JP2005100425A - System, apparatus, and method for issuing identification information, program, and recording medium - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To prevent illegal acts based on forged identification information from being committed even if the identification information managed by a user has been forged. <P>SOLUTION: In purchasing an article from a vending machine 12, a specific primary bar code assigned to every cellular phone 13 is displayed on a display device 305 and is read with a bar code reader 204. When the read primary bar code is sent to a server device 11, the attributes of a preregistered user are examined, and if the person can purchase the article, a secondary bar code is issued. The issued secondary bar code is transmitted in accordance with an address registered in advance to the server device 11. When the cellular phone 13 receives the transmitted secondary bar code, the secondary bar code is displayed and read. When the read secondary bar code is sent to the server device 11, a sales permission message is sent from the server device 11 to the vending machine 12 and purchase of the article from the vending machine 12 is enabled. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  The present invention relates to a technique for preventing an illegal act from being performed based on illegally acquired identification information.

  Among the products traded in the market, there are products such as alcohol, cigarettes, etc. that are restricted in the age of those who can purchase them. Although it is convenient to allow such age-restricted products to be freely purchased at any time by a vending machine, there is a risk of underage drinking and smoking. Therefore, a system has been studied in which personal identification information written on an identification card is read by a vending machine, and if a person of an age that can be sold is sold, the product is sold.

  Tickets for events such as concerts and sports, in particular tickets for popular events such as famous singer concerts and soccer World Cups, are generally difficult to obtain. Tickets generally contain identification information assigned by the issuer in addition to the date and time of the event and seat number. Based on this identification information, it is possible to distinguish whether the ticket is a legitimate ticket.

  However, in any of the above methods, once the identification information is issued and delivered to the user, the identification information is managed on the user side for a long period of time. For this reason, the identification information is always exposed to the risk of forgery.

  Conventionally, forgery prevention has been achieved by various methods, such as adding a watermark or a hologram for a printing medium, or using an IC card as a recording medium for electronic data. However, even if any conventional anti-counterfeiting technology is applied, the identification information necessary to receive the provision of services has been managed on the user side for a long period of time, The risk of forgery of identification information and fraudulent actions could not be reduced sufficiently.

  In order to receive a service using such identification information, personal authentication is usually performed using the identification information. Conventionally, in order to perform this personal authentication, the identification information substantially the same as that issued to the user is associated with the personal information of each user in the server device on the service provider (issuer) side. I had to keep it. However, if the server device is invaded by a hacker, the stored identification information of each user may be illegally stolen. That is, even if the user does not neglect the responsibility for managing the identification information, there is a risk that the identification information will be used illegally.

  The present invention provides an identification information issuing system and the like that can prevent an illegal act from being performed based on the forged identification information even if the identification information managed by the user is forged. With the goal.

  Another object of the present invention is to provide an identification information issuing system or the like in which identification information issued to a user is not stolen from the issuer side and used illegally.

In order to achieve the above object, an identification information issuing system according to the first aspect of the present invention provides:
A wireless communication terminal and a server device capable of communicating with the wireless communication terminal via at least a wireless communication line;
The wireless communication terminal is
Primary identification information holding means for holding primary identification information managed by a user of the wireless communication terminal;
Secondary identification information that can be received from the server device by inputting the primary identification information to the server device, and holds secondary identification information that has no regularity with the primary identification information. Holding means,
The server device
Connected to a first input device for inputting primary identification information held in the primary identification information holding means and a second input device for inputting secondary identification information held in the secondary identification information holding means. ,
Destination storage means for storing destination information of wireless communication terminals of users who respectively properly manage primary identification information so as to be associated with corresponding primary identification information;
Secondary identification information issuing means for issuing secondary identification information with a predetermined validity period by inputting the primary identification information from the first input device;
User association means for associating the secondary identification information issued by the secondary identification information issuing means with the user who properly manages the primary identification information that has triggered the issuance,
Via the wireless communication line according to the destination information stored in the destination storage means so that the secondary identification information issued by the secondary identification information issuing means can be associated with the primary identification information that triggered the issue. Secondary identification information transmitting means for holding the primary identification information that triggered the issuance in the wireless communication terminal of the user who is properly managing the issue,
Association determination means for determining whether secondary identification information input from the second input device is associated with a user in the user association means;
Expiration date determination means for determining whether secondary identification information input from the second input device is within the predetermined expiration date;
A process permission unit that permits a predetermined process when the association determination unit determines an association with a user and the expiration date determination unit determines that the expiration date is within the expiration date;
A mode in which it is impossible to specify whether the primary identification information or the secondary identification information input from the first and second input devices is held in the wireless communication terminal of the user who is properly managing them. It is characterized in that it is input in.

  In the identification information issuing system, in order to allow the server device to perform a predetermined process, secondary identification information must be input from the second input device to the server device. The secondary identification information is sent from the server device to the wireless terminal device by inputting the primary identification information from the first input device, and is transmitted according to the destination information stored in association with the primary identification information. Therefore, the wireless communication terminal of the person who has input the forged primary identification information will not receive the secondary identification information. Unlike the primary identification information, the secondary identification information is issued as necessary, and has a predetermined expiration date. It is almost impossible to forge the secondary identification information having no regularity with the primary identification information within the expiration date. For this reason, even if the primary identification information managed by the user is forged, it is possible to prevent a predetermined process from being illegally permitted based on the forged primary identification information.

In order to achieve the above object, an identification information issuing device according to the second aspect of the present invention provides:
Wireless communication capable of holding primary identification information managed by a user and secondary identification information that can be received by inputting the primary identification information and has no regularity between the primary identification information and the primary identification information The terminal can communicate with at least via a wireless communication line,
Connected to the first and second input devices respectively for inputting the primary and secondary identification information held in the wireless communication terminal,
Destination storage means for storing destination information of wireless communication terminals of users who respectively properly manage primary identification information so as to be associated with corresponding primary identification information;
Secondary identification information issuing means for issuing secondary identification information with a predetermined validity period by inputting the primary identification information from the first input device;
User association means for associating the secondary identification information issued by the secondary identification information issuing means with the user who properly manages the primary identification information that has triggered the issuance,
Via the wireless communication line according to the destination information stored in the destination storage means so that the secondary identification information issued by the secondary identification information issuing means can be associated with the primary identification information that triggered the issue. Secondary identification information transmitting means for holding the primary identification information that triggered the issuance in the wireless communication terminal of the user who is properly managing the issue,
Association determination means for determining whether secondary identification information input from the second input device is associated with a user in the user association means;
Expiration date determination means for determining whether secondary identification information input from the second input device is within the predetermined expiration date;
A process permission unit that permits a predetermined process when the association determination unit determines an association with a user and the expiration date determination unit determines that the expiration date is within the expiration date;
A mode in which it is impossible to specify whether the primary identification information or the secondary identification information input from the first and second input devices is held in the wireless communication terminal of the user who is properly managing them. It is characterized in that it is input in.

  In order to allow the identification information issuing device according to the second aspect to perform a predetermined process, secondary identification information must be input from the second input device. The secondary identification information is sent to the wireless terminal device by inputting the primary identification information from the first input device, but is transmitted according to the destination information stored in association with the primary identification information. The wireless communication terminal of the person who has input the primary identification information does not receive the secondary identification information. Unlike the primary identification information, the secondary identification information is issued as necessary, and has a predetermined expiration date. It is almost impossible to forge the secondary identification information having no regularity with the primary identification information within the expiration date. For this reason, even if the primary identification information managed by the user is forged, it is possible to prevent a predetermined process from being illegally permitted based on the forged primary identification information.

In the identification information issuing device according to the second aspect,
The user associating means assigns corresponding identification information to a storage position corresponding to a calculation result obtained by calculating a numerical value corresponding to the secondary identification information issued by the secondary identification information issuing means using a plurality of different arithmetic expressions. It consists of multiple tables that register association information to associate with
The association determination unit uses the same secondary identification information input from the second input device at a storage position corresponding to each calculation result of the plurality of arithmetic expressions in all of the plurality of tables. It may be configured by means for determining whether or not the association information of the person is registered in common.

In this case,
The plurality of arithmetic expressions can be, for example, an expression for obtaining a remainder obtained by dividing a numerical value corresponding to secondary identification information input from the second input device by a different divisor,
The least common multiple of the divisors different from each other can be conditioned on being larger than the difference between the maximum value and the minimum value that can be taken by the numerical value corresponding to the secondary identification information.

The identification information issuing device according to the second aspect is
The apparatus may further include a discarding unit that discards the secondary identification information issued by the secondary identification information issuing unit when transmission by the secondary identification information transmitting unit is completed.

  When the user association means and the association determination means are configured as described above, even if the issued secondary identification information is discarded by the discarding means, the secondary identification information input from the second input device and used Can be associated with a person. That is, since the issued secondary identification information is not left in the identification information issuing device, the secondary identification information given to the user is not stolen from the issuer side. Therefore, as long as the user fulfills the responsibility for managing the secondary identification information of the user, the secondary identification information is not illegally used.

The identification information issuing device according to the second aspect is
Watermark adding means for embedding any kind of digital watermark of a plurality of kinds of digital watermarks prepared in advance in the secondary identification information issued by the secondary identification information issuing means;
Watermark associating means for associating the secondary identification information issued by the secondary identification information issuing means with the electronic watermark of the type added by the watermark adding means;
Watermark analysis means for analyzing the type of digital watermark embedded in the secondary identification information input from the second input device;
The digital watermark analyzed by the watermark analysis unit may further include a watermark determination unit that determines whether the secondary association information is associated with the watermark association unit,
The processing permission unit may further permit the predetermined processing when the watermark determination unit determines the association of the digital watermark.

  It is further difficult to analyze the type of digital watermark embedded in the secondary identification information, and it is even more impossible to forge the secondary identification information within the expiration date.

The identification information issuing device according to the second aspect is
The apparatus may further comprise attribute determination means for determining whether or not the attribute of the user who properly manages the primary identification information input from the first input device is a predetermined attribute,
Selling an article that can only be sold to a person corresponding to the predetermined attribute, connected to a vending machine connected to the second input device;
The processing permission means may notify the vending machine connected to the second input device that has input the secondary identification information that the sale of the article is permitted.

  Even a vending machine that can sell merchandise such as liquor and cigarettes for 24 hours will not sell merchandise if the user attributes do not satisfy the conditions. Thereby, objectives such as youth protection can be achieved.

When the identification information issuing device according to the second aspect is connected to a vending machine,
The secondary identification information issued by the secondary identification information issuing means is encrypted using an encryption key corresponding to a decryption key unique to the vending machine connected to the first input device that has input the primary identification information. Secondary identification information encryption means to be transmitted to the secondary identification information transmission means,
When secondary identification information is input from the second input device, the input secondary identification information is decrypted using a decryption key unique to the vending machine connected to the second input device. It is also possible to further include secondary identification information decoding means for converting to

  In this case, a vending machine other than the vending machine connected to the first input device that has input the primary identification information sells the product even if the secondary identification information is input from the second input device. There is no. Even if the wireless communication terminal receives the secondary identification information by forgery of the primary identification information by another person, the user of the wireless communication terminal can determine which vending machine has input the forged primary identification information. There is no way to know. For this reason, goods are not purchased illegally using the secondary identification information sent unintentionally by the user.

In the identification information issuing device according to the second aspect,
The wireless communication terminal may include a display device that displays the primary identification information and the secondary identification information. in this case,
Each of the first and second input devices may be configured by a device that reads primary identification information or secondary identification information displayed on the display device.

Here, the identification information issuing device according to the second aspect further includes model information storage means for storing model information including at least information related to the display device in association with the primary identification information for each wireless communication terminal. Can be
The secondary identification information issuing means may issue the secondary identification information in accordance with the model information stored in the model information storage means in association with the primary identification information that has triggered the issue.

  The wireless communication terminal can be, for example, a mobile phone.

  By issuing the secondary identification information according to the model information of the wireless communication terminal, the wireless communication terminal can display the secondary identification information by making the best use of the function of the display device. This configuration is particularly effective when the user frequently changes the model of the wireless communication terminal such as a mobile phone.

In order to achieve the above object, an identification information issuing device according to the third aspect of the present invention provides:
A wireless communication terminal capable of holding primary identification information managed by a user and secondary identification information issued according to the input of the primary identification information is capable of communicating via at least a wireless communication line,
A memory that stores data including a program, a processor that executes the program stored in the memory, and a communication device that transmits and receives information to and from the wireless communication terminal according to control by the processor, and is held in the wireless communication terminal Connected to the first and second input devices for inputting the primary and secondary identification information respectively,
The memory is
Destination storage means for storing destination information of wireless communication terminals of users who respectively properly manage primary identification information so as to be associated with corresponding primary identification information;
Including secondary identification information issued by the secondary identification information issuing means, and user association means for associating a user who properly manages the primary identification information that has triggered the issuance,
The program is
When the primary identification information is input from the first input device, there is no regularity between the primary identification information and the secondary identification information with a predetermined expiration date is issued. And processing
The secondary identification information issued by the first processing is transmitted via the wireless communication line according to the destination information stored in the destination storage means so that the secondary identification information can be associated with the primary identification information that triggered the issue. A second process for causing the wireless communication terminal of the user who properly manages the primary identification information that has triggered the issuance,
A third process for determining whether secondary identification information input from the second input device is associated with a user in the user association means;
A fourth process for determining whether the secondary identification information input from the second input device is within the predetermined validity period;
A fifth process for permitting a predetermined process when determining the association with the user by the third process and determining that the user is within the expiration date by the fourth process,
A mode in which it is impossible to specify whether the primary identification information or the secondary identification information input from the first and second input devices is held in the wireless communication terminal of the user who is properly managing them. It is characterized in that it is input in.

