JP2006121726A - Communication system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To improve security performance without complicating an authentication procedure. <P>SOLUTION: A communication system relating to the present invention comprises: a mobile terminal 1 that a client carries with him; a cash register 2 for carrying out short-range radio communication with said mobile terminal 1; a POS server 3 which manages sales information of the cash register 2; and a center 4 for providing various services to clients. A PIN code is generated by the mobile terminal 1 that a client carries with him who performs payment at the cash register 2, the generated PIN code is presented to an operator of the cash register 2, the operator inputs the PIN code to the cash register 2 and authentication processing is then performed utilizing the PIN code in both the mobile terminal 1 and the cash register 2, so that the illegal acquisition of the PIN code can be prevented and the security performance can be improved. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to a communication system, a wireless communication terminal, and a wireless communication apparatus that establish a communication link while performing authentication processing, and, for example, transmits and receives information between the wireless communication terminal and the wireless communication apparatus by short-range wireless communication such as Bluetooth. It is intended for cases where

  Recently, a short-range wireless communication system having a transmission distance of about 10 m has attracted attention. While the effective transmission distance range of the conventional wireless LAN is 100 m or more, the short-range wireless communication method uses a small amount of power because the transmission range is narrow. Suitable for equipment.

  Bluetooth is one of such short-range wireless communication systems, and in recent years, portable information processing devices (hereinafter simply referred to as portable terminals) such as mobile phones and PDAs equipped with the communication means using Bluetooth have become widespread. I'm starting. For details of Bluetooth, refer to the specification document of Non-Patent Document 1.

  If Bluetooth becomes widespread, a service suitable for each location can be provided at any location. For example, in convenience stores, supermarkets, retail stores, etc., services for buyers such as electronic coupon service, electronic point service, electronic payment, receipt, receipt issuance can be realized. Furthermore, it is expected to be applied to gate opening / closing control using electronic tickets, vending machine settlements and discounts, information distribution, and route guidance.

  In the following, a Bluetooth connection is set between a portable terminal equipped with Bluetooth communication means (hereinafter simply referred to as a Bluetooth portable terminal) and an information communication apparatus equipped with Bluetooth (hereinafter referred to as a Bluetooth apparatus). As an example, a case where the Bluetooth device provides a service to a user who possesses the mobile terminal will be described.

  Bluetooth uses a commercially available frequency band and is susceptible to interference from other devices that use the same frequency band. Therefore, in order to make it less susceptible to interference from other devices, a frequency hopping technique that periodically changes the frequency to be used is used. In frequency hopping, it is necessary to perform synchronization between two devices that perform communication first.

  When a mobile terminal searches for other Bluetooth devices in the communication area, the Bluetooth device search function sequentially scans a predetermined frequency band to find a Bluetooth device that is waiting in a connectable state. .

  The connectable Bluetooth device that has received the search signal transmits its terminal identification information and clock information to the search signal sender. The Bluetooth device in a connectable state also periodically changes the frequency to be used, so it takes several seconds until the frequencies match. Even in an ideal condition where there is no wireless communication means using the same frequency in the vicinity, it may take 5 seconds or more to find one terminal depending on the situation. If there are nearby devices using the same frequency, longer time may be required.

The portable terminal collects the 48-bit terminal identification information from some of the discovered Bluetooth devices, and uses the 28 bits of them and the clock information of the other party, and in the connection phase, the desired (selected) Bluetooth device The frequency hopping pattern is synchronized with After synchronization of the hopping pattern, a physical link is established, and thereafter, each layer is connected to perform necessary parameter exchange and setting, thereby enabling data exchange at the application level. If necessary, the other party authentication is executed, and when the connection at the application level is established, the Bluetooth device provides a predetermined service.
Specifications available from the website http://www.bluetooth.org/

  In general, wireless communication has the advantage that there is no influence of the positional relationship between two devices or obstructions compared to communication using infrared rays, while it is possible to set up a connection only with a terminal located at a specific position. It has the property of being difficult.

  A problem caused by this will be described. In the following, when a user who stores an electronic coupon in a portable terminal pays a charge at a convenience store cash register, he / she communicates with a cash register having a Bluetooth communication function and uses the held electronic coupon An explanation will be given assuming this.

  If there is one customer (one mobile terminal) and one cash register (one Bluetooth device), the relationship between the mobile terminal of the customer making the payment and the cash register is uniquely determined. No problems arise. In other words, when a person operating the mobile terminal discovers a Bluetooth device using the Bluetooth device search function as described above, the discovered device can be regarded as a cash register that performs payment.

  However, when there are multiple cash registers, the cash register of the adjacent line is also found, so that the user who has the mobile terminal can find out which cash register to pay from among the found cash registers. It is necessary to check and select the name of the cash register.

  In addition, when another customer waiting for payment similarly has a portable terminal, it is assumed that the customer waiting for payment mistakenly connects to the cash register before the customer who pays.

  Therefore, it is necessary for the cash register operator to confirm with the customer whether or not the connected portable terminal is correct by using some information attached to the portable terminal.

  Such selection and confirmation work is not a good interface for the customer who makes payment, and also hinders the operator's checkout work.

  In addition, if the person who operates the mobile terminal specifies the wrong cash register, the coupon is used, but the price is not discounted, or other people's points are added to themselves Occurs. The canceling operation needs to be performed by both the portable terminal and the cash register, and requires a great deal of labor.

  In addition, in a system using radio, any person can access radio communication, so an attack from a malicious user, for example, a link is set before the original user, and the original user There is a possibility that connection may become impossible, or problems relating to business interference and privacy such as pretending to be a cash register to obtain personal information secretly or coupon theft.

  As described above, conventionally, it has been difficult to make a portable terminal and a Bluetooth device correspond one-to-one correctly, simply and quickly using short-range wireless communication.

  The present invention has been made in view of these points, and an object of the present invention is to provide a communication system, a wireless communication terminal, and a wireless communication apparatus that can improve security performance without complicating an authentication procedure. is there.

  According to an aspect of the present invention, in a communication system that includes a communication device and a mobile terminal that communicate with each other, and sets a communication link between the communication device and the mobile terminal, the communication device includes a display unit, A first identifier acquisition unit for acquiring a communication identifier possessed by the apparatus; a conversion unit for converting the communication identifier into a display pattern for displaying on the display unit; and the display pattern on the display unit. A display control unit for displaying, and the portable terminal communicates from the imaging unit for imaging the display pattern displayed on the display unit and the display pattern captured by the imaging unit. A communication system comprising: a restoration unit that restores an identifier for use; and a connection request unit that makes a connection request to the communication device using the communication identifier restored by the restoration unit. There is provided.

  According to the present invention, a display pattern corresponding to the communication identifier generated by the communication device is presented to the mobile terminal, the communication identifier is restored from the display pattern by the mobile terminal, and a connection request is made to the communication device. Therefore, there is no possibility that the communication identifier is illegally obtained, and the security performance can be improved.

  Further, according to the present invention, since the connection information is transmitted by acquiring the display pattern displayed on the display unit of the communication device with the mobile terminal, it can be easily and reliably connected to the desired mobile terminal, Security performance is further improved.

  Embodiments according to the present invention will be specifically described below with reference to the drawings.

(First embodiment)
FIG. 1 is a block diagram showing a schematic configuration of a first embodiment of a communication system according to the present invention, and shows an example of a POS (Point Of Sales) system. The communication system of FIG. 1 includes a mobile terminal 1 owned by a customer, a cash register 2 that performs short-range wireless communication with the mobile terminal 1, a POS server 3 that manages sales information by the cash register 2, And a center 4 that provides various services to customers.

  The cash register 2 and the POS server 3 are connected by, for example, a LAN 5, the POS server 3 and the center 4 are connected by a public line or a dedicated line 6, and the center 4 and the mobile terminal 1 possessed by each customer are connected by a public wireless line. It is connected. The mobile terminal 1 and the cash register 2 communicate with each other in accordance with, for example, the Bluetooth standard.

