JP2004334788A - Personal identification system, authentication device, personal identification method, program, and recording medium - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a system or the like which can recognize fingerprints and sense the operation of user's finger by a display, using image-capture function. <P>SOLUTION: An authentication device 100 is provided with the function of recognizing whether a finger print pattern sensed in a display section 40 with the image capture function agrees with the user's finger pattern information registered beforehand, and to recognize whether the operation of the user's finger sensed in the display section 40 with image capture function agrees with the operation pattern information registered beforehand. In addition to regular display functions of display objects 30, such as a variety of menus and buttons, the display section 40 with the image capture function is provided with a fingerprint pattern sensing feature which senses user's fingerprint pattern and a sensing feature of operation which senses the movement of the user's finger by the display with image-capture function. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

[0001]
TECHNICAL FIELD OF THE INVENTION
The present invention relates to a personal authentication system, an authentication device, a personal authentication method, a program, and a recording medium using a fingerprint pattern of a user, and particularly relates to a fingerprint pattern of a user and an operation pattern of a finger by a display with an image capture function. The present invention relates to a personal authentication system, an authentication device, a personal authentication method, a program, and a recording medium that sense.
[0002]
[Prior art]
2. Description of the Related Art Conventionally, there is an authentication device that can perform personal authentication by recognizing a fingerprint of a human finger. Currently available fingerprint authentication devices are capable of performing fingerprint authentication eight times per second, so that continuous identification can be performed, and when the user releases their finger from the device or substitutes for another person on the way, they can immediately sense it. There is something.
[0003]
[Problems to be solved by the invention]
However, since the conventional fingerprint authentication device recognizes only the fingerprint pattern of the user, it is not possible to completely prevent another person having a fingerprint with high similarity from impersonating and using the user. Had a point.
[0004]
In addition, since the conventional fingerprint authentication device cannot detect the movement of a human finger, it is necessary to separately operate a button or the like for the operation of the device after recognition.
[0005]
As described above, the conventional recognition device and the like have a number of problems. As a result, both the user and the manager of the recognition device are inconvenient and use efficiency is low. Was.
[0006]
The present invention has been made in view of the above problems, and provides a personal authentication system, an authentication device, a personal authentication method, a program, and a recording medium that can recognize a fingerprint and detect a movement of a user's finger. It is intended to be.
[0007]
[Means for Solving the Problems]
In order to achieve such an object, a personal authentication system according to claim 1 includes an authentication device for authenticating that a user having a display with an image capture function is a legitimate user, A personal authentication system including an external device that performs fingerprint authentication, wherein the authentication device detects the fingerprint pattern of the user by the display with the image capture function, and the fingerprint pattern sensed by the fingerprint detection device. Fingerprint authentication means for authenticating whether the fingerprint pattern information matches the user's fingerprint pattern information registered in advance, operation sensing means for sensing the movement of the user's finger by the display with the image capture function, and sensing by the operation sensing means Operation identification means for identifying whether the above-mentioned operation matches the operation pattern information registered in advance. And it features.
[0008]
According to this system, the display with the image capture function detects the fingerprint pattern of the user, recognizes whether the detected fingerprint pattern matches the fingerprint pattern information of the user registered in advance, and uses the fingerprint pattern information with the display with the image capture function. By detecting the movement of the user's finger and recognizing whether the detected movement matches the pre-registered movement pattern information, it is possible to use both personal authentication by fingerprint using a display with an image capture function and authentication by movement together. It is possible to enhance security, and it is possible to simultaneously input a command to an external device or the like to be used after authentication.
[0009]
The personal authentication system according to claim 2 is the personal authentication system according to claim 1, wherein the authentication device recognizes a finger spot which is an area where the user's finger is sensed. It is characterized by further comprising recognition means, and finger cursor display means for displaying a finger cursor at a position at a predetermined distance from the finger spot recognized by the finger spot recognition means.
[0010]
According to this system, a finger spot, which is an area where a user's finger is sensed, is recognized, and a finger cursor is displayed at a position at a predetermined distance from the recognized finger spot. In this case, it is possible to specify a pinpoint input position or a fine input position.
[0011]
A personal authentication system according to a third aspect is the personal authentication system according to the first or second aspect, wherein the authentication device stores instruction information corresponding to the operation pattern information of the user. Means, and command information search means for searching for the command information corresponding to the operation pattern information recognized by the operation identification means.
[0012]
According to this system, the authentication device stores the command information corresponding to the user's operation pattern information and searches for the command information corresponding to the recognized operation pattern information. Can be specified in a series of operations.
[0013]
In the personal authentication system according to a fourth aspect, in the personal authentication system according to the third aspect, the authentication device includes an instruction information executing unit that executes the instruction information retrieved by the instruction information retrieval unit. It is further characterized by comprising:
[0014]
According to this system, the authentication device executes the searched instruction information, and thus can execute various instruction information such as shifting from the privileged mode to the user mode by an operation designated.
[0015]
According to a fifth aspect of the present invention, in the personal authentication system according to the third or fourth aspect, the authentication device transmits the command information retrieved by the command information retrieval means to the external device. Command information transmitting means is further provided.
[0016]
According to this system, since the authentication device transmits the searched command information to the external device, it becomes possible to transmit various types of command information to the external device by a designated operation.
[0017]
Also, the present invention relates to an authentication device, wherein the authentication device according to claim 6 is a fingerprint sensing means for sensing a fingerprint pattern of a user by a display with an image capture function, and the fingerprint sensing means sensed by the fingerprint sensing means. A fingerprint authentication unit that authenticates whether a fingerprint pattern matches the pre-registered fingerprint pattern information of the user, an operation sensing unit that senses the operation of the user's finger by a display with an image capture function, and the operation sensing unit. Operation identification means for identifying whether the detected operation matches the registered operation pattern information.
[0018]
According to this authentication device, the fingerprint pattern of the user is sensed by the display with the image capture function, and whether the sensed fingerprint pattern matches the fingerprint pattern information of the user registered in advance is recognized, and the display with the image capture function is recognized. Since user's finger motion is sensed and it is recognized whether the sensed motion matches the pre-registered motion pattern information, the use of both fingerprint authentication using a display with an image capture function and motion-based authentication is required. As a result, security can be enhanced, and a command or the like to an external device or the like to be used after authentication can be simultaneously input.
[0019]
The authentication device according to claim 7 is the authentication device according to claim 6, wherein the finger spot recognition means for recognizing a finger spot which is an area where the user's finger is sensed; Finger cursor display means for displaying a finger cursor at a position at a predetermined distance from the finger spot recognized by the spot recognition means.
[0020]
According to this authentication device, a finger spot, which is an area where a user's finger is sensed, is recognized, and a finger cursor is displayed at a position at a predetermined distance from the recognized finger spot. In this way, it is possible to specify a pinpoint input position or a fine input position.
[0021]
The authentication device according to claim 8 is the authentication device according to claim 6 or 7, wherein the command information storage unit stores command information corresponding to the operation pattern information of the user, and the operation identification unit. Command information searching means for searching for the command information corresponding to the operation pattern information recognized by the above.
[0022]
According to this authentication device, the authentication device stores the command information corresponding to the user's operation pattern information and searches for the command information corresponding to the recognized operation pattern information. Etc. can be designated by a series of operations.
[0023]
According to a ninth aspect of the present invention, in the authentication device of the ninth aspect, the authentication device further comprises an instruction information execution unit that executes the instruction information retrieved by the instruction information retrieval unit. I do.
[0024]
According to this authentication device, since the authentication device executes the searched command information, it can be executed by an operation in which various command information such as shifting from the privileged mode to the user mode is designated.
[0025]
According to a tenth aspect of the present invention, in the authentication device according to the eighth or ninth aspect, the command information transmitting means for transmitting the command information retrieved by the command information retrieving means to the external device is further provided. It is characterized by having.
[0026]
According to this authentication device, since the authentication device transmits the searched command information to the external device, it becomes possible to transmit various types of command information to the external device by the specified operation.
[0027]
Further, the present invention relates to a personal authentication method, wherein the personal authentication method according to claim 11 authenticates a user having a display with an image capture function as a valid user, A personal authentication method performed using a personal authentication system including an external device used by a user, wherein the fingerprint detecting step includes detecting a fingerprint pattern of the user by the display with an image capture function. A fingerprint authentication step of authenticating whether the fingerprint pattern sensed in step 1 matches fingerprint information of the user registered in advance, and an operation sensing step of sensing movement of the user's finger by the display with the image capture function. And an operation pattern in which the operation detected in the operation detection step is registered in advance. Characterized in that it comprises an operation identification identifying or matches the information.
