JP2001244926A - Mobile telephone set and authentication information processing method therefor - Google Patents

Abstract

PROBLEM TO BE SOLVED: To safely and effectively perform registration when previously registering authentication information to be used for authenticating a user in a mobile telephone set. SOLUTION: Concerning a mobile telephone set 10 having a function for authenticating the identity of the user while using the previously registered authentication information, when that mobile telephone set 10 acquires the authentication information to be registered, the transmission of registration permission data is requested from that mobile telephone set 10 to a prescribed external device 20 and only when the registration permission data are transmitted from the external device 20 corresponding to that request, the mobile telephone set 10 registers the authentication information to be registered.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

TECHNICAL FIELD The present invention relates to a portable telephone and a PHS
The present invention relates to a mobile telephone such as (Personal Handyphone System) and an authentication information processing method for a mobile telephone used in a telephone system including the mobile telephone.

[0002]

2. Description of the Related Art In recent years, mobile telephones such as portable telephones and PHSs have become widespread. At present, these mobile telephones are used not only as a means for making a telephone call but also as a terminal device for receiving an information providing service through e-mail, the Internet, or the like. Specifically, by using a mobile telephone, various services such as financial transactions such as cash transfer and ticket reservation can be received.

By the way, recently, regarding a mobile telephone,
Along with the increase in the number of shipments, price reduction, size reduction, weight reduction, etc., the number of lost or stolen items due to careless handling of the user has increased remarkably. For this reason, the number of cases in which the mobile phone is illegally used by another person and the telephone charge or the like is damaged is increasing. Further, as the provision of various services as described above becomes widespread, damages such as unauthorized transactions using other people's mobile telephones and use of services may not only be limited to telephone charges but may become larger.

As a countermeasure for preventing such damage, it is common to set a password or other password input each time a call is made or a service is provided. It is. However, mobile phones usually have small operation buttons and are difficult to input characters. Therefore, the user of the mobile telephone is likely to set the password to an easy-to-remember password, for example, a plain number ("1234", etc.) in order to ensure ease of input and prevent forgetting. In such a case, since the other person can easily guess the password, it cannot be said that the above-mentioned damage can be reliably prevented. In addition, some users of the mobile telephone may find it difficult to enter a password. Except for some transactions (such as financial transactions) that require the service provider to set a password, the password setting should be minimized. Likely to put. Even in such a case, since the unauthorized use can be easily performed by another person, it cannot be said that the above-mentioned damage can be surely prevented.

[0005] From these facts, recently, in order to more effectively prevent unauthorized use of the mobile telephone by others, the biometric information (iris, fingerprint, voiceprint, face, etc.) of the user is used to identify the user. A mobile telephone having a function of performing personal authentication is about to be commercialized. Such a mobile phone reads in advance the user's personal biometric information with a camera or sensor and registers it in an internal or external database, and then uses the mobile phone when making a call from the mobile phone, for example. The mobile phone obtains the biometric information of the individual again using a camera, sensor, etc., compares it with the biometric information registered in advance, and as a result, only when the user is authenticated as an authorized user, It is configured to enable transmission of a message.

[0006]

However, even with a mobile telephone that performs authentication using personal biometric information as described above, if biometric information can be easily registered in the mobile telephone or in an external database, The registered contents may be changed by an unauthorized user. That is, in order to reliably prevent unauthorized use of the mobile telephone by another person, a safe and effective registration means for the biometric information of the user is essential.

[0007] Therefore, the present invention provides a mobile telephone and an authentication information processing method capable of securely and effectively registering authentication information used for user authentication in advance. That is the primary purpose.

Further, when commercializing a mobile telephone that performs authentication using personal biometric information, it is necessary to mount a camera or sensor for reading biometric information on the mobile telephone. Considering the development and the payment of patent fees to technology holders, the cost is high. Therefore, if a mobile phone after commercialization is provided at a price with a small cost difference from the conventional machine so as to be applicable to the market, it may be difficult to establish a business simply by selling the device.

Accordingly, the present invention provides a mobile telephone capable of obtaining a service fee from a user by using authentication information used for user authentication and a method for processing the authentication information. The second purpose.

[0010]

According to the present invention, there is provided a mobile telephone devised to achieve the above object, wherein the mobile telephone according to claim 1 uses the authentication information registered in advance to identify the user. An information registration unit for registering the authentication information, an information acquisition unit for acquiring authentication information for registration in the information registration unit, A connection unit for connecting to an external device, the authentication information acquired by the information acquisition unit only when the registration of the authentication information is permitted from the external device connected via the connection unit to the information registration unit. It is characterized by registration.

A mobile telephone according to a second aspect is characterized in that, in addition to the mobile telephone according to the first aspect, a predetermined fee is charged each time authentication information is registered in the information registration means. It is.

According to the third aspect of the present invention, the mobile telephone has a function of connecting to an external database in which authentication information is registered, and authenticating whether or not the user is a user using the authentication information registered in the external database. Information transmitting means for transmitting authentication information to the external database and registering the authentication information; information obtaining means for obtaining authentication information to be transmitted by the information transmitting means; A connection unit for connecting to the device, wherein the information transmission unit transmits the authentication information acquired by the information acquisition unit only when the registration of the authentication information is permitted from an external device connected via the connection unit. It is characterized in that it is transmitted to an external database.

The mobile telephone according to the fourth aspect has a function of connecting to an external database in which authentication information is registered, and authenticating whether or not the user is a user using the authentication information registered in the external database. An information acquisition unit that acquires authentication information to be registered in the external database; and an information transmission unit that connects to a predetermined external device and transmits the authentication information acquired by the information acquisition unit to the external device. And, after permitting registration of authentication information in the external device, register the authentication information in the external database.

A mobile telephone according to a fifth aspect is characterized in that, in addition to the mobile telephone according to the third or fourth aspect, a predetermined fee is charged each time authentication information is registered in the external database. Things.

According to a sixth aspect of the present invention, there is provided a mobile telephone, comprising: authentication means for authenticating whether or not the user is an identity using authentication information registered in advance; and wherein the user is an identity by the authentication means. A transmitting means for making an outgoing call when authenticated, each time the transmitting means makes an outgoing call after being authenticated by the authenticating means, a predetermined amount is charged for the authentication. Things.

According to a seventh aspect of the present invention, in addition to the mobile telephone of the sixth aspect, the mobile telephone further comprises information registration means for registering authentication information, and wherein the authentication means has the authentication information registered in the information registration means. Is used to authenticate whether or not the user is the user himself / herself.

According to an eighth aspect of the present invention, in addition to the mobile telephone of the sixth aspect, the authentication means connects to an external database in which the authentication information is registered, and transmits the authentication information registered in the external database. It is characterized in that the user is used to authenticate whether or not the user is himself.

According to another aspect of the present invention, there is provided an authentication information processing method for a mobile telephone devised to achieve the above object, wherein the authentication information processing method according to the ninth aspect uses pre-registered authentication information. A method for use in a telephone system comprising a mobile telephone having a function of authenticating whether or not the user is an identity and a predetermined external device connectable to the mobile telephone, wherein the mobile telephone Upon registering the authentication information in the mobile phone, when the mobile phone acquires the authentication information to be registered, the mobile phone requests the external device to transmit registration permission data, and in response to the request, The mobile phone registers the authentication information to be registered only when registration permission data is transmitted from an external device.

According to a tenth aspect of the present invention, in addition to the authentication information processing method of the ninth aspect,
When a charging unit for charging the mobile telephone is provided in the telephone system, when the mobile telephone registers authentication information, the charging unit charges a predetermined fee for the registration. It is characterized by.

[0020] According to a eleventh aspect of the present invention, there is provided a mobile telephone authentication information processing method, comprising the steps of:
A mobile telephone having a function of connecting to the external database and authenticating whether or not the user is an identity using authentication information registered in the external database, and a predetermined mobile telephone capable of connecting to the mobile telephone. An external device, and a method used in a telephone system comprising: when registering authentication information in the external database, when the mobile phone acquires authentication information to be registered, Requesting transmission of registration permission data to the external device, and only when registration permission data is transmitted from the external device in response to the request, the mobile telephone sets the authentication information to be registered in the external database. When transmitting and receiving the authentication information to be registered, the external database identifies the authentication information with respect to the mobile telephone of the transmission source. Characterized in that it registered with the broadcast.

According to a twelfth aspect of the present invention, there is provided an authentication information processing method for a mobile telephone, comprising: an external database in which authentication information is registered;
A mobile telephone having a function of connecting to the external database and authenticating whether or not the user is an identity using authentication information registered in the external database, and connecting to the mobile telephone and the external database And a predetermined external device, which is used in a telephone system comprising: when registering authentication information in the external database, when the mobile phone acquires authentication information to be registered, When the authentication information to be registered is transmitted from the mobile phone to the external device, and the authentication information to be registered is received from the mobile phone, the external device transmits the authentication information only under predetermined conditions to the external database. When the authentication information to be registered is received from the external device, the external database transmits the authentication information to the source of the authentication information. And registers with the identification information about the dynamic phone.

According to a thirteenth aspect of the authentication information processing method for a mobile telephone, in addition to the authentication information processing method according to the eleventh or twelfth aspect, charging means for charging the mobile telephone is provided in the telephone system. In this case, when the external database registers the authentication information obtained by the mobile phone, the charging unit charges a predetermined fee for the registration.

[0023] According to a fourteenth aspect of the present invention, there is provided a mobile telephone authentication information processing method, comprising: a mobile telephone having a function of authenticating whether or not a user is an identity using pre-registered authentication information;
A billing means for billing the mobile phone, wherein the billing means is provided to the mobile phone before the mobile phone makes an outgoing call. Using the registered authentication information, the user is authenticated as to whether or not he / she is himself, and as a result of the authentication, if the user is himself / herself, the mobile telephone makes an outgoing call, and the mobile telephone makes a call. When an outgoing call is made after authentication using authentication information registered in the mobile telephone, the charging means charges a predetermined fee for the authentication.

According to a fifteenth aspect of the present invention, there is provided a mobile telephone authentication information processing method, comprising the steps of:
A mobile telephone having a function of connecting to the external database and authenticating whether or not the user is an identity using authentication information registered in the external database, and charging for charging the mobile telephone; And an authentication information processing method for a mobile telephone used in a telephone system comprising: the mobile telephone is registered in the external database before the mobile telephone makes an outgoing call. Authenticates whether or not the user is the identity using the authentication information provided, and as a result of the authentication, if the user is the identity,
The mobile phone makes an outgoing call, and when the mobile phone makes an outgoing call after undergoing authentication using the authentication information registered in the external database, the billing means sets a predetermined fee for the authentication. Is charged.

According to the mobile telephone according to the first, third and fourth aspects of the present invention, and the authentication information processing method for a mobile telephone according to the ninth, eleventh and twelfth aspects of the present invention, an external device can be used. Since the authentication information is registered in the information registration means only when the registration of the authentication information is permitted, the registration can be performed safely and effectively.
That is, even if an unauthorized user attempts to change the registered content of the authentication information, the content is not easily changed.

The mobile telephone according to the second, fifth, sixth, seventh and eighth aspects of the present invention and the authentication information processing of the mobile telephone according to the tenth, thirteenth, fourteenth and fifteenth aspects of the present invention. According to the method, when there is registration of authentication information or personal authentication using the authentication information, a fee is charged for the processing, so that a service fee can be obtained using the authentication information each time.
Therefore, for example, the cost of the mobile telephone can be reduced by returning the service fee.