  The POS server 3 manages the sales product name, the sales price, the sales quantity, and the like based on the sales information in the cash register 2, and performs inventory management and classification of the best-selling products.

  The center 4 provides various services to each customer based on the information collected and managed by the POS server 3. More specifically, the customer ID is used to analyze the purchase results of the customer, contact information of the customer, etc., and send the information that the customer is interested in via e-mail or direct mail via the public wireless line. Etc., or issue electronic coupons or electronic points according to customer purchase results. The center 4 also manages the electronic points owned by each customer.

  The POS server 3 and the center 4 store electronic coupons (coupon information) and electronic points (point information). If necessary, these electronic coupons and electronic points are stored in the cash register 2 and the customer's mobile terminal 1. Send.

  The electronic coupon is information that can be used to discount the price of a specific item. For example, the electronic coupon includes information such as a store name, an item identifier, a discount amount, and an expiration date. Thus, it is assumed that it is stored in the customer's mobile terminal 1 (for example, EEPROM 14). The customer can receive a service such as discount by sending an electronic coupon from the portable terminal 1 to the cash register 2 at the time of payment.

  The electronic point is information including a score given for each payment of a certain amount of money. For example, one point is given for every one hundred yen. In addition, when the payment is made, an electronic point packet including information such as a store name, a score, and an expiration date is transmitted from the cash register 2 to the customer's mobile terminal 1 by Bluetooth communication. 1 (for example, EEPROM 14).

  When a certain number of electronic points are collected, the customer receives a service corresponding to the center 4 by charging to the center 4 via the public line 6 or via Bluetooth communication with the cash register 2 (for example, , Get the desired prize mailed, or get an electronic coupon delivered).

  The service offer history using electronic coupons and electronic points charged through the cash register 2 or the center 4 is also recorded as customer information in the POS server 3 and used for personal preference analysis, etc. It can also be used to issue electronic coupons according to each customer and to guide new products.

  FIG. 2 is a block diagram showing an internal configuration of the mobile terminal 1 in the present embodiment. 2 includes a CPU 11 that executes a predetermined program connected to the bus 10, a ROM 12 that stores programs and dictionary data, a memory 13 that stores temporary variables and data, personal registration information, electronic coupons, and the like. EEPROM 14 for storing the sound, A / D 16 for converting the audio signal into a digital signal by the microphone 15, D / A 18 for converting the digital signal to an audio signal and outputting it to the speaker 17, an eccentric motor 19 for vibrating the casing, and the base station 20 A communication unit 21 that communicates with the user, a display unit 22 that displays various information, a key input unit 23 for a customer to input characters, a selection instruction unit 24 that performs menu selection, and a Bluetooth transmission / reception unit (hereinafter referred to as a BT transmission / reception unit). 25).

  The BT transceiver unit 25 is described in, for example, the Bluetooth specification first edition (Bluetooth Version 1.0) such as an antenna for performing wireless communication in the 2.4 GHz band, a baseband unit, and L2CAP (Logical Link Controlled Adaptation Protocol). A protocol control unit. Alternatively, as with the POS terminal, the Bluetooth protocol may be loaded on the RAM of the mobile terminal 1 and executed. All 48-bit globally unique identification information is attached to a Bluetooth-compatible terminal (device). This identification information is stored in the BT transceiver unit 25 and can be read by the CPU 3 as necessary. 48 bits are composed of three fields f1, f2, and f3 as shown in FIG.

  The field f1 is a 24-bit LAP (lower address part), the field f2 is an 8-bit UAP (upper address part), and the field f3 is a 16-bit NAP (non-significant address part).

  The 24-bit combined NAP and UAP are manufacturer-specific IDs called Organizationally Unique Identifiers (OUIs), which are uniquely managed by the IEEE. Each manufacturer obtains its own number by applying to the IEEE. Except for some addresses (0x9E8B00-0x9E8B3F), 24 bits of LUP are freely assigned by each manufacturer to be unique.

  For example, the BT transceiver unit 25 establishes a wireless communication path with the cash register 2 and performs customer service using electronic coupons (coupon information) or electronic points (point information) stored in the memory 13 or the EEPROM 14. Send and receive data to receive.

  The configuration related to the voice call in the mobile terminal 1 is the same as that of a conventional mobile phone. For example, the communication unit 21 performs location control with the base station 20 and performs call control at the time of outgoing / incoming calls to store data. Transmission / reception is performed. When communication is completed, call control for disconnection is performed, and further, handover or the like is performed during communication.

  When the communication unit 21 receives a connection request from the base station 20, the communication unit 21 outputs a ringing tone from the speaker 17 or drives the eccentric motor 19 to vibrate the casing of the portable terminal 1. Raise the attention of the customer who is the owner of 1. After the customer's connection acceptance instruction, the carrier establishes a line connection between the two points and starts communication.

  During communication, the mobile terminal 1 converts audio input from the microphone from an analog signal to a digital signal by the A / D converter 16, performs digital data compression processing under the control of the CPU 11, and approaches the communication through the communication unit 21. To the base station. The signal received by the communication unit 21 is decompressed and returned to the original signal under the control of the CPU 11, converted from a digital signal to an analog signal by the D / A conversion unit 18, and sent from the speaker 17. Is output.

  The mobile terminal 1 performs a packet communication using the communication unit 21 by executing a JAVA (registered trademark) virtual machine in addition to a call, downloads a program from a specific server, and instructs the terminal owner. It has a function that can be executed by.

  FIG. 3 is a schematic diagram of the cash register 2 in the present embodiment, and FIG. 4 is a block diagram showing an internal configuration of the cash register 2 in the present embodiment. The cash register 2 of the present embodiment includes a CPU 31 connected to the bus 30, a memory 32, a ROM 33, a key input unit 34 for inputting a commodity price, an RS-232C controller 35, a drawer 36 for controlling a drawer 36, and the like. A bar code reader 38 and a BT transmission / reception unit 39 are connected to the RS-232C controller 35.

  As shown in FIG. 3, in addition to the key input unit 34, a display unit 40 and a printing unit 41 are provided on the front panel of the cash register 2.

  The cash register 2 of this embodiment is connected to the cash register 2 via the LAN5 card and the LAN5 by reading the company code, product code, etc. recorded on the barcode printed or pasted on the product with a barcode reader. The POS server 3 is inquired about the amount of the product. When money amount information is sent from the POS server 3, the money amount information is multiplied by the number input by the key input unit 34 and added to the total amount. Then, only the total price, or the price and total price of each product are output to the display unit, a receipt is issued by the printing unit, and purchase history information of the product is sent to the POS server 3. The POS server 3 stores purchase history information and later uses it for merchandise sales management, inventory management, and the like.

  In FIG. 4, the example in which the BT transmission / reception unit 39 is connected to the internal bus via the RS-232C controller 35 has been described. However, the BT transmission / reception unit 39 is not necessarily connected via the RS-232C controller 35, for example, the internal bus It may be connected directly to the bus 30 or may be connected via a USB (Universal Serial Bus). However, if the connection is made via the RS-232C controller, the cache register 2 of the present embodiment can be realized by changing the general-purpose cash register 2 slightly.

  The BT transceiver unit 39 is a protocol described in, for example, the Bluetooth specification first edition (Bluetooth Version 1.0) such as an antenna, an RF unit, a baseband unit, L2CAP, and RFCOMM for performing wireless communication in the 2.4 GHz band. It consists of a control unit. The CPU 31 commands the BT transmitter / receiver 39 to transmit / receive Bluetooth control commands and data using commands and events that depend on the implementation.