In order to achieve the above object, the identification information issuing method according to the fourth aspect of the present invention includes:
The primary identification information held in the wireless communication terminal and managed by the user is input from the first input device to the computer device,
By inputting the primary identification information, the computer device issues secondary identification information with no regularity between the primary identification information and a predetermined expiration date,
Associating the issued secondary identification information with a user who properly manages the primary identification information that triggered the issue,
The issued secondary identification information is transmitted from the computer device via a wireless communication line in accordance with destination information stored in the computer device in advance so that it can be associated with the primary identification information that triggered the issue. By transmitting, the primary identification information that triggered the issue is held in the wireless communication terminal of the user who is properly managing,
The secondary identification information held in the wireless communication terminal that has received the transmitted secondary identification information is input from the second input device to the computer device,
When the input secondary identification information is associated with the user in the computer device and is within the expiration date, the computer device is allowed to perform a predetermined process,
A mode in which it is impossible to specify whether the primary identification information or the secondary identification information input from the first and second input devices is held in the wireless communication terminal of the user who is properly managing them. It is characterized in that it is input in.

In order to achieve the above object, an identification information issuing device according to a fifth aspect of the present invention includes identification information issuing means for issuing identification information to be given to a user,
A calculation means for calculating a numerical value corresponding to the identification information issued by the identification information issuing means with a plurality of different calculation expressions, and obtaining a calculation result by each calculation expression;
A plurality of tables that are provided corresponding to each of the plurality of arithmetic expressions, and that register association information for associating with a user who has given corresponding identification information at a storage position corresponding to each calculation result;
In all of the plurality of tables, a registration determination unit that determines whether or not association information of the same user is registered in common at storage positions corresponding to the respective calculation results obtained by the calculation unit;
When the registration determination unit determines that the association information of the same user is registered in common, a redo unit that causes the identification information issuance unit to reissue the identification information;
When the registration determination unit determines that the same user association information is not registered in common, identification information is given to the storage position of each table corresponding to each calculation result obtained by the calculation unit. An association means for registering association information to associate with a user to be
Identification information output means for outputting the identification information registered by the association means to the user to whom the identification information is to be added,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent.

In this case,
The plurality of arithmetic expressions can be, for example, an expression for obtaining a remainder obtained by dividing a numerical value corresponding to identification information issued by the identification information issuing means by a different divisor,
The least common multiple of the divisors different from each other can be provided on the condition that the numerical value corresponding to the identification information that can be issued by the identification information issuing means is larger than the difference between the maximum value and the minimum value that can be taken.

  Here, it is preferable that the divisors used in the plurality of arithmetic expressions are relatively prime.

The identification information issuing device according to the fifth aspect is
The information processing apparatus may further include a discarding unit that discards the identification information issued by the identification information issuing unit when the identification information output unit completes outputting the identification information to the user.

  In the identification information issuing device according to the fifth aspect, even if the issued identification information is discarded by the discarding unit, when the identification information given to the user is input, the input identification information and the user Can be associated. That is, since the issued identification information is not left in the identification information issuing device, the identification information given to the user is not stolen from the issuer side. For this reason, as long as the user fulfills the responsibility for managing his / her identification information, the identification information is not illegally used.

The identification information issuing device according to the fifth aspect is
A user registration means for registering a user who can be given the identification information;
Request acceptance means for accepting an issuance request for identification information from a user registered in the user registration means;
User authentication means for authenticating a user who has issued an issue request accepted by the request acceptance means with reference to the user registration means may be further provided. in this case,
The identification information issuing means may issue the identification information when the user authentication means authenticates a user.

In the identification information issuing device according to the fifth aspect,
For example, the identification information output means may be constituted by means for transmitting the identification information issued by the identification information issuing means to a wireless communication apparatus possessed by a user to whom the identification information is to be given.

The identification information issuing device according to the fifth aspect is
Watermark adding means for embedding any kind of digital watermark among a plurality of kinds of digital watermarks prepared in advance in the identification information issued by the identification information issuing means;
The image processing apparatus may further include watermark association means for associating the identification information issued by the identification information issuing means with the type of digital watermark added by the watermark adding means.

  In this case, if the identification information is not forged until it is analyzed up to the type of the digital watermark embedded in the identification information, the identification information cannot be used even if it is forged. be able to.

In order to achieve the above object, an identification information issuing device according to the sixth aspect of the present invention provides:
A memory that stores data including a program, a processor that executes the program stored in the memory, and an output device that outputs identification information given to a user according to control by the processor,
The memory is
Registered associating information for associating the user with the corresponding identification information at the storage position corresponding to the calculation result obtained by calculating the numerical value corresponding to the identification information given to the user with a plurality of different arithmetic expressions, Including a plurality of tables provided corresponding to each of the plurality of arithmetic expressions,
The program is
A first process for issuing identification information to be given to the user;
A second process for calculating a numerical value corresponding to the identification information issued by the first process using a plurality of different arithmetic expressions, and obtaining a calculation result by each arithmetic expression;
Third processing for determining whether or not the same user association information is registered in common in the storage positions corresponding to the respective calculation results obtained by the second processing in all of the plurality of tables. When,
A fourth process for re-issuing the issuance of identification information by the first process when it is determined that the same user association information is registered in common by the third process;
When it is determined that the same user association information is not registered in common by the third process, the identification information is stored in the storage position of each table corresponding to each calculation result obtained by the second process. A fifth process of registering association information for associating with a user who should be given
And a sixth process for outputting the identification information registered in the association information by the fifth process to the user to whom the identification information is to be given from the output device,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent.

In order to achieve the above object, the identification information issuing method according to the seventh aspect of the present invention is:
Issue identification information to give to users,
A numerical value corresponding to the issued identification information is calculated by a plurality of different arithmetic expressions, and a calculation result by each arithmetic expression is obtained,
It is determined whether or not the association information of the user of the identification information that has already been issued is registered in common in the storage position corresponding to the calculated calculation result for all the tables corresponding to each of the plurality of calculation expressions,
For all the tables, when the association information of the user of the identification information that has already been issued is registered in common, the issuance of the identification information is performed again,
Unless the user association information of the already issued identification information is registered in common for all the tables, the association of the issued user is stored in the storage location corresponding to the calculated calculation result of each table. Register information,
The identification information registered with the association information of the user to each table is output to the user,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent.

In order to achieve the above object, an authentication apparatus according to the eighth aspect of the present invention provides:
Registered associating information for associating with a user who has given corresponding identification information, at a storage position corresponding to a calculation result obtained by calculating a numerical value corresponding to the identification information given to the user with a plurality of different arithmetic expressions, A plurality of tables provided corresponding to each of the plurality of arithmetic expressions;
In all of the plurality of tables, the same numerical value corresponding to the identification information input from any of the users given the identification information is stored in the storage position corresponding to each calculation result calculated by the plurality of arithmetic expressions. Registration determination means for determining whether or not the user association information is registered in common;
A user authentication unit that authenticates the user when the registration determination unit determines that the association information of the same user is registered in common;
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent.

In this case,
The plurality of arithmetic expressions can be, for example, an expression for obtaining a remainder obtained by dividing a numerical value corresponding to identification information input by a user by a different divisor,
The least common multiple of the divisors different from each other can be set on condition that the numerical value corresponding to the identification information that can be given to the user is larger than the difference between the maximum value and the minimum value that can be taken.

  Here, it is preferable that the divisors used in the plurality of arithmetic expressions are relatively prime.

In the authentication device according to the eighth aspect,
The identification information given to the user may be discarded when the output of the identification information to the user is completed.

  In the authentication device according to the eighth aspect, even if the issued identification information has been discarded, the identification information input from the user can be associated with the user corresponding to the identification information. That is, since the identification information given to the user is not left, the identification information given to the user is not stolen from the issuer side. For this reason, as long as the user fulfills the responsibility for managing his / her identification information, the identification information is not illegally used.

In order to achieve the above object, an authentication apparatus according to the ninth aspect of the present invention provides:
A memory that stores data including a program, a processor that executes the program stored in the memory, and an input device that inputs identification information given to a user according to control by the processor;
The memory is
Registered associating information for associating with a user who has given corresponding identification information, at a storage position corresponding to a calculation result obtained by calculating a numerical value corresponding to the identification information given to the user with a plurality of different arithmetic expressions, Including a plurality of tables provided corresponding to each of a plurality of arithmetic expressions,
The program is
In all of the plurality of tables, the association information of the same user at the storage position corresponding to each calculation result obtained by calculating the numerical value corresponding to the identification information input to the first input device by the plurality of calculation expressions First processing for determining whether or not are registered in common,
A second process for authenticating the user when it is determined that the association information of the same user is registered in common by the first process,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent.

In order to achieve the above object, an authentication method according to a tenth aspect of the present invention includes:
Enter the identification information given to the user from one of the users,
The numerical value corresponding to the input identification information is calculated by a plurality of different arithmetic expressions, and the calculation result by each arithmetic expression is obtained.
It is determined whether or not the same user association information is registered in common in the storage positions corresponding to the calculated calculation results for all the tables corresponding to the plurality of calculation expressions,
If it is determined that the association information of the same user is registered in common, the user is authenticated,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The result of the operation performed by at least one of the other will not match,
When the identification information is given to the user, the user is associated with the corresponding storage position of each table corresponding to each calculation result obtained by calculating the numerical value corresponding to the given identification information by the plurality of calculation expressions. It is characterized by information being registered.

In order to achieve the above object, a program according to an eleventh aspect of the present invention is:
Wireless communication capable of holding primary identification information managed by a user and secondary identification information that can be received by inputting the primary identification information and has no regularity between the primary identification information and the primary identification information In a computer device that can communicate with a terminal via at least a wireless communication line and that is connected to first and second input devices that respectively input primary and secondary identification information held in the wireless communication terminal Executed,
Destination storage means for storing destination information of wireless communication terminals of users who respectively properly manage primary identification information so as to be associated with corresponding primary identification information;
Secondary identification information issuing means for issuing secondary identification information with a predetermined validity period by inputting the primary identification information from the first input device;
User association means for associating the secondary identification information issued by the secondary identification information issuing means with the user who properly manages the primary identification information that has triggered the issuance,
Via the wireless communication line according to the destination information stored in the destination storage means so that the secondary identification information issued by the secondary identification information issuing means can be associated with the primary identification information that triggered the issue. Secondary identification information transmitting means for holding the primary identification information that triggered the issuance in the wireless communication terminal of the user who is properly managing the issue,
Association determination means for determining whether secondary identification information input from the second input device is associated with a user in the user association means;
Expiration date determination means for determining whether secondary identification information input from the second input device is within the predetermined expiration date;
A process permission unit that permits a predetermined process when the association determination unit determines an association with a user and the expiration date determination unit determines that the expiration date is within the expiration date;
A mode in which it is impossible to specify whether the primary identification information or the secondary identification information input from the first and second input devices is held in the wireless communication terminal of the user who is properly managing them. It is characterized in that it is input in.

In order to achieve the above object, a program according to the twelfth aspect of the present invention is:
Executed in a computer device,
Issuing identification information for granting to users;
Calculating a numerical value corresponding to the issued identification information by a plurality of different arithmetic expressions, and obtaining a calculation result by each arithmetic expression;
A step of determining whether user association information of identification information that has already been issued is commonly registered in a storage location corresponding to the obtained calculation result for all tables corresponding to each of the plurality of calculation expressions. When,
For all tables, when the association information of users of identification information that has already been issued is registered in common, re-issuing the identification information; and
Unless the user association information of the already issued identification information is registered in common for all the tables, the association of the issued user is stored in the storage location corresponding to the calculated calculation result of each table. Registering information; and
Outputting the identification information in which the association information of the user to each table is registered to the user,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent.

In order to achieve the above object, a program according to the thirteenth aspect of the present invention is:
Executed in a computer device,
The same user in all the tables corresponding to each of the plurality of arithmetic expressions at the storage position corresponding to each arithmetic result obtained by calculating the numerical value corresponding to the identification information input from the user by a plurality of different arithmetic expressions Determining whether the association information is registered in common,
Authenticating the user when it is determined that the association information of the same user is registered in common,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The result of the operation performed by at least one of the other will not match,
When the identification information is given to the user, the user is associated with the corresponding storage position of each table corresponding to each calculation result obtained by calculating the numerical value corresponding to the given identification information by the plurality of calculation expressions. It is characterized by information being registered.

  As a method for providing a program according to the above 11th to 13th aspects, a method of storing and distributing the program on a computer-readable recording medium such as a CD-ROM or a DVD-ROM, There is a method of downloading from the system to the client system.

  Embodiments of the present invention will be described below with reference to the accompanying drawings.

