JP2000040136A - Personal terminal equipment - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a personal terminal equipment improved in security and capable of being reliably used by a user in an electronic transaction requiring the input of an individual secret information (e.g. password, ID, electronic money information and electronic key information). SOLUTION: This personal terminal equipment 20 for transferring information to/from a sales terminal equipment in a sales system is provided with a transmitter-receiver 21, a microcomputer 22, an operation input part 23, a display 24, an authentication state memory 25, a secret information memory 26, a clear signal input part 27 and a battery 28, etc. The authentication information such as the password is stored in the secret information memory 26 and the authentication state authenticated by the authentication information is stored in the authentication state memory 25. The personal terminal equipment 20 is formed into the structure of a watch shape, and in the case that an owner (user) detaches it from the arm, the authentication state is cleared. The security of keeping the secrecy of the authentication information is excellent and the security at the time of losing and a burglary is excellent.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a personal terminal of a personal type and a portable type, and more particularly to a personal terminal suitable for inputting authentication information for authenticating an individual at the time of electronic commerce.

[0002]

2. Description of the Related Art In recent years, cash cards, credit cards, and the like have been widely applied, and recently, electronic commerce via the Internet has become widespread. For example,
In a cash dispenser, when a deposit is made with a cash card, a method of authenticating an individual with a cash card and a personal identification number as authentication information for authenticating the individual is adopted. Thus, the personal property "What I h
A technology for authenticating an individual by a combination of "ave" (for example, a cash card) and stored information "What I know" (for example, a personal identification number) of the individual is the basis of current security.

By the way, in the era when a highly versatile personal computer (personal computer) is recently connected to a network, security for system login is a source of service security. For this reason, personally owned card-type information terminals that generate a login password have been put to practical use.

In this card type information terminal, when a password is input from a key of the card, a one-time password derived from a built-in clock is generated and displayed on a display, and the user inputs the password from a personal computer keyboard to a browser or other computer. Fill in the password input box. Then, the server authenticates the one-time password. Because it is a one-time password, it is safe even if the password is stolen.

Here, when inputting the "password",
It is assumed that the program system that controls the keyboard is reliable. As can be clearly shown, the operation of Ctrl + Alt + Del for logon operation of Windows NT always takes care to display the "login dialog" where OS is managed by hardware interrupt. Cracks caused by so-called "Trojan horse" programs that steal passwords after they have become "password input screens" can be said to be the most formidable cracks in the world of digital networks.

In this sense, in the above-described cash dispenser system, since the counterpart is a cash dispenser on which a billboard of an actual bank stands, the “cash card” and the “password” are completely trusted. I'm presenting.

[0007]

However, a solid and highly reliable "cash vending machine" such as a cash dispenser is naturally required to have a high trust level and a high degree of recognition. However, there is no doubt that small businesses need vending machines for goods and services that require password authentication to sell small quantities of goods at lower prices.

[0008] In addition, in cooperation with the use history of the user,
There is a demand for a system that can provide advanced and various services in association with personal information of users. However, under such circumstances, if the means for inputting the "password" to authenticate the user was a dirty keyboard of an unknown vending machine, the user hesitated to use it. It must be done.

SUMMARY OF THE INVENTION An object of the present invention is to provide a vending machine for goods and services on the premise of authentication using a password as a reliable device capable of removing the user's anxiety about theft of the password and inputting the password with security. It is an object of the present invention to provide a personal terminal capable of operating in a state where an input key, a display means for displaying a password and others, and a program for controlling the coordination thereof are separated from a program in a vending machine.

In addition, by automatically selecting one of a plurality of operation variations of the personal terminal based on information from the vending machine, a series of operations such as selecting a product, selecting various options and numbers, and the like. It is an object of the present invention to provide a user interface that allows a reliable display and a reliable key input function performed by a personal terminal to be flexibly applied in the purchase operation of the personal terminal.

Although it is impossible to realize the input / output function to the service unit side requiring the multimedia function with limited resources of the personal terminal, it is difficult for the user to pay attention to the display, It is also an object of the present invention to enable cooperation in which the personal terminal performs the function where information is to be input.

[0012]

The personal terminal of claim 1 is a personally owned portable personal terminal that inputs and outputs information to and from a sales terminal of a sales system that sells goods and services. An input unit for inputting information including authentication information for authenticating an owner of the personal terminal; a display unit capable of displaying various information; and an information storage unit for storing information including the authentication information. An authentication state storage unit that stores an authentication state authenticated via authentication information input from the input unit, an information exchange unit that exchanges information with the sales terminal device,
A microcomputer storing a control program for controlling the various means.