Alternatively, the BT transmitter / receiver 39 transmits, for example, an HCI (Host Controller Interface command) defined in a specification and receives the result as an event. The Bluetooth protocol is an application program for performing cash register processing and provides services to customers. In the case of the latter configuration, which may be loaded into the memory 32 by the CPU 31 and executed together with the application program to be executed,
The BT transmission / reception unit 39 does not necessarily need to be connected to the host via the RS-232C. For example, the BT transmission / reception unit 39 may be directly connected to the internal bus 30 of the host or may be connected via the USB (Universal Serial Bus). It may be. If it can be connected via an RS-232C controller, it can easily handle current cash registers.

  The Bluetooth connection method will be briefly described below. An inquiry phase for finding a partner device capable of communicating first is executed. The side that performs the inquiry and page is called the master, the inquiry scan, and the side that performs the page scan is called the slave. Only the slave terminal set to the inquiry scan state responds to the inquiry from the master.

  The master typically broadcasts IQ packets around for 10 seconds to perform inquiry. The IQ packet includes an IAC (Inquiry Access Code), which is used to discover all or specific devices. When a slave that has received an IQ packet including an IAC related to its own device receives an IQ packet again after waiting for a randomly determined time, it returns attributes such as the Bluetooth address, clock, and device class of the slave to the master.

  When the collection of slave information is completed, a device that is a communication target is selected according to an instruction from the terminal owner, and a transition is made to the page phase for establishing a link level connection. In the page phase, the slave acquires the master clock information, and changes the channel frequency hopping pattern to be calculated based on the master Bluetooth address and the clock information.

  First, the master uses the slave's LAP 24 bits, the lower 4 bits of the UAP, and the slave's clock as parameters to estimate the slave's page scan hopping frequency. Send the ID packet. The master designates the slave by including the DAC (call access code) calculated using the LAP 24 bit of the slave's Bluetooth address in the ID packet.

  When the slave in the page scan state receives the ID packet transmitted by the master, it transmits the same ID packet to the master.

  Next, the master sends an FHS packet to the slave. A 16-bit error detection code CRC is added to the FHS packet transmitted by the master. The UAP 8bit of the slave's Bluetooth address is used as the initial value when calculating the CRC.

  The slave that has received the FHS packet transmits the ID packet to the master again, so that the master confirms that the slave has received the information and changes the channel frequency hopping pattern to both the master and slave.

  Thereafter, the connection procedure at the link level and the configuration of parameters at the link level are performed to complete the connection. The procedure up to now is realized by a protocol called LMP. After link level connection creation is completed, connection of upper protocol such as L2CAP and RFCOMM and parameter configuration are executed in order, and finally connection at application level is created. Is done.

  Usually, the inquiry phase as described above is obtained to obtain information on the partner terminal, and the master and slave frequencies are synchronized in the page phase using the obtained information to establish a link.

  However, when the Bluetooth information of the communication partner is known, it is possible to directly specify the Bluetooth address of the partner device and start processing from the page phase. In this case, since there is no inquiry phase, the time required for searching for the partner terminal can be skipped.

  If the clock information of the slave can be estimated correctly, it is possible to connect in a short time, but if the estimation of the clock information of the slave is wrong or if there is no clock information and it is estimated with the default value of Bluetooth, An extra 1.28 or 2.56 seconds are required to match the slave's standby frequency.

  However, even when there is no slave clock information, the time can be shortened by adjusting parameters such as shortening the page scan interval, lengthening the scan window, or changing the page scan mode.

  By such a procedure, a page phase and a connection phase are realized, and a link level connection can be established between two devices. The minimum required parameter for these phases is the slave's Bluetooth address 32bit (LAP + UAP). If there is a slave clock, the time required for the page can be reduced.

  FIG. 6 is a flowchart showing an example of the processing operation of the portable terminal 1 in the first embodiment. This flowchart shows the processing operation related to the connection of the mobile terminal 1 when the customer who owns the mobile terminal 1 makes a payment with the cash register 2.

  The customer takes out the mobile terminal 1 and activates a predetermined application. This application initializes the BT transceiver unit 25 (step S1).

  The application internally generates a random number (step S2), stores the random number in the memory 13 as a temporary PIN code used for authentication, and presents the PIN code on the display unit 22 (step S3).

  Further, in order to search for the cash register 2 having the communicable BT transceiver unit 39, the BT transceiver unit 25 is requested to transmit a limited inquiry command (step S4). In response to this request, the BT transceiver unit 25 transmits a limited inquiry command for a predetermined time. At this time, the search time for the communicable cash register 2 can be shortened by using a dedicated inquiry access code.

  If no response is received from the cash register 2 after a predetermined time has elapsed since the transmission of the limited inquiry command, it is determined that a timeout has occurred (step S5), and connection error processing is performed (step S6).

  If there is a communicable device nearby, the BT transceiver unit 25 receives the limited inquiry response from the cash register 2 (step S7).

  When receiving the limited inquiry response, the BT transceiver unit 25 of the mobile terminal 1 notifies the application of a device discovery event. The application detects the identifier of the discovered device and determines whether it is a new device (step S8). Here, it is determined whether the discovered device is registered in the connection rejection list.

  If it is not registered in the connection rejection list, a new class of device (hereinafter referred to as COD) is detected (step S9), and it is determined whether or not the discovered device is the cash register 2 (step S10). . More specifically, if the detected COD is a value indicating the cash register 2, the BT transmission / reception unit 25 is requested to stop the limited inquiry (step S11), and a link connection request is made to the cash register 2. (Step S12). The BT transceiver unit 25 transmits a link connection request signal to the cash register 2.

  If COD is not a value indicating the cash register 2, the identifier of the discovered device is registered in the connection rejection list (step S13). The devices registered in the connection rejection list are subsequently refused connection.

  The above-described new device inspection and COD inspection may be performed by BT with parameters set, and a device discovery event may be notified only when a corresponding device is discovered.

  If it cannot be found within a predetermined time (step S14), the customer is notified of the connection request as an error (step S6).

  When a link key input event is received after the connection request step S12 described above (step S15), a link key rejection is returned (step S16). Thereafter, when a PIN code input event is received from the cash register 2 (step S17), the PIN code stored in the memory 13 is read (step S18). The BT transceiver unit 25 transmits the read PIN code to the cash register 2 as a control packet LMP_accepted.

  As described above, the initialization key is generated in both the portable terminal 1 and the cash register 2.

  Subsequently, by negotiating the link key, an agreement is made to use the single key of the BT transmitting / receiving unit 25 of the mobile terminal 1 that is the master for authentication, the procedure for link connection with the cash register 2 is executed, and the link connection A link connection result signal is received from the requested cash register 2 (step S19). By checking the status, it is determined whether or not the link connection is successful (step S20).

  If the link connection is successful, thereafter, connection of a protocol necessary for receiving the service, such as SDP connection, and data for the service are transmitted and received.

  If the link connection is not successful, it is determined whether or not the authentication with the cash register 2 is successful (step S21). If the authentication is not successful, a connection error process is performed (step S6). If successful, it is determined whether it is within a specified time (step S22). If it is not within the specified time, connection error processing is performed (step S6), and if it is within the specified time, it is registered in the connection rejection list (step S23).

  FIG. 7 is a detailed flowchart of the processes in steps S19 and S20 in FIG. There are two types of keys used for authentication: a single key and a composite key. Usually, a single key is used in terms of memory restrictions for link management and simplicity of processing procedures. The composite key increases the memory and complicates the procedure, but has better security performance than the single key.

  In the negotiation, when a single key is used, LMP_unit_key is transmitted, and when a composite key is used, both request commands of LMP_comp_key are transmitted, and a key to be used is determined by a combination of four types of requests. If both send LMP_unit_key, use the master single key. In the case of LMP_unit_key and LMP_comp_key, a composite key is created using the single key of the terminal that transmitted LMP_unit_key, and when both have transmitted LMP_comp_key.

  A single key is a key that is permanently used once created regardless of the terminal to be connected. The database records only the Bluetooth address of the partner terminal that performed the pairing, so the memory efficiency is good. To create a single key, a random key generated internally and the Bluetooth address of the terminal itself are used to calculate a single key algorithm called E21.

