JP2001142849A - Portable information terminal and personal authentication method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a terminal and a personal authentication method, which can prevent an illegal use by a third person when the terminal is stolen or the like. SOLUTION: Pressure sensors 5-1 to 5-n, to which sensor numbers 1 to (n) are added, are provided on a portable information terminal 1, and pressure to be applied is monitored by a pressure sensor on/off discriminating part 6. The sensor number of each of pressure sensors 5-1 to 5-n, for which the pressure is detected at the time of personal authentication, is stored in a pressure sensor on/off storage part 7. A comparing part 8 compares the sensor number stored in the pressure sensor on/off storage part 7 with the sensor number detected by the pressure sensor on/off discriminating part 6 so that it can be judged whether the portable information terminal 1 is taken by any person except for a user or not. When it is detected that the terminal is taken by any person except the user, the personal authentication is invalidated.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a communication system for a user who is an owner of a portable information terminal and having a function of providing various services such as financial services and commercial transactions via a network. The present invention relates to a portable information terminal having a function of performing personal authentication of a user before receiving the provision of the service, and a personal authentication method performed in the portable information terminal.

[0002]

2. Description of the Related Art Conventionally, in the financial industry such as a bank, a credit card, a cash card and the like are used.
Services are available for borrowing money and withdrawing cash from their own accounts. In the field of services related to money, it is necessary to perform personal authentication of a user at the time of a transaction in order to prevent unauthorized use by a third party. The most widely used personal authentication method in the past is a personal authentication method using a password or a password. For example, consider a bank cash card. In a bank card of a bank, a password previously determined by the user with the bank is stored in the bank card. When the user uses his / her cash card to receive the account use service, the user inserts the cash card into a card reading unit provided on the cash dispenser and inputs a personal identification number. If the entered password matches the password stored in the cash card, the account use service is started. If the user has stolen the cash card by a third party, the stolen third party cannot receive the account use service because the third party does not know the password stored in the cash card. In this manner, unauthorized use of the cash card by a third party can be prevented. However, with this personal identification method using a password and password, if only the password and password agreed with the bank in advance are known, the service can be provided even if the user is not the user himself, and reliable security can be achieved. There is no problem. Therefore,
In order to perform reliable personal authentication, a personal authentication method using biometrics information that cannot be forged, such as a fingerprint, an iris, and a DNA, and a personal authentication device associated therewith have been proposed. In such a biometrics personal authentication method, a method is used in which biometrics information is registered in advance in an online personal authentication organization of a bank or stored in a terminal used for providing a service. When the user intends to receive the provision of the service, the biometrics information detected by the fingerprint scanner or the like is compared by a certification organization, or is compared with the biometrics information stored in a terminal used for providing the service. By doing so, it is possible to perform reliable personal authentication.

[Problems to be solved by the invention]

[0003] In recent years, as mobile phones have become more sophisticated,
Services related to various kinds of money, such as withdrawal of electronic money or commercial transactions on the Internet, have become widespread in the field of mobile phones, and the place of commercial transactions is remarkably expanding. In a service using such a mobile phone, when a user has completed personal authentication based on biometrics information and is performing data input necessary for receiving the service, if the mobile device is stolen, There is a problem that a stolen third party can receive a service without performing an authentication operation. Therefore, a method is conceivable in which fingerprint scanners are provided for all input buttons and personal authentication is performed once each time an input is performed, thereby preventing unauthorized use of the mobile device by a third party. However, in a fingerprint scanner, since a finger must scan a certain area or more, if all of the input buttons are provided with a fingerprint scanner, the input buttons must be made larger than a certain amount, resulting in poor operability. There is a problem.

[0004] The present invention has been made in view of the above-described circumstances, and in a terminal that performs personal authentication and provides a service, the terminal is stolen after the user has completed personal authentication based on biometrics information. It is an object of the present invention to provide a personal digital assistant and a personal information authentication method that can prevent unauthorized use by a stolen third party when such information is met.

[0005]

In order to solve the above-mentioned problems, a portable information terminal according to the present invention is provided with an authentication unit for performing personal authentication when a service is provided via a network, and the portable information terminal. A personal authentication canceling means for canceling the effect of the personal authentication performed by the authentication means when the user who has performed the personal authentication leaves the hand. According to a second aspect of the present invention, in addition to the features of the first aspect, the portable information terminal further includes a biometrics information input unit for inputting the biometrics information of the user, and biometrics information storing the biometrics information of the user. Storage means, wherein the authentication means, when receiving a service, the biometric information of the user input by the biometric information input means and the biometric information stored in the biometric information storage means And performing personal authentication. A portable information terminal according to claim 3 is the portable information terminal according to claim 1 or claim 2.
In addition to the features described in the above, the personal authentication cancellation means,
Pressed position detecting means for detecting a pressed position on the portable information terminal, pressed position storing means for storing a pressed position detected by the pressed position detecting means at the time of personal authentication, and The pressed position stored in the pressed position storage means is compared with the pressed position detected by the pressed position detecting means after the personal authentication, and it is determined that the portable information terminal has left the user's hand based on the comparison result. And a pressed position comparing means for detecting. In the portable information terminal according to claim 4, in addition to the features described in claim 1 or claim 2, the personal authentication canceling means includes a pressing position detecting means for detecting a pressing position on the portable information terminal; A pressing position storing means for storing the pressing position, and a pressing position detected by the pressing position detecting means at the time of the personal authentication is written in the pressing position storing means, and thereafter, the pressing stored in the pressing position storing means is performed. Comparing the position and the pressed position detected by the pressed position detecting means, and detecting whether or not the portable information terminal has released the hand of the user based on the comparison result. And a pressing position comparing unit that writes the pressing position detected by the pressing position detecting unit to the pressing position storage unit, if it is recognized. The portable information terminal according to claim 5, in addition to the features described in claim 1 or claim 2, wherein the personal authentication canceling means includes: a pressed position detecting means for detecting a pressed position on the portable information terminal;
When the personal authentication, the authentication pressing position storing means for storing the pressing position detected by the pressing position detecting means, and when the change of the pressing position is detected by the pressing position detecting means after the personal authentication A pressing position clearing unit that clears, from the pressing position storage unit, pressing positions other than the pressing position corresponding to the pressing position after the change of the pressing position, among the pressing positions detected at the time of the personal authentication; Pressed position comparing means for comparing the pressed position stored in the position storage means with the pressed position detected by the pressed position detecting means, and detecting that the portable information terminal has left the user's hand based on the comparison result. And characterized in that: The portable information terminal according to claim 6 is the portable information terminal according to any one of claims 3 to 5, wherein the pressed position comparing unit includes a pressing position detected by the pressing position detecting unit; When performing a comparison with the pressed position stored in the pressed position storage unit, the number of matching points of both pressing positions is compared, and if the number of matching points is equal to or larger than a preset threshold, the user's hand is separated. If it is determined that there is no match, and if the number of matching points is equal to or less than a preset threshold, it is determined that the user has left his hand. In the portable information terminal according to claim 7, in addition to the features according to any one of claims 3 to 6, the personal authentication canceling means cancels the effect of the personal authentication. The data input by the user up to that point is invalidated. In the portable information terminal according to claim 8, in addition to the features according to any one of claims 1 to 7, the personal authentication canceling means performs personal authentication again after canceling the effect of the personal authentication. A command to do so is sent to the authentication means. A portable information terminal according to a ninth aspect is characterized in that, in addition to the features according to any one of the first to eighth aspects, the biometrics information input means is a fingerprint scanner or a camera. A portable information terminal according to a tenth aspect is characterized in that, in addition to the features according to any one of the first to ninth aspects, the pressed position detecting means is a pressure sensor. The personal authentication method according to claim 11, which is a personal authentication method for performing personal authentication when a service is provided by a mobile device via a network, comprising:
An authentication process for performing personal authentication, and after performing the personal authentication in the personal authentication process, when the mobile device is handed over to a hand of a person other than the user who performed the personal authentication, the authentication process is performed in the authentication process. And a step of canceling the effect of the personal authentication.

