JP7023139B2 - Unlocking system, unlocking device, unlocking method, terminal device and program - Google Patents

Description

The present invention includes an unlocking device including a first control unit, a first communication unit, and an unlocking unit, and a terminal device including a second control unit, a second communication unit, and an authentication information acquisition unit. Regarding unlocking system including.

Conventionally, there has been known a technique for unlocking a door locking device by using an authentication function of a terminal device (for example, a mobile phone, a smartphone, etc.).

For example, in Patent Document 1, a mobile phone transmits biometric data recognized by a voice recognition processing unit or the like of the mobile phone, a telephone number of the mobile phone, or the like to the locking / unlocking device, and the locking / unlocking device is the subject. An invention for determining whether or not to lock / unlock is disclosed by referring to biometric data, the telephone number, and the like.

Japanese Unexamined Patent Publication No. 2005-290739

However, when unlocking a door, some doors require high security, while others do not. For example, if you want to unlock the door of a room where confidential documents are stored, you need to authenticate strictly (high security is required), but if you want to unlock the door of an unused conference room, You don't have to authenticate so rigorously.

Here, if strict authentication is uniformly requested, security is ensured, but usability is reduced because it takes time and effort to register biometric information in advance and the authentication itself takes time and effort. In addition, if authentication is simplified uniformly, the necessary security will not be ensured. In this way, conventionally, the required security and convenience have been in a trade-off relationship.

In order to solve the above-mentioned problems, the present invention provides an unlocking system or the like capable of unlocking a door by an appropriate authentication method when the door is unlocked by authenticating with a terminal device. That is.

The unlocking system of the present invention is
An unlocking device including a first control unit, a first communication unit, and an unlocking unit,
An unlocking system including a second control unit, a second communication unit, and a terminal device including an authentication information acquisition unit.
The first control unit
The authentication method information indicating which of the plurality of authentication methods the unlocking device allows is transmitted via the first communication unit.
The second control unit
The authentication method information is received via the second communication unit, and the authentication method information is received.
Authenticate based on the user authentication information acquired by the authentication information acquisition unit,
If the authentication is successful, an unlocking request is transmitted to the unlocking device via the second communication unit.
The first control unit
When the unlocking request is received via the first communication unit, the unlocking unit is characterized by unlocking a predetermined lock.

The unlocking device of the present invention is
It is equipped with a control unit, a communication unit, and an unlocking unit.
The control unit
The own device transmits authentication method information indicating which of the plurality of authentication methods is allowed via the communication unit, and transmits the authentication method information.
When an unlocking request transmitted from a terminal device that has succeeded in authentication by any of the authentication methods is received via the communication unit, the unlocking unit is characterized by unlocking a predetermined lock. do.

The unlocking method of the present invention
A method of unlocking an unlocking device including a communication unit and an unlocking unit.
A step of transmitting authentication method information indicating which of the plurality of authentication methods the unlocking device allows, via the communication unit, and
When an unlocking request transmitted from a terminal device that has succeeded in authentication by any of the authentication methods is received via the communication unit, the step of causing the unlocking unit to unlock a predetermined lock is realized. It is characterized by doing.

The terminal device of the present invention is
It has a control unit, a communication unit, and an authentication information acquisition unit.
The control unit
The authentication method information transmitted by the unlocking device, which indicates which of the plurality of authentication methods the unlocking device allows, is received via the communication unit.
Authenticate based on the user authentication information acquired by the authentication information acquisition unit,
When the authentication is successful, the unlocking request is transmitted to the unlocking device via the communication unit.

The program of the present invention
In a computer equipped with a communication unit and an authentication information acquisition unit,
A step of receiving authentication method information transmitted by the unlocking device, which indicates which of the plurality of authentication methods the unlocking device allows, via the communication unit. When,
The step of executing authentication based on the user authentication information acquired by the authentication information acquisition unit, and
When the authentication is successful, the step of transmitting an unlocking request to the unlocking device via the communication unit is realized.

According to the unlocking system of the present invention, the door can be unlocked by an appropriate authentication method.

It is a figure for demonstrating the whole in 1st Embodiment. It is a figure for demonstrating the structure of the room in 1st Embodiment. It is a sequence diagram for demonstrating the outline of the operation in 1st Embodiment. It is a figure for demonstrating the structure of the terminal apparatus in 1st Embodiment. It is a figure for demonstrating the function (software block diagram) of the control part of the terminal apparatus in 1st Embodiment. It is a figure for demonstrating the structure of the unlocking apparatus in 1st Embodiment. It is a figure for demonstrating the function (software block diagram) of the control part of the unlocking apparatus in 1st Embodiment. It is a figure for demonstrating the advertisement information in 1st Embodiment. It is a figure for demonstrating the operation flow of the terminal apparatus in 1st Embodiment. It is a figure for demonstrating the operation flow of the unlocking apparatus in 1st Embodiment. It is a figure for demonstrating the operation flow of the unlocking apparatus (advertisement setting process) in 1st Embodiment. It is a figure for demonstrating the screen example in 1st Embodiment. It is a figure for demonstrating the screen example in 1st Embodiment. It is a figure for demonstrating the table in 2nd Embodiment.

Hereinafter, an embodiment for carrying out the present invention will be described with reference to the drawings. For convenience of explanation, a case where the terminal device of the present invention is applied to a smartphone which is a portable terminal device will be described as an embodiment, but communication with an unlocking device such as an information device such as a tablet or a wristwatch is described. Of course, any device can be applied as long as it is possible.

[1. First Embodiment]
[1.1 Overall configuration]
First, the overall configuration will be described with reference to FIG. FIG. 1 shows the unlocking system 1. The terminal device 10 which is a smartphone can be connected to the unlocking device 20 which unlocks the lock mechanism which is a door locking device. Here, the terminal device 10 and the unlocking device 20 are connected by wireless communication.

[1.2 System Overview]
The outline of the system in this embodiment will be described. The unlocking device 20 is attached to the door and can be connected to the terminal device 10 by short-range wireless communication such as Bluetooth (registered trademark). The unlocking device 20 is connected to a terminal device 10 registered in advance, and receives an unlocking request to unlock the door to which the unlocking device 20 is attached.

[1.2.1 Authentication method]
Even if the terminal device 10 is in the hands of a person other than the user due to loss or theft, the terminal device 10 requests the unlocking so that the door will not be unlocked by anyone other than the user. It is preferable to authenticate the user when transmitting. Here, there are the following five types of authentication methods (authentication functions) in the present embodiment.