First Embodiment FIG. 1 is a block diagram showing a configuration of a vending machine system applied to this embodiment. As shown in the figure, this vending machine system includes a server device 11, a vending machine 12 having a barcode reader 204, and a mobile phone 13 having a display device 305. The server device 11 and the vending machine 12 are connected via a dedicated line 30, and the server device 11 and the mobile phone 13 are connected via a network 40 including at least a mobile phone network 41.

  FIG. 2 is a block diagram illustrating a configuration of the server device 11. As illustrated, the server device 11 includes a CPU (Central Processing Unit) 101, a storage device 102, a first communication device 103, and a second communication device 104. The server device 11 also includes a primary barcode database 105 and a secondary barcode database 106. The primary barcode database 105 and the secondary barcode database 106 are actually stored in the storage device 102.

  The CPU 101 executes a program stored in the storage device 102 and performs processing such as issuing a secondary barcode triggered by reception of the primary barcode from the vending machine 12 and notifying permission for sale of goods. . The storage device 102 includes a main storage device and an auxiliary storage device, stores the processing program of the CPU 101, and is used as a data storage area. The first communication device 103 transmits and receives information to and from the vending machine 12 via the dedicated line 30. The second communication device 104 transmits / receives information to / from the mobile phone 13 via the network 40.

  As shown in FIGS. 3A and 3B, the primary barcode and the secondary barcode are each constituted by a two-dimensional two-dimensional matrix pattern. The primary barcode shown in FIG. 3A has a unique pattern predetermined for each mobile phone 13. The secondary bar code shown in FIG. 3B is issued by the server device 11 so that the vending machine 12 can purchase a product by causing the vending machine 12 to read the primary bar code. The secondary barcode is randomly issued and has a pattern without any regularity with the primary barcode. The secondary barcode received by the mobile phone 13 is encrypted with an encryption key unique to the vending machine 12 that has read the primary barcode.

  The primary barcode database 105 is a database in which a primary barcode unique to each user (administrator of the mobile phone 13) and information regarding the attribute of the user are registered. As shown in FIG. 4, each record in the primary barcode database 105 includes a user ID, primary barcode image data, user attribute information (gender and age), user address, and user. Information on the settlement method.

  The user ID is an ID for identifying the user of the mobile phone 13. The image data of the primary barcode is image data having the pattern shown in FIG. 3A. The user attribute information is used to determine whether or not a product sold by the vending machine 12 can be purchased. The address is an address of the mobile phone 13 that should transmit the secondary barcode corresponding to the primary barcode. If it is possible to transmit a secondary barcode with a mobile phone number, the mobile phone number may be registered instead of the address. The settlement means registers a credit card number used to settle the price of the product purchased by the vending machine 12.

  The secondary barcode database 106 is a database in which secondary barcodes issued at random according to the input of the primary barcode are registered. Each record of the secondary barcode database 106 is newly generated every time a primary barcode is input. As shown in FIG. 5, the user ID, secondary barcode image data, issue date and time, and valid It contains a deadline and a used flag.

  The user ID is an ID for identifying the user of the mobile phone 13 and serves as a key for referring to the primary barcode database 105. The image data of the secondary barcode is image data having the pattern shown in FIG. 3B. The issue date is the date when the secondary barcode was issued. The expiration date is registered for a predetermined time (for example, 10 minutes) after the issuance of the secondary bar code, and indicates the time limit for the user to purchase a product with the vending machine 12 using the secondary bar code. . The used flag is a flag that is set when a product is purchased by the vending machine 12 using the secondary barcode.

  FIG. 6 is a block diagram showing the configuration of the vending machine 12. As illustrated, the vending machine 12 includes a CPU 201, a storage device 202, a communication device 203, and a sales unit 205 in addition to the barcode reader 204. The CPU 201 and the storage device 202 may be the same as the CPU and the storage device that control the sales unit 205.

  The CPU 201 executes the program stored in the storage device 202, and in accordance with a permission notification message (described later) sent from the server device 11 to the read primary barcode and secondary barcode, Allow sales. The storage device 202 includes a main storage device and an auxiliary storage device, stores a processing program of the CPU 201, and is used as a data storage area. The data stored in the storage device 202 includes an encryption key and a decryption key (which can be symmetric or asymmetric key) assigned as unique to each vending machine 12.

  The communication device 203 transmits / receives information to / from the server device 11 via the dedicated line 30. The barcode reader 204 reads the primary barcode or the secondary barcode displayed on the display device 305 of the mobile phone 13. The read primary barcode or secondary barcode is sent from the communication device 203 to the server device 11 via the network 40 and is input to the server device 11. The barcode reader 204 is indirectly connected to the server device 11. The sales unit 205 basically has the same function as a normal vending machine, but even if it sells products that can be sold only to those who have certain attributes such as alcohol and tobacco. It is often possible to sell a product only when a sales permission notification message is sent from the server device 11.

  FIG. 7 is a block diagram showing the configuration of the mobile phone 13. As shown in the figure, the mobile phone 13 includes a display device 305, a CPU 301, a ROM (Read Only Memory) 302, a RAM (Random Access Memory) 303, an input device 304, and a communication device 306. Yes. The mobile phone 13 includes other components necessary for making a call, but is omitted in FIG. 7 because it is not directly related to the present invention.

  The CPU 301 executes a program stored in the ROM 302 and performs processing for managing the primary barcode and the secondary barcode. The CPU 301 displays the primary barcode and the secondary barcode on the display device 305 in accordance with the input from the input device 304. The ROM 302 stores the processing program of the CPU 301 and also stores image data of a primary barcode that is predetermined for each mobile phone 13. The RAM 303 is used as a data storage area, and the data includes secondary barcode image data (encrypted data).

  The input device 304 includes numeric keys “1” to “0”, a “*” key, a “#” key, and the like, and inputs necessary instructions to the CPU 301 by a user operation. The display device 305 is configured by a liquid crystal display device or the like, and displays an image of a primary barcode or a secondary barcode according to an input from the input device 304. The communication device 306 transmits and receives information to and from the server device 11 via the network 40 including the mobile phone network 41.

  The operation of the vending machine system according to this embodiment will be described below. FIG. 8A and FIG. 8B are flowcharts showing processing for a user to purchase a product in the vending machine system according to this embodiment.

  When the user of the mobile phone 13 intends to purchase a product sold by the vending machine 12, the user operates the input device 304 of the mobile phone 13 to display the primary barcode stored in the ROM 302 on the display device 305. It is displayed (step S101). When the user brings the image of the primary barcode displayed on the display device 305 closer to the barcode reader 204 of the vending machine 12, the barcode reader 204 reads the primary barcode (step S121).

  At this time, the vending machine 12 does not perform any processing other than reading the primary barcode by the barcode reader 204. No information is input to the vending machine 12 with respect to the mobile phone 13 on which the primary barcode is displayed, and reading of the primary barcode by the barcode reader 204 is a valid user. No judgment material is given as to whether or not the mobile phone 13 is held.

  The CPU 201 of the vending machine 12 reads the unique encryption key stored in the storage device 202 and transmits the encryption key from the communication device 203 to the server device 11 via the dedicated line 30 (step S122). The CPU 201 causes the image data of the primary barcode read by the barcode reader 204 in step S121 to be transmitted from the communication device 203 to the server device 11 via the dedicated line 30 (step S123).

  The first communication device 103 of the server device 11 receives the encryption key transmitted in step S122, temporarily stores it in the storage device 102 (step S141), and receives the primary barcode image data transmitted in step S122. Then, it is temporarily stored in the storage device 102 (step S142). Here, the information received by the server device 11 is only the image data of the primary barcode read by the barcode reader 204 and the encryption key unique to the vending machine 12. Therefore, the server device 11 does not know at all whether or not it is a legitimate user who is going to purchase a product.

  The CPU 101 of the server device 11 performs a secondary barcode issuing process, which will be described in detail later, and issues a secondary barcode (step S143). In the secondary barcode issuing process, as will be described later, there may be a case where the secondary barcode is not issued. However, the following description will be made assuming that the secondary barcode is issued. When the secondary barcode is issued, the CPU 101 creates a new record in the secondary barcode database 106 and uses it registered in the primary barcode database 105 in association with the received image data of the primary barcode. The user ID, the issued secondary barcode image data, the current date and time, and the expiration date after a predetermined period from the current date and time are registered in association with each other (step S144).

  The CPU 101 encrypts the image data of the issued secondary barcode using the encryption key temporarily stored in the storage device 102 in step S141 (step S145). The CPU 101 receives the encrypted secondary barcode image data from the second communication device 104 in association with the received primary barcode image data, that is, the address registered in the primary barcode database 105, that is, the received data. Transmission is performed via the network 40 including the mobile phone network 41 with the address of the user who is properly managing the primary bar code as the destination (step S146).

  If the communication device 306 of the mobile phone 13 displaying the primary barcode in step S101 is a legitimate one that is not forged, the secondary barcode image data transmitted in step S146. (Encrypted) is received and temporarily stored in the RAM 303 (step S102). The user of the mobile phone 13 operates the input device 304 of the mobile phone 13 to display the secondary barcode stored in the RAM 303 on the display device 305 (step S103). When the user brings the secondary barcode image displayed on the display device 305 closer to the barcode reader 404 of the vending machine 12, the barcode reader 204 reads the encrypted secondary barcode (step S124). ).

  The CPU 201 of the vending machine 12 reads the unique decryption key stored in the storage device 202, and transmits this decryption key from the communication device 203 to the server device 11 via the dedicated line 30 (step S125). The CPU 201 causes the image data of the secondary barcode read by the barcode reader 204 in step S124 to be transmitted from the communication device 203 to the server device 11 via the dedicated line 30 (step S126). The first communication device 103 of the server device 11 receives the decryption key transmitted in step S125, temporarily stores it in the storage device 102 (step S147), and the secondary barcode image data (step S126). (Encrypted) is received and temporarily stored in the storage device 102 (step S148).

  The CPU 101 decrypts the encrypted secondary barcode image data using the decryption key temporarily stored in the storage device 102 in step S147 (step S149). The CPU 101 checks whether the secondary barcode image data that is the same as the decoded secondary barcode image data is registered in the secondary barcode database 106. When the secondary barcode is registered, the CPU 101 further refers to the secondary barcode database 106 and the expiration date of the secondary barcode has not passed or the used flag is not set. Is determined (step S150).

  When the decoded secondary barcode image data is registered, the expiration date has not passed, and the used flag is not set, the CPU 101 connects the dedicated line 30 from the first communication device 103. The sales authorization notification message is transmitted to the vending machine 12 that has sent the image data of the secondary bar code via (step S151). When the communication device 203 of the vending machine 12 receives the sales permission notification message, it passes it to the CPU 201 (step S127).

  The CPU 201 enables the sales unit 205 to sell the product by receiving the sales permission notification message. The sales unit 205 sells the product according to the user's selection (step S128). The CPU 201 causes the communication device 306 to transmit information related to the amount of goods sold by the sales unit 205 from the communication device 306 to the server device 11 (step S129).

  When the first communication device 103 of the server device 11 receives the information regarding the amount, it is temporarily stored in the storage device 102 (step S152). The CPU 101 reads information on the payment method from the primary barcode database 105 using the user ID of the secondary barcode checked in step S150 as a key, and performs a billing process for the temporarily stored amount using the payment method (step S100). S153).

  Similarly, the CPU 101 reads out an address from the primary barcode database 105 and causes the second communication device 104 to transmit information indicating that the accounting process has been performed using the address as a destination via the network 40 including the mobile phone network 41 ( Step S154). When the communication device 306 of the mobile phone 13 receives the information indicating that the accounting process has been performed (step S104), the CPU 301 displays the information on the display device 305 (step S105). This completes all the processes necessary for the user to purchase a product from the vending machine 12.

  FIG. 9 is a flowchart showing in detail the secondary barcode issuing process in step S143. The CPU 101 determines whether or not the same primary barcode image data as the primary barcode image data received in step S142 is registered in the primary barcode database 105 (step S201). If the received image data of the primary barcode is not registered, the CPU 101 ends the process of this flowchart without issuing the secondary barcode.

  When the primary barcode image data is registered, the CPU 101 determines that the age of the user registered in the primary barcode database 105 in association with the primary barcode image data is the vending machine 12. It is determined whether or not an age condition for selling the product is satisfied (step S202). If the age condition is not satisfied, the CPU 101 ends the process of this flowchart without issuing a secondary barcode.

  When the age condition is satisfied, the CPU 101 determines that the gender of the user registered in the primary barcode database 105 in association with the image data of the primary barcode is a sex that allows the vending machine 12 to sell the product. It is determined whether or not the condition is satisfied (step S203). If the sex condition is not satisfied, the CPU 101 ends the process of this flowchart without issuing a secondary barcode.

  When the gender conditions are also satisfied, the CPU 101 determines the product purchased by the user based on the information related to the payment method registered in the primary barcode database 105 in association with the image data of the primary barcode. It is determined whether or not charging can be performed (step S204). If charging is not possible, the process of this flowchart is terminated without issuing a secondary bar code.

  If charging can be made, the CPU 101 randomly generates a secondary barcode regardless of the primary barcode received in step S142 (step S205). The CPU 101 determines whether or not the generated secondary barcode is already registered in the secondary barcode database 106 (step S206). If already registered, the process returns to step S205, and the CPU 101 generates another secondary barcode. If the generated secondary barcode is not registered, the secondary barcode generated in step S205 becomes a secondary barcode issued to the user, and the process of this flowchart is terminated.

