JP2003132290A - Personal authentication method and system, personal authentication program and recording medium recording program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a personal authentication method superior in reliability and usability as needed capable of easily and positively achieving an optional degree of security. SOLUTION: A user symbol per authentication applicant comprised by arranging notations, figures or symbols including a combination of these or a combination of these and colors is distributed to a user. When the user accesses to a service needing authentication, a question regarding a symbol included in the user symbol is displayed in addition to an ID and a password. The user replies to the question by checking a relevant check box from check boxes displayed in a terminal. Data prepared by a check position is sent to a service providing system side and verified.

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to the field of personal authentication such as settlement transactions on a communication network, and in particular, a usage card such as a contractor card is distributed in advance for each authentication applicant and is described on the usage card. The present invention relates to a method for authenticating the authentication applicant by collating an authentication question based on existing authentication data with the answer data input from the authentication applicant.

[0002]

2. Description of the Related Art In settlement transactions and the like on a communication network, personal authentication using various information has been performed, and an unspecified number of people have come to use various services provided by companies. In such a case, for example, it is necessary to realize the personal authentication by performing the collation work by using the ID and password input by the service user on the computer. A method has been provided in which the concept of a one-time password is added to this personal authentication technology, and the information requested to be input is changed at each authentication opportunity to improve confidentiality. For example, the technology of the contractor confirmation method disclosed in JP-A-9-305541 corresponds to that. This technology
For example, a usage card on which a random number table displayed in a matrix is printed is distributed in advance to a “contractor”, and the number entered at a predetermined position of the matrix in the random number table is requested to be input to the contractor, and the predetermined position Personal identification is achieved by performing collation work on numbers.

[0003]

In the above-described prior art personal authentication, the target of verification is, for example, a number written in a random number table, and in that case, the range of information that can be requested to be input to the "contractor" is also included. Limited to combinations of numbers 0-9. Also, if there are a large number of contractors, it is necessary to create a large number of different random number tables, so it is necessary to enlarge the random number table itself. However, if a large random number table is printed on a card such as a bank card or credit card, the numbers will be arranged in fine lines.

It is an object of the present invention to provide a personal authentication method which is excellent in usability and reliability as required and which can easily and surely achieve an arbitrary security level.

[0005]

The personal authentication method of the present invention for achieving the above object is configured as follows. In the personal authentication method in the system in which the authentication applicant terminal and the authentication server are connected by a network, reply source data including a code is distributed to the authentication applicant in advance. The authentication server encodes and records the sequence of codes included in the response source data distributed to each authentication applicant.
When there is a connection request from the authentication applicant terminal to the authentication server, the authentication server creates an authentication question that answers in a check box format where the specific code is, and sends it to the authentication applicant terminal. Here, the authentication question is created randomly for each connection request or according to a rule. Also, the answer creating program executed by the authentication application terminal and the symbol code correspondence table referred to by the program are transmitted together. The authentication applicant terminal displays the received authentication question, accepts the answer from the authentication applicant, and returns it to the authentication server. The authentication server compares the received response with the data recorded in the authentication database to determine whether the response from the authentication applicant is correct, and permits the connection if the determination result is correct.

[0006]

BEST MODE FOR CARRYING OUT THE INVENTION Embodiments of the present invention will be described in detail below with reference to the drawings. FIG. 1 is a diagram showing a usage card in the embodiment. In FIG. 1, reference numeral 100 denotes a usage card, and on the usage card, a user ID 101, a contractor name 102, a circle assigned to each user,
Shapes such as stars, squares, and rhombuses, and a color 103 such as white or black are added to each shape, and symbols 103 that can be easily identified visually are described. In FIG. 1, the usage card 100 is “contract card”, the user ID 101 is “111122223333”, the name 102 is “Taro Yamada”, and the symbol 103 is “○ ● ◆ □ ◇ ☆ ■
★ "is printed. The usage card 100 is, for example, a credit card size card, and the material is
Various materials such as paper, wood, plastic, rubber, metal, glass, vinyl, ceramic, a computer-readable recording medium, and a computer memory can be used. The medium can have various flat shapes such as a card, a cube, and a sphere. Note that the symbol 103 is not limited to the example illustrated here, and other visually identifiable characters, symbols, figures, colors, or a combination thereof can be used. For example, a more complicated symbol combination than this example can be used. Is possible,
It is also possible to use anime characters and illustration figures. It is also possible to include Braille or shapes that can be recognized by touch by tactile sense such as unevenness, or any combination thereof.

FIG. 2 is a block diagram showing an authentication application terminal and a transaction system in this embodiment. 11 in FIG.
Reference numeral 0 denotes an authentication application terminal provided for users who intend to use the transaction system. Examples of this terminal are a personal computer 111, a mobile phone 112, and a digital TV 1.
13 can be used. Reference numeral 130 denotes a transaction system. This transaction system 130 is an authentication server 140 for performing identity authentication, a transaction server 160 for performing transaction operations after identity authentication, a host computer for managing basic information such as customer master information. 190 and a host connection server 180 that provides a connection interface between the authentication server 140 and the transaction server 160 with the host computer.
Composed of. Further, the authentication server 140 and the transaction server 160 each have a database on a storage device such as a hard disk, and the authentication server 140 stores the data used for the authentication in the authentication database 150 and the transaction server 160 is used in the transaction business. Owns a transaction database 170 that stores each data to be processed.

