JP2005327307A - Password authentication system and its authentication method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a system which facilitates management and maintenance of a password and its method. <P>SOLUTION: The system 10 setting plurality of categories and setting a single or a plurality of pieces of information having familiarity to a principal as password elements by each category is provided. Each extracted password element sorted by each category extracted at random from the categories is displayed on a display device 17 with a plurality of scramble elements in no special order. A selected password element having familiarity with the principal is selected among the displayed password elements. When all the selected password elements coincide with a preset extracted password element, authentication is provided to the principal. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to a system for performing password verification / authentication and a method for performing password verification / authentication. More specifically, the present invention relates to a system for selecting each element constituting a password and performing the verification / authentication. It relates to that method.

  Passwords are used to ensure security in accessing computer systems and specific programs, starting electronic devices, unlocking doors, etc., so that only those who have the authority, for example, computer systems Can be accessed. A password is generally composed of a combination of a plurality of alphabets and numbers. A user who uses a computer system registers a predetermined password in the system and inputs the password every time the system is accessed. The system compares the registered password with the entered password, and if they match, allows access to the system.

In order to effectively prevent unauthorized intrusion, the password is preferably an alphanumeric character that is a complex combination of alphabets and numbers. However, since it is difficult to accurately memorize complicated alphanumeric characters over a long period of time, a password including an easy-to-remember combination of alphanumeric characters, for example, one's name and date of birth is selected. Such passwords are easily seen by unauthorized intruders and easily allow entry into the system.
JP-A-2-24775 JP-A-9-330011 JP 7-502351 A

  In order to avoid such drawbacks, it is recommended not to use passwords that have meaningful words, such as common names, person names, place names, country names, etc. Increase password security. Such a measure inevitably results in poor usability of the password, and eventually a password that is easy to remember is selected. That is, if the security for the password is increased, the usability is deteriorated. On the contrary, if the user tries to improve the usability, the safety is lowered.

  In addition, as social activities become more diverse, the use of passwords increases. For example, when accessing a bank account from an automatic teller machine (ATM), starting a computer, or performing transactions on the Internet, a password is required in many situations. It is extremely difficult to store and manage these multiple passwords. As a result, due to forgotten passwords, wrong memory, etc., there is a risk that cash cannot be withdrawn or the computer fails to start up, resulting in a situation where operations cannot be performed smoothly. Because of this complexity, the password user uses the same password for a plurality of systems, or writes down a plurality of passwords on paper. Such an operation reduces the security for the system caused by setting a password.

  Moreover, managing and properly using complex passwords imposes a very large burden on the elderly and is not realistic. As the information management society and the aging society progress further, the management and input of passwords will become a heavy burden for the elderly.

  Accordingly, it is an object of the present invention to provide an improved password generation verification system and method.

  It is another object of the present invention to provide a password generation / collation system and method that is simple to manage and input passwords.

  In order to achieve the above object, in the present invention, a plurality of different categories are first selected, and an element group composed of one or more password elements belonging to each category is stored in the element group storage means. At the time of use, a specific number of categories set in advance at random are selected from a plurality of categories. Next, the extracted password elements belonging to each category are extracted from the element group storage means (if a plurality of password elements are given to one category, one is extracted at random). Next, a predetermined number of scramble elements belonging to the same category are randomly extracted from the scramble element storage means. The extracted scrambled elements are mixed with the extracted extracted password elements, and then a mixed element group in which those elements are arranged in an unordered order is generated for each category. This mixed element group is displayed on the display means. A selected password element is selected for each category from the displayed display group, and the selected password element is verified for each category with the extracted password element stored in the password storage means by the verification means. As a result of the collation, when all of the selected password elements match each extracted password element, a match signal is output.

  The present invention for providing a method for collating passwords first selects a category to be displayed from a plurality of preset categories, and the extracted password elements belonging to the category are different from the extracted password elements belonging to the same category. After randomly selecting scrambled elements, mixing these two elements, creating a mixed element group arranged in random order for each category, displaying that element group, and displaying the element group for each category. The method comprises a step of selecting a selected password element and a step of collating the selected password element for each category same as the extracted password element.

  The password generation and verification system according to the present invention has a function of generating a target category, a function of generating a password, and a function of verifying a password. As an outline of the present invention, first, a function for generating a category will be described. A category for classifying password elements is set in advance by a user, and a larger number is preferable in terms of safety. This includes, for example, the name of the acquaintance, the place of birth, the name of the school of origin (elementary school, junior high school, high school, university, etc.) , Hobbies, etc. These are stored in the system.

