JP2002132731A - User authentication method and system using biological information and data recording medium, and program recording medium - Google Patents

Abstract

PROBLEM TO BE SOLVED: To make a user authentication system high in security level. SOLUTION: In order to authenticate a user, biological data (a) are acquired from the user and by enciphering (b) these data, collation data on one side are generated. On the other hand, parallel with the acquisition of the biological data (a), previously enciphered data (c) are read out of a data recording medium, that the user has, and by deciphering (d) these data, collation data on the other side are generated. It is collated (e) whether these collation data are equal or not. Thus when both the data are equal to each other, the user is authenticated as a authorized user.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

[0001] 1. Field of the Invention [0002] The present invention relates to a technique for authenticating a user who uses a system, and more particularly to improving the security level of the system.

[0002]

2. Description of the Related Art In recent years, with the development of computer systems, industrial revitalization and the convenience of society have been expanding. On the other hand, computer crimes such as data breaches and privacy breaches have also been increasing, and their harms are being viewed as problems. . Such information that should be protected from criminal activity is
The diversification is related to those related to corporate profits, financing such as banking, settlement, and personal information.

A technique for protecting such information to be protected from a criminal act by a malicious third party is generally called an information security technique. Information security technologies can be classified into authentication technologies, access control technologies, isolation technologies, monitoring technologies, and the like, depending on the form of fraudulent acts by third parties. The present invention particularly relates to an authentication technique.

[0004] The authentication technology is an information security technology for confirming whether or not the user is valid (user authentication). Password authentication is often used for user authentication. However, authentication using only a password has a limitation that a password with too many characters cannot be used because it depends on the memory of the user. For this reason, authentication using personal attribute information of the user and authentication based on the property of the user are used separately.

In authentication using personal attribute information, fingerprints,
A method has been considered in which a voiceprint, a handwriting, and an eyeprint of a retina are used as attribute information and are compared and collated. In addition, in the authentication based on the possession, there is a comparison and collation of the seal imprint of the seal, but recently, an IC card is often used.

The personal authentication method using a fingerprint is a more reliable authentication means than the authentication method using other attribute information, and is used mainly in the field of police in countries around the world. The features of fingerprints are represented by the flow pattern of the entire ridge finger, and methods of discrimination include methods of detecting feature points such as cusps, delta points, and vortex points and classifying them based on the number and positional relationship. is there.

[0007] Further, there is a system in which the security level is further increased by combining personal attribute information and authentication by possession. For example, an authentication method in which fingerprint data is entered at the time of authentication, the user's fingerprint data is recorded on an IC card, and both data are compared and matched, which is actually used for entry / exit management in a computer room, etc. Have been.

However, in such a conventional user authentication system using a combination of biometric information (personal attribute information) and a data recording medium (personal property),
User authentication has been performed by simply comparing data based on biometric information read from a data recording medium with data based on biometric information input to an authentication device at the time of authentication.

For this reason, there is a risk that decryption of the authentication data recorded on the data recording medium or the authentication device, falsification of the data recording medium, and misuse of the authentication data can be performed relatively easily.

In the case where the user authentication information is also recorded on the server side on the network, there is a possibility that the authentication information data may be falsified, the system may be damaged due to impersonation, and the like.

[0010]

Means for Solving the Problems and Effects of the Invention (1)
The authentication device according to the present invention includes: a reading unit that reads out the first encrypted biometric data from a data recording medium in which first encrypted biometric data obtained by encrypting the biometric information of the user at least once is recorded in advance; At the time, a biometric information acquiring means for acquiring the biometric information from the user, and a second encrypted biometric data obtained by encrypting the biometric information from the biometric information obtaining means at least once to obtain a second encrypted biometric data. The apparatus is characterized in that it comprises a collating means for comparing and collating the third encrypted biometric data obtained based on the first encrypted biometric data with the second encrypted biometric data.

