JP7037356B2 - Authentication system and authentication device - Google Patents

Description

The present invention relates to an authentication system and an authentication device.

In an entry / exit management system that physically regulates entry from public areas to security areas, hands-free authentication is performed without the user touching or holding an ID card or the like with a reader, and passage is permitted. Some door electric locks are unlocked. In such a hands-free entry / exit management system, for example, a signal having user ID information is transmitted on a radio wave from a mobile terminal such as a wireless tag away from the door, and a tag reader near the door transmits the radio wave. It receives and acquires ID information and measures the electric field strength of radio waves. The authentication device of this room entry / exit management system has ID information acquired by the tag reader registered in advance, and when the electric field strength is larger than a predetermined value, it is determined that the user can pass through and the electric lock of the door is unlocked. Lock. (See Patent Document 1)

Japanese Unexamined Patent Publication No. 2012-219483

However, in the above-mentioned hands-free entry / exit management system, the tag reader can receive radio waves transmitted from wireless tags within a certain distance with an electric field strength of a certain level or higher, and the radio waves have high transparency. Therefore, the radio wave transmitted from the wireless tag around the back side of the door passes through the door or the wall and is received by the tag reader with an electric field strength of a certain level or higher. In this case, the ID information transmitted from the wireless tag of the user who is already permitted to pass through the door and is behind the door is determined to be passable, so that the electric lock of the door is accidentally unlocked and the passage is passed. An outsider in a public area in front of a door that should not be allowed can break into the security area.

An object of the present invention is to provide an authentication system and an authentication device capable of improving the efficiency of authentication processing while improving the accuracy of authentication.

According to one aspect of the present invention for solving such a problem, a plurality of mobile terminals carried by each of a plurality of users, and a plurality of mobile terminals from a first area to a second area adjacent to the first area. An authentication system having an authentication device for managing the passage of a user is provided. In such an authentication system, each of the plurality of mobile terminals has a trigger transmission means for wirelessly transmitting a trigger signal to the authentication device and a sound collection means for collecting the determination sound output from the authentication device, and the authentication device. Is a judgment sound output means that outputs a judgment sound to the first area when a trigger signal is received from each mobile terminal, and a second from the first area to a user of the mobile terminal that collects the judgment sound. It has a passage permitting means for permitting passage to an area, and when a plurality of trigger signals are received from different mobile terminals within a predetermined period, the determination sound output means collectively for the plurality of trigger signals. Output one judgment sound.

In such an authentication system, each of the plurality of mobile terminals further has a determination sound measuring means for measuring the sound pressure level of the determination sound collected by the sound collecting means, and the authentication device is a determination measured by the determination sound measuring means. When the sound pressure level of the sound is equal to or higher than the threshold value, the measurement result acquisition means for acquiring the affirmative measurement result that the sound pressure level of the determination sound is equal to or higher than the threshold value is further provided. It is preferable to determine that the mobile terminal has collected the determination sound when the measurement result is acquired.

In such an authentication system, the determination sound output means suspends the output of the determination sound until at least a predetermined period elapses after receiving the trigger signal, and collectively one for a plurality of trigger signals received within the predetermined period. It is preferable to output a judgment sound.

In such an authentication system, when the determination sound output means receives the trigger signal from the second mobile terminal between the time when the trigger signal from the first mobile terminal is received and the time when the predetermined period elapses, the determination sound output means receives the trigger signal from the second mobile terminal for a predetermined period. Time counting is restarted, the output of the determination sound is suspended until at least the predetermined period elapses after receiving the trigger signal from the second mobile terminal, and the plurality of trigger signals received during the predetermined period are suspended. It is preferable to output one judgment sound collectively.

In such an authentication system, when the determination sound output means receives trigger signals from two or more different mobile terminals within a predetermined period, it is preferable to output the determination sound even if the predetermined period has not elapsed. ..

In such an authentication system, the authentication device further has a legitimacy verification means for determining whether or not the user of each mobile terminal is legitimate based on the identification information transmitted from each mobile terminal, and the passage permission means is , It is preferable to allow passage only when the user of each mobile terminal is determined to be legitimate by the legitimacy verification means.

According to another aspect of the present invention, it communicates with a plurality of mobile terminals carried by each of the plurality of users, and allows the passage of the plurality of users from the first area to the second area adjacent to the first area. An authentication device to manage is provided. Such an authentication device provides a judgment sound output means that outputs a judgment sound to the first area when a trigger signal is received from each of the plurality of mobile terminals, and a user of the mobile terminal that collects the judgment sound. It has a passage permitting means for permitting passage from the first area to the second area, and the determination sound output means receives a plurality of trigger signals from different mobile terminals within a predetermined period, and the plurality of triggers thereof. A single judgment sound is output collectively for the signal.

According to the authentication system and the authentication device according to the present invention, it is possible to improve the efficiency of the authentication process while improving the accuracy of the authentication.

It is explanatory drawing of the problem in the entrance / exit management system. It is explanatory drawing of the solution method of the problem in the room entry / exit management system by this invention. It is an overall block diagram of the entrance / exit management system 1 which concerns on one Embodiment of this invention. It is a block diagram of the mobile terminal 10. It is a block diagram of the authentication apparatus 20. It is a figure which shows the operation sequence of each apparatus in the entrance / exit management system 1. It is a flowchart which shows the operation of the judgment sound output processing. It is a flowchart which shows the operation of the passage request signal transmission processing. It is a flowchart which shows the operation of an authentication process.

Hereinafter, an embodiment in which the authentication system and the authentication device according to the present invention are applied to a hands-free access control system will be described with reference to the drawings. However, it should be understood that the invention is not limited to the drawings or embodiments described below.

FIG. 1 is an explanatory diagram of problems in the room entry / exit management system. Traffic from the public area on the left to the security area on the right is physically restricted by the electrically locked door, with the door and wall in the center of the figure as the boundary. There are passers-by a and b in the public area and passers-by c and d in the security area, each carrying mobile terminals A, B, C and D. Hereinafter, when viewed from the passers-by a and b in the public area, the front side of the door is referred to as the front side of the door, and the back side of the door is referred to as the back side of the door. As shown in FIG. 1, the range in which the authentication device can receive radio waves from the mobile terminal with a certain intensity or higher is slightly attenuated when the radio waves transmitted from the back side of the door pass through the door. Although it becomes narrower, it also includes the back side of the door because of its high radio wave transmission. The area on the front side of the door where the authentication device can receive radio waves from the mobile terminal with a certain strength or higher is called area X. On the other hand, the range on the back side of the door where the authentication device can receive radio waves from the mobile terminal with a certain intensity or higher is called area Y.

In a public area, passerby b passes away from the door, but passerby a stops in front of the door where the authentication device is installed to enter the security area. Then, the mobile terminal A of the passerby a detects the stationary state and wirelessly transmits a signal having the ID information of the passerby a to the authentication device. At this time, as shown in FIG. 1, since the mobile terminal A is located in the area X, the strength of the signal received from the mobile terminal A by the authentication device is equal to or higher than a certain level. In this case, the authentication device considers that the passerby a who is the user of the mobile terminal A who transmitted this signal has the intention to pass through the door because it is stationary near the door, and the ID information of the signal is registered. The passerby a is authenticated by collating with the ID information of the user. Then, when the authentication device authenticates that the passerby a is a legitimate user who can enter the security area, the electric lock of the door is unlocked for a predetermined period to allow the passerby a to pass. Even if the mobile terminal B of the passerby b located outside the area X erroneously detects stationary and transmits a signal, the strength of the signal received from the mobile terminal B is less than a certain level. Therefore, the authentication device does not perform authentication by assuming that the passerby b carrying the mobile terminal B is away from the door and has no intention of passing through the door, so that the electric lock of the door is not unlocked. .. Therefore, the traffic regulation from the public area to the security area is correctly performed for the mobile terminals A and C located in the public area.

On the other hand, in the security area, the mobile terminal D of the passerby d passing away from the door does not detect the stillness, so that the signal is not transmitted. Even if the mobile terminal D erroneously detects stationary and transmits a signal to the authentication device, since the mobile terminal D is located outside the area Y, it is portable like the mobile terminal B on the front side of the door. The passerby d who carries the terminal D is not authenticated. On the other hand, the mobile terminal C of the passerby c who stays behind the door and talks wirelessly transmits a signal having the ID information of the passerby c to the authentication device by detecting the stillness. At this time, as shown in FIG. 1, since the mobile terminal C is located in the area Y, the strength of the signal received from the mobile terminal C by the authentication device is equal to or higher than a certain level. As described above, since the radio wave has high transparency, the signal transmitted from the mobile terminal B on the back side of the door passes through the door and is received by the authentication device with a certain strength or higher. Further, since the passerby c is already allowed to pass through the door and is in the security area, the ID information transmitted from the mobile terminal C is the ID information of the registered legitimate user. Therefore, the authentication device determines that the passerby c is a legitimate user who can enter the security area, and unlocks the electric lock on the door to allow the passerby. In this way, when the authentication device unlocks the electric lock of the door even for the passerby c behind the door who does not have the intention to pass, the passerby a who happened to be in front of the door at that time You can enter the security area without being authenticated, regardless of whether you are a legitimate user who can enter. Therefore, there is a problem that an unauthorized outsider may enter the security area.