(1) Password authentication Authentication is performed by inputting a password from the user. A password is a combination of (English) characters, numbers, symbols, and the like. Password authentication does not require registration of biometric information, is easy for users to register, and has the advantage of not requiring a special device for the terminal device, but it is due to the password being leaked or estimated. , There is a risk of spoofing by a third party, so there is a disadvantage that it is difficult to provide a high level of security.

(2) Face authentication Authentication is performed using the user's face. Authentication is performed based on whether or not the user's face information captured by the camera included in the terminal device 10 matches the face information registered in advance. While it has the advantage of being able to provide a relatively high level of security without using a special device for authentication, it is difficult to authenticate when it is affected by dark places or outside light, and the user masks it. There are disadvantages such as not being able to authenticate when using.

(3) Voiceprint authentication Authentication is performed using the voice of the user. Authentication is performed based on whether or not the voice characteristics acquired by the microphone included in the terminal device 10 match the voice characteristics registered in advance. While it has the advantage of being able to provide a relatively high level of security without using a special device for authentication, it has the disadvantage of not being able to be used in noisy places and the authentication accuracy being low. ..

(4) Iris authentication Authentication is performed using the iris of the user's eyes. The terminal device 10 has the disadvantages that it requires a separate iris sensor and that it is difficult to authenticate in places affected by external light, but it provides a higher level of security compared to other authentication functions. There is a merit that it becomes possible.

(5) Fingerprint authentication Authentication is performed using the user's fingerprint. The terminal device 10 has the disadvantage that it cannot be used when a separate fingerprint sensor is required, the hands are wet, or gloves are used, but it provides a higher level of security compared to other authentication functions. There is a merit that it becomes possible to do.

As described above, the plurality of authentication methods described above have differences in authentication accuracy, security level, and usability. For example, password authentication, which is an authentication method using a password, can be easily used, but there is a risk of password leakage, and it is difficult to provide a higher security level than other authentication methods.

Biometric authentication, which is an authentication method that uses biometric information such as faces, voice prints, irises, and fingerprints, can provide a high level of security, but since it is necessary to pre-register biometric information, passwords are easy to use. Inferior in certification. In addition, there are cases where it does not work well depending on the usage environment such as brightness, and fingerprint authentication and iris authentication cannot be used unless a special device such as a fingerprint sensor or iris sensor is installed in the terminal device. It can be said that there is no usability peculiar to biometric authentication.

Security can be enhanced by requiring biometrics when unlocking. However, if biometric authentication is required to unlock a place that does not require much security, the convenience will be reduced.

On the other hand, the security level required for doors is not always constant. For example, as shown in FIG. 2, when there are a plurality of rooms, the security level required to enter each room may be different. For example, there are rooms that anyone can enter (security level 0), such as break rooms, and rooms that require higher security than usual (security level 3), such as confidential document storage.

Therefore, the user sets the required security level for each unlocking device 20 installed on the door of each room, and the unlocking device 20 requests the terminal device 10 based on the set security level. By transmitting the type of information and the biometric authentication function and performing authentication according to the security level received by the terminal device 10, it is possible to perform an unlocking operation by appropriate authentication.

[1.2.2 Sequence diagram]
The flow of the entire system of this embodiment will be described with reference to the sequence diagram of FIG. In the sequence diagram of FIG. 3, the terminal device 10 and the unlocking device 20 will be described as a form in which they can be connected by Bluetooth. In this embodiment, Bluetooth also includes BLE (Bluetooth Low Energy) standard communication.

First, the unlocking device 20 transmits the Bluetooth advertisement packet (identification signal, hereinafter referred to as “advertisement information”) including the authentication method information (S1002). The authentication method information includes information on the security level indicating what kind of authentication method is used and the type of authentication method to be used.

When the terminal device 10 receives the advertisement information, the terminal device 10 is in a state of waiting for the unlocking operation by the user. Then, when the unlocking operation is performed by the user (S1004), the authentication method used for authentication is selected based on the authentication method information included in the advertisement information (S1006).

Then, using any of the selected authentication methods, it is determined whether or not the user has been successfully authenticated (S1008). Here, if the user authentication is not successful (S1008; No), another process is executed. For example, a process such as prompting the unlocking operation again or performing a different operation is executed.

When the user authentication is successful (S1008; Yes), the terminal device 10 transmits a Bluetooth connection request to the unlocking device 20 (S1010). The unlocking device 20 transmits a Bluetooth connection response to the terminal device 10 when communication between the terminal device 10 and Bluetooth is established (S1012).

When the communication between the unlocking device 20 and Bluetooth is established, the terminal device 10 transmits an unlocking request to the unlocking device 20 (S1014). The unlock request includes identification information (terminal ID) of the terminal device and information indicating the effectiveness of the terminal device. Here, the information indicating the validity of the terminal device is, for example, the terminal device, a certificate indicating whether the user can be trusted, or the like. It is possible to confirm the validity of the terminal device itself from the expiration date, validity, etc. of the certificate.

Upon receiving the unlock request, the unlocking device 20 registers the effectiveness of the terminal device 10 and the terminal device 10 based on the identification information of the terminal device included in the unlocking request or the information indicating the validity of the terminal device. It is verified whether it is a completed terminal device (S1016). Here, if the terminal device 10 is a registered terminal device and is a legitimate terminal device (a terminal device whose effectiveness has been confirmed), the lock mechanism is unlocked and the terminal device 10 is also unlocked. Notifies that the unlocking has been performed (S1018, S1020).

[1.3 Device configuration]
Next, the configuration of each device will be described with reference to the drawings.

[13.1 Terminal device configuration]
The configuration of the terminal device 10 will be described with reference to FIGS. 4 and 5. FIG. 4 is a configuration diagram showing the configuration of the terminal device 10, and FIG. 5 is a configuration diagram realized by executing software in the control unit 100.

As shown in FIG. 4, the terminal device 10 includes a control unit 100 (control unit, second control unit), a communication unit 110, a voice input unit 114 (authentication information acquisition unit), a voice output unit 116, and a touch panel. Unit 120 (authentication information acquisition unit), short-range wireless communication unit 130 (communication unit, second communication unit), fingerprint sensor unit 140 (authentication information acquisition unit), camera unit 142 (authentication information acquisition unit), and It is configured to include an infrared camera unit 144 (authentication information acquisition unit) and a storage unit 150.