  If the secondary barcode is not issued in the secondary barcode issuing process in step S143, the CPU 101 cannot issue the secondary barcode to the vending machine 12 or the mobile phone 13 instead of the secondary barcode. A message indicating this is transmitted from the first communication device 103 or the second communication device 104. By outputting this message, the user can recognize that the secondary barcode cannot be issued.

  If the image data of the primary barcode received in step S142 is forged, and the same forged primary barcode is registered in the primary barcode database 105, a secondary barcode is issued ( However, when other conditions such as age conditions are met). However, since the issued secondary barcode is transmitted with the address registered in the primary barcode database 105 as the destination, even if the barcode reader 204 does not read the primary barcode, The mobile phone 13 of the person who holds the code properly receives it. The issued secondary bar code does not reach the mobile phone 13 of the person who holds the forged primary bar code.

  As a result of checking the secondary barcode database 106 in step S150, if the secondary barcode has not been registered, or if it has been registered, the expiration date has passed or the used flag has been set, the CPU 101 Instead of the sales permission notification message, the vending machine 12 or the mobile phone 13 causes the first communication device 103 or the second communication device 104 to transmit a non-permission notification message. By outputting this message, the user can recognize that the vending machine 12 cannot purchase the product.

  When the secondary barcode displayed on the display device 305 is read by the barcode reader 204 of the vending machine 12 different from the primary barcode, the sent decryption key does not correspond to the encryption key. The CPU 101 of the device 11 cannot correctly decode the received secondary barcode. For this reason, as a result of checking the secondary barcode database 106 in step S150, it is determined that the secondary barcode is not registered.

  As described above, in the portable vending machine system according to the present embodiment, a user who can purchase a product with the vending machine 12 causes the barcode reader 204 to read the primary barcode, and the secondary from the server device 11. Only those who have obtained the barcode. The CPU 101 of the server device 11 refers to the primary barcode database 105 when issuing the secondary barcode, and checks whether the user has an attribute that allows the purchase of a product. The user cannot obtain the secondary barcode unless the user has the attribute for purchasing the product. For this reason, even if goods such as alcohol and cigarettes are sold with the vending machine 12 for 24 hours, it is possible to protect adolescents without causing undesirable problems such as drinking and smoking by minors. .

  Since the primary barcode is always managed by the user in the mobile phone 13, there is a risk of forgery. However, in order for a user to purchase a product, a secondary barcode having no regularity with the primary barcode is also required. Since the user cannot know at all what kind of secondary barcode is issued, there is little risk that the secondary barcode is forged. Moreover, because the secondary barcode has an expiration date, it is possible that the forged secondary barcode is still valid and unused even if it is forged. The nature is almost zero. For this reason, merchandise is not illegally purchased due to forgery of the secondary barcode.

  Even if the primary bar code that can be forged relatively easily is read by the bar code reader 204 of the vending machine 12, the secondary bar code issued by this means that the address registered in the primary bar code database 105 is the destination. As sent. The secondary barcode does not reach the mobile phone 13 of the person who forged the primary barcode. For this reason, even if the primary barcode is forged, the merchandise is not illegally purchased.

  The secondary barcode received by the mobile phone 13 is encrypted with the encryption key sent from the vending machine 12, and the primary barcode is read because it has the decryption key to decrypt it. There is only a vending machine 12. Even when the secondary bar code is read by another vending machine 12, the server apparatus 11 cannot decrypt the secondary bar code because a correct decryption key cannot be obtained. Even if the mobile phone 13 receives a secondary barcode sent by forgery of another person's primary barcode, the user can determine which vending machine 12 has the primary barcode that triggered the issuance of the secondary barcode. There is no way of knowing if it was read in. For this reason, goods are not illegally purchased by the secondary barcode sent unintentionally by the user.

  The primary barcode database 105 registers information related to the user's payment means, and charges the price of the product purchased from the vending machine 12 based on the payment means. For this reason, the user can purchase goods from the vending machine 12 at any time as long as the mobile phone 13 capable of displaying the primary barcode is carried.

Second Embodiment In the first embodiment described above, the primary barcode and secondary barcode of each user are stored as images in the primary barcode database 105 and the secondary barcode database 106 of the server device 11, respectively. It was remembered. That is, the primary barcode and the secondary barcode are managed not only in the user's mobile phone 13 but also in the server device 11. In this embodiment, a vending machine system capable of providing the same service as that of the first embodiment will be described even if the server apparatus 11 does not manage the primary barcode and the secondary barcode.

  FIG. 10 is a block diagram showing the configuration of the server device 11 in this embodiment. The server device 11 in this embodiment includes a user database 107 instead of the primary barcode database 105 and the secondary barcode database 106. Although details of the user database 107 will be described later, the image data of the primary barcode and the secondary barcode are not stored anywhere in the server apparatus 11 including the user database 107. However, the server device 11 can determine from the pattern only whether the barcode image data sent from the vending machine 12 is a primary barcode or a secondary barcode. To do.

  Since the image data of the primary bar code and the secondary bar code is not stored in the server device 11, in this embodiment, user authentication is performed without using bar code collation. FIG. 11 is a diagram for explaining a user authentication method according to this embodiment. Since the user authentication method does not differ between the primary barcode and the secondary barcode, it will be described simply as “barcode” in the explanation of this figure. The first table 111 and the second table 112 shown in this figure are each stored in a predetermined area of the storage device 102.

  When the barcode image data (indicated by a solid line in the figure) read by the barcode reader 204 of the vending machine 12 is received, the server device 11 digitizes the image data by a predetermined method. If the bar code pattern is different, the digitized value will be different. A remainder a obtained by dividing a value X obtained by digitizing a barcode (hereinafter referred to as a barcode value) by a numerical value A and a remainder b obtained by dividing the value by a numerical value B are obtained. There is a relationship that the least common multiple of the numerical value A and the numerical value B is larger than the difference between the maximum value and the minimum value that the barcode value can take. If this relationship is satisfied, the remainder a obtained by dividing two different barcode values by the numerical value A may match, and the remainder b obtained by dividing the two barcode values by the numerical value B may match. You won't get. It is preferable that the numerical value A and the numerical value B are relatively prime.

  In the storage position in the first table 111 corresponding to the remainder a, a pointer indicating the position where the user information of the barcode is stored in the user database 107 is stored. In the storage position in the second table 112 corresponding to the remainder b, a pointer indicating the position where the user information of the barcode is stored in the user database 107 is stored. Since the barcode sent from the vending machine 12 can be traced to the same user from both the first table 111 and the second table 112, the user is authenticated as the owner of the barcode. .

  The storage position in the first table 111 corresponding to the remainder a also stores a pointer that points to the position where user information of another barcode (indicated by a broken line in the figure) is stored in the user database 107. . However, the user information of the other barcode cannot be traced from the second table 112. When the server apparatus 11 receives other barcode image data (indicated by a broken line in the figure), when the remainder a ′ obtained by dividing the barcode value X ′ by the numerical value A matches the remainder a, the first table From 111, the user information of the barcode indicated by the solid line can be traced. However, since the remainder b 'obtained by dividing the barcode value X' by the numerical value B does not coincide with the remainder b, the user information of the barcode indicated by the solid line cannot be traced from the second table 112. Therefore, it is unlikely that a user who is not related to the received barcode will be erroneously authenticated.

  Next, the user database 107 will be described in detail. FIG. 12 is a diagram showing the configuration of the user database 107. Each record in the user database 107 is newly generated for each user registration, and as shown in the figure, a user ID, user attribute information (gender and age), address, settlement means, and primary barcode barcode. Code value remainder a and remainder b, secondary barcode barcode remainder a and remainder b, secondary barcode issuance date and time, secondary barcode expiration date, and secondary barcode used flag Contains.

  The remainder a and the remainder b of the barcode values of the primary barcode and the secondary barcode are remainders when the numerical values corresponding to the primary barcode and the secondary barcode are respectively divided by the numerical values A and B, and are stored in the user database. Used to trace the first table 111 from 107. Others are the same as those of the first embodiment, but the user database is only one per record for the remainder a and the remainder b of the secondary barcode, the issue date and time, the expiration date, and the used flag. 107 is not registered. The user can receive the issue of the secondary bar code any number of times, but these items are updated each time a new secondary bar code is issued.

  Hereinafter, processing in the vending machine system according to this embodiment will be described. A user who intends to purchase a product with the vending machine 12 using this system must register in advance and receive a primary barcode. FIG. 13 is a flowchart showing this user registration processing.

  For example, the user acquires a registration form from the server device 11 to the mobile phone 13, inputs user information such as age, gender, address, and payment method from the input device 304, and transmits the user information to the server device 11 via the network 40. To do. The second communication device 104 of the server device 11 receives the registration form including the user information (step S301). The CPU 101 assigns a user ID and registers the user information entered in the received registration form in the user database 107 (step S302).

  The CPU 101 randomly generates a primary barcode image pattern (step S303). The CPU 101 digitizes the generated primary barcode image pattern by a predetermined method, and substitutes the digitized barcode value into the variable X (step S304). Here, as a method for digitizing the image pattern of the primary barcode, any method can be applied as long as the same pattern always results in the same numerical value, and a different pattern always results in a different numerical value. .

  The CPU 101 obtains a remainder a obtained by dividing the barcode value X by the numerical value A (step S305 (a)), and obtains a remainder b obtained by dividing the barcode value X by the numerical value B (step S305 (b)). The least common multiple of the numerical value A and the numerical value B is larger than the difference between the maximum value and the minimum value that the barcode value X (including those corresponding to a secondary barcode described later) can take. The CPU 101 extracts all pointers registered in the storage position corresponding to the remainder a in the first table 111 (step S306 (a)) and registers them in the storage position corresponding to the remainder b in the second table 112. All the pointers that have been set are extracted (step S306 (b)).

  The CPU 101 compares the pointer extracted from the first table 111 with the pointer extracted from the second table 112, and some of the user information registered in the user database 107 indicates the same user information. It is determined whether or not (step S307). If there is a pointer indicating the same user information in the first table 111 and the second table 112, the process returns to step S303, and the primary barcode is issued again.

  If there is no pointer indicating the same user information in the first table 111 and the second table 112, the CPU 101 registers the user database 107 in the storage location corresponding to the remainder a in the first table 111. A pointer pointing to the user information of the user is registered, and the numerical value of the item “a” of the primary barcode included in the user record of the user database 107 is updated to the numerical value obtained in step S305 (a). (Step S308 (a)). The CPU 101 also registers a pointer indicating the user information of the user registered in the user database 107 at the storage position corresponding to the remainder b in the second table 111 and uses the user database 107. The numerical value of the item “b” of the primary barcode included in the user's record is updated to the numerical value obtained in step S305 (b) (step S308 (b)).

  In step S308 (a) or (b), if a pointer pointing to the user information of another user is registered at the corresponding position in the user database 107, the user's A pointer pointing to the user information is also registered at the same position.

  When the registration of the pointers to the first table 111 and the second table 112 is completed, the CPU 101 transfers the primary barcode image pattern generated in step S303 from the second communication device 104 to the mobile phone according to the address included in the user information. 13 (step S309). When the transmission of the primary barcode image pattern is completed, the CPU 101 discards the primary barcode image pattern (step S310). And the process of this flowchart is complete | finished.

  When the primary barcode issued by the user is lost, a request for reissuing the primary barcode is sent from the mobile phone 13. The reissuance of the primary barcode in this case is also performed by the same process as steps S303 to S310, but the following process is added to steps S308 (a) and (b). The CPU 101 determines the user of the user who has been registered in the first table 111 and the second table 112 so far according to the remainder a and the remainder b of the primary barcode included in the user's record in the user database 107. After deleting the pointer indicating the information, the numerical values of the remainder a and the remainder b items of the secondary barcode are updated to the numerical values obtained in steps S305 (a) and (b), respectively.

  A user who has registered as described above and has received a primary barcode can purchase a product with the vending machine 12 as in the case of the first embodiment. Also in this embodiment, the overall flow when purchasing a product is substantially the same as in the case of the first embodiment. However, in this embodiment, since the image data of the primary barcode and the secondary barcode are not stored in the server device 11, the secondary barcode issuing procedure is different from that of the first embodiment. When the server device 11 receives image data of a primary barcode or secondary barcode from the vending machine 12, the procedure for authenticating the user based on these barcodes is also different from that of the first embodiment. It will be.

  FIG. 14 is a flowchart showing the secondary barcode issuing process executed by the CPU 101 of the server apparatus 11 in this embodiment. The processing of this flowchart is executed instead of the processing of steps S143 to S146.

  When receiving the image data of the primary barcode from the vending machine 12, the CPU 101 performs user authentication processing based on the received primary barcode (step S401). The user authentication process will be described later. The CPU 101 determines whether user authentication has been obtained in the user authentication process of step S401 (step S402). If the user authentication is not obtained, the process of this flowchart is terminated without issuing a secondary barcode.

  When the user authentication is obtained in the user authentication process in step S401, the CPU 101 refers to the record in the user database 107 for the user for whom the authentication has been obtained, and the user can check various conditions ( It is determined whether or not the same as in steps S202 to S204) (step S403). If the user does not satisfy any one of the various conditions, the process of this flowchart is terminated without issuing a secondary barcode.