[0027]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS A mobile telephone according to the present invention and an authentication information processing method thereof will be described below with reference to the drawings. However, here, an example will be described in which the authentication information used for the personal authentication of the user of the mobile telephone is biometric information (iris, fingerprint, voiceprint, face, etc.) of the user.

[First Embodiment] First, an authentication information processing method for a mobile telephone according to the first aspect and a mobile telephone according to the ninth aspect will be described. FIG.
FIG. 4 is an operation flowchart showing a flow of a processing operation in the first embodiment of the present invention.

As shown in FIG. 1, the telephone system shown in this embodiment includes a mobile telephone (hereinafter simply referred to as "telephone") 10 and a biometric information registration permitting machine (hereinafter simply referred to as "registration permitting machine") 20. And is provided.

The telephone 10 is composed of a portable telephone, a PHS, or the like, and can receive various services such as an electronic mail, an information providing service through the Internet or the like in addition to the telephone service. However, in the telephone 10,
Information acquisition means including a camera and a sensor for acquiring biometric information, information conversion means for converting the obtained biometric information into digital data, and a nonvolatile memory for registering the biometric information after digitization (Both are not shown), and the user is authenticated using the biometric information registered in the information registering means.

The telephone 10 is configured to be able to connect to the registration permitting machine 20. This connection can be made through a public telephone line network or a wide area network such as the Internet, as long as data (registration permission data and the like described later) can be exchanged with the registration permitting machine 20.
It may be performed directly via a connector and a dedicated cable.

The registration permitting machine 20 is installed in an environment that can be operated only by a specific person (hereinafter, referred to as an “operator”), and transmits data to and from the connected telephone 10 while following the operation by the operator. It gives and receives. Specifically, it is conceivable that the computer is configured by a computer device that executes a predetermined program, and is installed in, for example, a store of the telephone 10 so that only a clerk of the store can operate the store. Note that the registration permitting machine 20 takes measures to make it difficult to copy or forge the biometric information registration (for example, program copy protection processing and encryption of exchanged data) in order to ensure the security and validity of the biometric information registration. Is preferred.

Next, an example of processing operation in the telephone system configured as described above will be described. Here, a case will be described as an example where the biometric information is registered in the telephone 10 at the store when the telephone 10 is newly sold.

In registering the biometric information of the user (purchaser) in the telephone 10, first, the telephone 10 and the registration permitting machine 20 are connected. Then, in this state, the telephone 10 is caused to start a biometric information registration operation by, for example, performing a predetermined key operation (Step 101, hereinafter, step is abbreviated as “S”).

When the registration operation of the biometric information is started, in the telephone 10, the information obtaining means obtains the biometric information of a necessary part of the user, and the information converting means converts the biometric information into digital data (S102). Then, upon obtaining the biometric information after digitization (hereinafter, simply referred to as "biological information data"), the telephone 10 transmits a registration permission data request to the registration permitting machine 20 (S103).

The registration permission data request is for the telephone 10 to request the registration permission machine 20 to transmit the registration permission data from the registration permission machine 20. The registration permission data requested to be transmitted by the registration permission data request is data for instructing whether or not to register the biometric information data acquired by the telephone 10. In addition,
It is conceivable that both the registration permission data request and the registration permission data are realized by a command of a predetermined format or the like.

When the registration permission data request is transmitted from the telephone 10, the registration permission device 20 determines whether or not the registration of the biometric data corresponding to the registration permission data request is possible. This determination may be made by the operator of the registration permitting machine 20, for example. As a result of the determination, when it is determined that the registration of the biometric information data is legitimate, the registration permitting machine 20 performs a predetermined operation of permitting the registration by, for example, an observer (S104). In response to this operation, the registration permitting machine 20 transmits registration permission data to the telephone 10 so as to permit registration of the biometric information data on the telephone 10 (S105). However, if the registration of the biometric information data is determined to be improper, the transmission of the registration permission data is not performed.

If information on the acquisition of biometric information data is added to the registration permission data request from the telephone 10, the registration permission machine 20 recognizes whether or not the information satisfies a predetermined condition. Automatically determine whether registration is possible,
The registration permission device 20 may automatically transmit the registration permission data according to the determination result.

On the other hand, in the telephone 10, as a part of the operation of registering the biometric information, whether or not the registration permission data is transmitted from the registration permission device 20 until a predetermined time elapses after the transmission of the registration permission data request. Or the registration permitting machine 20
It is determined whether or not registration permission data has been received from the server (S106). Then, when the registration permission data is received, the previously acquired biometric information data is registered in the information registration means (S107), so that it can be used for the authentication process to be performed later.

On the other hand, the telephone 10 and the registration permitting machine 20
Is not connected, or when registration of the biometric information data is not permitted on the registration permitting machine 20 side, the registration permitting data is not transmitted from the registration permitting machine 20. No registration permission data is received even after the elapse. Therefore, in such a case, it is determined that the biometric information data registration is invalid, and the biometric information data obtained earlier is not registered in the information registration unit (S10).
8).

As described above, according to the present embodiment, in the telephone 10 having the function of performing personal authentication using the biological information data, even if the biometric information data is acquired for registration in the telephone 10, Only when the registration permitting device 20 transmits the registration permission data, the registration of the biometric information data to the information registration means is performed, and in other cases, the registration is not performed. That is, registration of biometric information data cannot be performed without the dedicated registration permitting machine 20. Therefore, the registration of biometric data can be performed safely and effectively. For example, even if an unauthorized user attempts to change the registered content of the biometric data, the content is not easily changed. As a result, unauthorized use by others can be reliably prevented.