The control unit 100 (control unit, second control unit) is a functional unit for controlling the entire terminal device 10. The control unit 100 realizes various functions by reading and executing various programs stored in the storage unit 150, and is configured by, for example, one or a plurality of arithmetic units (for example, a CPU (Central Processing Unit)). There is.

The communication unit 110 is a functional unit that connects to a base station by, for example, LTE communication, and communicates with other devices such as an external server. An antenna 112 is connected to the communication unit 110. In the present embodiment, the communication unit 110 performs LTE communication, but other communication such as 5G communication, LAA communication, and wireless LAN communication using IEEE802.11a / b / g / n / ac may be performed. ..

The voice input unit 114 (authentication information acquisition unit) is a function unit for inputting voice, and converts the input voice into voice data and outputs it. For example, it is configured by a microphone or the like, and voice input is performed during a call with a mobile phone network, or voice data is acquired during authentication by a voiceprint.

The audio output unit 116 is a functional unit that outputs audio. For example, it is composed of a speaker, and outputs voice when talking to a mobile phone network or outputs voice when playing content.

The touch panel unit 120 (authentication information acquisition unit) is an operation unit / display unit in which a display unit 122 for displaying various information and a touch sensor unit 124 for receiving touch input from a user are integrated. Here, the display unit 122 is composed of, for example, a liquid crystal display or an organic EL display. Further, the touch sensor unit 124 is a functional unit capable of receiving a touch input from the user. As a method for the touch sensor unit 124 to detect the touch input, for example, a capacitance method, a pressure-sensitive method, an infrared ray detection method, or the like is used.

Further, in the present embodiment, the touch panel unit 120 in which the display unit 122 and the touch sensor unit 124 configured on the display unit 122 as an operation unit are integrated will be described as the display unit and the operation unit. May have a different configuration.

Further, the touch panel unit 120 is used to acquire the handwriting information acquired from the stroke of the handwriting input when the user authenticates by the handwriting of the handwriting input.

The short-range wireless communication unit 130 (communication unit, second communication unit) is a functional unit for performing wireless communication with a short-range device. An antenna 132 is connected to the short-range wireless communication unit 130. For example, any method such as Bluetooth, NFC, ZigBee, or wireless USB may be used. In this embodiment, Bluetooth will be described as an example.

The fingerprint sensor unit 140 (authentication information acquisition unit) acquires information related to fingerprints (fingerprint information) as biometric information of the user. The fingerprint information acquired by the fingerprint sensor 140 is used, for example, for fingerprint authentication based on a fingerprint pattern. In this embodiment, the fingerprint is acquired as the biometric information of the user, but as the biometric information acquisition unit, a retinal sensor (retinal information) or a vein sensor (vein) is used instead of the fingerprint sensor unit 140. Information) may be provided. Further, a plurality of sensors may be provided in combination.

The camera unit 142 (authentication information acquisition unit) outputs image data based on the captured image. The image captured by the camera unit 142 is used, for example, for face recognition based on the appearance characteristics of the user's face. Further, the infrared camera unit 144 (authentication information acquisition unit) acquires the user's iris pattern. The iris pattern acquired by the infrared camera unit 144 is used, for example, for iris recognition.

The storage unit 150 is a functional unit that stores various programs, various data, and temporary data necessary for the operation of the terminal device 10. The storage unit 150 is composed of, for example, a semiconductor memory, an HDD (Hard Disk Drive), or the like. Further, the storage unit 150 secures a program storage area 152, a terminal information storage area 154, a password storage area 156, and a biological information storage area 158 as storage areas.

The program storage area 152 is an area for storing various programs. The control unit 100 can realize various functions by reading and executing the program stored in the program storage area 152.

The terminal information storage area 154 is an area for storing information about the terminal device. For example, the terminal ID information that uniquely identifies the terminal device and the certificate information for guaranteeing the validity of the software of the terminal device are stored. In addition, the current registration status when the password or biometric information is registered can be stored, and is updated each time the password or biometric information is registered or deleted.

The password storage area 156 is an area for storing a password used for password authentication. The password here is, for example, a combination of letters, numbers, and symbols. The password storage area 156 can store one or more passwords.

The biometric information storage area 158 is an area for storing biometric information used for biometric authentication. When the biometric information is registered, fingerprint data, eye (iris) image data, voice print data, and face image data are stored. Further, the characteristic data of each biological information may be stored instead of the data itself.

Further, the touch panel unit 120, the fingerprint sensor unit 140, the camera unit 142, and the infrared camera unit 144 have a role as an authentication information acquisition unit 160. That is, the authentication information (user authentication information) from the user is acquired according to the authentication method.

Needless to say, each functional unit included in the authentication information acquisition unit 160 may be used for other purposes. For example, the camera unit 142 can be used for taking a picture, the touch panel unit 120 can receive operation input from the user, and can display various information.

FIG. 5 is a diagram showing a configuration realized by software of the terminal device 10. When the control unit 100 executes the program, it operates as each functional unit.

The biometric authentication unit 1000 can realize the functions of the face authentication unit 1002 for face authentication, the iris authentication unit 1004 for iris authentication, the fingerprint authentication unit 1006 for fingerprint authentication, and the voiceprint authentication unit 1008 for voiceprint authentication.

The face recognition unit 1002 compares the face image information, which is information about the face image acquired from the face image acquisition unit 1012, with the face image information stored in the biometric information storage area 158, and if they match, the authentication is successful. judge. The face image information may be image data of the captured face image, or may be stored with feature points (feature amounts) based on the face image.

First, the face image acquisition unit 1012 acquires information (face image information) related to the user's face image from the image taken by the camera unit 142. Here, the user's face image acquired by the face image acquisition unit 1012 may be a preview image acquired by the camera unit 142 or a photographed image. Further, at the time of acquiring the face image, the face image may or may not be displayed on the display unit 122.

The iris recognition unit 1004 compares the iris information, which is information based on the eye image acquired from the eye image acquisition unit 1014, with the iris information stored in the biological information storage area 158, and determines that the authentication is successful if they match. do. The iris information may be image data of an eye image taken by the infrared camera unit 144, or may store feature points (feature amounts) based on the eye image. Further, the iris portion may be cut out from the eye image and used as iris information.