[0028]
According to this method, the fingerprint pattern of the user is sensed by the display with the image capture function, it is recognized whether the sensed fingerprint pattern matches the fingerprint pattern information of the user registered in advance, and the display is used by the display with the image capture function. By detecting the movement of the user's finger and recognizing whether the detected movement matches the pre-registered movement pattern information, it is possible to use both personal authentication by fingerprint using a display with an image capture function and authentication by movement together. It is possible to enhance security, and it is possible to simultaneously input a command to an external device or the like to be used after authentication.
[0029]
In the personal authentication method according to the twelfth aspect, in the personal authentication method according to the eleventh aspect, a finger spot recognition step of recognizing a finger spot which is an area where the user's finger is sensed, A finger cursor display step of displaying a finger cursor at a position at a predetermined distance from the finger spot recognized by the finger spot recognition means.
[0030]
According to this method, the finger spot, which is the area where the user's finger is sensed, is recognized, and the finger cursor is displayed at a position at a predetermined distance from the recognized finger spot. In this case, it is possible to specify a pinpoint input position or a fine input position.
[0031]
According to a thirteenth aspect of the present invention, in the personal authentication method according to the eleventh or twelfth aspect, the authentication device stores instruction information corresponding to the operation pattern information of the user. And a command information retrieving step of retrieving the command information corresponding to the motion pattern information recognized in the motion identification step.
[0032]
According to this method, the authentication device stores the command information corresponding to the user's operation pattern information and searches for the command information corresponding to the recognized operation pattern information. Can be specified in a series of operations.
[0033]
In a personal authentication method according to a fourteenth aspect, in the personal authentication method according to the thirteenth aspect, the authentication device includes a command information execution step of executing the command information retrieved in the command information retrieval step. It is further characterized by including.
[0034]
According to this method, since the authentication device executes the searched instruction information, the authentication device can execute various instruction information such as a transition from the privileged mode to the user mode by an operation designated.
[0035]
The personal authentication method according to claim 15 is the personal authentication method according to claim 13 or 14, wherein the authentication device transmits the command information retrieved in the command information retrieval step to the external device. And transmitting a command information.
[0036]
According to this method, since the authentication device transmits the searched command information to the external device, it becomes possible to transmit various types of command information to the external device by the specified operation.
[0037]
Further, the present invention relates to a program, and the program according to claim 16 is a personal authentication method executed by an authentication device for authenticating that a user having a display with an image capture function is a valid user. Is a program for causing a computer to execute, wherein the fingerprint sensing step of sensing the fingerprint pattern of the user by the display with the image capture function, and the fingerprint pattern sensed in the fingerprint sensing step is registered in advance. A fingerprint authentication step of authenticating whether the fingerprint pattern information matches the fingerprint pattern information of the user, an operation sensing step of sensing the operation of the user's finger by the display with the image capture function, and the operation sensed in the operation sensing step. Whether it matches the operation pattern information registered in advance Characterized in that it comprises an operation identification step further to.
[0038]
According to this program, a fingerprint pattern of a user is sensed by a display with an image capture function, and it is recognized whether or not the sensed fingerprint pattern matches fingerprint information of a user registered in advance, and is used by a display with an image capture function. By detecting the movement of the user's finger and recognizing whether the detected movement matches the pre-registered movement pattern information, it is possible to use both personal authentication by fingerprint using a display with an image capture function and authentication by movement together. It is possible to enhance security, and it is possible to simultaneously input a command to an external device or the like to be used after authentication.
[0039]
According to a seventeenth aspect of the present invention, in the program according to the sixteenth aspect, a finger spot recognition step of recognizing a finger spot which is an area where the user's finger is detected, and the finger spot recognition A finger cursor displaying step of displaying a finger cursor at a position at a predetermined distance from the finger spot recognized by the means.
[0040]
According to this program, a finger spot, which is a region where a user's finger is sensed, is recognized, and a finger cursor is displayed at a position at a predetermined distance from the recognized finger spot. In this case, it is possible to specify a pinpoint input position or a fine input position.
[0041]
The program according to claim 18 is the program according to claim 16 or 17, wherein the command information storing step stores command information corresponding to the operation pattern information of the user and the operation identification step. And a command information search step of searching for the command information corresponding to the performed operation pattern information.
[0042]
According to this program, the program stores the command information corresponding to the user's operation pattern information and searches for the command information corresponding to the recognized operation pattern information. It can be specified by a series of operations.
[0043]
A program according to a nineteenth aspect is the program according to the eighteenth aspect, further comprising an instruction information execution step of executing the instruction information retrieved in the instruction information retrieval step.
[0044]
According to this program, since the program executes the searched instruction information, it can be executed by an operation in which various kinds of instruction information are designated, such as shifting from the privileged mode to the user mode.
[0045]
Further, the program described in claim 20 is the program according to claim 18 or 19, further comprising a command information transmitting step of transmitting the command information retrieved in the command information retrieving step to the external device. It is characterized by.
[0046]
According to this program, since the program transmits the searched command information to the external device, it becomes possible to transmit various command information to the external device by the designated operation.
[0047]
The present invention also relates to a recording medium, wherein the recording medium according to claim 21 records a program for causing a computer to execute the program according to any one of claims 16 to 20. It is characterized by.
[0048]
According to this recording medium, a program recorded in the recording medium is read and executed by a computer, thereby realizing the program described in any one of claims 16 to 20 using a computer. And the same effects as those of these programs can be obtained.
[0049]
BEST MODE FOR CARRYING OUT THE INVENTION
Hereinafter, embodiments of a personal authentication system, an authentication device, a personal authentication method, a program, and a recording medium according to the present invention will be described in detail with reference to the drawings. It should be noted that the present invention is not limited by the embodiment.
[0050]
[Overview of this system]
Hereinafter, an outline of the present system will be described, and thereafter, the configuration and processing of the present system will be described in detail. FIG. 1 is a block diagram showing an example of the overall configuration of the present system, and conceptually shows only those parts of the system configuration related to the present invention.
[0051]
The present system is configured by mutually connecting an authentication device 100 for authenticating that a user is a valid user and an external device 200 used by the user via a network 300.
[0052]
This system generally has the following basic features: That is, the authentication device 100 includes the display unit 40 with the image capture function, and the communication unit 108 that communicates with the network 300 using various wireless or wired communication means.
[0053]
The authentication device 100 recognizes whether the fingerprint pattern sensed by the display unit 40 with the image capture function matches the fingerprint pattern information of the user registered in advance, and detects the user's sensed by the display unit 40 with the image capture function. It has a function of recognizing whether or not a finger motion matches motion pattern information registered in advance.
[0054]
That is, the display unit 40 with the image capture function can display the display objects 30 such as various menus and buttons (for example, general menus, buttons, barcodes, and the like, finger spots, finger cursors, and the like, which will be described later). In addition to a normal display function such as the above, a fingerprint pattern sensing function for sensing the fingerprint pattern of the user and an operation sensing function for sensing the movement of the user's finger on the display with the image capture function are provided.
[0055]
Further, the authentication device 100 stores the command information corresponding to the operation pattern information of the user's finger in the storage device, and searches the command information corresponding to the operation pattern information recognized by the display unit 40 with the image capture function, The searched instruction information is executed, and the searched instruction information is transmitted to the external device 200 via the communication unit 108.
[0056]
FIG. 2 is a conceptual diagram for explaining the basic principle of the display unit 40 with an image capture function of the present invention. As shown in FIG. 2, the display unit 40 with the image capture function includes a light-receiving element such as an optical sensor (shown by a liquid crystal circle in FIG. 2) in a light-emitting pixel (a portion indicated by a square of the liquid crystal in FIG. 2) in the liquid crystal. Part).
[0057]
At present, an image capture (input) display device capable of directly capturing an image from a display screen of a TFT liquid crystal has been developed. The display unit 40 with an image capture function of the present invention is, for example, a QVGA diagonal 8. A 9 cm (3.5 type) low temperature polysilicon TFT-LCD having a display function as a normal liquid crystal display device may be used.
[0058]
The display unit 40 with an image capture function can capture an image by reacting a light receiving element on the back side when a printed material or the like is brought into contact with the display surface of the liquid crystal, and the captured image information is converted into a digital signal. 100 enables processing such as analysis, processing, and storage.
[0059]
That is, in the present invention, the fingerprint pattern of the finger touching the screen is sensed by the light receiving element on the back surface of the liquid crystal of the display unit 40 with the image capture function (fingerprint pattern sensing function), and the finger is kept in contact with the screen. When a finger is moved, the movement of the finger can be sensed (motion sensing function).