  When the link key negotiation (in this example, a single key) is completed, the mobile terminal 1 possessing the single key to be used calculates the exclusive OR of the single key of the self terminal and the generated initialization key ( In step S31, a single key is transmitted to the cash register 2 using LMP_unit_key (steps S32 and S33). The cash register 2 that has received the single key can obtain the single key of the portable terminal 1 safely by calculating the exclusive OR using the initialization key generated earlier.

  When the above procedure is completed, the mobile terminal 1 and the cash register 2 each perform authentication of the other party using a single key. One of the portable terminal 1 and the cash register 2 (hereinafter referred to as device A, which may be either master slave) generates a 128-bit random number (step S35) and transmits it to communication destination device B using LMP_au_rand ( Step S36).

Random number passed between devices A and B, simple link key set above, device B
A value defined as Signal Result (SRES) is calculated using an algorithm called E1 using the Bluetooth address (step S37).

  Device B transmits the calculation result to device A using LMP_sres (step S38). Subsequently, the device A compares the received SRES with the SRES calculated by itself (step S39). If it is not the same, it is determined as an authentication error (step S40). Similarly, by switching the roles of the devices A and B and performing the same processing as in steps S36 to S38, both parties authenticate the communication partner and determine whether or not connection is possible (steps S41 to S44).

  According to the procedure of FIG. 7, the mobile terminal 1 and the cash register 2 that are connected for the first time can mutually authenticate the communication partner. Since the above procedure is automatically executed by the firmware, the normal application is not involved in the processing procedure, and only needs to input data in response to the link key request or PIN code request.

  Next, an example of the processing operation of the cash register 2 in the first embodiment will be described based on the flowchart of FIG. First, the application is activated to initialize the BT transmission / reception unit 39 (step S51), and the authentication mode is set (step S52).

When the operator of the cash register 2 finds and can connect to the mobile terminal 1 for the customer who owns the mobile terminal 1 (step S53), the operator of the cash register 2 connects to the BT transmitter / receiver 39 through the application. Notice. Thereafter, the above-described processing in step S52 may be performed. Upon receiving the limited inquiry message (step S54), the BT transmission / reception unit 39 limits information such as its own BT address and COD indicating the device type. A reply is made to the portable terminal 1 that has performed the inquiry (step S55).

  Subsequently, a connection request is received from the mobile terminal 1. If the identifier of the mobile terminal 1 that has made the connection request is not registered in the connection rejection list, a connection permission is returned. If it is registered in the list, a connection refusal is returned, and the connection request from the unauthorized terminal is displayed on the display device of the cash register 2 (step S59).

After returning the connection permission, the link key input event is received, and a negative response is made in response thereto. Next, a PIN code input request is received (step S56), a dialog for inputting a temporary PIN code is presented to the operator, and the user is prompted to input a temporary PIN code (step S60).

  The operator inputs the temporary PIN code displayed on the display unit of the mobile terminal 1 of the customer who performs payment from the key input unit 34. Or, before receiving a link connection request, a dialog prompting you to enter a temporary PIN code is displayed in advance, and the temporary PIN code data that has been input is temporarily stored in the memory. The same effect can be obtained even if the data is used. Alternatively, the same effect can be obtained even if the customer inputs the PIN code by handing the key input unit to the customer. Alternatively, a bar code is displayed on the display unit 22 of the mobile terminal 1 and read by a scanner, or an image is taken by a CCD camera, character recognition is performed, and a temporary PIN code is obtained. Alternatively, obtaining a temporary PIN code through IrDA has the same effect.

  Even if a random number is not used for the temporary PIN code, the user stores it in advance as a password in the memory 13 of the portable terminal 1 and stores it in the memory 13 when an event indicating the input of the PIN code is received. You may use the numbers you have set. In this case, since a fixed PIN code is used, the strength of security may be inferior compared to the case of using a random number. However, since there is no need to present a temporary PIN code on the display unit, the mobile terminal 1 Can be simplified. Alternatively, even if a part or all of the data acquired from the clock in the own device is used, the same effect as that obtained when random numbers are used can be obtained.

  Subsequently, it is determined whether or not a PIN code has been acquired (step S61). If the PIN code cannot be acquired, a PIN code rejection response is sent (step S62), and the terminal cannot be found and is set in a connection disabled state. (Step S63).

  On the other hand, when acquiring the PIN code, the acquired PIN code is sent to the BT transceiver 39, and the BT transceiver 39 transmits LMP_unit_key including the temporary PIN code to the mobile terminal 1 (step S64).

  Thereafter, the link connection result from the mobile terminal 1 is received (step S65). Subsequently, it is determined whether or not the link connection process is successful (step S66). If the link connection process is successful, the terminal is not found and cannot be connected (step S67), and the upper protocol connection and application connection are set. Processing is performed (step S68).

  If the link connection process is not successful in step S66, it is determined whether or not the authentication with the portable terminal 1 is successful (step S69). If the authentication is not successful, it is registered in the connection rejection list ( In step S70), if the authentication is successful, a connection error process is performed (step S72) after setting the terminal undiscoverable and inaccessible (step S71).

  When the mobile terminal 1 makes a connection request to the BT transmitting / receiving unit 25 of the cash register 2 different from the cash register 2 to which the payment is made, the operator of the wrong cash register 2 gives an instruction to cancel or wrong temporary The terminal authentication fails because the PIN code is entered. In this case, the BT transceiver unit 25 of the mobile terminal 1 notifies the application of a link connection request failure message. The application notifies the user that it has failed. The user may instruct the connection request again, or the application may automatically issue the connection request.

  When the connection request is automatically made, it is next determined whether or not the number of times the terminal is found is within the specified range. If the number is within the specified range, the device corresponding to the authentication failure (mobile terminal 1 or cash register 2) is handled. The BT address is added to the connection rejection list, and a limited inquiry transmission request is sent to the BT transceiver unit 25. Thereafter, by checking the list at the time of terminal discovery, it is possible to avoid connecting to a terminal that has failed authentication once.

  Next, a description will be given assuming that there is a device impersonating the cash register 2 near the cash register 2. Since the impersonated device uses the same remote name and COD as the cash register 2, the BT transceiver unit 25 of the mobile terminal 1 treats the terminal impersonated by the COD inspection as the cash register 2.

  Since the temporary PIN code generated by the user's mobile terminal 1 is presented only to the cash register 2 operator, the malicious impersonation device cannot obtain the displayed temporary PIN code information, so the correct authentication procedure is It is not executed and the connection request fails. The application of the mobile terminal 1 checks the status of the link connection request result, and if the reason indicates that the authentication of the partner terminal has failed, the BT address of the partner device that made the link connection request Do not record in the list.

  Thereafter, the limited inquiry is executed again in the same manner as described above, and when the BT of the portable terminal 1 receives a reply of the limited inquiry, the terminal is notified of the terminal discovery event. The application checks the Bluetooth address of the discovered terminal, and ignores the discovered terminal if it is a terminal recorded in a non-applicable list.

  According to the above method, since a connection request is not made to a terminal that has once failed in authentication, a device pretending to be a cash register 2 can be automatically excluded, and a connection with the originally desired terminal can be easily realized. Become.

  Next, the processing of the cash register 2 when a connection request is received from other than the portable terminal 1 possessed by the paying user will be described. In this case, since the temporary PIN code input to the cash register 2 is different from the temporary PIN code input at the mobile terminal 1 that made the connection request, authentication of the terminal fails, and the result of the connection request fails. . The application of the cash register 2 checks the status of the link connection request result, and if the reason is that the authentication of the partner terminal has failed, the BT address of the device that has made the link connection request is already connected. Record in the list.

  When a connection request is received from the portable terminal 1 again, since the requester's Bluetooth address is included in the connection request, it is checked whether this address is included in the connected list. If it is included, the connection request is rejected as a rejection, and the display unit 40 of the cash register 2 displays that the connection request from the unauthorized terminal has been received.