  Next, a function for generating a password will be described. A password is composed of a plurality of password elements that are randomly extracted each time it is used, and each password element is previously set for each category by a password user. The set password element is stored in the password generation verification system.

  Furthermore, with regard to the function of verifying passwords, this system is an extracted password element arbitrarily extracted for each category selected by the system (a password that is inevitably determined when a category is selected, such as a birth place). If there are elements, there may be multiple password elements such as acquaintances.In the latter case, the system extracts them randomly), and a mixed element group with randomly extracted scramble elements added Generate. The mixed element group includes an extracted password element that is set in advance by the password user and extracted by the system as described above, and a plurality of scramble elements extracted by the system. The password user selects the selected password element selected by the password user from the mixed element group displayed on the display device. When one selected password element is selected from each element group and all the selected password elements are properly selected, the system checks the extracted password element and the selected password element for each category. As a result, if all selected password elements match the extracted password elements, the system determines that the person who entered the password has a legitimate authority.

  The password element is generally often expressed as a character string, but may be specific image information or sound information. For example, in the case of image information, an image stored in a predetermined format is stored in the system as a password element. The system can provide an image as a scramble element and allow the password element to be selected on the display device. When image information is used as a password element, an image familiar to the user is stored for a long time and is suitable for storing and managing passwords. Although various types of password elements can be used as described above, the configuration of the present invention will be described in more detail with reference to the drawings when the password element is a character string.

  FIG. 1 shows a password generation / verification system 10 according to the present invention, which includes an element group setting unit 11, a scramble element memory 12, a mixed element group creation unit 13, an input / output unit 14, and a comparison unit 15. It comprises a device 16 and a password setting input terminal 19 including a display device 17 and an input device 18. The password generation verification device 16 is coupled to a password setting input terminal 19 via a wired or wireless connection line 20.

  First, how element groups are generated will be described. The password according to the present invention is composed of a plurality of password elements that are randomly set for each use and extracted for each category. Each password element is arbitrarily set in advance by a password user and stored in the element group setting unit 11 of the system 10. The process of generating element groups will be described with reference to the flowchart shown in FIG.

  The system 10 includes various categories in advance, such as names of acquaintances, birthplaces, school names (elementary school, junior high school, high school, university, etc.) Categories 1, 2, 3, ... N including foreign countries, hobbies, etc. that have been visited are prepared, and users who use this system have as many desired categories as possible. select. For example, categories 1, 3, 8, 12,... K are selected. When these categories are selected, the user enters a name familiar to the category. For example, if category 1 is the name of an acquaintance and Ikuo Maekawa, Taro Yamada and Shiro Ono are acquaintances, these names are entered in password elements 11, 12, and 13. These password elements 11, 12, and 13 are stored in the element group setting 11 as an element group 23a. By performing the same operation for categories 3, 8, 12,... K, password elements for those categories are input. If category 8 is the birth place, there is only one birth place for the user, so one password element 81 is given. In this way, when password elements for all categories 1, 3, 8, 12,... K selected by the user are input, they are grouped as element groups 23a, 23b, 23c, 23d, and 23e. It is stored in the setting 11. From these stored password elements, the extracted password elements are randomly extracted by the mixed element group 13 for each category as described below.

  Next, a function for verifying a password will be described. FIG. 3 is a flowchart illustrating a procedure for generating a mixing element group in the mixing element group generation unit 13 of the system 10. As described above, the element groups 23 a, 23 b, 23 c, 23 d, and 23 e generated by the user who uses the system 10 are already stored in the element group setting 11. When a user gives a password to the system 10 and tries to obtain the authentication, the system 10 asks the user about the number of questions in the category. The number of questions in this category is a number that determines how many categories the password element should be asked to the user. Here, for example, when 4 is given, the system 10 randomly specifies, for example, the element groups 23a, 23b, 23c, and 23e from the element groups 23a, 23b, 23c, 23d, and 23e. The element groups belonging to these specified categories are different each time a user tries to obtain authentication for the system 10. When the element group is specified, the mixed element group generation unit 13 randomly extracts one from the password elements included in each element group, and extracts the extracted password elements 1, 2, 3, and 4.