  If the user satisfies all of the various conditions, the CPU 101 randomly generates a secondary barcode image pattern (step S404). The CPU 101 digitizes the generated secondary barcode image pattern by a predetermined method, and substitutes the digitized barcode value for the variable X (step S405). The method for digitizing the image pattern of the secondary barcode is the same as in step S304.

  The CPU 101 obtains a remainder a obtained by dividing the barcode value X by the numerical value A (step S406 (a)), and obtains a remainder b obtained by dividing the barcode value X by the numerical value B (step S406 (b)). As the numerical values A and B, the same values as those shown in the flowchart of FIG. 13 are used. The CPU 101 extracts all pointers registered in the storage position corresponding to the remainder a in the first table 111 (step S407 (a)) and registers them in the storage position corresponding to the remainder b in the second table 112. All the pointers that have been set are extracted (step S407 (b)).

  The CPU 101 compares the pointer extracted from the first table 111 with the pointer extracted from the second table 112, and some of the user information registered in the user database 107 indicates the same user information. Whether or not (step S408). If there are pointers pointing to the same user information in the first table 111 and the second table 112, the process returns to step S408, and the secondary barcode is issued again.

  If there is no pointer indicating the same user information in the first table 111 and the second table 112, the CPU 101 registers the user database 107 in the storage location corresponding to the remainder a in the first table 111. A pointer that points to the user information of the user is registered. The CPU 101 deletes the pointer pointing to the user information of the user that has been registered so far in the first table 111 according to the secondary bar code remainder a included in the user's record in the user database 107. After that, the numerical value of the item “a” of the secondary barcode included in the user record in the user database 107 is updated to the numerical value obtained in step S406 (a) (step S409 (a)).

  The CPU 101 also registers a pointer indicating the user information of the user registered in the user database 107 at a storage position corresponding to the remainder b in the second table 111. The CPU 101 deletes the pointer pointing to the user information of the user registered so far in the second table 112 according to the remainder b of the secondary barcode included in the user record of the user database 107. After that, the numerical value of the item “b” of the secondary barcode included in the user record in the user database 107 is updated to the numerical value obtained in step S406 (b) (step S409 (b)).

  In step S409 (a) or (b), if a pointer pointing to the user information of another user is registered at the corresponding position in the user database 107, the user's A pointer pointing to the user information is also registered at the same position.

  When the registration of the pointers to the first table 111 and the second table 112 is completed, the CPU 101 reads an address included in the user information record that can be reached from the two tables 111 and 112 (step S410). The CPU 101 re-registers the secondary barcode issuance date (current date) and the expiration date after a predetermined period included in the user information record, and resets the used flag (step S411). The CPU 101 encrypts the image data of the secondary barcode generated in step S404 using the encryption key received in step S141 (step S412).

  The CPU 101 transmits the image pattern of the secondary barcode encrypted in step S412 from the second communication device 104 to the mobile phone 13 according to the address read in step S410 (step S413). When the transmission of the secondary barcode image pattern is completed, the CPU 101 discards the secondary barcode image pattern (step S414). And the process of this flowchart is complete | finished.

  FIG. 15 is a flowchart showing a process for authenticating the user based on the image data of the primary barcode or secondary barcode received by the server apparatus 11 from the vending machine 12. The primary barcode is executed in step S401 described above. The secondary barcode is executed instead of checking whether it is registered in the secondary barcode database 106 in the process of step S150. Since the process is the same whether user authentication is performed based on the primary barcode or user authentication based on the secondary barcode, both will be described with reference to this flowchart. In the description of this figure, “bar code” refers to a primary bar code or a secondary bar code.

  The CPU 101 digitizes the barcode image pattern (decoded image pattern in the case of a secondary barcode) received from the vending machine 12 by a predetermined method, and substitutes the digitized barcode value into a variable X ( Step S501). Here, the method for digitizing the barcode image pattern is the same as the method in step S304. The CPU 101 determines whether the digitized barcode value X is within the primary barcode range that can be generated in step S303 or the secondary barcode range that can be generated in step S404 (step S502).

  If the barcode value X is within the range of the primary barcode or secondary barcode that can be generated, the CPU 101 obtains a remainder a obtained by dividing the barcode value X by the numerical value A (step S503 (a)), and the barcode value. The remainder b obtained by dividing X by the numerical value B is obtained (step S503 (b)). As the numerical values A and B, the same values as those shown in the flowchart of FIG. 13 are used. The CPU 101 extracts all pointers registered in the storage position corresponding to the remainder a in the first table 111 (step S504 (a)) and registers them in the storage position corresponding to the remainder b in the second table 112. All the pointers that have been set are extracted (step S504 (b)).

  The CPU 101 compares the pointer extracted from the first table 111 with the pointer extracted from the second table 112, and some of the user information registered in the user database 107 indicates the same user information. Whether or not (step S505). If there is a pointer pointing to the same user information in the first table 111 and the second table 112, the user is authenticated according to the user information pointed to by the pointers from both tables 111 and 112 (step S506). And the process of this flowchart is complete | finished.

  If the barcode value X is not in the range of either the primary barcode or the secondary barcode in step S502, or pointers pointing to the same user information in the first table 111 and the second table 112 in step S505. If not, the CPU 101 disables user authentication (step S508). And the process of this flowchart is complete | finished.

  If the user is authenticated according to the image pattern of the secondary barcode, the expiration date and the used flag are checked according to the user information of the authenticated user in step S150, and if the conditions are satisfied, the server device The sales permission notification message is transmitted from 11 to the vending machine 12.

  As described above, in the vending machine system according to this embodiment, the server device 11 issues the barcode values of the first table 111 and the second table 112 when issuing the primary barcode or the secondary barcode. The pointers pointing to the users corresponding to the barcode are registered in the storage positions corresponding to the remainders a and b obtained from the above. When the image pattern of the primary barcode or the secondary barcode is received from the vending machine 12, the first table 111 and the second table 112 are referred to according to the remainders a and b obtained by quantifying the image pattern. Authentication is performed. That is, it is possible to associate the primary barcode or the secondary barcode with the user at high speed by performing the calculation process and referring to the stored contents without performing collation between the barcodes.

  The least common multiple of the numerical values A and B, which are divisors for dividing the barcode value of the primary barcode or the secondary barcode, has a relationship that it is larger than the difference between the maximum value and the minimum value that the barcode value can take. . Since the remainders a and b do not match with different barcode values, the user information of each user registered in the user database 107 is stored in the first table 111 based on the barcodes of others. And the second table 112 cannot be reached. Therefore, the user can be uniquely specified from the primary barcode or the secondary barcode.

  Since the primary barcode or the secondary barcode can be associated with the user without collating the barcodes, the server device 11 transmits the issued primary barcode or secondary barcode to the mobile phone 13. When completed, the primary barcode or the secondary barcode is to be discarded. That is, there is no need to store the image pattern of the primary barcode or secondary barcode issued in the server device 11 at all. The image patterns of the primary barcode and the secondary barcode are not stored in other computer devices other than the mobile phone 13.

  Thus, the vending machine system according to this embodiment does not require a database for storing the image patterns of the primary barcode and the secondary barcode. For this reason, the storage capacity required for the server device 11 can be reduced. Since the amount of information of an image pattern such as a barcode is relatively large compared to the amount of information of character data, it is very effective for compressing the necessary storage capacity.

  Since the image patterns of the primary barcode and the secondary barcode are not stored except for the mobile phone 13 possessed by the user, even if a hacker enters the server device 11, for example, the primary barcode assigned to each user. Code and secondary bar code image patterns are never stolen. For this reason, a high level of security can be achieved for the primary barcode and the secondary barcode used as information for authentication. The user can also feel secure that the third party will not be illegally acquired unless he / she neglects to manage the primary barcode and the secondary barcode.

Modifications of Embodiments The present invention is not limited to the first and second embodiments described above, and various modifications and applications are possible. Hereinafter, modifications of the above-described embodiment applicable to the present invention will be described.

  In the second embodiment, the barcode value obtained by digitizing the primary barcode or the secondary barcode by a predetermined method is divided by the numerical value A or B as it is to obtain the remainder a or b. . In contrast, the value obtained by subtracting the minimum value that the barcode value can take from the digitized barcode value, or the value obtained by subtracting the digitized barcode value from the maximum value that the barcode value can take. It is also possible to divide by the numerical value A or B. In this case, depending on the range of values that the barcode value can take, the dividend becomes considerably small, and the division process is speeded up.

  In the second embodiment, the server device 11 receives an image pattern of a primary barcode or a secondary barcode from the vending machine 12. On the other hand, the vending machine 12 may digitize the image pattern of the primary barcode or the secondary barcode read by the barcode reader 204 and send the barcode value to the server device 11. The vending machine 12 may send the remainders a and b obtained by dividing the barcode value by the numerical values A and B to the server device 11.

  In the second embodiment, the storage positions of the first table 111 and the second table 112 corresponding to the divisors a and b obtained by dividing the numerical values corresponding to the primary barcode or the secondary barcode by the numerical values A and B, respectively. In addition, a pointer indicating user information is registered. In the first table 111 and the second table 112, other information (for example, a user ID) that can uniquely identify user information may be registered. In this case, user authentication can be performed by determining whether there is information that matches each other in the storage positions of the first table 111 and the second table 112 corresponding to the divisors a and b, respectively. it can.

  By applying the direct address method, the primary barcode or the secondary barcode may be associated with the user at higher speed. FIG. 16 is a diagram for explaining this modification. Also in the description of this figure, the primary barcode and the secondary barcode are collectively referred to as a barcode. The first address of the first table 111 ′ is M, and the first address of the second table 112 ′ is N. In each word of the first table 111 'and the second table 112', the head address of the user information corresponding to the barcode is stored. When a collision occurs due to a newly issued barcode, a specific value is stored, and a specific value table 113 is provided separately corresponding to the word.

  The CPU 101 directly addresses the M + a address obtained by adding the leading address M to the remainder a obtained by dividing the barcode value X obtained by dividing the barcode generated randomly or the barcode received from the vending machine 12 by the numerical value A, Refer to the first table 111 ′. The CPU 101 directly addresses the address N + b obtained by adding the head address N to the remainder b obtained by dividing the barcode value X by the numerical value B, and refers to the second table 112 '. If a specific value is stored at the address M + a or the address N + b, the specific value table 113 provided corresponding to the specific value is referred to.

  If the head address of the same user information is stored in the M + a address and the N + b address (in some cases, the specific value table 113 provided corresponding to these addresses), the user is authenticated. Extraction of user information from the user database 107 can also be performed by the direct addresses of the addresses stored in the addresses M + a and N + b (in some cases, the specific value table 113 provided corresponding to these addresses). .

  In the second embodiment, the first table 111 and the second table 112 according to the remainders a and b obtained by dividing the barcode value corresponding to the primary barcode or the secondary barcode by two numerical values A and B, respectively. Registered a pointer to user information. However, according to the present invention, hash values are calculated using a plurality of types of hash functions, and pointers indicating user information are registered at storage locations corresponding to hash values of a plurality of hash tables provided corresponding to the hash functions. This can be achieved. However, it is necessary that the hash values calculated by at least one type of hash function do not match for two different barcodes.

  In the first and second embodiments described above, the secondary barcode is issued according to the primary barcode assigned to each user. On the other hand, a barcode used in the same manner as the above-described secondary barcode is a request from a user by another method (for example, a request for issuing a barcode that notifies the caller number of the mobile phone 13). ) And may be sent to the user.

  In the first and second embodiments described above, each record in the primary barcode database 105 or the user database 107 includes information related to the attribute of the user in association with the image of the primary barcode. On the other hand, the information regarding the user's attribute may be included in the primary barcode itself. When the CPU 101 of the server apparatus 11 receives the primary barcode from the vending machine 12, the CPU 101 determines whether the attribute of the user included in the primary barcode indicates an attribute for selling the product. The CPU 101 of the server device 11 may issue a secondary barcode when the user's attribute indicates an attribute capable of selling a product.

  In the first and second embodiments described above, the vending machine 12 holds the encryption key and the decryption key of the secondary barcode, and uses the encryption key as the secondary barcode when the primary barcode is read. When the message is read, the decryption key is sent to the server device 11 respectively. The server device 11 includes a database in which an encryption key and a decryption key are registered in association with the vending machine 12, and the encryption key or the encryption key is transmitted from the database according to the vending machine 12 that has sent the primary barcode or the secondary barcode. The decryption key may be read and the secondary barcode may be encrypted or decrypted using the read encryption key or decryption key. One of the encryption key and the decryption key may be registered in the database in the server device 11 and the other may be sent from the vending machine 12.

  The identification information of the vending machine 12 and the encryption key and decryption key unique to each vending machine 12 may be managed using a management computer other than the server device 11 and the vending machine 12. For example, the management computer is connected to a plurality of vending machines 12 that are not all of the vending machines 12 used in the above system, and the identification information, the encryption key, and the decryption key of the vending machine 12 are stored in the server device 11. It may be sent. Information from the server device 11 to the vending machine 12 may also be sent via the management computer. In this case, even if the server computer 11 cannot identify the individual vending machines 12 as long as the management computer can be identified, the server apparatus 11 includes the barcode reader 204 that has read the secondary barcode via the management computer. A sales permission notification message can be sent.