  In the present invention, the cash register 2 is set to a mode that requires authentication, but there is no problem even if the mobile terminal 1 is set to perform authentication. The same effect can be obtained even in a mode that requires both authentication.

  As described above, in the first embodiment, the PIN code is generated by the mobile terminal 1 possessed by the customer who pays with the cash register 2, the generated PIN code is presented to the operator of the cash register 2, and the operator After entering the PIN code into the cash register 2, this PIN code is used to perform authentication on both the mobile terminal 1 and the cash register 2, so there is no risk of unauthorized acquisition of the PIN code, improving security performance it can.

(Second Embodiment)
The first embodiment is characterized in that the PIN code is generated by the mobile terminal 1, whereas the second embodiment is characterized in that the PIN code is generated by the cash register 2.

  FIG. 9 is a flowchart showing an example of the processing operation of the mobile terminal 1 in the second embodiment, and FIG. 10 is a flowchart showing an example of the processing operation of the cash register 2 in the second embodiment. Since the flowcharts of FIGS. 9 and 10 have many processes common to the flowcharts of FIGS. 6 and 7, the differences will be mainly described below.

  The user who pays at the cash register 2 of the cash register takes out the portable terminal 1 and starts an application for receiving the service, and the application initializes the BT transceiver unit (step S81).

  Subsequently, in order to search for the cash register 2 having the BT transmission / reception unit 39 that can be connected to the BT transmission / reception unit 25, the BT transmission / reception unit 25 is requested to issue a limited inquiry command. A recommand is transmitted (step S82).

  The operator of the cash register 2 notifies the BT transmitter / receiver 39 through the application when the BT transmitter / receiver 39 of the cash register 2 becomes available for the terminal for the customer who owns the portable terminal 1 (step S115). ). In addition, the BT transceiver unit 39 is set to a mode that allows pairing with a mode that requires link level authentication (step S112). (This may be done in the application initialization routine).

  At this time, the application of the cash register 2 internally generates a random number (step S113), stores it in the memory as a temporary PIN code used for authentication, and presents the number to the display device of the cash register 2 (step S113). S114).

  When receiving the limited inquiry message, the BT transmission / reception unit 39 of the cash register 2 returns information such as its own BT address and COD indicating the device type to the terminal that performed the limited inquiry.

  When receiving the limited inquiry reply, the BT of the mobile terminal 1 notifies the application of a device discovery event. The application checks the identifier of the discovered device (step S86), and if it is a newly discovered device, it checks the COD (step S87). If the value is the COD value indicating the cash register 2, the application is limited. The BT transmission / reception unit 25 is requested to cancel the inquiry (step S91), and a link connection with the discovered device is requested to the BT transmission / reception unit 25 (step S92). The BT transceiver unit 25 transmits a connection request to the discovered device.

  If the COD is different, the identifier of the discovered device is registered in the connection rejection list (step S89). There may be a method of notifying a device discovery event only when a new device or COD inspection is performed by the BT transmitter / receiver 25 by setting parameters and the corresponding device is discovered. If it cannot be found within a predetermined time, a connection request error is notified to the user.

  The BT transmission / reception unit 39 of the cash register 2 notifies the link key input event to the application because the link connection request requires link level security (step S116). Since the mobile terminal 1 is connected for the first time, negative is input to the BT transceiver 39 in response to the link key input request (step S117). The BT transmitter / receiver 39 notifies the application of an event indicating the input of the PIN code. When the application receives the message (step S118), the application inputs the temporary PIN code recorded in the memory 32 to the BT transceiver 39, and the BT transceiver 39 transmits LMP_unit_key to the mobile terminal 1 (step S125). ).

  On the other hand, when the portable terminal 1 receives the input of the link key (step S93), it returns a rejection of the input of the link key (step S94). Thereafter, when a PIN code input request is received (step S95), the BT transceiver unit 25 of the portable terminal 1 notifies the application of an event indicating the input of the PIN code, and the application displays a dialog for inputting the temporary PIN code. (Step S96) and prompts the user to enter a temporary PIN code. The holder of the portable terminal 1 inputs the temporary PIN code shown on the display unit of the cash register 2 (step S97). Alternatively, before sending a link connection request, a dialog prompting you to enter a temporary PIN code is displayed in advance, and the temporary PIN code data you have entered is temporarily recorded in memory, and if a message is received, it will be recorded The same effect can be obtained even if the data is used. The BT transceiver unit 25 of the mobile terminal 1 transmits LMP_accepted to the BT transceiver unit 39 of the cash register 2. Thus, initialization keys are generated for both.

  As described above, in the second embodiment, when the customer pays with the cash register 2, the PIN code generated by the cash register 2 is input to the portable terminal 1, and the PIN code is used to Since both the cash registers 2 perform the authentication process, the security performance can be improved without complicating the authentication procedure.

(Third embodiment)
In the first and second embodiments described above, the Bluetooth link authentication function is used. However, the third embodiment is characterized in that the link authentication function is not used.

  FIG. 11 is a flowchart showing an example of processing operation of the mobile terminal 1 in the third embodiment. A user who pays at the cash register 2 of the cash register takes out the portable terminal 1 and activates an application for receiving the service. The application initializes the BT transceiver unit 25 (step S141).

  The application presents a part or all of the identifier of the mobile terminal 1 on the display unit 22 (step S142). At the same time, in order to search for the cash register 2 having the connectable BT transceiver unit 39, the BT transceiver unit 25 is requested to issue a limited inquiry command, and the BT transceiver unit 25 transmits the limited inquiry command for a certain period. (Step S143). At this time, the search time for the cash register 2 of the communication partner can be further shortened by using a dedicated inquiry access code.

  If the cash register 2 is not found even after searching for a predetermined time (step S144), connection error processing is performed (step S145).

  When a limited inquiry response is received from the cash register 2 (step S146), a terminal discovery event is notified to the application.

  The application checks the identifier of the discovered terminal (step S147), and if it is a newly discovered terminal, obtains the COD (step S148). If the value is the COD value indicating the cash register 2, the application is limited. The BT transmission / reception unit 25 is requested to cancel the inquiry transmission (steps S149 and S150), and the link connection to the cash register 2 is requested to the BT transmission / reception unit 25 (step S151). The BT transceiver unit 25 transmits a connection request to the cash register 2.

  If the CODs are different, the identifier of the discovered device is added to the connection rejection list (step S152). There may be a method of notifying a device discovery event only when a new device or COD inspection is performed by the BT transmitter / receiver 25 with parameters set and a corresponding device is discovered. If it cannot be found within a predetermined time (step S153), the connection request is notified to the user as an error (step S145).

  After the above-described step S109, the link connection request result from the cash register 2 is received (step S154). If the connection is successful, S155), the connection of the upper protocol and the connection process by the application are performed.

  On the other hand, if the connection fails, it is determined whether or not it is within the specified time. If the specified time is exceeded, the connection error processing of step S145 is performed, and if it is within the specified time, it is added to the connection rejection list (step S158). .

  FIG. 12 is a flowchart showing an example of the processing operation of the cash register 2 in the third embodiment. The operator of the cash register 2 instructs the BT transmitter / receiver 39 to set the terminal BT transmitter / receiver 39 to be discoverable and connectable through the application (steps S161 to S163).

  A dialog for inputting an identifier is presented to the operator to prompt the input of the identifier (step S164). The operator inputs the identifier shown on the display unit 22 of the mobile terminal 1 of the customer who makes payment from the key input unit 23. Alternatively, before receiving the link connection request, a dialog prompting the input of the identifier is displayed in advance, and the input identifier is recorded in the memory 13 once. When the message is received, the recorded data is used. However, the same effect can be obtained. Alternatively, the same effect can be obtained even if the key input unit 23 is used for the customer and the customer inputs the identifier. Alternatively, a bar code is displayed on the display unit 22 of the portable terminal 1 and read by a scanner, or an image is taken by a CCD camera, and character recognition is performed as an identifier. Alternatively, obtaining the identifier through IrDA has the same effect.

