JP2005032056A - Computer system with personal identification function and user management method for computer system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a computer system having a simple personal authentication function having low possibility of forgery and using a hearing organ possessed by anybody; and to provide its operator management method. <P>SOLUTION: Acoustic characteristic information on the hearing organ of a user is measured by using sound transmitted from the speakers 6 of a headphone 5 loaded on the user 100. A personal authentication program performing personal authentication compares the measured acoustic characteristic information on the hearing organ with registered acoustic characteristic information to perform the personal authentication. The user obtaining the authentication obtains accessibility to the computer system 10. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  The present invention relates to a computer system with a personal identification function having a personal authentication function using acoustic characteristics of the auditory organ, and an operator management method for an operator who uses the computer system.

  Conventionally, a method generally used for managing a user who is a computer system user is a method of specifying a user using a user ID and a password. First, a user who is permitted to use the computer system determines a user ID and a password for identifying the user and stores them in the computer system. When a user logs in to the computer system, the user ID and password are entered, and if the stored password matches the entered password, the user is identified and given access rights to the computer system. .

  The user management method using a password has a feature that a user can be easily identified, but there is a problem that a security function is weak because a password can be easily known by another person.

  Based on these problems, a method for improving a security function in user management of a computer system has been proposed. For example, Patent Document 1 describes a method for identifying or identifying an individual using a fingerprint for the purpose of improving the security function of a computer system. Specifically, a fingerprint detection unit is provided on a mouse which is an external input device of a computer system to read a fingerprint image, and the user is identified by collating the read fingerprint data with stored fingerprint data. Is.

JP 2000-222123 A

  However, fingerprints may be forged, and it is difficult to say that the invention described in the above publication has a sufficient security function. Also, in the fingerprint reading operation, it is necessary to place the finger on the fingerprint detection means, and it is necessary to interrupt the operation to request the fingerprint reading during the operation of the keyboard or the like, which is very troublesome. Furthermore, if it mentions from a viewpoint of the possibility of forgery, the same subject exists also in the personal authentication method using a face image and handwriting.

  In view of the above, the object of the present invention is to provide a simple personal authentication function using the auditory organ possessed by any human being without causing the person to be conscious of executing the authentication. To provide a computer system with a personal identification function and an operator management method for the computer system.

  In order to achieve the above object, the present invention is configured as follows.

According to the present invention, a computer including at least an arithmetic device that performs arithmetic operations, an external input device that inputs instructions and instructions from the outside to the arithmetic devices, and a display device that displays the arithmetic results of the arithmetic devices. A system,
A speaker for measuring the acoustic characteristics of the auditory organ of the operator operating the computer system;
The operation device compares the acoustic characteristics of the auditory organ of the operator with the acoustic characteristics of the auditory organ of the operator measured by the speaker, and performs personal identification of the operator. A computer system with a personal identification function is provided.

  In addition, according to the present invention, there is provided an operator management method for a computer system that determines whether or not an operator is permitted to access the computer system by performing personal authentication using acoustic characteristics of the auditory organ.

  Further, according to the present invention, a computer is identified by identifying the individual by performing personal authentication using the acoustic characteristics of the auditory organ, and the operator authority for the computer system that is predetermined for each identified individual is granted. A system operator management method is provided.

  According to the present invention, the arithmetic device compares the acoustic characteristics of the auditory organ of an operator (such as a user or an administrator) with the acoustic characteristics of the auditory organ of the operator measured by the speaker. Thus, personal identification of the operator is performed. If configured in this way, using the acoustic characteristic information of the auditory organ, the possibility of being forged is low, and the auditory organ possessed by any human being was used without making the person aware of the execution of authentication. It is possible to realize a computer system having a simple personal authentication function and an operator management method for the computer system.

  Before describing various embodiments according to the present invention, various aspects of the present invention will be described below.

According to the first aspect of the present invention, an arithmetic device that performs arithmetic operations, an external input device that inputs instructions and instructions from the outside to the arithmetic devices, and a display device that displays the arithmetic results of the arithmetic devices, A computer system comprising at least
A speaker for measuring the acoustic characteristics of the auditory organ of the operator operating the computer system;
The operation device compares the acoustic characteristics of the auditory organ of the operator with the acoustic characteristics of the auditory organ of the operator measured by the speaker, and performs personal identification of the operator. A computer system with a personal identification function is provided.

  According to the second aspect of the present invention, an acoustic characteristic measurement program for measuring the acoustic characteristic of the auditory organ using the speaker is in the computer system or in a second computer system connected to the computer system via a network. The computer system according to the first aspect is provided, wherein the acoustic characteristic of the auditory organ is measured using the speaker by executing the acoustic characteristic measurement program.

  According to the third aspect of the present invention, a personal authentication program for performing personal authentication based on the acoustic characteristics of the auditory organ is stored in the computer system or in a second computer system connected to the computer system via a network, By executing the acoustic characteristic measurement program, the acoustic characteristic of the auditory organ is measured using the speaker, and by executing the personal authentication program, personal authentication is performed using the acoustic characteristic of the auditory organ. Thus, the computer system according to the second aspect of determining whether or not to permit access to the computer system is provided.

  According to the fourth aspect of the present invention, an individual is identified by performing personal authentication using the acoustic characteristics of the auditory organ, and the operator authority for the computer system that is predetermined for each identified individual is granted. A computer system according to the second or third aspect is provided.