Specifically, even if the telephone 10 is passed over to another person's hand due to, for example, theft or forgotten thing, it is impossible to easily register the biometric information data. And unauthorized use by the other person can be prevented. In addition, even if the service can provide information provision service via e-mail or the Internet other than making a call, if the service is set to require biometric authentication, the service can be similarly protected from unauthorized use. Can be realized.

[Second Embodiment] Next, an authentication information processing method for a mobile telephone according to the second aspect and a mobile telephone according to the tenth aspect will be described. FIG.
FIG. 9 is an operation flowchart showing a flow of a processing operation according to the second embodiment of the present invention. Note that here, the first
Only differences from the embodiment will be described.

As shown in FIG. 2, the telephone system shown in this embodiment includes a telephone 11, a registration permitting machine 21, and a registration service fee registration / charging system (hereinafter, simply referred to as “registration / charging system”) 50. It is provided with.

In addition to the telephone 10 described in the first embodiment, the telephone 11 is provided with a registration notifying means (not shown) for notifying the registration permitting machine 21 of the registration of the biometric information data in the information registering means. ).

The registration permitting machine 21 is configured to be connectable to the registration / charging system 50 in addition to the registration permitting machine 20 described in the first embodiment. Is transmitted to the registration / charging system 50 as registration execution information.

The registration / billing system 50 is installed in a secure environment where others cannot access easily, such as a company that provides an authentication service based on biometric information, and is set in advance by a contract with a person who receives the service. This is for charging a predetermined fee. Specifically, it is conceivable to configure a computer device that executes the predetermined program by connecting to the registration permitting machine 21 online.

Next, an example of processing operation in the telephone system configured as described above will be described.

The telephone 11 registers biometric information data in the information registration means in the same manner as in the first embodiment (S201 to S208), and when the registration is completed,
The registration notifying means notifies the registration permitting machine 21 of the fact. When detecting that the biometric information data has been registered in the telephone 11 by this notification (S209), the registration permitting machine 21 transmits registration execution information to the registration / charging system 50 (S210).

When the registration / charging system 50 receives the registration execution information transmitted from the registration permitting machine 21 (S211), the registration service fee for the registration of the biometric information data on the telephone 11 is determined in advance as a registration service fee. A fee is charged (S212).

Here, the flow of the registration service fee in this embodiment will be described. When registering the biometric information data in the telephone 11, the administrator of the registration permitting machine 21 (for example, a dealer of the telephone 11) collects a biometric information registration fee from the user of the telephone 11. The authentication service company that manages the registration and charging system 50 determines the amount charged by the registration and charging system 50 (usually, the above-mentioned registration fee minus the fee of the administrator of the registration permitting machine 21).
Is collected from the administrator of the registration permitting machine 21. In addition to this, similarly to, for example, the communication fee of the telephone 11, the amount charged by the registration / charging system 50 may be collected using a known method.

The registration service fee collected in this manner may be used to reduce the price of the telephone. That is, the manufacturer of the telephone performs the service execution permission for the authentication service and manages the registration permitting machine 21 and the registration and billing system 50, so that a part of the amount obtained as a registration service fee by the authentication service company is reduced. It is also conceivable to get them.

As described above, according to the present embodiment, in the telephone 11 having the function of performing personal authentication using the biometric information data, the biometric information data cannot be registered without the dedicated registration permitting machine 21. In addition to this, a predetermined fee is charged each time the registration is performed, so that the authentication service company can acquire a service fee every time the biometric information is registered while reliably preventing unauthorized use by others Becomes Therefore, by returning the service fee to a telephone manufacturer or the like, even if the telephone has a function of performing personal authentication using biometric information data, it is possible to reduce the cost (cost reduction) in order to reduce the price. ) Can be realized. Furthermore, if the price can be reduced, it will lead to the spread of high-security telephones using biometric information.

[Third Embodiment] Next, an authentication information processing method for a mobile telephone according to the third aspect and a mobile telephone according to the eleventh aspect will be described. FIG.
FIG. 10 is an operation flowchart illustrating a flow of a processing operation according to the third embodiment of the present invention. It should be noted that, also in this case, the first
Alternatively, only the differences from the second embodiment will be described.

As shown in FIG. 3, the telephone system shown in this embodiment is a telephone 12, a registration permitting machine 20, and a database system (hereinafter simply referred to as "database").
30 are provided.

The telephone 12 is provided with an information transmitting means (not shown) for transmitting biometric information data to the database 30 instead of the information registering means described in the first embodiment. Therefore, the telephone 12 is connected to the database 30 through a public telephone line network or a wide area network such as the Internet when performing user authentication, and uses the biometric information registered in the database 30 to authenticate the user. It is supposed to do.

The registration permitting machine 20 is substantially the same as that of the first embodiment.

The database 30 is installed in a secure environment that cannot be easily accessed by others, such as a company that provides an authentication service based on biometric information, and is capable of transmitting and receiving data to and from the telephone 12. It is configured such that biometric information data received from the telephone 12 can be registered. Specifically, it is conceivable to configure a database server device that stores and retains a plurality of pieces of biological information data and manages them collectively. In the database 30, since a plurality of pieces of biometric information data are managed in a unified manner, each piece of biometric information data is registered together with additional information such as the telephone number of the transmission source to identify each piece of biometric information data. It is assumed that

That is, in the present embodiment, the point that the biometric information data is registered not in the telephone 12 but in a database 30 provided outside the telephone 12 is as described above.
This is different from the embodiment.

Next, an example of processing operation in the telephone system configured as described above will be described.

After transmitting a registration permission data request to the registration permitting machine 20 in the same manner as in the first embodiment, the telephone 12 receives registration permission data from the registration permitting machine 20 (S301 to S301). (S306), the information transmitting means transmits the biometric information data already acquired to the database 30 (S307). However, if the registration permission data is not received within a predetermined period of time after the transmission of the registration permission data request, the registration of the biometric information data is regarded as improper, and the information transmission means determines that the biometric information data database
0 is not transmitted (S308).