In the authentication database 150, a screen information table 151 that stores various screen data to be transmitted to the authentication application terminal 110, a question information table 152 that stores question data for authentication, and a symbol that stores the correspondence between symbols and codes. A code correspondence table 153, a user information table 154 that stores information such as the contractor's user ID, password, and user symbol code, and an answer creating program 155 that creates an answer code from the user's answer are stored.

FIG. 2 shows that the authentication application terminal 110 and the transaction system 130 are connected to each other via the communication network 120. The authentication application terminal 110 and the communication network 120 are connected to each other by a line and a wireless connection. The communication network 120 and the transaction system 130 are connected by a line as an example. The communication network 120 can employ various communication systems such as a dedicated line, a telephone line, a LAN, and wireless communication. When the communication network 120 is an open communication network, it is desirable to encrypt the data transmitted and received between the authentication application terminal 110 and the transaction system 130. In addition to the PD shown in FIG.
A (Personal Digital Assistance) terminal, game console,
A device including any microcomputer such as a fax machine may be used.

Next, the authentication application terminal 11 in this embodiment
0, the flow of data between the transaction systems 130 will be described below. When the transaction system 130 is accessed from the authentication application terminal 110 operated by the user via the communication network 120, the transaction system 130 first determines whether or not the user is registered in the system and is permitted to access. The authentication server 140 accepts the access. Upon receiving the access from the authentication application terminal 110, the authentication server 140 refers to necessary data from the authentication database 150 via a cable, and transmits / receives data to / from the authentication application terminal 110 as necessary to perform personal authentication. Users are registered in this system,
The user is allowed to make a transaction only when he / she is authenticated with the authorized person, and thereafter, the authentication application terminal 110 makes a transaction by accessing the transaction server 160. The transaction server 160 uses the transaction database 170 via a cable as required when a transaction request is received from a user, and a host computer channel-connected to the host connection server 180 via the host connection server 180. Use the user information managed by 190 to respond to transactions. The authentication server 140 and the transaction server 160 are
W that accepts access requests from each authentication application terminal
An eb server, an application server that includes a processing program for each request and executes the program as necessary, a database server that accesses a database, and a plurality of computers may be divided. In addition, the authentication database 150 and the transaction database 170
May exist in one database or may be combined appropriately.

FIG. 3 is a flow chart showing the processing procedure of the personal authentication method on the side of the authentication application terminal 110 and the side of the authentication server 140. In FIG. 3, step 2000 (hereinafter, s
Abbreviated as 2000. The same applies hereinafter) to s2060 indicate processing steps for personal authentication on the authentication application terminal 110 side, and s
Reference numerals 2200 to s2270 indicate processing steps for personal authentication on the authentication server 140 side. During the steps, communication between the authentication application terminal 110 and the authentication server 140 uses a communication network such as the Internet, and the authentication server 140
Communication between the authentication database 150 and the authentication database 150 uses database access communication. Each of these steps can be realized by a program of a computer, and the program can be stored in a recording medium such as an HDD, FD, CD-ROM or the like.

At the start of the transaction, the authentication application terminal 110 first receives the input from the user and accesses the authentication server 140 (s2000). As the input means of the authentication application terminal 110, a keyboard or a mouse can be used for the personal computer 111, dial buttons can be used for the mobile phone, and a remote controller can be used for the digital TV.

When the authentication server 140 receives an access from the authentication application terminal 110 (s2200), it acquires Logon screen data matching the type of the terminal from the screen information table 151 and sends it to the authentication application terminal 110 (s2).
210). Authentication application terminal is Log from the authentication server 140
When the on-screen data is received, the Logon screen is output to the output device (s2010). The output device of the certification application terminal 110 is a CRT if the personal computer 111.
And a liquid crystal display, a mobile phone 112 can use a liquid crystal display unit, and a digital TV can use a cathode ray tube, a plasma display device, or a liquid crystal display device. These input / output devices may be separated or integrated on the terminal device.

Subsequently, when the user inputs the user ID and password while referring to the user ID 101 of the usage card 100, the authentication application terminal 110 receives the accepted user I
D, password is transmitted to the authentication server 140 (s20
20). When the authentication server 140 receives the user ID and the password from the authentication application terminal 110, the authentication server 140 searches the user information table 154 for the received user ID and the password for the user ID, and uses the registered user in this system. It is determined whether the person is a person (s2220). As a result of the determination, if the user ID received from the authentication application terminal 110 does not exist in the user information table 154, or if the user ID exists but the password corresponding to the user ID is incorrect, the authentication application Transition to step s2270 for transmitting the authentication result to the terminal 110 (s223
0).