  When the extracted password elements 1, 2, 3, and 4 are extracted, the scramble elements 31a, 31b, 31c, and 31d belonging to the same category as the predetermined number of extracted password elements stored in the scramble element memory 12 are classified for each category. Selected and mixed with the extracted password elements 1, 2, 3, 4 respectively. When the extracted password elements 1, 2, 3, 4 are mixed with the scramble elements 31a, 31b, 31c, 31d, they are randomly re-arranged and mixed element groups 32a, 32b, 32c, and 32d are generated. The user selects an element most familiar to him / her as a selection password element from the mixed element group that appears on the display device 17. When the selected password element for each category is input, the system 10 checks the extracted password element for each category. If all match, the system 10 generates a match signal and provides authentication to the user.

  Next, the above process will be described in more detail with reference to the block diagram 10 of the present invention shown in FIG. First, the setting of element groups will be described. The password element is provided from the input device 18 by the password user. First, the number of categories for inputting password elements is inquired from the password generation verification device 16, and the password elements for each category corresponding to the number are input. Alternatively, a list of categories prepared by the system may be displayed on the display device 17 so that the user can select. In addition, element groups may be set by a dedicated terminal device, which is particularly necessary in banks and the like where high confidentiality is required for passwords. Password elements are set separately for each category. For example, enter 7 as the number of categories, name of acquaintance, birth place, school name, department name assigned first in the first company, past Select the city where you lived, the foreign country you have visited, and your hobby. For example, when setting a password element in the category of the name of an acquaintance, Ikuo Maekawa, Taro Yamada, and Shiro Ono are set as names of acquaintances. If you have lived in Hakodate, Tsusan, Yamagata, and Lyon in the past, enter Hakodate, Tsusan, Yamagata, and Lyon as the name of the city where you lived in the past. In this way, the name that is most familiar to each category is set as a password element in the element group setting unit 11 from the input device 18 via the connection line 20 for each category.

  The password according to the present invention is composed of a plurality of password elements, and each password element is extracted from a preset element group as described above. FIG. 4 conceptually shows the configuration of the password 40 extracted in this way. The extracted password element and the category numbers 41, 42, 43, and 44 to which the password element belongs are stored in the element group setting unit 11 as a pair. Is done. The category number is used when selecting a scramble element to be described later. It should be noted that the combination of password elements constituting the password 40 is different each time a user tries to obtain authentication for the system 10.

  Next, password input and verification will be described. The mixed element group generation unit 13 of the system 10 asks the user who inputs the password about the number of questions about the category. For example, when 4 is input as the number of categories from the input device 18, the mixed element group generation unit 13 randomly selects four categories from preset element group categories. For example, the name of the acquaintance, the birth place, the name of the elementary school that attended school, and the category of the department name are selected, and the extracted password elements are extracted at random from the password elements set in each category. The mixed element group generation unit 13 extracts an extracted password element and a plurality of scramble elements belonging to the same category as the password element from the scramble element memory 12, and generates a mixed element group arranged in an unordered manner by mixing with the extracted password element To do. For example, the element group creation unit 13 extracts the extracted password element Taro Yamada from the element group setting unit 11. As shown in FIG. 4, since category number 1 is assigned to Taro Yamada, when element group creation unit 13 recognizes that Taro Yamada is the name of an acquaintance, it is stored in scrambled element memory 12. A predetermined number of names such as Shiro Saito, Kaoru Ogawa, Yoshihiko Ichikawa, and Toru Kato are randomly selected as scramble elements. The selected scrambled elements are mixed with the password elements and rearranged out of order to create a mixed element group. In this way, the mixed element group created for each category is sent to the display device 16.

  5 (1)-(4) show examples of mixed element groups for each category of acquaintance's name, birth place, attending elementary school, and department name displayed on the display device 16. FIG. The password user refers to the mixed element group displayed on the display device 16, selects a predetermined password element, and inputs a number from the input device 17. For example, in the category of acquaintance's name, the password user selects Taro Yamada as the password element selected in advance, and inputs the number 4 to the input device using Taro Yamada as the selected password element. In addition, as shown in Fig. 5 (2), the birthplace category is Yokohama, the elementary school in Fig. 5 (3) is Hodogaya Elementary School, and finally the department in Fig. 5 (4) is the supply management department. Select as the selected password element. These selected password elements are sent to the verification unit 15 via the connection line 20 and are compared with the extracted password elements stored in the element group setting unit 11. As a result of the comparison, when all the selected password elements match the extracted password elements, a match / mismatch signal 21 is output to the outside. This signal is sent to another device that uses the authentication result of the password.