[0060]
When the user raises a finger, lays down, wakes up, or tilts left and right, the tilt is recognized. As a result, the user can input information meaning directions such as up, down, left, and right. This is an alternative to the operation of moving the PC mouse up and down and left and right on the desk.
[0061]
Further, by recognizing the touch (contact) and the detachment (non-contact) of the finger on the display screen, the click and the double click using the mouse button of the PC are substituted.
[0062]
While recognizing the above-mentioned finger movement, at the same time, the fingerprint authentication unit of the authentication device 100 performs the personal identification by the fingerprint, and furthermore, the movement identification unit identifies the finger movement, thereby permitting a restricted operation or the like. Prevents unauthorized people from performing certain actions.
[0063]
In addition, this makes it possible to operate a display object, which is currently realized by a mouse or a touch pad, on the screen with only a finger.
[0064]
FIG. 3 is a diagram for explaining the concept of cursor movement and clicking in conjunction with the movement of a finger. As shown in FIG. 3, the display unit 40 with the image capture function can place a finger on the object displayed on the screen, move (drag) the finger, or sense a change in the inclination of the finger.
[0065]
Selection of a menu is performed by clicking on the display unit 40 with the image capture function (by quickly touching a button once with a finger or twice). Menu selection by clicking can only be performed by certain authorized persons. Further, by the processing of the fingerprint authentication unit of the authentication device 100, the person who has performed the click operation can be specified. That is, almost all computer operations including cursor movement and the like can be directly performed on the display unit 40 with the image capture function using a finger.
[0066]
Further, since the display unit 40 with the image capture function can recognize the fingerprint even while the cursor is moving, the movement of the cursor can be selectively limited, and can be limited to only the menu selection permitted by the user. That is, the restricted menu cannot be selected.
[0067]
Referring again to FIG. 1, the main objects of the external device 200 include, but are not limited to, a computer, a mobile phone, a PDA, a game machine, a business mobile device, a cash register, a vending machine, an ATM, and the like. In addition, the authentication device 100 and the external device 200 can be configured integrally.
[0068]
In addition, various menus, icons, buttons, selection lists, and the like, such as those currently used in personal computers and various devices, can be displayed from the external device 200 using the display function of the display unit 40 with the image capture function of the authentication device 100. By using these combinations, complicated and sophisticated instructions and intentions can be displayed. FIG. 4 and FIG. 5 show an example in which this is realized on a computer screen.
[0069]
FIG. 4 is a diagram illustrating an example of a case where a menu screen is displayed on the display unit 40 with the image capture function of the authentication device 100. As shown in FIG. 4, each display object on the menu screen displayed on the display unit 40 with the image capture function of the authentication device 100 is directly dragged, clicked, double-clicked, and the like with a finger, and at the same time, fingerprint authentication is performed. As a result, it is possible to limit and specify the selection target and the operation content.
[0070]
FIG. 5 is a diagram illustrating another example of a case where a menu screen is displayed on the display unit 40 with the image capture function of the authentication device 100. As shown in FIG. 5, each display object displayed on the display unit 40 with the image capture function of the authentication device 100 is a number or a character, or “Yes”, “No”, “approved”, “non-approved”, or the like. Can be associated with an operation. The selection and input information of such an object can be proved together with the content and the identity of the operator by fingerprint authentication performed at the same time.
[0071]
FIG. 12 is a conceptual diagram showing another system configuration of the present invention. Mainly due to cost factors, the authentication device 100 of the present invention is configured so as to be integrated with or detachable from an external device 200 such as a normal computer, and is mounted separately and separately from a liquid crystal display device dedicated to display of the external device 200. May be. In this case, it is a complete replacement for the current touchpad, which ensures that all operations such as menu and button selection have been performed by the user.
[0072]
However, the above function may be realized by another alternative means. For example, even if the motion sensing function of sensing the movement of the user's finger by the display with the image capture function is realized using a sensor such as a microswitch or a piezoelectric element arranged on the outer edge of the button-shaped switch, the present invention Is maintained, and is established irrespective of a method of realizing a button or the like.
[0073]
Further, the display device may be realized by other means instead of the liquid crystal, and may be realized by other means having an input function. In short, any device may be used as long as the display device and the input device are integrated and the display surface and the input surface are formed of the same surface.
[0074]
Next, the concept of the present invention in the case where a finger spot and a finger cursor are displayed on a display with an image capture function will be described with reference to FIG. FIG. 35 is a conceptual diagram illustrating the concept of a finger spot and a finger cursor according to the present invention.
[0075]
According to the present invention, the user can specify an object on the screen by touching the screen with a finger and drag the object, and can select a menu or the like by clicking. However, in reality, the area specified by the finger is limited to the size of the finger, and it is difficult to pinpoint fine specification. It is not easy to operate by selecting a small menu on the screen.
[0076]
In order to improve it, an arrow (cursor) is displayed on the screen where the finger points and a few centimeters away. This is called a finger cursor. The concept shown in FIG. 35 is that, when a finger is touched on the screen, an area (finger spot) representing the result of recognizing the position of the finger and a finger cursor appear, and the tip thereof becomes a cursor on the screen. The relative relationship between the position of the finger and the position of the cursor can be freely changed by sensing the inclination of the finger, rolling left and right, and the like.
[0077]
As shown in FIG. 35, the part (finger spot) in contact with the finger and the cursor associated therewith (finger cursor) move with the movement of the finger when the finger moves (drags) on the screen, and the mouse moves. Replace the cursor function that moves in conjunction with.
[0078]
You can click and double-click where your finger is located (finger spot). This replaces the function of the button on the mouse. It is possible to authenticate a fingerprint on a finger spot at any point in the entire process of the above operation.
[0079]
As described above, according to the present invention, it is possible to perform personal authentication and identification using a fingerprint for an arbitrary screen object at an arbitrary point on the screen.
[0080]
[System configuration]
Hereinafter, the configuration of the present system for realizing such basic features will be described.
[0081]
[System Configuration-Authentication Device 100]
First, the configuration of the authentication device 100 will be described.
FIG. 6 is a block diagram illustrating an example of a configuration of the authentication device 100 to which the present invention is applied, and conceptually illustrates only a part related to the present invention in the configuration. In FIG. 6, the authentication device 100 outputs a display object, and a display unit 40 with an image capture function that senses a user's fingerprint pattern and a user's finger movement. A communication unit 108 that communicates with the external device 200 using various wireless or wired communication means, a communication control interface unit 104 connected to the communication unit 108, and various databases (authentication). A storage unit 106 for storing an information database 106a to an operation information database 106b) and the like, and an input / output control interface unit 110 connected to the display unit 40 with an image capture function and various input / output devices. These parts are communicably connected via an arbitrary communication path. That. Further, the authentication device 100 is communicably connected to a network 300 via a communication unit 108.
[0082]
Various databases (authentication information database 106a to operation information database 106b) stored in the storage unit 106 are storage means such as a fixed disk device, and various programs, tables, files, and databases used for various processes and for providing a website. And files for web pages.
[0083]
Among these constituent elements of the storage unit 106, the authentication information database 106a is an authentication information storage unit that stores authentication information related to a user's fingerprint. FIG. 7 is a diagram illustrating an example of authentication information stored in the authentication information database 106a.
[0084]
As shown in FIG. 7, the information stored in the authentication information database 106a is configured by associating a user ID for uniquely identifying each user, fingerprint pattern information of each user, and the like. .
[0085]
Here, the fingerprint pattern information is extracted by analyzing, for example, image data of a fingerprint and the image data using an existing pattern analysis technology such as a dynamic programming (DP) method or a hidden Markov model (HMM). Information on the characteristics of the fingerprint. Further, the fingerprint pattern information may include image data, a text file, a moving image file, and the like.
[0086]
The operation information database 106b is an instruction information storage unit that stores instruction information corresponding to the operation pattern information. FIG. 8 is a diagram illustrating an example of information stored in the operation information database 106b.
[0087]
As shown in FIG. 8, the information stored in the operation information database 106b includes a user ID for uniquely identifying the user, operation pattern information on a pattern of a user's finger operation, and instruction information to be executed. Are associated with each other.
[0088]
Here, the motion pattern information is extracted by analyzing, for example, the coordinate data of the motion pattern and the existing pattern analysis technology such as the dynamic programming method (DP method) and the Hidden Markov Model (HMM). And information on the characteristics of the movement of the finger. The operation pattern information may include image data, a text file, a moving image file, and the like.