When the received user ID exists in the user information table 154 and the password corresponding to the user ID matches, the authentication server 140 outputs the authentication screen data matching the type of the authentication application terminal 110. The question data relating to the user symbol code of the user is randomly obtained from the question information table 152, for example, three pieces, for example, three pieces are obtained at random from the screen information table 151 and combined with the authentication screen data to create question-containing authentication screen data. Yes (s224
0). Next, the authentication server 140 uses the answer creation program 15
5, the symbol code correspondence table 153 is acquired, and the answer creation program 155, the symbol code correspondence table 153, and the authentication screen data with questions are sent to the authentication application terminal 1
10 (s2250). The response creating program 155 may be provided in advance on the authentication application terminal 110 side, and is preferably a small application such as an applet so that the algorithm of the program cannot be easily deciphered.

Upon receipt of the answer creation program, the symbol code correspondence table, and the question-containing authentication screen data from the authentication server 140, the authentication application terminal 110 outputs the question-containing authentication screen to the output device (s2030). After that, the authentication application terminal 110 accepts the answer to the question from the user, and creates the answer code from the answer to the question (position of check box) by the answer creating program and the symbol code derived from the symbol code correspondence table (s2040). ). When the answer code is completed, the authentication application terminal 110 transmits the answer code to the authentication server 140 (s2050). The authentication server 140 is the authentication application terminal 1
When the reply code from 10 is received, it is determined by collating whether the received reply code and the user symbol code in the user information table 154 match. In addition,
If they match, it is determined that they are the person (authentication result OK), and if they do not match, it is determined that they are not the person (authentication result NG) (s2260). When the determination is completed, the authentication result screen data accompanying the authentication result is acquired from the screen information table 151, and the authentication result screen data is transmitted to the authentication application terminal 110 (s2270). Upon receiving the authentication result screen data from the authentication server 140, the authentication application terminal 110 outputs the received authentication result screen to the output device (s2060), and ends the processing.

FIG. 4 is a flowchart showing a processing procedure in which the host computer 190 updates each table in the authentication database. In FIG. 4, s2300 to s2320 represent update processing steps for the symbol code correspondence table 153 and the user information table 154 in the host computer. During the steps, the host computer 1
The communication between 90 and the authentication database 150 is performed via the host connection server.

The host computer 190 determines a new symbol code value (updated value) for each symbol at regular intervals (for example, every few days to one year, the intervals are arbitrary) (s2300). Next, the update values determined in the previous step are collectively downloaded to the authentication database 150, and the symbol code values in the symbol code correspondence table 153 are updated (s2310). Next, user information table 15
The user symbol code value in 4 is updated (s23
20) End the process.

FIG. 5 is a diagram showing a data structure of various tables in the authentication database 150 regarding the personal authentication method according to the embodiment of the present invention. 5, the screen information table 300 is a table that stores screen data for each type of the authentication application terminal 110 and each operation screen, and shows the data structure of the screen information table 151. The question information table 310 is a table that stores question data for personal authentication, and shows the data structure of the question information table 152. The symbol code correspondence table 320 is a table that stores the correspondence between symbol data such as “◯” used in personal authentication and the symbol code, and shows the data structure of the symbol code correspondence table 153. The user information table 330 is a table that stores the personal information of the user, and shows the data structure of the user information table 154. Each table is stored in the authentication database 150.

In FIG. 5, the screen information table 300 stores screen IDs and screen data for each screen as information of screen data transmitted to the authentication application terminal 110.
, "002", ..., "023",
..., as image data, "Internet Logo
n screen data ”,“ Mobile screen data for Logon ”
--- "Mobile authentication success screen data" ... is stored. These screen data are, for example, data described in HTML (HyperText Markup Language) if used on the Internet, or C-HTML (Com
You can use the data described in pact-HTML).

The question information table 310 stores question IDs for each question and question data as questions to be presented to the user, and the question IDs "001" and "00" are stored.
2 ", ..." 020 "..., As the question data," Where is the position of the white symbol? "," Where is the black symbol position? "... ・" ● Where is the symbol position? "... is stored. Note that these question data are HTML as well as screen data.
It is the data described by etc. The symbol code correspondence table 320 stores a symbol ID, symbol data, shape data, color data for each symbol, and a shape code, a color code as a symbol code, as information of a symbol code value corresponding to each symbol data. In this example, the symbol IDs are “001”, “002”, ...
“901” ..., “○” as symbol data,
"☆", ... "Star" ..., Shape data "Circle", "Star", "Square", "Rhombus" ..., Color data "White", "Black" ... , "Aa01", "bb01", ... "bb-" as symbol code ...
• illustrates that is stored. Symbol data consists of a combination of shape data and color data,
Similarly, the symbol code is also composed of a combination of shape code and color code. For example, taking the symbol data “◯” of the symbol ID “001” in the symbol code correspondence table 320 as an example, it is configured by a combination of shape data “circle” and color data “white”. Accordingly, the symbol code corresponding to "○" is also the shape code "aa" corresponding to "circle" and the color code "0" corresponding to "white".
It can be represented by a symbol code “aa01” that is a combination of 1 ”. Note that a symbol indicating only a color, for example, symbol data“ white ”having a symbol ID“ 800 ”has a shape data of“-”, which means“ arbitrary ”. Therefore, the color data is “white.” Therefore, the symbol code of the symbol data “white” is “−” indicating that the shape code is “arbitrary” and “01” indicating that the color code is “white”. Similarly, the symbol data “circle” of the symbol ID “900”, which indicates the symbol of only the shape, also has the shape code “aa” indicating the “circle” and the color code. The symbol code "aa-" is a combination of "-" indicating "arbitrary." In this example, the symbol code is exemplified by a maximum of 4 alphanumeric characters, but a larger number of digits may be used. Information In Le 330, a user ID for each user, password, user name, and stores the user's symbol code, "as the user ID 1111222
23333 "," 444455556666 "...
"Password" as password, "ws23568rt" ...
・ ・ Taro Yamada and Hanako Suzuki as user names ・ ・
., "Aa01: aa0" as the user symbol code
2: dd02: cc01: dd01: bb01: cc0
2: bb02 ”,“ aa01: bb01: cc01: d
d01: aa02: bb02: cc02: dd02 "・
.. is stored. Further, as shown in the figure, the usage card 100 owned by the user shows the contents of the user information table 330, and the user ID 101, the name 102, and the symbol 103 in the usage card 100 are the user information, respectively. The contents of the user ID, the user name, and the user symbol code in the table 330 are shown. Further, the user symbol code in the user information table 330 is recorded as a symbol code instead of the symbol itself (symbol data) based on a code table as shown in the symbol code correspondence table 320. For example,
Symbol 103 shown on the usage card 100 “○ ● ◆ □ ◇ ☆
The first "○" from the left of "★" indicates that the symbol code is "aa" when referred to in the symbol code correspondence table 320.
The code value is 01. Similarly, each symbol “●”, “◆”, “□”, “◇”, “☆”, “■”,
When the symbol code for "★" is obtained and each symbol is separated by the symbol ":", the code value of "bb02" indicating "★" at the rightmost end is "aa01: aa0".
2: dd02: cc01: dd01: bb01: cc0
The user symbol code as shown in the figure is 2: bb02 ″.

FIG. 6 shows L displayed on the authentication application terminal 110.
It is the figure which showed the data relation between the logon screen and the screen information table, and the input example to the logon screen. 40
Reference numeral 0 is an Internet Logon screen, 401 is a column for inputting a user ID, and 402 is a column for inputting a password.

FIG. 6 exemplifies that the screen ID “001” and the “Logon screen data for Internet” are selected as the screen data from the screen information table 300. The Internet Logon screen 400 is stored in the screen information table 300, and when the user accesses the transaction system through the authentication application terminal 110, the authentication server 140 causes the screen information table 300 to be displayed.
Selected from. When the authentication server 140 selects Logon screen data, the accessed authentication application terminal 1
The screen is selected according to the ten types. When the Logon screen is displayed on the authentication application terminal 110, the user inputs the user ID into the user ID input field 401 while referring to the user ID 101 written in the usage card 100, and the password input field 402. Enter the user's password in. When the password is entered in the authentication application terminal 110, it is indicated by a notation such as "*********" in the password entry field. In the figure, the user ID is "11112".
22223333 "and password" password "
This shows a state in which "d" is input.

FIG. 7 is a diagram showing an authentication screen with a question displayed on the authentication application terminal 110, data relation between the screen information table and the question information table, and an input example to the authentication screen with a question. In FIG. 7, reference numeral 500 is an authentication screen with questions, and 510 to 512 are answer check box groups for the respective questions 501 to 503.

In FIG. 7, as an example of the structure of the authentication screen 500 with a question, the screen ID “01
1 ”screen data“ Internet authentication screen data ”
Is selected (arrow 501), and the question data “where is the position of the white symbol?” Of question ID “001” and the question data “star (* and star) symbol of the question ID“ 010 ”from the question information table 310. Where? ”And question data“ Where is the symbol position? ”Of question ID“ 020 ”are randomly selected (502 to 504). The authentication screen data is selected by the authentication server 140 from the screen information table 300 as the screen data according to the type of each authentication application terminal, and the question data is the question data regarding the user symbol code from the question information table 310. Authentication server 140
Randomly select a plurality (in this example, three are selected).

When the authentication screen 500 with questions is displayed on the authentication application terminal 140, the user first asks for the usage card 100.
While referring to the symbol 103 “○ ● ◆ □ ◇ ☆ ■ ★” of “No.”, enter the answer to the authentication question 1 “where is the position of the white symbol?”. Symbol 10 of this example
3 The position of the white symbol in "○ ● ◆ □ ◇ ☆ ■ ★" is the first, fourth, fifth, and sixth from the left, so the user uses the input device to input 1 of the answer check box 510 as shown in the figure. ,
Check the 4th, 5th and 6th. Question 2 “Stars (☆ and ★)
Where is the position of the symbol? As for the response to “,” the six and the eighth from the left of the symbol 103 correspond, and therefore, 6 in the response check box 511, as shown in the figure.
Check the 8th checkbox. Question 3 "●
Where is the position of the symbol? Symbol for "
Since only the second from the left of 03 corresponds, only the second check box in the answer check boxes 512 is checked as shown in the figure. In this way, if it is urged to input the answer in the check format by the authentication applicant, the answer input operation is extremely simple, and it is preferable that an error is unlikely to occur. Also, since the check boxes are only checked using an input device such as a mouse or arrow keys, a keyboard, etc. (not shown)
It doesn't bother you to type letters from. The visually handicapped person may ask a question by voice, and may touch the Braille or embossed symbols to answer the authentication question from any input device. Also, if the authentication question changes for each authentication opportunity,
While it is difficult for a third party to spy on or spoof the answer corresponding to the authentication question, no matter how many authentication questions change, it is relatively simple and recognizable as an authentication applicant. Since it is only necessary to make a visual response based on the user symbol in which the symbols and the like are arranged in several digits, it is possible to maintain the convenience of personal authentication.

FIG. 8 shows the answer to the question of personal authentication.
It is a figure which shows that the answer creation program 155 creates an answer code. The answer creating program 155 is executed on the authentication application terminal 110 side as shown in s2040 of FIG. Reference numeral 600 denotes a step in which the answer creating program 155 creates the answer code 610.
Is an answer code created from the check position in the answer check box 510 and the code information in the symbol code correspondence table 154. Reference numeral 602 denotes an answer code created from the check position in the answer check box 511 and the code information in the symbol code correspondence table 154. 603 is a check position in the answer check box 512 and the symbol code correspondence table 15
It is an answer code created from the code information of No. 4. Further, 610 is a logical sum (O) of the reply codes 601 to 603.
R) A reply code calculated by calculation and finally transmitted to the authentication server.

The response code 610 "-" finally created
01: aa02: ---:-01: -01: bb01:-
"-: Bb-" is derived by the sum (OR) operation of the shape code and color code unit forming each symbol code in each of the reply codes 601 to 603. As shown in this example, the reply code 601 "-01: ---: ---:-01: -01:-
01: ---: --- "and the reply code 602"---:-"
-: ---: ---: ---: bb-: ---: bb- "and reply code 603" ---: aa02: ---: ---: ---:
When a sum (OR) operation of "-: ---: ---" is performed, the first symbol code from the left of each of the reply codes 601 to 603 is focused and "-01" + "-" + "-"
If the sum (OR) operation is performed for each shape code and color code that form a symbol code, the first result from the left is as shown in the first from the left of the reply code 610. It becomes “-01.” More specifically, first, the sum (OR) of the shape codes in each symbol code.
"-" + "-" + "-" Is executed in the calculation, and the result "-"
Then, the color code sum (OR) operation is performed to obtain "0".
1 "+"-"+"-"is executed, and as a result" 01 "is derived. Finally, the shape code result and the color code result are combined to obtain the symbol code" -01 ".
Taking the sum (OR) operation of the second symbol code from the left among the answer codes of 01 to 603 as an example, “−−” +
"---" + "aa02" is executed, and as a result, "aa0"
2 "is calculated in the same manner. Then, when the shape code and color code of each symbol code are summed (OR), the answer code 610 indicates" -01: aa02: ---: ".
-01: -01: bb01: ---: bb- "is calculated. When calculating with the OR operation expression, if an attempt is made to combine different codes other than"-"which means arbitrary, an error occurs. Therefore, the personal authentication is determined to be NG.For example, a pattern of “01” + “01” or “−” + “a” is given.
a ”is the sum (OR) of“ 01 ”s having the same code value
"-" And "a" that are performing arithmetic and mean arbitrary
No error occurs because of the sum (OR) operation with a. However, the pattern of "02" + "01" or "aa" + "b"
As for b ”, an error occurs because the codes other than“ − ”and the different codes are operated.

In addition to the calculation, the answer creation program 1
The symbol code correspondence table 154 that 55 refers to when creating the reply codes 601 to 603 is on the authentication server side, not on the authentication application terminal 110 side, and the reply creating program 155 causes the authentication server 140 to create the reply code every time the reply code is created.
A method of referring to the side may be used. In addition, the format of the response data is not coded other than that shown in this figure, and the symbol itself (symbol data) such as "○" is used for "○-
It may be in the form of "-"-"*", etc. When the symbol itself is used, there is no need to convert the symbol into a code, so the response creation program 155 is unnecessary. Because it is limited,
Color data such as "Where is the position of the white symbol?" And "Where is the position of the star (☆ and ★) symbol?"
Since the question concerning only the shape data cannot be asked (the answer to the question cannot be symbolized), the question is limited, and since the answer is made using the symbol itself, the user symbol is easily deciphered.

FIG. 9 is a diagram showing a procedure for creating an answer code for the question 1 by the answer creating program 155. In FIG. 9, the answer creation program 155 displays the question 1
Using the check position in the answer check box 510 for “where is the position of the white symbol?” And the symbol code correspondence table 320, the answer code 601 is “-01: ---: ---:-01: -01:-. 01:-
-: --- "is illustrated. The procedure for creating the answer code 601 is described below. First, the answer creating program 155 asks the question ID 001" where is the position of the white symbol? " In order to identify which symbol the question is, the answer creating program 155 retrieves the symbol data “white” from the symbol code correspondence table 320 in this example because the question is the “white symbol”. The symbol code “-01” corresponding to the “white symbol” is derived. When the symbol code for the question is derived, the answer creating program 155 then refers to the answer check box 510 and searches for the checked part. In the answer check box 510, the first, fourth, fifth, and sixth from the left are checked, so the checked part, that is, the first, fourth, fifth, sixth from the left of the answer code 601 is the “white symbol Set the symbol code "-01" which means "." In the answer code, where nothing is set (the book In 2 from the left,
The third, seventh, and eighth positions are set to "-", which means any value, as a default (standard value). What was completed by the above procedure is the question ID 001 "where is the position of the white symbol?" And the answer code 601 for the answer check box 510 "-01: ---: ---:-01: -01:
-01: ---: --- ".

FIG. 10 is a diagram showing a procedure for creating an answer code for the question 2 by the answer creating program.
In FIG. 10, the answer creation program 155 displays the question ID 0
10. The check position in the answer check box 511 for "where is the position of the star (☆ and ★) symbol?" And the symbol code correspondence table 320 are used, and the answer code 602 is "---: ---: ---:- −: −−: b
b-: ---: bb- "is illustrated.
The procedure for creating the answer code 602 will be described below. First, the answer creation program 155 uses the question data 502 “star (☆
And ★) Where is the symbol position? In order to identify what symbol the question is, the answer creating program 155 retrieves the symbol data “star” from the symbol code correspondence table 320 and “ The symbol code "bb-" corresponding to the "star symbol" is derived. When the symbol code for the question is derived, the answer generation program 15
Reference numeral 5 refers to the answer check box 511 to search for a checked portion. In this example, since the sixth and eighth check boxes from the left of the answer check box 511 are checked, the checked part, that is, the response code 602.
The symbol code "bb-" which means "star symbol" is set to the sixth and eighth from the left. In the answer code, the part where nothing is set (1, 2, 3, from the left in this example)
The fourth (5th, 7th) are set to "---" which means arbitrary as a default (standard value). After completing the above steps, the question ID 010 "Where is the star (☆ and ★) symbol?", And the answer code 602 to the answer check box 511 "-: ---: ---: ---:-
-: Bb-: ---: bb- ".

FIG. 11 is a diagram showing a procedure for creating an answer code for the question 3 by the answer creating program.
In FIG. 11, the answer creation program 155 displays the question ID 0
20. The check position in the answer check box 512 for “where is the position of the symbol?” And the symbol code correspondence table 320 are used as the answer code 603 “---: aa02: ---: ---: ---:- −: −
An example of creating ": ---" is described below. The procedure for creating the answer code 603 will be described below. First, the answer creating program 155 asks the question data 503 "● Where is the symbol position? In order to identify which symbol the question is, the answer creating program 155 searches the symbol code correspondence table 320 for the symbol data “●”, and identifies the symbol. ● The symbol code “aa0” corresponding to the symbol
2 ”is derived. When the symbol code for the question is derived, the answer creating program 155 then refers to the answer check box 512 and searches for the checked part. In this example, 2 from the left in the answer check box 512. Since only the second is checked, the symbol code "aa0" that means "● symbol" is shown only in the checked part, that is, only the second from the left of the answer code 601.
2 "is set. In the answer code, the part where nothing is set (in this example, 1, 3, 4, 5, 6, 7, 8 from the left)
The second is set as a default (standard value) of "---", which means arbitrary. What was completed by the above procedure,
Question ID 020 “Where is the position of the symbol?”
And answer code 6 for answer check box 512
03 "---: aa02: ---: ---: ---: ---:-
−: −− ”.

FIG. 12 is a diagram showing examples of successful and unsuccessful personal authentication when the answer code transmitted from the authentication application terminal is collated with the user symbol code in the user information table. In FIG. 12, 620 is an example of an answer code when the personal authentication fails, 1000 is an authentication result screen when the personal authentication is successful, and 1010 is an authentication result screen when the personal authentication fails.

In FIG. 12, as an example of successful personal authentication, the screen data “Internet authentication success screen data” of screen ID “021” is selected from the screen information table 300, and the user information table 330 is authenticated. As the user ID of the user, "11112222333
3 ”,“ Taro Yamada ”is selected as the user name, and the Internet authentication success screen 1000 is established. Further, as an example in which the user authentication fails, the screen ID“ 022 ”is displayed from the screen information table 300. Screen data “Internet authentication failure screen data” is selected.

First, based on the example (a) in which the personal authentication is successful,
The procedure for performing personal authentication is described below. When the authentication server receives the response code 610 from the authentication application terminal,
The user symbol code in the user information table 330 is collated to authenticate the person. As the authentication procedure, one symbol code in the response code 610 and one user symbol code in the user information table 330 are set from left to right.
Match one by one. In addition, since "-" in the reply code 610 means arbitrary, it is not a target of collation and "-"
Perform authentication at locations other than. As a result, the person is judged only when all values other than "-" match the user symbol code. If it is determined that the person is the screen information table 30
Authentication result screen 1000 when personal authentication is successful from 0
As a result, the “Internet authentication result success screen data” is acquired, and the user ID and the user name which are the collation targets in the user information table 330 are transmitted to the embedded authentication application terminal.