When the biological information data is transmitted from the telephone 12, the database 30 receives the biological information data (S 309), and stores the information in the additional information such as the telephone number of the telephone 12 as the transmission source. Together with the password (S310), so that it can be used for the authentication process performed thereafter. At this time, the additional information registered together with the biometric information data may be specified by the database 30 through data transfer with the telephone 12 or by the telephone 12
May be attached to the biological information data and transmitted to the database 30.

As described above, according to the present embodiment, even when biometric information data for performing personal authentication is registered in the database 30 provided outside the telephone 12,
Since registration cannot be performed without the dedicated registration permitting machine 20, unauthorized use of the telephone 12 by another person can be reliably prevented. In addition, since the biometric information data is centrally managed by the database 30 installed in a safe environment, it is possible to prevent fraudulent operations such as duplication or modification of the telephone 12, so that further improvement in security can be expected. .

[Fourth Embodiment] Next, an authentication information processing method for a mobile telephone according to the fourth aspect of the invention and a mobile telephone according to the twelfth aspect of the invention will be described. FIG.
FIG. 11 is an operation flowchart showing a flow of a processing operation according to the fourth embodiment of the present invention. It should be noted that, also in this case, the first
Only differences from the third embodiment will be described.

As shown in FIG. 4, the telephone system shown in the present embodiment includes a telephone 13, a registration permitting machine 22, and a database 30.

The telephone 13 immediately transmits the biometric information data converted by the information conversion means to the registration permitting machine 22 instead of the information registration means described in the first embodiment and the information transmission means described in the third embodiment. Information transmitting means (not shown). However, the telephone 13 also uses the biometric information registered in the database 30 when authenticating the user, as in the case described in the third embodiment.

The registration permitting machine 22 is configured to transmit the biometric information data and the additional information to the database 30 instead of transmitting the registration permission data to the telephone 13 as described in the first to third embodiments. It was done.

The database 30 is substantially the same as that of the third embodiment.

Next, an example of processing operation in the telephone system configured as described above will be described.

In the telephone 13, the information acquiring means acquires the biological information in the same manner as in the first embodiment (S40).
1), when the information converting means converts this into biometric information data (S402), subsequently, the information transmitting means transmits the biometric information data to the registration permitting machine 22 (S403).

When the biometric information data is transmitted from the telephone 13, the registration permitting machine 22 determines whether or not the biometric information data can be registered, as in the first embodiment. When a registration permission operation is performed based on the result of the determination (S404), the registration permitting device 22 transmits the biometric information data received from the telephone 13 to the telephone 13
Is transmitted to the database 30 together with the additional information such as the telephone number (S405). At this time, the additional information transmitted together with the biometric information data is specified by the registration permitting machine 22 through data exchange with the telephone 13 or the telephone 13 is attached to the biometric information data and transmitted to the registration permitting machine 22. You may make it. Note that, when the telephone 13 and the registration permitting machine 22 are not connected, or when there is no registration permitting operation, the registration permitting machine 22 does not transmit the biometric information data or the like to the database 30.

When the biometric information data and the like are transmitted from the registration permitting machine 22, the database 30 receives the biometric information data and the like (S406), as in the case described in the third embodiment. Registration (S407) is performed so that it can be used for authentication processing performed thereafter.

As described above, also in the present embodiment, the biometric information data cannot be registered in the database 30 without the dedicated registration permitting machine 22, as described in the third embodiment. Further security improvement can be expected while preventing unauthorized use by others. In addition, according to the present embodiment, the transmission of the biometric information to the database 30 is performed not from the telephone 13 but directly through the registration permitting machine 22. If the biometric information data for a person is transmitted to the database 30 in a lump, the communication load (time, cost, etc.) required for the registration can be reduced.

[Fifth Embodiment] Next, an authentication information processing method for a mobile telephone according to a fifth aspect of the present invention and a mobile telephone according to the thirteenth aspect of the present invention will be described. FIG.
FIG. 14 is an operation flowchart showing a processing operation flow in a fifth embodiment of the present invention. It should be noted that, also in this case, the first
Only the differences from the fourth embodiment will be described.

As shown in FIG. 5, the telephone system shown in the present embodiment includes a telephone 13, a registration permitting machine 22, a database 31, and a registration and billing system 50.

The telephone 13 and the registration permitting machine 22 are the same as those in the fourth embodiment. That is, the biometric information data acquired by the telephone 13 is registered in the database 31 after the permission of the registration permitting machine 22. However, if the biometric information data is to be registered in the database 31, for example, the telephone 12 and the registration permitting machine 20 described in the third embodiment may be used.
May be used.

The database 31 is configured to be connectable to the registration and billing system 50 in addition to the database 30 described in the third or fourth embodiment.
Further, when the biometric information data is registered, it is transmitted to the registration / charging system 50 as registration execution information.

The registration and charging system 50 is substantially the same as that of the second embodiment.

Next, an example of processing operation in the telephone system configured as described above will be described.

When the database 31 receives the biometric information data and the additional information, the database 31 registers the biometric information data and the like as in the third or fourth embodiment (S501 to S502). When the registration is completed, the database 31 transmits the registration execution information to the registration and charging system 50 (S503).

On the other hand, in the registration / charging system 50, upon receiving the registration execution information transmitted from the database 31 (S504), the registration of biometric information data in the database 31 requires a predetermined fee set as a registration service fee. (S505). The registration service fee may be collected in the same manner as in the second embodiment.