  In the first and second embodiments described above, the server device 11 and the vending machine 12 are connected by the dedicated line 30. These dedicated lines may be wireless lines. An extranet can be applied instead of a dedicated line. You may connect between the server apparatus 11 and the vending machine 12 by dialup using a telephone line.

  In the first and second embodiments described above, the secondary barcode can be used after a certain period of time since the expiration date is registered in the secondary barcode database 106 or the user database 107. By eliminating it, it was designed to prevent forgery and unauthorized use. However, the secondary bar code forgery prevention technology applicable in the present invention is not limited to this.

  A program written in Java (registered trademark) language or the like is embedded in the secondary barcode, and the secondary barcode is destroyed by a predetermined time after being received by the mobile phone 13 by the action of this program. It may be a thing. This program can be a person having a function of periodically checking the time with the server device 11. This program may have a function of notifying the user by sounding a warning sound or changing the color of the barcode when the expiration date of the secondary barcode is approaching. This program may have a function of automatically replacing an image or displaying character information so that the secondary barcode disappears when the usage period of the secondary barcode expires.

  The method of making the secondary barcode unusable after a certain period of time has passed since the issue is not limited to the above, and the secondary barcode delivered to the mobile phone 13 may include time limit information. The barcode reader 204 can also read the time limit information when reading the secondary bar code and transmit the time limit information to the server device 11. The CPU 101 of the server device 11 can determine the validity of the secondary barcode based on the time limit information sent to the vending machine 12.

  It is also possible to determine the validity of the primary barcode or the secondary barcode by embedding a digital watermark in the primary barcode or the secondary barcode and determining the digital watermark. If a plurality of digital watermarks that do not affect the visibility of the primary barcode or the secondary barcode can be prepared, as shown in FIG. 17A, the digital watermark that can be embedded is transmitted to the mobile phone 13 of the user. A digital watermark of any pattern may be selected and embedded in the primary barcode or the secondary barcode.

  In this case, the server apparatus 11 is further provided with a watermark pattern database 108 as shown in FIG. 17B. Each record in the watermark pattern database 108 includes a user ID, a digital watermark pattern applied to the primary barcode, and a digital watermark pattern applied to the secondary barcode. The processing of each step shown in FIGS. 18A and 18B is added to the processing of the server device 11. Here, although shown as a step added to the process of 2nd Embodiment, the same step can also be added to the process of 1st Embodiment.

  In step S308 (a) and (b) or step S409 (a) and (b), when the registration of the pointers to the first table 111 and the second table 112 is completed, the CPU 101 of the server apparatus 11 displays the digital watermark pattern. Are randomly selected (step S601). The selected digital watermark pattern is registered in the watermark pattern database 108 using the user ID as a key (step S602), and is embedded in the barcode generated in step S303 or step S404 (step S603). Then, the process proceeds to step S309 or S410.

  If it is determined in step S505 that the same user information is reached from both the first table 111 and the second table 112, the CPU 101 analyzes the digital watermark pattern embedded in the barcode received from the vending machine 12. (Step S611). The CPU 101 takes out the digital watermark pattern of the primary barcode or secondary barcode registered in the watermark pattern database 108 using the user ID as a key, and determines whether or not it matches the analyzed pattern (step S612). If they match, the process proceeds to step S505 to authenticate the user, but if they do not match, the process proceeds to step S506 and the user cannot be authenticated.

  As described above, by selecting one of the digital watermarks from multiple patterns and embedding them in the barcode, use the forged barcode if the embedded watermark has not been forged. I can't. In particular, since the secondary bar code has an expiration date for use, it is virtually impossible to analyze and forge the digital watermark in addition to the image pattern in this short period. Thereby, it is possible to prevent the bar code sent to the user from being forged.

  In the first and second embodiments, the primary barcode and the secondary barcode are displayed on the display device 305 of the mobile phone 13 as barcodes having a two-dimensional two-dimensional matrix pattern. It may be displayed as a barcode having a gradation pattern or a barcode having a three-dimensional pattern. This three-dimensional barcode is obtained by displaying a two-dimensional barcode on each surface of a cube formed of polygons, for example, and the polygon is rotated by an application such as Java. The CPU 101 of the server apparatus 11 can recognize all the codes displayed on each surface of the cube by rotating the polygon. The three-dimensional barcode can include a larger amount of information by increasing the number of faces. The identification information having a large amount of information such as a three-dimensional barcode has a remarkable effect in the second embodiment that the required storage capacity can be reduced.

  For example, when the vending machine 12 and the mobile phone 13 are configured to be directly communicable by applying Bluetooth technology or the like, even if the information is invisible, the primary bar code and the secondary bar code described above can be used instead. Can be applied to. Regardless of the form of identification information, pointers indicating user information are registered in the first table 111 and the second table 112 according to the remainders a and b obtained by dividing the digitized value by the numerical values A and B, respectively. Therefore, it is possible to adopt a configuration in which identification information and user information are associated with each other without collating the identification information.

  In the first and second embodiments described above, the CPU 101 of the server device 11 generates a barcode (primary barcode or secondary barcode) in the same manner regardless of which user's mobile phone 13 is sent. It was. However, the display device 305 of the mobile phone 13 varies in size and number of dots depending on the model.

  In order to generate the most effective barcode (primary barcode or secondary barcode) according to the model of the mobile phone 13, the server device 11 can include a model database 109 shown in FIG. The model database 109 stores information relating to the user ID and the model of the mobile phone 13 (including at least the size of the display device 305 and the number of dots) in association with each other. When the CPU 101 of the server apparatus 11 issues a primary bar code or a secondary bar code, the CPU 101 can issue a bar code corresponding to the model of the mobile phone 13 as a destination, with reference to the model database 109.

  The barcode (primary barcode or secondary barcode) transmitted from the server apparatus 11 to the mobile phone 13 may be compressed. The CPU 101 of the server apparatus 11 can generate a barcode (primary barcode or secondary barcode) regardless of the model, and then compress the barcode according to the model of the mobile phone 13 that is the destination. The compressed barcode is displayed on the display device 305 of the mobile phone 13 and is read by the barcode reader 204.

  By doing so, the server device 11 can display a barcode with a fine pattern if the mobile phone 13 is a new type and the display device 305 has a large number of display dots, and the number of display dots when the mobile phone 13 is an old type. Even if there is a small amount, a barcode that can be displayed on the display device 305 can be generated. As a result, the barcode (primary barcode or secondary barcode) can be displayed by making the most of the functions of the display device 305. Even if the user frequently changes the model of the mobile phone 13, it is possible to generate a two-dimensional bar code suitable for the new model, which is particularly effective for application to the mobile phone 13 where technological advancement is fast.

  In the first and second embodiments described above, the primary barcode and the secondary barcode are held in the mobile phone 13 and displayed on the display device 305. However, wireless communication with the server device 11 is possible. Other wireless communication terminals capable of performing the above can also be applied instead of the mobile phone 13. When information that cannot be visually recognized by application of Bluetooth technology or the like is used instead of the primary barcode and the secondary barcode, a wireless communication terminal that does not have a display device can be applied. However, many people can use the system of the present invention by applying a mobile phone having a high penetration rate as a wireless communication terminal.

  In the first and second embodiments described above, the program shown in the flowcharts of FIGS. 8A, 8B, 9, 13, 13, 14, 15, 18A, and 18B is stored in the storage device 102 of the server device 11. In the above description, the data is stored in the ROM 302 of the mobile phone 13 and the storage device 402 of the storage device 202 of the vending machine 12. However, all or part of these programs may be provided separately from the hardware.

  FIG. 20A shows a first example of a program providing method. The server device 11 further includes a disk drive 51 that drives a computer-readable recording medium 55 such as a CD-ROM or a DVD-ROM and reads data. The CPU 101 can cause the disk drive 51 to read a program recorded on the recording medium 55 and install it in the storage device 102. The mobile phone 13 further includes a card slot 53 into which a ROM card 56 is inserted and data is read. The CPU 301 may sequentially extract and execute program instructions recorded on the ROM card 56 via the card slot 53.

  FIG. 20B shows a second example of a program providing method. Processing programs for the server device 11 and the mobile phone 13 are stored in a fixed disk device 58 included in the Web server 57 on the Internet 4. When a program transmission request is sent from the server device 11 or the cellular phone 13, the Web server 57 converts the program stored in the fixed disk device 58 into a data signal, superimposes it on the carrier wave 59 and requests it via the Internet 4. Return to original equipment. When the first communication device 103 of the server device 11 or the communication device 306 of the mobile phone 13 receives a program transmitted by being superimposed on a carrier wave, the CPUs 101 and 301 install the program in the storage device 102 or the ROM 302. be able to. Here, as the ROM 302 of the mobile phone 13, a flash memory capable of electrically writing and erasing data can be applied.

It is a block diagram which shows the structure of the vending machine system applied to the 1st Embodiment of this invention. It is a block diagram which shows the structure of the server apparatus of FIG. It is a figure which shows the example of a primary barcode. It is a figure which shows the example of a secondary barcode. It is a figure which shows the structure of the primary barcode database of FIG. It is a figure which shows the structure of the secondary barcode database of FIG. It is a block diagram which shows the structure of the vending machine of FIG. It is a block diagram which shows the structure of the mobile telephone of FIG. It is a flowchart which shows the process for purchasing goods in the vending machine system of FIG. It is a flowchart which shows the process for purchasing goods in the vending machine system of FIG. It is a flowchart which shows the secondary barcode issuing process of FIG. It is a block diagram which shows the structure of the server apparatus used by the 2nd Embodiment of this invention. It is a figure explaining the user authentication in the 2nd Embodiment of this invention. It is a figure which shows the structure of the user database of FIG. It is a flowchart which shows the user registration process (primary barcode issuing process) in the 2nd Embodiment of this invention. It is a flowchart which shows the secondary barcode issuing process in the 2nd Embodiment of this invention. It is a flowchart which shows the user authentication process in the 2nd Embodiment of this invention. It is a figure explaining the modification of 2nd Embodiment. It is a figure explaining the barcode which applied the digital watermark concerning the modification of embodiment. It is a figure which shows the watermark pattern database which a server apparatus has in the case of FIG. 17A. It is a flowchart which shows the process which a server apparatus further performs in the case of FIG. 17A. It is a flowchart which shows the process which a server apparatus further performs in the case of FIG. 17A. It is a figure which shows the model database which a server apparatus has in the modification of embodiment. It is a figure which shows typically the method of providing the program performed in a server apparatus. It is a figure which shows typically the method of providing the program performed in a server apparatus.

Explanation of symbols

11 Server device 12 Vending machine 13 Mobile phone 40 Network 41 Mobile phone network 204 Bar code reader 305 Display device

Claims (37)