  Subsequently, when the BT transmission / reception unit 39 of the cash register 2 receives the limited inquiry message, it returns information such as its own BT address and Class Of Device (hereinafter referred to as COD) indicating the type of device to the terminal that performed the limited inquiry. To do.

  Subsequently, when a connection request is received (step S165), it is determined whether or not the portable terminal 1 that has made the connection request is registered in the connection rejection list (step S166). A connection rejection response is made (step S167), a message indicating that the connection request from the unauthorized terminal has been received is displayed (step S168), and the process returns to step S165.

  In step S166 described above, if it is determined that the mobile terminal 1 that has made the connection request is not registered in the connection rejection list, it is determined whether or not the identifier of the mobile terminal 1 has been acquired (step S169). If it has not been acquired, a connection rejection response is sent to the portable terminal 1 (step S170), and the terminal cannot be found and the connection is disabled (step S171).

  In step S169 described above, if the identifier is acquired from the portable terminal 1, it is determined whether or not the identifier input in step S164 matches the acquired identifier (step S172). If they do not match, a connection rejection response is made (step S173), and this portable terminal 1 is added to the connection rejection list (step S174).

  If it is determined that the identifiers match in step S172 described above, a link connection permission response is made (step S175), and then the link connection result from the portable terminal 1 is received (step S176).

  It is determined whether or not the link connection is successful based on the link connection result (step S177). If the link connection is successful, the terminal is not found and cannot be connected (step S178), and then the connection process by the application is performed. (Step S179).

  If it is determined in step S177 described above that the link connection has not been successful, a connection error process is performed (step S181) after setting the terminal undiscoverable and incapable of connection (step S180).

  As described above, in the third embodiment, the operator of the cash register 2 inputs the identifier of the mobile terminal 1, and if the input identifier matches the identifier transmitted from the mobile terminal 1, the connection process by the application is performed. Therefore, communication can be performed between the mobile terminal 1 and the cash register 2 in a shorter time than using the link authentication function as in the first and second embodiments.

(Fourth embodiment)
In the first to third embodiments, when trying to connect by mistake in the other party, it takes extra connection time to perform terminal search. Further, there is a possibility that the operator of the cash register 2 inputs the PIN code by mistake.

  In the fourth embodiment, identification information of the portable terminal 1 is displayed on the display unit 22 of the portable terminal 1 with a barcode or the like, and the identification information is read by the cash register 2 to perform an authentication process. In the present embodiment, it is assumed that the cash register 2 is connected to the mobile terminal 1, that is, the cash register 2 is a master and the mobile terminal 1 is a slave.

  FIG. 13 is a schematic diagram of the cash register 2 in the fourth embodiment, and FIG. 14 is a block diagram showing an internal configuration of the cash register 2 of FIG. In addition to the configuration of the cash register 2 shown in FIGS. 3 and 4, the cash register 2 of the present embodiment includes a barcode reader 38 a for reading a barcode displayed on the display unit 22 of the mobile terminal 1. Yes.

  As shown in FIG. 3, only one barcode reader 38 may be provided, and both product registration and acquisition of identification information of the mobile terminal 1 may be performed by this barcode reader 38. In this case, the key input unit 34 of the cash register 2 may be switched between product registration and acquisition of identification information of the mobile terminal 1. Alternatively, a dedicated button for performing such switching may be provided.

  In the case where a dedicated button is provided, the operator of the cash register 2 presses the button and sets the barcode displayed on the display unit 22 of the mobile terminal 1 in a mode in which the identification information of the mobile terminal 1 is acquired. Is read by the barcode reader 38a, and the identification information of the portable terminal 1 is acquired. When the barcode is successfully read, the operator switches to the product registration mode automatically or by pressing the button. Thereafter, the barcode reader 38 is used for the purpose of registering merchandise.

  Or if the information which shows whether it is the identification information of the portable terminal 1 is embedded beforehand in barcode itself, the intended purpose of barcode reader 38a can be automatically switched, without providing a button. That is, by analyzing the contents of the barcode with the cash register 2, it is possible to automatically determine whether the barcode indicates the identification information of the mobile terminal 1 or the barcode indicating the identification information of the product.

  Further, as shown in FIG. 13, when a dedicated barcode reader 38a for obtaining identification information of the portable terminal 1 is provided, the distance between the portable terminal 1 and the barcode reader 38a is reduced by combining with an infrared sensor. The bar code reader 38a can automatically start the reading operation.

  Since the reading time of a normal bar code reader is several hundred milliseconds, if automatic reading is performed as described above, the terminal holder will place the mobile terminal 1 in the vicinity of the bar code reader 38a in several hundred milliseconds after the mobile terminal 1 is placed. The identification information can be transmitted to the service providing device, and the time required for the terminal search phase of Bluetooth can be shortened by several tens of seconds.

  In this embodiment, the operator of the cash register 2 explicitly performs the operation of bringing the barcode reader 38a close to the mobile terminal 1, and the identification information of the mobile terminal 1 to be specified as the communication partner is stored in the cash register 2. Similarly to the above, the search time for the mobile terminal 1 can be shortened.

  There are two types of barcodes: a one-dimensional barcode and a two-dimensional barcode. Two-dimensional barcodes can transmit more information, but are not as popular as one-dimensional barcodes because of the high price of barcode readers. Bar code readers that read one-dimensional bar codes are widely used in general retail stores.

  From such a background, in this embodiment, an example in which a one-dimensional barcode is mainly used will be described. However, the present embodiment can also be applied to a two-dimensional barcode. One-dimensional bar codes include JAN13, JAN8, CODE39, CODE128, standard ITF, and NW-7, and are used according to their characteristics in different fields.

  Currently, the bar code widely used in the Japanese distribution industry is called the JAN13 code, which uses 13 digits. Of the 13 digits, 2 digits are the country code, 5 digits are the company code, 5 digits are the product code, and 1 digit is the check code, but a number can also be assigned to each store.

  The Bluetooth connection procedure requires 32 bits (4294967296) of the other party address, in other words, 10-digit data. Therefore, when using JAN13, as shown in FIG. 15, 10 digits out of 12 digits can be used for identification information, and the remaining 2 digits can be used to express other information.

  FIG. 16 is a flowchart showing an example of the processing operation of the mobile terminal 1 in the fourth embodiment, and FIG. 17 is a flowchart showing an example of the processing operation of the cash register 2 in the fourth embodiment.

  First, in response to an instruction from the owner of the mobile terminal 1, a dedicated application for receiving service provision is activated (step S201). Next, a 48-bit identifier that is the Bluetooth address of the terminal itself is acquired by issuing HCI_READ_BD_ADDR through the HCI (step S202). Alternatively, the Bluetooth address may be acquired when the application is first activated, and the address may be recorded in the non-volatile memory and read from the non-volatile memory from the next time. The obtained identifier may be obtained by some means and manually registered in the application.

  Next, a random number used for the authentication process is generated, and the generated random number is stored in the memory 13 (step S203).

  Next, only the lower 32 bits of the address read in step S202 are acquired and changed to decimal numbers. At this time, if the value of the identifier is small and converted into digits and less than 10 digits, 0 is added to the head so that it becomes 10 digits.

  If authentication is not used, an arbitrary two-digit number is added to the upper two digits or the lower two digits to generate a 12-digit number (step S204).

  When using authentication, the random number generated in step S203 is added to the 10 digits that are the Bluetooth identifier as the upper two digits or the lower two digits. Alternatively, a fixed two-digit number shared secretly by both parties may be used.

  At this time, in order to improve the security performance, a reversible operation is performed on the generated 12 digits, for example, an exclusive OR with the secret 12-digit data is performed, or bit exchange is performed according to a determined rule. By doing so, a method of encrypting the connection information is also conceivable.