Next, an example (b) in which the personal authentication fails will be described below. When the authentication server receives the reply code 620 from the authentication application terminal, the reply server 620 collates the reply code 620 with the user symbol code in the user information table 330 in the same manner as in the above-described successful example, and authenticates the person. Answer code 6
If there is even one place other than the “-” in 20 that does not match the user symbol code of the user information table 330, it is determined that the person is not the person, and the person authentication fails from the screen information table 300. In this case, the “Internet authentication result failure screen data” is acquired as the authentication result screen screen 1010 and transmitted to the authentication application terminal. In this example, the third code from the left in the reply code 620, “-
Since "01" is different from the user symbol code, it is determined that the user is not the person himself.

In FIG. 13, each screen 400 for the Internet in each processing of personal authentication described so far.
10 to 1010 are illustrated as transition relationships. After the user accesses the authentication server, when the Internet Logon screen 400 is displayed on the output device of the authentication application terminal, the user inputs the user ID and the password on the screen 400 to log on the authentication server. As a result, if Logon is successful, the screen data 500 is returned from the authentication server, and the screen changes to the Internet authentication screen 500. If Logon fails, the authentication server returns a screen 1010 and the authentication result screen for Internet 101
Transition to 0. When the Internet authentication screen 500 is displayed when Logon is successful, the user inputs an answer to each authentication question in the screen 500. When the answer input is completed, the authentication server side authenticates the person, and if the authentication is successful, the authentication server returns the Internet authentication result screen 1000 indicating that the authentication is successful,
After that, various transaction screens are displayed. When the personal authentication fails, the screen 1010 is returned from the authentication server and the screen transitions to the Internet authentication result screen 1010, as in the case where Logon fails.

FIG. 14 is a diagram showing screen transitions when personal identification is carried out by the mobile phone 112 (mobile device). Reference numeral 1100 is a Logon screen for mobile devices, and 1110 to 1130 are mobile authentication screens. Note that 1140 is a mobile authentication result screen upon successful authentication, and 1150 is a mobile authentication result screen upon failed authentication. Mobile authentication screen format 1100-11
30 is different from the display format of the authentication screen format 500 for the Internet because performances such as the display area size and resolution of the output device in the authentication application terminal are different. In this example, the personal authentication screen displayed on one screen for the Internet is displayed as mobile phone screens with 1101 to 1130 and the question N.
It is shown that the display is divided for each o.

FIG. 15 is a diagram showing a symbol code correspondence table, a user information table, and an answer code that changes in association with the symbol code correspondence table, which change at regular intervals in response to an instruction from the host computer 190.

Reference numeral 325 is a symbol code correspondence table in which the symbol code after a fixed interval has changed, and reference numeral 335 is also a user information table in which the user symbol code has changed. Further, 615 is an answer code in which the code value after a fixed interval has changed. In FIG. 15, new symbol codes are downloaded at regular intervals controlled by the host computer 190, and the symbol code correspondence table 3 is downloaded.
The symbol codes of 20 are "aa01", "bb01",
··· From “bb-” ··· to 325 as indicated by “e”
d97 "," ca97 ", ..."Ca-"...
And the user symbol code in the user information table 330 is "aa01: aa02: dd02: c".
From c01: dd01: bb01: cc02: bb02 ”to 335,“ ed97: ed81: bc81:
ee97: bc97: ca97: ee81: ca81 ″
It is illustrated that it is changed to. Further, as a result, the response code 610 is "-01: aa02: ---:-01:-.
01: bb01: ---: bb- "to"-"shown at 615
97: ed81: ---:-97: -97: ca97:-
It is also illustrated that it changes to −: ca− ″.

The purpose of changing the symbol code at regular intervals as shown in FIG. 15 is to change the response code 610 flowing on the communication network at regular intervals, steal it from a third party,
This is to make it difficult for impersonation due to information leakage. For example, as shown in the figure, when the symbol code correspondence table 320 is changed to 325 after a certain interval and the user information table 330 is changed to 335 accordingly, the created reply code is also a value as shown in 610 and 615. Is different. Even if the response code value is different at regular intervals, the response code value and the user symbol code in the user information table are synchronized, so there is a problem in collating the code for personal authentication. Absent. To give a concrete example, the symbol code correspondence table 3 before the change
The symbol codes corresponding to the symbol data “◯” shown in 20 are “ed97” as shown by “aa01” to 325.
When changed to 3, the user symbol code of the user ID “111122223333” in the user information table 330 is also changed from “aa01” (first from the left) to 3
As shown in 35, it is changed to "ed97". Similarly, for other symbol codes, the value changed in the symbol code correspondence table is also reflected in the user information table to maintain the symbol code synchronization between the tables. Therefore, the reply code created by the answer creation program and the user symbol code in the user information table are kept in synchronization, and the user authentication can be performed without any problem.

As described above, the following effects are achieved in the embodiment according to the present invention. Since the range of information that can be input (answered) for personal authentication is not limited, the security function is not limited. Also,
Even if there are a large number of customers, by changing the shapes and colors of the arranged symbols in any way, it is possible to easily create user symbols that do not overlap between customers and make an input request. . In addition, for example, even in a limited area such as the surface of a card, it is possible to present user symbols by arranging and displaying symbols of several digits in, for example, only one row, which facilitates reply work.

Further, since the answer code flowing on the communication network changes at regular intervals, it becomes difficult to steal it from a third party, which leads to improvement in safety and reliability.