  Next, referring to FIG. 6, the scramble elements stored in the scramble element memory 12 by category are shown. As described above, when a mixed element group is created, as many candidate scramble elements as possible are prepared in advance for each category in order to randomly extract a predetermined number of scramble elements. That is, a category number and a serial number are assigned to one scramble element and stored in the memory 12. A category is a word having the same meaning, such as a name and a birth place, and a serial number is a serial number used when a scramble element is randomly selected. Words belonging to category 1 are arranged in the order of scramble elements SE11... SE17... Words belonging to category 2 are arranged in the order of scramble elements SE21. For example, when extracting a scramble element of category 1, when 5 is generated by random number generation, a scramble element SE15 corresponding to the number is selected. A predetermined number of scramble elements selected in this way are sent to the element group creation unit 13. Similar processing is performed for categories 2 and 3.

  Next, a procedure for setting a password element by a password user in the password generation verification system will be described with reference to a flowchart 70 shown in FIG. When the password generation verification system 10 enters the password element generation mode, first, in block 71, the number of element group questions and the number of element group options are set. The number of questions of the element group is the number of categories used for the question at the time of use out of a plurality of categories. In the above example, there are four, and the number of choices of the element group can be seen in FIG. There are five. In this embodiment, the number of element groups and the number of element group options are queried at block 71, but the system may have their default values (preset values). Once the number of element groups and the number of choices for the element group are set, at block 72, an element group category is selected. The password user can select a desired category within the range of the number of element groups selected in block 71. In this selection, categories prepared in advance by the system on the display device 16 may be listed so that the password user can select from the listed categories. In the above example, the name of the acquaintance, the birth place, the elementary school that attended school, and the department name are selected.

  Once the desired category is set, block 73 is entered where the password element for each category is entered. For example, Taro Yamada and other names of acquaintances are input for the acquaintance category. Proceeding to block 74, it is determined whether password elements have been entered for all categories. If there is a residue, the process returns to block 73 and the same process as described above is performed. Once password elements for all categories have been entered, processing proceeds to block 75.

  In block 75, the display device 16 displays all input password elements by category, and if there is a password element to be corrected, the password user corrects the password element in block 77. If all of the password elements displayed in block 76 are satisfactory, or the correction of the password element is completed in block 77, the process proceeds to block 78, and the password user inputs the reset password elements by category, and the password. Check if the user input is correct. When this confirmation is completed, the password generation verification device 15 completes the input and setting of the password element.

  Next, the procedure for collating passwords will be described with reference to the flowchart 80 shown in FIG. First, when the collation system 15 is activated and enters the collation mode, in block 81, element groups as shown in FIG. 4 are displayed by category on the display device 16. Proceeding to block 82, the password user inputs a desired number from the items shown on the display device 16 from the keypad of the input device 17. For example, in the category of acquaintance's name, if Taro Yamada determines that it is the selected password element for this category, he presses 4 on the keypad. Alternatively, there is a method of scrolling the cursor and selecting the location. When a selected password element is entered, the selected password element is stored in memory at block 83. Proceed to block 84 to determine if all selected password elements have been entered. If not, proceed to block 81 and perform the same processing described above.

  When all the selected password elements are input in block 84, the process moves to block 85, where the extracted password element extracted in advance is compared with the input selected password element. If all selected password elements match the extracted password elements, a match signal is output at block 87, and if at least one selected password element does not match the extracted password elements, a mismatch signal is output.

  As described above, the selected password element input from the password input terminal 18 is compared with the extracted password elements set in advance, and if all the extracted password elements match, authentication is given to the password user. It becomes possible.

  In the procedure shown in FIG. 7, collation with the extracted password element extracted in advance after all the selected password elements are input is started, but each time the selected password element is input, the comparison is made with the extracted password element. Also good. In this case, when the selected password element that does not match is input, the verification mode may be terminated, and a message indicating that a password input error has occurred may be displayed to the person who inputs the selected password element. Further, although a mismatch signal is output in block 88, this processing is not particularly required, and only the match signal of block 87 may be output to the outside.