  According to a fifth aspect of the present invention, there is provided the computer system according to any one of the first to fourth aspects, wherein the information indicating the acoustic characteristics is an acoustic impedance.

  According to a sixth aspect of the present invention, there is provided the computer system according to any one of the first to fourth aspects, wherein the information indicating the sound characteristic is reflected wave characteristic information.

  According to a seventh aspect of the present invention, there is provided an operator management method for a computer system that determines whether or not an operator is permitted to access the computer system by performing personal authentication using acoustic characteristics of the auditory organ.

  According to the eighth aspect of the present invention, the personal authentication is performed by comparing the information indicating the acoustic characteristics of the auditory organ acquired in advance with the information indicating the measured acoustic characteristics, thereby permitting access to the computer system. An operator management method for a computer system according to a seventh aspect for determining whether or not it is possible.

  According to the ninth aspect of the present invention, an individual is identified by performing personal authentication using the acoustic characteristics of the auditory organ, and the operator authority for the computer system, which is predetermined for each identified individual, is granted. An operator management method for a computer system is provided.

  According to the tenth aspect of the present invention, the individual identified by comparing the information indicating the acoustic characteristics of the auditory organ acquired in advance with the information indicating the measured acoustic characteristics and performing personal authentication. A computer system operator management method according to a ninth aspect, in which operator authority for the computer system, which is predetermined for each computer system, is given.

  According to an eleventh aspect of the present invention, there is provided the operator management method for a computer system according to any one of the seventh to tenth aspects, wherein the information indicating the acoustic characteristics is acoustic impedance.

  According to a twelfth aspect of the present invention, there is provided the operator management method for a computer system according to any one of the seventh to tenth aspects, wherein the information indicating the sound characteristic is reflected wave characteristic information.

  Embodiments according to the present invention will be described below in detail with reference to the drawings.

(First embodiment)
Hereinafter, a computer system with a personal identification function and an operator management method for a computer system according to a first embodiment of the present invention will be described with reference to the drawings.

  FIG. 1 shows a schematic diagram of a computer system 10. Reference numeral 1 denotes an arithmetic device, 2 denotes a display device, 3 denotes a keyboard which is an example of an external input device for inputting instructions and instructions from the outside by an operator (such as a user or an administrator) to the arithmetic device 1, and 4 denotes the above A mouse, which is another example of an external input device in which commands and instructions are input from the outside to the arithmetic device 1 by an operator, indicates a headphone having a pair of left and right speakers 6 and 6, respectively. Is constituted by these.

  The computing device 1 is connected to the CPU 1A for executing computations and controls, a storage device 1B that is connected to the CPU 1A and stores data such as acoustic characteristic measurement programs and personal authentication programs, and acoustic characteristic information, and the CPU 1A. The interface device 1 </ b> C controls the keyboard 3 and mouse 4 and exchanges information under the control of the CPU 1 </ b> A. The display device 2 is a device for displaying information output from the arithmetic device 1, and a CRT, a liquid crystal display, or the like is used. The keyboard 3 and the mouse 4 are devices for transmitting and inputting commands and instructions of an operator, for example, a user 100 or an administrator, to the computing device 1. Input operations such as characters, numbers, or symbols are mainly performed from the keyboard 3. Information selection and graphical input operations are mainly transmitted from the mouse 4. The headphone 5 is attached to the head of an operator who operates the computer system 10, for example, the user 100 or an administrator, and the left and right speakers 6 are installed near the operator's ear. A personal authentication program, which is software for performing personal authentication, is installed and stored in the storage device 1B in the arithmetic device 1. The personal authentication program is set to start up first after the computer system 10 is turned on, and a specific operation of an operator who is going to perform an operation is performed regardless of an administrator or a user.

  Next, a personal authentication method for identifying an operator using sound transmitted from the speaker 6 will be described. FIG. 2 shows a schematic diagram of the human auditory organ. In FIG. 2, 11 is the outer ear, 12 is the middle ear, 13 is the inner ear, 14 is the eardrum, 15 is the auditory ossicle, 16 is the semicircular canal, and 17 is the cochlea. The human auditory organ is composed of an outer ear 11, a middle ear 12, and an inner ear 13, and the acoustic characteristic information indicates a characteristic specific to each individual. If such individual-specific characteristics are used, it becomes possible to authenticate any individual. Collect the acoustic characteristic information of the auditory organ of the individual who is the subject of authentication, that is, the operator's auditory organ in advance, measure the acoustic characteristic information of the auditory organ in the operator on the spot when authentication is necessary, By comparing the collected acoustic characteristic information with the acoustic characteristic information of the auditory organ actually measured by the operator, the operator can be identified (whether or not he / she is). The acoustic characteristic information used for authentication may be collected from either of the left and right auditory organs if it is determined. Specifically, it is preferable to perform personal authentication using the invention described in JP-A-2002-143130.

  That is, FIG. 11 is a schematic diagram illustrating a state in which acoustic characteristic information according to the invention described in the above publication is measured as an example of the acoustic characteristic measurement program. FIG. 11A shows a schematic diagram when a sound is transmitted, and FIG. 11B shows a schematic diagram when a sound is received. In FIG. 11A, reference numeral 211 denotes a sound transmitting unit provided in the speaker 6, 212 denotes the auditory organ of the person to be authenticated, 213 denotes the transmitted sound, and 214 denotes a signal processing unit of the CPU 1A of the arithmetic device 1. . In FIG. 11B, reference numeral 215 denotes a sound receiving unit provided in the speaker 6, 216 a reflected sound, 217 an acoustic characteristic information of the person to be authenticated, and 1B an arithmetic device 1 for storing the acoustic characteristic information. The above storage devices are respectively shown.