Therefore, it is possible to make it difficult to decrypt the original biological information by encrypting and registering the biological information in the data recording medium. For this reason, it is possible to prevent a third party from forging the data recording medium.

[0012] Further, since the data is compared and collated in an encrypted state, it is difficult for a third party to specify data for authentication and to steal it.

Further, the authentication of the user can be executed only by the authentication device by a combination of the reading device and the biological information acquisition means. Therefore, access to the server or intrusion into the network by an unauthorized user is rejected by checking with the authentication device, thereby preventing unauthorized intrusion into the system. Therefore, a system with a high security level can be constructed.

(2) The program recording medium of the present invention comprises:
The first encrypted biometric data is read from a data recording medium in which the first encrypted biometric data obtained by encrypting the biometric information of the user at least once is read in advance, and the biometric information is read from the user at the time of use. And encrypting the biometric information obtained from the user at least once to obtain second encrypted biometric data, and a third encrypted biometric data obtained based on the first encrypted biometric data read from the data recording medium. A program for causing an authentication device to execute a process of comparing and comparing the encrypted biometric data with the second encrypted biometric data is recorded.

Therefore, it is possible to make it difficult to decrypt the original biological information by encrypting and registering the biological information in the data recording medium. For this reason, it is possible to prevent a third party from forging the data recording medium.

Further, since the data is compared and collated in an encrypted state, it becomes difficult for a third party to specify data for authentication and to steal the data.

Further, the authentication of the user can be executed only by the authentication device by a combination of the reading device and the biometric information acquisition means. For this reason, access to the server and intrusion into the network by unauthorized users can be rejected by checking with the authentication device, and unauthorized intrusion into the system can be prevented beforehand, and a system with a high security level can be constructed. it can.

(3) The present invention is characterized in that the first encrypted biometric data is used as it is as the third encrypted biometric data.

Therefore, it is possible to construct a system with a high security level while simplifying the processing such as encryption required at the time of authentication as much as possible.

(4) In the present invention, the first encrypted biometric data double-encrypts the biometric information of the user,
The third encrypted biometric data is obtained by decrypting the first encrypted biometric data once.

Therefore, the algorithm at the time of verification is complicated by always performing encryption and decryption at the time of authentication. Therefore, a system with a high security level can be constructed.

(5) In the present invention, the first encrypted generated data double-encrypts a user's biometric information with an asymmetric key, and the third encrypted generated data includes the first encrypted generated data. Is obtained by decrypting the encrypted generated data once with an asymmetric key.

Therefore, the algorithm at the time of verification is complicated by always performing encryption and decryption with an asymmetric key at the time of authentication. Therefore, a system with a high security level can be constructed.

(6) According to the present invention, the data recording medium further records encrypted asymmetric key data obtained by encrypting the first asymmetric key data and the second asymmetric key at least once using a common key. The third encrypted generated data is generated by decrypting the encrypted asymmetric key data once using the common key generated based on data obtained from the user at the time of authentication. It is obtained by decrypting the first encrypted generated data using a key.

Therefore, the algorithm at the time of verification is complicated by always performing encryption and decryption with an asymmetric key at the time of authentication. Therefore, a system with a high security level can be constructed.

(7) A data recording medium according to the present invention is a data recording medium on which biometric information of a user is recorded, wherein at least the biometric information is double-encrypted and recorded.

Therefore, the authentication of the user can be executed only by the authentication device by the combination of the reading device and the biometric information acquisition means. For this reason, access to the server and intrusion into the network by unauthorized users can be rejected by checking with the authentication device, and unauthorized intrusion into the system can be prevented beforehand, and a system with a high security level can be constructed. it can.

(8) The present invention is a data recording medium on which biometric information of a user is recorded, wherein at least the biometric information is double-encrypted with a first asymmetric key, the first asymmetric key data, 2 in which data obtained by encrypting at least one asymmetric key at least once is recorded.