The above-mentioned sales system refers to a system for selling various things such as goods and services, and the sales include reservations for purchasing goods and services, leasing and rental of goods, and cash withdrawal. Shall be included.
The authentication information refers to information for identifying an individual owner of the personal terminal, such as a password. Also, the authentication state means a state in which the individual owner of the personal terminal has been authenticated through the authentication information.

When the personal terminal accesses the sales terminal on the sales system side and purchases goods or services, information is exchanged through the information exchange means of the personal terminal, and the number and the quantity to be purchased are determined. Information to be specified is exchanged, and electronic payment (electronic payment) is performed through user authentication.

At this time, information including authentication information for authenticating the owner of the personal terminal is input to the personal terminal by the input means. Various information is displayed on the display means of the personal terminal. Information including the input authentication information is stored and held in the information storage means. The authentication state storage means stores the authentication state authenticated through the input authentication information, but only when the authentication state is stored,
If the owner of the personal terminal is authenticated and the authentication status is cleared, the owner is not authenticated.

The information exchange means exchanges information with the sales terminal device (for example, information for specifying a product or service to be purchased, information on quantity, information indicating an authentication state, various information for payment, confirmation information, etc.). Etc). The microcomputer stores a control program for controlling the various means, and the microcomputer controls the various means. The information exchange means preferably has a configuration for exchanging information by wireless communication using infrared rays, for example.

As described above, the information including the authentication information is input by the input means, and the user can be authenticated as the proper owner based on the information.
Also, various information can be displayed through the display means,
Various information including authentication information can be stored in the information storage means, and information can be exchanged with the sales terminal device by the information exchange means. In particular, since the authentication state storage means is provided, and the authentication state authenticated through the authentication information input from the input means is stored, the owner of the personal terminal can be reliably authenticated, and the authentication state storage can be performed. The authentication status in the means can be easily cleared as required. However, it is preferable that the authentication status is stored in the authentication status storage means only when the authorized owner uses the personal terminal, and that the authentication status is cleared otherwise. .

The personal terminal according to the second aspect is the first aspect of the invention.
The invention according to the above, further comprising an authentication status clearing means for clearing the authentication status stored in the authentication status storage means when a predetermined mounting state for mounting the personal terminal to the owner is released. It is assumed that. As described in the column of claim 1, the authentication status is stored and held in the authentication status storage means only when the authorized owner uses the authentication status, otherwise the authentication status is cleared to clear the authentication status. The authentication state stored in the authentication state storage means is cleared when a predetermined mounting state in which the personal terminal is mounted on the owner is released. Therefore, if the personal terminal is lost or stolen, the authentication status is cleared, and it is possible to reliably prevent a person other than the authorized owner from misusing the personal terminal.

The personal terminal according to the third aspect is characterized by the second aspect.
In the invention, the authentication state clearing means clears the authentication information stored in the information storage means when clearing the authentication state. As described above, the authentication state clearing unit clears the authentication information stored in the information storage unit when clearing the authentication state, so that the security of the authentication information can be thoroughly ensured.

[0020] The personal terminal of the fourth aspect is the second aspect of the invention.
In the invention of the third aspect, the personal terminal has a band member for attaching it to the owner's arm like a wristwatch, and the authentication state clearing means removes the personal terminal from the owner's arm. In this case, the authentication state is cleared when the authentication is completed. That is, the personal terminal is configured to be attached to the owner's arm via a band member like a wristwatch, and the authentication state clearing means is configured to set the authentication state when the personal terminal is removed from the owner's arm. , Security of the authentication information in the event of loss or theft can be ensured.

The personal terminal according to the fifth aspect is characterized in that:
In the invention, the band member is configured to have conductivity, and the authentication state clearing means clears the authentication state when the band member is removed and the conductive circuit of the band member is turned off. It is. Therefore, it is possible to easily and reliably detect that the personal terminal has been removed from the arm, and clear the authentication state.

[0022] The personal terminal of the sixth aspect is the fourth aspect of the present invention.
In the invention, the authentication status clearing means is configured to be sensitive to the temperature of the owner. The body temperature of the owner is transmitted when the personal terminal is worn on the arm, but the body temperature is not transmitted when the personal terminal is removed from the arm. Therefore, it is possible to easily and reliably detect that the personal terminal has been removed from the arm, and clear the authentication state.