  As shown in FIG. 11A, the sound 213 transmitted from the sound transmitting unit 211 under the control of the signal processing unit 214 travels in the auditory organ 212. The transmitted sound 213 is partially absorbed by the auditory organ 212, but the remainder is reflected at various locations in the auditory organ 212 as shown in FIG. 11B, and the reflected sound 216 is received by the sound. Received by the unit 215. The sound received by the receiving unit 215 is converted into an electric signal and subjected to computation in the signal processing unit 214. As a result, the acoustic characteristic information 217 of the authentication subject is output, and this acoustic characteristic information 217 is stored in the storage device 1B. Remembered.

  FIG. 12 shows an explanatory diagram for explaining personal authentication as an example of the personal authentication program. In FIG. 12, reference numeral 219 denotes acoustic characteristic information of the person to be authenticated (operator) collected in advance. The storage device 1B stores the acoustic characteristic information 219 of the person to be authenticated that has been collected in advance and the acoustic characteristic information 217 of the person to be authenticated that was measured immediately before. Information is read from the storage device 1B and compared. If it is determined by the signal processing unit 214 as a result of the comparison that the person to be authenticated is identified as the person to be authenticated, personal authentication is completed, while the signal processing unit 214 is completed. When it is determined that the comparison results do not match, it is determined that the person to be authenticated is not the person to be authenticated, and personal authentication is completed.

  Note that personal authentication using acoustic characteristic information of the auditory organ includes a method using acoustic impedance and a method using reflected wave characteristic information. The method of using the acoustic impedance is a method of using the characteristic amount of the electrical impedance of the speaker 6 when the speaker 6 emits sound in a state adjacent to the auditory organ. It is a personal authentication method using the dependence on the acoustic impedance of the auditory organ. In addition, the method using the reflected wave characteristic information reflects the sound emitted from the speaker 6 by organs such as the eardrum and cochlea, and individually receives the reflected sound on the time axis to transmit from the speaker 6 to each organ. This method uses the distance and the reflectance of each organ, and is a personal authentication method that uses the fact that the distance from the speaker 6 to each organ and the reflectance of each organ differ depending on the individual. Note that the sound emitted from the speaker 6 used for obtaining the acoustic characteristic information is a relatively high-frequency sound wave such as an inaudible sound even if it is a relatively low-frequency sound wave that is an audible sound. May be. The merit of using ultrasonic waves is that the operator is not conscious of measurement, but natural measurement can be performed even if human voice or music is used as audible sound.

  One frequency may be used, or two or more frequencies may be used. As the number of frequencies used increases, the maximum number of persons that can be distinguished by authentication increases. However, there is a disadvantage that the frequency of misperception that the person who is the authentication target is not the person increases.

  Next, the operation of the computer system in the first embodiment will be described with reference to a flowchart.

  FIG. 3 is a flowchart illustrating a method for granting administrator authority to the administrator of the computer system 10.

  First, the manager (the manager located at the position of the user 100 in FIG. 1 or the manager 120 in FIG. 13) is stored by the computer system 10 (in other words, under the control of the signal processing unit 214 of the CPU 1A). The acoustic characteristic measurement program stored in the device 1B is executed), and the acoustic characteristic information of the manager's auditory organ is measured (step S101). In other words, under the control of the signal processing unit 214, the sound 216, which is the sound that is transmitted from the transmitting unit 211 of the speaker 6 of the headphone 5 and reflected at various places in the auditory organ 212 of the administrator, is received by the receiving unit 215 of the speaker 6. The sound received by the receiving unit 215 is converted into an electrical signal and subjected to computation in the signal processing unit 214. As a result, the manager's acoustic characteristic information 217 is output and stored in the storage device 1B. The

  Next, the measured acoustic characteristic information is registered and stored in the storage device 1B of the computer system 10 as the administrator's acoustic characteristic information (step S102). Then, various administrator authorities to be given to the administrator are set by the administrator using the keyboard 3 or the mouse 4 and stored in the storage device 1B (step S103).

  Here, as an example of various administrator authority, the financial trading authority level is determined based on the access authority to confidential documents, financial restrictions on online trading (age, annual income, or contracts with financial manufacturers, etc.) Etc.) or access authority for the Internet. In the storage device 1B, as an example, an administrator information database 1B-1 storing various administrator information and respective acoustic characteristic information, and various managements storing various administrator authority information linked to the administrator information. Person authority information database 1B-2. In this way, as will be described later, after the personal authentication is performed using the administrator information database 1B-1, various administrator authority information of the specified administrator individual is converted into various administrator authority information databases 1B-. Various administrator rights can be granted to the administrator who has been read from 2.

  This completes the assignment of the administrator authority to the administrator of the computer system 10.