Therefore, the authentication of the user can be executed only by the authentication device by the combination of the reading device and the biometric information acquisition means. For this reason, access to the server and intrusion into the network by unauthorized users can be rejected by checking with the authentication device, and unauthorized intrusion into the system can be prevented beforehand, and a system with a high security level can be constructed. it can.

(9) The present invention is a data recording medium recording biometric information of a user, wherein the data recording medium is provided with an identifier incorporating a digital watermark.

Therefore, the authenticity of the data recording medium can be easily determined, and the prevention of forgery of the medium can be enhanced.

(10) The user authentication method of the present invention is as follows.
First encrypted biometric data obtained by encrypting biometric information of a user at least once is recorded in a data recording medium in advance,
At the time of use, the first encrypted generated data is read from the data recording medium, the biometric information is obtained from the user, and the biometric information obtained from the user is encrypted at least once to obtain the second encrypted data. Obtaining encrypted biometric data and comparing and collating the third encrypted biometric data obtained based on the first encrypted biometric data read from the data recording medium with the second encrypted biometric data. And

Therefore, by decrypting the biometric information in the data recording medium and registering it, it is possible to make it difficult to decode the original biometric information. For this reason, it is possible to prevent a third party from forging the data recording medium.

Further, since the comparison is made in the encrypted state, it is difficult for a third party to specify the data for authentication and to steal it.

Further, the authentication of the user can be executed only by the authentication device by a combination of the reading device and the biometric information acquisition means. For this reason, access to the server and intrusion into the network by unauthorized users can be rejected by checking with the authentication device, and unauthorized intrusion into the system can be prevented beforehand, and a system with a high security level can be constructed. it can.

[0036]

DETAILED DESCRIPTION OF THE INVENTION [Summary of the Invention] First, FIG.
The outline of the present invention will be described with reference to FIG.

According to the present invention, user authentication is performed using a data recording medium. Therefore, a data recording medium used for authentication is distributed in advance to a user who receives user authentication. In this data recording medium, for example,
Data (recording medium data c) obtained by double-encrypting biometric data such as a fingerprint is recorded.

The processing performed by the authentication device when a user having this data recording medium receives user authentication will be described below.

First, as shown in FIG. 1, the biometric information acquisition means acquires biometric data a from the user at the time of authentication, and performs a process of single-encrypting this. Thereby, one collation data (second encrypted biometric data) is generated.

On the other hand, the reading means reads the above-described double-encrypted recording medium data (first encrypted biometric data) c from the data recording medium, and further decrypts the data d. A process for returning to the heavily encrypted data is performed. Thereby, the other collation data (third encrypted biometric data) is generated.

The collation means carries out a process of collating e to determine whether or not the single-encrypted collation data (the second and third encrypted biometric data) is the same. As a result, when both data are the same, the user is authenticated as a valid user, and the security protection state of the authentication device is released.

As described above, by performing verification in an encrypted state, it becomes difficult for a third party to specify and plagiarize data, and it is possible to increase the security level.

An embodiment in which a fingerprint of a user is used as biometric information and an IC card is used as a data recording medium will be described below.

[Outline of Embodiment] FIG. 2 is a conceptual diagram of an embodiment of the present invention.

An IC card used for authentication is distributed in advance to a user who receives user authentication. This IC
The card has fingerprint data f double-encrypted with public key P (first asymmetric key) data P [P [f]], public key data P, and common key Wc generated based on password W. Data obtained by encrypting the secret key S (second asymmetric key)
Wc [S] is recorded in advance. Note that P [f] means that the data f has been encrypted using the data P.

Below, the user having this IC card
Processing performed in the authentication device when receiving authentication will be described.

As shown in FIG. 2, the biological information acquiring means comprises:
First, fingerprint data f 'is collected from a fingerprint. Further, the fingerprint data f 'is stored in the public key P read from the IC card.
And the data becomes the data P [f ']. The single-encrypted data P [f '] becomes one collation data to be compared and collated.