[0006]

DESCRIPTION OF THE PREFERRED EMBODIMENTS [1] Configuration of Embodiment FIG. 1 is a block diagram showing a configuration of a portable information terminal 1 according to the present embodiment. In FIG. 1, a portable information terminal 1 has a function of receiving various services provided to a mobile phone,
It is a device that enables connection to various services such as the Internet. Therefore, using this portable information terminal 1,
Commerce on the Internet or electronic commerce such as withdrawal of electronic money is possible. The portable information terminal 1 is provided with input buttons, an LCD, and the like. The portable information terminal 1 is provided with a microphone for voice input, a speaker for voice output, a wireless communication device for communication, and the like. ing. However, input buttons, LCDs, and the like provided on the portable information terminal 1 are irrelevant to the gist of the present invention.
From is omitted. Further, since the device used for communication of the portable information terminal 1 is not related to the gist of the present invention, FIG.
From is omitted.

In FIG. 1, a portable information terminal 1 according to the present embodiment includes a bio authentication object input unit 2, an input presence / absence determination unit 3, a biometrics authentication unit 4, and a plurality of pressure sensors 5.
-1 to 5-n, a pressure sensor on / off determination unit 6, a pressure sensor on / off storage unit 7, a comparison unit 8, and an application processing unit 9.

[0008] The bio-authentication target input unit 2 is a device for inputting biometrics information for performing personal authentication. Examples of devices used for the biometric authentication target input unit 2 include a fingerprint scanner, a camera, and a microphone. For example,
When the fingerprint scanner is used as the biometric authentication input unit 2, the fingerprint is used as the biometrics information.

The input presence / absence determination unit 3 monitors the biometrics information input to the bio-authentication target input unit 2, and when the input is confirmed, the pressure sensor on / off determination unit 6
And a device for notifying the pressure sensor on / off storage unit 7 that biometrics information has been detected. Also, the input presence / absence determining unit 3 converts the biometrics information input to the biometric authentication target input unit 2 into a biometrics authentication unit 4.
It also has the function of notifying the user.

The biometrics authentication section 4 has a memory function, and the biometrics information such as the fingerprint, iris, and voiceprint of the user who purchased the portable information terminal 1 can be specified when the portable information terminal 1 is purchased. Stored by the device. The biometrics authentication unit 4 authenticates the biometrics information stored in advance and the biometrics information input to the biometrics target input unit 2 according to a personal authentication request from an application processing unit 9 described later. Is a device that performs personal authentication of a user. The authentication result of the biometric information in the biometric authentication unit 4 is notified to the application processing unit 9.

The plurality of pressure sensors 5-1 to 5-n are provided at predetermined positions on the portable information terminal 1. The plurality of pressure sensors 5-1 to 5-n are provided by the user to the portable information device 1.
Is a device that detects the pressure applied on the portable information terminal 1 by gripping the device. These multiple pressure sensors 5-
For 1 to 5-n, sensor numbers 1 to n are determined for each sensor. For convenience, in this embodiment,
The pressure sensor corresponding to number f is referred to as a pressure sensor 5-f.
The detection results of the pressures detected by the plurality of pressure sensors 5-1 to 5-n are notified to the pressure sensor on / off determination unit 6.

The pressure sensor on / off judging section 6 monitors the detection result of the pressure applied to the plurality of pressure sensors 5-1 to 5-n, and applies pressure to any of the plurality of pressure sensors. It has a function to detect whether the The result of determination by the pressure sensor on / off determination unit 6 is notified to the pressure sensor on / off storage unit 7 and the comparison unit 8.

The pressure sensor on / off storage unit 7 is a device for storing the determination result of the pressure sensor on / off determination unit 6. More specifically, the pressure sensor on / off storage unit 7 stores the pressure sensor 5-
If it is determined that a pressure is applied to f, the number of the f-th pressure sensor 5-f at which the pressure is detected can be stored.

The comparing section 8 includes a pressure sensor on / off storage section 7
Number and pressure sensor on / off determination unit 6 stored in
This is a device for comparing with the sensor number of the pressure sensor detected in the above. The comparison result in the comparing unit 8 is notified to the application processing unit 9.

The application processing unit 9 is a device for executing an application necessary for receiving a service, and controls an operation performed in the portable information terminal 1. Regarding the processing performed by the application processing unit 9,
Details will be described later.

