JP2001325664A - Electronic proof device, method for using to same and storage medium - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an electronic proof device, which is improved in convenience and reliability, for preventing illegal copy or illegal use in simple configuration. SOLUTION: An electronic proof device 6 is provided with a transmitting/ receiving means 10, which has a RAM 12 for storing data required to rewrite such as deposit remainder data, password A or account number and a one-time PROM 13 for recording personal data non-required to rewrite, for transmitting/ receiving the data stored in the respective storage means 12 and 13 and a monitor 8 for displaying data received from a terminal.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

TECHNICAL FIELD The present invention relates to an electronic passport,
The present invention relates to an electronic certification device that can be used as electronic money or the like.

[0002]

2. Description of the Related Art For example, a driver's license is printed with necessary information such as the address, name, license number, and license period of the licensee, and a photograph of the licensee is attached. The same applies to passports, where the name, nationality, height, etc. are entered and a photo is posted. These certificates are for the purpose of certifying for the public period, and are filled in with the necessary items described above.

In recent years, attempts have been made to replace the above-mentioned certificates with electronic devices.
As disclosed in Japanese Patent Laid-Open No. 064370, a technique for transmitting and receiving personal data using a storage unit has been proposed.

[0004]

However, in the device disclosed in this publication, an EEPROM capable of erasing and rewriting data is used as a storage means for personal data, and no security mechanism using a password is provided. In addition, a dedicated read / write device is used when recording personal data in the EEPROM. If this read / write device is copied by a third party, it becomes possible to create a fake driver's license, insurance card, or passport in which the personal information in the electronic certificate is rewritten.

Although not described in the above publication, EEP
It is also conceivable to secure the security by comparing the face photograph recorded in the ROM with the information of the host computer. However, when this is performed, the host computer must record image data of, for example, 40 million persons (when one out of three persons is a licensee), and the amount of compressed image data per person is reduced. Assuming 10 Kbytes, the data amount is 400 Gbytes. A large-scale system is needed to manage such information and provide a search function, and it takes time to access.

In terms of management cost, reliability, and capacity, data stored in the host computer must be short text data such as a password. Also, electronic money and electronic certificates are the same as money, and must be devices that do not allow unauthorized copying or use. For this purpose, it is necessary to provide a mechanism in which data is not stolen from the storage means even if the data is disassembled. Furthermore, even if a copy is made and misused,
It is essential that measures are taken to minimize damage.

SUMMARY OF THE INVENTION It is an object of the present invention to provide a highly-reliable electronic certification apparatus which has a simple structure, prevents illegal copying and unauthorized use, is excellent in usability, and a method of using the same.

[0008]

Means for Solving the Problems As a result of intensive studies, the present inventors have reached the following aspects of the invention.

An electronic certification apparatus according to the present invention is for certifying a predetermined matter concerning a specific person by transmitting and receiving data. The first certification means stores data that does not need to be rewritten and can be written only once. Second storage means for storing data that needs to be rewritten and capable of being written a plurality of times, transmission / reception means for transmitting / receiving data stored in each of the storage means, and display for displaying data received from the terminal Means.

In one embodiment of the electronic certification device of the present invention,
It is for the owner to prove specific matters about himself.

In one embodiment of the electronic certification device of the present invention,
In order to conduct financial transactions with a financial institution, the owner certifies and indicates certain matters concerning himself.

In one embodiment of the electronic certification device of the present invention,
Each time the terminal or the host computer receives the new password data, the terminal or the host computer receives the new password data and overwrites the second storage means with the new password data.

In one embodiment of the electronic certification device of the present invention,
The first and second storage means are mounted on a board by a chip-on-board method.

In one embodiment of the electronic certification device of the present invention,
It has a card shape or a watch shape.

