JP2004312210A - Individual authentication method, apparatus, and system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an individual authentication method, apparatus, and system whereby personal information and privacy information are made not open to public. <P>SOLUTION: The authentication section 100 of a camera attached mobile phone 200 includes: an original image recording apparatus 101; a face image data processing section 102 at authentication; an image collation unit 105; a collation discrimination result storage device 106; a collation discrimination result attaching / transmitting unit 107; a camera 108; and an imaging flash unit 109. The original image recording apparatus 101 is structured to record the face image of a possessor of the camera attached mobile phone first photographed by the possessor and to inhibit image modification or second photographing, and is provided with a mechanism that separately stores the number of bytes with respect to data of the video image recorded in the original image recording apparatus 101 and can transmit the number of bytes to a third party as required and make the third party store it therein, and the collation discrimination result attaching / transmitting unit 107 transmits the collation discrimination result of the camera attached mobile phone stored therein to a communication opposite party which requests authentication. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a method for performing personal authentication based on pre-recorded personal information for collation without transmitting the personal information for collation to the outside, that is, for preventing personal information and privacy information from being disclosed indiscriminately. Personal authentication device and method that contribute to the construction of a safe information society.
2. Description of the Related Art Mobile phones and information terminals have come to be used for financial operations such as sending and receiving e-mails, tele-shopping, and bank transfer, and it is necessary to authenticate whether or not the user actually operates the terminal device. It has become important.
Until now, devices that generally recognize terminal users have been able to store personal identification information of the person who requests personal authentication by a service provider who requires personal authentication, either on its own or a third party who manages the information independently of the other party It is assumed that the identity is determined by comparing with personal identification information sent from the partner at the time of the transaction settlement request.
Therefore, in the conventional authentication system, in an electronic payment transaction that requires the identification of an individual, the service provider sends the personal information used as the basis for authenticating the other party to itself or a third party completely independent of the other party, It was necessary to store the other party's personal identification information. In order to satisfy this condition, it is necessary for the other party to provide information required to identify an individual before a specific transaction occurs.
2. Description of the Related Art Conventionally, since the era of identity verification by inputting a keyword or an ID (Identifier) number by key input, an authentication method using biometric information has recently begun. When biometric information is used for authentication in an authentication method using a keyword or an ID number, it is necessary to register such information at a destination requesting authentication. However, sending the most privacy-related information, such as fingerprints, irises, facial photographs, and genetic information, to the other party over the Internet is a procedure that is difficult to understand with general public sentiment, and the public has a strong sense of resistance.
It is necessary to avoid providing biometric personal information (face, iris, fingerprint, gene, etc.) that can identify an individual to the other party in a procedure for authentication via a network such as electronic payment. Providing personal identification information for pre-authentication to the other party in commercial transactions or administrative procedures, etc., for which a certain purpose has been mutually confirmed, is enacted by the Personal Information Protection Law that the government is going to enact, or by local governments nationwide There is a high risk of violating the applicable personal information protection regulations.
Among the authentication methods using biometric information, there is a method of registering the biometric information of the individual in the information terminal and restricting the operation of the information terminal.In addition to controlling the operation of the information terminal itself, it is also necessary to restrict external access. Is performing pseudo authentication.
[Patent Document 1]
JP 2000-259828 A
[Patent Document 2]
JP 2001-273498 A
[Non-patent document 1]
Shin Kosugi, "Search and Positioning of Faces in Scenes Using Multiple Pyramids for Individual Identification", IEICE Transactions, Vol. J77-D-II, No. 4, pp. 672-681, April 1994
[Non-patent document 2]
M. H. Yang et al "Detecting Faces in Images: A Survey" IEEE Tans. on Pattern Analysis and Machine Intelligence, Vol. 24, no. 1, Jan. 2002.
Among the conventional authentication methods, in the method of providing personal information to the outside, registration of biometric information for identifying an individual to a company or administrative organization that is an authentication requestor is not performed by the public. There is some opinion that requesting the other party to provide personal information on the premise that a company or government agency provides services through a communication line is an infringement of personal privacy and basic human rights. Many. Requesting an individual to provide personal identification information in advance through a network on the premise of performing electronic payment is likely to be regarded as a transaction utilizing a superior position in the transaction. This is because an individual who has provided personal identification information by himself cannot avoid the danger that the information will be used by the other party other than performing authentication on his / her own will.
In the method of registering and authenticating personal information in the information terminal on the user side, there is no danger of leaking personal information from the viewpoint of the Personal Information Protection Law, but from the viewpoint of the authentication requester It is just authentication of information terminal equipment. Since it is only a pseudo-authentication method that is established by assuming that the person operating the information terminal is a valid user, it is doubtful whether social authentication will be a requirement against third parties as social authentication. Is a point. Since the ID number is simply set within a range that can be memorized by humans, there is a high risk of decryption and leakage, and it is possible to easily complete the message by a message, and on the other hand, the possibility of tampering is high.
SUMMARY OF THE INVENTION The present invention has been made in view of the above circumstances, and registers the personal information in a destination requesting authentication using biometric personal information (a face, an iris, a fingerprint, a voiceprint, a gene, etc.) capable of identifying an individual. It is an object of the present invention to provide a personal authentication method, a personal authentication device, and a personal authentication system for realizing an authentication method that makes it unnecessary.
In other words, the present invention performs personal authentication based on pre-recorded personal information for collation without transmitting the personal information for collation to the outside, that is, in a good information society where personal information and privacy information are not disclosed indiscriminately. Personal authentication device and method contributing to construction In an authentication procedure for verifying the identity through a network, without providing personal identification biometric personal information (face, iris, fingerprint, voiceprint, gene, etc.) to the other party, It is an object of the present invention to provide a personal authentication method, a personal authentication device, and a personal authentication system that achieve authentication by transmitting only the authentication result to the other party. In other words, while using biometric information that has a high function to identify and identify an individual in personal authentication, it is necessary to establish highly accurate authentication without providing biometric information itself, which is personal information with a high privacy level, to the outside. Aim.
Further, the present invention provides an electronic payment procedure for requesting personal identification via a network, in which biometric personal information (face, iris, fingerprint, voiceprint, gene, etc.) capable of identifying an individual is transmitted to a communication system such as the Internet. It is an object of the present invention to provide a personal authentication method, a personal authentication device, and a personal authentication system for avoiding the danger of transmitting and receiving by personal computer.
Transactions and public procedures that require identity verification on the network are inevitable, but by sending information that has been identified using the information terminal equipment necessary for the identity verification of the individual, This proposal proposes a mechanism to complete authentication without providing identifiable personal information to the other party. In order for the service provider to request the other party's identity verification and certify the result in the electronic payment, an authentication mechanism must be built in the information terminal device that actually performs the contract. The mechanism must be a structure that the other party who requests authentication as a personal authentication system with a certain technical guarantee can be satisfied.