  Next, FIG. 4 is a flowchart showing a method for granting an access right and other user rights to an arbitrary user. In addition, the registration (storage in the storage device 1B) of the acoustic characteristic information of the auditory organs of the administrator who has all authority regarding the computer system management including the right to give various authority to the user has already been completed. And

  First, in order to confirm that the administrator is registered and stored in the computer system 10, the administrator (the administrator located at the position of the user 100 in FIG. 1 or the administrator 120 in FIG. 13) The computer system 10 (in other words, the acoustic characteristic measurement program stored in the storage device 1B is executed under the control of the signal processing unit 214 of the CPU 1A) measures the acoustic characteristic information of the manager's auditory organ ( Step S1). In other words, under the control of the signal processing unit 214, the sound 216, which is the sound that is transmitted from the transmitting unit 211 of the speaker 6 of the headphone 5 and reflected at various places in the auditory organ 212 of the administrator, is received by the receiving unit 215 of the speaker 6. The sound received by the receiving unit 215 is converted into an electrical signal and subjected to computation in the signal processing unit 214. As a result, the manager's acoustic characteristic information 217 is output and stored in the storage device 1B. The

  Next, the signal processing unit 214 of the CPU 1A of the computing device 1 performs collation as to whether or not the measured acoustic characteristic information belongs to the administrator (step S2).

  If the signal processing unit 214 determines that the registration information (acoustic characteristic information already stored in the storage device 1B) matches the measurement information (acoustic characteristic information measured this time) as a result of the collation, the CPU 1A As a result, the administrator is permitted to access the computer system 10. On the other hand, if the signal processing unit 214 determines that the registration information and the measurement information do not match, the CPU 1A does not permit the administrator to access the computer system 10, and the processing in FIG. (Step S3).

  When the administrator is permitted to access the computer system 10, the administrator logs in to the computer system 10 using the keyboard 3 or the mouse 4 (step S4) and manages the user stored in the storage device 1B. The program is executed by the CPU 1A (step S5), and the acoustic characteristic information of the auditory organ of the user who is to be given access right is measured by the computer system 10 using sound transmitted from the speaker 6 of the headphones 5. (Step S6).

  The measured acoustic characteristic information of the user is collated with all the stored acoustic characteristic information by the signal processing unit 214 of the CPU 1A (step S7).

  As a result of the verification by the signal processing unit 214, when the signal processing unit 214 determines in step S8 that the measured acoustic characteristic information of the user does not match all the stored acoustic characteristic information, A new user is registered by the CPU 1A as a new user and stored in the storage device 1B (step S9), and the administrator sets various user authorities for the user using the keyboard 3 or the mouse 4. Is stored in the storage device 1B (step S10).

  Here, as examples of various user rights, financial trade authority levels are determined based on access rights to confidential documents, financial restrictions on online trading (age, annual income, or contracts with financial manufacturers, etc.) Or access authority on the Internet. In the storage device 1B, as an example, a user information database 1B-1 that stores various user information and respective acoustic characteristic information, and various user authority information databases 1B that store various user authority information linked to the user information. -2. In this way, as will be described later, after performing personal authentication using the user information database 1B-1, various user authority information of the identified individual user is read from the various user authority information databases 1B-2. Various user authorities can be granted to the identified user.

  On the other hand, in step S8, if the signal processing unit 214 determines that the measured acoustic characteristic information matches any of the stored acoustic characteristic information as a result of the collation by the signal processing unit 214, the CPU 1A Thus, the above processing in FIG. 4 ends without newly registering.

  Next, a method of accessing the computer system 10 by a user who has completed registration (storage in the storage device 1B) by the method described above will be described with reference to the flowchart shown in FIG.

  First, the user 100 (the user 100 in FIG. 1 or FIG. 13) uses the computer system 10 (in other words, the acoustic characteristic measurement program stored in the storage device 1B under the control of the signal processing unit 214 of the CPU 1A). ), The acoustic characteristic information of the user's own auditory organ is measured (S step 21). In other words, under the control of the signal processing unit 214, the sound 216, which is the sound transmitted from the transmitting unit 211 of the speaker 6 of the headphone 5 and reflected at various locations in the auditory organ 212 of the user 100, is received by the receiving unit 215 of the speaker 6. The sound received by the reception unit 215 is converted into an electrical signal and subjected to computation in the signal processing unit 214. As a result, the acoustic characteristic information 217 of the user 100 is output and stored in the storage device 1B. The

  Next, the computer system 10 checks with the signal processing unit 214 of the CPU 1A to determine who the measured acoustic characteristic information belongs to all the acoustic characteristic information already stored (step S22).

  As a result of the collation by the signal processing unit 214, the signal processing unit 214 determines that the registration information (acoustic characteristic information already stored in the storage device 1B) matches the measurement information (acoustic characteristic information measured this time). If the signal processing unit 214 determines that the registration information and the measurement information do not match, the user is allowed to access the computer system 10 by the CPU 1A. The access to is not permitted, and the processing of FIG. 5 ends (step S23).

  When the user is permitted to access the computer system 10, the user logs in to the computer system 10 using the keyboard 3 or the mouse 4 (step S24), and a predetermined user authority is given by the CPU 1A (step S24). S25) The user starts the operation of the computer system 10.

  Here, examples of user authority set in advance include access authority to confidential documents, monetary restrictions on online transactions (age, annual income, or contracts with financial manufacturers, etc.) Or access authority for the Internet. In the storage device 1B, as an example, a user information database 1B-1 that stores various user information and respective acoustic characteristic information, and various user authority information databases 1B that store various user authority information linked to the user information. -2. In this way, as will be described later, after performing personal authentication using the user information database 1B-1, various user authority information of the identified individual user is read from the various user authority information databases 1B-2. Various user authorities can be granted to the identified user.