The method of using the electronic certification apparatus of the present invention is intended for an electronic certification apparatus that certifies a predetermined matter concerning a specific person by transmitting and receiving data, and distinguishes between data that does not need to be rewritten and data that needs to be rewritten. Storing the former in a state where only one writing is possible, and storing the latter in a state where writing is possible a plurality of times, transmitting and receiving the data with a host computer, and displaying the data received from a terminal. Features.

In one embodiment of the method for using the electronic certification device of the present invention, the electronic certification device is for the owner to certify specific items concerning the owner.

In one embodiment of the method of using the electronic certification device of the present invention, the electronic certification device is for the owner to certify and indicate his / her particular items in order to conduct a financial transaction with a financial institution. .

In one embodiment of the method for using the electronic certification device of the present invention, each time the terminal is used, a new password data transmitted from the terminal or the host computer is received, and the password data is overwritten on the second storage means. I do.

The storage medium of the present invention is a computer-readable storage medium storing a program for causing a computer to function as each component of the electronic certification device.

A storage medium according to the present invention is a computer-readable storage medium storing a program for executing a processing procedure of a method of using the electronic certification device.

[0021]

DESCRIPTION OF THE PREFERRED EMBODIMENTS Hereinafter, specific embodiments to which the present invention is applied will be described in detail with reference to the drawings.
FIG. 1 is a schematic perspective view showing a relationship between an electronic certification device and a terminal, FIG. 2 is an enlarged front view of the electronic certification device, and FIG. 3 is a circuit configuration diagram of the electronic certification device.

First, the security function of the electronic certification device of the present embodiment will be described. The storage means of this embodiment is a RAM 1 for storing data that needs to be rewritten, such as deposit balance data, password A, and account number.
2 and a one-time PROM 13 for recording personal data that does not require rewriting.

The RAM 12 and the one-time PROM 13
For example, it is mounted on a substrate in a chip-on-board shape as shown in FIG. Here, 31 is a silicon chip composed of the RAM 12 and the one-time PROM 13, and 34 is a substrate. The silicon chip 31 is connected to the pattern 32 on the substrate 34 by the wiring 33.
The pattern 32 and the wiring 33 are covered with the mold 30. Such a configuration prevents a third party from stealing the stored contents and taking out the storage means in a usable state.

The user first purchases the electronic certification device 6
To an appropriate public institution and have the input terminal 14 write personal data such as face, whole body image, profile, height, hometown, blood type, fingerprint, and retinal pattern to the one-time PROM 13. After the data writing is completed, the data is locked so that the second and subsequent data writing cannot be performed. Password B is registered in the host computer.
When connected to the terminal for confirmation, password A is automatically set to R
It is written to AM12.

The password A is a password which is stored in the host computer 48 and the RAM 12 of the electronic certification device 6 and is unknown to the user. The password B is registered only in the host computer 48, is a password that the user must memorize and must be entered to identify the user when operating the terminal 1. When the registration of the passwords A and B is completed, the electronic certification device 6 functions as an electronic certificate that requires the input of the password B.

When the user uses the electronic certification device 6 as electronic money when conducting a financial transaction with a financial institution (mainly a bank), the user deposits it in the bank and stores the account number in the RAM1.
Have 2 record it. Here, for the first time, the electronic certification device 6 functions as electronic money.

The operation method when using the electronic certification device 6 will be described below. Here, the case of using as electronic money will be described first, and then the operation method of using as electronic certificate will be described.

First, the transmission / reception switch 7 is pressed. When the transmission / reception switch 7 is pressed, personal data (image data such as face, whole body image, fingerprint, retinal pattern, gender, date of birth, address, and sign) from the one-time PROM 13, RAM 12
Sends the account number and password A to the terminal 1. In the case of an electronic certificate, only the personal information and the data of the password A are transmitted.

The person who operates the terminal 1 can confirm from the personal information (face, whole body image, gender, signature) displayed on the display 2 whether the person who uses the present invention is the person himself or herself. If it is deemed that the image information does not match the face of the user, confirmation is made on the spot, access to the host computer is stopped, or the police are notified.