Although an example of one embodiment has been described above, the personal authentication method of the present invention is not limited to Logon of Internet banking, but a situation in which personal authentication such as admission check or net debit is required. Is available at.

[0045]

According to the present invention, it is possible to provide a personal authentication method which is excellent in usability and reliability and can easily and surely achieve an optional security degree as needed. In addition, with the development of browser devices in the future, it is compatible with all devices, maintains usability, and is highly reliable. Especially suitable for next-generation mobile phones, TV banking, etc.

[Brief description of drawings]

FIG. 1 is a diagram showing a usage card according to an embodiment.

FIG. 2 is a configuration diagram showing a transaction system and an authentication application terminal in the embodiment.

FIG. 3 is a flowchart showing a processing procedure of a personal authentication method.

FIG. 4 is a flowchart showing a processing procedure in which the host computer updates each table in the authentication database.

FIG. 5 is a diagram showing a data structure of various tables in an authentication database regarding a personal authentication method according to an embodiment of the present invention.

[Figure 6] Logon screen displayed on the authentication application terminal,
It is the figure which showed the data relation with a screen information table, and the input example to a Logon screen.

FIG. 7 is a diagram showing an authentication screen with a question displayed on the authentication application terminal, data relation between the screen information table and the question information table, and an example of input to the authentication screen with a question.

FIG. 8 is a diagram showing that an answer creating program creates an answer code from an answer to a question for personal authentication.

FIG. 9 is a diagram showing a procedure for creating an answer code for question 1 by an answer creating program.

FIG. 10 is a diagram showing a procedure for creating an answer code for question 2 by an answer creating program.

FIG. 11 is a diagram showing a procedure for creating an answer code for question 3 by an answer creating program.

[Figure 12] Response code sent from the authentication application terminal,
It is a figure which shows the example where personal authentication succeeded and the case where it failed when collating the user symbol code in a user information table.

FIG. 13 is a diagram showing screen transitions when personal authentication is performed on the Internet.

FIG. 14 is a diagram showing screen transitions when personal authentication is performed on a mobile phone (mobile device).

FIG. 15 is a diagram showing a symbol code correspondence table, a user information table, and an answer code that changes in association therewith, which change at regular intervals according to an instruction from the host computer.

[Explanation of symbols]

100 ... Usage card, 101 ... User ID, 102 ... Name, 103 ... Symbol, 300 ... Screen information table, 3
10 ... Question information table, 500 ... Authentication screen with questions,
510,511,512 ... Answer check box

Continued front page    (72) Inventor Hirofumi Kondo             890 Kashimada, Sachi-ku, Kawasaki City, Kanagawa Stock             Hitachi, Ltd. Financial Systems Division (72) Inventor Naoki Tateno             890 Kashimada, Sachi-ku, Kawasaki City, Kanagawa Stock             Hitachi, Ltd. Financial Systems Division (72) Inventor Takeshi Fukami             1-1-1 Otemachi, Chiyoda-ku, Tokyo             Inside the ceremony company Sanwa Bank (72) Inventor Tatsuharu Takemoto             1-1-1 Otemachi, Chiyoda-ku, Tokyo             Inside the ceremony company Sanwa Bank (72) Inventor Yoshiyuki Hirose             1-1-1 Otemachi, Chiyoda-ku, Tokyo             Inside the ceremony company Sanwa Bank (72) Inventor Takayuki Yamamoto             1-1-1 Otemachi, Chiyoda-ku, Tokyo             Inside the ceremony company Sanwa Bank (72) Inventor Koichi Nomura             1-1-1 Otemachi, Chiyoda-ku, Tokyo             Inside the ceremony company Sanwa Bank F-term (reference) 5B085 AE23                 5J104 AA07 KA01 MA02 PA02 PA07

Claims (5)

[Claims] 1. A method in which an authentication applicant terminal and an authentication server are connected by a network, and the authentication applicant performs personal authentication based on response source data distributed in advance to the authentication applicant, wherein the authentication server comprises: An authentication database is provided that encodes and records the symbols or figures contained in the response source data distributed to each certification applicant, or the sequence of codes including the combination thereof or the combination of these and the color, and the certification applicant terminal. When there is a connection request from the authentication server from the, the authentication server creates an authentication question that answers in a check box format where the specific code is, and transmits to the authentication applicant terminal, The authentication requester terminal displays the received authentication question, receives an answer from the authentication requester, and sends the answer to the authentication server. By comparing the received response from the authentication application terminal with the data recorded in the authentication database, it is possible to determine whether the response from the authentication applicant is correct or not, and if the determination result is correct, the connection is permitted. Authentication method. 2. The personal authentication method according to claim 1, wherein the authentication question is created randomly for each connection request or according to a rule. 3. In the step of creating the authentication question and transmitting it to the authentication applicant terminal, further transmitting an answer creating program executed by the authentication applying terminal and a symbol code correspondence table referred to by the program. The personal authentication method according to claim 2. 4. The answer source data is recorded by printing, embossing, or denting on a usage card distributed in advance to the certification applicant, according to claim 3. Authentication method. 5. The authentication database holds a code value corresponding to each code included in the authentication question, and the code value is changed at constant intervals. The personal identification method according to claim 3.