[0089]
6, a communication control interface unit 104 controls communication between the authentication device 100 and the network 300 (or a communication device such as a router). That is, the communication control interface unit 104 has a function of communicating data with the external device 200 or another terminal via a communication line.
[0090]
In FIG. 6, an input / output control interface unit 110 controls the display unit 40 with an image capture function and other input devices and output devices. Here, as the output device, in addition to a monitor (including a home television), a speaker can be used (hereinafter, the output device is described as a monitor). In addition, a keyboard, a mouse, a microphone, or the like can be used as the input device. The monitor also realizes a pointing device function in cooperation with the mouse.
[0091]
In FIG. 6, the display unit 40 with an image capture function includes a display unit 10 having a display function of various menus and buttons by a light emitting element, a fingerprint pattern sensing function of sensing a fingerprint pattern of a user by a light receiving element, and And an image capture unit 20 having an operation sensing function of sensing an operation of a user's finger.
[0092]
6, the control unit 102 has a control program such as an OS (Operating System), a program defining various processing procedures, and an internal memory for storing required data. And information processing for executing various processes. The control unit 102 functionally includes a recognition algorithm unit 102a, a command information execution unit 102b, an operation mode management unit 102c, a finger spot recognition unit 102f, and a finger cursor display control unit 102g. .
[0093]
Among them, the recognition algorithm unit 102a authenticates whether the fingerprint pattern detected by the fingerprint detecting unit matches the fingerprint pattern information of the user registered in advance, and the operation detected by the operation detecting unit is registered in advance. The operation pattern information is identified. FIG. 9 is a block diagram illustrating an example of a configuration of the recognition algorithm unit 102a. Here, as shown in FIG. 9, the recognition algorithm unit 102a includes a fingerprint authentication unit 102d and an operation identification unit 102e.
[0094]
The fingerprint authentication unit 102d in FIG. 9 is a fingerprint authentication unit that authenticates whether the fingerprint pattern detected by the fingerprint detection unit matches the user's fingerprint pattern information registered in advance.
[0095]
Here, the fingerprint authentication unit 102d analyzes the fingerprint pattern detected using an existing pattern analysis technology such as a dynamic programming (DP) method or a hidden Markov model (HMM), and extracts a feature. The fingerprint is recognized by comparing the feature with fingerprint pattern information registered in advance in the authentication information database 106a.
[0096]
The operation identification unit 102e is an operation identification unit that identifies whether the operation detected by the operation detection unit matches the operation pattern information registered in advance.
[0097]
Here, the motion identification unit 102e analyzes the detected motion pattern using an existing pattern analysis technology such as a dynamic programming method (DP method) or a Hidden Markov Model (HMM), and extracts a feature. The operation is recognized by comparing the feature with operation pattern information registered in advance in the operation information database 106b.
[0098]
Returning to FIG. 6 again, the command information execution unit 102b is a command information search unit that searches for the command information corresponding to the motion pattern information recognized by the motion identification unit, and is also searched by the command information search unit. Instruction information executing means for executing the instruction information.
[0099]
The operation mode management unit 102c is an operation mode management unit that manages various operation modes of the authentication device 100.
[0100]
The finger spot recognizing unit 102f is a finger spot recognizing unit that recognizes a finger spot that is an area where a user's finger is detected.
[0101]
The finger cursor display control unit 102g is a finger cursor display unit that displays a finger cursor at a position at a predetermined distance from the finger spot recognized by the finger spot recognition unit.
[0102]
The details of the processing performed by these units will be described later.
[0103]
[System Configuration-Network 300]
Next, the configuration of the network 300 will be described. The network 300 has a function of interconnecting the authentication device 100 and the external device 200, and is, for example, a wireless LAN, Bluetooth, a public telephone network, the Internet, or the like.
[0104]
[System processing]
Next, an example of the processing of the present system configured as described above according to the present embodiment will be described in detail with reference to FIGS.
[0105]
FIG. 10 is a conceptual diagram illustrating an example of a process of displaying a screen and receiving a user instruction by the authentication device 100. When the display unit 40 with the image capture function as the display / input device of the liquid crystal device is used, a display is performed from the computer or the device side as the external device 200, and the operator of the authentication device 100 returns an answer to the display. The system is realized.
[0106]
First, the authentication device 100 displays a menu or a button received from the external device 300 (computer) by the processing of the control unit 102 (step SA-1).
[0107]
Next, the user makes a selection by touching the screen of the display unit 40 with the image capture function (step SA-2). This is natural, easy to use, and has affinity, compared to conventional pointing devices such as a mouse and a touch pad, because it only requires pressing the screen with a finger.
[0108]
The finger spot recognition unit 102f of the authentication device 100 can detect a place touched by a user's finger through the image capture unit 20 of the display unit 40 with an image capture function, and display positions of menus and buttons. By collating with, the content selected by the user can be captured. At the same time, the fingerprint recognition unit 102d authenticates the detected fingerprint pattern (step SA-3). In addition, the operation identifying unit 102e identifies whether the sensed operation matches the operation pattern information registered in the operation information database 106b in advance.
[0109]
Then, if the operation or selection is permitted by the user, the command information execution unit 102b transmits a permission signal to the external device 200 via the communication unit 108 (step SA-4). On the other hand, when rejected, the command information execution unit 102b transmits a rejection signal to the external device 200 via the communication unit 108.
[0110]
FIG. 11 is a conceptual diagram illustrating another example of the process of displaying a screen and receiving a user instruction by the authentication device 100.
[0111]
First, the authentication device 100 displays the display objects 30 such as menus and buttons received from the external device 300 (computer) on the display unit 40 with the image capture function by the processing of the control unit 102 (step SB-1).
[0112]
Next, the user makes a selection by touching the screen of the display unit 40 with the image capture function (step SB-2).
[0113]
When the finger spot recognition unit 102f of the authentication device 100 senses the place touched by the finger and the fingerprint pattern via the image capture unit 20 of the display unit 40 with an image capture function (step SB-3), the operation identification unit Reference numeral 102e identifies the user's operation by comparing the display position of the menu or the button. At the same time, the fingerprint recognition unit 102d authenticates the detected fingerprint pattern (Step SB-4).
[0114]
Then, the command information execution unit 102b transmits a permission signal to the external device 200 via the communication unit 108 if the operation or selection is permitted by the user. On the other hand, when rejected, the command information execution unit 102b transmits a rejection signal to the external device 200 via the communication unit 108.
[0115]
[Concept of movement of user's finger]
Next, the concept of the user's finger movement will be described in detail with reference to FIG. FIG. 13 is a diagram illustrating an example of a concept of a motion of a finger of a user of the present system in the present embodiment.
[0116]
The motion identification unit 102e can detect the movement of the user's finger via the image capture unit 20 of the display unit 40 with an image capture function, and recognizes the horizontal movement and tilt of the finger.
[0117]
This allows the user to input a direction such as up, down, left, or right in addition to the user pressing the switch in the vertical direction. This is an alternative to moving the mouse on a desk.
[0118]
In addition, the motion identification unit 102e can detect a touch of a finger through the image capture unit 20 of the display unit 40 with an image capture function, and can recognize a touch and a detachment of the finger on the recognition surface. This replaces the click and double-click using mouse buttons.
[0119]
In general, a password is represented by a character or a number, but the password can be replaced by a series of rolling operations of a user's finger on the display unit 40 with an image capture function. As a result, even with a single recognition button, in addition to fingerprint authentication, strong security can be ensured by adding a password consisting of a series of finger movements.
[0120]
Further, the operation pattern (also called a motion sequence) can be used not only to increase the strength of security but also to instruct an external device to perform an operation related to a direction. For example, there are applications such as increasing or decreasing a set value of a target external device in a stepwise manner, or indicating an operation direction of a robot arm or the like.
[0121]
Further, the motion sequence input by the user to the display unit 40 with the image capture function may be linked to some specific function of the external device.
[0122]
For example, in the operation pattern shown in FIG. 13, a motion sequence in the upward direction, four clicks, and the left direction is registered as a command for shifting to a privileged mode described later. In order to realize such an application of the motion sequence, the motion sequence can be input from the display unit 40 with the image capture function, can be stored in the operation information database 106b of the storage unit 106, and transmitted to the outside if necessary. Can be saved.
[0123]
In the present system, by using a motion sequence in addition to the authentication of a person using a fingerprint, it becomes possible for one recognition button to have a plurality of meanings and functions beyond the original function range of the recognition button. As a result, even with a single recognition button, setting or switching of a plurality of security levels or control of a complicated device that can be used only by a permitted person or the person himself / herself becomes possible.
[0124]
[Operation mode management]
Next, details of the management of the operation mode will be described with reference to FIGS. FIG. 14 is a diagram illustrating an example of transition of the operation mode of the present system in the present embodiment.
[0125]
The fingerprint authentication function used by a general user by the present apparatus includes an authentication mode in which authentication is always performed and a non-authentication mode in which authentication is not performed, and the mode can be switched by a privileged mode operation.
[0126]
In the authentication mode, the display unit 40 with the image capture function always reads the fingerprint of the finger placed or pressed, and identifies whether or not it is the fingerprint of the person registered in advance. On the other hand, in the non-authentication mode, the recognition button does not authenticate the fingerprint and always interprets that the user is himself. Switching of the authentication mode is performed after shifting to the privileged mode.
[0127]
The authentication device 100 has a privilege mode and a user mode. In each mode, the following functions can be executed.
[0128]
First, in the privilege mode, a new authentic fingerprint can be registered, a previously registered fingerprint can be deleted, and a motion sequence can be registered. In addition, it is possible to shift from the privileged mode to the authenticated user mode or to shift to the non-authenticated mode.
[0129]
Next, in the authenticated user mode, it is possible to shift from the privileged mode to the authenticated user mode, and to perform fingerprint authentication for all or an operation in the user mode instructed by the application.
[0130]
Next, in the non-authentication user mode, it is possible to shift from the privileged mode to the non-authentication user mode, or to freely operate all user modes without authentication.
[0131]
Here, “operation” refers to anything that can be performed by the user through operations such as pressing various buttons, rolling a finger, clicking, selecting a menu, and inputting with a pen.
[0132]
FIG. 15 is a flowchart illustrating an example of an operation mode transition process executed by the operation mode management unit 102c of the authentication device 100 according to the present embodiment.
[0133]
The transition from the user mode to the privilege mode is performed by inputting a motion sequence determined in advance by the user. Therefore, the device constantly monitors the action of the user's finger, compares it with the contents of the motion memory, and shifts to the privileged mode if the contents match.
[0134]
First, a patent mode for initial setting is set (step SC-1).
[0135]
Next, an operation permitted in the privilege mode is executed (step SC-2).
[0136]
Next, a motion sequence registration is selected from a button or a menu, and a series of finger motions is input (step SC-3).
[0137]
Next, the finger action (transition command) is registered in the motion information database 106b as a motion memory (step SC-4).
[0138]
Next, a button for selecting transition to the user mode is pressed or a movement menu is selected (step SC-5).
[0139]
When the mode is shifted to the user mode, the operation in the user mode is performed (step SC-7), and collation with the motion memory is performed by finger action monitoring. If the motion memory content matches the finger operation (step SC- 7). 8) The mode is shifted to the privilege mode (step SC-10). If the motion memory content does not match the finger operation (step SC-9), the user mode is continued (step SC-6).
[0140]
[When the recognition device 100 is installed on the operation target]
Next, details of the case where the recognition button is provided on the operation target will be described with reference to FIGS. FIG. 16 and FIG. 17 are diagrams illustrating an example of a case where the recognition button of the present system in the present embodiment is installed on an operation target.
[0141]
As shown in FIGS. 16 and 17, one or a plurality of recognition devices 100 are arranged on an operation panel of an external device 200. The operation panel is attached to an object whose operation is to be restricted, and a selective operation is permitted only to a permitted person.
[0142]
Examples include locking and unlocking (houses, warehouses, cars, other medicines, dangerous goods storage, etc.), starting computers, starting applications, operating equipment, managing medicines and dangerous goods, and managing financial institutions. There are ATM and others, but it does not restrict all other uses.
[0143]
Next, FIG. 18 is a conceptual diagram showing a basic configuration when a recognition button is set on an operation target. The mounting method of the database or the like in the external device may be any method.
[0144]
As shown in FIG. 18, a PIN (Personal Identification Number) generated from an authentication result or a motion sequence is generated from a recognition button attached to a gate, a vending machine, a device, or the like. The PIN is not necessarily limited to the PIN itself, and may be a virtual PIN encrypted in combination with time or the like or an electronic certificate issued from a certificate authority. Alternatively, a key linked with the PKI instead of the PIN may be issued. Hereinafter, the unique code generated from this fingerprint is generically referred to as PIN.
[0145]
On the other hand, the external device 200 is equipped with a collation device including a computer and a database, and stores in advance a PIN and a key corresponding to a fingerprint whose acceptance is to be accepted in the database. The PIN generated based on the result of fingerprint recognition by the authentication device 100 is compared with the PIN in the database of the matching device by the matching device. If they match, the request is accepted, and if there is no match, the request is rejected.
[0146]
Next, FIG. 19 is a conceptual diagram showing another configuration when the recognition device 100 is installed on the external device 200 that is the operation target. This configuration identifies whether a portable device, card, or the like brought by the user is the user's own, and prevents unauthorized use due to theft or loss.
[0147]
First, the PIN code of the person is calculated from the fingerprint using another recognition device (step SD-1).
[0148]
Then, the PIN code is stored in the memory of a portable device such as a mobile phone or a card occupied by the user (step SD-2). The device may be an IC tag embedded in a paper medium such as a passport or air ticket.
[0149]
Then, the user brings the portable device to a place where authentication is required (step SD-3), and presses a corresponding button of the authentication device 100 installed on the external device 200 side (step SD-4). If a finger motion is input if necessary, a PIN is generated as a recognition result.
[0150]
Then, a signal of PIN reading is sent from the external device 200 to the card or the mobile phone, and the PIN stored in the card or the mobile phone is sent to the external device 200 (step SD-3).
[0151]
The external device 200 collates the PIN generated by the authentication device 100 as a recognition result with the PIN received from the outside (step SD-5), and authenticates that the bearer of the card or the mobile phone is the identity. If they match, it is accepted (step SD-6), and if they do not match, it is rejected (step SD-7).
[0152]
[When mounted on a remote control device that identifies the user]
Next, details of the case where the present authentication device according to the present embodiment is mounted on a remote control device will be described with reference to FIGS. FIG. 20 to FIG. 22 are diagrams illustrating an example in which the present authentication device according to the present embodiment is mounted on a remote control device.
[0153]
As shown in FIG. 20, the authentication device 100 is installed in a device such as a television or a remote control box for air conditioning, or a portable information device such as a mobile phone or a PDA. As a result, a portable remote operation device that allows only a specific person to operate a screen such as a menu or that can specify a person who operates the menu is established. Thereby, the operation can be instructed for the object only when the person has the remote control device for the person.
[0154]
The person who owns this device authenticates the person, such as locking / unlocking, starting / stopping the car engine, starting the computer, etc., and restricts the operation to the authority of the person. All types of remote control are possible and within that range.
[0155]
This remote operation includes operations necessary for purchasing from a vending machine and purchasing a ticket in addition to operating the devices and the like. The device can be made into a card shape by miniaturization.
[0156]
As shown in FIG. 21, this remote control device can be realized as a universal key that does not limit an object, and communicates with a device to be operated through a wired, wireless, infrared, etc. Can be reflected on the device.
[0157]
By unifying the interface between the operation device and the target device, it becomes a general-purpose remote control device capable of operating a plurality of targets.
[0158]
This acts like a universal key to prove that the person is genuine from the point of view of the holder, and can be used for any object that is allowed access, as long as there is a remote control device equipped with the authentication device 100. Even can send out the owner's will.
[0159]
This is like a remote control with an electronic seal that always guarantees that the owner and the user are the same, and if the device can interface with this, it is guaranteed that the instruction is from the person himself. The communication means used here selects a means with sufficient security and high confidentiality.
[0160]
If necessary, more complete authentication can be achieved by including an electronic signature in a message exchanged between the two.
[0161]
Further, as shown in FIG. 22, a remote control device provided with the present authentication device functioning as a universal key can be incorporated in various media, for example, a card, a PDA, a mobile phone, and the like.
[0162]
[When realizing this authentication device as a personal identification sensor]
Next, details of a case where the present authentication apparatus is realized as a personal identification sensor will be described with reference to FIG. FIG. 23 is a diagram illustrating an example of a case where the authentication device of the system according to the present embodiment is realized as a personal identification sensor.
[0163]
Focusing on the side receiving the signal from the remote control device equipped with this authentication device that functions as a universal key, those who are interested in the target may press the universal key toward the target Indicates that the person is interested in the object.