  In step S23, if the signal processing unit 214 determines that the registration information does not match the measurement information as a result of the collation, the user's acoustic characteristic information is arbitrarily determined by the control of the CPU 1A. It does not matter if the number of times is re-measured. A flowchart in this case is shown in FIG. Even if the registration information and the measurement information do not match in step S23, re-measurement up to n times, which is a predetermined desired number of times, is permitted, and the user again uses the acoustic characteristic information of his / her own auditory organ as headphones. Measurement is performed by the computer system 10 using the sound transmitted from the five speakers 6 (step S21). When the number of re-measurements exceeds n, it is assumed that the user registration information and measurement information are different, and the CPU 1A does not permit access to the user, and the process is terminated (step S26).

  Cases in which remeasurement is carried out at any given number of times include changes in the user's headphones, changes in the surrounding acoustic environment such as noise, or short-term changes in the acoustic characteristics information of the user's auditory organs (injuries) Or illness).

  In the method described above, if the person who is trying to access only by the acoustic characteristic information of the auditory organ does not give the user ID to each user, the person has access right or has access right. It is a method for determining who it is, and a method using one-to-many personal authentication, which is very complicated and difficult.

  Note that personal authentication that is easier than the one described above, that is, one-to-one personal authentication that assigns a user ID to each user and determines whether the person trying to access the computer system is the ID owner himself or herself is used. There is also a method, which will be described below with reference to a flowchart.

  FIG. 7 is a flowchart showing a method for granting an access right and other user rights to an arbitrary user.

  First, in order to confirm that the administrator is registered (stored) in the computer system, the administrator inputs the user ID owned by the administrator using the keyboard 3 or the mouse 4 (S step 31).

  Next, the manager (the manager located at the position of the user 100 in FIG. 1 or the manager 120 in FIG. 13) is controlled by the computer system 10 (in other words, under the control of the signal processing unit 214 of the CPU 1A). The acoustic characteristic measurement program stored in the storage device 1B is executed), and the acoustic characteristic information of the manager's auditory organ is measured (step S32). In other words, under the control of the signal processing unit 214, the sound 216, which is the sound that is transmitted from the transmitting unit 211 of the speaker 6 of the headphone 5 and reflected at various places in the auditory organ 212 of the administrator, is received by the receiving unit 215 of the speaker 6. The sound received by the receiving unit 215 is converted into an electrical signal and subjected to computation in the signal processing unit 214. As a result, the manager's acoustic characteristic information 217 is output and stored in the storage device 1B. The

  Then, the signal processing unit 214 of the CPU 1A checks whether the measured acoustic characteristic information belongs to the administrator (step S33).

  If the signal processing unit 214 determines that the registration information (acoustic characteristic information already stored in the storage device 1B) matches the measurement information (acoustic characteristic information measured this time) as a result of the collation, the CPU 1A As a result, the administrator is permitted to access the computer system 10. On the other hand, when the signal processing unit 214 determines that the registration information and the measurement information do not match, the CPU 1A does not permit the administrator to access the computer system 10, and the processing in FIG. Step S34).

  When the administrator is permitted to access the computer system 10, the administrator logs in to the computer system 10 using the keyboard 3 or the mouse 4 (step S35), and manages the user stored in the storage device 1B. The program is executed by the CPU 1A (step S36), and the acoustic characteristic information of the auditory organ of the user to be given access right is measured by the computer system 10 using the sound transmitted from the speaker 6 of the headphones 5. (Step S37).

  The measured acoustic characteristic information of the user is collated with all the stored acoustic characteristic information by the signal processing unit 214 of the CPU 1A (step S38). In step S39, when the signal processing unit 214 determines that the measured user acoustic characteristic information does not match all the stored acoustic characteristic information, the CPU 1A determines that the user is a new user. Is newly registered and stored in the storage device 1B (step S40), and the administrator uses the keyboard 3 or mouse 4 to set and store various user privileges including the assignment of a user ID to the user. The information is stored in the device 1B (step S41). The user ID may be assigned at the stage of step S36 or step S40.

  Here, as examples of various user rights, financial trade authority levels are determined based on access rights to confidential documents, financial restrictions on online trading (age, annual income, or contracts with financial manufacturers, etc.) Or access authority on the Internet. In the storage device 1B, as an example, a user information database 1B-1 that stores various user information and respective acoustic characteristic information, and various user authority information databases 1B that store various user authority information linked to the user information. -2. In this way, as will be described later, after performing personal authentication using the user information database 1B-1, various user authority information of the identified individual user is read from the various user authority information databases 1B-2. Various user authorities can be granted to the identified user.

  On the other hand, when the signal processing unit 214 determines in step S39 that the measured acoustic characteristic information coincides with any of the already stored acoustic characteristic information, the CPU 1A does not newly register the information. The process of 7 ends.

  Next, a method of accessing a computer system by a user who has completed registration (storage) by the method described above will be described with reference to the flowchart shown in FIG.

  First, the user inputs his / her user ID using the keyboard 3 or the mouse 4 (step S51).

  Next, the user (the user 100 in FIG. 1 or FIG. 13) uses the computer system 10 (in other words, the acoustic characteristic measurement program stored in the storage device 1B under the control of the signal processing unit 214 of the CPU 1A). Is executed), the acoustic characteristic information of the user's auditory organ is measured (step S52). That is, under the control of the signal processing unit 214, the sound 216, which is the sound transmitted from the transmitting unit 211 of the speaker 6 of the headphone 5 and reflected at various locations in the user's auditory organ 212, is received by the receiving unit 215 of the speaker 6. The sound received and received by the receiving unit 215 is converted into an electric signal and subjected to calculation in the signal processing unit 214. As a result, the user's acoustic characteristic information 217 is output and stored in the storage device 1B.

  Then, whether or not the measured acoustic characteristic information is that of the input user ID owner is compared with the acoustic characteristic information already stored in the signal processing unit 214 of the CPU 1A of the computer system 10. Is performed (step S53).

  If the signal processing unit 214 determines that the registration information (acoustic characteristic information already stored in the storage device 1B) matches the measurement information (acoustic characteristic information measured this time) as a result of the collation, the CPU 1A Thus, the user is permitted to access the computer system 10. On the other hand, when the signal processing unit 214 determines that the registration information and the measurement information do not match, the CPU 1A does not permit the user to access the computer system 10, and the processing in FIG. S54).

  When the user is permitted to access the computer system 10, the user logs in to the computer system 10 using the keyboard 3 or the mouse 4 (step S55), and the user authority set in advance and stored in the storage device 1B. Is given to the user (step S56), and the user starts operating the computer system 10.

  Here, examples of the user authority set in advance and stored in the storage device 1B include access authority to confidential documents, financial restrictions in online trading (age, annual income, or contract with a financial maker, etc.) Financial trading authority level is determined), or online access authority. In the storage device 1B, as an example, a user information database 1B-1 that stores various user information and respective acoustic characteristic information, and various user authority information databases 1B that store various user authority information linked to the user information. -2. In this way, as will be described later, after performing personal authentication using the user information database 1B-1, various user authority information of the identified individual user is read from the various user authority information databases 1B-2. Various user authorities can be granted to the identified user.

  In the first embodiment, the computer system 10 has been described as including only one computing device 1, but the computer system 10 is connected to the network 110 as shown in FIG. It may be configured by two or more connected computing devices 1. In this case, even if the personal authentication program is not installed in the storage device 1B in the computing device that the user is trying to operate, it is installed in another computing device connected via the network, such as a server device. Is also preferably implemented.

  According to the first embodiment, the calculation of the acoustic characteristics of the auditory organ of an operator (such as a user or an administrator) and the acoustic characteristics of the auditory organ of the operator measured by the speaker 6 is performed. A comparison calculation is performed by the apparatus 1 to identify the operator. If configured in this way, using the acoustic characteristic information of the auditory organ, the possibility of being forged is low, and the auditory organ possessed by any human being was used without making the person aware of the execution of authentication. It is possible to realize a computer system having a simple personal authentication function and an operator management method for the computer system.

(Second Embodiment)
In the first embodiment, the case where the user authentication is performed only at the time of login is described in detail. In this case, the user may not wear the headphones 5 after the authentication is completed. However, there are many cases in which user authentication is required even after using the computer system 10 after the login is completed. For example, if a legitimate user temporarily leaves the computer system 10, the user needs to log off from the computer system 10, but forgetting to log off from the user's carelessness can occur well. It should not be possible for an unauthorized person to operate the computer system 10 while the authorized user is away. Similarly, it should not be possible for a legitimate user to log in and the computer system 10 to be operated by an unauthorized person. In order to prevent this, in the second embodiment, a case where personal authentication is performed while accessing the computer system 10 will be described.

  FIG. 9 is a flowchart showing a method of personal authentication during operation of the computer system 10. The user passes the personal authentication at the time of login, and the login has already been completed. This user continues to wear the headphones 5 while accessing the computer system 10 and performing operations. The CPU 1A of the computer system 10 instructs the computer system 10 to measure the acoustic characteristic information of the auditory organ of the user 100 at a certain arbitrary timing (step S61). That is, the CPU 1A starts executing the acoustic characteristic measurement program stored in the storage device 1B under the control of the signal processing unit 214.

  Then, according to the instruction, in other words, the acoustic characteristic information of the user 100 is measured by executing the acoustic characteristic measurement program (step S62). In other words, under the control of the signal processing unit 214, the sound 216, which is the sound transmitted from the transmitting unit 211 of the speaker 6 of the headphone 5 and reflected at various locations in the auditory organ 212 of the user 100, is received by the receiving unit 215 of the speaker 6. The sound received by the reception unit 215 is converted into an electrical signal and subjected to computation in the signal processing unit 214. As a result, the acoustic characteristic information 217 of the user 100 is output and stored in the storage device 1B. The

  Then, the signal processing unit 214 of the CPU 1A checks whether or not the measured acoustic characteristic information is that of the user 100 (step S63).

  When the signal processing unit 214 determines that the registration information (acoustic characteristic information already stored in the storage device 1B) and the measurement information (acoustic characteristic information measured this time) match as a result of the comparison, the user 100 If the CPU 1A continues to permit access to the computer system, but the signal processing unit 214 determines that the registration information and the measurement information do not match, the CPU 1A executes an end process ( Steps S64 and S65).

  Note that the measurement timing in step S62 may be periodically performed at regular intervals such as several seconds or several tens of seconds, and the measurement intervals may be random, such as 5 seconds, 10 seconds, 3 seconds, 15 seconds, or the like. Although it may change, random measurements that do not know when the next measurement will be performed are generally more effective in preventing unauthorized use.

  In addition, some specific methods of the termination process in step S65 will be described.

  One is a method in which the CPU 1A forcibly cuts off the power supply of the display device 2 being operated or the power supply of the main body of the computer system 10. Until the power is turned off, the CPU 1A may not accept all operations, and the screen of the display device 2 may be darkened, meaningless information may be displayed, or general public information may be displayed. .