On the other hand, the user who is authenticated inputs password W. The authentication device uses the common key Wc generated based on the password W as shown in FIG.
Data Wc [S] (data obtained by encrypting the secret key S in advance with the common key Wc) read from the IC card is decrypted, and the secret key S is generated.

Further, the data P [P [f]] read from the IC card is decrypted with the generated secret key S to obtain P [f]. This single encrypted data P [f ']
Is the other collation data to be compared and collated.

The collation means includes collation data P [f '] (single encrypted data generated based on data collected from a fingerprint) generated by the above processing and collation data P [f] (read from the data recording medium). (Single encrypted data generated based on the data). As a result, if the two data are the same, the user is authenticated as a user, and the security protection state in the authentication device is released. On the other hand, if the two data are not the same, the user is not authenticated as a user, so that the security protection state of the authentication device is not released.

[System Configuration] A system configuration according to an embodiment of the present invention will be described below with reference to FIGS. FIG. 3 shows a system configuration when the present invention is used for authentication of a network user. FIG.
FIG. 2 is a diagram illustrating a configuration of an authentication device.

As shown in FIG. 3, in the system for carrying out the present invention, a server 1 and a client PC 5 as a plurality of authentication devices are connected via a network 3 so that they can communicate with each other. ing.

The server 1 stores data to be protected from criminal acts such as plagiarism. For example, those related to corporate profits, those related to finance and settlement such as banking, and those related to personal information.

Communication means such as a LAN and the Internet is used for the network 3.

As shown in FIG. 4, the client PC 5 as an authentication device includes a CPU 20, a memory 22, a display 24, a hard disk 26, a keyboard / mouse 28,
An IC card reader 30 as reading means and a fingerprint data reader 34 as biometric information acquiring means are provided.

The hard disk 26 of the client PC 5
Is installed with an operating system (OS) such as Microsoft Windows. Also, the matching software as the matching means is provided on the hard disk 26.
Installed in

This matching software not only has a function of comparing authentication data to determine whether the user is a valid user, but also encrypts data using an asymmetric key method or a common key method. And a function of performing a decoding process. The CPU 20 performs calculations necessary for the encryption and decryption processing.

Note that the asymmetric key method is an encryption method for encrypting and decrypting data using two pairs of keys, and is also called a public key method. One is called a public key because it is widely disclosed to others, and the other is called a private key because it is strictly managed so that only the person can understand it. Data encrypted with the private key can only be decrypted with the corresponding public key, and data encrypted with the public key can only be decrypted with the corresponding private key. Therefore, there is no need to transport the key through a secure route, and the key management is easier and more secure than in the common key cryptosystem. As a specific encryption method, there is an RSA method utilizing the difficulty of factorizing a huge integer.

On the other hand, the common key system refers to an encryption system using the same key for encryption and decryption. For this reason, it is necessary to share a secret key using a secure path in advance before transmitting / receiving a ciphertext. Typical symmetric key cryptosystems include DES, FEAL, MISTY, IDEA, and the like.
The IC card reader 30, which is a reading means,
A function is provided for reading data for authentication (authentication data) recorded on an IC chip or the like.

The IC card 32 as a data recording medium includes:
An IC chip that can record authentication data is incorporated.
Data and the like based on the biological information of the user are recorded in the IC chip in advance.

The IC card 32 has an identifier such as a hologram in which a digital watermark is incorporated to prevent forgery. Digital watermarking is a technique for directly writing other information in image or audio data within a range that does not impair the image or audio. Here, it is used to determine the authenticity of the IC card 32.

The fingerprint data reader 34 serving as a biometric information acquisition means has a function of acquiring fingerprint information from a user when using the client PC 5. Specific examples of the fingerprint data reader 34 include Sony's “Sony Finger
print Identification UnitFIU-700 '', Fujitsu's `` Fing
sensor FS-200P "can be used.