[1.2] Operation of First Embodiment FIG. 2 is a diagram showing a change in the sensor number detected by the pressure sensor on / off determination unit 6 in the portable information terminal 1 according to the present embodiment. In FIG. 2, it is detected that pressure is applied to the sensor Nos. 1, 2, 3, 4, and 5 at the time of personal authentication.
It is assumed that the sensor number detected by the pressure sensor on / off determination unit 6 changes in the order of →. In FIG. 2, # 1, # 2, # 3, and # 5 match the sensor numbers detected during personal authentication. Also,
Are the same as the sensor numbers detected in Nos. 3, 5, and 6. On the other hand, does not have the same identity as the sensor number detected in only the third and fifth numbers. In the present embodiment, a sensor number detected by the pressure sensor on / off determination unit 6 and a sensor stored in the pressure sensor on / off storage unit 7 are used as a reference (hereinafter, referred to as a comparison reference) as to whether or not a comparison result described later is valid. If the number matches with p or more, the comparison result is determined to be valid.

FIG. 3 is a sequence chart showing operations performed in the portable information terminal 1 when service provision is started after specifying a service. Hereinafter, the operation of the present embodiment will be described with reference to the sequence chart of FIG. 3 taking the case of FIG. 2 as an example. In the following, for simplicity of description, the description will be made assuming that the above-mentioned p number is three.

First, the user operates an input button or the like (not shown) to receive a service, thereby specifying a service that the user himself / herself wants to receive (step S1). As this service, for example, there are services related to various kinds of money, such as withdrawal of electronic money or commercial transactions on the Internet. When the user specifies a service to be used, the application processing unit 9 starts executing an application necessary for receiving the provision of the service (step S2). Next, the application processing unit 9 sends an authentication request to perform biometric authentication to the biometrics authentication unit 4 and sends a sensor number detection request to detect the sensor number to the pressure sensor on / off determination unit 6 ( Step S3, S
7).

The pressure sensor on / off judging unit 6, which has received the sensor number detection request from the application processing unit 9, determines the sensor numbers of the pressure sensors 5-1 to 5-n whose pressures were detected when the sensor number detection request was received. As shown in FIG.
No. 2, No. 3, No. 3, No. 4, No. 5 are detected (step S
8). 1 detected by the pressure sensor on / off determination unit 6
The second, third, fourth, and fifth sensor numbers are notified to the pressure sensor on / off storage unit 7 by the pressure sensor on / off determination unit 6 (step S9). Upon receiving the notification of the sensor number from the pressure sensor on / off determination unit 6, the pressure sensor on / off storage unit 7 stores the notified sensor number (at the time of authentication: 1, 2, 3, 4, 5). (Step S10).

On the other hand, when receiving the authentication request from the application processing unit 9, the biometrics authentication unit 4 waits for the biometrics information to be input to the biometrics input unit 2 by the user. In addition, the biometrics authentication unit 4 uses the LC on the portable information terminal 1.
D or the like (not shown) is displayed with a message such as "Please touch your finger to the bio-authentication target input unit 2" to prompt the user to input.

When the user inputs biometrics information to be authenticated into the biometrics input unit 2, the input presence / absence judging unit 3 detects that biometrics information has been input. When the input of the biometrics information is detected by the input presence / absence determination unit 3, the input presence / absence determination unit 3 notifies the biometrics information input to the biometrics target input unit 2 to the biometrics authentication unit 4.

The biometrics authentication section 4 checks the biometrics information of the user stored in advance against the biometrics information notified from the input presence / absence determination section 3 and registers the user who has input the biometrics information. Authentication is performed to determine whether the user matches the user (step S4). After that, the biometrics authentication unit 4 notifies the application processing unit 9 of the authentication result (Step S5). When the authentication result is notified, the application processing unit 9 calculates the authentication result based on the notified authentication result.
It is determined whether the user who has performed the personal authentication is a user who can receive service provision (step S6).
As a result of the determination in step S6, when it is determined that the user can receive the service, the application processing unit 9 permits input of data necessary for receiving the service (step S11). When the input is permitted, the user can input data necessary for receiving the service by operating an input button or the like.

On the other hand, the result of the personal authentication notified in step S5 is that the personal authentication has failed, or the biometric information of the user stored in advance in the biometrics authentication unit 4 and the biometrics information input unit 2 are input. If the content does not match the biometrics information, the application processing unit 9 notifies the authentication request and the sensor number detection request again.

When the data input is permitted in step S11, the application processing section 9 instructs the comparison section 8 to apply the sensor number to which the pressure is applied and the sensor number (stored in the pressure sensor on / off storage section 7). At the time of authentication: No. 1,
(No. 2, No. 3, No. 4, No. 5) are sent (step S12).

Upon receiving the sensor number comparison request from the application processing unit 9, the comparison unit 8 requests the pressure sensor on / off determination unit 6 and the pressure sensor on / off storage unit 7 to notify the sensor number (steps S13 and S14). Upon receiving the sensor number notification request, the pressure sensor on / off determining unit 6 determines the sensor numbers of the pressure sensors 5-1 to 5-n for which the pressure was detected when the sensor number notification request was received,
For example, as shown in FIG.
The number is detected (step S15). The first, second, third, fifth, etc. detected by the pressure sensor on / off determination unit 6
The sixth sensor number is notified to the comparing unit 8 by the pressure sensor on / off determining unit 6 (step S16).

On the other hand, when the pressure sensor on / off storage unit 7 receives the sensor number notification request from the comparison unit 8, the pressure sensor on / off storage unit 7 stores the sensor numbers (at the time of authentication: first, second,
No. 3, No. 4, and No. 5 are notified to the comparing unit 8 (step S).
17).

Upon receiving the notification of the sensor number from both the pressure sensor on / off determining unit 6 and the pressure sensor on / off storage unit 7, the comparing unit 8 sends the first, second, third, The 5th and 6th sensor numbers are compared with the 1st, 2nd, 3rd, 4th and 5th sensor numbers at the time of personal authentication notified by the pressure sensor on / off storage unit 7 (step S18). Next, the comparing unit 8 executes step S19 and determines whether or not the result of the sensor number comparison performed in step S18 is valid. As described above, whether or not the comparison result is valid is determined by the sensor number of the pressure sensors 5-1 to 5-n notified by the pressure sensor on / off determination unit 6 (1, 2, 3, 5
No., No. 6) and three or more sensor numbers at the time of personal authentication notified by the pressure sensor on / off storage unit 7 are determined. If three or more match, it is determined to be valid. In the case of the example shown in FIG. 2, among the sensor numbers detected at the time of authentication, the first, second, third, and fifth match. Therefore, in step S19, the comparing unit 8
It is determined that the comparison result in step S18 is valid.