In the ubiquitous era, the number of information terminals we use will surely increase around our lives, and the present invention realizes an information communication environment that allows mutual authentication without transmitting personal information to the outside. Is an indispensable technology for the soundness of the information society.
In addition, the present invention uses biometric information such as a face image as an indispensable means of identity verification for contracting a communication network through the development of an image matching device, method, and system such as a camera-equipped mobile phone that does not externally transmit face image data. The purpose of the present invention is to solve the public anxiety such as leakage of personal information by completing the collation procedure in the information terminal that is occupied by the individual and transmitting only the collation result.
SUMMARY OF THE INVENTION Generally speaking, according to the present invention, by inputting biometric information into an information terminal which can identify an individual, the personal information is verified by collating with original information registered in advance in the terminal. The present invention realizes a system, a device, and a method for transmitting a result thereof and a result of confirming that the original information serving as a basis for collation has not been falsified or replaced to a partner.
Specifically, in order to solve the above-mentioned problem, a personal authentication method according to the present invention includes a step of storing face characteristics of an owner or an occupied user of a camera-equipped mobile phone as feature original data for personal verification. Capturing a face image with a camera of a camera-equipped mobile phone, extracting a facial feature from the facial image, collating the original feature data with facial features, and transmitting the collation result to the other party. And steps.
By this method, it is possible to establish a highly accurate identity verification without providing personal information that is privacy information, especially biometric information to the outside, and at the same time, a service provider requesting authentication should keep high-risk personal information. Without having to do so.
The biological information may be any one of a face image, an iris, a fingerprint, a voiceprint, and a gene. Further, the new personal information may be a moving image.
The personal authentication device may be included in a camera-equipped mobile phone. The biological information may be any one of a face image, an iris, a fingerprint, a voiceprint, and a gene. Further, the new personal information may be a moving image.
The personal authentication device may further include a unit capable of storing the number of data of the information serving as the original which proves that the data of the original information for collation has not been altered, thereby certifying the originality. it can.
Further, a means may be provided for automatically transmitting the data amount of the collation original information to an external third party and storing the same, whereby the collation original data stored in the personal authentication device is stored. It is possible to more objectively prove the originality of information.
Also, the personal authentication device according to the present invention obtains an original storage unit that stores biometric information of the owner or occupied user of the device as characteristic original information for personal verification, and obtains verification information of the device user. A matching information acquiring unit, a matching unit that matches the feature original information with the matching information, and a transmitting unit that sends the matching result to the other party.
With this device, it is possible to establish a highly accurate identity verification without providing personal information that is privacy information, particularly biometric information to the outside, and at the same time, a service provider requesting authentication must keep high-risk personal information. Without having to do so.
Further, the personal authentication system according to the present invention includes a storage unit for storing face characteristics of the camera-equipped mobile phone at the first use of the owner or occupied user as feature original data for personal verification, An imaging unit that captures a face image with a camera; an extraction unit that extracts a face feature at the time of a matching request from the face image; a matching unit that matches the feature original data with the face feature at the time of a matching request; A first transmission unit for transmitting the original face data to the service providing destination, and falsifying the encoded data of the first-use face image used to create the feature original data, to prove that the feature original data has not been altered. A second transmitting unit that transmits the original data of the prevention code to the third party, and a third transmission unit that transmits the data obtained by encoding the face feature at the time of the verification request to the third party as the tampering prevention code verification data. A camera-equipped mobile phone, a falsification prevention code original storage unit for storing the transmitted falsification prevention code original data, and a falsification prevention for comparing the falsification prevention code original data with the transmitted falsification prevention code verification data. A third-party organization including a collation unit, a falsification prevention collation result transmitting unit that transmits the falsification prevention collation result that is the collation result to the service providing destination, and a third party that receives the transmitted face information collation result. A service that includes a first receiving unit, a second receiving unit that receives the transmitted tampering prevention collation result, and a determination unit that determines the authenticity of the collation requester based on the face information collation result and the tampering prevention collation result. And providing destination.
According to the method, apparatus, or system of the present invention, a user of an information terminal such as a mobile phone firstly operates and records the information terminal that has been purchased or supplied and has become under his control. Can be used to verify identity. According to the present invention, the biometric information for verification initially registered by the user in the information terminal is a recording method in which no alteration after registration is possible. This is an authentication method that, when receiving an authentication request for personal identification through a communication line, checks against the biometric information that can identify the individual user registered in advance in the information terminal used by the user, and transmits the matching result. . According to the present invention, in an authentication method using communication means, authentication can be performed while biometric information capable of identifying an individual is retained in an information terminal managed by the individual. Therefore, the authentication method of the present invention obviates the need for the authentication requester to register biometric information such as a face image, which is personal information capable of identifying an individual user.
[Overview of the present invention]
(Summary) The components of the technology according to the present invention include the following as one embodiment.
Device for inputting biometric information to an information terminal occupied by an individual
A recording device that registers the original information that is the basis for verification, and a function that verifies that the biometric information registered as the original has not been tampered with or replaced
A function that verifies the biometric information used when identity verification is required against the original information
A function to send the verification result to the other party who is requesting identity verification
(Background of technology development)
Authentication method via communication means
In the advanced information society, various contracts are performed using communication means. Therefore, it is urgently necessary to establish an authentication method that assumes non-face-to-face, instead of the authentication method that has been confirmed by face-to-face. Personal identification based on face-to-face is a method that requires the person you are facing to be presented with identifiable materials (for example, a driver's license, passport, etc.) and asks questions that require answers that only the person can know. Holds.
Until now, when trying to confirm the identity of a person via communication means, a device registered in advance such as a password or an IC card has been used. However, it only authenticates access rights using the device key, and it was difficult to completely prevent intentional impersonation and crime. Recently, it has been proposed to use biometrics information as a more reliable authentication means than passwords and IC cards in order to compensate for the defect, and has been adopted by some companies and government offices in Japan.
How to use wrong biometric information
In an information system that is completed by information communication between information terminals, the responsibility of the system technology is to specify the information terminal, not the person who operates the information terminal. When requesting identification of a person who operates an information terminal that has accessed an information system, biometrics information information that can identify the person is used. However, in this case, in order to verify the biometric information input by the other party, it is necessary to obtain in advance the biometric information of the other party requested by the person requesting the identification.
However, contract activities that may occur in the future require that one's biometric information be registered in advance in any organization. On the other hand, there are many feelings that the side requesting the identity verification is not comfortable with making a database of a large number of unspecified biological information. The gathering of a database of personal biometric information on the side requiring authentication will create extremely distorted power relationships in social relationships. There is no doubt that the public's resistance is in the worries.