[Process of Recording Authentication Data on IC Card]
As described above, in this embodiment, an IC card is used as a data recording medium at the time of authentication. Therefore,
In order to perform user authentication, it is necessary to create an IC card and distribute it to users who are to be authenticated in advance.

A procedure for creating an IC card for recording data used for the authentication will be described below with reference to FIGS. FIG. 5 shows an IC for generating an IC card.
FIG. 2 is a diagram illustrating a configuration of a card generation device. FIG. 6 is a flowchart showing a process until data used for authentication is recorded on the IC card.

As shown in FIG. 5, the IC card generation device
CPU 20, memory 22, display 24, hard disk 26, keyboard / mouse 28, IC card writer 3
1. It has a fingerprint data reader 34 which is a biological information acquisition unit.

The IC card writer 31 has a function of writing authentication data in the storage section of the IC card 32. Also IC
Encryption software for encrypting and decrypting data is installed on the hard disk 26 of the card generation device. The CPU 20 performs operations necessary for such processes as encryption and decryption.

First, a user who is going to be authenticated receives an IC
A finger touches the fingerprint data reader 34 of the card generation device.
Thereby, the fingerprint data reader 34 starts reading the fingerprint as shown in FIG. 6 (step S10).
1). Further, the fingerprint data reader 34 extracts fingerprint features and generates fingerprint data f (step S10).
3). Here, a process of generating digital data from analog data called a fingerprint is performed.

The process for obtaining the fingerprint data f is performed by a certain algorithm. For example, in general, the minutia (mi
nutiae) by acquiring data from the characteristics. The number of minutiae per finger is 100 on average, and it is said that if two or more minutiae match between two fingerprints, the fingerprint can be determined to be the same finger of the same person. Therefore, if the fingerprint data acquired here is data based on the characteristics of 12 or more minutiae, a sufficient recognition rate can be obtained in user authentication.

A specific example of generating fingerprint data f from a fingerprint will be described below.

First, optical scanning is performed by the fingerprint data reader 34.
To capture fingerprint patterns and filter them
Binarize after applying. In addition, a binary pattern
And detect Minisha. At this time, around the feature point
Measurement of the shape of the ridgeline of
Exclude. About the finally extracted singular point,
Select four child feature points around the feature point (parent feature point)
Relation between the position (x, y), direction (d), and child feature point of the feature point
(R1, R2, R3, R4) fingerprint data
Generate In other words, the feature data of one finger in this case is
(Xⁱ, Yⁱ, D ⁱ, R1ⁱ, R2ⁱ, R3ⁱ, R4ⁱ) (I = 1,
2, ..., N), and the fingerprint data f
It can be generated by arranging them together.

The number of sets is required to be at least such that the same person can determine the same finger. In addition, the relation R is made an invariable amount by using the number of ridges between the feature points in consideration of the deformation of the skin.

After generating the fingerprint data f, the encryption software installed on the hard disk 26 of the IC card generating device generates a set of asymmetric keys (step S10).
5). That is, here, a public key P which is a first asymmetric key and a secret key S which is a second asymmetric key are generated. In addition, as an asymmetric key generation method, an RSA scheme which is a power-of-multiplication type is used. The RSA scheme is the most typical asymmetric key scheme and is characterized by utilizing the difficulty of factoring large integers.

In this embodiment, an asymmetric key is used.
Although the RSA scheme is adopted, the RSA scheme has a one-way data process using a key, and has no direction for encryption and decryption. For this reason, in the RSA scheme, encrypting with a public key and further encrypting with a secret key is the same as returning to the original data. However, the encryption process can be performed a plurality of times using only the public key (only the private key is acceptable).

Next, the user inputs his / her own password W via the keyboard 28. The IC card creation device reads the password W into the memory 22 (Step S107).

The encryption software recorded on the hard disk 26 performs a process of generating a common key Wc using the password W as seed data (step S109). The common key Wc generated here is uniquely determined by the password W.