As described above, according to the present embodiment, the third
As described in the fourth embodiment, the security can be expected to be improved by centrally managing the biometric information data while reliably preventing unauthorized use by others. Furthermore, as in the case of the second embodiment, a service fee can be obtained every time biometric information is registered, so that cost reduction (cost reduction) for reducing the price of the telephone can be realized. Become like

[Sixth Embodiment] Next, claims 6 and 7 will be described.
A mobile telephone according to the invention described above and an authentication information processing method for a mobile telephone according to the invention described in claim 14 will be described. FIG. 6 is an operation flowchart showing the flow of the processing operation in the sixth embodiment of the present invention. Here, only the differences from the above-described first to fifth embodiments will be described.

The telephone system shown in this embodiment, as shown in FIG. 6, has a telephone 14, an exchange 41, and a biometric information authentication management device (hereinafter simply referred to as "authentication management device") 42.
And an authentication service fee charging system (hereinafter, simply referred to as “authentication charging system”) 51.

The telephone 14 has an information acquiring means for acquiring biometric information of a user by a camera or a sensor and converting it into data, an information registering means for registering biometric information data in advance, and an information acquiring means. Authentication means for verifying whether or not the user is the identity by comparing the obtained biometric information data with biometric information data registered in the information registration means, and making a call for receiving a telephone service, an information providing service, etc. And transmission means (both not shown).

[0086] The exchange 41 accepts an outgoing call by the transmitting means of the telephone 14 and manages the outgoing call status.

The authentication management device 42 operates in conjunction with the exchange 41, for example, to grasp the authentication status of the telephone 14 under the management of a business operator that provides a communication service to the telephone 14. It is. In particular,
A setting unit for setting whether or not the owner uses the biometric information authentication function for each telephone set 14 and a biometric information authentication function. Then, when authentication is performed using the biometric information on the set telephone set 14, there is provided a transmission means for transmitting the fact as authentication execution information to the authentication and charging system 51 (both are not shown).

The authentication and billing system 51 is installed in a secure environment where others cannot easily access, such as a company that provides authentication services based on biometric information, and is set in advance by a contract with a person who receives the services. This is for charging a predetermined fee. Specifically, it is conceivable to configure a computer device that executes a predetermined program by connecting to the authentication management device 42 online.

Next, an example of processing operation in the telephone system configured as described above will be described.

In this telephone system, first, the telephone 14
And the authentication management device 42 are connected via the exchange 41 or the like, and in this state, for example, a predetermined key operation is performed on the telephone 14 to determine whether the telephone 14 uses the biometric authentication function. Such an application is made to the authentication management device 42 in advance. At this time, in order to identify the telephone set 14 using the biometric information authentication function, the authentication management apparatus 42 is also notified of additional information such as the telephone number of the telephone set 14. With these, the authentication management device 4
In the setting means 2, whether or not the telephone set 14 requires biometric information authentication when making a call is set. The telephone 14 is also set to require biometric information authentication, for example, when making a call.

After the setting, when the user of the telephone 14 makes a call or the like, the telephone 14 is started to perform a call operation by a predetermined key operation (S601). When the calling operation is started, in the telephone 14, the information acquisition unit acquires the biometric information data of the necessary part of the user (S602), and the authentication unit sets the biometric information data and the owner registered in the information registration unit in advance. Is collated with the biometric information data (S603). Then, as a result of the verification, if the user is authenticated (S604), the telephone 14 can make a call or the like. That is, if the user is not authenticated, a call such as a telephone call cannot be made (S605).

When the telephone 14 makes a call or the like after the above-described personal authentication (S606), the exchange 41 receiving the call manages the calling state (S6).
07), the fact that a call has been made from the telephone 14 and additional information such as the telephone number of the telephone 14 are transmitted to the authentication management device 42 as transmission information (S608).

When the transmission information is transmitted from the exchange 41,
The authentication management device 42 receives the transmission information (S609) and, based on the received transmission information,
It is determined whether or not is a device using the biometric information authentication function (S610). If the device uses the biometric information authentication function, the transmission means of the authentication management device 42
Is transmitted to the authentication / charging system 51 as authentication execution information together with additional information such as the telephone number of the telephone 14 (S).
611).

When the authentication / charging system 51 receives the authentication execution information transmitted from the authentication management device 42 (S612), the authentication service fee for the biometric information authentication on the telephone 14 is reduced by a predetermined fee as an authentication service fee. Billing is performed (S613).

Here, the flow of the authentication service fee in the present embodiment will be described. The authentication service company collects the amount charged to the authentication charging system 51 from the communication service provider or the user of the telephone 14. The authentication service fee collected in this manner may be used to reduce the price of the telephone. That is, the manufacturer of the telephone performs the service execution permission for the authentication service and manages the registration permitting machine 21 and the registration and billing system 50, so that a part of the amount obtained as a registration service fee by the authentication service company is reduced. It is also conceivable to get them.

As described above, according to the present embodiment, when the telephone 14 having the function of performing the personal authentication using the biometric information data is transmitted after the biometric information authentication is performed, it is determined that the authentication is performed. Authentication and billing system 51 as information
Since the information is transmitted to the user, the authentication service company can acquire a service fee every time the biometric information is authenticated, while reliably preventing unauthorized use by others. Therefore, by returning the service fee to the phone manufacturer, etc.,
Even with a telephone having a function of performing personal authentication using biometric information data, cost reduction (cost reduction) for reducing the price can be realized.

Seventh Embodiment Next, claims 6 and 8 will be described.
A mobile telephone according to the invention described above and an authentication information processing method for a mobile telephone according to the invention described in claim 15 will be described. FIG. 7 is an operation flowchart showing the flow of the processing operation in the seventh embodiment of the present invention. Here, only the differences from the above-described first to sixth embodiments will be described.

As shown in FIG. 7, the telephone system shown in the present embodiment includes a telephone 15, a database 32, and an authentication and billing system 51.