FIG. 2 is an explanatory diagram of a method of solving a problem in the entrance / exit management system according to the present invention. In the present invention, the above problem is solved by utilizing the fact that the sound pressure level of the sound passing through the door or the wall is low because the sound transparency is lower than the radio wave transparency. Similar to FIG. 1, the range in which the authentication device can receive radio waves from the mobile terminal with a certain intensity or higher is area X and area Y. On the other hand, since the sound has low transparency and directionalness, the sound pressure level of the sound emitted from the authentication device on the front side of the door to the front side and passing through the door becomes very small. The range where the sound reaches at a sound pressure level above a certain level on the back side (area y in FIG. 2) is much narrower than the range where the sound reaches at a sound pressure level above a certain level on the front side of the door (area x in FIG. 2). .. Therefore, regarding the mobile terminal A and the mobile terminal C existing in the recognition area X or the area Y, the mobile terminal A existing in the public area on the front side of the same door as the authentication device is located in the area x, so that the authentication device is used. The output sound can be collected at a sound pressure level above a certain level, but since the mobile terminal C located in the security area behind the door, which is different from the authentication device, is located outside the area y, the sound can be collected at a sound pressure level above a certain level. I can't collect sound. Utilizing this, in the present invention, when the authentication device receives a signal having ID information of a passerby a or the like, it outputs a predetermined determination sound to a public area. Then, only the mobile terminal A that collects the judgment sound of the sound pressure level above a certain level sends a traffic request signal having ID information or the like to the authentication device, and the sound pressure level of the sound pressure level of the collected judgment sound is less than a certain level. The terminal C does not transmit the traffic request signal. As a result, the authentication device receives ID information only from the mobile terminal A existing in the public area on the front side of the same door as the own device and authenticates, and authenticates the mobile terminal C existing in the security area on the back side of the door. Therefore, it is possible to prevent the electric lock of the door from being accidentally unlocked with respect to the portable terminal C existing on the back side of the door. As described above, the authentication device according to the present invention exists on the back side of the door by authenticating only the mobile terminal A that collects the determination sound output to the front side of the door at a sound pressure level of a certain level or higher. Since the mobile terminal C is excluded from the authentication target, the accuracy of authentication can be improved.

On the other hand, as shown in FIG. 2, when the passerby b also stops in front of the door where the authentication device is installed in order to enter the security area, the mobile terminal B of the passerby b also detects the stationary state. A signal having the ID information of the passerby b and the like is wirelessly transmitted to the authentication device. In that case, the authentication device outputs the determination sound to the mobile terminal A and then outputs the predetermined determination sound to the mobile terminal B, and the determination sound is continuously output to the public area. .. As a result, a person in a public area may feel uncomfortable with the determination sound as noise. Therefore, in the present invention, the authentication device suspends the output of the determination sound until at least a certain period of time has elapsed after receiving the signal having the ID information. As a result, when the authentication device receives the signal from the mobile terminal B within a certain period after receiving the signal from the mobile terminal A, the authentication device collectively outputs the determination sound to the mobile terminal A and the mobile terminal B, and a plurality of them. It is possible to efficiently authenticate the mobile terminal of. Further, the authentication device can reduce the number of times the determination sound is generated in the public area, and can suppress the person in the public area from feeling unpleasant as the determination sound as noise.

FIG. 3 is an overall configuration diagram of the room entry / exit management system 1 according to the embodiment of the present invention. As shown in FIG. 3, the room entry / exit management system 1 includes a mobile terminal 10, an authentication device 20, a door 30, and a management device 40. The public area on the front side of the door 30 and the security area on the back side of the door 30 are separated by the door 30 and the wall. The public area is an example of the first area. The security area is an example of the second area, which is adjacent to the public area and the sound is blocked from the public area. FIG. 3 shows the mobile terminals 10-1 and 10-2 existing in the public area on the front side of the door 30 and the mobile terminals 10-3 existing in the security area on the back side of the door 30 with respect to the mobile terminal 10. However, the position of the mobile terminal 10 is not limited to this. Further, the authentication device 20 may be installed anywhere on the front side of the door as long as it is sufficiently close to the door 30. The mobile terminal 10 located within a certain range around the authentication device 20 can perform wireless communication with the authentication device 20 with a signal strength of a certain level or higher. Further, the authentication device 20 can output a determination sound that reaches within a certain range on the front side of the door 30 at a certain sound pressure level or higher, but since this determination sound hardly penetrates the door 30, it goes to the back side of the door 30. Does not reach at the constant sound pressure level. Further, the authentication device 20 is communicatively connected to the electric lock 31 so that the opening and closing of the electric lock 31 of the door 30 can be controlled. Further, the authentication device 20 is connected to the management device 40 via the local and / or wide area network 90.

In the room entry / exit management system 1 according to the present invention, in a public area, a user of the mobile terminal 10-1 (passer a in FIG. 2) stops in front of a door in which an authentication device is installed in order to enter the security area. If so, the mobile terminal 10-1 detects the stationary walking motion of the user. The mobile terminal 10-1 wirelessly transmits a trigger signal having the identification information of the mobile terminal 10-1 to the authentication device 20 under the trigger condition of detecting the stationary walking motion of the user. The trigger signal is a signal for causing the authentication device 20 to output a determination sound. The trigger signal can be used as an authentication request signal for requesting the authentication device 20 to authenticate the user of each mobile terminal. When the authentication device 20 receives the trigger signal with a signal strength equal to or higher than a certain level, the authentication device 20 outputs a determination sound to the front side of the door 30 in order to start the authentication of the mobile terminal 10-1. However, the authentication device 20 suspends the output of the determination sound until at least the first period elapses after receiving the trigger signal, and outputs the determination sound after the first period elapses.
Temporarily, while the authentication device 20 is holding the output of the determination sound, the door on which the authentication device is installed for the user of the mobile terminal 10-2 (passer b in FIG. 2) to enter the security area When stopped in front, the mobile terminal 10-2 detects the stationary walking motion of the user and wirelessly transmits a trigger signal having the identification information of the mobile terminal 10-2 to the authentication device 20. In this case, the authentication device 20 collectively outputs the determination sound for the mobile terminal 10-1 and the determination sound for the mobile terminal 10-2.
When the mobile terminals 10-1 and 10-2 collect the determination sound whose sound pressure level is above a certain level within a predetermined period, they wirelessly transmit a traffic request signal having identification information to the authentication device 20. This passage request signal is a signal (authentication request signal) for requesting the authentication device 20 to allow the user of each mobile terminal to pass through the security area, and the sound pressure level of the collected determination sound. Is a signal (positive measurement result) indicating that is equal to or higher than the threshold value. That is, the authentication device 20 receives the passage request signal as a positive measurement result, which means that the sound pressure level of the determination sound collected by the mobile terminal is equal to or higher than the threshold value. The passage request signal can be used as an authentication request signal for requesting the authentication device 20 to authenticate the user of each mobile terminal, similarly to the trigger signal. When the authentication device 20 receives the traffic request signal with a signal strength equal to or higher than a certain level, the authentication device 20 confirms that the identification information of the trigger signal and the identification information of the traffic request signal match, and the matching identification information is registered in advance. Match with legitimate identification information. Then, if the identification information of the trigger signal and the passage request signal matches the registered legitimate identification information, the authentication device 20 is legitimate that the mobile terminals 10-1 and 10-2 are present in the same public area as the authentication device 20. It is determined that the user's mobile terminal is a mobile terminal, and the electric lock 31 of the door 30 is unlocked to allow passage.

On the other hand, in the security area, when the user of the mobile terminal 10-3 (passer c in FIG. 2) stays in the vicinity of the back side of the door 30 and talks, the mobile terminal 10-3 is the user's. The stationary walking motion is detected, and the trigger signal having the identification information of the mobile terminal 10-3 is wirelessly transmitted to the authentication device 20. When the authentication device 20 receives the trigger signal with a signal strength equal to or higher than a certain level, the authentication device 20 outputs a determination sound to the front side of the door 30 in order to start the authentication of the mobile terminal 10-3. However, even if the mobile terminal 10-3 is located near the door where the authentication device 20 can receive the signal from the mobile terminal 10-3 with a certain intensity or higher, the back side of the door 30 is from the authentication device 20. Judgment sound cannot be collected at a sound pressure level above a certain level. Therefore, since the mobile terminal 10-3 does not transmit the passage request signal, the authentication device 20 does not perform authentication.

Therefore, the room entry / exit management system 1 according to the present invention excludes the mobile terminal 10-3 of a user who does not have the intention to pass through the security area behind the door 30 from the authentication target, and excludes the mobile terminal 10-3 of the user who does not have the intention to pass from the authentication target, and the front side of the door 30. Only the mobile terminals 10-1 and 10-2 of legitimate users existing in the public area are authenticated and the passage is permitted. Further, the entry / exit management system 1 efficiently authenticates a plurality of mobile terminals by collectively outputting judgment sounds to the mobile terminals 10-1 and 10-2, and a person in a public area makes a judgment. Suppresses the unpleasant feeling of sound as noise.

Each mobile terminal 10 is a mobile information processing device such as a wireless tag or a smartphone that is carried by each user (human, robot, etc.) and moves with the user. The mobile terminal 10 detects the stationary movement of its own terminal, performs wireless communication with the authentication device 20, collects the determination sound output from the authentication device 20, and measures the sound pressure level. When the mobile terminal 10 detects that the own terminal has stopped, it wirelessly transmits a trigger signal having the identification information of the own terminal to the authentication device 20, and then collects ambient sounds for a predetermined period of time. If the sound pressure level measured by the determination sound from the authentication device 20 is equal to or higher than a certain level, the mobile terminal 10 wirelessly transmits a passage request signal having the identification information of the own terminal to the authentication device 20. Further, the mobile terminal 10 may display on the screen that the passage is permitted when the passage permission signal is received from the authentication device 20.

The authentication device 20 is an information processing device that wirelessly communicates with the mobile terminal 10, outputs a determination sound, authenticates the mobile terminal 10, and manages the passage of each user from a public area to a security area. When the authentication device 20 wirelessly receives a trigger signal from the mobile terminal 10, if the strength of the received trigger signal is equal to or higher than a certain level, the authentication device 20 outputs a determination sound of a predetermined pattern to the front side of the door 30. However, the authentication device 20 suspends the output of the determination sound until at least the first period elapses after receiving the trigger signal, and outputs the determination sound after the first period elapses. Further, when the authentication device 20 receives the passage request signal from the mobile terminal 10, the strength of the passage request signal is equal to or higher than a certain level, and the identification information of the trigger signal and the identification information of the passage request signal match, and the matching identification information is matched. If the registered user is legitimate, it is determined that the user of the mobile terminal 10 is a legitimate user who can enter the security area. In this case, the authentication device 20 physically permits the passage of the user by transmitting an unlocking signal to the electric lock 31 of the door 30 to unlock the door 30. At this time, the authentication device 20 notifies the mobile terminal 10 that the passage is permitted, and transmits the entry record of the user of the mobile terminal 10 to the security area to the management device 40 via the network 90.

The door 30 is installed between the public area and the security area and physically restricts the passage of the user between the public area and the security area by unlocking or locking the electric lock 31. The door 30 physically prohibits the user from passing between the public area and the security area by keeping the electric lock 31 locked at all times, and when the unlocking signal is received from the authentication device 20, the electric lock 31 is used. Is unlocked for a predetermined period of time to allow the user to pass through the door 30. The sound pressure level of the sound reaching from the public area on the front side of the door 30 to the security area on the back side or vice versa decreases by a certain amount or more, but in this case, it is expressed that the sound is blocked between the mutual areas.

The management device 40 is an information processing device such as a server that manages entry / exit records of each user's area in the entire predetermined building. The management device 40 can send and receive data to and from the authentication device 20 via a local and / or wide area network 90 for wired / wireless communication. The management device 40 receives entry / exit records relating to a specific security area of the user from the plurality of authentication devices 20, and manages the entry / exit of the user in each area based on the received entry / exit records.

FIG. 4 is a configuration diagram of the mobile terminal 10. As shown in FIG. 4, the mobile terminal 10 includes a wireless communication unit 11, a motion detection unit 12, a sound collection unit 13, an operation / display unit 14, a storage unit 15, and a control unit 16.

The wireless communication unit 11 is a wireless communication interface that performs wireless communication with the authentication device 20. The wireless communication unit 11 conforms to a protocol corresponding to the wireless communication protocol of the authentication device 20, such as BLE (Bluetooth (registered trademark) Low Energy), ZigBee (registered trademark), Wi-Fi (registered trademark) (Wireless Fidelity). Perform wireless communication. The wireless communication unit 11 converts the data or signal received from the control unit 16 into a radio signal, puts it on a radio wave and transmits it to the authentication device 20, or converts the radio signal on the radio wave received from the authentication device 20 into a data or signal. It is converted and passed to the control unit 16. Further, the wireless communication unit 11 passes the signal strength based on the electric field strength of the received radio wave to the control unit 16.

The motion detection unit 12 has an acceleration sensor, a gyro sensor, and the like, and is a sensor that detects the motion of the mobile terminal 10. The motion detection unit 12 passes motion information regarding the detected motion of the mobile terminal 10 to the control unit 16. The motion information indicates, for example, the motion of the mobile terminal 10.

The sound collecting unit 13 has a microphone or the like, and collects sounds around the mobile terminal 10, particularly a determination sound output from the authentication device 20. The sound collecting unit 13 may have an ultrasonic detector or the like that collects sounds other than audible sounds of 20 Hz to 20 kHz. The sound collecting unit 13 sends information on the collected sound to the control unit 16.

The operation / display unit 14 has a touch panel that combines a touch pad and a screen such as a liquid crystal display or an organic EL (Electro-Luminescence) display. The operation / display unit 14 may have buttons, keys, a microphone, and the like. The operation / display unit 14 includes an operation unit in which a user inputs instructions and data to the mobile terminal 10, and an operating state of the mobile terminal 10. It has a display unit that shows the processing result and the like to the user, but the operation unit and the display unit may be separate devices. The operation / display unit 14 passes information on the operation performed by the user to the control unit 16, and displays the data received from the control unit 16 on a screen or the like.

The storage unit 15 stores the code and data of the computer program executed in the mobile terminal 10. For example, the storage unit 15 can have a semiconductor memory such as a RAM (Random Access Memory), a ROM (Read Only Memory), and an EPROM (Erasable Programmable ROM). Further, the storage unit 15 may have any type of storage device such as a flash memory, a magnetic storage device, and an optical storage device.

The control unit 16 has a processor and peripheral circuits, and the processor realizes various operations performed by the mobile terminal 10 by executing a computer program stored in the storage unit 15. The computer program executed by the control unit 16 may be stored in the storage unit 15 in advance, and is provided by a computer-readable storage medium such as a flash memory, a magnetic storage medium, an optical storage medium, or a communication line, and is stored in the storage unit 15. It may be stored in. At least a part of the storage unit 15 and the control unit 16 may be composed of a microcontroller.

As shown in FIG. 4, the storage unit 15 stores the mobile terminal identification information 151 and the sound collection determination sound pattern information 152. The mobile terminal identification information 151 and the sound collection determination sound pattern information 152 are set by the user of the mobile terminal 10 or the administrator of the room entry / exit management system 1, or provided via an arbitrary computer-readable storage medium or communication line. It is stored in advance in the storage unit 15.

The mobile terminal identification information 151 is identification information that uniquely identifies the mobile terminal 10 or the user who carries the mobile terminal 10. For example, the mobile terminal identification information 151 has identification information such as a serial number or identification number unique to the mobile terminal 10, or an employee number or individual number assigned to an individual user who carries the mobile terminal 10. This identification information is included in the trigger signal and the traffic request signal and transmitted to the authentication device 20, and is used in the authentication device 20 to authenticate the validity of the user who carries the mobile terminal 10.

The sound collection determination sound pattern information 152 is information representing a pattern of determination sounds for identifying the determination sound collected by the mobile terminal 10 from surrounding environmental sounds and the like. Here, the determination sound output by the authentication device 20 is a synthetic sound using a specific frequency, and the sound collection determination sound pattern information 152 is, for example, a frequency spectrum obtained by analyzing this synthetic sound. The sound collection determination sound pattern information 152 may have a pattern of a series of musical notes representing a specific melody.

As shown in FIG. 4, the control unit 16 has static detection means 161, trigger transmission means 162, determination sound measuring means 163, and functional modules realized by executing the computer program stored in the storage unit 15. It has a passage request transmitting means 164.

The stationary detection means 161 receives motion information regarding the motion of the mobile terminal 10 from the motion detecting unit 12, and based on the received motion information, whether the user carrying the mobile terminal 10 is in a stationary state or a walking state. Is detected. For example, the rest detection means 161 detects the stationary state of the user when it indicates that the motion information of the mobile terminal 10 received from the motion detection unit 12 is stationary for a predetermined stationary period (for example, 1 second) or longer. Then, the trigger transmission means 162 is notified. Otherwise, the stationary detection means 161 detects a walking state in which a passerby is walking. The predetermined stationary period, which is a reference for the stationary detecting means 161 to detect the stationary of the mobile terminal 10, may be arbitrarily changed by the user.

When the stationary detection means 161 detects the stationary state of the user of the mobile terminal 10, the trigger transmission means 162 reads out the identification information of the mobile terminal identification information 151 stored in the storage unit 15, and outputs a trigger signal having this identification information. It is generated and wirelessly transmitted to the authentication device 20 via the wireless communication unit 11.

The determination sound measuring means 163 analyzes the pattern of the sound collected by the sound collecting unit 13 in a predetermined period of, for example, about 3 seconds. When the sound pattern matches the pattern of the sound collection determination sound pattern information 152, the determination sound measuring means 163 extracts the sound of the matched portion as a determination sound, measures the sound pressure level, and measures the sound pressure level, and the passage request transmitting means 164. Pass to. For example, the determination sound measuring means 163 may perform spectral analysis in which the analog sound collected by the sound collecting unit 13 for a predetermined period is converted into a digital sound and the intensity of each frequency is obtained by Fourier transform.

The passage request transmitting means 164 determines whether or not the sound pressure level of the judgment sound measured by the judgment sound measuring means 163 is equal to or higher than a predetermined threshold value after the judgment sound measuring means 163 measures the sound pressure level of the judgment sound. Is determined. The passage request transmission means 164 reads the identification information of the mobile terminal identification information 151 stored in the storage unit 15 only when the sound pressure level is equal to or higher than the threshold value, and generates a passage request signal having this identification information to wirelessly. Wireless transmission is performed to the authentication device 20 via the communication unit 11. The threshold value of the sound pressure level is smaller than the sound pressure level of the determination sound collected when the mobile terminal 10 is located within a predetermined range around the door 30 on the front side of the door 30, and the mobile terminal 10 is the door 30. It is set to a value larger than the sound pressure level of the determination sound to be collected when it is located outside a predetermined range of surroundings or behind the door 30. For example, the threshold value of the sound pressure level is such that when the mobile terminal 10 is located within a predetermined range in which the distance from the door 30 is 3 m or less, more preferably 1 m or less, the mobile terminal 10 has a door between the mobile terminal 10 and the authentication device 20. The sound pressure level of the determination sound collected in the absence of obstacles such as 30 is set to the minimum possible value. Further, the passage request transmitting means 164 may be a means for transmitting a positive measurement result. That is, the passage request transmitting means generates a passage request signal having the mobile terminal identification information 151, the affirmative measurement result that the sound pressure level of the determination sound is equal to or higher than the threshold value, and the identification information of the mobile terminal identification information 151, and wireless communication is performed. Wireless transmission is performed to the authentication device 20 via the unit 11.

FIG. 5 is a configuration diagram of the authentication device 20. As shown in FIG. 5, the authentication device 20 includes a wireless communication unit 21, a LAN communication unit 22, a sound output unit 23, an electric lock I / F unit 24, a storage unit 25, and a control unit 26.

The wireless communication unit 21 is a wireless communication interface that performs wireless communication with the mobile terminal 10. The wireless communication unit 21 performs wireless communication according to a protocol corresponding to the wireless communication protocol of the mobile terminal 10, such as BLE, ZigBee, and Wi-Fi. The wireless communication unit 21 converts the data or signal received from the control unit 26 into a radio signal, puts it on a radio wave and transmits it to the mobile terminal 10, or converts the radio signal on the radio wave received from the mobile terminal 10 into data or a signal. It is converted and passed to the control unit 26. Further, the wireless communication unit 21 passes the signal strength based on the electric field strength of the received radio wave to the control unit 26.

The LAN communication unit 22 is a communication interface that communicates with the management device 40 via the local area network (LAN) to which the authentication device 20 is connected and / or the wide area network 90. For example, the LAN communication unit 22 can perform wired / wireless communication with the LAN to which the authentication device 20 is connected, and can transmit / receive data to / from the management device 40 via a wide area network such as the Internet connected to the LAN. .. In this case, the LAN communication unit 22 performs wireless communication according to a protocol corresponding to the wired / wireless communication protocol of the LAN to which the authentication device 20 is connected, such as Ethernet (registered trademark) (Ethernet (registered trademark)) and WiFi. .. Here, an example in which the authentication device 20 communicates with the management device 40 via a LAN and a wide area network is shown, but any communication between the authentication device 20 and the management device 40 can be performed as long as data can be transmitted and received to each other. It may be performed in a communication form. The LAN communication unit 22 transmits the data received from the control unit 26 to the management device 40, and passes the data received from the management device 40 to the control unit 26.

The sound output unit 23 has a speaker or the like, and outputs sound to the front side of the door 30. The sound output unit 23 may include an ultrasonic generator or the like that outputs sounds other than audible sounds. In this embodiment, the sound output unit 23 is incorporated in the authentication device 20, but it is separated from the authentication device 20 and mounted on the front surface of the door 30 on the front side of the door 30 or on the wall around the door 30. It may be installed. In this case, the sound output unit 23 can communicate with the authentication device 20 by wired / wireless communication.

The electric lock I / F unit 24 is an interface that is connected to the electric lock 31 of the door 30 by wired / wireless communication and transmits an unlocking signal or a locking signal to the electric lock 31.

The storage unit 25 stores the code and data of the computer program executed in the authentication device 20. For example, the storage unit 25 can have a semiconductor memory such as RAM, ROM, and EPROM. Further, the storage unit 25 may have any type of storage device such as a flash memory, a magnetic storage device, and an optical storage device.

The control unit 26 includes a processor and peripheral circuits, and the processor realizes various operations performed by the authentication device 20 by executing a computer program stored in the storage unit 25. The computer program executed by the control unit 26 may be stored in the storage unit 25 in advance, and is provided by a computer-readable storage medium such as a flash memory, a magnetic storage medium, an optical storage medium, or a communication line, and is stored in the storage unit 25. It may be stored in. At least a part of the storage unit 25 and the control unit 26 may be composed of a microcontroller.

As shown in FIG. 5, the storage unit 25 stores the authentication target identification information 251, the output determination sound pattern information 252, the registered user information 253, and the entrance / exit record information 254. The output determination sound pattern information 252 and the registered user information 253 are set by the administrator of the room entry / exit management system 1 or provided to the storage unit 25 via an arbitrary computer-readable storage medium or communication line. It will be remembered.

The authentication target identification information 251 temporarily stores information about the mobile terminal 10 to be authenticated by the authentication device 20, and has the identification information contained in the trigger signal received from the mobile terminal 10 by the wireless communication unit 21.

The output determination sound pattern information 252 is information representing the pattern of the determination sound output by the sound output unit 23. The output determination sound pattern information 252 has information representing a pattern such as a synthetic sound, a melody, and a Morse code, which is the same as the sound collection determination sound pattern information 152 of the mobile terminal 10.

The registered user information 253 is information about a legitimate user who is permitted to enter the security area in advance. The registered user information 253 corresponds to the mobile terminal identification information 151 of the mobile terminal 10 and corresponds to the employee number or individual number of the legitimate user, or the serial number or identification number of the mobile terminal 10 possessed by the legitimate user. Has identification information such as.

The entry / exit record information 254 is information that records a user who has entered the security area after being permitted to pass from the public area to the security area by the authentication device 20. Further, when the authentication device 20 is installed in the security area behind the door 30, the information of the user who has exited from the security area to the public area is recorded in the entry / exit record information 254.

As shown in FIG. 5, the control unit 26 has, as a functional module realized by executing a computer program stored in the storage unit 25, a trigger receiving means 261, a determination sound output means 262, a passage request receiving means 263, and the like. It has a legitimacy verification means 264, an existence authentication means 265, a passage permission means 266, and an entrance / exit recording means 267.

If the strength of the trigger signal received from the mobile terminal 10 via the wireless communication unit 21 is equal to or higher than a predetermined threshold value, the trigger receiving means 261 targets the mobile terminal 10 that has transmitted the trigger signal as an authentication target, and trigger signal. Is stored in the storage unit 25 as the authentication target identification information 251. Further, the trigger receiving means 261 notifies the determination sound output means 262 that the mobile terminal 10 that has transmitted the trigger signal is the authentication target. The signal strength threshold is smaller than the strength of the radio signal received from the mobile terminal 10 located within a predetermined range around the door 30 on the front side of the door 30, and is located outside the predetermined range around the door 30. It is set to a value higher than the strength of the radio signal received from the terminal 10. For example, the threshold value of the signal strength is such that when the mobile terminal 10 is located within a predetermined range in which the distance from the door is 3 m or less, more preferably 1 m or less, the authentication device 20 has an obstacle between the mobile terminal 10 and the mobile terminal 10. In the absence of the condition, the strength of the wireless signal received from the mobile terminal 10 is set to the minimum possible value.

When the trigger receiving means 261 receives a trigger signal having a strength equal to or higher than the threshold value, the determination sound output means 262 outputs the determination sound of the pattern indicated by the output determination sound pattern information 252 stored in the storage unit 25 to the sound output unit 23. Outputs to the front side of the door 30, that is, a public area for a predetermined period. However, the determination sound output means 262 suspends the output of the determination sound until at least the first period (for example, 1 second) elapses after the trigger receiving means 261 receives the trigger signal. When the determination sound output means 262 receives another trigger signal from a mobile terminal different from the mobile terminal that transmitted the trigger signal between the time when the trigger signal is received and the time when the first period elapses, another trigger signal is received. The first period is restarted at the timing when the trigger signal is received. That is, when another trigger signal is received, the time counting in the first period, which was timed from the trigger signal received before receiving the other trigger signal, is stopped, and the time counting in the first period from the time when the other trigger signal is received is stopped. Is restarted again, and the output of the determination sound is suspended until at least the first period in which the timekeeping is newly started elapses after receiving the other trigger signals. Upon receiving the notification from the trigger signal receiving means 261, the determination sound output means 262 determines that the trigger signal has been received from different mobile terminals during the first period. That is, the determination sound output means 262 determines that the trigger signal having a strength equal to or higher than the threshold value has been received from different mobile terminals during the first period from the identification information included in the trigger signal received by the trigger signal receiving means 261. .. When the determination sound output means 262 does not receive a trigger signal from a mobile terminal different from the mobile terminal that transmitted the trigger signal between the time when the first period elapses from the last received trigger signal, the determination sound output means 262. Is output. Further, when the second period (for example, 3 seconds) longer than the first period elapses from the first reception of the trigger signal, the determination sound output means 262 elapses the first period from the last received trigger signal. A judgment sound is output regardless of whether or not it is present. The first period and the second period may be appropriately set and changed by the administrator.
The sound pressure level and direction of the determination sound output by the determination sound output means 262 are such that the mobile terminal 10 located within a predetermined range such as the distance from the door 30 on the front side of the door 30 is 3 m or 1 m or less is from the authentication device 20. It is set so that the judgment sound of can be collected at a sound pressure level equal to or higher than a predetermined threshold value. The determination sound output means 262 may output the determination sound a plurality of times.

The passage request receiving means 263 is an example of the measurement result acquisition means. If the strength of the received traffic request signal is equal to or higher than the threshold value, the traffic request receiving means 263 notifies the validity verification means 264 that the traffic request signal having a strength equal to or higher than the threshold value has been received. The threshold value of the strength of the traffic request signal is predetermined in the same manner as the threshold value of the strength of the trigger signal. Further, when the sound pressure level of the determination sound measured by the determination sound measuring means 163 of the mobile terminal 10 is equal to or higher than the threshold value, the passage request receiving means 263 receives the passage request signal from the mobile terminal 10 via the wireless communication unit 21. Then, the affirmative measurement result included in the traffic request signal is acquired. That is, the authentication device 20 receives the passage request signal as a positive measurement result, which means that the sound pressure level of the determination sound collected by the mobile terminal 10 is equal to or higher than the threshold value.

Is the validity verification means 264 a legitimate user who is permitted to enter the security area by the user of the mobile terminal 10 based on the identification information of the trigger signal and the traffic request signal transmitted from the mobile terminal 10. Judge whether or not. When the validity verification means 264 is notified that the traffic request signal has been received from the traffic request receiving means 263, the identification information of the received traffic request signal and the identification information of the trigger signal stored as the authentication target identification information 251. And compare. When the identification information of the passage request signal matches the identification information of the trigger signal, the validity verification means 264 stores the identification information of the trigger signal or the passage request signal in the storage unit 25, and the identification information of the registered user information 253 is stored. And, it is determined whether or not the user of the mobile terminal 10 is a legitimate user. The validity verification means 264 is a legitimate use in which the user of the mobile terminal 10 is permitted to enter the security area when the identification information of the trigger signal or the traffic request signal matches the identification information of the registered user information 253. Judged as a person.

The existence authentication means 265 authenticates whether or not the user of the mobile terminal 10 is a legitimate user who exists in the public area on the front side of the same door 30 as the authentication device 20. The existence authentication means 265 receives the traffic request signal having a strength equal to or higher than the threshold value by the passage request means 263, and when the validity verification means 264 determines that the user of the mobile terminal 10 is legitimate, the mobile terminal 10 It is determined that the user of is a legitimate user existing in the public area. Further, in the existence authentication means 265, the passage request signal includes the affirmative measurement result, the passage request receiving means 263 acquires the affirmative measurement result, and the user of the mobile terminal 10 is legitimate by the validity verification means 264. When it is determined that there is, it is determined that the user of the mobile terminal 10 is a legitimate user existing in the public area.

The passage permission means 266 permits the user of the mobile terminal 10 that collects the determination sound to pass from the public area to the security area. The passage permission means 266 determines that the mobile terminal 10 has collected the determination sound when the passage request receiving means 263 obtains a positive measurement result, and the user of the mobile terminal 10 is notified of the user from the public area to the security area. Allow passage to. Further, the passage permission means 266 can be used from the public area of the user of the mobile terminal 10 depending on whether or not the user of the mobile terminal 10 is determined to be a legitimate user existing in the public area by the existence authentication means 265. Determine whether to allow passage to the security area. When it is determined that the user of the mobile terminal 10 is a legitimate user existing in a public area, the passage permission means 266 permits the passage of the user and unlocks the user in order to permit the passage of the user. The signal is transmitted to the electric lock 31 of the door 30 via the electric lock I / F unit 24. The electric lock 31 that has received the unlock signal unlocks the electric lock 31 of the door 30, so that the user is physically allowed to pass. Further, the passage permission means 266 transmits a passage permission signal for notifying the user that the passage is permitted to the mobile terminal 10 via the wireless communication unit 21. Here, the passage permission means 266 may notify the user of the mobile terminal 10 that the passage is permitted by voice, chime, or the like. On the other hand, if it is not determined that the user of the mobile terminal 10 is a legitimate user existing in the public area, the passage permission means 266 does not allow the user to pass, and the unlocking signal is electrically locked. Do not send to 31. In this case, the electric lock 31 of the door 30 remains locked, and the passage of the user is physically prohibited.

When the passage permission means 266 permits the user of the mobile terminal 10 to pass, the entry / exit recording means 267 records the entry of the user into the security area (or the entry record from the public area) via the LAN communication unit 22. And sends it to the management device 40. When the passage permission means 266 permits the user to pass, the entry / exit recording means 267 generates an entry record having identification information of a trigger signal or a passage request signal and stores it in the storage unit 25 as the entry / exit record information 254. Then, the stored entrance / exit record information 254 is transmitted to the management device 40 via the LAN communication unit 22. When the authentication device 20 is installed behind the door 30, the entrance / exit recording means 267 records the exit record from the user's security area in the entrance / exit record information 254.

FIG. 6 is a diagram showing an operation sequence of each device in the room entry / exit management system 1. The operation of each device shown in FIG. 6 is realized by each means of the control unit of each device executing a computer program stored in the storage unit. For details of each part of each device and each means, refer to the above description.

First, a case where the mobile terminal 10 exists in a public area on the front side of the door 30, that is, a case where the mobile terminal 10 is the mobile terminal A or B of FIG. 2 will be described (steps S101 to S105).

When the motion detection unit 12 detects the stationary state of the user, the stationary detection means 161 of each mobile terminal 10 considers that the user has stopped in front of the entrance door 30 in order to enter the security area. In that case, the trigger transmission means 162 reads out the mobile terminal identification information 151, generates a trigger signal having the read identification information, and transmits it to the authentication device 20 via the wireless communication unit 11 (step S101).

When the trigger receiving means 261 of the authentication device 20 receives the trigger signal via the wireless communication unit 21, the authentication device 20 executes the determination sound output process (step S102).

FIG. 7 is a flowchart showing the operation of the determination sound output process by the authentication device 20. First, the trigger receiving means 261 determines whether or not a trigger signal having a strength equal to or higher than a predetermined threshold value has been received (step S201). When a trigger signal having a strength equal to or higher than the threshold value is received (step S201-Yes), the trigger receiving means 261 can receive a wireless signal from the mobile terminal 10 with a strength equal to or higher than the threshold value in a predetermined range (hereinafter referred to as “). It is determined that the mobile terminal 10 is located within the "receivable range"). In that case, the trigger receiving means 261 considers that the user of the mobile terminal 10 is stationary near the door 30 in order to enter the security area, and sets the mobile terminal 10 that has transmitted the trigger signal as an authentication target and triggers the signal. Is stored in the authentication target identification information 251 (step S202). On the other hand, when the strength of the received trigger signal is less than the threshold value, the trigger receiving means 261 indicates that the user of the mobile terminal 10 is at a position away from the door 30 (outside the receivable range) and intends to enter the security area. It is considered that it does not exist, and this mobile terminal 10 is not subject to authentication. In that case, the trigger receiving means 261 waits until it receives a trigger signal having a strength equal to or higher than a newly predetermined threshold value (step S201).

When the trigger signal having the intensity equal to or higher than the threshold value is first received, the determination sound output means 262 starts timing the first period and the second period (step S203). Next, the determination sound output means 262 determines whether or not the first period has elapsed (step S204). When the first period has not elapsed (step S204-No), the determination sound output means 262 determines whether or not the second period has elapsed (step S205). When the second period has not elapsed (step S205-No), the determination sound output means 262 determines whether or not the trigger receiving means 261 has received a new trigger signal having a strength equal to or higher than the threshold value (step S206). .. When the trigger receiving means 261 has not received a new trigger signal having a strength equal to or higher than the threshold value (step S206-No), the determination sound output means 262 returns the process to step S204. On the other hand, when the trigger receiving means 261 receives a new trigger signal having a strength equal to or higher than the threshold value (step S206-Yes), the mobile terminal 10 that has transmitted the trigger signal is set as an authentication target, and the identification information of the trigger signal is authenticated. It is stored in the target identification information 251 (step S207). When the identification information of the newly received trigger signal is already stored in the authentication target identification information 251, the trigger receiving means 261 retransmits the trigger signal from the mobile terminal 10 that has already received the trigger signal. It is regarded as a signal and no particular processing is performed. Next, the determination sound output means 262 restarts the time counting in the first period (step S208), and returns the process to step S204.

On the other hand, when the first period elapses in step S204 or the second period elapses in step S205, the determination sound output means 262 outputs the determination sound of the pattern shown in the output determination sound pattern information 252 to the sound output unit 23. Is output to the front side of the door 30, that is, the public area for a predetermined period (step S209), and a series of steps is completed.

As described above, the determination sound output means 262 suspends the output of the determination sound until at least the first period elapses after the trigger receiving means 261 receives the trigger signal. That is, the determination sound output means 262 outputs a determination sound for each mobile terminal that has transmitted the trigger signal, but when a plurality of trigger signals having different identification information are continuously received within a certain period of time, the determination sound is output. Hold output. Then, when the determination sound output means 262 receives a plurality of trigger signals from different mobile terminals 10 within the first period, the determination sound output means 262 collectively outputs one determination sound for the plurality of trigger signals. As a result, the determination sound output means 262 can suppress the person in the public area from feeling unpleasant as the determination sound as noise.
Further, if the determination sound output means 262 receives another trigger signal between the time when the specific trigger signal is received and the time when the first period elapses, the determination sound output means 262 restarts the timing of the first period, while the first. If no other trigger signal is received until one period elapses, a judgment sound is output. As a result, the determination sound output means 262 omits the determination sound for some users even when there are three or more users who try to enter the security area at regular intervals, and collectively one. It is possible to output a judgment sound.
Further, when the second period has elapsed since the first trigger signal was received, the determination sound output means 262 determines whether or not the first period has elapsed since the specific trigger signal was received. Output sound. As a result, the determination sound output means 262 suspends the output of the determination sound so as not to make the first user wait too much when there are too many users trying to enter the security area at regular intervals. It will be possible to terminate it.

On the other hand, the determination sound measuring means 163 of each mobile terminal 10 starts measuring the determination sound output from the authentication device 20 after the trigger transmission means 162 transmits the trigger signal to the authentication device 20 (step S103). That is, unless the mobile terminal 10 transmits a trigger signal, the sound collecting unit 13 does not collect the surrounding sound, or even if the sound is collected, the determination sound measuring means 163 does not start the measurement. .. Next, each mobile terminal 10 executes a passage request signal transmission process (step S104).

FIG. 8 is a flowchart showing the operation of the passage request signal transmission process by each mobile terminal 10. First, the determination sound measuring means 163 analyzes the pattern of the sound collected by the sound collecting unit 13 in a predetermined period, and determines whether or not the analyzed sound pattern matches the pattern of the sound collecting determination sound pattern information 152. Determination (step S301). When the determination sound measuring means 163 matches each pattern (step S301-Yes), the determination sound measuring means 163 extracts a portion matching the pattern with the sound collection determination sound pattern information 152 from the collected sound as a determination sound, and extracts the sound of the extracted portion. The sound pressure level is acquired as the sound pressure level of the determination sound. Next, the determination sound measuring means 163 determines whether or not the sound pressure level of the acquired determination sound is equal to or higher than the threshold value (step S302). When the sound pressure level is equal to or higher than the threshold value (step S302-Yes), the passage request transmitting means 164 can collect the determination sound output from the authentication device 20 on the front side of the door 30 at a sound pressure level equal to or higher than the threshold value. It is determined that the mobile terminal 10 is located within the range of (hereinafter referred to as "sound collection possible range"). In that case, the passage request transmitting means 164 considers that the user of the mobile terminal 10 is in the public area on the front side of the door 30 and has the intention to pass through the door 30 and enter the security area, and the mobile terminal identification information 151 A traffic request signal having identification information is wirelessly transmitted to the authentication device 20 via the wireless communication unit 11 (step S303), and a series of steps is completed. On the other hand, if the patterns do not match in step S301, or if the sound pressure level is less than the threshold value in step S302, the passage request transmitting means 164 is within the range in which the user of the mobile terminal 10 can collect sound. Since there is no such thing, it is considered that there is no intention to enter the security area, and the series of steps is completed without transmitting the traffic request signal to the authentication device 20.

On the other hand, the authentication device 20 executes the authentication process of the user of each mobile terminal 10 that has transmitted the traffic request signal (step S105).

FIG. 9 is a flowchart showing the operation of the authentication process by the authentication device 20. First, the existence authentication means 265 determines whether or not a predetermined period has elapsed since the determination sound was output (step S401). When the predetermined period has elapsed (step S401-Yes), the existence authentication means 265 determines that the user of the unauthenticated mobile terminal 10 among the mobile terminals 10 that received the trigger signal could not be authenticated, and is subject to authentication. The identification information of the unauthenticated mobile terminal 10 is deleted from the identification information 251 (step S402), and a series of steps is completed.
On the other hand, when the predetermined period has not elapsed (step S401-No), the traffic request receiving means 263 determines whether or not the traffic request signal having a strength equal to or higher than the threshold value is received from the mobile terminal 10 (step S403). ).

When the traffic request signal whose intensity is less than the threshold value is not received (step S403-No), the traffic request receiving means 263 returns the process to step S401. When the traffic request receiving means 263 receives the traffic request signal whose intensity is less than the threshold value, the mobile terminal 10 is considered to be located outside the receivable range away from the door 30. In that case, the existence authentication means 265 is away from the door 30 at the present time even if the mobile terminal 10 is previously located within the receivable range and transmits a trigger signal having a strength equal to or higher than the threshold value to the authentication device 20. It is considered that the user of the mobile terminal 10 has no intention of passing through the door 30, and the mobile terminal 10 is not subject to authentication.
On the other hand, when the traffic request signal having the intensity equal to or higher than the threshold value is received (step S403-Yes), the traffic request receiving means 263 considers that the mobile terminal 10 is located within the receivable range. In that case, the existence authentication means 265 considers that the user of the mobile terminal 10 is near the door 30 and has the intention to pass through the door 30. Next, the validity verification means 264 determines whether or not the identification information of the received traffic request signal matches the identification information of the trigger signal stored as the authentication target identification information 251 (step S404).

When the identification information of the passage request signal does not match the identification information of the trigger signal (No in step S404), the validity verification means 264 returns the process to step S401. In that case, the existence authentication means 265 considers that the user of the mobile terminal 10 has no intention of entering the security area from the public area, and does not subject the mobile terminal 10 to the authentication target.
On the other hand, when the identification information of the traffic request signal and the identification information of the trigger signal match (step S404-Yes), the validity verification means 264 responds to the trigger signal by the portable terminal 10 that has previously transmitted the trigger signal. Then, it is considered that the determination sound output by the authentication device 20 is collected at a sound pressure level equal to or higher than the threshold value and the passage request signal is transmitted. That is, in the validity verification means 264, the user of the mobile terminal 10 that has previously transmitted the trigger signal is in the public area on the front side of the door 30 within the sound collecting range near the door 30, and the door 30 is opened. It is considered to have the intention to pass through and enter the security area. In that case, the validity verification means 264 legitimately allows the user of the mobile terminal 10 to enter the security area depending on whether or not the identification information of the traffic request signal matches the identification information of the registered user information 253. It is determined whether or not the user is a user (step S405).

When the identification information of the traffic request signal does not match the identification information of the registered user information 253 (step S405-No), the validity verification means 264 is a legitimate one that allows the user of the mobile terminal 10 to enter the security area. It is determined that the user is not a user, and the process returns to step S401.
On the other hand, when the identification information of the traffic request signal matches the identification information of the registered user information 253 (steps S405-Yes), the validity verification means 264 allows the user of the mobile terminal 10 to enter the security area. It is determined that the user is a legitimate user (step S406). In this way, when the traffic request receiving means 263 receives the traffic request signal having a strength equal to or higher than the threshold value and the validity verification means 264 determines that the user of the mobile terminal 10 is legitimate, the existence authentication means 265. Determines that the user of the mobile terminal 10 is a legitimate user existing in a public area.

When the existence authentication means 265 determines that the user of each mobile terminal 10 is a legitimate user existing in the public area, the passage permission means 266 is the user of each mobile terminal 10 from the public area to the security area. Allow the passage of. In that case, the passage permitting means 266 transmits an unlocking signal to the electric lock 31 of the door 30 via the electric lock I / F unit 24 (step S407). When the electric lock 31 receives the unlock signal from the authentication device 20, it is unlocked for a predetermined period, and the user of the mobile terminal 10 existing in the public area physically enters the security area through the door 30. Allow to.
Next, the passage permission means 266 transmits a passage permission signal to each mobile terminal 10 to notify that the user of each mobile terminal 10 is permitted to pass (step S408). When each mobile terminal 10 receives a passage permission signal, the mobile terminal 10 urges the user to pass by displaying on the screen that the passage is permitted or outputting a chime or a voice. If the existence authentication means 265 does not determine that the user of each mobile terminal 10 is a legitimate user existing in a public area, the passage permission means 266 does not transmit the unlock signal to the electric lock 31. , The electric lock 31 of the door 30 remains locked.
Next, the entrance / exit recording means 267 stores the entrance record of the user of each mobile terminal 10 into the security area in the storage unit 25 as the entrance / exit record information 254, and stores the stored entrance / exit record information 254 in the LAN communication unit 22. Is transmitted to the management device 40 via the above (step S409).

Next, the existence authentication means 265 deletes the identification information of the mobile terminal 10 determined that the user is a legitimate user existing in the public area from the authentication target identification information 251 (step S410). Next, the existence authentication means 265 determines whether or not the authentication process for all the mobile terminals 10 that have received the trigger signal has been executed by determining whether or not the identification information remains in the authentication target identification information 251. (Step S411). If there is a mobile terminal 10 that has not yet executed the authentication process, the existence authentication means 265 returns the process to step S401. On the other hand, when the authentication process for all the mobile terminals 10 that have received the trigger signal is executed, the existence authentication means 265 ends a series of steps.

As described above, the passage permission means 266 collectively outputs output sounds to the plurality of mobile terminals 10, and when the passage request signals are received from the plurality of mobile terminals 10, the passage request means is sequentially authenticated for each mobile terminal 10. I will go. As a result, the passage permission means 266 can allow the user of the mobile terminal 10 who first transmitted the passage request signal to pass to the security area without waiting for a long time.

Next, a case where the mobile terminal 10 exists in the security area behind the door 30, that is, a case where the mobile terminal 10 is the mobile terminal C of FIG. 2 will be described (steps S106 to S109).

When the user of the mobile terminal 10 existing in the security area stops to talk with another user, the stationary detection means 161 detects the stationary state of the user, and the trigger transmission means 162 uses the mobile terminal identification information 151. A trigger signal having identification information is generated and transmitted to the authentication device 20 via the wireless communication unit 11 (step S106).

When the trigger receiving means 261 of the authentication device 20 receives the trigger signal via the wireless communication unit 21, the authentication device 20 executes the determination sound output process shown in FIG. 7 (step S107). However, when the mobile terminal 10 is outside the receivable range as in the mobile terminal D of FIG. 2, the trigger receiving means 261 does not receive the trigger signal having a strength equal to or higher than the threshold value in step S201 of FIG. The output means 262 does not output the determination sound. Further, when the mobile terminal 10 is within the receivable range as in the mobile terminal C of FIG. 2, in step S209 of FIG. 7, the determination sound output means 262 of the authentication device 20 outputs the determination sound to the sound output unit 23. Outputs from to the front side of the door 30, that is, to the public area.
On the other hand, the determination sound measuring means 163 of each mobile terminal 10 starts measuring the determination sound (step S108), and each mobile terminal 10 executes the passage request signal transmission process shown in FIG. 8 (step S109). However, since the mobile terminal 10 exists on the back side of the door 30 and is outside the sound collection possible range, the pattern of the collected sound does not match the pattern of the sound collection determination sound pattern information 152 in step S301 of FIG. The sound pressure level of the judgment sound does not exceed the threshold value. Since the authentication device 20 does not receive the traffic request signal from the mobile terminal 10, the user of the mobile terminal 10 behind the door is excluded from the authentication target. Therefore, according to the present invention, even if the mobile terminal 10 is located within the receivable range near the door 30, if it exists in the security area behind the door 30, the user is a legitimate user. It is possible to prevent the electric lock 31 of the door 30 from being accidentally unlocked.

According to the room entry / exit management system 1 according to the present invention described above, the mobile terminal 10 collects the determination sound output from the authentication device 20, and the authentication device 20 collects the sound pressure of the determination sound collected by the mobile terminal 10. Only when the level is equal to or higher than the threshold value, the user of the mobile terminal 10 is authenticated. The authentication device 20 suspends the output of the determination sound until at least a certain period of time has elapsed after receiving the trigger signal from the mobile terminal 10. As a result, when the authentication device 20 receives a trigger signal from a certain mobile terminal 10 and then receives it from another mobile terminal 10 within a certain period of time, the authentication device 20 collectively outputs a determination sound to each mobile terminal 10 and outputs each. It is possible to efficiently authenticate the mobile terminal 10. Further, the authentication device 20 can reduce the number of times the determination sound is generated in the public area, and can prevent a person in the public area from feeling unpleasant as the determination sound as noise.
Further, since the authentication device 20 targets only the user of the mobile terminal 10 existing in the public area on the front side of the same door 30 as the authentication device 20, a legitimate user existing in the same area as the authentication device 20 can be authenticated. It is possible to improve the accuracy of authentication. Further, the authentication device 20 erroneously authenticates the user of the mobile terminal 10-2 existing in the security area behind the door 30 and unlocks the electric lock 31 of the door 30, and an unauthorized user enters the security area. Since it is possible to prevent entry, the safety of the entry / exit management system 1 can be improved.
Further, if the identification information of the trigger signal first received from the mobile terminal 10 and the identification information of the traffic request signal received after that do not match, the authentication device 20 authenticates the user of the mobile terminal 10. Do not. As a result, authentication is performed only when the mobile terminal 10 that has transmitted the trigger signal and the mobile terminal 10 that has transmitted the traffic request signal are the same, so that the accuracy of authentication is further improved and the safety of the room entry / exit management system 1 is improved. It can be further improved.

Although one embodiment of the present invention has been described above, the present invention is not limited to these embodiments.

In the above embodiment, the authentication device 20 suspends the output of the determination sound from the time when the trigger signal is first received until the first period elapses, but the mobile terminal that has transmitted the first received trigger signal is The output of the determination sound may be suspended from the time when the trigger signal from a different mobile terminal is received. For example, the authentication device 20 outputs a determination sound for the first received trigger signal (referred to as the first trigger signal) without holding the determination sound, and then triggers from a mobile terminal different from the first trigger signal. When the signal (referred to as the second trigger signal) is received within a predetermined period (for example, 1 second) after receiving the first trigger signal, the first period is from the time when the second trigger signal is received. The judgment sound is suspended until it elapses. As a result, the authentication device 20 can shorten the waiting time in front of the door by outputting the determination sound without holding it when there is only one passerby, and when there are a plurality of passersby. By suspending the determination sound and outputting the determination sound to a plurality of mobile terminals collectively, it is possible to suppress the passerby from feeling unpleasant as the determination sound as noise.

In the above embodiment, when the authentication device 20 continues to receive trigger signals from a plurality of mobile terminals, the authentication device 20 outputs a determination sound at the timing when the second period elapses, but the triggers received from different mobile terminals are used. The determination sound may be output at the timing when the number of signals exceeds a predetermined number. For example, when the authentication device 20 continues to receive trigger signals from a plurality of mobile terminals and receives trigger signals from two or more predetermined numbers (for example, 5) of different mobile terminals within the first period, the first period. And the judgment sound is output even if the second period has not passed. As a result, the authentication device 20 can prevent the authentication device 20 from receiving a large number of trigger signals by the time the second period elapses and delaying the authentication process after receiving the traffic request signal.

In the above embodiment, the mobile terminal 10 determines whether or not the sound pressure level of the measured determination sound is equal to or higher than the threshold value, and transmits a passage request signal (step S303 in FIG. 8), but the sound of the determination sound. The authentication device 20 may determine the pressure level. For example, the mobile terminal 10 may only measure the sound pressure level of the determination sound, and the passage request transmitting means may wirelessly transmit the passage request signal having the sound pressure level itself to the authentication device 20. This passage request transmitting means is an example of the sound pressure level transmitting means. In that case, the traffic request receiving means 263 of the authentication device 20 determines whether or not the sound pressure level of the traffic request signal received from the mobile terminal 10 is equal to or higher than a predetermined threshold value, and the sound pressure level is the threshold value. If the above is the case, the affirmative measurement result is acquired.

In the above embodiment, the authentication device 20 determines whether or not the identification information of the traffic request signal received from the mobile terminal 10 matches the identification information of the trigger signal (step S404 in FIG. 9), but this determination is omitted. May be done. For example, the authentication device 20 may determine whether or not the identification information possessed by either the trigger signal or the passage request signal matches the registered identification information, and permit the passage. For example, when the authentication device 20 receives a trigger signal, it outputs only a determination sound, and when the identification information of the passage request signal matches the registered identification information and the sound pressure level is equal to or higher than the threshold value, the authentication device 20 passes. Allow. In this case, only one of the trigger signal and the traffic request signal may have the identification information. Further, the authentication device 20 omits the determination itself (steps S404 and S405 in FIG. 9) as to whether or not the user of the mobile terminal 10 is legitimate, and determines whether or not the user of the mobile terminal 10 is legitimate. Regardless, you may allow passage.

In the above embodiment, the authentication device 20 outputs the determination sound of the pattern stored in the storage unit 25, but may output the determination sound of a pattern different for each mobile terminal 10. In this case, the authentication device 20 stores in advance a pattern of the determination sound to be output for each identification information of the mobile terminal 10 in the storage unit 25, and stores the pattern of the determination sound corresponding to the identification information of the received trigger signal from the storage unit 25. Read and output the judgment sound of the read pattern. The mobile terminal 10 determines whether or not the pattern of the collected sound is a pattern of the determination sound peculiar to the own terminal stored in the storage unit 15, and extracts the sound of the portion matching the pattern as the determination sound. And measure the sound pressure level.

In the above embodiment, the trigger signal is transmitted to the authentication device 20 when the mobile terminal 10 detects the stationary state of the user, but the present invention is not limited to this. For example, the mobile terminal 10 may transmit a trigger signal when the user receives an operation such as unlocking an electric lock on a liquid crystal panel or an application display screen. Alternatively, when the mobile terminal 10 receives a predetermined radio signal transmitted by the authentication device 20 at regular intervals, the mobile terminal 10 receives the predetermined radio signal transmitted by the authentication device 20 in response to an operation such as pressing an entrance button by the user. , Or when the authentication device 20 collects a predetermined determination sound output according to a predetermined operation, the trigger signal may be transmitted.

In the above embodiment, the door 30 having the electric lock 31 is installed between the public area and the security area, but the door 30 may be omitted. For example, the room entry / exit management system 1 uses the determination sound and the radio signal for two areas physically separated by a wall or the like in the same manner as in the above embodiment, and carries the determination sound and the radio signal to either side of the two areas. You may determine whether the user of the terminal 10 exists and authenticate. The entry / exit management system 1 installs authentication devices 20 everywhere in a building having a plurality of areas, and authenticates which mobile terminal 10 user is in which area to determine the position of each user. I can grasp it. If the sound pressure level of the judgment sound that reaches each other differs by a certain amount or more due to the directivity and output direction of the judgment sound, the entry / exit management system 1 does not need to install a wall or the like between the areas. ..

The present invention can be applied to various authentication devices and mobile terminal programs in access control systems, authentication systems, location grasping systems, and the like.

1 Access control system, 10 mobile terminal, 11 wireless communication unit, 12 motion detection unit, 13 sound collection unit, 14 operation / display unit, 15 storage unit, 16 control unit, 20 authentication device, 21 wireless communication unit, 22 communication Unit, 23 sound output unit, 24 electric lock I / F unit, 25 storage unit, 26 control unit, 30 doors, 31 electric lock, 40 management device, 90 wide area network, 151 mobile terminal identification information, 152 sound collection judgment sound pattern Information, 161 stationary detection means, 162 trigger transmission means, 163 judgment sound measuring means, 164 traffic request transmission means, 251 authentication target identification information, 252 output judgment sound pattern information, 253 registered user information, 254 entry / exit record information, 261 Trigger receiving means, 262 judgment sound output means, 263 passage request receiving means, 264 validity verification means, 265 existence authentication means, 266 passage permission means, 267 entry / exit recording means

Claims (7)

An authentication system having a plurality of mobile terminals carried by each of a plurality of users and an authentication device for managing the passage of a plurality of users from the first area to the second area adjacent to the first area. There,
Each of the plurality of mobile terminals
A trigger transmission means for wirelessly transmitting a trigger signal to the authentication device,
It has a sound collecting means for collecting the determination sound output from the authentication device, and has.
The authentication device is
When the trigger signal is received from each mobile terminal, the determination sound output means for outputting the determination sound to the first area, and the determination sound output means.
It has a passage permitting means for permitting a user of a mobile terminal that collects the determination sound from the first area to the second area.
When the determination sound output means receives a plurality of the trigger signals from different mobile terminals within a predetermined period, the determination sound output means collectively outputs one determination sound for the plurality of trigger signals.
An authentication system characterized by that. Each of the plurality of mobile terminals further has a determination sound measuring means for measuring the sound pressure level of the determination sound collected by the sound collecting means.
The authentication device further provides a measurement result acquisition means for acquiring an affirmative measurement result that the sound pressure level of the determination sound is equal to or higher than the threshold when the sound pressure level of the determination sound measured by the determination sound measuring means is equal to or higher than the threshold value. Have and
The authentication system according to claim 1, wherein the passage permitting means determines that the mobile terminal has collected the determination sound when the measurement result acquisition means acquires the affirmative measurement result. The determination sound output means suspends the output of the determination sound until at least the predetermined period elapses after receiving the trigger signal, and collectively refers to the plurality of trigger signals received within the predetermined period. The authentication system according to claim 1 or 2, which outputs one determination sound. When the determination sound output means receives the trigger signal from the second mobile terminal between the time when the trigger signal is received from the first mobile terminal and the time when the predetermined period elapses, the determination sound output means has the predetermined period. The timing is started again, the output of the determination sound is suspended until at least the predetermined period elapses after receiving the trigger signal from the second mobile terminal, and the plurality of triggers received during the predetermined period. The authentication system according to claim 3, wherein one determination sound is collectively output for a signal. 3. The determination sound output means outputs the determination sound even if the predetermined period has not elapsed when the trigger signal is received from two or more different mobile terminals within the predetermined period. The authentication system described in. The authentication device further has a validity verification means for determining whether or not the user of each mobile terminal is legitimate based on the identification information transmitted from each mobile terminal.
The authentication according to any one of claims 1 to 5, wherein the passage permitting means permits the passage only when the user of each mobile terminal is determined to be legitimate by the validity verification means. system. An authentication device that communicates with a plurality of mobile terminals carried by each of a plurality of users and manages the passage of a plurality of users from the first area to the second area adjacent to the first area.
When a trigger signal is received from each of the plurality of mobile terminals, a determination sound output means for outputting a determination sound to the first area and a determination sound output means.
It has a passage permitting means for permitting a user of a mobile terminal that collects the determination sound from the first area to the second area.
When the determination sound output means receives a plurality of the trigger signals from different mobile terminals within a predetermined period, the determination sound output means collectively outputs one determination sound for the plurality of trigger signals.
An authentication device characterized by that.

Images