Authentication method specialized for biometric information ID function
We have two ways to prove your identity: show your ID card or use a third party guarantee. The other party confirms the presented ID and the contents of the guarantee, and authenticates by his / her own judgment. If in doubt, seek assurance from a third party and try to ensure the authenticity of the certification as much as possible.
If we consider this procedure as a non-face-to-face authentication method, we will endeavor to present as much material as possible to prove the identity of the person and provide a means to guarantee the legitimacy of the material. It is to judge the presentation by taking steps to avoid the risk.
Incorrect authentication method using biometric information
A matching method using biometric information that can accurately identify a person is an extremely effective means of authentication for those who require a strict authentication result, but the authenticated person does not want to use it psychologically, or human rights Many people argue that use should be refused from a protection standpoint.
The biometric information is information to be presented to the other party on his / her own will, and is not a thing that is easily left under the control of the other party.
We live in a society where various contractual relationships occur, and by providing biometric information for each phase, there is a possibility that some organizations and groups will be able to accurately grasp individual behaviors and ideas. Let me do it. As a result, one-sidedly feeling the possibility that an individual's actions and activities will be seized will increase the anxiety that humans will probably feel as if they had been forced into extremely unequal relationships.
BEST MODE FOR CARRYING OUT THE INVENTION
Hereinafter, embodiments of the present invention will be described.
(A) Overall system
FIG. 1 is a block diagram showing a configuration of a personal authentication device according to an embodiment of the present invention. As shown in the figure, a personal authentication device 100 according to one embodiment of the present invention is included in a camera-equipped mobile phone 200. The personal authentication device 100 includes an original image recording device 101, a face image data processing unit 102 at the time of authentication, an image matching device 105, a matching result storage device 106, a matching result attaching / sending device 107, and a camera 108. And an imaging flash device 109.
The camera 108 and the imaging flash 109 are used at the start of use of the apparatus to acquire original information for collation for identifying the owner or occupant of the apparatus or to acquire new personal information for collation. Can be Of course, other than acquiring information for personal authentication, it can be used for normal photographing. The flash 109 is important because the illuminance is a significant point in securing a clear image as an image to be stored. If the sunlight or lighting is backlit, the matching accuracy will be reduced.
The original image recording device 101 is for recording a face image of a self taken first when the owner or occupant of the camera-equipped mobile phone occupies the mobile phone, and can be written once and read as necessary. However, the structure is such that the image cannot be modified or re-photographed. Further, the original image recording apparatus 101 separately stores the number of bytes related to the data of the image recorded in the original image recording apparatus 101 together with the image data, and automatically transmits the image data to a third party, if necessary, and preferably if necessary. May be provided. When the serial number determined at the factory shipment stage of the camera-equipped mobile phone 200 is registered by a third party at the time of shipment, the serial number is given to the third party together with the serial number and the data capacity (number of bytes) of the first captured image. By storing, personal authentication according to the device and method of the present invention becomes extremely accurate, and it is also possible to secure social reliability. The verification of the originality of the biometric information for verification registered by the user in the information terminal can be performed by comparing the data capacity of the biometric information registered by the user at the start of use of the information terminal.
In the present invention, only the data volume of the original information recorded in the original image recording apparatus 101 can be transmitted to the outside, that is, to a third party, in order to prevent the biometric information serving as personal information from being output from the terminal device occupied by the individual to the outside. It is.
The face image data processing unit 102 at the time of authentication includes a captured moving image recording device 103 and a still image selection device 104.
The video collated by the video collation device 105 at the time of authentication is a plurality of videos selected by the face image data processing unit 102 from the moving image to be collated by the camera 108 in order to avoid collation by capturing a dummy still image. This is based on the video of There is a risk of spoofing by taking a picture of the owner, so it is necessary to select a moving image, and to improve the accuracy of matching by selecting multiple images arbitrarily selected from the moving images and matching. it can.
When the face of the owner is imaged by the camera 108 at the time of verification, the face image data processing unit 102 verifies a plurality of images from the captured moving image with the original images registered in the original image storage device 101, and determines the same person from both images. Is determined, the result is stored in the collation determination result storage device 106. The image matching used at the time of matching will be described in detail in the next section.
When the owner has an authentication request and communicates necessary information to the communication partner, the owner sends the information to the communication partner via the stored and determined collation determination result attachment / transmission device 107 of the camera-equipped mobile phone. . To reiterate, in the present invention, only the determination result of the collation is sent to the communication destination having the authentication request, and the biometric information itself is not output from the terminal device occupied by the individual.
The camera-equipped mobile phone 200 uses each device and processing unit necessary for authentication provided in the authentication unit 100, and finally checks whether or not the user is himself / herself by using the collation result. The operation corresponding to these authentications does not control the operation of the entire camera-equipped mobile phone 200 or a part thereof, but transmits a determination result of image collation, and such an operation is not related to the collation result. .
In the above description, the face image is adopted as the personal information from the biometric information. However, instead of the face image or in addition to the face image, any one of the iris, fingerprint, voiceprint, and gene information may be newly used. Good. The information can be set to be used in combination of two or more. Further, by adding an ID number authentication function, it is also possible to increase the accuracy of personal identification.
A plurality of biometric information, personal face images, voices, fingerprints, or specific passwords or ID numbers used in combination with any one of the authentication results are used. The biometric information processed by the collation device in the information terminal and used for collation maintains a structure that is not communicated to the outside at all.
As a device for acquiring iris information, for example, those described in JP-A-11-146507, JP-A-2002-307715 and JP-A-2002-330318 can be used. As a device for acquiring fingerprint information, for example, the device described in JP-A-2001-344544 can be used. As a device for acquiring voiceprint information, for example, a device described in JP-A-2000-259828 can be used. In addition, personal information can be acquired using a known technique, and the acquired biometric information is not output to the outside of the authentication device, and can be used in the present invention that outputs only the verification result.
In FIG. 1, the device and method of the present invention have been described with a personal authentication device mounted on a camera-equipped mobile phone for convenience. It can be widely used for terminals having a communication function that is shared by family members, personal computers for mobile use, and the like, such as TV telephones and personal computers for personal use.
Necessary when externally authenticating information recorded in the original information storage device using other biometric information in addition to image information recorded in the original image recording device 101 in the information terminal such as a mobile phone with a camera. The information is the number of bytes stored in the original information data and is not personally recognizable information such as face image information.
Including the camera-equipped mobile phone, the mechanism provided on the videophone or the mobile videophone to authenticate as a specific individual is not a function of controlling the operation of each terminal based on the authentication result, but the operated person and the registered person Is compared with an image or other biometric information, and only the result is externally transmitted to provide data contributing to authentication of the other party.