  The password generation / verification system according to the present invention can be applied to various devices or systems, thereby improving the security of those devices or systems. FIG. 8 shows a block configuration diagram when the password generation / verification system 93 according to the present invention is applied to a computer system 92 installed in the bank 91. The computer system 92 is a device for processing banking business, and is generally coupled to a terminal device 95 installed at a remote place by a wired or wireless line 94 including a dedicated or general line. The terminal device 95 is mostly an automatic teller machine (ATM), but in recent years it may be a computer terminal in the home connected to a fixed telephone or a mobile phone due to the spread of i-mode operated by the Internet or NTT in Japan. Good. When accessing the computer system 92 from the terminal device 95, the password generation verification system 93 verifies whether a preset password matches the password sent from the terminal device 95. According to the present invention, it is determined whether the password elements stored in the computer system 92 match all the selected password elements sent from the terminal device 95. If all match, the computer system 92 gives the person who operates the terminal device 95 authentication as an authorized person. With this authentication, the terminal device 95 is coupled to the computer system 92 and can instruct various transactions.

  In the above embodiment, the present invention is applied to improve the security for the computer system in the bank. However, it is necessary to authenticate whether the person who operates the terminal device has a legitimate authority. -It can also be applied to the system.

  Even when accessing a computer in a company or home from a remote place via a wired or wireless line, the present invention can be applied to improve the safety of the system. In particular, it is possible to connect to a company or home computer from an office or a hotel on a business trip, and transmit / receive necessary information at a relatively low cost.

  Furthermore, the present invention can be applied to a computer that controls the locking and unlocking of entrances and exits in order to manage restricted access areas such as houses, safes, factories, laboratories, and defense facilities.

  In addition, certain vehicles, machines, and devices (including automobiles, construction machines, agricultural machines, factory machines, etc.) may be allowed to be operated only by authorized persons. In such a case, the present invention can be applied to an operation key for a device or the like in order to confirm whether or not the user is the person.

  As described above, the present invention can be applied in a situation that basically requires identification by a password. In particular, the present invention uses a plurality of password elements, and each password element can be selected by numbers or words familiar to the person, image information, sound information, etc. You don't have to make every effort to remember your passwords.

  On the other hand, the extraction of the category, the extraction of the correct password element, and the scramble element are performed randomly by the system (however, some password elements are uniquely determined when the category is determined. For example, the birth place). Thereby, the degree of disorder is very high and therefore the predictability is very low. That is, it is extremely dynamic compared to a normal static password in which the password is fixed for a certain period of time. Therefore, if you set a certain limit on the response time and reject the verification when there is no input after that time, for example, even if all the configured categories and password elements are leaked to others, It is extremely difficult to answer correctly as quickly as possible, and the safety is high.

The block diagram of the password generation verification system according to the present invention is shown. It is a flowchart for demonstrating the procedure which produces | generates the element group which concerns on this invention. It is a flowchart for demonstrating the procedure which produces | generates the mixing element group which concerns on this invention. It is a figure for demonstrating the concept of the password which concerns on this invention. It is a figure which shows the example of a display of the element group displayed on a display apparatus. It is a figure which shows the scramble element stored according to the category in the scramble element memory. The flowchart which shows the production | generation procedure of the password element based on this invention is shown. The flowchart which shows the collation procedure of the password which concerns on this invention is shown. 1 is a block diagram showing an embodiment using a password generation / collation system according to the present invention. FIG.

Explanation of symbols

10: Password generation verification system 11: Element group setting unit 12: Scramble element memory 13: Mixed element group generation unit 14: Input / output unit 15: Verification unit 16: Password generation verification unit 17: Display unit 18: Input unit 19: Password setting input terminal 20: Connection line 21: Match / mismatch signal 23a, 23b, 23c, 23d, 23e: Element group 31a, 31b, 31c, 31d: Scramble element 32a, 32b, 32c, 32d: Mixed element group

Claims (24)