The password B stored by the user is stored in the terminal 1
From the password input numeric keypad 4. The terminal 1 receiving the passwords A, B and account number data transmits the data to the host computer 48. The host computer 48 checks the data, and if the data is correct, sends the balance information to the terminal 1, and the terminal 1 sends the balance information to the electronic certification device 6.

In the case of an electronic certificate, passwords A and B
Only to the host computer 48. The host computer 48 collates the data, and if the data is correct, sends a notification to the terminal 1 that the user is the principal.

At the end of the access to the terminal 1, the terminal 1 generates a new password A by the random number generator 45 or receives the new password A from the host computer 48 and transmits it to the electronic certification device 6. New password A is R
It is overwritten and stored in AM12.

When the terminal 1 creates a new password A at the same time, the new password A is also transmitted to the host computer. The host computer stores the history of the password A. Thus, even if a third party attempts to copy and use the electronic certification device 6, if the third person having the original performs shopping or identity verification before using the third party, the password A is rewritten and the third party becomes old. When trying to use a copy with password A, it is determined to be unauthorized use,
Unusable, including the original. Thereafter, a reconfirmation check is performed, and after it is confirmed that the one having the new password A is the original, only the original can be used.

Conversely, if a third person having a copy obtains a new password A earlier than the person having the original, the person having the original determines that the unauthorized use has occurred when shopping or performing an identity check. And access stops.

Thereafter, a reconfirmation check is performed. This time, it is confirmed that the one having the old password A is the original, and only the original can be used. Although the person who owns the original will not be able to access, the access stop process is faster than conventional cash cards, so damage can be minimized.

As shown in FIG. 3, when the transmitting / receiving switch 7 is pressed, the control circuit 15 to which the battery 9 is connected causes the transmitting / receiving
0, the signal processing circuit 11 is activated, and the personal information and the password A are called from the one-time PROM 13 and the RAM 12 and sent to the transceiver 10 via the signal processing 11. The data is transmitted from the transceiver 10 to the terminal 1.

In the terminal 1, as shown in FIG. 4, the data is received by the transceiver 41 and passed through the signal processing 42 to the RAM 4.
3 is stored. At the same time, a message is displayed on the monitor 5 so as to input the password B.

The personal information is displayed on the monitor 2 from the RAM 43 via the signal processing 42. When it is confirmed that a person other than the person is using the data illegally, the data transmission from the control panel 44 to the host computer 48 is stopped.

The user inputs the password B from the ten keys 4. The input password B is input to the RAM 43 via the control circuit 47 and the signal processing 42.

The terminal 1 calls the passwords A and B and the account number data or only the passwords A and B from the RAM 43 and transmits the data to the host computer 48 via the signal processing 42 and the modem 46.

The host computer 48 collates the data and, if there is no problem, sends balance information or an identification signal to the terminal 1.

When the electronic certification device of the present embodiment is used as electronic money, the terminal 1 has a modem 46 and a signal processor 42.
Transmit the balance information to the electronic certification device 6 via the transceiver 41.

In the electronic certification device 6 receiving the balance information by the transmitter / receiver 10, the data is transmitted to the R through the signal processing means 11.
The information is written to the AM 12 and the information is displayed on the monitor 8.

The terminal 1 inputs the purchase price from the control panel 44. The amount is displayed on the monitor 2 and the monitor 5 via the control circuit 47 and the signal processing 42. When the user presses the approval switch 4 for payment, the terminal 1 sends the shopping information to the host computer 48 and the electronic certification device 6.

At the same time, the terminal 1 generates a new password A from the random number generator 45 or has the host computer 48 transmit it. Password A is signal processing 4
2 and transmitted to the transceiver 41 and transmitted to the electronic certification device 6.

The password A and the balance data are stored in the transceiver 1
0 is received and stored in the RAM 12 via the signal processing 11, and the processing ends. When accessing next time, access is performed with the new password A.