As described above, when it is determined in step S19 that the comparison result is valid, the comparison unit 8 determines in step S16 the sensor number (the first and second numbers) notified from the pressure sensor on / off determination unit 6. # 3, # 5, # 6
) Is written into the pressure sensor on / off storage unit 7 (step S20). Thereafter, the comparing unit 8 notifies the application processing unit 9 of the comparison result indicating that the detected sensor number is valid in the case of (Step S21). The application processing unit 9 determines from the comparison result notified from the comparison unit 8 that there is no need for re-authentication (step S2).
2).

If it is determined in step S22 that re-authentication is not necessary, the application processing unit 9 proceeds to step S2.
Step 3 is executed to determine whether or not all the inputs necessary for receiving the service have been performed. If the necessary data has already been prepared, a connection is made with the server that provides the service. (Step S24). When the connection with the server is established, the application processing unit 9 transfers the input data, and ends the application when the transfer is completed (step S25).

On the other hand, as a result of the determination in step S23, if it is determined that all the data necessary to receive the service is not available, the application processing unit 9 notifies the comparison unit 8 of a sensor number comparison request. (Step S12).

Upon receiving the sensor number comparison request from the application processing section 9, the comparing section 8 requests the pressure sensor on / off determining section 6 and the pressure sensor on / off storage section 7 to notify the sensor number (steps S13, S14). When the sensor number notification request is received, the pressure sensor on / off determining unit 6 determines that the pressure has been detected when the sensor number notification request is received, as shown in FIG.
No. 5, No. 5, No. 6, No. 7 and No. 8 are detected (step S1).
5). The sensor numbers (3rd, 5th, 6th, 7th, and 8th) detected by the pressure sensor on / off determination section 6 are notified to the comparison section 8 by the pressure sensor on / off determination section 6 (step S16). ).

On the other hand, when the pressure sensor on / off storage unit 7 receives the sensor number notification request from the comparison unit 8, the sensor number (1: 2, 3, 5, 5) written by the comparison unit 8 in step S20. No. 6) are notified to the comparing unit 8 (step S17).

Upon receiving the notification of the sensor number from both the pressure sensor on / off determining section 6 and the pressure sensor on / off storage section 7, the comparing section 8 determines the sensor number of the pressure sensor notified by the pressure sensor on / off determining section 6 (No. 3). 5th, 6th
No. 7, No. 7 and No. 8) are compared with the sensor numbers (No. 1, No. 2, No. 3, No. 5, No. 6) rewritten in step S20 notified by the pressure sensor on / off storage unit 7. (Step S18). Next, the comparison unit 8 determines in step S
Step 19 is performed to determine whether the result of the sensor number comparison performed in step S18 is valid. Since the third, fifth, and sixth numbers match in the case of the above, the comparison unit 8 determines that the comparison result in step S18 is valid in step S19.

As described above, when it is determined in step S19 that the comparison result is valid, the comparison unit 8 determines in step S16 the sensor number (3rd, 5th) notified from the pressure sensor on / off determination unit 6. , 6, 7, 8
) Is written into the pressure sensor on / off storage unit 7 (step S20). After that, the comparison unit 8 notifies the application processing unit 9 of a comparison result indicating that the sensor numbers detected in the case of (3, 5, 6, 7, and 8) are valid (step). S21). The application processing unit 9 determines from the comparison result notified from the comparison unit 8 that there is no need for re-authentication (step S22).

When it is determined that there is no need for re-authentication, the application processing unit 9 executes step S23,
It is determined whether or not all inputs necessary to receive the provision of the service have been performed, and if necessary data has already been prepared, a connection is made with a server that provides the service (step S24). When the connection with the server is made, the application processing unit 9 transfers the input data, and ends the application when the transfer is completed (Step S).
25).

On the other hand, if the result of the determination in step S23 is that all the data required to receive the service is not available, the application processing unit 9
Is notified of a sensor number comparison request (step S1).
2).

When the comparison unit 8 receives the sensor number comparison request from the application processing unit 9, it requests the pressure sensor on / off determination unit 6 and the pressure sensor on / off storage unit 7 to notify the sensor number (steps S13 and S14). When receiving the notification request of the sensor number, the pressure sensor on / off determining unit 6 determines that the pressure has been detected at the time of receiving the notification request of the sensor number, as shown in FIG.
No. 2, No. 3, No. 3, No. 4, No. 5 are detected (step S1).
5). The sensor number of the pressure sensor detected by the pressure sensor on / off determination unit 6 (1: 2, 3, 4,
No. 5) is notified to the comparing unit 8 by the pressure sensor on / off determining unit 6 (step S16).

On the other hand, when the pressure sensor on / off storage unit 7 receives the sensor number notification request from the comparison unit 8, the sensor number (3, 5, 6, 7, 7) written by the comparison unit 8 in step S20. No. 8) to the comparing unit 8 (step S17).

Upon receiving the notification of the sensor number from both the pressure sensor on / off determining unit 6 and the pressure sensor on / off storage unit 7, the comparing unit 8 determines the sensor number of the pressure sensor notified by the pressure sensor on / off determining unit 6 (number: 1). Number 2, number 3
No. 4, No. 5, and No. 4 are compared with the sensor numbers (No. 3, No. 5, No. 6, No. 7, No. 8) rewritten in step S20 notified by the pressure sensor on / off storage unit 7. (Step S18). Next, the comparison unit 8 determines in step S
Step 19 is performed to determine whether the result of the sensor number comparison performed in step S18 is valid. In this case, only the third and fifth match, so in step S19, the comparing unit 8 determines that the comparison result in step S18 is invalid.

As described above, when it is determined in step S19 that the comparison result is invalid, the comparison unit 8 determines in step S16 the sensor number (the first and second numbers) notified from the pressure sensor on / off determination unit 6. # 3, # 4, 5
No.) is written to the pressure sensor on / off storage unit 7, and the application processor 9 is notified of the comparison result indicating that the detected sensor number is invalid in the case of (2) (step S21). The application processing unit 9 determines that re-authentication is necessary based on the comparison result notified from the comparison unit 8 (step S22).