[0164]
Therefore, by installing a universal key receiving device (personal identification sensor) in various places and objects such as a poster, a show window, and a tag attached to a mannequin, the device can be used as a human sensor that can identify a person of interest.
[0165]
FIG. 23 is a diagram illustrating an application example of transmitting special information, an event, and the like to an individual customer using an individual identification sensor.
[0166]
The recognition button is pressed toward the object having the portable universal key and the sensor installed.
[0167]
Then, an ID or the like indicating an individual is sent from the universal key to the individual identification sensor. This makes it possible to grasp who, where, what, when, and when they showed interest.
[0168]
Further, ID information such as a PIN from the personal identification sensor can be sent to the customer management system, and special information for a specific customer such as special price and preferential treatment information ranked in the purchase history can be returned to the universal key.
[0169]
In addition, the owner of the universal key can know the contents through a display screen or the like. This enables individual one-to-one marketing and sales activities for specific individuals.
[0170]
Further, an auction in which a plurality of universal key owners assign a price to a product or service by using two-way communication and make a successful bid at the highest price among them is also possible. The scope of the invention is not limited to the examples given, but applies to other applications.
[0171]
[When linking this authentication device with other external devices]
Next, details of the case where the present authentication apparatus cooperates with a long distance or different dimension information with another external apparatus will be described with reference to FIGS. FIG. 24 and FIG. 25 are diagrams illustrating an example of the case where the present authentication device of the present system cooperates with another external device in the present embodiment.
[0172]
If the target is not a close target, the mobile device such as a mobile phone or a PDA, which can be wirelessly connected, is integrated with the universal key, so that it can be linked with the communication function of the device and exchange information with a remote target. Remote objects also include the use of Internet services connected over telephone lines.
[0173]
The remote control device provided with the present authentication device functioning as a universal key may be configured by itself, but can be integrated with a wirelessly connectable mobile device such as a mobile phone or a PDA (see FIG. 24). This makes it possible to exchange information with remote objects by linking it with the communication function of the device. Remote objects also include the use of Internet services connected over telephone lines.
[0174]
As a result, it becomes possible to link an operation on an object such as a vending machine in front of the user with a network-based information system that manages wide-area information.
[0175]
In addition to operating the object in response to the identity confirmation signal, it is also possible to configure a device such as a cash register to receive the account number, card information, phone number, etc. through communication and execute the payment in real time It is. It is also possible to securely and securely include the purchase price of the product and the usage fee of the service in the billing of the telephone usage fee of the user. For example, a service such as finding the nearest vending machine on the net when the product is out of stock by purchasing from the vending machine can be realized.
[0176]
In addition, in applications such as the auction described above, multiple providers use their universal keys to purchase conditions published through posters, bulletin boards, or show windows with personal identification sensors installed. It is also possible to realize a reverse auction in which sales conditions such as prices are presented to individual identification sensors.
[0177]
FIG. 25 is a schematic diagram illustrating an example of cooperation between the authentication device 100 and another device. The configuration shown in FIG. 25 can be said to be a configuration in which a relay device that guarantees personality links a nearby device with a computer application connected to a telephone line and the end of the Internet.
[0178]
In addition, the authentication device 100 may be installed in a movable car, and a usage form in which the authentication device 100 and a mobile phone cooperate with each other may be configured. The present invention is not limited to the example, but may be applied to other applications and configurations.
[0179]
[When realizing this authentication device as a hard key]
Next, details of a case where the present authentication apparatus is implemented as a hard key will be described with reference to FIG. 26 and the like. FIG. 26 is a diagram illustrating an example of a case where the authentication apparatus of the system according to the present embodiment is realized as a hard key.
[0180]
Currently, various hard keys for authenticating the user are being developed. Such a hard key can be inserted into a USB (Universal Serial Bus) port of a computer or a lower part of a mobile phone. If the hard key is inserted, it is regarded as being used by the person himself / herself, and the user can log in to the computer and be encrypted. Decryption from a message to a plaintext is performed.
[0181]
For mobile phones, UIM (Universal Identity Module) has been put to practical use. The UIM stores an encrypted telephone number, user ID, and the like. When inserted into a main body such as a telephone, the UIM is regarded as being used by the owner and can be used with a predetermined telephone number. The UIM can be detached from the telephone body and attached to another telephone.
[0182]
Although such a hard key is not a problem as long as it is owned and used by the person, it can be lost, stolen, lent, or used by others. That is, hard keys and UIMs alone cannot prevent impersonation of others.
[0183]
As shown in FIG. 26, by adding the authentication device 100 to the hardware key, the danger of using the hard key by anyone other than the person can be eliminated. As a result, the security of the portable device is increased, and high-value transactions and settlements in a company can be performed safely.
[0184]
For that purpose, the authentication interface must be common to the authentication device and the target personal computer or device. To do so, it is necessary to unify physical standards regardless of whether they are wireless or wired, and to unify software interfaces of middleware for linking with applications. FIG. 26 shows the role of the personal authentication device after such unification. The authentication device 100 certifies that the owner is the owner for all objects.
[0185]
Devices, PDAs, mobile phones, home information appliances, cards or hard keys can be freely combined, and the validity of the authentication device 100 does not change even in such a case.
[0186]
In addition, the authentication device 100 is installed on a device such as a mobile phone, a register, a computer, or an automobile, and the PIN sent from the personal recognition hardware side is compared with the PIN obtained from the display / input fingerprint authentication device installed on the device. May be performed.
[0187]
The current hard key is implemented as a socket that can be physically inserted, but may be implemented by wireless communication means such as wireless or infrared.
[0188]
[When realizing this authentication device as a prepaid card or smart card]
Next, details when the present authentication apparatus is realized as a prepaid card, a smart card, or the like will be described.
[0189]
By installing the authentication device 100 of the present invention on a card such as a prepaid card or a smart card that can store goods as a substitute for cash, it becomes possible to specify that the card user is the owner.
[0190]
Also, when purchasing goods and services, the price can be safely deducted from the card.
[0191]
Similarly, the authentication device 100 may be installed on the card reader, and may be configured to collate a PIN sent from the card with a PIN obtained from a recognition button installed on the reader.
[0192]
The card may be of a contact type or a non-contact type.
[0193]
[When realizing this authentication device as a barcode display, barcode reader, etc.]
Next, details of the case where the present authentication apparatus is realized as a barcode display, a barcode reader, and the like will be described below with reference to FIGS. 27 to 34 and FIGS. 36 to 39.
[0194]
Currently, in addition to ordinary print barcodes such as JAN codes, QR codes, two-dimensional barcodes such as MaxiCode, DataMatrix, and PDF417, active barcodes that can be used only through a liquid crystal display device, and the like are being developed.
[0195]
The two-dimensional code and the active code are often used for the purpose of distributing via a telephone line or the Internet in combination with a portable information device such as a mobile phone or a PDA.
[0196]
The display unit 40 with the image capture function of the authentication device 100 of the present invention can display a normal barcode, a two-dimensional barcode, and an active barcode using the screen display function of the display unit 10. Further, the image capture unit 20 itself can function as a barcode reader by using the screen input function.
[0197]
In particular, in a system in which a plurality of codes are dynamically displayed, such as an active bar code, and a complete code is reproduced by reconfiguring on the reader side, the authentication device 100 of the present invention has an image capture function. The active barcode reader configured using the display unit 40 is a simple system that can be moved by a combination of a mobile phone and the like.
[0198]
27 and 28, an outline of a barcode display and an active barcode reader configured using the display unit 40 with the image capture function of the authentication device 100 of the present invention will be described.
[0199]
FIG. 27 is a diagram showing an outline of a barcode display configured using the display unit 40 with an image capture function of the authentication device 100 of the present invention. FIG. 28 is a diagram showing an outline of an active barcode reader configured using the display unit 40 with the image capture function of the authentication device 100 of the present invention.
[0200]
As shown in FIG. 27 and FIG. 28, the personal authentication can be performed in combination with the authentication device 100 in parallel with the output and import of the barcode.
[0201]
FIGS. 29 to 31 show an outline of a case where a barcode display and an active barcode reader configured using the display unit 40 with an image capture function of the authentication device 100 of the present invention are applied to a portable information device. FIG.
[0202]
The portable information device equipped with the authentication device 100 has a more flexible structure in consideration of the convenience of communication as compared with a normal device. (See FIGS. 30 and 31).
[0203]
FIGS. 36 to 38 show another example in which a barcode display and an active barcode reader configured using the display unit 40 with the image capture function of the authentication device 100 of the present invention are applied to a portable information device. FIG.