  The other is a method in which the CPU 1A forcibly logs off a user currently in use. In addition, there is a method in which the CPU 1A displays a screen for prompting remeasurement of the acoustic characteristic information of the auditory organ on the display device 2 to substantially restrict the use of the user currently in use.

  In parallel with the above termination processing, the CPU 1A may notify the administrator of the computer system 10 that unauthorized use has occurred.

  As described above, it is possible to prevent unauthorized use after login by confirming that the user who has completed the login continues to use the computer system 10 thereafter. However, the user must measure the acoustic characteristic information of his / her auditory organ once every few seconds to several tens of seconds, and when it is measured by audible sound, it feels very annoying for the user. May feel uncomfortable.

  Thus, a method for preventing the user from feeling uncomfortable and preventing unauthorized use of the computer system 10 will be described below.

  For the measurement of the acoustic characteristic information of the auditory organ, it is possible to perform personal authentication with higher accuracy by using a plurality of frequencies. However, when audible sounds are included in a plurality of frequencies, the user feels troublesome in measurement. Therefore, the acoustic characteristic information of the user's auditory organ is measured using only the frequency in the ultrasonic region that does not cause discomfort to the user. Then, the CPU 1A calculates the change amount or change rate of the acoustic characteristic information at the frequency. When the signal processing unit 214 determines that the amount of change or the rate of change is substantially constant, the CPU 1A allows the user who is operating the computer system 10 to be an authenticated user at the time of login, If the signal processing unit 214 determines that the amount of change or rate of change has exceeded a certain threshold, the CPU 1A performs end processing, assuming that the user in operation is not the authenticated user at the time of login. That is, high-precision personal authentication is performed at the time of login, and low-precision personal authentication is performed after login. Measurement at a limited frequency does not allow accurate personal authentication and cannot completely prevent unauthorized use. However, both the frequency of unauthorized use and the reduction of user discomfort can be achieved at a certain level. It becomes possible.

  FIG. 10 is a flowchart showing a method of personal authentication during operation of the computer system 10.

  The user passes the personal authentication at the time of login, and the login is already completed. This user continues to wear the headphones 5 while accessing the computer system 10 and performing operations. The CPU 1A of the computer system 10 instructs the computer system 10 to measure the acoustic characteristic information of the auditory organ of the user 100 by ultrasonic waves at a certain arbitrary timing (step S71). That is, the CPU 1A starts executing the acoustic characteristic measurement program stored in the storage device 1B under the control of the signal processing unit 214.

  Then, according to the instruction, in other words, the acoustic characteristic information of the user 100 is measured by executing the acoustic characteristic measurement program (step S72). In other words, under the control of the signal processing unit 214, the sound 216, which is the sound transmitted from the transmitting unit 211 of the speaker 6 of the headphone 5 and reflected at various locations in the auditory organ 212 of the user 100, is received by the receiving unit 215 of the speaker 6. The sound received by the reception unit 215 is converted into an electrical signal and subjected to computation in the signal processing unit 214. As a result, the acoustic characteristic information 217 of the user 100 is output and stored in the storage device 1B. The

  Then, the measured acoustic characteristic information is measured at the time of login, and the acoustic characteristic information stored in the storage device 1B is compared with the signal processing unit 214 of the CPU 1A to obtain the amount of change or rate of change (step S73). .

  When the signal processing unit 214 determines that the obtained change amount or change rate is equal to or less than a certain threshold value, the user is recognized as the logged-in person, and the CPU 1A continues to allow access to the computer system and obtain If the signal processing unit 214 determines that the amount of change or rate of change has exceeded a certain threshold, the CPU 1A determines that the user currently operating is not the user at the time of login, and executes end processing (step S1). S74, S75).

  Several specific methods for the termination process in step S75 will be described.

  One is a method in which the CPU 1A forcibly cuts off the power supply of the display device 2 being operated or the power supply of the computer system 10 main body. Even if the power is not cut off, the CPU 1A may not accept all operations, and the screen of the display device 2 may be darkened, meaningless information may be displayed, or general known information may be displayed.

  The other is a method in which the CPU 1A forcibly logs off the user currently in use. In addition, there is a method in which the CPU 1A displays a screen for prompting remeasurement of the acoustic characteristic information of the auditory organ on the display device 2 to substantially restrict the use of the user currently in use.

  In addition, although it is the comparison calculation of the variation | change_quantity or rate of change implemented by step S73, the comparison object with the measured acoustic characteristic information may be the acoustic characteristic information measured at the time of login, or the acoustic characteristic information measured immediately before It doesn't matter.

  In addition, although the user 100 was demonstrated in this 2nd Embodiment, it can replace with the user 100 and can also be applied to the administrator who is another example of an operator.

  According to the second embodiment, after the login is completed, the acoustic characteristic information of the auditory organ of the operator (such as a user or an administrator) is measured at an arbitrary timing while the computer system 10 is being used. The computing device 1 compares the acoustic characteristics of the auditory organ and the acoustic characteristics of the auditory organ measured by the speaker 6 to identify the operator personally. ing. In this way, after the login is completed, the identity of the operator can be authenticated even when the computer system 10 is being used. If the identity of the operator is authenticated, the operation can be performed as it is. If not, the operation can be disabled. As a result, it is possible to prevent unauthorized use after login by confirming that the operator who has completed the login continues to use the computer system 10 thereafter.