As described above, when it is determined in step S22 that re-authentication is necessary, the application processing unit 9
Invalidates the data required to receive the service input by the user and cancels the effect of the personal authentication already performed (step S26). After that, the application processing unit 9 makes an authentication request to the biometrics authentication unit 4 again, thereby performing steps S3 to S2 in FIG.
3 will be executed.

As described above, when the personal digital assistant according to the present embodiment receives the service, it stores the position of the personal digital assistant held by the user at the time of performing personal authentication and performs personal authentication. After that, if the position held by the user changes more than a certain value, the data necessary for receiving the service input by the user is invalidated, and the effect of the already performed personal authentication is canceled. For this reason, even if the personal information terminal is stolen while performing the personal authentication and inputting the data necessary to receive the service, the personal authentication is performed when the user leaves the hand of the user. And the data input by the user become invalid. As described above, in order to receive the service after the personal authentication is invalidated, the personal authentication is required again, so that unauthorized use by a third party can be effectively prevented.

In this embodiment, a plurality of pressure sensors 5-1 to 5-n are used, but a distributed pressure sensor may be used on the portable information terminal 1 as a matter of course. That is, when specifying the position of the portable information terminal 1 held by the user, the position may not be specified from the sensor number of the pressure sensor, but may be determined from the pressure detection site on the pressure sensor. In this case, the pressure sensor on / off determination unit 6
Detects the part of the pressure sensor where pressure is applied,
The detection result is stored in the pressure sensor on / off storage unit.

In this embodiment, the biometrics authentication section 4 stores the biometrics information of the user who purchased the portable information terminal 1 by a specific device when the portable information terminal 1 was purchased. It is supposed to be. However, after determining the password and inputting the password, if the input password matches the predetermined password, the biometric information is stored by the user's arbitrary input. You may make it do.

In this embodiment, the data is transferred after the data necessary for receiving the service has been input. However, when the personal authentication is successful, the application processing unit 9 connects the portable information terminal 1 to a server such as a bank that provides the service, and then detects that the user has left his hand. Alternatively, the connection with the server may be disconnected.

In this embodiment, the biometrics information of the user is stored in the biometrics authentication unit 4 in advance. However, when the user purchases the portable information terminal 1, the user's biometrics information is registered in advance in a server or the like existing in the network, and when performing personal authentication, the user registered from the server or the like is registered. The biometrics information may be received to perform personal authentication. in this case,
When the user operates an input button or the like to identify a service that the user himself / herself wants to receive,
A connection for transmitting biometric information is established between a server such as a bank that provides the service and the portable information terminal 1, and personal authentication is performed based on the biometric information transmitted from the server. Will be performed.

[2] Second Embodiment The portable information terminal 1 according to the present embodiment is a “first embodiment”
Has the same configuration as the portable information terminal 1 described in (1). That is, the portable information terminal 1 according to the present embodiment is exactly the same as that shown in FIG. The portable information terminal 1 according to the present embodiment operates in accordance with the sequence chart shown in FIG. 3, similarly to the portable information terminal 1 described in the “first embodiment”.

The present embodiment differs from the "first embodiment" only in the reference for comparing the sensor numbers performed in steps S18 and S19 in FIG. More specifically, in the present embodiment, if the sensor number detected by the pressure sensor on / off determination unit 6 and the sensor number detected at the time of personal authentication match at least p as the comparison reference, Judge that the comparison result is valid. With this,
In step S20 of FIG. 3, the writing method of the sensor number will be slightly different, but this will be described later in detail.

Hereinafter, the comparison reference will be described with reference to a specific example. In the following, for simplicity of description, the description will be made assuming that the above-mentioned p number is three. FIG. 4 is a diagram illustrating a change in the sensor number detected by the pressure sensor on / off determination unit 6 in the portable information terminal 1 according to the present embodiment. FIG. 1 also shows FIG.
In the same way as in the case of, sensor numbers 1 and 2,
It is detected that pressure is applied to the third, fourth and fifth pressure sensors 5-1 to 5-n, and after this personal authentication, →→
It is assumed that the sensor number detected by the pressure sensor on / off determining unit 6 in step S15 of FIG. 3 changes in the order of →. In FIG. 4, the first, second,
Numbers 3 and 5 are the same as the detection result at the time of personal authentication.
Further, the first, third, and fifth are the same as the detection results of the sensor numbers at the time of personal authentication, and the first, second, and fourth are the same as the sensor numbers detected at the time of personal authentication. .
In contrast, only the first and second numbers do not match the sensor numbers detected during personal authentication.

In such a case, as a result of step S19 in FIG.
The comparison result is determined to be valid even if a change in the detection result up to → is observed. Conversely, the application processing unit 9 determines, as a result of step S19 in FIG.
When the detection result as described above is obtained, it is determined that the comparison result is invalid.

As described above, even if the comparison result is determined to be valid in step S19 in FIG.
Unlike the embodiment, the sensor numbers stored in the pressure sensor on / off storage unit 7 are not rewritten by the comparison unit 8. This is because, in the present embodiment, the comparison target of the sensor number performed by the comparing unit 8 is a sensor number detected at the time of personal authentication. Here, the process at the time of personal authentication shown in FIG. 4 will be described more specifically by way of example. Now, at the time of authentication, the first, second, third,
Since pressure is applied to the fourth and fifth pressure sensors, the fact that pressure is applied to these pressure sensors is stored in the pressure sensor on / off storage unit 7 in steps S9 and S10 in FIG. Thereafter, when the user shifts the location of the portable information terminal 1, the pressure sensor on / off determining unit 6 causes the first, second, third, and fifth
It is detected that pressure is applied to the No. 6 and No. 6 pressure sensors. Thus, the first, second, third, fifth, sixth
When the pressure sensor number is detected by the pressure sensor on / off determination unit 6, the comparison unit 8 determines that the first, second, third, and fifth numbers match the sensor numbers detected during personal authentication. The result will be determined to be valid. However, no new number is added to the pressure sensor on / off storage unit 7 in step S20. That is, after the sensor number detected at the time of personal authentication is stored, a new sensor number is not added to the pressure sensor on / off storage unit 7 unless re-authentication is required.

If it is determined in step S19 that the comparison result is invalid, as in the process indicated by → in FIG. 4, the comparing unit 8 sets the comparison result indicating that the detected sensor number is invalid. Is notified to the application processing unit 9 (step S21). In the application processing unit 9,
Based on the comparison result notified from the comparing unit 8, it is determined that re-authentication is necessary (step S22).

As described above, when it is determined in step S22 that re-authentication is necessary, the application processing unit 9
Invalidates the data required for receiving the service input by the user and the result of the personal authentication (step S
26). Thereafter, the application processing unit 9 makes an authentication request to the biometrics authentication unit 4 again, so that steps S3 to S23 in FIG. 3 are executed.

[3] Third Embodiment The portable information terminal 1 according to the present embodiment is a “first embodiment”.
Has the same configuration as the portable information terminal 1 described in (1). That is, the portable information terminal 1 according to the present embodiment is exactly the same as that shown in FIG. The portable information terminal 1 according to the present embodiment operates in accordance with the sequence chart shown in FIG. 3, similarly to the portable information terminal 1 described in the “first embodiment”.

The present embodiment differs from the "first embodiment" only in the criterion for determining whether or not the comparison result of the sensor numbers performed in steps S18 and S19 in FIG. 3 is valid. More specifically, in this embodiment,
As a criterion for determining whether or not the comparison result is valid, the comparison result is valid if p or more sensor numbers stored in the pressure sensor on / off storage unit 7 and the sensor numbers detected at the time of personal authentication match. Judge. Further, among the sensor numbers detected during the personal authentication, the sensor numbers that are not detected after the personal authentication are cleared, so that the comparison control changes as needed. In addition to this, in step S20 of FIG. 3, the writing method of the sensor number is slightly different, and this will be described in detail later.

Hereinafter, the comparison reference will be described with reference to a specific example. FIG. 5 is a diagram illustrating a change in the sensor number detected by the pressure sensor on / off determination unit 6 in the portable information terminal 1 according to the present embodiment. In FIG. 5, as in the case of FIG.
No.2, No.3, No.4, No.5 are detected to be under pressure, and after this personal authentication, →→→
It is assumed that the sensor numbers detected by the pressure sensor on / off determining unit 6 in step S15 of FIG. Further, in the present embodiment, step S1 in FIG.
8. If there is a sensor number that matches at least one of the sensor numbers stored in the pressure sensor on / off storage unit 7 as the determination criterion in S19, it is determined that the comparison result is valid.

The comparison reference of this embodiment will be described more specifically with reference to FIG. In FIG.
The first, second, third and fifth are the same as the detection result at the time of personal authentication. In this case, No. 4 of the sensor numbers detected at the time of authentication is cleared. Are the sensor numbers for which the fourth sensor number has been cleared among the sensor numbers detected at the time of personal authentication, so that the first, second, third,
No. 5 is a control. Also, in FIG.
Nos. 3, 3, and 5 are the same as the detection result at the time of personal authentication. In this case, of the sensor numbers detected during authentication,
Furthermore, No. 2 is cleared. Are the sensor numbers for which the second and fourth are cleared among the sensor numbers detected at the time of personal authentication, and the first, third, and fifth are comparison targets. Also, in FIG.
No. 4 is the same as the detection result at the time of personal authentication,
Nos. 4 and 5 have already been cleared, so Nos. 3 and 5 are cleared, and only the first sensor number remains. Is a sensor number that has been cleared among the sensor numbers detected at the time of personal authentication, so that only No. 1 is a comparison control.
In, since the first sensor number is not detected, all the sensor numbers detected at the time of personal authentication at this point are cleared.

In such a case, as a result of step S19 in FIG.
It is determined that the comparison result is valid even if the change in the sensor number up to → is observed. Conversely, if the comparison unit 8 detects a change in the sensor number such as → as a result of step S19 in FIG. 3, the comparison unit 8 determines that the comparison result is invalid.

As described above, when it is determined in step S19 of FIG. 3 that the comparison result is valid, the comparison unit 8 stores the pressure sensor on / off storage unit 7 except for the sensor number at which the pressure is detected at that time. Will be cleared. More specifically, the process at the time of personal authentication shown in FIG. 5 will be described in more detail.
No. 2, No. 3, No. 4, No. 5 and No. 5 are under pressure, and in steps S9 and S10 in FIG. 3, the fact that these pressure sensors are under pressure is stored in the pressure sensor on / off memory. Stored in the unit 7. Thereafter, since the user has shifted the place where the portable information terminal 1 has, the pressure sensor on / off determination unit 6 sets the first, second,
When it is detected that pressure is applied to the third, fifth, and sixth pressure sensors, the comparing unit 8 clears the fourth of the sensor numbers stored in the pressure sensor on / off storage unit 7. Become. Thereafter, the first, second, third, and fifth sensor numbers are stored until the sensor number is detected. When the sensor number is detected, the second sensor number is further cleared. Become. That is, in the pressure sensor on / off storage unit 7, the sensor numbers that are not detected thereafter are cleared from the sensor numbers stored at the time of personal authentication.

In the process indicated by → in FIG. 4, only the first pressure sensor can be compared with the sensor Nos. 2, 3, 4, 5, and 6 detected by. . Therefore, in step S19, the comparing unit 8 determines that the comparison result is invalid. When it is determined in step S19 that the comparison result is invalid, the comparing unit 8 notifies the application processing unit 9 of a comparison result indicating that the detected sensor number is invalid in the case of (step S21). The application processing unit 9 determines that re-authentication is necessary based on the comparison result notified from the comparison unit 8 (step S2).
2).

When the application processing unit 9 determines that re-authentication is necessary as a result of the determination in step S22, the application processing unit 9 sets the data and personal authentication required to receive the service input by the user. Is invalidated (step S26). Thereafter, the application processing unit 9 makes an authentication request to the biometrics authentication unit 4 again. In this way,
Steps S3 to S23 are executed again.