[0204]
In this example, the portable information device equipped with the authentication device 100 uses the display unit 40 with the image capture function on both the operation surface and the display surface, thereby performing fingerprint authentication and operation identification at the time of operation, and simple communication by barcode display. Function can be performed simultaneously.
[0205]
In addition, the structure is more flexible in consideration of the convenience of communication as compared with a normal device. In general, by setting the opening / closing angle of 180 degrees to 360 degrees, the display surface can be particularly extended to the back surface (FIG. 37). And FIG. 38).
[0206]
FIGS. 32 to 34 and 39 show a case where a bar code display and an active bar code reader configured using the display unit 40 with an image capture function of the authentication device 100 of the present invention are applied to a portable information device. FIG. 3 illustrates advantages.
[0207]
The portable information device having a flexible structure shown in FIGS. 32 and 39 can easily perform printing in a mobile environment as a variety of barcode scanners and read barcodes attached to articles (products). It can cooperate with the cash register device.
[0208]
Further, as shown in FIG. 33, a plurality of portable information devices having such a structure can directly exchange information via a barcode. This is a completely new way of transmitting information.
[0209]
By making full use of the above, portable information devices that can definitely prove their identity, such as payments and approvals such as payment of cash and cards, and devices that provide money such as ATMs and POSs We can provide new solutions.
[0210]
In other words, the liquid crystal screen display / input device can replace all switches and buttons necessary for the operation by the user pointing or moving the corresponding portion on the screen. In addition, through all the operations, the fingerprint authentication performed simultaneously on the back can prove that the user has undoubtedly performed the operation. That is, as shown in FIG. 34, a secure keyless portable information device can be realized.
[0211]
Another major advantage is that only the operation of the device is performed on the screen on the surface, and the user is completely unaware of fingerprint authentication performed behind the screen.
[0212]
[Other embodiments]
Although the embodiments of the present invention have been described above, the present invention is not limited to the above-described embodiments, but may be applied to various different embodiments within the scope of the technical idea described in the claims. It may be implemented.
[0213]
Further, among the processes described in the embodiment, all or a part of the processes described as being performed automatically may be manually performed, or all of the processes described as being performed manually may be performed. Alternatively, it can be performed partly automatically by a known method.
[0214]
In addition, the processing procedures, control procedures, specific names, information including parameters such as various registration data and search conditions, screen examples, and database configurations shown in the above-described documents and drawings, except where otherwise noted, It can be changed arbitrarily.
[0215]
Also, regarding the authentication device 100, each illustrated component is functionally conceptual, and does not necessarily need to be physically configured as illustrated.
[0216]
For example, all or any part of the processing functions provided in each server of the authentication device 100, particularly each processing function performed by the control unit, are interpreted and executed by a CPU (Central Processing Unit) and the CPU. It can be realized by a program or as hardware by wired logic. Note that the program is recorded on a recording medium described later, and is mechanically read by the authentication device 100 as necessary.
[0219]
The authentication device 100 includes, as further components, an input device (not shown) including various pointing devices such as a mouse, a keyboard, an image scanner, a digitizer, and the like, a display device (not shown) used to monitor input data, A clock generation unit (not shown) for generating a system clock and an output device (not shown) such as a printer for outputting various processing results and other data may be provided, and an input device, a display device, and an output device The devices may be connected to the control unit 102 via the input / output control interface unit 110, respectively.
[0218]
Various databases and the like (authentication information database 106a to operation information database 106b) stored in the storage unit 106 are storage devices such as a memory device such as a RAM and a ROM, a fixed disk device such as a hard disk, a flexible disk, and an optical disk. Stores various programs, tables, files, databases, web page files, and the like used for various processes and for providing a website.
[0219]
The authentication device 100 connects a peripheral device such as a printer, a monitor, or an image scanner to an information processing device such as an information processing terminal such as a known personal computer or a workstation, and implements the method of the present invention in the information processing device. This may be realized by implementing software (including programs, data, and the like) to be executed.
[0220]
Furthermore, the specific form of the distribution / integration of the authentication device 100 is not limited to the illustrated one, and all or a part thereof is functionally or physically distributed / integrated in an arbitrary unit corresponding to various loads and the like. Can be configured. For example, each database may be independently configured as an independent database device, or a part of the processing may be realized using a CGI (Common Gateway Interface).
[0221]
Further, the program according to the present invention can be stored in a computer-readable recording medium. Here, the “recording medium” refers to an arbitrary “portable physical medium” such as a flexible disk, a magneto-optical disk, a ROM, an EPROM, an EEPROM, a CD-ROM, an MO, a DVD, and the like, and a built-in various computer systems. A short-term program such as a communication line or a carrier wave when transmitting the program via an arbitrary "fixed physical medium" such as ROM, RAM, HD, or a network represented by LAN, WAN, or the Internet. "Communications medium" that holds.
[0222]
The “program” is a data processing method described in an arbitrary language or description method, and may be in any format such as a source code or a binary code. The “program” is not necessarily limited to a single program, but may be distributed in the form of a plurality of modules or libraries, or may operate in cooperation with a separate program represented by an OS (Operating System). Includes those that achieve functions. Note that a known configuration and procedure can be used for a specific configuration, a reading procedure, an installation procedure after reading, and the like in each apparatus described in the embodiments.
[0223]
The network 300 has a function of connecting the authentication device 100 and the external device 200 to each other, and includes, for example, the Internet, an intranet, a LAN (including both wired and wireless), a VAN, and a personal computer communication network. , A public telephone network (including both analog and digital), a private line network (including both analog and digital), a CATV network, and a mobile line such as an IMT2000 system, a GSM system, or a PDC / PDC-P system. It may include any one of a switching network / portable packet switching network, a radio paging network, a local radio network such as Bluetooth, a PHS network, and a satellite communication network such as CS, BS or ISDB. That is, the present system can transmit and receive various data via any network regardless of wired or wireless.
[0224]
【The invention's effect】
As described above in detail, according to the present invention, the display with the image capture function senses the fingerprint pattern of the user, and recognizes whether the sensed fingerprint pattern matches the fingerprint pattern information of the user registered in advance. The display with the image capture function detects the movement of the user's finger and recognizes whether the detected movement matches the pre-registered operation pattern information. Personal authentication system, an authentication device, a personal authentication method, and a program that can simultaneously input commands to an external device or the like to be used after authentication. , And a recording medium can be provided.
[0225]
According to the present invention, a finger spot, which is an area where a user's finger is sensed, is recognized, and a finger cursor is displayed at a position at a predetermined distance from the recognized finger spot. As described above, it is possible to provide a personal authentication system, an authentication device, a personal authentication method, a program, and a recording medium that can specify a pinpoint input position and a fine input position.
[0226]
Further, according to the present invention, the authentication device stores the command information corresponding to the operation pattern information of the user and searches for the command information corresponding to the recognized operation pattern information. It is possible to provide a personal authentication system, an authentication device, a personal authentication method, a program, and a recording medium that can specify an operation or the like by a series of operations.
[0227]
Further, according to the present invention, since the authentication device executes the searched instruction information, the personal authentication system can execute the operation by designating various types of instruction information such as shifting from the privileged mode to the user mode. , An authentication device, an individual authentication method, a program, and a recording medium.
[0228]
Further, according to the present invention, since the authentication device transmits the searched command information to the external device, the personal authentication system, the authentication device, and the personal device capable of transmitting various command information to the external device by an operation specified. An authentication method, a program, and a recording medium can be provided.
[Brief description of the drawings]
FIG. 1 is a block diagram showing an example of the overall configuration of the present system.
FIG. 2 is a conceptual diagram illustrating the basic principle of a display unit with an image capture function 40 according to the present invention.
FIG. 3 is a diagram for explaining the concept of cursor movement and clicking in conjunction with the movement of a finger.
FIG. 4 is a diagram illustrating an example of a case where a menu screen is displayed on the display unit with an image capture function 40 of the authentication device 100;
FIG. 5 is a diagram showing another example of a case where a menu screen is displayed on the display unit with an image capture function 40 of the authentication device 100.
FIG. 6 is a block diagram showing an example of a configuration of an authentication device 100 to which the present invention is applied.
FIG. 7 is a diagram illustrating an example of authentication information stored in an authentication information database 106a.
FIG. 8 is a diagram illustrating an example of information stored in an operation information database 106b.
FIG. 9 is a block diagram illustrating an example of a configuration of a recognition algorithm unit 102a.
FIG. 10 is a conceptual diagram showing an example of a process of displaying a screen and receiving a user instruction by the authentication device 100.
FIG. 11 is a conceptual diagram showing another example of a process of displaying a screen and receiving a user instruction by the authentication device 100.
FIG. 12 is a conceptual diagram showing another system configuration of the present invention.
FIG. 13 is a diagram illustrating an example of a concept of a motion of a finger of a user of the present system in the present embodiment.
FIG. 14 is a diagram illustrating an example of transition of an operation mode of the system according to the embodiment.
FIG. 15 is a flowchart illustrating an example of an operation mode transition process executed by the operation mode management unit 102c of the authentication device 100 according to the present embodiment.
FIG. 16 is a diagram illustrating an example of a case where a recognition button of the system according to the embodiment is set on an operation target;
FIG. 17 is a diagram illustrating an example of a case where a recognition button of the system according to the embodiment is set on an operation target;
FIG. 18 is a conceptual diagram showing a basic configuration when a recognition button is provided on an operation target.
FIG. 19 is a conceptual diagram illustrating another configuration when the recognition device 100 is installed on an external device 200 that is an operation target.
FIG. 20 is a diagram illustrating an example of a case where the present authentication device according to the present embodiment is mounted on a remote control device.
FIG. 21 is a diagram illustrating an example of a case where the present authentication device according to the present embodiment is mounted on a remote control device.
FIG. 22 is a diagram illustrating an example of a case where the authentication device according to the present embodiment is mounted on a remote control device.
FIG. 23 is a diagram illustrating an example of a case where the authentication apparatus of the system according to the present embodiment is implemented as a personal identification sensor.
FIG. 24 is a diagram illustrating an example of a case where the present authentication device of the present system cooperates with another external device in the present embodiment.
FIG. 25 is a schematic diagram illustrating an example of cooperation between the authentication device 100 and another device.
FIG. 26 is a diagram showing an example of a case where the present authentication device of the present system is realized as a hard key in the present embodiment.
FIG. 27 is a diagram showing an outline of a barcode display configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention.
FIG. 28 is a diagram showing an outline of an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention.
FIG. 29 is a diagram showing an outline of a case where a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 30 is a diagram showing an outline of a case where a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 31 is a diagram showing an outline of a case where a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 32 is a diagram showing an advantage when a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 33 is a diagram illustrating advantages of a case where a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 34 is a diagram illustrating an advantage of a case where a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 35 is a conceptual diagram illustrating the concept of a finger spot and a finger cursor according to the present invention.
FIG. 36 is a diagram illustrating an outline of a case where a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 37 is a diagram showing an outline of a case where a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 38 is a diagram showing an outline of a case where a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
FIG. 39 is a diagram showing an advantage when a barcode display and an active barcode reader configured using the display unit with an image capture function 40 of the authentication device 100 of the present invention are applied to a portable information device.
[Explanation of symbols]
100 Authentication device
10 Display
20 Image capture unit
30 Display objects (menus, buttons, barcodes, finger spots, finger cursors, etc.)
40 Display unit with image capture function
102 control unit
102a Recognition algorithm section
102b Instruction information execution unit
102c Operation mode management unit
102d fingerprint authentication unit
102e motion identification unit
102f finger spot recognition unit
102g finger cursor display control unit
104 Communication control interface unit
106 storage unit
106a Authentication information database
106b Operation information database
108 Communication unit
110 I / O control interface
200 External device
300 Network

Claims (21)

An authentication device that authenticates that a user having a display with an image capture function is a valid user, and a personal authentication system including an external device used by the user,
The authentication device,
Fingerprint sensing means for sensing the fingerprint pattern of the user by the display with the image capture function,
Fingerprint authentication means for authenticating whether the fingerprint pattern sensed by the fingerprint sensing means matches the fingerprint pattern information of the user registered in advance,
Motion sensing means for sensing the motion of the user's finger by the display with the image capture function,
An operation identification unit that identifies whether the operation detected by the operation detection unit matches operation pattern information registered in advance,
A personal authentication system comprising: The authentication device,
Finger spot recognition means for recognizing a finger spot which is an area where the user's finger is sensed,
Finger cursor display means for displaying a finger cursor at a position at a predetermined distance from the finger spot recognized by the finger spot recognition means,
The personal authentication system according to claim 1, further comprising: The authentication device,
Command information storage means for storing command information corresponding to the operation pattern information of the user;
Command information search means for searching for the command information corresponding to the motion pattern information recognized by the motion identification means;
The personal authentication system according to claim 1 or 2, further comprising: The authentication device,
Command information executing means for executing the command information retrieved by the command information retrieval means;
The personal authentication system according to claim 3, further comprising: The authentication device,
Command information transmitting means for transmitting the command information retrieved by the command information retrieval means to the external device,
The authentication device according to claim 3, further comprising: Fingerprint sensing means for sensing a user's fingerprint pattern by a display with an image capture function,
Fingerprint authentication means for authenticating whether the fingerprint pattern sensed by the fingerprint sensing means matches the fingerprint pattern information of the user registered in advance,
Operation sensing means for sensing the movement of the user's finger by the display with the image capture function,
An operation identification unit that identifies whether the operation detected by the operation detection unit matches operation pattern information registered in advance,
An authentication device comprising: Finger spot recognition means for recognizing a finger spot which is an area where the user's finger is sensed,
Finger cursor display means for displaying a finger cursor at a position at a predetermined distance from the finger spot recognized by the finger spot recognition means,
The authentication device according to claim 6, further comprising: Command information storage means for storing command information corresponding to the operation pattern information of the user;
Command information search means for searching for the command information corresponding to the motion pattern information recognized by the motion identification means;
The authentication device according to claim 6, further comprising: Command information execution means for executing the command information retrieved by the command information retrieval means;
The authentication device according to claim 8, further comprising: Command information transmitting means for transmitting the command information retrieved by the command information retrieval means to the external device,
The authentication device according to claim 8, further comprising: An authentication device for authenticating that a user having a display with an image capture function is a legitimate user, and a personal authentication method performed using a personal authentication system including an external device used by the user. ,
A fingerprint sensing step of sensing a fingerprint pattern of the user by the display with the image capture function;
A fingerprint authentication step of authenticating whether or not the fingerprint pattern sensed in the fingerprint sensing step matches fingerprint information of the user registered in advance;
An operation sensing step of sensing an operation of the user's finger by the display with the image capture function;
An operation identification step of identifying whether the operation detected in the operation detection step matches the operation pattern information registered in advance,
A personal authentication method comprising: A finger spot recognition step of recognizing a finger spot that is an area where the user's finger is sensed,
A finger cursor display step of displaying a finger cursor at a position at a predetermined distance from the finger spot recognized by the finger spot recognition means,
The personal authentication method according to claim 11, further comprising: Command information storing step of storing command information corresponding to the operation pattern information of the user;
An instruction information search step of searching for the instruction information corresponding to the operation pattern information recognized by the operation identification step;
The personal authentication method according to claim 11, further comprising: An instruction information execution step of executing the instruction information retrieved in the instruction information retrieval step;
The personal authentication method according to claim 13, further comprising: A command information transmitting step of transmitting the command information retrieved in the command information retrieving step to the external device;
The personal authentication method according to claim 13, further comprising: A program for causing a computer to execute a personal authentication method executed by an authentication device that authenticates that a user having a display with an image capture function is a valid user,
A fingerprint sensing step of sensing a fingerprint pattern of the user by the display with the image capture function;
A fingerprint authentication step of authenticating whether or not the fingerprint pattern sensed in the fingerprint sensing step matches fingerprint information of the user registered in advance;
An operation sensing step of sensing an operation of the user's finger by the display with the image capture function;
An operation identification step of identifying whether the operation detected in the operation detection step matches the operation pattern information registered in advance,
A program characterized by including: A finger spot recognition step of recognizing a finger spot that is an area where the user's finger is sensed,
A finger cursor display step of displaying a finger cursor at a position at a predetermined distance from the finger spot recognized by the finger spot recognition means,
17. The program according to claim 16, further comprising: Command information storing step of storing command information corresponding to the operation pattern information of the user;
An instruction information search step of searching for the instruction information corresponding to the operation pattern information recognized by the operation identification step;
The program according to claim 16, further comprising: An instruction information execution step of executing the instruction information retrieved in the instruction information retrieval step;
The program according to claim 18, further comprising: A command information transmitting step of transmitting the command information retrieved in the command information retrieving step to the external device;
20. The program according to claim 18, further comprising: A recording medium on which the program according to any one of claims 16 to 20 is recorded.

Images