[0023]

Embodiments of the present invention will be described below with reference to the drawings. Sales system 1 shown in FIG.
Is a merchandise sales system connected to a communication network 2 such as the Internet. This sales system 1 has a sales center 3 and a plurality of sales terminals 4 each connected to the communication network 2. This sales center 3
It is a center that has a large computer that stores various information and performs inventory management of various products, customer lists, product shipment, product purchase, sales price collection, and the like.

The large number of sales terminals 4 are connected to the communication network 2 and are installed in large numbers. For example, as shown in FIG. 2, a main body case 5 with legs, a display 6, and a plurality of It comprises an operation panel 7 including touch keys, electronic devices incorporated therein, and the like. As shown in FIG. 2, a personal terminal 20 for purchasing a product through the selling terminal 4 is used while being worn on a wrist of a user like a wristwatch. The information terminal 20 and the sales terminal 4 exchange information by infrared wireless communication.

Next, electronic equipment inside the sales terminal 4 will be described. As shown in FIG. 3, the sales terminal 4 includes a communication modem 8 connected to the communication network 2, a microcomputer 9 connected to the modem 8 via a bus, and a microcomputer 9 connected to the microcomputer 9 via a bus. Operation panel 7, display 6, output unit 1
0 and a transceiver 11. The microcomputer 9 has a CPU, a ROM, and a RAM. The ROM stores control programs for various controls necessary for the sales terminal 4.

The operation panel 7 is capable of inputting alphabetic characters, numbers, and other command signals via a plurality of touch keys on the display 6 and information displayed on the display 6. The display 6 is, for example, an LCD. In the case of the present embodiment, the output unit 10 is a printer that prints out an order card on which order information of a product ordered to be purchased through the sales terminal 4 is printed.

However, when the sales system 1 is a system for selling valuable tickets, the output unit 10 is a ticket issuing machine for printing and outputting tickets. When the sales system 1 is a cash dispenser system, the output unit 10 is a cash dispenser for dispensing cash. The transceiver 11 is configured to exchange information with the transceiver 21 of the personal terminal 20 by wireless communication using infrared rays. However, information may be transmitted and received not only by wireless communication but also by wired communication.

Next, the personal terminal 20 will be described. As shown in FIG.
Is a personal portable type, and the personal terminal 20 comprises a transceiver 21 and a transceiver 2
1 connected to a microcomputer 22 via a bus
And an operation input unit 23, a display 24, an authentication state memory 25, a confidential information memory 26, a clear signal input unit 27, and a small battery 28 as a power supply, which are connected to the microcomputer 22 via a bus, respectively.

The microcomputer 22 has a CPU
And a ROM and a RAM. The ROM stores control programs for various controls required in the personal terminal 20. The operation input unit 23 is, in the case of the present embodiment,
"0" to "9" numeric keys 29, password setting key 3
0, a password clear key 31, a set key 32, and other switches and keys (see FIG. 4).

Numerical information is directly inputted by the ten keys 29. In the case of alphabet characters, the characters are inputted by designating the alphabet characters displayed on the display 24 with the ten keys 29. In the case of katakana characters and hiragana characters, the display 24
Enter the katakana and hiragana characters displayed on the numeric keypad 2
It may be configured to input by specifying in step 9.
In some cases, a character string such as a Roman character or a kana can be converted to a Chinese character.

The display 24 has a plurality of lines (for example, 6 lines).
This is an LCD capable of displaying the message of (line) in characters.
The confidential information memory 26 is formed of a volatile memory, and stores and holds confidential information including authentication information input from the operation input unit 23 and other information. The authentication state memory 25 is formed of a volatile memory, and stores an authentication state authenticated via authentication information (for example, password or ID information) for authenticating the owner of the personal terminal 20 input from the operation input unit 23. Hold.

As described later, the clear signal input unit 27
The authentication state clear signal for clearing the authentication state stored in the authentication state memory 25 is input when the predetermined mounting state in which the personal terminal device 20 is mounted on the owner's arm is released. As shown in FIG. 4, the personal terminal 20 is configured to be slightly larger than a wristwatch similar to a wristwatch, and has a pair of band members 33 a and 33 b, and the arm of the owner (sometimes a user) is provided. It is designed to be attached to.

The pair of band members 33a and 33b are made of conductive synthetic resin, and as shown in FIG.
When the personal terminal 20 is removed from the arm, the conductive circuit is turned off when the personal terminal 20 is detached from the arm, as shown in FIG. 5 (b). It is configured to generate a clear signal. The pair of band members 33a and 33b made of the conductive synthetic resin constitute the clear signal input unit 27.