  Next, an image for JAN13 code is generated using the 12-digit number generated in step S204 (step S205). The specification of the image data of JAN13 is determined, and a checksum number (lower one digit) is calculated according to the specification, and a barcode image of horizontal 95 dots is created based on the obtained 13-digit number. If the screen of the portable terminal 1 is large, a barcode image of N times 95 may be created.

  Next, the created barcode image is presented on the display screen (step S206), and the Bluetooth device is changed to the page scan enable mode (step S207). Also, the scan window and scan interval parameters are changed to, for example, 22.5 ms and 160 ms, respectively. Thereby, the connection time at the link level can be shortened.

  When the terminal holder confirms the image display on the portable terminal 1, the display unit of the portable terminal 1 is brought close to the barcode reader 38a of the cash register 2, and the barcode image is read by the barcode reader 38a.

  After that, the mobile terminal 1 performs connection and authentication processing (steps S208 to S217), similarly to FIG. 6, and invalidates the page scan when the link connection is completed (step S218).

  On the other hand, the cash register 2 monitors the RS-232C port, confirms whether or not the barcode reader 38a has taken in the image, and if the barcode reader 38a succeeds in reading the image data (step S222), 13 The JAN13 code of the digit is acquired (step S223).

  Authentication data corresponding to 32 bits of the partner Bluetooth device is acquired from the acquired 13-digit number (step S224), and converted to hexadecimal notation. Next, the upper 2 bytes of the converted data are complemented with an arbitrary number to create a Bluetooth address for only the portable terminal 1 (step S225). When 2-digit authentication data is included in the 12-digit number sent from the mobile terminal 1, the calculation for decryption is performed, and the 10-digit number as identification information and the 2-digit number for authentication And get. This two-digit number for authentication is used for link connection authentication.

  Next, a link connection request is transmitted to the mobile terminal 1 using the created deemed address (step S226), and connection with the mobile terminal 1 at the link level is attempted. When the cash register 2 receives the link level connection completion event (steps S227 to S232), thereafter, L2CAP connection, RFCOMM connection, and application OBEX connection are performed.

  When authentication data is included in the barcode image, the two digits obtained when a link key input event is received when link connection authentication is performed by both the mobile terminal 1 and the cash register 2 A 128-bit link key is generated and used as a link key using the authentication number and the secret code and date and time shared by both parties in advance. Alternatively, it is not used as it is as a link key, but can be used as PIN data when the link key is rejected and a PIN data manpower request event is received. Bluetooth link level authentication is executed within the LMP according to the flowchart shown in FIG.

Through the above procedure, data can be transmitted and received between the portable terminal 1 and the cash register 2. In this state, the mobile terminal 1 reads an electronic coupon stored in the memory 13 such as an EEPROM, for example, under the control of the CPU 11 and transmits the electronic coupon from the BT transceiver unit to the cash register 2. If the connection information of the terminal 1 is acquired successfully, the cash register 2 which is the original function of the cash register 2 is also performed in parallel. That is, the barcode B1 of the product P that the customer intends to purchase is read by the barcode reader 38a, the price of the product P is acquired from the POS server 3, and the product is multiplied by the number input from the key input unit 34. The total amount is calculated, and the product amount and the total amount are displayed on the display unit 37, or a receipt is issued. When the bar code input (or key input) of all the products that the customer intends to purchase is finished and the total amount is obtained, the cashier operator inputs a predetermined key from the key input unit 34. To instruct the end of the registration process.

  When an electronic coupon is transmitted from the mobile terminal 1, the cash register 2 receives the electronic coupon at the BT transceiver 39 and discounts the target product using the usable coupon under the control of the CPU 3. To calculate the final total amount. Further, a score corresponding to the purchase price is obtained, and the score is transmitted as an electronic point from the BT transceiver unit 39 to the mobile terminal 1. Then, customer information is transmitted to the POS server 3 as the purchase history of the customer.

  When the transmission / reception unit 39 of the cash register 2 finishes transmitting the electronic point, the BT transmission / reception unit 39 executes a disconnection process of the wireless transmission path established with the portable terminal 1. That is, the connection is disconnected and the link is disconnected.

  From the viewpoint of the user interface, when connection information can be acquired correctly from the screen of the mobile terminal 1, Bluetooth connection is completed, service provision processing is completed (link is disconnected), etc. The situation may be notified to either the portable terminal 1 or the cash register 2 or both by sound effects and screen display. In the case of a mobile phone, there may be a method of vibrating or illuminating illumination.

  As described above, in the fourth embodiment, since the barcode image indicating the identification information and authentication data of the mobile terminal 1 is displayed on the display unit 22 of the mobile terminal 1, the barcode image is displayed on the bar of the cash register 2. By reading with the code reader 38a, the portable terminal 1 can be specified easily and accurately, and the time from when the portable terminal 1 requests provision of service until it is received can be shortened.

  In particular, in the present embodiment, since the barcode image representing the identification information and authentication data of the mobile terminal 1 is read by the barcode reader 38a of the specific cash register 2, only the specific cash register 2 identifies the mobile terminal. Information can be acquired, and security performance is improved.

  In this embodiment, link establishment and authentication are performed based on the connection information acquired by the barcode reader 38a and the like, and connection is permitted only when the authentication key matches in both the portable terminal 1 and the cash register 2. Therefore, only the desired mobile terminal 1 can receive the service provided by the cash register 2.

  Further, there is no room for the cashier operator to mistakenly specify the portable terminal 1, and a reliable connection can be established. Furthermore, since the Bluetooth terminal search procedure, which takes a long time, is not executed, various services can be provided without hindering the original work of the cash register.

  In addition, since customer information such as purchase history for each customer associated with the identification information of the mobile terminal 1 acquired for setting the wireless transmission path can be collected, the purchase information can be used for sales management and inventory management. It is also possible to analyze the preferences of each customer and provide individual services for each customer.

  In addition, there is no restriction | limiting in particular in the specific method for exchanging connection information between the portable terminal 1 and the cash register 2, It was provided in the portable terminal 1 besides the method of reading a barcode with the barcode reader 38a. Various methods are conceivable, such as a method of wirelessly transmitting connection information from a wireless tag, a method of transmitting connection information by IrDA (Infrared Data Association) communication, and a method of reading identification information such as a barcode with an image sensor. .

  In the above-described embodiment, a one-dimensional barcode is used, but a two-dimensional barcode may be used. In this case, the 48-bit Bluetooth identifier is not degenerated, and the number of bits of authentication data can be increased, thereby further improving the security performance. If the Bluetooth clock of the terminal itself can be obtained, including the information makes it possible to correctly estimate the frequency of the portable terminal 1 at the time of a connection request, thereby enabling connection in a shorter time.

  In this embodiment, the link level authentication function is used for authentication of the partner terminal. However, when OBEX is used, the acquired authentication data is used as it is or after some calculation is used as an authentication key. In the case of OBEX, authentication by the challenge response method using MD5 which is a hash function is possible.

  Alternatively, OBEX does not use the standard MD5 authentication method, but the same effect can be obtained even if it is used as the authentication key itself of the original authentication method or as a seed for creating the authentication key.

  In this example, a one-dimensional barcode is used, and the partner BT address is degenerated. In such a case, an authentication error may occur when a PIN is entered and a link key is created. To prevent this, a link key can be created as a single key.

  In the above embodiment, the cash register 2 performs discounts and issuance of electronic points using electronic coupons. However, such processing is performed on a computer connected to the cash register 2 so as to be able to communicate with the cash register 2 via a network. It may be executed.

(Fifth embodiment)
In the fifth embodiment, in contrast to the fourth embodiment, it is assumed that the mobile terminal 1 is connected to the cash register 2, that is, the mobile terminal 1 is a master and the cash register 2 is a slave. .

  FIG. 18 is a flowchart showing an example of the processing operation of the mobile terminal 1 in the fifth embodiment, and FIG. 19 is a flowchart showing an example of the processing operation of the cash register 2 in the fifth embodiment. Below, it demonstrates centering on a different part from 4th Embodiment.