Further, the encryption software encrypts the secret key S (generated in step S105) using the common key Wc. As a result, data Wc [S] encrypted with the common key Wc generated based on the password W is generated (step S111). The password used here is the one set in advance by the user.

As a method for generating the common key Wc, a DES method, which is a typical block cipher type, is used. A block cipher is a type of cipher in which an average is divided into blocks and a cipher conversion is performed for each block. For example, a substitution method (a method of replacing a character with another character), a transposition method (a method of changing the order of characters), and the like. However, here, a combination of these is used.

Next, the encryption software encrypts the fingerprint data f using the public key P (already generated in step S105), and generates data P [f] encrypted with the public key (step S113). The data P [f] is further encrypted by using the public key P to generate P [P [f]] (step S115).

As described above, data P [P [f]] is generated by doubly encrypting the fingerprint data f using the public key P. The data P [P [f]] is the first encrypted biometric data recorded on the data recording medium.

The IC card writer 31 adds, to the inserted IC card 32, the public key P in addition to the data P [P [f]] (generated in step S115) double-encrypted with the public key P described above. (Created in step S105)
And the data W [S] encrypted with the common key C (already generated in step S111).

By the above processing, an IC card is created. This IC card is distributed to users by a system administrator. For example, when the present invention is used for handling cash using a cash card in a bank ATM, the bank creates the IC card 32 as described above and distributes it to users.

As described below, the user uses the IC card 32 at the time of user authentication.

[User Authentication Procedure] An authentication procedure using the IC card 32 created as described above will be described below with reference to FIGS. 7 and 4. FIG. 7 is a flowchart showing a user authentication procedure.

First, a user who is going to receive user authentication touches the fingerprint data reader 34 of the client PC 5 with a finger. As a result, the fingerprint data reader 34 starts reading the fingerprint (step S201). further,
The fingerprint data reader 34 of the client PC 5 extracts fingerprint features and generates fingerprint data f '(step
S203). Here, the same digital data generation processing (the processing in step S103 in FIG. 6) as described in the method for generating fingerprint data at the time of generating an IC card is performed.

On the other hand, the user inserts his or her own IC card 3 into the IC card reader 30 of the client PC 5 shown in FIG.
Insert 2. As a result, the IC card reader 30
The public key data P recorded on the card 32 is read (step S205). Further, the collation software uses the public key data P to encrypt the fingerprint data f ′ generated in step S203 to generate data P [f ′] (step S207). This data P [f ′] is one collation data (second encrypted biometric data) to be compared and collated later, and is recorded in the memory 22. The IC card reader 30 simultaneously reads the digital watermark data from the hologram provided in the IC card 32 and judges the authenticity of the IC card 32.

Next, the user operates the keyboard / mouse 2
The password W is input to the client PC 5 via the password 8. Thereby, the client PC 5 sets the password W
Is obtained (step S209). It should be noted that the password entered here is, of course, the same as the password entered when the above-mentioned IC card was created (step S107 in FIG. 5). Using this password W, a common key Wc is generated by the DES method in the same manner as in the processing in step S109 (see FIG. 5).

The IC card reader 30 of the client PC 5 reads the data Wc [S] recorded on the IC card 32 (Step S211). In addition, matching software
Using this common key Wc, the data Wc [S] read from the IC card 32 is decrypted and returned to the state of the original secret key S (step S213).

Next, the IC card reader 30 of the client PC 5 reads the data P [P
[f]] is read (step S215). Note that data P
[P [f]] is obtained by doubly encrypting the fingerprint data f with the public key P.

Further, the collation software uses the decrypted secret key S to read the data P read from the IC card 32.
[P [f]] is decrypted and data P [f] is encrypted
(Step S217). This single encrypted data P [f] is the other collation data (third encrypted biometric data) to be compared and collated by the collation software.

The collation software compares the second encrypted biometric data P [f ′] (the fingerprint data read out by the fingerprint data reader 34 in step S207) recorded in the memory 22 with the third encrypted biometric data P [f ′]. Encrypted data P [f]
(The data P [P [f]] read from the IC card 32 by the IC card reader 30 and decrypted in step S217) is compared and collated to determine the identity of the two data. A user authentication process is performed (step S219).

As a result of the comparison and collation, if the collation means determines that both data are the same, the user is authenticated as a valid user, and the security protection state in the client PC 5 is released (step S221). This then
Communication can be performed between the client PC 5 and the server 1 and access to the server 1 can be executed.

On the other hand, if the collation software determines that the two data are not the same, the user is not authenticated as a valid user, and the security protection state in the client PC 5 is not released (step S223). That is,
In such a case, there is a high possibility that the third party is spoofed by a malicious third party, so that access cannot be performed between the client PC 5 and the server 1. In such a case, it is desirable to warn the security administrator by issuing a warning to the server 1 from the client PC 5.

[Other Embodiments] In this embodiment, in order to generate the first encrypted biometric data to be recorded on the IC card 32, the fingerprint data f is converted to a public key P which is one of asymmetric keys. However, the present invention may be implemented by generating first encrypted biometric data by double-encrypting fingerprint data with a common key.

In this embodiment, the first encrypted biometric data read from the IC card 32 is decrypted with an asymmetric key, and then compared with the second encrypted biometric data. However, the first encrypted biometric data may be compared with the second encrypted biometric data as the third encrypted biometric data without decrypting the first encrypted biometric data.

For example, in this embodiment, data P [P [f]] double-encrypted with the public key P is recorded on the IC card 32 as the first encrypted biometric data. The second encrypted biometric data as it is
This case corresponds to a case where the data is compared with the encrypted biometric data P [P [f]]. In this case, the second encrypted biometric data is
The fingerprint data f 'obtained at the time of use is double-encrypted with the public key P to generate it.

Further, as described above, the comparison and collation of the second and third encrypted biometric data are not limited to being performed in a single encrypted state, but may be performed in a double encrypted state or more than once. The comparison and collation may be performed in a state in which the comparison is performed.

In this embodiment, fingerprint information is used as biometric information. However, other personal attribute information such as voiceprint, handwriting, and retinal eyeprint may be used.

In this embodiment, the RSA method is used as a method of generating an asymmetric key, but other methods of generating an asymmetric key such as the DSA method may be used. In addition, although the DES method, which is a block cipher type, is used as the common key generation method, a stream cipher type may be used.

In this embodiment, the public key P is used as the first asymmetric key and the secret key S is used as the second asymmetric key. However, the present invention is not limited to this, and the secret key is used as the first asymmetric key. Public key P may be used as S as the second asymmetric key.

In this embodiment, the fingerprint data f is generated based on the characteristic of the minutiae. However, the present invention is not limited to this. The fingerprint data f is generated by simply converting the ridge shape into bitmap data. The data f may be generated.

In this embodiment, the common key W
password W set in advance by the user to generate c
However, personal attribute information such as fingerprint information may be used as the password.

Although the IC card 32 is used as the data recording medium in this embodiment, a magnetic card, a USB key, or the like may be used.

In this embodiment, the present invention is used for the authentication for releasing the security state of the client PC 5, but the present invention is not limited to this. It can also be used for handling.

In this embodiment, it is assumed that the server 1 exists, but the server 1 may not exist. For example, there is a case where only the client PC 5 is connected to the network 3. Further, the present invention can be used for authentication only in the client PC 5.

[Brief description of the drawings]

FIG. 1 is a schematic diagram of the present invention.

FIG. 2 is a schematic diagram of an embodiment of the present invention.

FIG. 3 is a diagram showing a system configuration for implementing the present invention.

FIG. 4 is a diagram showing a configuration of a client PC.