  In addition, when measuring the acoustic characteristic information of the auditory organ, if only the frequency in the ultrasonic region that does not cause discomfort to the operator is used to measure the acoustic characteristic information of the operator's auditory organ, It is possible to prevent unpleasant use of the computer system 10 without causing discomfort.

  It is to be noted that, by appropriately combining arbitrary embodiments of the various embodiments described above, the effects possessed by them can be produced.

1 is a schematic block diagram of a computer system with a personal identification function according to a first embodiment of the present invention. It is a schematic diagram of the auditory organ of the computer system with a personal identification function according to the first embodiment of the present invention. It is a flowchart until it gives an administrator authority to the administrator of the said computer system with a personal identification function concerning 1st Embodiment of this invention. It is a flowchart until it reaches new registration (memory | storage) of the arbitrary users of the said computer system with a personal identification function concerning 1st Embodiment of this invention. It is a flowchart until an arbitrary user accesses the said computer system with a personal identification function concerning 1st Embodiment of this invention. It is a flowchart until an arbitrary user accesses the said computer system with a personal identification function concerning 1st Embodiment of this invention. It is a flowchart until it reaches new registration (memory | storage) of the arbitrary users of the said computer system with a personal identification function concerning 1st Embodiment of this invention. It is a flowchart until an arbitrary user accesses the said computer system with a personal identification function concerning 1st Embodiment of this invention. It is a flowchart which shows the personal authentication method in operation of the computer system of the user who completed the login to the computer system with a personal identification function concerning 2nd Embodiment of this invention. It is a flowchart which shows the personal authentication method in operation of the computer system of the user who completed the login to the said computer system with a personal identification function concerning 2nd Embodiment of this invention. (A), (b) is a schematic diagram for demonstrating the measurement of the acoustic characteristic for personal authentication in the said embodiment of this invention, respectively. It is explanatory drawing for demonstrating the authentication of the individual of FIG. It is a computer system concerning other embodiments of this invention, Comprising: It is a typical block diagram which shows the structure of the computer system comprised by the two arithmetic units connected by the network.

Explanation of symbols

1 arithmetic unit 1A CPU
DESCRIPTION OF SYMBOLS 1B Memory | storage device 1C Interface apparatus 2 Display apparatus 3 Keyboard 4 Mouse 5 Headphone 6 Speaker 10 Computer system 11 Outer ear 12 Middle ear 13 Inner ear 14 Tympanic membrane 15 Auditory bone 16 Semicircular canal 17 Cochlea 100 User 110 Network 120 Administrator 211 Sound transmission part 212 Auditory Organ 213 Transmitted sound 214 Signal processing unit 215 Sound receiving unit 216 Reflected sound 217 Acoustic characteristic information of authentication target person 219 Acoustic characteristic information of authentication target person

Claims (12)

Arithmetic unit (1) for performing computations, external input devices (4, 5) for inputting instructions and instructions to the arithmetic unit from the outside, and display unit (2) for displaying the computation results in the arithmetic unit A computer system including at least
A speaker (6) for measuring the acoustic characteristics of the auditory organ (212) of the operator (100, 120) operating the computer system;
The operation device compares the acoustic characteristics of the auditory organ of the operator with the acoustic characteristics of the auditory organ of the operator measured by the speaker, and performs personal identification of the operator. A computer system with a personal identification function.   An acoustic characteristic measurement program for measuring the acoustic characteristics of the auditory organ using the speaker is stored in the computer system (10) or in a second computer system (10A) connected to the computer system via a network. The computer system according to claim 1, wherein the acoustic characteristic of the auditory organ is measured using the speaker by executing the acoustic characteristic measurement program.   A personal authentication program for performing personal authentication based on the acoustic characteristics of the auditory organ is stored in the computer system or in a second computer system connected to the computer system via a network, and by executing the acoustic characteristic measurement program Permission to access the computer system by measuring the acoustic characteristics of the auditory organ using the speaker and executing personal authentication using the acoustic characteristics of the auditory organ by executing the personal authentication program The computer system according to claim 2, wherein whether or not it is possible is determined.   Claim 2 or Claim 3 in which an individual is identified by performing personal authentication using acoustic characteristics of the auditory organ, and operator authority for a computer system that is predetermined for each identified individual is granted. The computer system described.   The computer system according to any one of claims 1 to 4, wherein the information indicating the acoustic characteristics is acoustic impedance.   The computer system according to any one of claims 1 to 4, wherein the information indicating the sound characteristic is reflected wave characteristic information.   A computer system operator management method for determining whether or not an operator is permitted to access a computer system by performing personal authentication using acoustic characteristics of a hearing organ.   The determination as to whether or not to permit access to the computer system is performed by comparing the information indicating the acoustic characteristics of the auditory organ acquired in advance with the information indicating the measured acoustic characteristics and performing personal authentication. An operator management method for a computer system.   An operator management method for a computer system in which an individual is identified by performing personal authentication using acoustic characteristics of the auditory organ, and an operator authority for the computer system is assigned for each identified individual.   A computer system that identifies an individual by performing personal authentication by comparing information indicating the acoustic characteristics of the auditory organ acquired in advance with information indicating the measured acoustic characteristics, and is predetermined for each identified individual The operator management method for a computer system according to claim 9, wherein an operator authority is assigned to the computer system.   11. The operator management method for a computer system according to claim 7, wherein the information indicating the acoustic characteristics is acoustic impedance. The computer system operator management method according to any one of claims 7 to 10, wherein the information indicating the voice characteristic is reflected wave characteristic information.

Images