An object of the present invention is to provide a communication terminal device such as a camera-equipped mobile phone terminal having both an identification card function and a stamp function necessary for a contract.
Currently, ID cards always require a "face photo". In addition, identity cards are student, employee, driver's license, passport, etc. And clear issuers are essential. In particular, important certificates such as licenses and passports have been devised so that face photographs cannot be falsified in order to prevent impersonation.
All of these forms of identification are for the person in front of you to identify yourself while comparing your face to your certificate.
Among the objects of the present invention, the function of the identification card is the following two points.
(1) It is possible to set an authentication action in place of identification, regardless of whether or not the user belongs.
(2) To realize a method of personal identification without direct interview using communication means.
Hanko has a role as a guarantee of mutual allocation by certifying each other's will by imprinting on the paper medium received by the other party a seal that proves his willingness to perform the contract by using a seal that he owns and identifies himself. Have. The seal is owned by the person himself, and the seal is saved by the other party, so that the existence of the contract can be proved at a later date.
Among the objects of the present invention, the function of a stamp is the following two points.
(1) The data volume (the name engraved on the seal) of the owner's original registered face photo is sent (sealed) to the other party to serve as a certificate of confirmation of the will of the contract.
(2) Register the data volume of the original photo registered in the same manner as above (registered seal stamp) with a third party organization, and send the data volume via the third party organization to become a contract with a seal seal certificate in general. .
In order to satisfy the above two functions, for example, after shipment from a factory, a camera-equipped mobile phone terminal to which the present invention has been applied is imaged for the first time only when the imaging mechanism is not used, and the CD-R system (writable only once) The device has a device that can store the face image data of the person to be recorded in the terminal in the form of an original photograph and a data volume in the terminal. A function to save by a third party has been added.
This function will be explained in the actual procedure flow.
The following is an example of the functional description of the device according to the present invention, which is a setting for a mobile phone sales store.
Customer: Is there a mobile phone that can be used instead of a stamp?
Clerk: It's a mobile phone with a camera that can save images. You can also use your ID card.
Customer; get it.
Clerk; I understand. Register your desired phone at the center, so select the model first. Then fill in this application form with your name, date of birth, address and phone number. Do you have a license or insurance card and a stamp?
Customer; I have a license, but I do not have a stamp.
Clerk; sold at the stationery store opposite, but what will happen. 300 yen but ...
Customer; I'll buy it.
Clerk; Sorry. I don't need a stamp or a license from this mobile phone ...
・ ・ ・ ・ ・
Clerk; Would you like to use your existing phone number?
Customer; yes.
Clerk; can I pay the fee by bank debit? If you keep your current bank account, the procedure will be easy, so I'd like to ask if you can.
Customer; Want to change account, but is it difficult?
Clerk; If you open a new bank account, you will be able to sell after opening. If you use another bank account, you will need to introduce a credit to that bank, so it will take some time, but ...
Customer; it can't be helped.
Clerk; Sorry. Recently, the damage caused by impersonation has increased, and it has become very strict to confirm that the holder of the bank account is the person in question.
Customer; But I heard that if you have this camera phone, you can open a bank account right away.
Clerk: That's right. Camera phones sold by us store the manufacturer's number, phone number, and data that can be used to confirm the purchaser at the center, making it easy to identify yourself. Banks now use this mobile phone to verify their identity, and can do the same on the Internet.
Customer;
Clerk; yes. Please wait for a while.
After registration of mobile phone;
Clerk; All procedures at the center are over. You will be able to use it after capturing your face. You can do it yourself later, but if you fail to import, you have to discard this phone, so let's do it here.
Customer; is it difficult?
Clerk; no. Point the lens on the screen at your face and press this button. After the flash fires, an image for saving will be displayed on the screen, so please press this call button if you are satisfied. That's it. If you don't like the image, you can press the red button on the right to take another shot. The rest is repetition.
Customer: I understand it's easy. I'll do it myself later.
Clerk; Please note that if you accidentally touch other buttons or perform other operations, you will not be able to save images. In that case, the authentication function cannot be used at all. Of course, it can be used as an ordinary camera-equipped mobile phone, but some people have been told that they often fail and want to replace it, but even if they fail, they cannot replace it. In that case, you have to purchase a new one. 10% discount until the day after purchase.
Also, if you do not do this work within 30 minutes after purchase, you will not be able to register the center. In that case, only the phone will be authenticated, so no authentication from the center or outside will be accepted.
Customer; if that's the case, we'll go here.
Store clerk: Then, point the lens inside this phone at the customer's face and press the shutter.
Customer; yes. Like this? Basha.
Clerk; Is that a picture of your face?
Customer; yes.
Clerk; then press the green call button on the left.
Customer; Yes ... The registration is completed on the screen.
Clerk; that's it. Now that you have registered the data size of the saved image and this phone number to the center, you can use the authentication function from now on. Would you like to register for our company as a trial? If you become a member, you can purchase it at a discount when it is stolen or lost, or receive an authentication guarantee service when used by others.
Customer; What is the certification assurance service?
Store clerk; For example, if a customer suddenly needs to borrow money from some loan company, even if there was no transaction before, if you apply by authenticating with this camera phone We guarantee your identity, so if your loan company knows our system, you should be able to receive your loan relatively easily. There are naturally various conditions for borrowing, but if you have a mobile phone with a camera, you can also view transaction information with other banks and personal information published by the company you work for. You. Normally, it is not possible due to the Personal Information Protection Law, but this phone has a guarantee of identity verification, so the other party should read the personal information with confidence.
Customer; I see, I see. So how do you do it?
Clerk; Call this phone number first with your camera phone.
Customer; Yes ... Hello.
Center: Thank you. Authentication center. ●●, thank you for using our service. What kind of service would you like?
Customer; I want to register as a member.
Center: Alright. Your phone is yours.
Customer; yes.
Center: Then, take a picture of your face with the lens inside the phone. Select the face icon from the menu button. The message "OK" appears. Press the upper button. Keep shooting for a few seconds until you hear a beep.
Customer; yes ... basha, ji pi.
Center: Thank you. If you see the face, just press the same button. If not, or if it is blurred, scroll to "Redo" and press the button. When the message "OK" appears, press the same button again and take a picture again.
Customer: I think it's okay.
Center: Thank you. Then press the button above.
Customer;
Center: What's on the screen?
Customer: It says "correct".
Center; So the customer's phone has confirmed himself, please press the same button again. The confirmation will be saved on the phone.
Customer;
Center; yes. You may see a menu on the screen, but please scroll down and click on the icon for membership registration / confirmation.