  The portable terminal 1 creates a barcode image as connection information (step S255), and then presents the barcode image on the display unit 22 of the portable terminal 1 (step S256). When the terminal holder confirms the barcode image displayed on the display unit 22 of the portable terminal 1, the terminal holder presents the display unit 22 of the portable terminal 1 on the reading portion of the barcode reader 38 a of the cash register 2.

  The cash register 2 reads a barcode image as connection information by the barcode reader 38a (step S282). When the reading is successful, a sound effect may be generated or a reading success message may be displayed on the screen to notify the terminal owner of the successful acquisition of the connection information.

  When the terminal holder confirms that the connection information has been successfully acquired, the terminal owner issues a Bluetooth connection start instruction (step S257), sets a specific IAC, and makes a limited inquiry transmission request (step S258). When a new terminal is found, the inquiry is interrupted and a connection request is made to the found terminal. Then, the status of the connection request result is checked. If the connection is successful, the connection of L2CAP is recorded. If the connection fails, the address of the general device is recorded as a known terminal, the inquiry is performed again, and another device is searched (steps S259 to S259). S275).

  When the cash register 2 succeeds in obtaining the connection data by the barcode reader 38a (step S284), the cash register 2 validates the inquiry scan and the page scan (step S285), and from the obtained 13-digit number, Information corresponding to 32 bits is acquired and converted into 4-byte hexadecimal notation (step S287).

  If a Bluetooth link level connection request event is received, the Bluetooth address of the device that has made the connection request is acquired, and the lower 4 bytes are compared (step S288). If the addresses match at this time, the connection is permitted (step S289). If they do not match, connection refusal is performed (step S290).

  If the link connection is successful, the inquiry scan and the page scan are invalidated (steps S291 to S304).

  When performing authentication, the same processing as in the fourth embodiment is performed. In the flowchart of FIG. 19, a device that makes a connection request is identified using the lower 4 bytes of the Bluetooth address, but the mobile terminal 1 is determined using only the lower 3 bytes of the Bluetooth address of the mobile terminal that is the unique ID. Also good. In this case, since the probability that the portable terminal 1 having the same ID makes a connection request at the same timing at the same timing is 16.8 million or less, the probability can be almost ignored.

  As described above, in the fifth embodiment, when the mobile terminal 1 finds an inappropriate device first than the desired device, reconnection takes several hundred millimeters, but the number of digits of the terminal identification information is reduced. Therefore, since it can be used for transmitting authentication information, it is inferior in terms of connection time as compared to the fourth embodiment, but it is superior in terms of security strength.

  In each embodiment described above, what service the cash register 2 provides to the mobile terminal 1 is not particularly limited. That is, the device that communicates with the mobile terminal 1 is not limited to the cash register 2.

  In each of the above-described embodiments, the cash register 2 has been described as an example of an information exchange device that communicates with the mobile terminal 1. However, the present invention is a variety of devices that can communicate with the mobile terminal 1 and transmit and receive connection information. For example, the present invention can be applied to a ticket gate, a vending machine, a parking lot, a facility gate, and the like that communicate with the mobile terminal 1 to perform ticket gate processing.

  In addition, this invention is not limited to the said 1st-5th embodiment, In the implementation stage, it can change variously in the range which does not deviate from the summary. Further, the first to fifth embodiments include inventions at various stages, and various inventions can be extracted by appropriately combining a plurality of disclosed configuration requirements. For example, even if some constituent elements are deleted from all the constituent elements shown in the embodiment, the problem (at least one of them) described in the column of problems to be solved by the invention can be solved, and the column of the effect of the invention If at least one of the effects described in (1) is obtained, a configuration in which this configuration requirement is deleted can be extracted as an invention.

(Other embodiments)
Recently, a portable terminal 1 incorporating an imaging device such as a CCD camera has become widespread. If this type of portable terminal 1 is used, the information displayed on the display unit 37 of the cash register 2 is used as an image for the portable terminal 1. Can also be easily imported.

  Therefore, contrary to the fourth and fifth embodiments described above, the cash register 2 generates a two-dimensional image based on the Bluetooth address and PIN code of the cash register itself, and the display unit 37 of the cash register 2. The two-dimensional image may be captured by the imaging device of the portable terminal 1 to obtain the connection information of the cash register 2, and a connection request may be made from the portable terminal 1 side or the cash register 2 side.

  Also in this case, the same effects as those of the fourth and fifth embodiments described above can be obtained.

1 is a block diagram showing a schematic configuration of a first embodiment of a communication system according to the present invention. FIG. 2 is a block diagram showing an internal configuration of the mobile terminal 1 in the present embodiment. The schematic diagram of the cash register 2 in this embodiment. The block diagram which shows the internal structure of the cash register 2 in this embodiment. The figure explaining the identifier of a Bluetooth terminal. The flowchart which shows an example of the processing operation of the portable terminal in 1st Embodiment. FIG. 7 is a detailed flowchart of processing in steps S19 and S20 in FIG. 5 is a flowchart illustrating an example of a processing operation of a cash register according to the first embodiment. The flowchart which shows an example of the processing operation of the portable terminal in 2nd Embodiment. 10 is a flowchart illustrating an example of a processing operation of a cash register according to the second embodiment. The flowchart which shows an example of the processing operation of the portable terminal in 3rd Embodiment. 10 is a flowchart illustrating an example of a processing operation of a cash register according to the third embodiment. The schematic diagram of the cash register 2 in 4th Embodiment. The block diagram which shows the internal structure of the cash register 2 of FIG. The figure explaining the contents of the barcode of JAN13. The flowchart which shows an example of the processing operation of the portable terminal 1 in 4th Embodiment. 14 is a flowchart illustrating an example of processing operation of the cash register 2 according to the fourth embodiment. The flowchart which shows an example of the processing operation of the portable terminal 1 in 5th Embodiment. 20 is a flowchart illustrating an example of processing operation of the cash register 2 according to the fifth embodiment.

Explanation of symbols

1 Mobile terminal 2 Cash register 3 POS server 4 Center 11 CPU
12 ROM
13 Memory 14 EEPROM
15 Microphone 16 A / D
17 Speaker 18 D / A
DESCRIPTION OF SYMBOLS 19 Eccentric motor 20 Base station 21 Communication part 22 Display part 23 Key input part 24 Selection instruction | indication part 25 BT transmission / reception part 31 CPU
32 memory 33 ROM
34 Key input unit 35 RS-232C controller 36 Drawer 37 Cash register control unit 38 Bar code reader 39 BT transmission / reception unit

Claims (4)

A communication device and a mobile terminal that communicate with each other,
In a communication system for setting a communication link between the communication device and the mobile terminal,
The communication device
A display unit;
A first identifier acquisition unit for acquiring a communication identifier possessed by the device;
A conversion unit that converts the communication identifier into a display pattern for displaying on the display unit;
A display control unit that displays the display pattern on the display unit,
The portable terminal is
An imaging unit for imaging the display pattern displayed on the display unit;
A restoring unit for restoring the communication identifier from the display pattern imaged by the imaging unit;
And a connection request unit that makes a connection request to the communication device using the communication identifier restored by the restoration unit. The conversion unit converts at least a part of the bits for specifying the communication device to the display pattern among the communication identifiers,
The restoration unit restores the part of the bits from the display pattern imaged by the imaging unit,
2. The communication system according to claim 1, wherein the connection request unit makes a connection request to the communication device using the restored part of the bits. The display pattern includes authentication data used in communication between the communication device and the mobile terminal,
The communication system according to claim 1, wherein each of the communication device and the mobile terminal further includes an authentication unit for performing authentication processing with each other using the authentication data.   The communication system according to claim 3, wherein each of the communication device and the mobile terminal further includes a warning unit that warns that unauthorized access has been performed when the authentication unit fails in authentication.

Images