As described above, according to the electronic certification device 6 of the present embodiment, it is possible to efficiently prevent illegal copying and unauthorized use with a simple configuration, to provide excellent usability and to secure high reliability. Is realized.

(Modifications) Hereinafter, various modifications of the present embodiment will be described.

-Modification 1- The input of the password B can be omitted by setting on the terminal side, for example, because the usage amount is low. The device configuration in this case is the same as that of the present embodiment.

Modification Example 2 In this embodiment, the number of passwords is two, that is, passwords A and B. The greater the number of passwords, the better the security. Even in a device that stores a plurality of passwords in a one-time PROM or a RAM, the circuit configuration is as shown in FIG.
It is the same as that shown in. Therefore, it is preferable to use two or more passwords.

-Modification 3- Here, as shown in FIG. 6, in order to reduce the cost, the configuration of the one-time PROM and the RAM is constituted only by the RAM, and an area for writing personal information in the RAM 12 is defined.
The data recorded in this area can be recorded only once and cannot be erased, so that the one-time PRO
M can be replaced.

-Modification Example 4- Here, as shown in FIGS. 7 and 8, a wristwatch-type electronic certification device 70 in which an electronic certification device is incorporated in a wristwatch to improve usability. This wristwatch type electronic certification device 7
0 has a monitor 71 and a data transmission / reception switch 72.

The watch has the following advantages. 1. Wear it with a belt so you don't have to worry about losing it. If you drop, you will immediately notice from your arm's discomfort. Further, if the user is immediately aware of the loss, unauthorized use by a third party can be minimized, which contributes to stabilization of the security infrastructure. 2. It is easy to incorporate large-capacity batteries and circuits, and it is easy to replace batteries. 3. Because it is a box type, it is sturdy unlike a thin card shape. 4. Excellent fashionability. The belt design can be changed to suit individual tastes. 5. Because it is not surrounded by metal coins that block radio waves, it can be configured with a receiver with low reception sensitivity and a transmitter with low transmission output.

Here, in order to realize the functions of the above-described embodiments, an apparatus connected to the above-mentioned various devices or a computer in a system is operated so as to operate various devices so as to realize the functions of the above-described embodiments. The present invention also includes a program that is implemented by supplying the program code of the software described above and operating the various devices according to a program stored in a computer (CPU or MPU) of the system or apparatus.

In this case, the program code of the software implements the functions of the above-described embodiment, and the program code itself and means for supplying the program code to the computer,
For example, a storage medium storing such a program code constitutes the present invention. As a storage medium for storing such a program code, for example, a floppy (registered trademark) disk, hard disk, optical disk, magneto-optical disk, C
D-ROM, magnetic tape, nonvolatile memory card, R
OM or the like can be used.

When the computer executes the supplied program code, not only the functions of the above-described embodiment are realized, but also the OS (operating system) or other operating system running on the computer. Needless to say, even when the functions of the above-described embodiments are realized in cooperation with application software or the like, such program codes are included in the embodiments of the present invention.

Further, after the supplied program code is stored in the memory provided in the function expansion board of the computer or the function expansion unit connected to the computer, the program code is stored in the function expansion board or the function expansion unit based on the instruction of the program. The present invention also includes a case where a provided CPU or the like performs part or all of the actual processing, and the processing realizes the functions of the above-described embodiments.

[0058]

According to the present invention, unauthorized copying and unauthorized use can be efficiently prevented with a simple configuration, the usability is excellent, and high reliability is realized.

[Brief description of the drawings]

FIG. 1 is a schematic perspective view showing a relationship between an electronic certification device of the present embodiment and a terminal.

FIG. 2 is an enlarged front view of the electronic certification device.

FIG. 3 is a circuit configuration diagram of the electronic certification device.

FIG. 4 is a circuit configuration diagram showing a configuration of a terminal.