Password element storage means for storing a plurality of preselected password elements having category attributes;
Scramble element storage means for storing a plurality of scramble elements having category attributes;
A setting means for setting a desired number of matching times;
Password element extraction means for randomly extracting the extracted password elements for the number of matching times from the plurality of password elements stored in the password element storage means;
The extracted password element and a predetermined number of scramble elements having the same category attribute as each of the extracted password elements are randomly extracted from the scramble element storage means, and a mixed element group obtained by mixing them is the extracted password element. Mixing means to be generated every time,
Display means for displaying the mixed element group;
Accepting means for accepting a selected password element selected from the mixed element group displayed on the display means;
An authentication means for performing verification of the selected password element and the extracted password element for the number of times of verification, and providing authentication when all of the selected password elements match the extracted password element,
A password authentication system comprising:   The password authentication system according to claim 1, wherein if the selected password element is accepted after a predetermined time has elapsed, the authentication is rejected.   The password authentication system according to claim 1, wherein the password element and the scramble element are image information.   2. The password according to claim 1, wherein the mixed element group is transmitted to the display means via a telecommunication line, and the selected password element is transmitted to the accepting means via the telecommunication line. Authentication system.   The password authentication system according to claim 1, wherein the extracted password elements have the same category attribute.   The password authentication system according to claim 1, wherein the category attribute includes a name, or either a name or a name. Computer
Password element storage means for storing a plurality of preselected password elements having category attributes;
Scramble element storage means for storing a plurality of scramble elements having category attributes;
Setting means for setting the desired number of verifications;
Password element extraction means for randomly extracting extracted password elements corresponding to the number of verification times from the plurality of password elements stored in the password element storage means;
The extracted password element and a predetermined number of scramble elements having the same category attribute as each of the extracted password elements are randomly extracted from the scramble element storage means, and a mixed element group obtained by mixing them is the extracted password element. Mixing means to be generated every time,
Display means for displaying the mixed element group;
Receiving means for receiving a selected password element selected from the mixed element group displayed on the display means;
Authentication means for performing verification of the selected password element and the extracted password element as many times as the number of verifications, and providing authentication when all the selected password elements match the extracted password elements,
A computer-readable recording medium on which a program for functioning as a computer is recorded.   The computer-readable recording medium according to claim 7, wherein if the selected password element is accepted after a predetermined time has elapsed, authentication is rejected.   The computer-readable recording medium according to claim 7, wherein the password element and the scramble element are image information.   8. The computer according to claim 7, wherein the mixed element group is transmitted to the display means via a telecommunication line, and the selected password element is transmitted to the accepting means via the telecommunication line. A readable recording medium.   The computer-readable recording medium according to claim 7, wherein the extracted password elements have the same category attribute.   The computer-readable recording medium according to claim 7, wherein the category attribute includes a name or one of a name and a name. In a computer system comprising password element storage means for storing a plurality of preselected password elements having category attributes, and scramble element storage means for storing a plurality of scramble elements having category attributes,
Setting the desired number of matches,
Randomly extracting extracted password elements for the number of verifications from the plurality of password elements stored in the password element storage means;
The extracted password element and a predetermined number of scramble elements having the same category attribute as each of the extracted password elements are randomly extracted from the scramble element storage means, and a mixed element group obtained by mixing them is the extracted password element. A stage for each generation,
Displaying the mixed element group;
Receiving a selected password element selected from the mixed element group displayed on the display means;
Performing verification of the selected password element and the extracted password element for the number of times of verification, and providing authentication when all the selected password elements match the extracted password elements,
A password authentication method comprising:   14. The password authentication method according to claim 13, wherein if the selected password element is accepted after a predetermined time has elapsed, authentication is rejected.   The password authentication method according to claim 13, wherein the password element and the scramble element are image information.   14. The password according to claim 13, wherein the mixed element group is transmitted to the display means via a telecommunication line, and the selected password element is transmitted to the accepting means via the telecommunication line. Authentication method.   The password authentication method according to claim 13, wherein the extracted password elements have the same category attribute.   The password authentication method according to claim 13, wherein the category attribute includes a name, or either a name or a name. Storing a plurality of preselected password elements having category attributes;
Storing a plurality of scrambled elements having category attributes;
Setting the desired number of matches,
Randomly extracting one extracted password element from the plurality of password elements stored in the password element storage means;
Extracting the extracted password element and a predetermined number of scramble elements having the same category attribute as the extracted password element from the scramble element storage means, and generating a mixed element group obtained by mixing them;
Displaying the mixed element group;
Receiving a selected password element selected from the mixed element group displayed on the display means;
Collating the selected password element with the extracted password element, and if they match, the step of factoring the password with respect to the extracted password element other than the extracted password element already used for the collation, the mixing Performing the steps of displaying, displaying, and accepting for the remaining number of matches, and providing authentication when all selected password elements each match the extracted password elements;
A password authentication method comprising:   The password authentication method according to claim 19, wherein if the selected password element is accepted after a predetermined time has elapsed, the authentication is rejected.   The password authentication method according to claim 19, wherein the password element and the scramble element are image information.   20. The password according to claim 19, wherein the mixed element group is transmitted to the display means via a telecommunication line, and the selected password element is transmitted to the accepting means via the telecommunication line. Authentication method.   The password authentication method according to claim 19, wherein the extracted password elements have the same category attribute.   The password authentication method according to claim 19, wherein the category attribute includes a name or one of a name and a name.

Images