The eye image acquisition unit 1014 acquires information (iris information) related to the user's eye image from the image taken by the infrared camera unit 144. Here, the user's eye image acquired by the eye image acquisition unit 1014 may be a preview image acquired by the infrared camera unit 144 or a photographed image. Further, the eye image may or may not be displayed on the display unit 122 at the time of acquiring the eye image.

The fingerprint authentication unit 1006 compares the fingerprint information, which is information based on the fingerprint acquired from the fingerprint acquisition unit 1016, with the fingerprint information stored in the biometric information storage area 158, and if they match, it is determined that the authentication is successful. The fingerprint information is data related to the fingerprint acquired by the fingerprint sensor 140 (for example, fingerprint feature points, fingerprint image data, etc.). Here, as the fingerprint sensor 140, a known fingerprint sensor can be used.

The voice print authentication unit 1008 compares the voice information, which is information based on the voice acquired from the voice acquisition unit 1018, with the voice information stored in the biometric information storage area 158, and if they match, it is determined that the authentication is successful. The voice information is voice data input by the voice input unit 114. Voiceprint data, features, etc. that are output based on voice data are used.

The biometric authentication unit 1000 has biometric authentication functions other than those shown here, such as authentication by retinal information acquired by a retinal sensor (not shown), authentication by vein information acquired by a venous sensor (not shown), and a touch panel. It may have a function such as authentication by the user's handwriting information acquired by the unit 120.

When the biometric authentication unit 1000 performs biometric authentication, it is completely consistent that the biometric information data stored in the biometric information storage area 158 and the biometric information data acquired by each acquisition unit match. This includes the case where the specified amount or more is matched and the case where the specified amount or more is matched. That is, the data does not necessarily have to be an exact match, and it is sufficient if the data that are generally determined to ensure security match.

Further, the terminal device 10 of the present embodiment is biometric authentication such as password authentication, PIN (Personal Identification Number) code authentication, and pattern authentication in which authentication is performed by the locus of the user sliding his / her finger on the touch panel unit 120. It is also possible to perform authentication other than. Of these, when performing password authentication, for example, password authentication is performed by the password authentication unit 1500 based on the password entered by the software key displayed on the touch panel unit 120. The password authentication unit 1500 compares the entered password with the password stored in the password storage area 156, and if they match, it is determined that the authentication is successful.

In this embodiment, the biometric information used by the biometric authentication unit 1000 for authentication and the information used for user authentication such as the password used by the password authentication unit 1500 for authentication are collectively referred to as user authentication information. There is. Further, in the present embodiment, the voice input unit 114, the touch panel unit 120, the fingerprint sensor unit 140, the camera unit 142, the infrared camera unit 144, etc. that acquire the user authentication information (biological information, password, etc.) are collectively used. It may be called the authentication information acquisition unit.

The authentication method determination unit 1400 determines which of these authentication methods is to be used. This decision is made in the following procedure. First, the unlocking device communication unit 1300 receives the advertisement information (authentication method information) transmitted by the unlocking device 20 via the short-range wireless communication unit 130. The short-range wireless communication unit 130 receives advertisement information from the unlocking device 20 by using short-range wireless communication such as a Bluetooth connection.

Next, the unlocking device communication unit 1300 outputs the received advertisement information to the authentication method determination unit 1400. Finally, the authentication method determination unit 1400 reads the authentication method information included in the advertisement information, and can be used for authentication based on the currently available authentication method stored in the terminal information storage area and the read authentication method information. Determine the authentication function (authentication method).

Further, these unlocking processes are controlled by the unlocking control unit 1200. The unlocking control unit 1200 may execute the unlocking process when the unlocking operation is performed by the user by the touch panel unit 120, or unlocks when the short-range wireless communication unit 130 receives the advertisement information. A locking process may be performed.

[1.3.2 Unlocking device]
The configuration of the unlocking device 20 will be described with reference to FIGS. 6 and 7. FIG. 6 is a configuration diagram showing the configuration of the unlocking device 20, and FIG. 7 is a configuration diagram realized by executing software in the control unit 200.

As shown in FIG. 6, the unlocking device 20 includes a control unit 200 (control unit, first control unit), a lock control unit 210 (unlocking unit), and a short-range wireless communication unit 230 (communication unit, first control unit). A communication unit), a storage unit 250, and a security level setting unit (input unit) 260 are provided.

The control unit 200 (control unit, first control unit) is a functional unit for controlling the entire unlocking device 20. The control unit 200 realizes various functions by reading and executing various programs stored in the storage unit 250, and is configured by, for example, one or a plurality of arithmetic units (for example, a CPU (Central Processing Unit)). There is.

The lock control unit 210 (unlocking unit) is a functional unit that controls unlocking (unlocking) and locking of the connected lock / unlock device (locking mechanism). The locking mechanism is mainly provided on the door, and locking / unlocking can be controlled by controlling the motor provided in the locking mechanism. The locking mechanism may be provided not only in the door but also in, for example, a safe, a drawer, a storage, an automobile, or the like. Further, as for the locking / unlocking configuration for the locking mechanism, any conventional locking mechanism can be used.

The short-range wireless communication unit 230 (communication unit, first communication unit) is a functional unit for performing wireless communication with a short-range device. An antenna 232 is connected to the short-range wireless communication unit 230. For example, any method such as Bluetooth, NFC, ZigBee, or wireless USB may be used. In this embodiment, Bluetooth will be described as an example.

The storage unit 250 is a functional unit that stores various programs, various data, and temporary data necessary for the operation of the unlocking device 20. The storage unit 250 is composed of, for example, a semiconductor memory, an HDD (Hard Disk Drive), or the like. Further, the storage unit 250 secures a program storage area 252, a security level storage area 254, an effective authentication method storage area 256, and an effective terminal information storage area 258 as storage areas.

The program storage area 252 is an area for storing various programs. The control unit 200 can realize various functions by reading and executing the program stored in the program storage area 252.

The security level storage area 254 stores the security level of the place where the unlocking device 20 is installed. Here, the security level stored in the security level storage area 254 is stored as one of "lowest", "low", "medium", and "high", but the stored values are "0", "1", and so on. It may be a numerical value such as ..., any of the available authentication methods, or a combination of authentication methods. Further, the level may be selectable from a plurality of stages, or may be a flag indicating whether or not security should be ensured.