The telephone 15 includes an information transmitting unit (not shown) for transmitting the biological information data acquired by the information acquiring unit to the database 32, instead of the information registering unit and the authentication unit described in the sixth embodiment. Things.

The database 32 is installed in a secure environment that cannot be easily accessed by others, such as a company that provides an authentication service based on biometric information, and includes a database server device and the like that integrally manages a plurality of biometric information data. It is. More specifically, information registration means in which biometric information data on a plurality of telephone owners are registered in advance, and biometric information data transmitted from each telephone are compared with biometric information data registered in the information registration means. Authentication means for authenticating whether or not the user is the user, a result notifying means for notifying the authentication result to the telephone of the transmission source of the biometric information data, and an authentication and billing system as authentication execution information when the biometric information authentication is performed. And an information transmitting means for transmitting the information to the user 51 (both not shown).

That is, the present embodiment is different from the sixth embodiment in that biometric information authentication is performed not on the telephone 15 but on a database 32 provided outside the telephone.

The authentication and billing system 51 is substantially the same as that of the sixth embodiment.

Next, an example of processing operation in the telephone system configured as described above will be described.

In the telephone 15, in the same manner as in the sixth embodiment, after setting the necessity of the biometric information authentication, the transmitting operation is started (S701), and the biometric information data of the necessary part of the user is obtained. Then (S702), the information transmitting means transmits the biological information data to the database 32 (S70).
3).

When the biometric information data is transmitted from the telephone set 15, the database 32 receives the biometric information data (S704), and the authentication means stores the biometric information data and the owner registered in advance in the information registration means. (Step S705). Then, if the user is authenticated as a result of the collation (S
706), in the database 32, the result notifying unit transmits an authentication notification to the effect that transmission of a telephone or the like is permitted to the telephone 15 (S707). This allows the telephone set 15 to make a call (S708). However, if the user is not authenticated, the telephone set 15 cannot make a call (S709).

In the database 32, the telephone 15
In addition to the transmission of the authentication notification to the telephone 15, the information transmitting unit transmits to the authentication and charging system 51 as authentication execution information, together with additional information such as the telephone number of the telephone 15, along with the additional information such as the telephone number of the telephone 15. (S710).

Upon receiving the authentication execution information transmitted from the database 32 (S711), the authentication / charging system 51 charges a predetermined fee, which is predetermined as an authentication service fee, for biometric information authentication in the database 32. Is performed (S712).

As described above, according to the present embodiment, the sixth
As in the case of the embodiment, since the authentication service company can acquire a service fee every time biometric information authentication is performed while reliably preventing unauthorized use by others, the service fee can be transferred to a telephone manufacturer or the like. Thus, even if the telephone has a function of performing personal authentication using biometric information data, cost reduction (cost reduction) for reducing the price can be realized.

In the first to seventh embodiments described above,
In each case, the case where personal authentication is performed using the biometric information of the user is described, but the present invention is not limited to this. That is, for example, it is conceivable to apply the same method even when the authentication information is a password composed of a combination of numbers and the like, whereby it is possible to reliably prevent unauthorized use by others, and to reduce the cost (cost). Reduction) is also easily realized.

[0110]

As described above, according to the mobile telephone and the authentication information processing method of the present invention, authentication information cannot be registered without registration permission from an external device. Even if an attempt is made to change the registered content of the authentication information, the content is not easily changed, and as a result, unauthorized use by another person can be reliably prevented.

Further, according to the mobile telephone and the authentication information processing method of the present invention, when there is registration of authentication information or personal authentication using the authentication information, charging for the processing is performed. The service fee can be obtained by using the service fee. Therefore, for example, the cost of the mobile telephone can be reduced by returning the service fee.

[Brief description of the drawings]

FIG. 1 is an operation flowchart showing a flow of a processing operation according to a first embodiment of the present invention.

FIG. 2 is an operation flowchart showing a flow of a processing operation according to a second embodiment of the present invention.

FIG. 3 is an operation flowchart showing a processing operation flow according to a third embodiment of the present invention.

FIG. 4 is an operation flowchart showing a flow of a processing operation according to a fourth embodiment of the present invention.

FIG. 5 is an operation flowchart showing a processing operation flow according to a fifth embodiment of the present invention.

FIG. 6 is an operation flowchart showing a flow of a processing operation according to a sixth embodiment of the present invention.

FIG. 7 is an operation flowchart showing a processing operation flow according to a seventh embodiment of the present invention.

[Explanation of symbols]

 10, 11, 12, 13, 14, 15 Mobile telephone 20, 21, 22 Biometric information registration permitting machine 30, 31, 32 Database system 41 Exchange 42 Biometric information authentication management device 50 Registration service fee registration and billing system 51 Authentication service fee registration Billing system

Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat II (reference) H04M 15/16 H04B 7/26 109R 5K101 109M 9A001 109J H04L 9/00 673D F-term (reference) 5J104 AA07 KA01 KA16 MA01 NA05 PA02 PA11 5K024 AA61 AA62 CC11 DD01 EE00 GG00 GG01 5K025 CC01 DD05 DD06 EE13 EE16 GG18 5K027 AA11 BB09 CC08 EE01 HH23 5K067 AA29 AA32 BB04 BB21 DD17 DD29 EE02 EE12 FF04 GG01 H12 GG01 GG04 9A001 BB06 CC02 EE03 JJ01 JJ14 JJ25 LL03

Claims (15)