FIG. 5 is a diagram showing a configuration of an IC card generation device.

FIG. 6 is a flowchart showing a procedure until data is recorded on a data recording medium.

FIG. 7 is a flowchart illustrating a user authentication procedure.

[Explanation of symbols]

 1 Server 3 Network 5 Client PC 20 CPU 22 Memory 24 Display 26 Hard disk 28 Keyboard / mouse 30 IC card reader 31 ・ ・ ・ IC card writer 32 ・ ・ ・ IC card 34 ・ ・ ・ Fingerprint data reader

──────────────────────────────────────────────────の Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat ゛ (Reference) H04L 9/00 673E (72) Inventor Keiji Ueno 2-4-16-1 Uchihonmachi, Chuo-ku, Osaka-shi, Osaka AE09 AE25 AE29 5J104 AA07 AA14 AA16 EA06 EA18 KA01 KA05 KA16 KA17 NA02 NA05 NA35 NA37 NA38

Claims (10)

[Claims] 1. A reading means for reading out first encrypted biometric data from a data recording medium in which first encrypted biometric data obtained by encrypting biometric information of a user at least once is recorded in advance. A biometric information acquiring unit for acquiring the biometric information from the user; and a second encrypted biometric data obtained by encrypting the biometric information from the biometric information acquiring unit at least once to obtain the first encrypted biometric data. An authentication device, comprising: verification means for comparing and verifying third encrypted biometric data obtained based on the encrypted biometric data with second encrypted biometric data. 2. The method according to claim 1, wherein the first encrypted biometric data obtained by encrypting the biometric information of the user at least once is read from a data recording medium in which the first encrypted biometric data is recorded in advance. And obtains the second encrypted biometric data by encrypting the biometric information obtained from the user at least once, based on the first encrypted biometric data read from the data recording medium. A program recording medium for recording a program for causing an authentication device to execute a process of comparing and collating the obtained third encrypted biometric data with the second encrypted biometric data. 3. The authentication device according to claim 1 or the program recording medium according to claim 2, wherein the first encrypted biometric data is used as the third encrypted biometric data as it is. 4. The authentication device according to claim 1 or the program recording medium according to claim 2, wherein the first encrypted biometric data includes biometric information of a user.
The third encrypted biometric data is heavily encrypted, and the third encrypted biometric data is obtained by decrypting the first encrypted biometric data once. 5. The authentication device or the program recording medium according to claim 4, wherein the first encrypted generated data double-encrypts a user's biometric information with a first asymmetric key. Wherein the encrypted generated data is obtained by decrypting the first encrypted generated data once with a second asymmetric key. 6. The authentication device or the program recording medium according to claim 5, wherein the data recording medium further includes an encryption device that encrypts the first asymmetric key data and the second asymmetric key at least once using a common key. The encrypted encrypted asymmetric key data is decrypted once using the common key generated based on the data obtained from the user at the time of authentication. Second generated
The first encrypted data is obtained by decrypting the first encrypted generated data using the asymmetric key of (1). 7. A data recording medium on which biological information of a user is recorded, wherein at least the biological information is double-encrypted and recorded. 8. A data recording medium on which biometric information of a user is recorded, wherein at least data obtained by double-encrypting biometric information with a first asymmetric key, first asymmetric key data, and a second asymmetric key are stored. A device characterized by recording data encrypted at least once. 9. The data recording medium according to claim 7, wherein said data recording medium has an identifier incorporating a digital watermark. 10. A first encrypted biometric data obtained by encrypting a user's biometric information at least once is recorded in a data recording medium in advance, and when the first biometric data is used, the first encrypted biometric data is read from the data recording medium. Reading the generated data, obtaining the biometric information from the user, encrypting the biometric information obtained from the user at least once to obtain second encrypted biometric data, and reading the first biometric data read from the data recording medium. And comparing and comparing the third encrypted biometric data obtained based on the encrypted biometric data with the second encrypted biometric data.