Customer; yes.
Center: You are now registered as a member of our center. I'll check it, but your name is ●● ■■ Husband. The date of birth is August 24, 1968. Is it OK.
Customer; yes.
Center: The customer data we store is the manufacturer registration number and phone number of the mobile phone you are using now, your name and date of birth, and your mobile phone The amount of image data stored on the phone. The name and registration number of the store where the customer purchased. There is no doubt that the shop is a ○○○ shop Shinsaibashi East store in Osaka city.
Customer; yes.
Center; You must also register information to identify yourself if you lose your call. Would you please share information that only customers know and have confidence you will not forget?
Customer; what information do you want?
Center; yes. It can be numbers or letters. Often, the family birthday or wedding anniversary, the town where your wife is from, the name of someone in your family, and the name of your pet are also registered. Some customers have mentioned the name of the school they graduated from or the name of their first love. You can also double-register your phone number.
Customer: Make it a wedding anniversary. May 3, 1987.
Center: I understand. Rarely, but we may ask you a question in the sense of confirmation, so at that time it would be fine if you could just mention the date. Last but not least, you should see a menu on the screen. Could you please scroll and click the send icon? After that, if the transmission is completed, all procedures are completed. Thank you very much.
Customer; No.
Clerk; That's it. If a customer is going to use this mobile phone to do electronic shopping, make a bank transfer or transfer, or apply for a trip or concert, and the other party asks for their identity, Display "correct" on the screen in the same procedure as above, and save. If you continue talking on the phone, just click on the send icon in the menu and you're done.
Customer: What should I do for homepage or mail?
A clerk: In the case of the homepage, or when you fill in the necessary information, you will be asked to confirm your identity. In that case, select the authentication icon from the menu button as before and click it to save the indication "correct" in the same way, then select the send icon on the menu button and send. After the message "Authentication (confirmed)" appears on the homepage screen, follow the instructions on the homepage.
If you want to send the mail, save the mail once, click the authentication icon from the menu, go to the place where "correct" is displayed on the screen in the same way, and click the send icon as it is. The authentication result is attached to the mail stored in the camera phone and sent.
Customer; I understand.
Clerk; Call us anytime if you don't know. I will teach you various tricks. However, you need to confirm your identity. I don't want to tell others.
Thus, in one embodiment according to the present invention, as described above, the secret information, which is the biometric information itself, is not directly transmitted / received. The original data is imaged and registered in its own device at the time of purchase, and the result (possibly several bytes of data) obtained by comparing the image data at the time of collation necessary for collation with the original data is transmitted to the service provider side. . At the same time, as a guarantee that such original data has not been tampered with, a certain coded original data for falsification prevention (which will be described in detail later) is also created from a captured image of the original data at the time of device purchase. The coded data for falsification prevention collation is created from the image data when collation is necessary, which is imaged when necessary for collation, and transmitted to the third party institution. The coded data for falsification prevention collation is compared with the original coded data for falsification prevention stored previously to determine whether the data has been tampered with, and the result is transmitted to the service provider. The service provider receives the verification result data sent from the service requester and the determination data from the third party as to whether or not the data has been tampered with. It can be performed. At this time, the service requester can be authenticated without risking entrusting biometrics information, which is extremely personal and highly confidential, to others.
In the above description, for example, a face photograph has been described as an example of comparison data used for authentication. However, in principle, any data can be used as long as the data can be used for authentication of an individual. Therefore, any biometric information may be used as long as it is known only to the person himself / herself (not possessable) and always worn (or at the time of request for verification). Specifically, in addition to a facial photograph, a voiceprint, a fingerprint, an iris, genetic information, and the like can also provide the same effect in principle.
(B) Detailed procedure of registration of feature original data and registration of falsification prevention code
FIG. 2 is a flowchart for explaining the detailed procedure of registering the feature original data and registering the falsification preventing code.
A moving image is photographed, an image in which a frontal face is photographed is selected, the selected image is individually processed to calculate a feature amount of each image, and the feature amount is statistically processed to obtain a final result. This result is registered as feature original data. A part of the data to be registered as characteristic original data is encoded, registered as a falsification prevention code, and transmitted to a third party organization.
This series of operations will be described below with reference to FIG.
(Step S-1) Capture and capture moving images
A face is continuously photographed to obtain a moving image. It may be a color image or a monochrome image.
(Step S-2) Front Face Detection
A mask image as shown in FIG. 3 is created from a database of many faces and the like, and the original image is scanned from upper left to lower right to detect a portion including both eyes. More specifically, a mask image including both eyes is placed on the original image as shown in FIG. 4, the density is compared for each pixel, the similarity is calculated, and the score is calculated. This operation is repeated by shifting one pixel from the upper left of the original image to the right. When it reaches the right end, it moves down by one pixel and repeats rightward from the left end. This operation is repeated until reaching the lower right, and the maximum score is compared with the threshold. Since the size of the face is not constant due to individual differences, shooting distances, and the like, the above processing is repeated by changing the mask size in several stages. If there is a possibility that the face is rotating, the mask is rotated, for example, several degrees clockwise and counterclockwise, and the above processing is repeated.
In this search, besides the method of performing scanning by shifting one pixel at a time, a global search is first performed by shifting by about 10 pixels, a score is calculated, and then a location having a large score can be focused. A coarse image can be created using the image pyramid and searched globally. References (Shin Kosugi, "Search and Positioning of Faces in a Scene Using Multiple Pyramids for Individual Identification", Transactions of the Institute of Electronics, Information and Communication Engineers, Vol. J77-D-II, No. 4, pp. 672-681. , April 1994). The way of shifting is not limited to one pixel. Instead of searching from the upper left to the lower right of the original image, it is also possible to search only a portion having a high probability of a face. It is also possible to calculate the similarity of the coefficients after performing transformation such as wavelet transformation instead of the image as it is. Various other methods are described in the literature (MH Yang et al, "Detecting Faces in Images: A Survey", IEEE Tans on Pattern Analysis and Machine Intelligence, Vol. 2, J. No. 24, No. 2, J. No. 2, J. No. 2, J. No. 2, J. No. 2, J. No. 2, J. No. 2, J. No. 2, J. No. 2, J. No. ing.
(Step S-3) Selection of frontal face image
The above processing is performed for each image, and a plurality of images are selected in descending order of the score.
(Step S-4) Face image normalization
The positions of the eyes and the mouth are detected for each of the selected images. The image is scaled and normalized based on the position of the eyes and the position of the mouth. Adjust brightness and contrast.
(Step S-5) Registration of feature original data
A plurality of images are superimposed, and as shown in FIG. 5, the average value and variance of the density are calculated for each pixel of the eye and its surroundings, the nose and its surroundings, and the pixels of the mouth and its surroundings. The feature is recorded for each pixel and used as feature original data. The face width and the like are also recorded as features in the original feature data.
As described above, in addition to the method of recording the image data itself as a facial feature, it is also possible to record not only the image as it is but also a coefficient such as a face characteristic after performing a conversion such as a wavelet transform as feature original data.
(Step S-6) Registration of falsification prevention code
The density of pixels on a specified line (line 1 in FIG. 6) of an image registered in the feature original data is added by an adder, and the result is accumulated in an n-bit register. Register n bits as a tampering prevention code.
(Step S-7) The falsification preventing code is transmitted to the third party.
(C) Authentication function
Next, details of the authentication function will be described. A moving image is photographed, an image in which a frontal face is photographed is selected, the selected image is individually processed to calculate a feature amount of each image, and the feature amount is statistically processed to obtain a final result.
The result is collated with the feature original data, and the determination result and the tampering prevention code are transmitted.
FIG. 7 is a flowchart for explaining this. This series of operations will be described below with reference to FIG.
Capture and capture moving images
Same as step S-1 above.
Front face detection
Same as step S-2 above.
Select front face image
Same as step S-3 above.
Face image normalization
Same as step S-4 above.
Verification of individual face images
One of the normalized plurality of original images is optimally superimposed on the feature original data, and the eye and its surroundings, the nose and its surroundings, and the mouth and its surroundings are compared with the feature original data to calculate a score. For comparison with the feature original data, the similarity is calculated by comparing the shading of each pixel, and the score is calculated as a score.
As a comparison method between the original image and the feature original data, a method of comparing the cumulative value of the square of the difference for each pixel, a method of obtaining the inner product of the feature vector by considering the pixel array as a feature vector, or a method of wavelet transforming the image There is a method of comparing the coefficients at the time of conversion.
Face recognition
The average value of scores obtained as a result of collation with a plurality of images is used as the final result. As a final result, the median, the maximum, the maximum and the variance can be considered. If the final result is larger than the set threshold, it is determined that the person is the person.
Submit results
The determination result and the tampering prevention code are transmitted. If the result of the determination is negative, there is no need to transmit the tampering prevention code.
The data recorded in the storage device may be transmitted as it is as the falsification prevention code, but the same processing as the registration of the falsification prevention code is performed in step S-6, and the newly obtained falsification prevention code is transmitted. May be.
As described in detail above, according to the present invention, the following results are achieved.
Perform identity verification without sending biometric information externally
This technology development completes a collation procedure for identifying a person using biometric information in an information terminal held as a means for confirming the person, and presents only the result of the collation to the other party. The original information for verification registered in the information terminal is protected by a mechanism that cannot be rewritten or tampered with. Instead, it is assumed that a method is used in which a third party guarantees the validity of the original data for verification through communication means.
Prevent third parties from using personal information for other purposes
Since the biometric information essential for verification is not provided to the other party or a third party at all according to the method described in the preceding paragraph, it is not necessary for the other party to store personal information after authenticating and authenticating the requested identity verification result. In other words, the individual who provided the identity verification information will not have to worry about using personal information prohibited by the Personal Information Protection Law for other purposes.
Do not pass authentication data to the other party
Although it cannot be denied that biometric information of individuals is an effective means for personal authentication of individuals, the premise of utilizing biometric information that can identify individuals should be stopped as far as it can be controlled by the will and judgment of the individual. . It should be no surprise from the public sentiment that biometric information, which is a means of identity verification, should not be registered with the other party because it is necessary for authentication.
Up to now, the driver's license and passport have always been under the control of the person at the time of identity verification, and only the necessary part (sealed face photograph or signature) is presented to the other party at the request of the other party. It is unlikely that anyone other than the issuer will keep the original driver's license or passport for verification, much less.
【Example】
Next, an example of the above embodiment will be described in detail.
A biometric information used for identity verification is used as a face image, and a communication system equipped with a matching device required for the information terminal and a function for assuring the originality of the original information used for matching is developed.
For other biometric information (fingerprint, palmprint, voiceprint, iris, and gene), it is considered that registered information and a collation system can be handled by almost the same mechanism, except for the input mechanism of the information terminal.
The authentication system using the face image recognition device realized in the present embodiment is premised on a system that operates with a general mobile terminal such as a mobile terminal device / PDA or a notebook personal computer. It is a development that also assumes that it will be installed on a vehicle.
(A) Registration of original information
In an information terminal having a communication unit and an image pickup device, an image picked up first is automatically registered in a storage device in the information terminal and used as original information for collation.
a. Select "Identity Confirmation" from the menu.
b. Point the lens at your face and capture a full face image.
c. After the image is captured, the image displayed on the screen is confirmed, and the enter button is pressed to register (the screen displays the captured face image and the buttons of “register” and “again”).
d. The first registered image recording device employs a mechanism that cannot be rewritten or falsified.
e. In order to confirm the originality of the registered image described in the preceding paragraph, specific information (image collation data) is selected from the image data and stored.
f. The above c. Simultaneously with the registration, the communication function is activated, the terminal is connected to a preset authentication center, and terminal information (IP address, registered telephone number, image collation data of e.) Is transmitted and registered.
g. The above c. To f. The above operations are performed automatically, and when the registration is completed, "Registered" is displayed on the screen.
(B) Identity verification procedure-authentication type
When attaching the original warranty of a third party (authentication center) using the mail function
a. Select "Identity Confirmation" from the menu.
b. Select "Mail" from the displayed "Phone" and "Mail".
c. The camera function starts up.
d. A face image is taken over the entire display screen, and the shutter is pressed to take an image.
e. The captured image is collated with the original information stored in the information terminal, the validity ratio is calculated, and the determination result is encrypted.
f. A plurality of (at least three or more) face images selected from moving images are used as captured images to be collated with the original information described in the preceding paragraph (to prevent impersonation using still image data such as a face photograph).
g. At the same time as the processing described in the preceding paragraph, the image matching data of the original set in advance is searched, and the data is communicated with the authentication center to obtain data (16-bit encryption) whose originality is guaranteed.
h. D. To g. At the stage when the processes up to are completed, either "verify / send / save" or "take again" is displayed on the display screen. (Repeat if "... again" is displayed)
i. When you select "Send", a new mail creation screen will automatically appear. (The judgment result and originality assurance data are automatically attached.)
j. After inputting necessary items, clicking the "Send" button on the mail screen sends the collation result to the other party.
k. To reply to an email requesting identity verification, select "Reply" from the received email, select "Identify" with the menu button, perform a series of operations, and then display the "Verified / If "Send" is selected from "Send / Save", it is automatically sent to the other party.
l. It is also possible to perform an identification operation before the mail operation. In this case, select "Save" of "Verify / Send / Save", then compose the e-mail and select "Personal Attachment" in the edit menu to send.
