, when all functions can be used when both the input and operation are correct, and when only one of them is correct, the function is restricted and used. It can be suitably used in usage scenes such as when it is desired to use the function or when it is desired to permit the use of functions limited to friends or the like.

  As mentioned above, although this invention was demonstrated using embodiment, the technical scope of this invention is not limited to the range as described in the said embodiment. It will be apparent to those skilled in the art that various modifications or improvements can be added to the above embodiment. In particular, the specific embodiments of the distribution / integration of the devices are not limited to those illustrated above, and all or a part thereof may be added in arbitrary units according to various additions or according to functional loads. It can be configured functionally or physically distributed and integrated.

  When the input of characters such as “M” shown in FIG. 3B is used as the authentication information, the authentication unit 153 may perform authentication using handwriting determination using a predetermined handwriting determination technique. A further improvement in security can be expected by combining handwriting determination.

  In the above embodiment, the authentication method has been described using the user terminal 1 used by the user. However, such an authentication method may be performed by a component that can be incorporated in the user terminal 1. The user terminal 1 may perform the process based on the program installed on the computer.

1 ... User terminal (mobile terminal)
DESCRIPTION OF SYMBOLS 11 ... Display part 111 ... Touch panel 12 ... Various sensors 13 ... Camera 14 ... Memory | storage part 15 ... Control part 151 ... Reception part 152 ... Detection part 153 ... Authentication unit 154 ... Activation control unit

Claims (7)

A mobile terminal that performs usage authentication based on a user operation,
A reception unit that receives authentication information input based on the user's operation;
A detection unit for detecting an authentication operation of the user at any timing while the authentication information is input;
A storage unit that stores a plurality of combinations corresponding to one user, associating one of the plurality of authentication information, one of the plurality of authentication operations, and one of a plurality of functions included in the mobile terminal;
Based on the authentication information received by the reception unit, the authentication operation detected by the detection unit, and the combination stored in the storage unit, the received authentication information and the detected authentication operation When it is determined that both are correct, the use of a plurality of predetermined functions provided in the portable terminal is permitted, and when only one of the received authentication information and the detected authentication operation is determined to be correct, the predetermined An authentication unit that allows the use of some of the functions;
A mobile terminal comprising: The detection unit detects an angle of the mobile terminal at the time of inputting the authentication information as the authentication operation.
The mobile terminal according to claim 1. The detection unit detects a gripping state of the mobile terminal by the user when the authentication information is input as the authentication operation;
The portable terminal according to claim 1 or 2. The reception unit receives the authentication information via a touch panel,
The detection unit detects a pressing force on the touch panel when the authentication information is input as the authentication operation.
The portable terminal of any one of Claim 1 to 3. The detection unit detects a rhythm of an input operation at the time of inputting the authentication information as the authentication operation.
The portable terminal of any one of Claim 1 to 4. An authentication method for authenticating use of a mobile device,
Receiving authentication information input based on a user operation;
Detecting the user's authentication operation at any timing while the authentication information is input;
A plurality of combinations corresponding to one user, associating one of the plurality of authentication information stored in the storage unit, one of the plurality of authentication operations, and one of a plurality of functions included in the mobile terminal And determining whether both the received authentication information and the detected authentication operation are correct based on the received authentication information and the detected authentication operation, Permitting the use of a plurality of functions, and determining that one of the received authentication information and the detected authentication operation is correct, permitting the use of a part of the predetermined plurality of functions; ,
An authentication method that includes: A program for authenticating the use of a mobile device,
The portable terminal;
A reception unit for receiving authentication information input based on a user operation;
A detection unit that detects an authentication operation of the user at any timing while the authentication information is input, and any of the plurality of authentication information stored in a storage unit, and any of the plurality of authentication operations A plurality of combinations corresponding to one of the users associated with one of a plurality of functions included in the mobile terminal, the authentication information received by the reception unit, and the authentication operation detected by the detection unit. If it is determined that both the received authentication information and the detected authentication operation are correct, the use of a plurality of predetermined functions included in the mobile terminal is permitted, and the received authentication information and the detected When it is determined that any of the authentication operations is correct, an authentication unit that permits the use of a part of the predetermined plurality of functions,
Program to function as.

Images