As shown in FIG. 6, the personal terminal 20
A temperature sensor 34 composed of a thermistor sensitive to the temperature of the arm is provided on the back of the device, and a state in which the personal terminal 20 is removed from the arm is detected from a detection signal of the temperature sensor 34 to generate an authentication state clear signal. It is configured as
The temperature sensor 34 also forms the clear signal input unit 27. Next, a control program for controlling the personal terminal 20 and the sales terminal 4 so that any one of the sales terminals 4 of the sales system 1 can be accessed from the personal terminal 20 to purchase a product will be described. In addition, FIG.
In the flowchart of FIG. 9, the symbol Si (i = 1, 2,.
・) Indicates each step.

FIGS. 7 and 8 are flowcharts of the control executed by the microcomputer 22 of the personal terminal 20. The user can set a password in the personal terminal 20 at any time and store the password. When the user turns on the password setting key 30, the determination in S1 becomes Yes, and the LCD 24
A password input display screen is displayed and output on (display 24). Then, the user inputs and sets a password consisting of a character string of alphabetic characters through the display of alphabetic characters on the display 24 and the numeric keypad 29, and operates the set key 32 after the input is completed (S
3).

Next, it is determined whether or not the password input has been completed (S4). If there is a signal input from the set key 32, it is determined that the password input has been completed (S4: Yes). However,
If the determination in S4 is No, the process returns to S3 and repeats the password input process. In S5 after the password input is completed,
It is determined whether the hash value of the password is correct. still,
The formal hash value (output value of the one-way function) of the password of the owner of the personal terminal 20 is previously input and stored in the confidential information memory 26, and is compared with the formal hash value in S5. A determination is made. It is desirable to use a sufficiently long password so that it is difficult to obtain the password based on the regular hash value.

If the input password is not correct and the hash value of the password is not correct, a message to that effect is displayed on the display 24 in S6, and the process returns from S6 to S1. On the other hand, when the input password is correct and the hash value of the password is correct, the password is stored in the confidential information memory 26 (S7), and the authentication state (strictly, a flag indicating the authentication state) is stored in the authentication state memory 25. (S8), and a predetermined authentication mark indicating that the display is in the authentication state is displayed and output at one corner of the display 24 (S8).
9) Return to S1.

On the other hand, if the password setting key 30 is not turned on, the process shifts from S1 to S10, and the sales terminal 4
It is determined whether or not an output request for the purchase confirmation display has been received from the server (S10). If the determination is Yes, the authentication status memory 2
5 is determined based on the flag data (S5).
11) If the determination in S10 is No, the process proceeds to S16. If it is determined in S11 that the state is the authentication state, in S12, a confirmation screen including the product number, the quantity, the price, and the delivery date, which is the information received from the sales terminal 4, is displayed on the LCD 24.

The user looks at the confirmation screen and determines whether or not he has input the "Yes key" displayed on the display 24 (S13). If the determination is Yes, the personal terminal 20 sends the sales terminal The electronic money information (information for making payment in electronic settlement) and the user code number are transmitted and output to 4 (S15), and thereafter, the process returns to S1. However, the electronic money information and the user code are
It is assumed that the information is input in advance by the user and stored in the confidential information memory 26. On the other hand, if the user looks at the confirmation screen and does not enter a “Yes key”,
In step, cancellation information indicating that the purchase is to be canceled is transmitted and output to the sales terminal 4, and then the process returns to S1.

When the determination in S10 is No, it is determined whether an authentication state clear signal has been input from the clear signal input unit 27 (S16). When the user removes the personal terminal 20 from the arm, the pair of band members 3
The authentication clear signal is generated because the conductive circuits of 3a and 33b are turned off, and the authentication clear signal is generated because the temperature detected by the temperature sensor 34 decreases. As a result, the determination in S16 becomes Yes, and the authentication state is cleared (S17). In this case, specifically, the authentication status flag in the authentication status memory 25 is reset. S1
After 7, the password information stored in the confidential information memory 26 is also deleted (S18), and the process returns to S1.

Next, a flowchart of the control executed by the sales terminal 4 will be described. As shown in FIG.
After the start of the control, a product selection screen is displayed on the display 6 of the sales terminal 4 (S20), and the user executes a process of selecting a product while viewing the product selection screen (S2).
1). In this case, the product number and quantity of the product displayed on the display 6 are specified via the operation panel 7 displayed on the display 6. Next, the price and delivery date of the selected product are calculated (S22).
By accessing the sales center 3 database,
The price and delivery date will be calculated.

Next, in S23, the personal terminal 20
Request to output a purchase confirmation display. Thereafter, it is determined whether or not the electronic money information has been received from the personal terminal device 20 (S24). If the determination is Yes, the electronic money information is transmitted to the sales center 3, and the validity of the electronic money information at the sales center 3 is determined. Is checked, and the validity of the electronic money is checked by transmitting the check result to the sales terminal 4 (S26). If the determination in S24 is No,
It is determined whether or not the cancellation information for canceling the purchase has been received (S25), and if the determination is Yes, S20.
When the determination is No, a predetermined message is displayed on the display 6 and the process returns to S20.

If the validity of the electronic money information is OK (S27: Yes), a predetermined message is displayed on the display 6 in S28, and the sales confirmation
And print out the product sales information from the sales center 3
Is output to If the validity of the electronic money information is not OK (S27: No), a predetermined message is displayed on the display 6 (for example, "The validity of the electronic money information is unknown, so the product cannot be sold." Is displayed (S29), and then S20
Return to

The operation and effect of the sales terminal 4 and the personal terminal 20 described above will be described. In order to avoid inputting confidential information to the operation panel 7 of the sales terminal whose operation is not reliable, highly confidential information such as a user's password is transmitted via the portable personal terminal 20 owned by the user. Since it is configured to be input, the user can input the password with confidence.

Further, the personal terminal 20 is configured in a wristwatch shape and is used while worn on the user's arm. When the personal terminal 20 is removed from the arm, the authentication state is cleared. Also, since the authentication information (password) stored in the confidential information memory 26 is also cleared, even if the personal terminal 20 is lost or stolen, the authenticated personal terminal 20 cannot be replaced by another person. Since the password is not abused by an unauthorized person or stolen by any analysis means, and is not abused by another person, the security is remarkably excellent.

Since the personal terminal 20 and the sales terminal 4 are configured to exchange information by wireless communication, a signal line code is connected when the personal terminal 20 is connected to the sales terminal 4. Since there is no need to do this, it is easy to use. Since the personal terminal 20 is provided with the confidential information memory 26 for storing confidential information such as passwords and electronic money information, it is possible to store the confidential information once input. Can be used multiple times.

Since a character string of a plurality of lines can be displayed on the display 24, alphabetic characters (Katakana or Hiragana) or the like can be displayed, and the alphabetical characters (Katakana or Hiragana) can be selected and input using the numeric keypad 29 together. , Not only numbers, but also alphabetic characters (Katakana and hiragana) can be entered, which is excellent in versatility. still,
The operation input unit in the embodiment corresponds to an input unit,
The display 24 corresponds to the display means, the authentication status memory 25 corresponds to the authentication status storage means, and the secret status memory 26
Corresponds to information storage means, the transceiver 21 and the microcomputer 22 correspond to information exchange means, and the microcomputer 22 corresponds to a microcomputer.

Next, a description will be given of a modification in which the above embodiment is partially changed. 1) The personal terminal 20 does not necessarily need to be configured in a watch-like shape, but can be configured in various sizes and shapes, but is configured to be worn by the owner in a predetermined wearing state. It is desirable. For example, it may be structured to be worn on a waist belt, may be structured to be hung on a neck in a pendant shape, or may be worn on an ear like earrings.

2) The sales system 1 has been described as an example of a system for selling goods, but may be a ticketing system for issuing various tickets (for example, movie tickets, betting tickets, lottery tickets, concert tickets, etc.) An information sales system that sells information on various newspapers and magazines may be used,
A service sales system that sells various services (for example, sales of travel packs) may be used.

3) When the personal terminal 20 is removed from the wrist, the information in the authentication state memory 25 and the information in the confidential information memory 26 are always cleared. In this mode, the information in the authentication state memory 25 and the information in the confidential information memory 26 may be stored and held for a certain period of time even if the user removes the arm. With this configuration, it is not necessary to re-enter various confidential information each time the personal terminal 29 is temporarily removed from the arm, such as when washing hands.

4) It is desirable that the personal terminal 20 be configured to function as a clock. In this case, the time is displayed on the display 24 when the personal terminal 20 is not used. 5) The personal terminal 20 is integrally formed with a mobile phone, and is configured to exchange information with a remotely located sales center and a remotely located sales terminal 4 via a transmission function of the mobile phone. You may.