Note: This save function is also available for telephone calls. By transmitting the collation result registered in advance, it is possible to easily perform the identity verification.
Note: For the storage function, the time from acquisition of originality assurance data to transmission should be as short as 5 to 10 minutes, assuming time constraints.
(C) Identity verification procedure-simplified
During a call using the telephone function, when the other party requests identification.
a. Without interrupting the call, select "Identify" from the menu and press the enter button.
b. Select "Phone" from the displayed "Phone" and "Email".
c. The camera function starts up.
d. A face image is taken over the entire display screen, and the shutter is pressed to take an image.
e. The screen displays either "verify / send / save" or "take again". (Repeat if "... again" is displayed)
Note: Here, it is preferable to transmit the judgment result to the other party at the stage where “matched” is displayed.
f. The recorded judgment result (validity rate) of collation with the original in the information terminal is encrypted. (The result may be transmitted as it is or may be temporarily stored in the terminal.)
Note: This is the result of taking measures so that identity verification can be performed as if playing a game during a telephone call. One of the reasons for setting the simplified type is that it should be decided between the other party and the person himself / herself whether or not to get the guarantee of the certification center, and it is better to leave a choice and secure the degree of freedom. It is.
In order to realize this function, the following technology is developed, which will be described sequentially.
(1) Development of authentication function for the face of the person
(2) Development of encryption function for guaranteeing original registered image data
(3) Development of communication function for authentication
(4) Development of a portable terminal GUI function and a function for preventing falsification of initial registration data
(5) Porting software to a portable terminal (PDA)
(1) Example of the authentication function of the face of the person
Here, in order to prevent identity impersonation, a technology for authenticating a face using not only a frontal face but also a video image having left, right, up and down movements is developed.
Basically, development is carried out using, for example, "authentication technology by a kernel principal angle method using video images" by Professor Amnon Shashua of the Hebrew University.
<Overview of technology>
There are two methods for authenticating a face using an image, a method using a still picture and a method using a video image. At present, most authentication systems use the still picture authentication method.
In the face authentication method using a still photograph, it is difficult to prevent impersonation using a photograph because authentication is performed with one photograph. Further, in this method, the authentication accuracy is significantly reduced unless the angle of photographing the face at the time of registration and the angle of the face for actual authentication are almost the same. For this reason, most authentication methods require shooting with the same camera, the same place, and the same face angle as at the time of registration.
Here, since personal authentication is the main application, spoofing is the biggest problem. To avoid this problem, a video image method is used as a face authentication method. With video images, it is possible to obtain a three-dimensional image of the face, which is very difficult to impersonate.
In the present embodiment, an authentication method using a “kernel principal angle method” is used as an authentication method using a video image. In this method, image data is converted to a high-dimensional vector, and the similarity of the image vector is verified by a kernel principal angle method (the similarity is measured by an inner product of the vectors). If it is shown, it is a method of authenticating the person.
Specifically, a video image of a face is taken with a camera of a mobile phone, and the registered video image is compared with a registered data value (vector value) obtained by digitizing the registered video image using the image data, and a kernel principal angle value is obtained. Is calculated, the similarity is measured, and the similarity is output as, for example, a percentage (<80%> or the like) to perform authentication.
In order to realize the function according to the present embodiment, it is necessary to develop the following technology, but the details are omitted here with reference to the above.
Development of Multidimensional Vectorization Method for Images
Development of kernel principal angle calculation method between multidimensional vectors
Development of learning method using support vector machine method
Development of a robust authentication method against lighting changes
Development of format for transmitting / receiving personal authentication result
(2) Example of development of encryption function for guaranteeing original registered image data
The originality of the original information (authentication image data) that assures that the authentication image data registered in the mobile terminal has not been tampered with, in order to prevent the registered authentication image data from being falsified and abused. Develop a communication system with a guarantee function.
<Overview of technology>
The sum of the luminance digital data of a specific area of a plurality of registered authentication image data (for example, the area from the 100th scanning line to the 110th scanning line of each image: an area used for authentication is particularly preferable) is calculated. Calculate and digitally register the lower 16 bits (for example, the last five digits of the lottery) of the sum. If any part is tampered with, this number changes, so that the originality can be verified. The lower 16-bit data is registered in the original assurance center. The function of transmitting the corresponding 16-bit data of the original data of the portable terminal when performing personal authentication, checking the original data by comparing it with the registered data at the center, and transmitting and receiving proof from the original guarantee center.
In order to realize the function according to the present embodiment, it is necessary to develop the following technology, but the details are omitted here with reference to the above.
f. Development of an automatic extraction method for the optimal extraction area of each brightness data
g. Development of 16-bit lower luminance method
h. Development of original guarantee registration method and collation method
i. Development of format for sending and receiving original guarantee results
(3) Example of development of communication function for performing authentication
In the above (1) and (2), individual functions of the face authentication function and the original copy assurance function are developed. Here, the communication function of the entire system is developed. In particular, we will develop a system to respond to the loss of a mobile terminal, a system to handle a large number of tasks at the same time, and the robustness of a system for correcting and revising data.
In order to realize the function according to the present embodiment, it is necessary to develop the following technology, but the details are omitted here with reference to the above.
j. Development of communication system for sending and receiving authentication results and sending and receiving original guarantee results
k. Development of processing system for loss of mobile terminal
l. Development of data revision and correction system
m. Development to maintain communication robustness
(4) Development of Mobile Terminal GUI Function and Development of Initial Registration Data Falsification Prevention Function The mobile terminal is a device that directly contacts the user, and its usability is highly likely to affect the penetration rate of this system. Here, it is assumed that a GUI that is easy for the user to use is developed and can be easily used anytime and anywhere. We also develop a function to prevent falsification of the initial registration data.
In order to realize the function according to the present embodiment, it is necessary to develop the following technology, but the details are omitted here with reference to the above.
n. Development of GUI for authentication registration operation
o. Development of GUI for original copy operation
p. Development of GUI for personal authentication operation
q. Development of falsification prevention function for initial registration data
(5) Example of porting software to a portable terminal (PDA)
Although the purpose of the present embodiment is to finally install this function on a mobile phone, here, in order to mainly verify the effectiveness of this function, verification is performed using a PDA as a mobile terminal. Check its effectiveness. Here, the developed software is ported to a PDA and its functions are confirmed.