[4] Fourth Embodiment In the first embodiment, a personal authentication function is provided in the portable information terminal 1. However, regarding the personal authentication function,
It is also possible to let the network side take charge. This embodiment has a configuration in which a personal authentication function is provided on the network side. FIG. 6 is a block diagram showing a configuration of the portable information terminal according to the present embodiment and a server provided in the network. In FIG. 6, parts corresponding to the respective parts in FIG. 1 described above are denoted by the same reference numerals. Therefore, unless otherwise indicated, these bio-authentication target input unit 2, input presence / absence determination unit 3, biometrics authentication unit 4,
The plurality of pressure sensors 5-1 to 5-n, the pressure sensor on / off determination unit 6, the pressure sensor on / off storage unit 7, the comparison unit 8, and the application processing unit 9 have the same functions as those described in the first embodiment. And perform the same operation.
However, in FIG. 6, although not shown in FIG. 1, the communication control unit 20 is shown. The communication control unit 20 is a device that communicates with a server that provides a service via a network.

The difference between the present embodiment and the “first embodiment” is that the biometrics authentication unit 4 is incorporated in a network, and a communication system is configured as a whole network. In addition to this difference, in the present embodiment, the process of performing personal authentication and the process when the authentication is invalidated are different from those of the “first embodiment”. That is, the biometrics information of the user is notified to the biometrics authentication unit 4 once provided in the network, and after performing personal authentication of the user, the result of the personal authentication is notified to the portable information terminal 1. . In the present embodiment, the biometrics information of the user stored in advance in the biometrics authentication unit 4 is registered in the server 100 by a specific device when purchasing the portable information terminal 1. And In the operation according to the present embodiment, except for the personal authentication process and the process when the authentication is invalidated, the process is performed in the same process as the operation of the “first embodiment”. I do.

Hereinafter, a process of performing personal authentication will be described. In the present embodiment, when the user specifies an address of the server 100 by operating an input button (not shown) provided on the portable information terminal 1, the application processing unit 9 sends an instruction to the communication control unit 20. It outputs an instruction to connect to the server 100 in the network. Upon receiving this connection command, the communication control unit 20 connects to the server 14 provided in the network, and a connection for providing a service is established. When the connection is established, the application processing unit 9 executes the biometrics authentication unit 4 provided in the server 100.
Make an authentication request to. At this time, the application processing unit 9 makes a sensor number detection request to the pressure sensor on / off determination unit 6, and stores the sensor number of the pressure sensor whose pressure is detected by the pressure sensor determination unit 6 in the pressure sensor on / off storage unit 7. Is done.

On the other hand, when the biometrics authentication unit 4 provided in the server 100 receives the authentication request from the application processing unit 9 of the portable information terminal 1, the biometrics information is notified from the portable information terminal 1 side. It is in a state of waiting for.

When the user inputs biometrics information to be authenticated into the biometrics input unit 2, the input presence / absence judging unit 3 detects that biometrics information has been input. When the input of the biometrics information is detected by the input presence / absence determining unit 3, the input biometrics information is applied to the application processing unit 9.
Will be notified. Upon receiving the notification of the user's biometrics information, the application processing unit 9 notifies the communication control unit 20 of the biometrics information. afterwards,
The communication control unit 20 notifies the biometrics information to the biometrics authentication unit 4 provided in the server 100.

The biometrics authentication unit 4 to which the input biometrics information has been notified checks whether the biometrics information of the user registered in advance matches the biometrics information input to the biometrics target input unit 2. Is authenticated. As a result of the determination of the authentication result, when it is determined that the user who has performed the personal authentication is the same as the registered user, the server 100 starts providing the service. If the user changes the holding position of the portable information terminal 1 during the provision of the service, the application processing unit 9 disconnects the connection with the server.

On the other hand, if the personal authentication has failed, or if the biometrics information of the user previously stored in the biometrics authentication unit 4 does not match the biometrics information input to the biometrics input unit 2, the biometrics When the determination is made by the metrics authentication unit 4, the biometrics authentication unit 4 requests the application processing unit 9 to re-authenticate. When a request for re-authentication is received from the biometrics authentication unit 4 as described above, the application processing unit 9 sets an LC (not shown)
A message such as "Please input biometrics information again" is displayed on D to prompt the user to input.

As described above, the portable information terminal according to the present embodiment does not need to have a biometrics authentication unit in the terminal, so that the terminal body can be reduced in size.

[5] Application Embodiment [5.1] Application Embodiment 1 FIG. 7 is a diagram showing an appearance of a portable information terminal 1 according to an application embodiment 1. In FIG. 7, an input button 10 and a display 11 are provided on the front of the portable information terminal 1 according to the present embodiment.
Is provided. In addition, a fingerprint scanner is provided as a bio-authentication target input unit 2 on the side of the portable information terminal 1, and a plurality of pressure sensors 5-1 to 5-1 are provided on a part of the side where the fingerprint scanner 2 is not provided and on the back. 5-n are provided. The input button 10 is used to determine the service content when receiving the service, and the display 11 is used to display the service content.

As shown in FIG. 7, a fingerprint scanner 2 is provided on the side, and a plurality of pressure sensors 5-1 to 5-n are connected to the portable information terminal 1.
By providing so that the side and back of the
After performing personal authentication using biometric information using the fingerprint scanner provided on the side, it is not necessary to hold the main body of the portable information terminal 1 even when operating the input button 10 to execute the service. Therefore, stable use can be performed except when the hand is released from the portable information terminal 1 due to theft or the like.

[5.2] Second Embodiment FIG. 8 is a diagram showing an appearance of a portable information terminal 1 according to a second embodiment. In FIG. 8, an input button 10 and a display 11 are provided on the front surface of the portable information terminal 1 according to the present embodiment, similarly to the “first embodiment”. Also,
A fingerprint scanner is provided as a bio-authentication target input unit 2 on the back of the portable information terminal 1, and a plurality of pressure sensors 5-1 to 5-5- n is provided.

[5.3] Third Embodiment FIG. 9 is a diagram showing an appearance of a portable information terminal 1 according to a third embodiment. In FIG. 9, an input button 10 and a display 11 are provided on the front surface of the portable information terminal 1 according to the present embodiment, similarly to the “first embodiment”. In addition, on the portion of the front face of the portable information terminal 1 where the display 11 is provided, as the bio-authentication target input section 2,
A camera is provided, and the camera 2 can capture the iris of the user as biometric information. In addition, a light source 12 is provided next to the part where the camera is provided on the front so that the camera can accurately photograph the iris. Further, a plurality of pressure sensors 5-1 to 5 are provided on the side and the back of the portable information terminal 1.
-N is provided.