The valid authentication method storage area 256 stores information on the authentication method suitable for the place where the unlocking device 20 is installed. At this time, the priority information, which is the information regarding the priority, may also be stored. Further, it may be stored together with the security level stored in the security level storage area 254.

The authentication method information stored in the valid authentication method storage area 256 may be stored in advance or may be set by the security level setting unit 260. Further, it may be set (input) from the registration terminal device.

The effective terminal information storage area 258 stores identification information (ID) of the terminal device 10 that permits unlocking, and information for determining whether or not the request from the terminal device 10 is valid.

The information of the terminal device stored in the effective terminal information storage area 258 may be stored in advance, or may be set by the security level setting unit 260. Further, it may be set (input) from the registration terminal device.

The security level setting unit (input unit) 260 is a functional unit for setting the security level of the place where the unlocking device 20 is installed. For example, it is composed of physical input devices such as DIP switches, rotary switches, and keyboards. Alternatively, it may be configured by a USB, a wired LAN, or a wireless LAN interface that can be connected to another terminal device, and the security level may be set based on an input signal from the other terminal device. When the security level setting unit 260 sets the security level based on the input signal from another terminal device, the security level setting unit 260 may be realized by the control unit 200. For example, the security level setting unit 260 is realized by the registration information reception unit 2100 of FIG. 7.

To ensure security, the security level setting unit 260 is physically covered with a lockable cover, the security level setting unit 260 can be physically removed, and if a password is not entered, it can be removed from another terminal device. It is desirable that the security level cannot be easily changed by anyone other than the administrator by taking measures such as not accepting the input to the security level setting unit 260. Here, the security level that can be set in the security level setting unit 260 is selected from "lowest", "low", "medium", and "high", but the choices are "0", "1", and so on. It may be a numerical value, any of the available authentication methods, or a combination of authentication methods. Further, the level may be selectable from a plurality of stages, or may be a flag indicating whether or not security should be ensured.

The security level setting unit 260 can set not only the security level but also an effective authentication method and terminal information.

FIG. 7 is a diagram showing a configuration realized by software of the unlocking device 20. The control unit 200 operates as each functional unit by executing the program.

Based on the request from each unit, the short-range wireless communication control unit 2500 notifies the information in the short-range wireless communication (for example, Bluetooth) via the short-range wireless communication unit 230, and also connects to the connected terminal device 10. Communicate with.

The registration information receiving unit 2100 accepts registration regarding the security level of the installed unlocking device 20 and information on an effective authentication method. It also accepts registration of information about the terminal device 10 that permits unlocking.

The registration information receiving unit 2100 stores these information in each storage area by the registration process. Specifically, the registration information receiving unit 2100 acquires such information from the terminal device 10 for registration via the Bluetooth connection, and obtains the acquired information in the security level storage area 254, the valid authentication method storage area 256, and the valid terminal information. It is stored in the storage area 258 as needed. Further, the set value may be acquired and stored via the security level setting unit 260.

That is, when the security level, the authentication method, and the terminal information (hereinafter referred to as "security level, etc." including the security level, the authentication method, and the terminal information) are set by the unlocking device 20, the security level and the like are set by the security level setting unit. It is set (input) from 260. Further, when the security level or the like is set from another device, the security level or the like is received via the short-range wireless communication unit 230.

That is, the security level may be set by any method. Further, the information to be set may be set by combining the two methods. For example, the valid authentication method and the valid terminal information may be set by the security level setting unit 260, and the security level may be set to those acquired from the registration information reception unit 2100.

The advertisement information generation unit 2200 generates advertisement information including information related to the authentication method as authentication method information based on the information stored in the security level storage area 254 and the valid authentication method storage area 256. The process of generating advertisement information will be described later.

The unlock request receiving unit 2300 receives the unlock request from the terminal device 10, and outputs a signal to unlock the lock to the lock control unit 210 if the requesting terminal device is valid. At this time, whether or not the requesting terminal device is valid is registered by the requesting terminal device 10 based on the information of the terminal device 10 included in the unlock request received from the terminal device 10. Whether or not it is a terminal device that has been used, and whether or not it is a legitimate request is determined with reference to the effective terminal information storage area 258.

[1.3.3 Advertisement information (advertisement packet)]
Here, the authentication method information set in the advertisement information transmitted from the unlocking device 20 will be described with reference to FIG.

The advertisement information includes authentication method information. The authentication method information includes the security level and priority. The authentication method that can be used in the terminal device 10 is determined according to the security level. In addition, the priority of the authentication method to be used is determined according to the priority.

For example, FIG. 8A is a diagram for explaining a security level included in the authentication method information. For example, a place where the security level is set to "lowest" (a place corresponding to the security level) is a place that can be used by anyone (for example, a break room, a cafeteria, etc.). When the security level is "lowest", the authentication method (permissible authentication method) allowed in the terminal device 10 is "unnecessary". That is, if there is an unlock request from the legitimate terminal device 10 without performing authentication, the lock is unlocked.

Further, for example, a place where the security level is set to "high" is a place where confidential information is stored (for example, a confidential information storage room or a server room). When the security level is "high", the only authentication method allowed in the terminal device 10 is "iris, fingerprint".

The terminal device 10 can determine the permissible authentication method based on the security level included in the advertisement information, but instead of the security level or together with the security level, the permissible authentication method information is available. It may be included in the advertisement information.

FIG. 8B is a diagram illustrating the priority of the authentication method. For example, the place where the priority class "1" is installed is mainly the place where the door where the unlocking device 20 is installed faces the outside. In this case, the reason for setting the priority is to lower the priority of face and iris recognition because it is affected by external light. That is, the biological information that the sensor preferentially acquires is "fingerprint" and "voiceprint", and the "face" and "iris" are set with low priority. That is, the order of priority of the authentication method is "fingerprint, voiceprint, face, iris". The priority class may be transmitted from the unlocking device 20 when the terminal device 10 executes the unlocking process, or may be transmitted from the unlocking device 20 as advertisement information in advance.

In this way, by switching and using the authentication function (authentication method) according to the place where the unlocking device 20 is installed, it is possible to execute the unlocking operation more reliably while ensuring security.

[1.4 Processing flow]
Next, the configuration of each device will be described with reference to the drawings. It should be noted that each figure is an example for explaining the operation of the terminal device 10 and the unlocking device 20 in the present embodiment. Of course, as long as the essential part of the invention is not changed, the processes may be appropriately replaced and executed.

[1.4.1 Terminal device processing]
The processing of the terminal device 10 will be described with reference to FIG. The process of FIG. 9 is a process executed when the user performs the unlocking operation. The terminal device 10 receives advertisement information from the unlocking device 20 (step S102; Yes).

Specifically, the unlocking device communication unit 1300 receives the advertisement information from the short-range wireless communication unit 130. Then, the authentication method determination unit 1400 determines the authentication method to be used based on the authentication method information included in the received advertisement information.

Subsequently, it is determined whether or not the user has accepted the unlocking operation (step S104). For example, the control unit 100 displays a display screen for performing an unlocking operation on the display unit 122. When the user confirms the content displayed on the display screen and operates it (for example, the touch sensor unit 124 detects the touch operation in the predetermined area), it is determined that the unlocking operation has been accepted.

Here, when the authentication method information included in the advertisement information is received as authentication unnecessary (step S106; Yes), the authentication method determination unit 1400 transitions to the process in step S116. That is, the authentication process is not performed.

Here, when authentication is required, if the authentication method specified in the authentication method information, for example, the authentication method corresponding to the security level is not available, the lock cannot be unlocked. It is displayed as lock failure (step S108; No → step S124).

On the other hand, when the authentication method specified in the authentication method information is available, the authentication method determination unit 1400 determines the authentication method to be used based on the authentication method information and executes authentication (step S108; Yes → step). S110).

Here, when there are a plurality of available authentication methods, the authentication method to be used is determined based on the priority of the authentication method notified from the unlocking device 20. Here, a plurality of authentication operations may be performed at the same time, such as fingerprint authentication and face authentication. When the priority received from the unlocking device 20 is the same, the authentication method to be used may be determined according to the priority or the like preset by the user.

Then, it is determined whether or not the authentication is successful. Here, in order to determine whether or not the authentication is successful, several authentication methods can be considered.

(1) The password authentication unit 1500 considers the authentication to be successful if the password entered by the user matches the one stored in the password storage area, and fails to authenticate if the password does not match.

(2) The face recognition unit 1002 compares the face image acquired by the face image acquisition unit 1012 from the camera unit 142 with the face image data stored in the biometric information storage area 158, and determines whether the authentication is successful or unsuccessful. ..

(3) The iris recognition unit 1004 compares the eye image acquired by the eye image acquisition unit 1014 from the infrared camera unit 144 with the eye image data stored in the biometric information storage area 158, and determines whether the authentication is successful or unsuccessful. conduct.

(4) The fingerprint authentication unit 1006 compares the fingerprint data acquired by the fingerprint acquisition unit 1016 from the fingerprint sensor unit 140 with the fingerprint data stored in the biometric information storage area 158, and determines whether the authentication is successful or unsuccessful.

(5) The voice print authentication unit 1008 compares the voice data acquired by the voice acquisition unit 1018 from the microphone, which is an example of the voice input unit 114, with the voice data stored in the biometric information storage area 158, and the authentication succeeds or fails. Judgment is made.

The unlock control unit 1200 receives the result of authentication success or failure from each authentication unit (biometric authentication unit 1000, password authentication unit 1500). Here, in the case of authentication failure (step S112; No), the unlock control unit 1200 confirms whether to cancel the authentication (step S114). If the unlock control unit 1200 does not cancel the authentication, the authentication operation is performed again (step S114; No → step S110). Further, the unlock control unit 1200 displays the unlock failure when canceling the authentication (step S114; Yes → step S124).

If the authentication is successful, the unlock control unit 1200 connects to the unlock device 20 (step S116) and sends an unlock request to the connected unlock device 20 (step S118). The unlocking request may include information for identifying the terminal device 10 (for example, an identification ID) and certificate information for notifying that the processing is performed by the legitimate software.

Here, when the unlocking device 20 receives information indicating that the lock has been unlocked (for example, an OK signal), the communication with the unlocking device is disconnected and the process ends (step S120; Yes → step S122). ). At this time, the unlock control unit 1200 may also use any function of the terminal device 10 to notify the user that the lock has been unlocked. For example, the display unit 122 may be made to display, or may be made to vibrate by a vibration device (not shown).

Further, when the information indicating that the lock has been unlocked cannot be received from the unlocking device within a predetermined time, or when the information indicating the failure (for example, an NG signal) is received, the unlock failure is displayed on the display unit. It is displayed on 122 and the present process is terminated (step S120; No → step S124).

At this time, the display unit 122 may display the factors that could not be unlocked, such as "the necessary authentication process cannot be executed", "the terminal is not registered", and "the battery of the unlocking device is exhausted". ..

When executing the above-mentioned process, it is assumed that the user authentication information such as the biometric information and the password is already stored in each storage area. As a method of storing the biometric information and the password again, the terminal device 10 may execute the registration process, or the unlocking device 20 may execute the registration process. Further, it may be registered by another server.

[14.2 Processing of unlocking device]
FIG. 10 is an operation flow for explaining the processing of the unlocking device 20. First, advertisement information according to the security level in which the unlocking device 20 is installed is set (step S202). Here, the process of setting the advertisement information by the advertisement information generation unit 2200 will be described with reference to FIG.

When the security level is set to "lowest", the advertisement information generation unit 2200 sets "authentication not required" as the advertisement information (authentication method information included in the advertisement information) (step S252; Yes → step S254). ..

When the security level is set to "low", the advertisement information generation unit 2200 is set to "use" valid authentication method information "" as the advertisement information (authentication method information included in the advertisement information) (. Step S256; Yes → Step S258). That is, it is possible to use an authentication method stored in the valid authentication method storage area, that is, an authentication method that can be executed by the terminal device 10 at a place where the unlocking device is located.

The advertisement information generation unit 2200 uses "valid authentication method information" (excluding password authentication) as advertisement information (authentication method information included in the advertisement information) when the security level is set to "medium". (Step S260; Yes → Step S262). That is, when the criterion that the security level is "medium" is satisfied, the terminal device 10 may execute the authentication method stored in the valid authentication method storage area 256 at the location where the unlocking device 20 is located. Authentication method information is determined to indicate that biometric authentication is used as the possible authentication method.

When the security level is set to "high", the advertisement information generation unit 2200 uses "valid authentication method information" (password authentication, voiceprint authentication, face) as advertisement information (authentication method information included in the advertisement information). Use authentication) ”(step S260; No → step S264). That is, when the criterion that the security level is "high" is satisfied, the terminal device 10 may execute the authentication method stored in the valid authentication method storage area 256 at the place where the unlocking device 20 is located. The authentication method information is determined to indicate that either iris authentication or fingerprint authentication is used as the authentication method that can be performed.