An identification information issuing system comprising a wireless communication terminal (13) and a server device (11) capable of communicating with at least the wireless communication terminal (13) via a wireless communication line (41),
The wireless communication terminal (13)
Primary identification information holding means (302, 303) for holding primary identification information managed by a user of the wireless communication terminal (13);
By inputting the primary identification information to the server device (11), secondary identification information that can be received from the server device (11) and has no regularity with the primary identification information. Secondary identification information holding means (303) for holding,
The server device (11)
A first input device (204) for inputting primary identification information held in the primary identification information holding means (302, 303), and a second input device for inputting secondary identification information held in the secondary identification information holding means. Connected to two input devices (204),
Destination storage means (105, 107) for storing destination information of the wireless communication terminal (13) of the user who properly manages the primary identification information so as to be associated with the corresponding primary identification information;
Secondary identification information issuing means (101, S143, S404) for issuing secondary identification information with a predetermined validity period by inputting the primary identification information from the first input device;
User association means for associating the secondary identification information issued by the secondary identification information issuing means (101, S143, S404) with the user who properly manages the primary identification information that has triggered the issue. 106, 111, 112),
The secondary identification information issued by the secondary identification information issuing means (101, S143, S404) is stored in the destination storage means (105) so that it can be associated with the primary identification information that triggered the issue. Secondary identification information that is transmitted via the wireless communication line (41) in accordance with the destination information being held and is held in the wireless communication terminal (13) of the user who is properly managing the primary identification information that has triggered the issue Transmission means (104, S146);
Association determination means (101, S150, which determines whether secondary identification information input from the second input device (204) is associated with the user in the user association means (106, 111, 112)) S505)
Expiration date determination means (110, S150) for determining whether the secondary identification information input from the second input device (204) is within the predetermined expiration date;
A process permission unit (101) that permits a predetermined process when the association determination unit determines the association with the user and the expiration date determination unit (110, S150) determines that the expiration date is within the expiration date. , S151),
Was the primary identification information or the secondary identification information input from the first and second input devices (204) held in the wireless communication terminal (13) of the user who properly manages them? It is characterized in that it is input in an unspecified manner. Wireless communication capable of holding primary identification information managed by a user and secondary identification information that can be received by inputting the primary identification information and has no regularity between the primary identification information and the primary identification information An identification information issuing device (11) capable of communicating with a terminal (13) via at least a wireless communication line (41),
Connected to first and second input devices (204) for inputting primary and secondary identification information held in the wireless communication terminal (13), respectively;
Destination storage means (105, 107) for storing destination information of the wireless communication terminal (13) of the user who properly manages the primary identification information so as to be associated with the corresponding primary identification information;
Secondary identification information issuing means (101, S143, S404) for issuing secondary identification information with a predetermined validity period by inputting the primary identification information from the first input device;
User association means for associating the secondary identification information issued by the secondary identification information issuing means (101, S143, S404) with the user who properly manages the primary identification information that has triggered the issue. 106, 111, 112),
The secondary identification information issued by the secondary identification information issuing means (101, S143, S404) is stored in the destination storage means (105) so that it can be associated with the primary identification information that triggered the issue. Secondary identification information that is transmitted via the wireless communication line (41) in accordance with the destination information being held and is held in the wireless communication terminal (13) of the user who is properly managing the primary identification information that has triggered the issue Transmission means (104, S146);
Association determination means (101, S150, which determines whether secondary identification information input from the second input device (204) is associated with a user in the user association means (106, 111, 112)) S505)
Expiration date determination means (110, S150) for determining whether the secondary identification information input from the second input device (204) is within the predetermined expiration date;
A process permission unit (101) that permits a predetermined process when the association determination unit determines the association with the user and the expiration date determination unit (110, S150) determines that the expiration date is within the expiration date. , S151),
Was the primary identification information or the secondary identification information input from the first and second input devices (204) held in the wireless communication terminal (13) of the user who properly manages them? It is characterized in that it is input in an unspecified manner. The identification information issuing device (11) according to claim 2,
The user associating means assigns corresponding identification information to a storage position corresponding to a calculation result obtained by calculating a numerical value corresponding to the secondary identification information issued by the secondary identification information issuing means using a plurality of different arithmetic expressions. Configured with a plurality of tables (111, 112) for registering association information to be associated with the user
In the association determination means, the secondary identification information input from the second input device (204) corresponds to each calculation result by the plurality of arithmetic expressions in all of the plurality of tables (111, 112). Constituted by means (101, S505) for determining whether or not the association information of the same user is registered in common in the storage location
It is characterized by that. An identification information issuing device (11) according to claim 3,
The plurality of arithmetic expressions are expressions for obtaining a remainder obtained by dividing a numerical value corresponding to secondary identification information input from the second input device (204) by different divisors,
The least common multiple of the divisors different from each other is larger than a difference between a maximum value and a minimum value that can be taken by a numerical value corresponding to the secondary identification information. An identification information issuing device (11) according to claim 3,
The apparatus further comprises discarding means (101, S414) for discarding the secondary identification information issued by the secondary identification information issuing means (101, S404) when transmission by the secondary identification information transmitting means is completed. And The identification information issuing device (11) according to claim 2,
Watermark adding means (101, S143) for embedding any kind of digital watermark among a plurality of kinds of digital watermarks prepared in advance into the secondary identification information issued by the secondary identification information issuing means (101, S143, S404). S603)
Watermark association means (108) for associating the secondary identification information issued by the secondary identification information issuing means (101, S143, S404) with the type of digital watermark added by the watermark adding means (101, S603); ,
Watermark analysis means (101, S611) for analyzing the type of digital watermark embedded in the secondary identification information input from the second input device (204);
Watermark determination means (101, S612) for determining whether the type of digital watermark analyzed by the watermark analysis means (101, S611) is associated with the secondary identification information in the watermark association means;
The process permission means (101, S151) is characterized in that the predetermined process is permitted when the watermark determination means (101, S612) determines the association of the electronic watermark. The identification information issuing device (11) according to claim 2,
Attribute determining means (101, S202, S203, S403) for determining whether or not the attribute of the user who properly manages the primary identification information input from the first input device (204) is a predetermined attribute Further comprising
Selling an article that can only be sold to a person corresponding to the predetermined attribute, connected to a vending machine (12) connected to the second input device (204),
The processing permission means notifies the vending machine (12) connected to the second input device that has input the secondary identification information that the sale of the article is permitted. The identification information issuing device (11) according to claim 7,
The secondary identification information issued by the secondary identification information issuing means (101, S143) is decrypted with respect to the vending machine (12) connected to the first input device (204) that has input the primary identification information. A secondary identification information encrypting means (101, S145) for encrypting using an encryption key corresponding to the key and transmitting the encrypted data to the secondary identification information transmitting means (104, S146);
When secondary identification information is input from the second input device (204), a decryption key unique to the vending machine (12) connected to the second input device (204) is used. A secondary identification information decoding means (101, S149) for decoding the input secondary identification information is further provided. The identification information issuing device (11) according to claim 2,
The wireless communication terminal (13) includes a display device (305) for displaying the primary identification information and the secondary identification information, respectively.
Each of the first and second input devices (204) is configured by a device that reads primary identification information or secondary identification information displayed on the display device (305). An identification information issuing device (11) according to claim 9,
Each wireless communication terminal (13) further includes model information storage means (109) storing model information including at least information related to the display device (305) in association with the primary identification information.
The secondary identification information issuing means (101, S143, S404) obtains the secondary identification information according to the model information stored in the model information storage means (109) in association with the primary identification information that has triggered the issue. It is characterized by being issued. The identification information issuing device (11) according to claim 2,
The wireless communication terminal (13) is a mobile phone. Communicate at least via the wireless communication line (41) to the wireless communication terminal (13) capable of holding the primary identification information managed by the user and the secondary identification information issued according to the input of the primary identification information Identification information issuing device (11),
A memory (102) for storing data including a program, a processor (101) for executing the program stored in the memory, and a communication for transmitting / receiving information to / from the wireless communication terminal (13) according to control by the processor (101) And a first input device (204) for inputting primary and secondary identification information held in the wireless communication terminal (13), respectively.
The memory (102)
Destination storage means (105, 107) for storing destination information of the wireless communication terminal (13) of the user who properly manages the primary identification information so as to be associated with the corresponding primary identification information;
User association means (106, 111, 112) for associating the secondary identification information issued by the secondary identification information issuing means with the user who properly manages the primary identification information that triggered the issuance. Including
The program is
When the primary identification information is input from the first input device (204), there is no regularity between the input primary identification information and secondary identification information with a predetermined expiration date is issued. First processing (S143, S404) to be performed;
The secondary identification information issued by the first processing (S143, S404) is stored in the destination storage means (105, 107) so that it can be associated with the primary identification information that triggered the issue. A second process (S146) that is transmitted via the wireless communication line (41) in accordance with the destination information and is held in the wireless communication terminal (13) of the user who is properly managing the primary identification information that has triggered the issuance. )When,
Third processing (S150, S505) for determining whether secondary identification information input from the second input device (204) is associated with a user in the user association means (106, 111, 112). )When,
A fourth process (S150) for determining whether the secondary identification information input from the second input device (204) is within the predetermined validity period;
If the third process (S150, S505) determines the association with the user and the fourth process (S150) determines that the user is within the expiration date, the predetermined process is permitted. 5 (S151),
Was the primary identification information or the secondary identification information input from the first and second input devices (204) held in the wireless communication terminal (13) of the user who properly manages them? It is characterized in that it is input in an unspecified manner. An identification information issuing method,
The primary identification information held in the wireless communication terminal (13) and managed by the user is input from the first input device (204) to the computer device (11),
With the input of the primary identification information, the computer device (11) issues secondary identification information that has no regularity between the primary identification information and a predetermined expiration date,
Associating the issued secondary identification information with a user who properly manages the primary identification information that triggered the issue,
From the computer apparatus (11) according to the destination information stored in the computer apparatus (11) in advance so that the issued secondary identification information can be associated with the primary identification information that triggered the issuance. By transmitting via the wireless communication line (41), the wireless communication terminal (13) of the user who properly manages the primary identification information that has triggered the issuance is held,
The secondary identification information held in the wireless communication terminal (13) that has received the transmitted secondary identification information is input from the second input device (204) to the computer device (11),
When the input secondary identification information is associated with the user in the computer device (11) and is within the expiration date, the computer device (11) is allowed to perform a predetermined process. ,
Was the primary identification information or the secondary identification information input from the first and second input devices (204) held in the wireless communication terminal (13) of the user who properly manages them? It is characterized in that it is input in an unspecified manner. An identification information issuing device (11) for issuing identification information to be given to a user,
Identification information issuing means (101, S303, S404) for issuing identification information;
An arithmetic means (101, S305, S406) for calculating a numerical value corresponding to the identification information issued by the identification information issuing means (101, S303, S404) using a plurality of different arithmetic expressions and obtaining an arithmetic result by each arithmetic expression; ,
A plurality of tables (111, 112) which are provided corresponding to each of the plurality of arithmetic expressions and register association information for associating with the user to which the corresponding identification information is assigned at the storage position corresponding to each calculation result. )When,
In all of the plurality of tables (111, 112), the same user association information is registered in common at storage locations corresponding to the respective calculation results obtained by the calculation means (101, S305, S406). Registration determination means (101, S307, S408) for determining whether or not
When the registration determining means (101, S307, S408) determines that the same user association information is registered in common, the re-identifying means (101) causes the identification information issuing means to reissue the identification information. , S307, S408),
When the registration determination means (101, S307, S408) determines that the association information of the same user is not registered in common, each table (111, 111) corresponding to each calculation result obtained by the calculation means 112) associating means (101, S308, S409) for registering associating information for associating with the user to whom identification information is to be assigned,
And identification information output means (104, S309, S413) for outputting the identification information registered by the association means (101, S308, S409) to the user to whom the identification information is to be assigned. ,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent. An identification information issuing device (11) according to claim 14,
The plurality of arithmetic expressions are expressions for obtaining a remainder obtained by dividing numerical values corresponding to identification information issued by the identification information issuing means (101, S303, S404) by different divisors,
The least common multiple of the divisors different from each other is larger than the difference between the maximum value and the minimum value that can be taken by the numerical value corresponding to the identification information that can be issued by the identification information issuing means (101, S303, S404). And An identification information issuing device (11) according to claim 15,
The divisors used in the plurality of arithmetic expressions are relatively prime. An identification information issuing device (11) according to claim 14,
Discarding means (101) that discards the identification information issued by the identification information issuing means (101, S303, S404) when the identification information output means (104, S309, S413) completes outputting the identification information to the user. , S310, S414). An identification information issuing device (11) according to claim 14,
User registration means (107) for registering users who can be given the identification information;
Request acceptance means (103, S148) for accepting a request for issuing identification information from a user registered in the user registration means (107);
User authentication means (101, S401) for authenticating a user who has issued an issue request accepted by the request acceptance means (103, S148) with reference to the user registration means;
The identification information issuing means (101, S404) issues the identification information when the user authentication means (101, S401) authenticates the user. An identification information issuing device (11) according to claim 14,
The identification information output means (104, S309, S413) is configured by means for transmitting the identification information issued by the identification information issuing means to the wireless communication device (13) possessed by the user to whom the identification information is to be given. It is characterized by that. An identification information issuing device (11) according to claim 14,
Watermark adding means (101, S603) for embedding any kind of digital watermarks among a plurality of types of digital watermarks prepared in advance in the identification information issued by the identification information issuing means (101, S303, S404);
A watermark associating means (108) for associating the identification information issued by the identification information issuing means (101, S303, S404) with the type of digital watermark added by the watermark adding means (101, S603); It is characterized by. An identification information issuing device (11) for issuing identification information to be given to a user,
A memory (102) that stores data including a program, a processor (101) that executes the program stored in the memory, and an output device that outputs identification information given to a user according to control by the processor (101) 104)
The memory (102)
Registered associating information for associating the user with the corresponding identification information at the storage position corresponding to the calculation result obtained by calculating the numerical value corresponding to the identification information given to the user with a plurality of different arithmetic expressions, Including a plurality of tables (111, 112) provided corresponding to each of the plurality of arithmetic expressions,
The program is
A first process (S303, S404) for issuing identification information;
A second process (S305, S406) for calculating a numerical value corresponding to the identification information issued by the first process (S303, S404) using a plurality of different arithmetic expressions and obtaining an arithmetic result by each arithmetic expression;
In all of the plurality of tables (111, 112), the same user association information is registered in common at storage locations corresponding to the respective calculation results obtained by the second processing (S305, S406). A third process (S307, S408) for determining whether or not
When it is determined in the third process (S307, S408) that the association information of the same user is registered in common, the identification information is issued again by the first process (S303, S404). A fourth process (S307, S408);