FIG. 5 is a cross-sectional view illustrating a structure of a chip-on-board.

FIG. 6 is a circuit configuration diagram of an electronic certification device of a third modification.

FIG. 7 is a circuit configuration diagram of an electronic certification device (including a wristwatch) according to a fourth modification.

FIG. 8 is an enlarged plan view of an electronic certification device (including a wristwatch) according to a fourth modification.

[Explanation of symbols]

DESCRIPTION OF SYMBOLS 1 Terminal 2 Monitor (for terminal side confirmation) 3 Approve button 4 Password input numeric keypad 5 Monitor (for user confirmation) 6 Electronic certification device 7 Data transmission / reception switch 8 Monitor 9 Battery 10 Transceiver 11 Signal processing circuit 12 RAM 13 One-time PROM 14 input terminal 15 control circuit 30 mold 31 silicon chip (RAM12 and one-time PR
OM13) 32 pattern 33 wiring 34 board 41 transmitter / receiver 42 signal processing 43 RAM 44 control panel 45 random number generator 46 modem 47 control circuit 48 host computer 70 wristwatch-type electronic certification device 71 monitor 72 data transmission / reception switch

──────────────────────────────────────────────────の Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat ゛ (Reference) G06K 19/077 G06K 19/00 K 9A001 19/00 Q F term (Reference) 2C005 MA02 MB08 SA14 SA15 3E040 AA04 BA18 BA20 CA14 CB04 DA02 DA03 EA02 FH02 5B035 AA14 BB09 BC01 CA23 CA39 5B049 BB46 CC02 CC36 DD04 EE23 EE24 FF03 FF04 GG04 GG07 5B055 BB16 BB20 CC10 EE02 EE03 EE21 EE27 FA01 KK03 HA02 KK03 HA02

Claims (12)

[Claims] An electronic certification device for certifying a predetermined matter concerning a specific person by transmitting and receiving data, comprising: first storage means which stores data which does not need to be rewritten and which can be written only once; A second storage unit that stores data to be written and can be written a plurality of times, a transmission / reception unit that transmits and receives data stored in each of the storage units, and a display unit that displays data received from the terminal. An electronic certification device, characterized in that: 2. The electronic certification apparatus according to claim 1, wherein the owner certifies a specific matter relating to the owner. 3. The electronic certification apparatus according to claim 1, wherein the owner certifies and specifies his / her particular items in order to conduct a financial transaction with a financial institution. Each time the terminal or the host computer receives new password data transmitted from the terminal,
4. The electronic certification device according to claim 1, wherein the password data is overwritten on the second storage unit. 5. The electronic certification device according to claim 1, wherein the first and second storage units are mounted on a board in a chip-on-board system. 6. The electronic certification device according to claim 1, wherein the electronic certification device has a card shape or a wristwatch shape. 7. A method of using an electronic certification apparatus for certifying a predetermined matter concerning a specific person by transmitting and receiving data, wherein the former is written once by distinguishing between data that does not need to be rewritten and data that needs to be rewritten. Only possible,
A method of using the electronic certification device, wherein the latter is stored in a state in which it can be written a plurality of times, the data is transmitted to and received from a host computer, and the data received from a terminal is displayed. 8. The method according to claim 7, wherein the electronic certification device is for the owner to certify specific items concerning the owner. 9. The electronic certifying device according to claim 7, wherein the owner certifies specific items relating to the owner and indicates his / her intention to conduct a financial transaction with a financial institution.
The use method of the electronic certification device described in. 10. The method according to claim 7, wherein each time the terminal or the host computer receives new password data transmitted from the terminal or the host computer, the new password data is overwritten in the second storage means. A method for using the electronic certification device according to any one of the preceding claims. 11. A computer-readable recording medium storing a program for causing a computer to function as each component of the electronic certification device according to claim 1. Description: 12. A computer-readable recording medium storing a program for executing a processing procedure of a method for using the electronic certification device according to claim 7. Description: