EP3185221A1 - Authentication apparatus and method for optical or acoustic character recognition - Google Patents

Abstract

The present invention relates to an authentication device and a method for authenticating or determining the identity of a person, a device, a thing, a service, an application and / or a computer program, in which an authentication via a security element (1) with at least one security feature ( 2) and an authentication device takes place. In the method, a security element (1) with at least one security feature (2) consisting of characters is provided, which can be detected by character recognition, the appearance of the characters of the security feature (2) detected by a detection device, character recognition and / or character analysis in which the recognizable characters of the appearance of the security feature (2) are converted and an alignment of the security feature (2) detected by the detection device (5) and / or the characters converted by the character recognition device (6) with a reference feature stored in a memory and / or one or more reference characters and / or one or more reference tones. According to the invention, it is provided that the detection conditions for detecting the appearance of the characters and / or the read-in conditions for the character recognition and / or the analysis parameters for the character analysis of the characters of the security feature (2) are defined and that the security element (1) at least one structural feature (4 ), which influences the appearance of the security feature (2) and thus the detectability of one or more characters of the security feature (2) in a character recognition and / or character interpretation.

Description

The present invention relates to an authentication device and a method for authenticating or determining the identity of a person, a device, a thing, a service, an application and / or a computer program, in which an authentication via a security element with at least one security feature and an authentication device in which an optical or acoustic character recognition and subsequent conversion of the recognizable characters into readable characters takes place. Finally, there is a comparison with stored reference characters or computer-readable reference features.

Security elements with different security features are known. For example, describes the DE 10 2004 055 761 A1 a sheet-shaped document of value, in which a code which can be detected in the non-visible spectral range as well as further security features in the form of visible features are provided as a security feature. In addition, it is also known that, for example, complex surface structures such as cracks and cracks can be used as a security feature, similar to a fingerprint, for authentication. Such a security element is for example in the US Pat. No. 7,793,837 B1 described, with individual cracks are designed such that they overlap a string. However, a dynamic change of the crack structure and a consequent change in the readability of the imaged characters are not disclosed.

In addition, there are also dynamic security features, such as in the form of crackle structures that evolve in a random manner, so that possible counterfeits are unpredictable. Such a crackle pattern in the form of cracks or cracks, eruptions, wear or shrinkage is described in the applicant DE 10 2009 003 221 A1 , The accidental development of the crackle creates a security feature that is almost impossible to fake by a copycat. The dynamic development of the Krakelee further increases the security against counterfeiting.

In addition, there are also optical security features that are represented by an electronically controlled display element and are therefore optically variable. Such an optically variable element is in the DE 10 2004 045 211 A1 described. In this case, an electrically controlled display element and a defractive structure at least partially covers, so that the visual appearance of the optical effect generated by the defractive structure is at least partially influenced by the electrically controlled display element. In addition, there are also methods for disguising characters, for example the representation of authenticity data or other measured values, by visually displaying so-called cover data, which are generated via a mathematical algorithm. Such a device and such a method are in the DE 10 2004 049 998 A1 shown.

The DE 10 2009 036 706 A1 The applicant describes a digital display for displaying safety-relevant information or patterns that change due to an algorithm and / or external influences. These may be, for example, characters or a pattern, which change dynamically between two query times. However, conversion of the detected characters into other characters is not provided for in this method.

There are also procedures for tracing banknotes, for example. These are usually based on analyzing and assigning displayed serial numbers. Such a method is in the DE 10 2009 044 881 A1 described. However, the procedure works only if the displayed serial number is readable. If there is a mechanical damage to the security element, for example, because a serial number can no longer be read by a tear, it can no longer be assigned. The proposed embodiment variant therefore proposes that in a second comparison step, a comparison of the serial number of the physically present banknote with serial number images stored in a data store is carried out. In addition to the pure serial numbers, other features, such as the characteristic image feature of the crack, are used for the comparison in this comparison.

In addition, there are security features that have visible and not visible security features to increase the security against counterfeiting, for example described in the DE 10 2007 044 992 B3 in which a first defractive area has a hidden code, invisible to the unaided eye, which is integrated into the defensive surface structures of the security element. Any attempt to change the visual appearance of the open information or the hidden code will affect the hidden code or information so that such manipulation attempts can be easily detected.

In addition, there are efforts to make features disappear by using complementary colors or to make them visible. Such approaches are for example in the DE 601 26 698 T2 , of the US Pat. No. 3,632,993 or the DE 10 2206 057 507 A1 known.

Finally, methods are known for converting characters to computer-readable characters, such as text or code, via optical character recognition (OCR) using an image capture method. Such a method is for example in the DE 20 2013 011 992 U1 , of the DE 10 2008 077 331 B4 , of the DE 10 2006 037 260 B3 or the WO02 / 099735 A1 described. Finally, there are also methods for identification or authentication, which are carried out via dynamic acoustic security information, for example described by the applicant in the WO 2015/124696 A1 ,

Although in the cited prior art static and dynamic security features to increase security in an authentication or identification of persons, services or things known, but there is still the possibility that counterfeiters with reasonable effort to copy common security features or bypass security mechanisms.

Against this background, it is an object of the present invention to provide an improved authentication device and method in order to simplify and increase the security against forgery of security elements.

This object is achieved by an authentication device having the features of claim 1 and a method having the features of claim 9.

The authentication device according to the invention is based on performing character recognition of a security element with at least one security feature consisting of characters and the subsequent conversion of the characters into interpretable characters or features based on the appearance of the security element. In this case, the conditions for detecting the appearance of the characters and / or the read-in conditions for the character recognition and / or the analysis parameters for the character analysis of the characters of the security element for an authentication request are determined by at least one control device.

• ein Sicherheitselement mit wenigstens einem aus Zeichen bestehenden Sicherheitsmerkmal, die über eine Zeichenerkennung erfassbar sind,
• wenigstens eine Erfassungseinrichtung zum Erfassen des Erscheinungsbilds der Zeichen des Sicherheitsmerkmals,
• wenigstens eine Zeichenerkennungseinrichtung zur Durchführung einer Zeichenerkennung und/oder einer Zeichenanalyse, bei der die erkennbaren Zeichen des Erscheinungsbildes des Sicherheitsmerkmals in maschinenlesbare Zeichen, eine Information und/oder akustische Töne umgewandelt werden,
• wenigstens eine Abgleicheinrichtung zum Abgleich des von der Erfassungseinrichtung erfassten Sicherheitsmerkmals und/oder der von der Zeichenerkennungseinrichtung umgewandelten Zeichen, Informationen oder Tonfolgen mit einem in einem Speicher hinterlegten Referenzmerkmal und/oder einem oder mehreren Referenzzeichen und/oder einem oder mehreren Referenztönen.

The authentication device according to the invention comprises in its basic form the following components:

• a security element having at least one security feature consisting of characters, which can be detected by a character recognition,
• at least one detection device for detecting the appearance of the symbols of the security feature,
• at least one character recognition device for performing a character recognition and / or a character analysis, in which the recognizable signs of the appearance of the security feature are converted into machine-readable characters, information and / or acoustic tones,
• at least one matching device for matching the security feature detected by the detection device and / or the characters, information or sound sequences converted by the character recognition device with a reference feature stored in a memory and / or one or more reference symbols and / or one or more reference tones.

The authentication device according to the invention is characterized in that it comprises at least one control device in which the detection conditions for detecting the appearance of the characters and / or the read-in conditions for the character recognition and / or the analysis parameters for the character analysis of the characters of the security feature for an authentication request are defined and the security element has at least one structural feature which influences the appearance of the security feature and thus the detectability of one or more characters of the security feature in a character recognition and / or character interpretation, preferably dynamically.

The structural features are preferably such that they influence the appearance of the signs of the security feature, for example via a layer of material stored above or below the security feature. The signs themselves may also be structural features, for example by printing with an ink which changes their physical, chemical or biological property over a period of time. This can e.g. the color of the characters, their fluorescence or even the degree of magnetism, when using inks that contain magnetic particles.

In an alternative variant, the authentication device according to the invention comprises, depending on the application, a plurality of control devices which each show the detection conditions for detecting the appearance, the read-in conditions for the Define character recognition and / or the analysis parameters for the character analysis of the characters of the security feature for an authentication request. The control device according to the invention can thus be part of the detection device and / or the character recognition device and / or the adjustment device.

Preferably, the security element consists of optically detectable characters which can be read via an optical character recognition (OCR recognition), converted into machine-readable characters and can be digitally evaluated. For detecting a detection device for detecting the appearance of the characters of the security feature is provided, preferably a camera. In a variant of the invention, acoustic safety information can also be evaluated by detecting the acoustic signals. In such a variant, the detection device would comprise a microphone to record acoustic signals as a security feature. Such acoustic signals are z. As sounds, sounds or signal mixtures.

The word "character" should be construed broadly in the context of the present invention in terms of optically or acoustically detectable information or feature. Accordingly, the characters may be, for example, machine-readable patterns, characters such as letters, numbers, symbols or sound signals. After the characters are detected, a character analysis is performed in which the recognizable characters of the appearance of the security feature are converted into readable characters, information, or an audio tone sequence.

In the case of optical character recognition (OCR recognition), the optically captured images of the characters are converted into computer-readable digital characters. These characters usually consist of characters, typefaces, letters, numbers, a text string, symbols or special characters. Conversion of characters into acoustic information, such as Sounds or signals is part of an alternative embodiment of the invention. Alternatively, the recorded via a microphone acoustic information could be translated into a sign language and used as a security feature.

Preferably, the character recognition device is an OCR device and the character analysis is an OCR analysis which specifies in which computer-readable character an optically detected character is to be converted. The character recognition device preferably detects the optically detectable characters of the security element and converts these into corresponding machine-readable characters (eg. Letters, numbers, symbols, special characters, etc.). In the acoustic variant, individual characters of the security feature are converted into corresponding tone signals or tone sequences (or vice versa). Thus, certain characters would be assigned to a particular tone, signal or sound. To increase security, only certain characters of the security element are converted into acoustic security features, while other characters either remain unchanged or are used for optical authentication. After the characters have been converted into computer-readable characters, information or in acoustic tone sequences, the characters, information or acoustic tone sequences converted by the character recognition device are matched with a reference feature and / or reference character and / or reference tone sequence stored in a memory. Additionally or alternatively, the adjustment device can also carry out a direct comparison of the security feature detected by the detection device with a reference feature stored in a memory and / or one or more reference characters and / or one or more reference tones. The matching device is preferably part of an authentication server that manages the character recognition and character deposition.

Simply capturing a security feature, such as code consisting of characters, would not be a security enhancing measure by itself compared to existing security procedures. However, if a string is overlaid by external influences or a structural feature such as an unpredictable crackle in an overlying varnish, thereby affecting the underlying string and thus also an OCR analysis, the static code becomes an unpredictable dynamic code educated. In one variant, the string itself is also a structural feature, for example, in that it dynamically changes due to internal or external influences. An example of printing a security feature with an ink or dye that alters its color or other chemical, physical or biological property.

According to the invention, it is provided that the authentication device comprises one or more control devices. The authentication device is formed in a preferred variant as an authentication system with several separate, partially spatially separated, components consisting of a separate detection device (for example, a camera), a character recognition device (for example, an OCR recognition device) and a matching device (for example, a authentication server). Consequently, it is not a requirement that the individual components of the authentication device form a physical entity. Rather, it is preferred that the individual components of the authentication device located at different locations and possibly interconnected via a network.

According to the invention, it is provided that the at least one control device is associated with the detection device, the character recognition device and / or the adjustment device. The control device specifies the rules and / or parameters for the detection and / or reading in and / or the analysis for the characters of the security feature. The control device with its predetermining rules and parameters thus represents another dynamic security feature in addition to any structural features that overlap as external structural features (for example, a crackle) individual characters of the string of the security feature of the security element. The actual static code is dynamized and not predictably changed by the physical changes in the layer above, as well as by the change in the OCR read-in and analysis conditions.

In a preferred variant, the controller sets the detection conditions for detecting the appearance of the characters. If the detection of the characters takes place via an optical detection device, the parameters for the optical detection, for example by a camera or a lens system, are determined. These may be, for example, camera-specific parameters such as depth of focus, focus, crop enlargement, section reduction, sharpness filter or exposure parameters, including manipulative exposures such as overexposure or underexposure, flash exposures, applications of filters or exposures to particular color, power or wavelength of light, or limitation of used image resolution, as well as other reader-relevant parameters.

In addition or as an alternative to establishing the detection conditions for detecting the appearance of the characters, the read-in conditions for character recognition by the control device can also be predetermined. These include, for example, specifications that only certain characters of the security feature are detected. These include, for example, characters of a predefined size, a certain type or presentation, a specific color or a specific position. In the case of acoustic signs, for example, the read-in conditions can be set so that only certain tones, keys, tone sequences, frequencies, pitches, tone lengths, volumes or pauses between the tones are read in. In addition to the detection conditions and / or read-in conditions, additionally or alternatively, the analysis parameters for the character analysis of the characters of the security feature for an authentication request be determined. These include, for example, the algorithm or a mapping rule with which a character detected via the detection device is interpreted or converted after being read in. For example, it may be provided that certain characters of the security feature are converted into other characters or even a tone sequence or vice versa. These acquisition and association rules can be dynamically, randomly, sporadically or continuously changed between the authentication device and the device to be authenticated, with the last exchanged setting in each case being valid.

Just by an unpredictable selection of certain characters within the string of the security feature can increase the security against counterfeiting and avoid unauthorized authentication. Also can be generated in this way with a single of a variety of characters existing security feature a variety of authentication options with completely different security features, making no inference to the whole security feature is possible. In another variant, certain characters of the security feature may also be translated or converted to other characters, especially if they are represented by dynamic factors, e.g. the battery level of a display device or the authentication device, changed in sounds by dynamic factors, such as. the sound box of the output device, or extraneous sounds, or are physically altered when a non-digital security element is read by cracks in the paint or overlying layer. The character analysis therefore generally involves the conversion of the characters read by the character recognition device into a rule or an algorithm, the following converted machine-readable characters, this rule being able to be additionally influenced by further, unpredictable factors. Thus, in one variant of the invention, OCR recognition and subsequent conversion into computer-readable characters is carried out from an optically obtained image which contains OCR-readable characters, wherein one or more characters of the security element are manipulated in such a way that an OCR recognition or OCR analysis of certain characters is no longer possible or the hard or unreadable characters are interpreted differently or must be assigned differently according to a rule.

In a preferred embodiment, to increase the security, the security element has at least one structural feature which influences the appearance of the security feature and thus the detectability of one or more characters of the security feature of a character recognition. Preferably, this is an optically detectable, consisting of signs security feature in which at least Some characters can be recognized via a character recognition device and converted into computer-readable characters. In a variant, it is provided that the structural feature superimposes, changes, modifies, deletes or amplifies one or more characters of the security feature so that the character recognition device can no longer use the modified character for character analysis and character conversion. In such a case, the structural change of one or more characters within the security feature would turn a previously readable character into an unreadable or readable character. The structural feature is preferably a surface modification, for example a crackle pattern in the form of cracks, flakes, cracks or recesses. These surface modifications change one or more characters of the security feature in such a way that they are no longer readable or interpretable for the character recognition device. In variants of this embodiment, structural features may also be 3D surface changes such as surface elevations or surface depressions. As a result, the relative position and / or position and / or arrangement of the characters changed in comparison to the original state. Relative displacements of characters on the security element or color changes of the characters are also possible in order to influence the comprehensibility and / or the reading in and / or the later analysis in the character recognition and / or character interpretation.

According to a preferred embodiment, the surface of the security element according to the invention is coated with a material which influences the appearance of the security feature or individual characters thereof. In a preferred variant, the material is a lacquer which covers the security element. According to another variant, the individual characters of the security feature can also be printed or printed with an ink or color that is invisible in daylight.

Instead of a layer, the structural feature can also build up the entire three-dimensional security element, for example by means of 2D printing, 3D printing, spraying, molding, casting, pressing, assembly of individual constituents or by growth. In a preferred variant, a three-dimensional security element produced in this way can additionally change due to biological, chemical, physical or mechanical influences. In an exemplary variant, such a three-dimensional security element in / or on its surface additionally comprises a numerical code, which is dynamically changed and readable on the basis of the material properties.

In addition, the background of the security element in the detection and / or detection of the security feature may play a role, for example by the Coloring or by a physical property of the background certain characters of the security feature are no longer readable or previously unreadable characters are visible through the treatment. This can be done, for example, by the fact that the characters are overshadowed or are no longer readable by a cloudiness. Thus, a feature can not only delete or change certain characters within the security feature, so that it is no longer recognizable for later character analysis, but it is also the reverse case that a previously unreadable character by a structure modification in a readable by the character recognition device Character is convertible.

In a preferred variant, it is provided that a structural feature of the security element itself changes dynamically in a random manner and thus leads to a changed appearance of the security element between two query times. In this case, the dynamic change of the structural feature of the security element is due to a material property of the structural feature, an inherent property of the security element and / or by an influence on an external physical and / or chemical and / or biological factor. Due to the dynamic change of the structural feature, previously recognizable characters are converted into unrecognizable characters between two sampling times or vice versa.

Another security-enhancing feature is that the read-in conditions for detecting the appearance of the security feature and / or character recognition and / or character analysis by the controller may be altered in a way that a potential counterfeiter can not anticipate this change. Thus, certain setpoint values or parameters can be specified which have an influence on the detection device. Also, certain characters within the security feature can be changed such that they are no longer readable for later character recognition. For example, in the security query, exposure to complementary colors may occur so that certain characters (all or individual characters) within the security feature are augmented or attenuated for later character recognition. This means that previously poorly visible or invisible (not recognizable) characters for the character recognition become visible (recognizable) and previously visible (recognizable) characters after application of the corresponding complementary color for later character recognition are no longer readable, interpretable or recognizable. This presupposes that the corresponding characters are shown with complementary colors and / or the exposure takes place with a color complementary to the character color. A combination with a rule would be conceivable. For example, the rule could be that Violet characters can not be read. If the security feature is now illuminated with a blue light, all the red characters turn violet and the former violet characters turn almost blue, depending on how intense the irradiation and how large the tolerance range is.

The at least one control device of the authentication device according to the invention comprises components which influence the detection device, the character recognition device and / or the character analysis by software or hardware. This can be done by transmitting the specific parameters required for the reading / recognition to the respective device. The selection of the parameters may be predetermined by the authentication device or done randomly. A counterfeiter would thus not only have to fake the false identity by presenting a stolen and forged original security element, but also take into account the appropriate rules for reading out or character recognition, for example when reading with a smartphone (mobile phone) and a subsequent character analysis.

Depending on the manner in which the character is changed, a recognition threshold can be defined in the subsequent character analysis in order to define or interpret a recognizable and / or difficult to recognize and / or unrecognizable character. Furthermore, it can be provided that only certain colors of a character of the security feature are used for the later character analysis, which can be done for example by a color determination of the characters. It can also be specified that only characters of a specific size, position or arrangement are used for a character analysis and thus for an authentication. This can be done for example via a position determination of the characters, preferably by means of optics. Furthermore, a sharpness or blurring area can be defined during the detection of the security feature, so that certain characters are no longer legible. The same applies to a depth of field of a three-dimensional security element. A surface may be constructed of multiple planes or layers, with the sharp area focused on a particular plane. Only characters of this level can be used for later character recognition and thus character analysis. Furthermore, special filters can be used which cause certain characters of the security feature to become readable and / or unreadable. By applying the filter, as with the other method measures, not only the appearance of the security feature is changed, but also the resulting security-relevant information. In the case of optical character recognition, this can be done with all optically possible means, for example also by irradiation with a specific wavelength or by overexposure or underexposure.

Thus, the read-in conditions predetermined by the control device can be predetermined both on the physical level during reading itself as well as during later character recognition and / or character analysis. The times for performing such dynamic changes may be predetermined or arbitrary. Thus, the user who wants to undergo an authentication, for example, read his security element via a smartphone camera and transmit it to the authentication server. Macrolenses may preferably be used for this purpose as an attachment to mobile lenses for better recognition. The authentication server deposits an image of the security element, in particular of the security features attached thereto, and evaluates the characters contained in the security features via a character recognition method (for example, an OCR character recognition). The information stored in this way can not be copied by a potential counterfeiter without his possessing the security element.

But even if the counterfeiter would come into the possession of the security element, the control device according to the invention can provide that a query for an authentication or identification must be made only under certain conditions, which only the user knows. For example, it can be provided that a specific cutout or angle of the security element is required in the optical detection by the detection device for a successful authentication. Furthermore, a rule could provide that the security element is mechanically processed before detection by the detection device, for example by folding over or folding, so that the surface structure of the security element changes such that signs of the security feature are no longer recognizable for later character interpretation and the security feature absolutely necessary to be able to uncover any counterfeits. A preferred variant provides that the security element consists of a layer or is coated with a layer which either alone forms a crackle pattern or, if the surface of the security element is mechanically affected, for example by folding or buckling. Such a layer, which changes the appearance of the signs of the security feature as a structural feature, can consist for example of a lacquer, a dye, a plastic, an artificial polymer or a biopolymer.

Physical changes of the surface or of the structural features applied therein or on it can also be carried out by the user before authentication or updating of security-relevant information. So can For example, the security element be coated with a material that forms random cracks or breakouts and thus changed characters of a security feature so that they are no longer or otherwise readable or interpretable for subsequent optical character recognition. In this case, it is preferably provided that the characters which are not readable via the detection device or which can not be interpreted via the character recognition device are translated into empty spaces or any other characters. In addition, it may happen that changed characters are still readable, but compared to previously recognized as other characters. This generates security-relevant character information that is unpredictable to a potential attacker.

In summary, there may be three states in optical character recognition when an external influence or feature partially alters characters of a security feature. First, the characters can remain unchanged, d. H. if no influence by the structural feature (for example, a crackle) has taken place. Furthermore, the characters can also be changed, so that these characters are recognized to another conversion result in the character analysis and thus generate an altered code that was unpredictable. After all, the characters can also be influenced in such a way that they are no longer readable.

Based on the idea according to the invention, a security element which comprises at least one security feature can thus be visually changed by a structural feature (for example a crackle caused by a lacquer), such that it would be very difficult to make such an individual security pattern even with an optical comparison imitate. According to the invention, however, a character recognition, preferably an optical OCR recognition, is carried out, in which individual characters of the security feature, for example within a complex code, are no longer legible. Such characters are either not recognized by an OCR analysis and thus are not converted into computer readable characters, or they are recognized as a wrong character and accordingly ignored, or converted to another computer readable character. A copy can only outwit the result of an optical OCR analysis or an acoustic signal analysis if it is similar to the original in all or according to a rule predetermined aspects, which is possible only with disproportionate effort, if at all.

Furthermore, it can be provided that certain recognizable characters are also translated into other information, for example in any other characters or sequences of tones. The generation of specific acoustic tone sequences leads to a Users can authenticate themselves via a characteristic tone sequence in an authentication device. Due to the dynamic change and / or a changing valid rule of the generated sound information, it is not possible for a copycat to falsify it.

A possible authentication variant runs in such a way that a security element equipped with at least one security feature is first read by a user's detection device and subsequently the characters of the security feature are converted into computer-readable characters, readable information, for example a code, or a tone sequence after their transmission. Preferably, the transmission takes place to a central database. If, for example, the user has to authenticate with a service provider, he can use his detection device to capture the same security element as the user and transmit it to the central database. Based on this, the matching device according to the invention can make the comparison according to a predetermined rule. In an alternative variant, the central database on the second detection device can tell which rules are valid for the read-out process and transmit to the detection device only the valid string of characters obtained in accordance with the rule or the corresponding appearance of the security feature. The information generated therefrom can alternatively also be sent back to the user by the authentication device. The latter must in turn transmit the information obtained to an authentication device. Only if the transmitted security-relevant information (eg a sequence of tones or a code) matches, is it ensured that the person to be authenticated is the correct person. An authentication is then positive if the transmitted security-relevant information is identical to the information transmitted or entered by the user.

In a preferred embodiment, an acoustic authentication additionally or alternatively takes place, for example, in that instead of or in combination with an optical detection, an acoustic detection is performed with a microphone. In this case, the safety-relevant information represents a signal mixture or a tone sequence, which are detected by the detection device and evaluated by a character recognition device. In accordance with the spirit of the present invention, the read-in conditions of the control device are chosen so that only certain signals or sound information are read out of the composite signal or the tone sequence. This can be done, for example, by selecting a specific frequency spectrum or specific amplitudes. By specifying the read-in conditions can thus be specific Generate safety-relevant acoustic safety information. The security-relevant information thus converted is stored and made available for a later authentication request. This process can be repeated in the background, even without an active authentication request from the user.

It may further be provided that complementary tones are generated via a signal generator, which result in certain frequencies and thus signal tones within the signal mixture being amplified or extinguished. This also changes the acoustic signature of the relevant safety information. Further, certain tone frequencies, sounds or tones may be amplified or subtracted to alter the acoustic signature. This can be done once at the time of reading or recording of the acoustic information by the detection device, in the later character analysis or at regular intervals in between, for example in the background between a mobile read-out device and an authentication server.

In a further embodiment it is provided that the authentication device further comprises a display device on which the current or modified appearance of the security element can be displayed after being transmitted by the authentication device for an authentication. This may be, for example, a smartphone (mobile phone), on the display of which the locally generated or transmitted by the authentication device security element or security features isolated therefrom are displayed.

In a first variant it can be provided that, for example, via the camera of a smartphone, a security element with security features required for the authentication is read in (for example, a ticket). The captured via the detection device image of the security element can be displayed on the display of the smartphone (= display device). The captured image of the security element is then transmitted to an authentication device. For a later authentication, it is no longer absolutely necessary that an existing network connection (eg online connection) exists between the authentication device and the authenticating (first) smartphone. Rather, a further authentication even without network connection ("Offline") is possible. This takes place in that a detection device (for example a reader at a supermarket checkout or the camera of a second smartphone) optically detects the security element displayed on the display of the first smartphone or the security features imaged thereon and records the thus detected appearance with the security device stored in the authentication device Appearance of the security feature (= reference feature) compares. According to the invention, it is now provided in that at least one control device prescribes the corresponding rules for capturing, reading in and / or analyzing the characters (eg by means of a software-based program instruction). Thus, a control device can pretend to the reader that, for example, only the characters represented in a specific color are to be read within a code. The matching device of the authentication device then adopts a matching of the security feature detected by the reading device with the stored reference feature. The display device itself can also include a control device which, for example, specifies which parts of the security feature are to be displayed to the reading device. It can also be specified for an authentication that the rules of the control device of the display device with the rules of the control device of the reader match. In this way it can be specified via the at least one control device, which should be displayed by the display device and ultimately used for a character analysis and character conversion. The matching device can also communicate the last strings valid for the respective control device and its users, so that authentication is even possible if both systems are "offline", ie neither the user nor the reader has a connection to the respective security server. The prerequisite for this is that the security feature has not already changed further since the last notification of the user-side change with respect to the relevant characters, or an appropriate fault tolerance is accepted.

In a further embodiment variant, provision may also be made for certain characters within the character string of the security feature to be converted into acoustic tones, which in turn are transmitted back to the first smartphone, in order to provide acoustic authentication via the microphone of a second smartphone (or another detection device). perform. The recorded by the second smartphone acoustic signals are then transmitted to the authentication device for a comparison. If the match is the same, the person or his smartphone is positively authenticated.

The device according to the invention and the method can be used in particular for authentication or determination of the identity of a person, a device, a thing, a service, an application and / or a computer program. Furthermore, the use of information associated therewith is also possible for documentation in a storage system, acknowledgment system or archiving system.

The invention will be explained in more detail in the following embodiments.

In the in Fig. 1 illustrated embodiment, a security element 1 with a surface 3 is shown. On or in the surface 3 there is at least one security feature 2 consisting of characters. In the illustrated variant, the characters are, for example, a code consisting of letters and numbers. Furthermore, structural features 4 are provided to recognize in the variant shown as a crackle pattern with cracks. The structural features 4 (ie the cracks) mean that individual characters of the security feature 2 (in the illustrated variant, the numbers 2 and 5) are no longer uniquely readable by the detection device or by the character recognition device 6 is no longer or otherwise interpretable. This results in a security element which has been changed via the structural features 4 and whose security features 2 have been modified in such a way that they lead to an altered result in a later character recognition of the characters. The appearance of the security element 1 and / or the sign of the security feature 2 is detected by a camera as an optical detection device 5 and evaluated by a character recognition device 6. The character recognition device 6 performs optical character recognition (OCR recognition). This is followed by a character analysis in which the recognizable characters of the appearance of the security feature 2 are converted or interpreted into readable characters. In the illustrated variant, the characters A, N, X, 3, 4 are readable. The numbers 2 and 5 are no longer uniquely readable due to the superimposed cracks of the structural feature 4 and are therefore not converted or correctly interpreted by the character recognition device 6, depending on the recognition settings. This creates information from recognizable and not clearly recognizable characters. If necessary, the unrecognizable or difficult to recognize characters can be converted into alternative signs or information, which further increases security. Here you can create appropriate conversion rules. For example, it would also be possible to replace numbers or letters completely with other characters in OCR analysis.

By means of an adjustment device 7, the security feature 2 detected by the detection device 5 is adjusted by comparing the characters of the security feature 2 converted by the character recognition device 6 with a reference feature stored in a memory.

According to the invention it is now provided that not only a simple optical character recognition and conversion of recognizable characters takes place. The authentication device further comprises at least one control device 8, in which the detection conditions for detecting the appearance of the characters and / or the read-in conditions for the Character recognition and / or the analysis parameters for character analysis of the characters of the security feature 2 are set for an authentication request. For example, the control device 8 can specify that only the increasingly emphasized characters A and X in the character string of the security feature 2 are used for the later character recognition by the character recognition device 6. This can be done for example by a specific coloration using a filter. Alternatively, the security element 1 can be irradiated with complementary colors, so that, for example, the letters A and X are amplified, while the other characters of the security feature 2 are extinguished or at least attenuated by application of the complementary color. The control device 8 can also specify that only certain characters of the string of the security feature 2 are used for an authentication, for example, only certain character positions or sections of the security element. 1

However, the control device 8 can not only specify the read-in conditions for the detection device 5, but also the analysis parameters for a later character analysis. These can provide, for example, that only certain characters of the string of the security element 2 are used for a conversion and thus become relevant for later authentication.

Signs, which are composed for example of several colors, depending on the design, the application of complementary light or type of readout rule can give different results: For example, if the number "8" on one half of blue and the other half of red color, it would When using the readout rule, that only the color "blue" applies, interpreted as number "3". This is also the case if the character were read out under blue light on a screen, since in this case the red part changes to white. When reading a printed image under blue light, this red part would change to black, while the blue part would remain blue. A read-out rule, which should only be read out blue, would thus deliver the number "3" in each case as a result.

In Fig. 2 a further embodiment of the method or the authentication device according to the invention is shown. It is provided that first a character recognition of the characters of the security feature 2 of the security element 1 takes place, wherein all or part of the characters are converted by the character recognition device 6 after detection by the detection device 5 in an acoustic tone sequence. This creates a characteristic of the imprinted on the security element 1 characters dependent acoustic signature, which can be used for authentication via the matching device 7. Thus, it can be provided in this variant that the generated tone sequence is transmitted to the user for authentication, so that he must play the transmitted tone sequence for authentication, so that the tone sequence on a separate additional detection device 5, in this case a microphone, read again and compared with the stored reference tone sequence via the matching device 7 (acoustic signature). If both tone sequences agree according to the specifications, the authentication is positive.

It is also the reverse case possible, namely that the authentication device reads the security element of the user and generates an individual sound from parts of the detected characters, which is received via the microphone of the user and forwarded digitally to a central authentication server, which in turn from the authentication device this Sound has also received and deposited and checks its acoustic match.

Increasing the security can now be provided in this variant, that after the transmission of the correct tone sequence in a further course, the acoustic information is changed before detection by the detection device 5, for example by playing other signals, such as ambient noise, which change the tone sequence or the clay mixture. As a result, a new acoustic signature is generated, which in turn can be stored as new security information in the authentication device. This new acoustic signature then serves as a starting point for a later identification of the user.

In Fig. 3 an exemplary security element 1 is shown, in which a plurality of security features 2 can be recognized in the form of codes. The security features 2 are presented differently in that the characters consist of different colors, different sizes, fonts or character spacing. The surface 3 of the security element 1 is coated with a lacquer in which a crackle or cracks form as a structural feature 4. The cracks pass through the security element 1 and thereby overlap individual characters of the security features 2.

This security element 1 is detected in the course of an authentication query by a detection device (not shown) and subjected to optical character recognition (OCR analysis). The recognizable characters are converted into corresponding computer-readable characters. Signs that are not clearly recognizable or from one Structural feature 4 are assigned a different assignment, such as a space or any other character, whereby an individual code is generated that is unpredictable and different from the read code. Via one or more control devices (not shown) it is now possible to determine how the read-in or the OCR analysis should take place. Thus, when detecting the security element 1 it can be determined that only italics of the security feature 2 are to be read. Another rule may provide that only characters with a specific color scheme are detected. Furthermore, rules for the OCR conversion can also be specified, for example threshold values for a clear / fuzzy recognition of characters.

Such a security element 1 is impossible to copy for a counterfeiter with manageable effort. Also, this does not know the individual rules for the capture or the OCR conversion, so that he can not predict the security information deposited as a reference feature authentication server. For authentication, the same rules are used, which were previously used when first reading the security element 1. If this is the original, the authentication is positive. Should the comparison reveal too many differences in character recognition or character interpretation, the authentication would fail and an alarm would be triggered.

In Fig. 4 a further variant of the authentication device according to the invention is shown. The authentication device can consist of several, spatially separated components that are connected to each other, for example via a network (for example, the Internet). Starting point is a physical security element 1 (eg ticket), on the surface 3 security features 2 are formed in the form of a code. Individual characters of the security feature 2 are superimposed by cracks as a structural feature 4 and are therefore no longer properly evaluated for later OCR analysis. Via a mobile phone 1, an optical detection of the security element 1 by means of built-in HandyKamera, which serves as a detection device 5. After the detection of the security element 1, the security element 1 is displayed on the display device of the mobile phone 1 and sent to a server as a picture or already read security feature in code form, which can deposit the image of the security element 1 on the one hand, but at the same time also a character recognition or can perform a comparison with a reference feature. For this reason, the server comprises a character recognition device 6 and a matching device 7. The mobile phone 1 and / or 2 can take over the functions of the server, especially if it is a local application on the phone. In this case, the server would only be updated.

The authentication takes place in the illustrated embodiment via a further reader (mobile phone 2). With this readout device as a further detection device 5, the reading of the security device 1 shown in the display device of the mobile phone 1 takes place. A control device 8 specifies that the readout should take place, for example, with red light, so that only the numbers 5 and 3 of the security feature 2 in the security element 1 are recognizable. The read-out rule can, depending on the variant, be predefined either by the server itself or by the mobile phone 2, provided that this comprises a separate control device 8 which specifies the read-out rule for reading in the security element 1. The mobile phone 1, the server and / or the mobile phone 2 may include its own control device 8, which depends on the particular application. Thus, the rules and parameters for the reading in and the subsequent evaluation of the security feature for the individual components of the authentication device can be defined individually.

Even without conversion of the detected by the detection device 5 characters of the display device of the mobile phone 1 is sufficient to guarantee a high level of security. Increasing the security can now be added that the detected with the reader of the mobile phone 2 characters of the security feature 2 is additionally subjected to OCR recognition to convert readable characters into computer-readable characters. In this case, individual characters are no longer properly interpretable due to the superimposed structural features 4.

A particular feature of the embodiment variant of the authentication device according to the invention shown here is that the display device of the mobile phone 1 does not have to be connected to the server in the case of an authentication query, ie. H. the authentication can also be carried out when the mobile 1 is "offline". By means of the matching device 7 of the server, a comparison of the security feature 2 detected by the read-out device of the mobile phone 2 with the stored reference mark takes place. A double authentication can be performed if the mobile 1 has an intact network connection, i. "online" is, because then the phone 2 can check the detected security feature 2 by a back query with the phone 1.

In a further preferred variant (not shown), it is provided that a mobile communication device (eg the mobile phone 1 or mobile phone 2) comprises the character recognition device 6 and / or the matching device 7 and / or regulating device 8. Then you would not need a separate server. The phone would take over its functions.

Fig. 5 shows an alternative variant of the authentication device according to the invention (= authentication device), in which all components of the authentication device have a connection within a network (= all facilities online). Here, too, a physical security element 1 is initially detected by means of a mobile phone camera via a mobile phone 1 and transmitted to the authentication server, which can if necessary carry out a character recognition via a character recognition device 6 and optionally a character matching with a stored reference mark via a matching device 7.

In addition, a local database is provided, which includes a memory with read-in codes for an "offline" operation. There is a regular update according to a predetermined rule (e.g., a definition) between the authentication server and the local database. This database can also be located directly on the mobile phone 2. The reading should be done in accordance with readout rule with red light. Characters which are shown in complementary colors to the red light are not representable in the OCR analysis and are neutralized.

For authentication, the security element 1 is first displayed on the display (display device) of the mobile phone. If the mobile phone 1 is provided with a control device 8, the display of the security element 1 can also be done according to predetermined conditions or rules. In any case, the displayed security feature of the mobile phone 1 is detected by the reader of the mobile phone 2. The readout can also take place in accordance with predefined rules by means of a control device 8, so that in the illustrated variant, the digits "5" and "3" of the character string of the security feature 2 are visible as a result. This is followed by a check ("check") with the authentication server to determine whether the detected by the reader of the mobile phone security 2 2 coincides with the stored security feature. The stored reference data can either be stored at the authentication server itself or at an internal or external local database. The control device 8 can be assigned either to the server, the mobile phone 1 or mobile phone 2 or more of these devices.

In an alternative variant, the reader of the mobile phone 2 can also read the physical security element 1 itself.

In Fig. 6 a variant of the method is shown in which individual or all devices of the authentication device according to the invention have no network connections (= all devices offline). In this case, the reader of the mobile 2 communicates directly with the local database and performs a check of the received from the display device of the cell phone 1 Security feature 2 directly with the local database. In this variant, therefore, no character recognition or matching with the authentication server would take place.

In Fig. 7 the situation is illustrated that only the mobile 1 is offline while the mobile 2 is online. In this case, the security feature 2 would be checked via the authentication server. The Iokale database would not be required in this process variant for a review of the read security feature 2.

In Fig. 8 the situation is shown where the mobile 1 is online while the mobile 2 is offline. In this case, there would be a communication connection between the authentication server and the mobile phone 1. The reader of the mobile phone 2 can still read the physical security element 1 directly or security feature 2 shown on the display device of the mobile phone 1 when the mobile phone 1 is online. Otherwise, again a check of the read security feature 2 via a local database.

Claims (15)

Authentication device comprising a security element (1) having at least one security feature (2) consisting of characters, which can be detected by a character recognition, at least one detection device (5) for detecting the appearance of the signs of the security feature (2), at least one character recognition device (6) for performing a character recognition and / or a character analysis in which the recognizable characters of the appearance of the security feature (2) are converted into machine-readable characters, information or audible tones, - At least one adjusting device (7) for adjusting the detected by the detection device (5) security feature (2) and / or of the character recognition device (6) converted characters, information or sound sequences with a stored in a memory reference feature and / or one or more Reference character and / or one or more reference tones, characterized in that the authentication device comprises at least one control device (8), wherein the detection conditions for detecting the appearance of the characters and / or the reading conditions for character recognition and / or the analysis parameters for the character analysis of Character of the security feature (2) are defined for an authentication request and that the security element (1) at least one structural feature (4), which the appearance of the security feature (2) and thus the detectability of one or more characters of the security feature (2) ei ner character recognition and / or character interpretation influenced. Authentication device according to claim 1, characterized in that the structural feature (4) is a material layer and / or a property of the security element (1) and / or the security feature (2) or parts thereof, which the the appearance of the security feature (2) and thus the detectability of one or more characters of the security feature (2) in a character recognition and / or character interpretation influenced. Authentication device according to claim 2, characterized in that the structural feature (4) of the security element (1) is selected from the group consisting of a crackle pattern in the form of cracks, flakes, cracks or recesses; 3D surface changes such as surface elevations or surface depressions, relative displacements of characters on the security element (1), color or mechanical changes of the characters and / or the background of the security element (2) such as overshadowing or clouding, wherein the structural feature (4) at least partially the security feature ( 2) overlaid, removed or altered in any other way. Authentication device according to one of claims 2 to 3, characterized in that a structural feature (4) of the security element (1) itself changes dynamically in a random manner and thus leads to a changed appearance of the security element (1) between two polling times, wherein the dynamic change of the structural feature (4) of the security element (1) is conditioned by a material property of the structural feature (4), an inherent property of the security element (1) and / or by an influence on an external physical and / or chemical and / or biological factor. Authentication device according to one of the preceding claims, characterized in that the read-in conditions for detecting the appearance of the security feature (2) and / or the character recognition and / or the character analysis, a detection threshold for a recognizable and / or unrecognizable character, an intensity measurement of the brightness and / or the color values of the characters, a color determination of the characters, a sizing of the characters, a position determination of the characters, a focus or blur area, the application of a filter or a mask, over or under exposure, exposure to complementary colors or any other Feature of characters include. Authentication device according to one of the preceding claims, characterized in that the security element (1) comprises a biopolymer, which is either layered, or the security element (1) or parts thereof, or at the sign of the security feature (2) formed from a biopolymer are, wherein the biopolymer due to biological, chemical, physical or mechanical influences additionally changed. Authentication device according to one of the preceding claims, characterized in that there is further provided a display device on which the current or modified appearance of the security element (1) can be displayed after being transmitted by or to the matching device (7) for authentication. Authentication device according to one of the preceding claims, characterized in that the control device (8) is part of the detection device (5) and / or the character recognition device (6) and / or the adjustment device (7). A method for authenticating or determining the identity of a person, a device, a thing, a service, an application and / or a computer program, in which an authentication via a security element (1) with at least one security feature (2) and an authentication device takes place, comprising the steps: Providing a security element (1) with at least one security feature (2) consisting of characters, which can be detected by a character recognition, Detecting the appearance of the characters of the security feature (2) via a detection device, Performing a character recognition and / or a character analysis in which the recognizable characters of the appearance of the security feature (2) are converted into machine-readable characters, Matching the security feature (2) detected by the detection device (5) and / or the characters converted by the character recognition device (6) with a reference feature stored in a memory and / or one or more reference symbols and / or one or more reference tones, characterized in that the detection conditions for detecting the appearance of the characters and / or the read-in conditions for the character recognition and / or the analysis parameters for the character analysis of the characters of the security feature (2) are defined and that the security element (1) with at least one structural feature (4 ), which influences the appearance of the security feature (2) and thus the detectability of one or more characters of the security feature (2) in a character recognition and / or character interpretation. A method according to claim 9, characterized in that at least one read-in condition between two query times of a security query is changed, whereby a previously recognizable at the first query time character in an unrecognizable character, or a previously unrecognizable character in a recognizable character, or a recognizable character in another recognizable sign is converted. Method according to one of the preceding claims, characterized in that only certain characters within the security feature (2) are used for the authentication, wherein the selection via a control device (8) takes place, which the detection conditions for detecting the appearance of the characters and / or the Read-in conditions for the character recognition and / or the analysis parameters for the character analysis of the characters of the security feature (2). Method according to one of the preceding claims, characterized in that at least one read-in condition provides that the detection of the appearance of the characters of the security feature (2) is at least partially influenced so that certain characters for later character recognition and / or character analysis are unreadable, or unreadable characters become readable for later character recognition and / or character analysis, and / or readable characters are interpreted differently in later character recognition. Method according to one of the preceding claims, characterized in that the security element (1) is displayed on a display device, wherein a read-in condition provides that the reproduction of the appearance of the characters of the security feature in the display device is at least partially influenced so that certain characters for the later character recognition and / or character analysis are unreadable, or unreadable characters for later character recognition and / or character analysis readable, and / or readable characters are interpreted differently in a later character recognition. Method according to one of the preceding claims, characterized in that the reading of the security element (1) or parts thereof is carried out under a lighting with complementary colors, so that certain characters for later character recognition and / or character analysis are unreadable, or unreadable characters for a later character recognition and / or character analysis are readable, and / or readable characters are interpreted differently in a later character recognition. Method according to one of the preceding claims, characterized in that an optical character recognition (OCR recognition) with an optical character analysis (OCR recognition) and / or an acoustic character recognition is performed with an acoustic character analysis, wherein changed, unreadable characters in readable characters are reinterpreted and / or altered readable characters are reinterpreted into other readable characters.

Images