When it is determined in the third process (S307, S408) that the association information of the same user is not registered in common, it corresponds to each calculation result obtained by the second process (S305, S406) 5th process (S308, S408) which registers the association information for associating with the user who should give identification information to the storage position of each table (111, 112) to perform,
A sixth process (S309, S409) for outputting the identification information for which the association information has been registered in the fifth process (S308, S408) from the output device to the user to whom the identification information is to be assigned; Including
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent. An identification information issuing method,
Issue identification information to give to users,
A numerical value corresponding to the issued identification information is calculated by a plurality of different arithmetic expressions, and a calculation result by each arithmetic expression is obtained,
Whether the user association information of the identification information that has already been issued is commonly registered in the storage location corresponding to the obtained calculation result for all the tables (111, 112) corresponding to each of the plurality of calculation expressions. Determine whether
For all the tables (111, 112), when the user association information of the already issued identification information is registered in common, the identification information is issued again.
For all the tables (111, 112), if the user association information of the already issued identification information is not registered in common, the memory corresponding to the obtained calculation result of each table (111, 112) In the location, register the issued user association information,
The identification information registered with the association information of the user to each table is output to the user,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent. An authentication device (11) for authenticating the user using the identification information given to the user,
Registered associating information for associating with a user who has given corresponding identification information, at a storage position corresponding to a calculation result obtained by calculating a numerical value corresponding to the identification information given to the user with a plurality of different arithmetic expressions, A plurality of tables (111, 112) provided corresponding to each of the plurality of arithmetic expressions;
In all of the plurality of tables (111, 112), corresponding to each calculation result obtained by calculating a numerical value corresponding to the identification information input from any of the users given the identification information by the plurality of arithmetic expressions. Registration determination means (101, S505) for determining whether or not the association information of the same user is commonly registered in the storage position;
A user authentication unit (101, S506) for authenticating the user when the registration determination unit (101, S505) determines that the same user association information is registered in common;
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent. An authentication device (11) according to claim 23, comprising:
The plurality of arithmetic expressions is an expression for obtaining a remainder obtained by dividing numerical values corresponding to identification information input from a user by different divisors,
The least common multiple of divisors different from each other is larger than a difference between a maximum value and a minimum value that can be taken by a numerical value corresponding to identification information that can be given to a user. An authentication device (11) according to claim 23, comprising:
The divisors used in the plurality of arithmetic expressions are relatively prime. An authentication device (11) according to claim 23, comprising:
The identification information given to the user is discarded when the output of the identification information to the user is completed. An authentication device (11) for authenticating the user using the identification information given to the user,
A memory (102) for storing data including a program, a processor (101) for executing a program stored in the memory, and an input device (100) for inputting identification information given to a user according to control by the processor (101) 103)
The memory (102)
Registered associating information for associating with a user who has given corresponding identification information, at a storage position corresponding to a calculation result obtained by calculating a numerical value corresponding to the identification information given to the user with a plurality of different arithmetic expressions, Including a plurality of tables (111, 112) provided corresponding to each of the plurality of arithmetic expressions,
The program is
In all of the plurality of tables (111, 112), a numerical value corresponding to the identification information input to the first input device (103) is stored in a storage position corresponding to each calculation result calculated by the plurality of arithmetic expressions. First processing (S505) for determining whether or not association information of the same user is registered in common;
A second process (S506) for authenticating the user when it is determined in the first process (S505) that the association information of the same user is registered in common;
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent. An authentication method for authenticating the user using the identification information given to the user,
Enter the identification information given to the user from one of the users,
The numerical value corresponding to the input identification information is calculated by a plurality of different arithmetic expressions, and the calculation result by each arithmetic expression is obtained.
It is determined whether or not the association information of the same user is registered in common in the storage position corresponding to the calculated calculation result for all the tables (111, 112) corresponding to each of the plurality of calculation expressions. ,
If it is determined that the association information of the same user is registered in common, the user is authenticated,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The result of the operation performed by at least one of the other will not match,
When the identification information is given to the user, a numerical value corresponding to the given identification information is stored in a corresponding storage position in each table (111, 112) corresponding to each calculation result calculated by the plurality of calculation expressions. The association information of the user is registered. Wireless communication capable of holding primary identification information managed by a user and secondary identification information that can be received by inputting the primary identification information and has no regularity between the primary identification information and the primary identification information First and second inputs that can communicate with the terminal (13) through at least the wireless communication line (41) and input primary and secondary identification information held in the wireless communication terminal (13), respectively. A program executed on a computer device (11) connected to the device (204),
Destination storage means (105, 107) for storing destination information of the wireless communication terminal (13) of the user who properly manages the primary identification information so as to be associated with the corresponding primary identification information;
Secondary identification information issuing means (101, S143) for issuing secondary identification information with a predetermined validity period by inputting the primary identification information from the first input device;
User association means (106, 111, 112) for associating the secondary identification information issued by the secondary identification information issuing means with the user who properly manages the primary identification information that triggered the issuance. ,
The secondary identification information issued by the secondary identification information issuing means (101, S143) is stored in the destination storage means (105) so that it can be associated with the primary identification information that triggered the issue. Secondary identification information transmitting means for transmitting via the wireless communication line (41) in accordance with the destination information and holding the primary identification information that has triggered the issuance in the wireless communication terminal (13) of the user who is properly managing (104, S146),
Association determination means for determining whether secondary identification information input from the second input device (204) is associated with a user in the user association means (106, 111, 112);
Expiration date determination means (110, S150) for determining whether the secondary identification information input from the second input device (204) is within the predetermined expiration date;
A process permission unit (101) that permits a predetermined process when the association determination unit determines the association with the user and the expiration date determination unit (110, S150) determines that the expiration date is within the expiration date. , S151),
Was the primary identification information or the secondary identification information input from the first and second input devices (204) held in the wireless communication terminal (13) of the user who properly manages them? It is characterized in that it is input in an unspecified manner. Wireless communication capable of holding primary identification information managed by a user and secondary identification information that can be received by inputting the primary identification information and has no regularity between the primary identification information and the primary identification information First and second inputs that can communicate with the terminal (13) through at least the wireless communication line (41) and input primary and secondary identification information held in the wireless communication terminal (13), respectively. A computer-readable recording medium (55) for recording a program executed in a computer device (11) connected to the device (204),
Destination storage means (105, 107) for storing destination information of the wireless communication terminal (13) of the user who properly manages the primary identification information so as to be associated with the corresponding primary identification information;
Secondary identification information issuing means (101, S143) for issuing secondary identification information with a predetermined validity period by inputting the primary identification information from the first input device;
User association means (106, 111, 112) for associating the secondary identification information issued by the secondary identification information issuing means with the user who properly manages the primary identification information that triggered the issuance. ,
The secondary identification information issued by the secondary identification information issuing means (101, S143) is stored in the destination storage means (105) so that it can be associated with the primary identification information that triggered the issue. Secondary identification information transmitting means for transmitting via the wireless communication line (41) in accordance with the destination information and holding the primary identification information that has triggered the issuance in the wireless communication terminal (13) of the user who is properly managing (104, S146),
Association determination means for determining whether secondary identification information input from the second input device (204) is associated with a user in the user association means (106, 111, 112);
Expiration date determination means (110, S150) for determining whether the secondary identification information input from the second input device (204) is within the predetermined expiration date;
A process permission unit (101) that permits a predetermined process when the association determination unit determines the association with the user and the expiration date determination unit (110, S150) determines that the expiration date is within the expiration date. , S151, and
Was the primary identification information or the secondary identification information input from the first and second input devices (204) held in the wireless communication terminal (13) of the user who properly manages them? It is characterized in that it is input in an unspecified manner. Wireless communication capable of holding primary identification information managed by a user and secondary identification information that can be received by inputting the primary identification information and has no regularity between the primary identification information and the primary identification information First and second inputs that can communicate with the terminal (13) through at least the wireless communication line (41) and input primary and secondary identification information held in the wireless communication terminal (13), respectively. A carrier wave (59) in which a program executed in a computer device (11) connected to the device (204) is converted into a data signal and superimposed;
Destination storage means (105, 107) for storing destination information of the wireless communication terminal (13) of the user who properly manages the primary identification information so as to be associated with the corresponding primary identification information;
Secondary identification information issuing means (101, S143) for issuing secondary identification information with a predetermined validity period by inputting the primary identification information from the first input device;
User association means (106, 111, 112) for associating the secondary identification information issued by the secondary identification information issuing means with the user who properly manages the primary identification information that triggered the issuance. ,
The secondary identification information issued by the secondary identification information issuing means (101, S143) is stored in the destination storage means (105) so that it can be associated with the primary identification information that triggered the issue. Secondary identification information transmitting means for transmitting via the wireless communication line (41) in accordance with the destination information and holding the primary identification information that has triggered the issuance in the wireless communication terminal (13) of the user who is properly managing (104, S146),
Association determination means for determining whether secondary identification information input from the second input device (204) is associated with a user in the user association means (106, 111, 112);
Expiration date determination means (110, S150) for determining whether the secondary identification information input from the second input device (204) is within the predetermined expiration date;
A process permission unit (101) that permits a predetermined process when the association determination unit determines the association with the user and the expiration date determination unit (110, S150) determines that the expiration date is within the expiration date. , S151, and
Was the primary identification information or the secondary identification information input from the first and second input devices (204) held in the wireless communication terminal (13) of the user who properly manages them? It is characterized in that it is input in an unspecified manner. A program executed in the computer device (11),
Issuing identification information to be given to the user (S303, S404);
Calculating a numerical value corresponding to the issued identification information by a plurality of different arithmetic expressions, and obtaining an arithmetic result by each arithmetic expression (S305, S406);
Whether the user association information of the identification information that has already been issued is commonly registered in the storage location corresponding to the obtained calculation result for all the tables (111, 112) corresponding to each of the plurality of calculation expressions. Steps for determining whether (S307, S408);
For all the tables (111, 112), when the association information of the already issued identification information user is registered in common, the step of reissuing the identification information (S307, S408);
For all the tables (111, 112), if the user association information of the already issued identification information is not registered in common, the memory corresponding to the obtained calculation result of each table (111, 112) A step (S308, S409) of registering the issued user association information at the position;
Outputting the identification information in which the association information of the user to each table is registered to the user (S309, S413),
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent. A computer-readable recording medium (55) that records a program executed in the computer device (11),
The program is
Issuing identification information to be given to the user (S303, S404);
Calculating a numerical value corresponding to the issued identification information by a plurality of different arithmetic expressions, and obtaining an arithmetic result by each arithmetic expression (S305, S406);
Whether the user association information of the identification information that has already been issued is commonly registered in the storage location corresponding to the obtained calculation result for all the tables (111, 112) corresponding to each of the plurality of calculation expressions. Steps for determining whether (S307, S408);
For all the tables (111, 112), when the association information of the already issued identification information user is registered in common, the step of reissuing the identification information (S307, S408);
For all the tables (111, 112), if the user association information of the already issued identification information is not registered in common, the memory corresponding to the obtained calculation result of each table (111, 112) A step (S308, S409) of registering the issued user association information at the position;
Outputting the identification information in which the association information of the user to each table is registered to the user (S309, S413),
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent. A carrier wave (59) in which a program executed in the computer device (11) is converted into a data signal and superimposed,
The program is
Issuing identification information to be given to the user (S303, S404);
Calculating a numerical value corresponding to the issued identification information by a plurality of different arithmetic expressions, and obtaining an arithmetic result by each arithmetic expression (S305, S406);
Whether the user association information of the identification information that has already been issued is commonly registered in the storage location corresponding to the obtained calculation result for all the tables (111, 112) corresponding to each of the plurality of calculation expressions. Steps for determining whether (S307, S408);
For all the tables (111, 112), when the association information of the already issued identification information user is registered in common, the step of reissuing the identification information (S307, S408);
For all the tables (111, 112), if the user association information of the already issued identification information is not registered in common, the memory corresponding to the obtained calculation result of each table (111, 112) A step (S308, S409) of registering the issued user association information at the position;
Outputting the identification information in which the association information of the user to each table is registered to the user (S309, S413),
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The operation result calculated by at least one of the other is not consistent. A program executed in the computer device (11),
All the tables (111, 112) corresponding to each of the plurality of arithmetic expressions at the storage positions corresponding to the respective arithmetic results obtained by calculating the numerical values corresponding to the identification information inputted from the user by a plurality of different arithmetic expressions. Determining whether or not the same user association information is registered in common (S505),
A step (S506) of authenticating the user when it is determined that the association information of the same user is registered in common,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The result of the operation performed by at least one of the other will not match,
When the identification information is given to the user, a numerical value corresponding to the given identification information is stored in a corresponding storage position in each table (111, 112) corresponding to each calculation result calculated by the plurality of calculation expressions. The association information of the user is registered. A computer-readable recording medium (55) that records a program executed in the computer device (11),
The program is
All the tables (111, 112) corresponding to each of the plurality of arithmetic expressions at the storage positions corresponding to the respective arithmetic results obtained by calculating the numerical values corresponding to the identification information inputted from the user by a plurality of different arithmetic expressions. Determining whether or not the same user association information is registered in common (S505),
A step (S506) of authenticating the user when it is determined that the association information of the same user is registered in common,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The result of the operation performed by at least one of the other will not match,
When the identification information is given to the user, a numerical value corresponding to the given identification information is stored in a corresponding storage position in each table (111, 112) corresponding to each calculation result calculated by the plurality of calculation expressions. The association information of the user is registered. A carrier wave (59) in which a program executed in the computer device (11) is converted into a data signal and superimposed,
The program is
All the tables (111, 112) corresponding to each of the plurality of arithmetic expressions at the storage positions corresponding to the respective arithmetic results obtained by calculating the numerical values corresponding to the identification information inputted from the user by a plurality of different arithmetic expressions. Determining whether or not the same user association information is registered in common (S505),
A step (S506) of authenticating the user when it is determined that the association information of the same user is registered in common,
When the calculation results obtained by calculating the numerical values corresponding to the two types of identification information with any one of the plurality of arithmetic expressions are the same, the numerical values corresponding to the two types of identification information are respectively expressed as the plurality of arithmetic expressions. The result of the operation performed by at least one of the other will not match,
When the identification information is given to the user, a numerical value corresponding to the given identification information is stored in a corresponding storage position in each table (111, 112) corresponding to each calculation result calculated by the plurality of calculation expressions. The association information of the user is registered.

Images