In order to realize the function according to the present embodiment, it is necessary to develop the following technology, but the details are omitted here with reference to the above.
r. Porting the personal registration function
s. Portion of face recognition function
t. Porting the originality assurance function
u. Porting of GUI function
v. Porting communication functions
According to the present invention, it is possible to externally confirm that a registered person has performed an application for tele-shopping, reservation of a hotel or the like, transaction with a financial institution, execution of a public application, and the like.
In other words, when personal authentication is requested from the other party via the communication means, if a camera-equipped mobile phone or information terminal using the authentication device of the present invention is used, the biometric information, which is privacy information, is not provided to the outside. In addition, it is possible to establish a high personal identification, and at the same time, a service provider requesting authentication can perform personal identification without depositing high-risk personal information.
In the advanced information society, (1) unauthorized access, (2) impersonation of others, (3) password theft, (4) false and breach of certification conditions, (5) system breakthrough and vandalism, It is said that various risks, such as (6) picking of communication data by a third party, (7) falsification of communication data by a third party, (8) access obstruction, and (9) denial of access, occur. If an authentication method for personal identification is adopted for an information terminal such as a camera-equipped mobile phone, the risk is greatly reduced.
Further, according to the present invention, it is possible to realize a system and a method for providing personal information with peace of mind to all the people, and leading a comfortable and convenient life, and ultimately protecting and raising the property as a property shared by the people. . That is, anyone can freely access personal information under the approval of the individual, and a personal information authentication system and method that can be used in the real world can be provided. This will in turn lead to a truly democratic society.
[Brief description of the drawings]
FIG. 1 is a block diagram illustrating an example of a configuration of a personal authentication device according to an embodiment of the present invention.
FIG. 2 is a flowchart illustrating a detailed procedure of registering feature original data and falsification preventing code for personal authentication according to the embodiment of the present invention.
FIG. 3 is an image diagram for explaining a detailed procedure of registering characteristic original data and falsification preventing code for personal authentication according to the embodiment of the present invention.
FIG. 4 is an image diagram for explaining a detailed procedure of registering characteristic original data and falsification preventing code for personal authentication according to the embodiment of the present invention.
FIG. 5 is an image diagram for explaining a detailed procedure for registering feature original data and falsification preventing code for personal authentication according to the embodiment of the present invention.
FIG. 6 is an image diagram for explaining a detailed procedure of registering feature original data and falsification preventing code for personal authentication according to the embodiment of the present invention.
FIG. 7 is a flowchart illustrating a detailed procedure of an authentication function for personal authentication according to the embodiment of the present invention.
[Explanation of symbols]
100: Personal authentication device
101: Original image recording device
102: Face image data processing unit at the time of authentication
103: Captured moving image recording device
104: Still image sorting device
105 ... Image collation device
106: collation determination result storage device
107 ... Attachment / transmission device for collation judgment result
108 ... Camera
109 ... Imaging flash device
200… Mobile phone with camera

Claims (15)

Storing the facial features of the camera-equipped mobile phone owner or occupied user as feature original data for personal verification;
Capturing a face image with a camera of the camera-equipped mobile phone;
Extracting facial features from the face image;
Collating the feature original data with face features;
Transmitting the result of the collation to the other party. Encoding the face image used to create the feature original data;
2. The personal authentication method according to claim 1, further comprising the step of: storing the encoded data as a falsification preventing code original that proves that the characteristic original data has not been falsified. 3. The personal authentication method according to claim 2, further comprising the step of storing the encoded data in a third party. The step of storing the feature original data includes a step of capturing a face of the owner or the occupied user by a camera function at the start of use of the camera-equipped mobile phone; a step of extracting a face feature from the captured face image; Storing the feature. The step of extracting a face feature from the face image includes a step of selecting a face image facing the front from a plurality of images, a step of detecting a front face, and a step of extracting a feature. The personal authentication method according to claim 1. 3. The personal authentication method according to claim 2, wherein the falsification preventing code original is obtained by adding the density of pixels on any one horizontal line or vertical line of the face image used for creating the characteristic original. Storing biometric information of the device owner or occupant user as feature original information for personal verification;
Obtaining information for verification of the device user;
Collating the feature original information with collation information;
Transmitting the collation result to the other party. Encoding the feature original information and obtaining falsification prevention information for proving that the feature original information has not been tampered with;
Storing the falsification prevention information in a third party;
Transmitting the tampering-prevention verification information obtained from the verification information to the third party organization. 9. The personal authentication method according to claim 7, wherein the verification information is at least one of biometric information, face image, iris information, fingerprint information, voiceprint information, genetic information, and a moving image. The falsification prevention information is at least one of pixels on any one horizontal or vertical line of the image related to the feature original information, or at least one of the number of bits of data related to the feature original information. The personal authentication method according to claim 8. An original storage unit for storing biometric information of the device owner or occupied user as characteristic original information for personal verification,
A collation information acquisition unit for acquiring collation information of the device user,
A collation unit that collates the feature original information with collation information,
A transmitting unit for transmitting the collation result to the other party. A falsification prevention information acquisition unit that encodes the characteristic original information and acquires falsification prevention information for proving that the characteristic original information is not falsified;
A storage unit for storing the falsification prevention information in a third party,
The personal authentication apparatus according to claim 11, further comprising: a second transmission unit that transmits tampering prevention collation information obtained from the collation information to the third party organization. 13. The personal authentication device according to claim 11, wherein the verification information is at least one of biometric information, face image, iris information, fingerprint information, voiceprint information, genetic information, and a moving image. 13. The personal authentication device according to claim 11, wherein the device is included in a camera-equipped mobile phone. A storage unit for storing face characteristics at the time of initial use of the owner or occupant of the camera-equipped mobile phone as feature original data for personal verification, and an imaging unit for imaging a face image with the camera of the camera-equipped mobile phone. An extracting unit that extracts a face feature at the time of a matching request from the face image, a matching unit that matches the feature original data with the face feature at the time of the matching request, and a first transmission that sends the face information matching result to a service providing destination And the data obtained by encoding the face image at the time of first use used to create the feature original data to a third party organization as falsification prevention code original data for proving that the feature original data has not been tampered with. A camera-equipped mobile phone comprising: a second transmission unit for transmitting; and a third transmission unit for transmitting data obtained by encoding the face feature at the time of the collation request to the third party as falsification prevention code collation data.
A falsification prevention code original storage unit for storing the transmitted falsification prevention code original data, a falsification prevention collation unit for collating the falsification prevention code original data with the transmitted falsification prevention code verification data, A third party organization having a falsification prevention collation result transmitting unit for transmitting the falsification prevention collation result to the service provider,
A first receiver for receiving the transmitted face information collation result, a second receiver for receiving the transmitted falsification prevention collation result, and the collation request with the face information collation result and the falsification prevention collation result. A service providing destination including a determination unit for determining the authenticity of a person.

Images