Further, the advertisement information generation unit 2200 sets the priority as necessary (step S266). That is, by setting the priority order among the plurality of authentication methods, it becomes possible to determine from which authentication method the terminal device 10 is preferable to use. In this way, the advertisement information generation unit 2200 identifies the authentication method that can be used by the terminal device 10, and generates the advertisement information included as the authentication method information.

Returning to FIG. 10, the short-range wireless communication control unit 2500 transmits the advertisement information set (generated) by the advertisement information generation unit 2200 via the short-range wireless communication unit 230 (step S204). The process of setting the advertisement information described above may be performed at any timing, such as when the unlocking device 20 is installed or when the security level is changed according to the usage status.

The short-range wireless communication control unit 2500 receives a connection request from the terminal device 10 via the short-range wireless communication unit 230, and makes a connection in Bluetooth. Then, the unlock request receiving unit 2300 receives the unlock request from the terminal device 10 (step S206).

The unlock request receiving unit 2300, which is connected to the terminal device 10 and receives the unlock request, determines whether the request is from a legitimate terminal device (step S208) or from an authorized terminal (step S210). .. If either is incorrect (step S208; No or step S210; No), the unlock request receiving unit 2300 transmits information that cannot be unlocked to the terminal device 10 (for example, an NG signal).

On the other hand, the unlock request receiving unit 2300 unlocks the lock control unit 210 if the unlock request is from a legitimate terminal device 10 and the unlock request is from a permitted terminal device 10. A locking signal is transmitted (step S208; Yes → step S210; Yes → step S212 → step S214).

[1.5 screen example]
The operation of the above-described embodiment will be described using a screen example. FIG. 12 is an example of a display screen displayed on the display unit 122 of the terminal device 10.

FIG. 12A is an example of the display screen W100 when the terminal device 10 is brought close to the unlocking device 20 provided on the door at the place where the security level is “low” (advertisement information is received).

For example, it is shown in the area R100 that an authentication request is currently being made. On the display screen W100, the area R102 is displayed to prompt for voice input, and the area R104 is displayed to prompt for password input.

Further, since the available authentication method is displayed in the area R106, the user can grasp what kind of authentication method should be used. In the display, for example, the size may be changed or the color may be changed according to the priority.

FIG. 12B is an example of a display screen W110 in which the terminal device 10 is brought close to the unlocking device 20 provided on the door at the place where the security level is “high” (advertising information is received).

For example, it is shown that an authentication request is made in the area R110, but an instruction of a specific authentication method is also displayed. Further, in the area R112, only fingerprint authentication and iris authentication are displayed as currently available authentication methods.

Further, FIG. 13 is an example of a display screen W120 in which the terminal device 10 is brought close to the unlocking device 20 provided on the door in the factory (advertising information is received).

For example, in the area R120, it is shown that an authentication request for entering the factory work room is made, but an instruction of a specific authentication method is also displayed. Here, when the priority class shown in FIG. 8B is set to 2, the region R120 is urged to use iris recognition and face recognition. However, in the area R122, iris authentication, face authentication, and voiceprint authentication are displayed as currently available authentication methods. That is, voiceprint authentication is also available, but because of its low priority, there is no indication in the region R120 to encourage its use.

In this way, even if the authentication method is available, it is possible to display the user asking which authentication method to use according to the priority.

[1.6 effect]
A Bluetooth connection is made to the unlocking device 20 in advance using a terminal device or a computer for setting, and the biometric authentication method allowed by the unlocking device 20 and the priority information of the biometric authentication are stored. In addition, the identification information of the terminal device 10 that permits unlocking is also stored. The stored information can be updated when the security level or usage environment of each room changes. This makes it possible to perform more flexible operations.

Since the required authentication method can be specified on the unlocking device 20 side, it is possible to correspond to the security level according to the place where the unlocking device 20 is installed.

Further, the terminal device 10 is notified of the authentication method according to the latest security level and the usage environment, and the terminal device 10 uses the authentication method based on the notified information. Operation becomes possible.

By performing the authentication process on the terminal device side, it is not necessary to centrally store the biometric information, which is personal information, on the unlocking device side. This not only reduces the security risk, but also simplifies the software on the unlocking device side and has the effect of reducing the cost of the device.

In addition, since a special server device for managing the authentication method and a network environment for accessing the server device are not required, there is an effect that no extra cost is incurred.

[2. Second Embodiment]
Next, the second embodiment will be described. In the above-described embodiment, the unlocking device 20 generates advertisement information according to the security level, but in the present embodiment, the terminal device 10 stores the security level of each door and is used on the terminal device 10 side. A possible authentication method may be selected.

Specifically, the unlocking device 20 includes the identification ID of each door (room) in the advertisement information and transmits it to the terminal device 10 (for example, S1002 in FIG. 3).

Here, as shown in FIG. 14, the terminal device 10 stores a correspondence table between the identification ID of the unlocking device (door) and the security level. Thereby, the security level can be determined from the identification ID included in the advertisement information.

Then, in the terminal device 10, after receiving the advertisement information in step S102 of FIG. 9, the control unit 100 executes the advertisement information setting process of FIG. 11 to set a specifically usable authentication method. Can be done.

As a result, in the processes after step S106 in FIG. 9, the authentication method set by the advertisement information setting process may be used.

As described above, according to the present embodiment, it is possible to set the terminal device 10 to use the authentication method according to the security level. Therefore, even if the security level of the door is changed on the way, it is not necessary to change the setting on the unlocking device 20 side, and the table on the terminal device 10 side may be changed.

The table in which the security level is set for each identification ID may be set on the terminal device 10 or may be set on the server side and downloaded to each terminal device. Further, it may be stored in the cloud and inquired / downloaded by the terminal device 10 as needed.

[3. Third Embodiment]
Next, the third embodiment will be described. In the first embodiment, the authentication method to be used is set by the unlocking device 20 executing the advertisement information setting process. In this embodiment, an embodiment when the terminal device 10 is executed will be described.

The unlocking device 20 includes the security level in the advertisement information in step S204 and transmits the security level to the terminal device 10 without executing step S202 in FIG.

After receiving the advertisement information in step S102 of FIG. 9, the terminal device 10 executes the advertisement setting process of FIG. 11 to determine the authentication method according to the security level.

As described above, according to the present embodiment, the authentication method can be determined on the terminal device 10 side according to the security level. For example, since the configuration of the unlocking device 20 can be simplified, the effect of reducing the cost can be expected when many unlocking devices 20 are installed.

[4. Modification example]
Although the embodiment of the present invention has been described in detail with reference to the drawings, the specific configuration is not limited to this embodiment, and the design and the like within a range not deviating from the gist of the present invention are also within the scope of claims. include.

Further, in the above-described embodiment, a terminal device such as a smartphone has been described as an example of a device for performing authentication, but any device that can perform authentication may be used. For example, it may be a member such as a fingerprint authentication function or a card capable of inputting a password.

Further, the program that operates in each device in the embodiment is a program that controls an arithmetic unit such as a CPU (a program that causes a computer to function) so as to realize the functions of the above-described embodiment. Then, the information handled by these devices is temporarily stored in a temporary storage device (for example, RAM) at the time of processing, then stored in various ROMs, HDDs, and SSD storage devices, and read by the CPU as needed. , Correction / writing is performed.

Further, in the case of distribution to the market, the program can be stored and distributed in a portable recording medium, or transferred to a server computer connected via a network such as the Internet. In this case, it goes without saying that the storage device of the server computer is also included in the present invention.

1 Unlocking system 10 Terminal device 100 Control unit (control unit, second control unit)
110 Communication unit 112 Antenna 114 Voice input unit (authentication information acquisition unit)
116 Audio output unit 120 Touch panel unit (authentication information acquisition unit)
122 Display unit 124 Touch sensor unit 130 Short-range wireless communication unit (communication unit, second communication unit)
132 Antenna 140 Fingerprint sensor section (authentication information acquisition section)
142 Camera section (authentication information acquisition section)
144 Infrared camera section (authentication information acquisition section)
150 Storage unit 152 Program storage area 154 Terminal information storage area 156 Password storage area 158 Biometric information storage area 20 Unlocking device 200 Control unit (control unit, first control unit)
210 Lock control unit (unlocking unit)
230 Short-range wireless communication unit (communication unit, first communication unit)
232 Antenna 250 Storage unit 252 Program storage area 254 Security level storage area 256 Valid authentication method storage area 258 Effective terminal information storage area 260 Security level setting unit (input unit)

Claims (11)

An unlocking device including a first control unit, a first communication unit, an unlocking unit, and a storage unit ,
An unlocking system including a second control unit, a second communication unit, and a terminal device including an authentication information acquisition unit.
The storage unit stores authentication method information indicating which of the plurality of authentication methods is allowed in the order of priority according to the installation location of the unlocking device.
The first control unit
The unlocking device transmits the authentication method information having the highest priority in the order of priority corresponding to the installation location of the own device via the first communication unit.
The second control unit
The authentication method information is received via the second communication unit, and the authentication method information is received.
Authentication based on the high-priority authentication method information acquired by the authentication information acquisition unit is executed.
If the authentication is successful, an unlocking request is transmitted to the unlocking device via the second communication unit.
The first control unit
An unlocking system characterized in that when the unlocking request is received via the first communication unit, the unlocking unit unlocks a predetermined lock. A control unit, a communication unit, an unlocking unit, and a storage unit are provided.
The storage unit stores authentication method information indicating which of the plurality of authentication methods is allowed in the order of priority according to the installation location of the own device.
The control unit
The authentication method information having the highest priority in the order of priority corresponding to the installation location of the own device is transmitted via the communication unit.
When an unlocking request transmitted from a terminal device that has succeeded in authentication based on the high-priority authentication method information transmitted via the communication unit is received via the communication unit, the unlocking unit receives the unlocking request. An unlocking device characterized by unlocking a predetermined lock. With more input
The control unit
The security level corresponding to the predetermined lock is acquired via the input unit, and the security level is obtained.
The unlocking device according to claim 2, wherein the authentication method information is determined according to the acquired security level. The control unit
The unlocking device according to claim 3, wherein when the security level meets a predetermined standard, the authentication method information is determined so as to at least indicate an authentication method using the biometric information of the user. The control unit
The unlocking device according to claim 4, wherein when the security level meets a predetermined criterion, the authentication method information is determined so as to indicate at least one of iris authentication and fingerprint authentication. The control unit
The unlocking device according to any one of claims 2 to 5, wherein the authentication method information is included in an identification signal transmitted from the communication unit and transmitted. The unlocking device according to claim 6, wherein the identification signal is an advertisement packet for Bluetooth communication. The control unit is further provided with a storage unit.
The identification information of the terminal device included in the information transmitted by the terminal device is specified, and the identification information of the terminal device is specified.
One of claims 2 to 7, wherein it is determined whether or not the unlocking unit unlocks a predetermined lock by referring to the information stored in the storage unit and the identification information. The unlocking device described in. A method of unlocking an unlocking device including a communication unit, an unlocking unit, and a storage unit .
The storage unit stores authentication method information indicating which of the plurality of authentication methods is allowed in the order of priority according to the installation location of the own device.
A step in which the unlocking device transmits authentication method information having the highest priority in the order of priority corresponding to the installation location of the own device via the communication unit.
When an unlocking request transmitted from a terminal device that has succeeded in authentication by the high-priority authentication information transmitted via the communication unit is received via the communication unit, the unlocking unit is predetermined. An unlocking method characterized by realizing the steps of unlocking the lock. It has a control unit, a communication unit, and an authentication information acquisition unit.
The control unit
The authentication method information transmitted by the unlocking device, in which the unlocking device has the highest priority in the order of priority corresponding to the installation location of the unlocking device, is transmitted via the communication unit. Receive and
Authentication based on the high-priority authentication method information acquired by the authentication information acquisition unit is executed.
A terminal device comprising transmitting an unlocking request to the unlocking device via the communication unit when the authentication is successful. In a computer equipped with a communication unit and an authentication information acquisition unit,
The authentication method information transmitted by the unlocking device, in which the unlocking device has the highest priority in the order of priority corresponding to the installation location of the unlocking device, is transmitted via the communication unit. Steps to receive and
A step of executing authentication based on the high-priority authentication method information acquired by the authentication information acquisition unit, and
A program comprising the step of transmitting an unlocking request to the unlocking device via the communication unit when the authentication is successful.

Images