[Claims] 1. A mobile telephone having a function of authenticating whether or not a user is an identity using pre-registered authentication information, comprising: an information registration unit in which the authentication information is registered; An information acquisition unit for acquiring authentication information to be registered in the registration unit; and a connection unit for connecting to a predetermined external device, and the registration of the authentication information is permitted from the external device connected via the connection unit. The mobile telephone, wherein the authentication information acquired by the information acquisition means is registered in the information registration means only when the information is acquired. 2. A mobile telephone according to claim 1, wherein a predetermined fee is charged each time authentication information is registered in said information registration means. 3. A mobile telephone having a function of connecting to an external database in which authentication information is registered, and authenticating whether or not the user is an identity using the authentication information registered in the external database. An information transmitting unit that transmits authentication information to the external database and registers the authentication information; an information acquiring unit that acquires authentication information to be transmitted by the information transmitting unit; and an information acquiring unit that connects to a predetermined external device. A connection unit, and the information transmission unit transmits the authentication information acquired by the information acquisition unit to the external database only when registration of the authentication information is permitted from an external device connected via the connection unit. A mobile telephone characterized by the following. 4. A mobile telephone having a function of connecting to an external database in which authentication information is registered, and authenticating whether or not the user is an identity using the authentication information registered in the external database. An information acquisition unit that acquires authentication information to be registered in the external database; and an information transmission unit that connects to a predetermined external device and transmits the authentication information acquired by the information acquisition unit to the external device. A mobile telephone, wherein the authentication information is registered in the external database after the registration of the authentication information in the device is permitted. 5. The mobile telephone according to claim 3, wherein a predetermined fee is charged each time authentication information is registered in the external database. 6. An authentication means for authenticating whether or not the user is an identity using authentication information registered in advance, and when the authentication means authenticates the identity of the user, the authentication information is sent to the outside. A mobile telephone, comprising: a transmitting means for making a call, each time the transmitting means makes an outgoing call after being authenticated by the authentication means, a predetermined amount is charged for the authentication. 7. An information registering means for registering authentication information, wherein the authenticating means authenticates whether or not the user is a person using the authentication information registered in the information registering means. 7. The mobile telephone according to claim 6, wherein: 8. The authentication means is connected to an external database in which authentication information is registered, and authenticates whether or not the user is a person using the authentication information registered in the external database. The mobile telephone according to claim 6, wherein 9. A mobile telephone having a function of authenticating whether or not a user is a user using authentication information registered in advance, and a predetermined external device connectable to the mobile telephone. An authentication information processing method for a mobile telephone used in a telephone system comprising: acquiring authentication information to be registered by the mobile telephone when registering authentication information in the mobile telephone; Requesting transmission of registration permission data to an external device, and only when the registration permission data is transmitted from the external device in response to the request, the mobile phone registers the authentication information to be registered. Characteristic authentication information processing method for mobile telephone. 10. When the mobile phone registers authentication information in a case where charging means for charging the mobile telephone is provided in the telephone system, the charging means determines a predetermined value for the registration. The method according to claim 9, wherein a fee is charged. 11. An external database in which authentication information is registered, and a function of connecting to the external database and authenticating whether or not the user is an identity using the authentication information registered in the external database. A mobile phone having
An authentication information processing method for a mobile telephone used in a telephone system comprising a predetermined external device connectable to the mobile telephone, wherein the mobile terminal is used to register authentication information in the external database. When the phone acquires the authentication information to be registered, the mobile phone requests the external device to transmit registration permission data, and only when the registration permission data is transmitted from the external device in response to the request, Transmitting the authentication information to be registered from the mobile phone to the external database; and receiving the authentication information to be registered, the external database registers the authentication information together with identification information regarding the mobile phone of the transmission source. An authentication information processing method for a mobile telephone. 12. An external database in which authentication information is registered, and a function of connecting to the external database and authenticating whether or not the user is an identity using the authentication information registered in the external database. A mobile phone having
An authentication information processing method for a mobile telephone used in a telephone system comprising the mobile telephone and a predetermined external device connectable to the external database, wherein authentication information is registered in the external database. When the mobile phone acquires the authentication information to be registered, the mobile phone transmits the authentication information to be registered to the external device, and when the mobile phone receives the authentication information to be registered from the mobile phone, When the external device transfers the authentication information to the external database only under predetermined conditions, and receives the authentication information to be registered from the external device, the external database stores the authentication information together with the identification information regarding the mobile phone of the transmission source. An authentication information processing method for a mobile telephone, comprising registering. 13. When the external database registers the authentication information obtained by the mobile phone when a charging unit for charging the mobile phone is provided in the telephone system, the registration is performed by the external database. 12. The method according to claim 11, wherein the charging means charges a predetermined fee.
Or the authentication information processing method for a mobile telephone according to 12. 14. A mobile telephone having a function of authenticating whether or not a user is an identity using authentication information registered in advance, and charging means for charging the mobile telephone. An authentication information processing method for a mobile phone used in a telephone system, wherein the mobile phone uses authentication information registered in the mobile phone before the mobile phone makes an outgoing call. Authenticates whether or not the user is the principal, and if the result of the authentication is that the user is the principal, the mobile telephone makes an outgoing call, and the mobile telephone transmits authentication information registered in the mobile telephone. An authentication information processing method for a mobile telephone, characterized in that when an outgoing call is made after the used authentication, the charging means charges a predetermined fee for the authentication. 15. An external database in which authentication information is registered, and a function of connecting to the external database and authenticating whether or not the user is an identity using the authentication information registered in the external database. A mobile phone having
An authentication information processing method for a mobile telephone used in a telephone system comprising: a charging unit for charging the mobile telephone; wherein the mobile telephone is configured to perform an outgoing call before the mobile telephone. Authenticates whether or not the user is an identity using authentication information pre-registered in the external database, and as a result of the authentication, if the user is the identity, the mobile phone makes an outgoing call. Performing, after the mobile phone performs an outgoing call after undergoing authentication using the authentication information registered in the external database,
The authentication information processing method for a mobile telephone, wherein the charging means charges a predetermined fee for the authentication.