[0052]

According to the invention of claim 1, information including authentication information can be authenticated by the input means, various information can be displayed through the display means, and various information including the authentication information can be displayed in the information storage means. Can be stored, and information can be exchanged with the sales terminal device by the information exchange means. Therefore, anxiety about inputting confidential information to a sales terminal that cannot be completely trusted can be eliminated. In particular, an authentication status storage unit is provided to store an authentication status in which a person possessing the personal terminal is authenticated through authentication information input from the input unit. Can be reliably authenticated, and the authentication status in the authentication status storage means can be easily cleared as necessary.

According to the second aspect of the present invention, the authentication status is stored in the authentication status storage means only when the authorized owner uses the authentication status. Otherwise, the authentication status clear means is used to clear the authentication status. The authentication state stored in the authentication state storage means is cleared when the predetermined mounting state in which the personal terminal is mounted on the owner is released. Therefore, if the personal terminal is lost or stolen, the authentication status is cleared, and it is possible to reliably prevent a person other than the authorized owner from misusing the personal terminal. The other effects are the same as those of the first aspect.

According to the third aspect of the present invention, the authentication state clearing means clears the authentication information stored in the information storage means when clearing the authentication state, thereby ensuring thorough security of the authentication information. Can be. Other claim 2
It has the same effect as.

According to the fourth aspect of the present invention, the personal terminal has a band member to be worn on the wrist of the owner like a wristwatch. Since the authentication state is cleared when the user is removed from the arm, thorough security of the authentication information in the event of loss or theft can be achieved. Other claim 2 or 3
It has the same effect as.

According to the fifth aspect of the invention, the authentication state clearing means clears the authentication state when the conductive band member is removed and the conductive circuit of the band member is turned off. An authentication state can be cleared by easily and reliably detecting that the user has been removed from the arm. The other effects are the same as those of the fourth aspect.

According to the sixth aspect of the present invention, since the authentication state clearing means is configured to respond to the temperature of the owner, it is possible to easily and surely detect that the personal terminal has been removed from the arm. The authentication status can be cleared. The other effects are the same as those of the fourth aspect.

[Brief description of the drawings]

FIG. 1 is a configuration diagram of a sales system according to an embodiment of the present invention.

FIG. 2 is a perspective view of a vending terminal of the vending system.

FIG. 3 is a block diagram showing a configuration of a sales terminal and a personal terminal.

FIG. 4 is a front view of a main part of the personal terminal.

FIG. 5A is a diagram illustrating a connected state of a pair of band members, and FIG. 5B is a diagram illustrating a disconnected state of a pair of band members.

FIG. 6 is a perspective view showing a back surface of the personal terminal.

FIG. 7 is a part of a flowchart of a routine executed by the personal terminal.

FIG. 8 is the remaining part of the flowchart of the routine executed by the personal terminal.

FIG. 9 is a schematic flowchart of a routine executed by the sales terminal.

[Explanation of symbols]

 DESCRIPTION OF SYMBOLS 1 Sales system 2 Communication network 4 Sales terminal 20 Personal terminal 21 Transceiver 22 Microcomputer 23 Operation input unit 24 Display 25 Authentication status memory 26 Confidential information memory 27 Clear signal input unit

Claims (6)

[Claims] 1. A personally owned portable personal terminal that inputs and outputs information to and from a sales terminal of a sales system that sells goods and services, wherein authentication for authenticating the owner of the personal terminal is performed. Input means for inputting information including information; display means capable of displaying various information; information storage means for storing information including the authentication information; and authentication information input from the input means. An authentication state storage unit that stores an authenticated authentication state, an information exchange unit that exchanges information with the sales terminal device, and a microcomputer that stores a control program that controls the various units. A personal terminal characterized by the above-mentioned. 2. An authentication status clearing means for clearing an authentication status stored in said authentication status storage means when a predetermined mounting state in which said personal terminal is mounted on an owner is released. The personal terminal according to claim 1, wherein: 3. The personal terminal according to claim 2, wherein the authentication status clearing unit clears the authentication information stored in the information storage unit when clearing the authentication status. 4. The personal terminal has a band member for attaching it to an owner's arm like a wristwatch,
4. The personal terminal according to claim 2, wherein the authentication state clearing unit clears the authentication state when the personal terminal is removed from the arm of the owner. 5. The band member is configured to have conductivity, and the authentication state clearing means clears the authentication state when the band member is removed and the conductive circuit of the band member is turned off. The personal terminal according to claim 4. 6. The personal terminal according to claim 4, wherein the authentication status clearing means is configured to respond to the temperature of the owner.