A camera 2 is provided on the front as shown in FIG.
By providing the plurality of pressure sensors 5-1 to 5-n so as to fill the sides and the back of the portable information terminal 1, the camera 2 provided on the front can be used without changing the body of the portable information terminal 1. After the personal authentication is performed, the input button can be operated.

[0075]

As described above, according to the present invention, when the service is provided, the position of the portable information terminal held by the user at the time of performing the personal authentication is stored, and the personal authentication is performed. If a change in the position held by the user after the operation exceeds a certain level, the effect of the personal authentication becomes invalid. For this reason, even if the personal digital assistant is stolen after performing personal authentication, personal authentication becomes invalid when the user leaves the hand of the user, and re-authentication is required in order to resume service provision. Since it becomes necessary, it is possible to effectively prevent unauthorized use by a third party.

[Brief description of the drawings]

FIG. 1 is a block diagram illustrating a configuration of a portable information terminal according to a first embodiment.

FIG. 2 is a diagram showing a change in a sensor number detected by a pressure sensor on / off determining unit 6 in the portable information terminal 1 according to the first embodiment.

FIG. 3 is a sequence chart showing an operation of the portable information terminal according to the first embodiment.

FIG. 4 is a diagram showing a change in a sensor number detected by a pressure sensor on / off determining unit 6 in the portable information terminal 1 according to the second embodiment.

FIG. 5 is a diagram showing a change in a sensor number detected by a pressure sensor on / off determining unit 6 in a portable information terminal 1 according to a third embodiment.

FIG. 6 is a block diagram showing a configuration of a portable information terminal according to a fourth embodiment and a server provided in a network.

FIG. 7 is a diagram illustrating an appearance of the portable information terminal 1 according to the first embodiment.

FIG. 8 is a diagram illustrating an appearance of a portable information terminal 1 according to a second embodiment.

FIG. 9 is a diagram illustrating an appearance of a portable information terminal 1 according to a third embodiment.

[Explanation of symbols]

 DESCRIPTION OF SYMBOLS 1 ... Portable information terminal 2 ... Bio authentication object input part 3 ... Input presence / absence determination part 4 ... Biometrics authentication part 5-1-5-n ... Pressure sensor 6 ... Pressure sensor ON / OFF determination unit 7 Pressure sensor ON / OFF storage unit 8 Comparison unit 9 Application processing unit

Claims (11)

[Claims] 1. An authentication unit for performing personal authentication when a service is provided via a network, and the authentication unit performs the authentication when the portable information terminal leaves the hand of a user who has performed personal authentication. A personal information terminal comprising: a personal authentication canceling means for canceling the effect of personal authentication. 2. Biometrics information input means for inputting biometrics information of a user, and biometrics information storage means for storing biometrics information of a user, wherein the authentication means provides a service. The personal authentication is performed by comparing biometrics information of the user input by the biometrics information input unit with biometrics information stored in the biometrics information storage unit. Mobile information terminal described in. 3. The personal authentication canceling means includes: a pressing position detecting means for detecting a pressing position on the portable information terminal; and a pressing means for storing the pressing position detected by the pressing position detecting means at the time of the personal authentication. Position storage means, comparing the pressed position stored in the pressed position storage means at the time of the personal authentication and the pressed position detected by the pressed position detecting means after the personal authentication, based on the comparison result, The portable information terminal according to claim 1, further comprising: a pressed position comparison unit configured to detect that the portable information terminal has left the hand of the user. 4. The personal authentication canceling means, a pressing position detecting means for detecting a pressing position on the portable information terminal, a pressing position storing means for storing the pressing position, and the pressing position at the time of personal authentication. Writing the pressed position detected by the detecting means in the pressed position storage means,
Thereafter, the pressed position stored in the pressed position storage unit is compared with the pressed position detected by the pressed position detection unit, and based on the comparison result, it is determined whether or not the portable information terminal has left the hand of the user. Detecting, and when it is recognized that the user's hand has not been released, a pressing position comparing unit that writes the pressing position detected by the pressing position detecting unit into the pressing position storage unit. The portable information terminal according to claim 1 or 2, wherein 5. The personal authentication canceling means includes: a pressing position detecting means for detecting a pressing position on the portable information terminal; and an authentication storing the pressing position detected by the pressing position detecting means at the time of the personal authentication. When a change in the pressed position is detected by the pressed position detecting means after the personal authentication, when the pressed position is detected, the change in the pressed position is performed. Pressing position clearing means for clearing pressing positions other than the pressing position corresponding to the pressing position from the pressing position storing means; pressing positions stored in the pressing position storing means and pressing positions detected by the pressing position detecting means And compare
The portable information terminal according to claim 1, further comprising: a pressed position comparison unit configured to detect that the portable information terminal has separated from a user's hand based on a comparison result. 6. The pressing position comparing means, when comparing a pressing position detected by the pressing position detecting means with a pressing position stored in the pressing position storing means,
The number of matching points between the two pressed positions is compared. If the number of matching points is equal to or greater than a preset threshold, it is determined that the user has not left the hand. The portable information terminal according to any one of claims 3 to 5, wherein it is determined that the user has left his hand. 7. The personal authentication revocation means, when revoking the effect of the personal authentication, invalidates data input by the user up to that point. Item 7. The portable information terminal according to any one of Items 6. 8. The personal authentication canceling means, after canceling the effect of the personal authentication, sends to the authentication means a command to perform the personal authentication again.
The portable information terminal according to claim 7. 9. The portable information terminal according to claim 1, wherein said biometrics information input means is a fingerprint scanner or a camera. 10. The portable information terminal according to claim 1, wherein said pressing position detecting means is a pressure sensor. 11. A personal authentication method for performing personal authentication when a service is provided by a mobile device via a network, comprising: an authentication step of performing personal authentication based on user-specific information; After performing the authentication, when the mobile device is handed over to a hand other than the user who performed the personal authentication, a personal authentication cancellation process of canceling the effect of the personal authentication performed in the authentication process. A personal authentication method characterized in that: